STIGhubSTIGhub
STIGsRMF ControlsCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • RMF Controls
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 4 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← All Controls

AC-3 (4)

Access ControlRev 3

Access Enforcement

CCI Identifiers (14)

CCI-000214The organization establishes a Discretionary Access Control (DAC) policy that limits propagation of access rights.CCI-000215The organization establishes a Discretionary Access Control (DAC) policy that includes or excludes access to the granularity of a single user.CCI-001362The information system enforces a Discretionary Access Control (DAC) policy that allows users to specify and control sharing by named individuals or groups of individuals, or by both.CCI-001363The organization establishes a Discretionary Access Control (DAC) policy that allows users to specify and control sharing by named individuals or groups of individuals, or by both.CCI-001693The information system enforces a Discretionary Access Control (DAC) policy that limits propagation of access rights.CCI-001694The information system enforces a Discretionary Access Control (DAC) policy that includes or excludes access to the granularity of a single user.CCI-002163Defines the discretionary access control policies the information system is to enforce over subjects and objects.CCI-002164Enforce organization-defined discretionary access control policy that over the set of covered subjects and objects specified in the policy, and where the policy specifies that a subject that has been granted access to information can do one or more of the following: pass the information to any other subjects or objects; grant its privileges to other subjects; change security attributes on subjects, objects, the system, or the system's components; choose the security attributes to be associated with newly created or revised objects; and/or change the rules governing access control.CCI-002165Enforce organization-defined discretionary access control policies over defined subjects and objects.CCI-003638Enforce organization-defined discretionary access control policies over defined subjects and objects where the policy specifies that a subject that has been granted access to information can pass the information to any other subjects or objects.CCI-003639Enforce organization-defined discretionary access control policies over defined subjects and objects where the policy specifies that a subject that has been granted access to information can grant its privileges to other subjects.CCI-003640Enforce organization-defined discretionary access control policies over defined subjects and objects where the policy specifies that a subject that has been granted access to information can change security attributes on subjects, objects, the system, or the system's components.CCI-003641Enforce organization-defined discretionary access control policies over defined subjects and objects where the policy specifies that a subject that has been granted access to information can choose the security attributes to be associated with newly created or revised objects.CCI-003642Enforce organization-defined discretionary access control policies over defined subjects and objects where the policy specifies that a subject that has been granted access to information can change the rules governing access control.

Linked STIG Checks (157)

Across 64 STIGs. Click to expand.