STIGhubSTIGhub
STIGsRMF ControlsCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • RMF Controls
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 4 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← All Controls

IA-1

Identification and AuthenticationRev 4

Policy and Procedures

CCI Identifiers (25)

CCI-000756The organization develops an identification and authentication policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.CCI-000757Disseminate an organization-level; mission/business process-level; and/or system-level identification and authentication policy to organization-defined personnel.CCI-000758Review and update the current identification and authentication policy in accordance with the organization-defined frequency.CCI-000759Defines a frequency for reviewing and updating the identification and authentication policy.CCI-000760The organization develops procedures to facilitate the implementation of the identification and authentication policy and associated identification and authentication controls.CCI-000761The organization disseminates to organization-defined personnel or roles procedures to facilitate the implementation of the identification and authentication policy and associated identification and authentication controls.CCI-000762Review and update the current identification and authentication procedures in accordance with the organization-defined frequency.CCI-000763Defines a frequency for reviewing and updating the identification and authentication procedures.CCI-001932The organization documents an identification and authentication policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.CCI-001933The organization defines the personnel or roles to be recipients of the identification and authentication policy and the procedures to facilitate the implementation of the identification and authentication policy and associated identification and authentication controls.CCI-001934The organization documents procedures to facilitate the implementation of the identification and authentication policy and associated identification and authentication controls.CCI-004031Defines the personnel or roles the organization-level; mission/business process-level; and/or system-level identification and authorization policy is disseminated to.CCI-004032Develop and document an organization-level; mission/business process-level; and/or system-level identification and authorization policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination, among organizational entities, and compliance.CCI-004033Develop and document an organization-level; mission/business process-level; and/or system-level identification and authorization policy that is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines.CCI-004034Develop and document the procedures to facilitate the implementation of the identification and authorization policy and the associated identification and authentication controls.CCI-004035Designate an organization-defined official to manage development and documentation of the identification and authentication policy.CCI-004036Designate an organization-defined official to manage dissemination of the identification and authentication policy.CCI-004037Designate an organization-defined official to manage development and documentation of the identification and authentication procedures.CCI-004038Designate an organization-defined official to manage dissemination of the identification and authentication procedures.CCI-004039Defines the official designated to managing the development, documentation, and dissemination of the identification and authentication policy.CCI-004040Defines the official designated to managing the development, documentation, and dissemination of the identification and authentication procedures.CCI-004041Review and update the current identification and authentication policy following organization-defined events.CCI-004042Defines the events following reviewing and updating the current identification and authentication policy.CCI-004043Review and update the current identification and authentication procedures following organization-defined events.CCI-004044Defines the events following reviewing and updating the current identification and authentication procedures.

Linked STIG Checks (2)

Across 2 STIGs. Click to expand.