A.11.2 User access management

Objective: To ensure authorized user access and to prevent unauthorized access to information systems.

A.11.2.1 User registration

Control

There shall be a formal user registration and de-registration procedure in place for granting and revoking access to all information systems and services.

A.11.2.2 Privilege management

Control

The allocation and use of privileges shall be restricted and controlled.

A.11.2.3 User password management

Control

The allocation of passwords shall be controlled through a formal management process.

A.11.2.4 Review of user access rights

Control

Management shall review users’ access rights at regular intervals using a formal process.

 

Single Sign On Partners

Evidian Identity and Access Management with dynamic access control and SSO.  Evidian software helps you to deploy a global security policy and service level management capability, through identity and access management and service level management software suites