STIGhubSTIGhub
STIGsRMF ControlsCompare
STIGhub— A free STIG search and compliance tool·STIGs updated 3 days ago
Powered by Pylon·Privacy·Terms·© 2026 Beacon Cloud Solutions, Inc.
← IA-2 (9) — Network Access to Non-privileged Accounts — Replay Resistant

CCI-000776

Definition

The information system uses organization-defined replay-resistant authentication mechanisms for network access to non-privileged accounts.

Parent Control

IA-2 (9)Network Access to Non-privileged Accounts — Replay ResistantIdentification and Authentication

Linked STIG Checks (1)

V-254415CAT IIWindows Server 2022 Active Directory user accounts, including administrators, must be configured to require the use of a Common Access Card (CAC), Personal Identity Verification (PIV)-compliant hardware token, or Alternate Logon Token (ALT) for user authentication.Microsoft Windows Server 2022 Security Technical Implementation Guide