STIGhubSTIGhub
STIGhub— A free STIG search and compliance tool·STIGs updated just now
Powered by Pylon·Privacy·Terms·Feedback·© 2026 Beacon Cloud Solutions, Inc.
← AC-3 (13) — Access Enforcement

CCI-003652

Definition

Enforce attribute-based control access over defined subjects and objects based upon organization-defined attributes to assume access permissions.

Parent Control

AC-3 (13)Access EnforcementAccess Control

Linked STIG Checks (2)

V-278961CAT IIThe application server must enforce attribute-based control access over defined subjects and objects based upon organization-defined attributes to assume access permissions.Application Server Security Requirements GuideV-284007CAT IIFly Server must enforce a role-based access control (RBAC) policy over defined subjects and objects.AvePoint Fly Server Security Technical Implementation Guide