STIGhubSTIGhub
STIGsRMF ControlsCompare
STIGhub— A free STIG search and compliance tool·STIGs updated 3 days ago
Powered by Pylon·Privacy·Terms·© 2026 Beacon Cloud Solutions, Inc.
← All Controls

AC-6 (10)

Access ControlRev 5system

Least Privilege

Baselines:ModerateHigh

Control Statement

Prevent non-privileged users from executing privileged functions.

Supplemental Guidance

Privileged functions include disabling, circumventing, or altering implemented security or privacy controls, establishing system accounts, performing system integrity checks, and administering cryptographic key management activities. Non-privileged users are individuals who do not possess appropriate authorizations. Privileged functions that require protection from non-privileged users include circumventing intrusion detection and prevention mechanisms or malicious code protection mechanisms. Preventing non-privileged users from executing privileged functions is enforced by [AC-3](#ac-3).

CCI Identifiers (1)

CCI-002235Prevent non-privileged users from executing privileged functions.

Linked STIG Checks (200)

Across 75 STIGs. Click to expand.