HOME

AC-17 (3)

AC-17 (3) H M
Description

The information system routes all remote accesses through [Assignment: organization-defined number] managed network access control points.

DISA Cloud Computing SRG

Not appropriate for DoD to define for all CSP's infrastructure or service offerings

Source:
DoD RMF TAG

Supplemental Guidance

Limiting the number of access control points for remote accesses reduces the attack surface for organizations. Organizations consider the Trusted Internet Connections (TIC) initiative requirements for external network connections.

Related Controls