Microsoft – Set up Multi-Factor Authentication for M365 3.5 3.5.2 3.5.3 Identification and Authentication
Guide for enforcing MFA for Microsoft 365
SEARCH RESULTS
Microsoft – Configure CMMC Level 2 Identification and Authentication (IA) controls 3.5 3.5.5 Identification and Authentication
This article provides guidance for the Identification and Authorization (IA) domain. There's a table with links to content that provides step-by-step guidance to accomplish the practice.
Microsoft – Regularly check for and remove inactive user accounts in the Active Directory 3.5 3.5.6 Identification and Authentication
This webpage discusses how to regularly check for and remove inactive user accounts in Microsoft Active Directory.
NIST SP 800-111 Guide to Storage Encryption Technologies for End User Devices 3.1 3.1.19 3.13 3.13.10 3.13.11 3.13.16 3.5 3.5.10 3.8 3.8.1 3.8.2 3.8.6 Access Control Identification and Authentication Media Protection System and Communications Protection
This NIST Special Publication provides recommendations to facilitate more efficient and effective storage encryption solution design, implementation, and management for Federal departments and agencies.
NIST SP 800-175b Guideline for Using Cryptographic Standards in the Federal Government 3.1 3.1.13 3.1.17 3.1.19 3.13 3.13.10 3.13.11 3.13.15 3.13.16 3.13.8 3.5 3.5.10 3.8 3.8.6 Access Control Identification and Authentication Media Protection System and Communications Protection
This NIST Special Publication is one part in a series of documents intended to provide guidance to the Federal Government for using cryptography to protect its sensitive, but unclassified digitized information during transmission and while in storage.
NIST SP 800-53 Rev 5: IA-4 Identifier Management 3.5 3.5.5 Identification and Authentication
This special publication from NIST provides an overview of Identifier Management.
NIST SP 800-53: IA-2 Identification and Authentication (Organization Users) 3.5 3.5.3 3.7 3.7.5 Identification and Authentication Maintenance
Control objectives for the implementation of multi-factor authentication from NIST SP 800-53.
NIST SP 800-63B Digital Identity Guidelines 3.5 3.5.2 Identification and Authentication
This NIST Special Publication provides technical requirements for federal agencies implementing digital identity services.
Open Web Application Security Project (OWASP) – Authentication Cheat Sheet 3.5 3.5.2 Identification and Authentication
This cheat sheet from OWASP provides general authentication guidelines.
Open Web Application Security Project (OWASP) – Testing for Default Credentials 3.5 3.5.10 3.5.11 3.5.7 3.5.8 3.5.9 csc4.2 Identification and Authentication
This link discusses the process of testing web applications for default credentials.