Address Confirmation - Unsupervised Enrollment Code Reset, v3.0
The requirements for enrollment codes to be reset on first use if they are also a factor in multi-factor authentication.
Assessment Step
1
Enrollment Code Reset (EnrollmentCodeReset)
Does the CSP reset an enrollment code upon first use if that code is also an authentication factor? (Note: if the enrollment code is not a factor in authentication this would also pass)
Artifact
Documentation
Provide policies and practices indicating conformance.
|
Conformance Criteria (1)
Enrollment Code Reset
If an enrollment code is also intended to be an authentication factor, reset the code upon first use.
Citation
SP800-63A
Section 4.4.1.6 (IAL2) P5
|