CISSP - Identity and Access Management (IAM) - Section 5.2
Design identification and authentication strategy for people, devices, and services including groups, roles, MFA, accountability, and session management.
Design an identification and authentication strategy for people, devices, and services that incorporates multifactor authentication, single sign-on, credential management, session management, and accountability controls. Choose the appropriate authentication strength and session timeout policy based on the sensitivity of the system being protected.
multifactor authenticationsession managementaccountabilitycredential managementsingle sign-on
More in this domain
Back to all Identity and Access Management (IAM) objectives, or the CISSP cert hub.
Examworthy is not affiliated with or endorsed by (ISC)2. Original, blueprint-aligned practice material only.