Multifactor authentication is defined as: using two or more factors to achieve authentication.
Factors include:
(i) something a user knows (e.g., password/PIN);
(ii) something a user has (e.g., cryptographic identification device, token); or
(iii) something a user is (e.g., biometric).
A privileged account is defined as an information system account with authorizations of a privileged user.
Local Access is defined as access to a DoD information system by a user (or process acting on behalf of a user) communicating through a direct connection without the use of a network.
When accessing the AS via a local connection, also known as a console connection, administrative access to the application server must be CAC-enabled. |