How to manage access control to critical systems monitor

Most of the compliances require companies to maintain access control to their critical systems. The critical systems have confidential data and it is very important to make sure that access is provided only to those who absolutely need it.

In Sprinto all critical access systems need to be added under the Access tab and also configure which roles are valid to have access to the respective critical system for the monitor to pass.

Procedure:

Below are the steps you need to follow to configure roles who have valid access to the critical systems.

Step 1: Login to Sprinto (https://app.sprinto.com).

Step 2: Under Security Hub in the left hand side menu click on Access.

Step 3: Click on Add Critical System.

Step 4: A drawer will appear within the app with listing of all the critical access systems, you can scroll or search on the top and select all the critical access systems and they will show to the right hand side of the pane.

- If the critical access system is not available after searching in the list, click on Add your own critical access system.

Step 5: Click on Add once all the systems are selected and all the added systems will appear in the sub-menu.

Step 6: On the over view page, click on the gear icon next to the name of each critical access system.

Step 7: A drawer will appear, click on Configure in the Configure how access is managed tab.

Step 8: Choose how do you want to manage the access to the critical system

- All staff members are allowed access

- Only specific roles are allowed access

Step 9: If you choose Roles based access, on the next page add all the roles in the dropdown.

Once the above steps are completed, the monitor will start passing, kindly refresh the sync else allow another 24 hours for the status to update as expected. In case it does not, please feel free to reach out to Sprinto support at [email protected] for further assistance.