How To Resolve Sprinto Check For Configuring Access Rule On Critical Systems

About

Sprinto check: Rules for who can access critical systems should be configured

The above Sprinto check starts failing for a critical system with undefined user access validity. Sprinto computes the staff members' access validity based on the defined access validity for the critical system.

Purpose

To meet the access control compliance requirements, each critical system added on Sprinto must have the system access validity defined. The following access monitoring types could define the access validity:

• Staff role: Define staff roles that need access to the system.

• Access request tickets: Configure a ticketing system to grant or revoke system access.

• All staff: Set the system access validity to all staff members.

Sprinto computes the users' access to the systems against the defined validity and highlights whether any user's access needs to be revoked or downgraded.

Procedure

Do the following steps to configure access validity for a critical system:

1. Log in to the Sprinto admin portal using your credentials.

2. Navigate to Security Hub > Access > Overview, and select any active configured critical system.

3. From the Summary tab, click Configure now under the Accounts section.

4. Click Configure next to Access Monitoring.

5. Select an appropriate access validity for the system, and click Save.

   • Staff role-based: Add all the job roles that need access to the system.

   • Ticket-based: Integrate and configure a ticketing system to monitor users' access.How To Resolve Sprinto Check For Configuring Access Rule On Critical Systems

Support

Please get in touch with our support team if you have any queries related to the Sprinto check or need any assistance.