Statement

The West Texas A&M University information system uniquely identifies and authenticates non-organizational users (or processes acting on behalf of nonorganizational users).

Applicability

This Control applies to all West Texas A&M network information resources. The intended audience for this Control includes all information resource owners, and custodians of information resources.

Implementation

It is the responsibility of the information resource owner or custodian to ensure:

• Information system uniquely identifies and authenticates non-organizational users (or processes acting on behalf of non-organizational users).
• Non-organizational users are subject to authorization to information systems prior to access as defined in Control AC-2 Account Management.
• As defined in Control AC- 14 Permitted Actions Without Identification or Authtentication, public websites, public kiosk and other situations where risk analysis demonstrates no need for individual accountability of users are exempt from this requirement.