FRR-RSC-02 - Top-level administrative accounts security settings guidance

Providers must create and maintain guidance that explains security-related settings that can be operated only by top-level administrative accounts and their security implications.

CSP supported

Yes

CSP secure configuration guidance

  • Admin-only controls
  • Create, edit, and deactivate user logins and contacts
  • Assign access levels (Organization, Group, Location, Tag)
  • Assign administrative roles such as System Administrator
  • Define work roles (for example, Issue Manager, PowerReport Edit) tied to sensitive functions
  • Configure access scopes tied to business structures (organization, group, location)
  • Design who can see what data based on geography, function, or tag
  • Define organizational hierarchy from company-level down to sites and facilities
  • Manage groups that segment ESG data logically
  • Platform administrators typically manage integrations with Single Sign-On (SSO) and Multi-Factor Authentication (MFA) through identity providers
  • Environment settings control audit logging availability and retention (audit trails of who did what and when). The product includes audit trails for data and activity.