FRR-RSC-02 - Top-level administrative accounts security settings guidance
Providers must create and maintain guidance that explains security-related settings that can be operated only by top-level administrative accounts and their security implications.
CSP supported
Yes
CSP secure configuration guidance
- Admin-only controls
- Create, edit, and deactivate user logins and contacts
- Assign access levels (Organization, Group, Location, Tag)
- Assign administrative roles such as System Administrator
- Define work roles (for example, Issue Manager, PowerReport Edit) tied to sensitive functions
- Configure access scopes tied to business structures (organization, group, location)
- Design who can see what data based on geography, function, or tag
- Define organizational hierarchy from company-level down to sites and facilities
- Manage groups that segment ESG data logically
- Platform administrators typically manage integrations with Single Sign-On (SSO) and Multi-Factor Authentication (MFA) through identity providers
- Environment settings control audit logging availability and retention (audit trails of who did what and when). The product includes audit trails for data and activity.