FRR-RSC-04 - Secure defaults on provisioning

Providers should set all settings to their recommended secure defaults for top-level administrative accounts and privileged accounts when initially provisioned.

CSP supported

Yes

CSP secure configuration guidance

A System Administrator is assigned a System Admin role which gives them access to a set of permissions by default.

  • Users must be manually given an access level (Organization, Group, Location, or Tag).
  • If no access level is explicitly given, the user has limited visibility until one is assigned.
  • A new login with no access level initially does not see any organizational data until the admin assigns a scope.

For more information, see Setting up users.