Skip to content
Home / Function (NIST CSF 2.0) / PR - Protect / IR - Infrastructure

ANSSI Recommendations to secure administration of IT systems

This document focuses on:

Recommendations to secure the administration of IT systems emphasize conducting a thorough risk analysis tailored to the organization’s specific environment, as administrative resources are high-value targets for attackers due to their elevated privileges. Key measures include segregating administration tools and stations by trust zones, deploying dedicated and secured servers for administrative functions, and implementing strict operational controls to minimize attack surfaces. Additional best practices involve restricting internet access on administrative workstations, enforcing strong authentication and encryption for remote access, regularly updating and patching systems, monitoring and logging administrative activities, and ensuring only authorized personnel have administrative privileges. These steps collectively aim to prevent compromise of administrative environments, protect against malware, and ensure the confidentiality, integrity, and availability of critical IT systems.


Publication's URL

https://cyber.gouv.fr/en/publications/recommendations-secure-administration-it-systems

Additional documents on this topic



How would you rate this document ?

Click on a star to rate it!

What do you think of this document?

Your email address will not be published. Required fields are marked *