|
|
|
|
|
|
by akerl_
236 days ago
|
|
|
Did I express outright incredulity about logging failed attempts? If you’re a company trying to meet a compliance regime and you don’t already have a central IDP, that’s step zero. None of the NIST requirements say “you must have an IDP”, but a massive portion of them are trivial with an IDP and a massive pain in the ass (both to implement and evidence to auditors) without one. |
|
|