Evidence – AC.L2-3.1.18
Authorize Wireless Access Prior to Connection
Control Overview
This document describes the evidence used to demonstrate implementation of AC.L2-3.1.18, which requires authorization of wireless access prior to connection.
This evidence supports the control response documented in the System Security Plan (SSP).
Evidence Objectives
Evidence for this control demonstrates that:
- Wireless access is authorized before devices connect
- Only approved devices and users can connect wirelessly
- Wireless access is controlled through managed device and identity settings
Evidence Artifacts
1. Wireless Access Authorization Controls
Evidence demonstrating authorization may include:
- Device compliance requirements for wireless connectivity
- Identity-based access controls governing wireless access
- Restrictions preventing unmanaged devices from connecting wirelessly
Examples of acceptable sources:
- Microsoft Intune device compliance and Wi-Fi profiles
- Microsoft Entra ID access controls for device connectivity
- Google Endpoint Management wireless access settings
Evidence Retention
Evidence supporting this control is retained in accordance with organizational policy and contractual requirements and is available for review during assessment.
Notes
Wireless access authorization is enforced prior to device connection and prevents unmanaged or unauthorized access.