Under active development — Content is continuously updated and improved · Last updated Feb 18, 2026, 2:55 AM UTC

Home / Frameworks / BSI C5 / IDM — Identity and Access Management (IDM)

IDM — Identity and Access Management (IDM)

9 criteria in the Identity and Access Management (IDM) area

IDM-01Policy for user accounts and access rights

IDM-02Granting and change of user accounts and access rights

IDM-03Locking and withdrawal of user accounts in the event of inactivity or multiple failed logins

IDM-04Withdraw or adjust access rights as the task area changes

IDM-05Regular review of access rights

IDM-06Privileged access rights

IDM-07Access to cloud customer data

IDM-08Confidentiality of authentication information

IDM-09Authentication mechanisms

← Back to all criteria