PE.L1-3.10.4 — Maintain audit logs of physical access.
What this control requires
Maintain audit logs of physical access.
Source: CMMC L1 v2.13 PE.L1-3.10.4 / FAR 52.204-21(b)(1) / NIST SP 800-171 R2 3.10.4 (official control text).
Why this matters
Physical access logs create an auditable trail of who entered sensitive areas and when, enabling incident investigation and deterring unauthorized entry. Without these records, organizations cannot determine who had physical proximity to systems during a security event, making forensic analysis impossible. This control protects controlled unclassified information by establishing accountability for physical presence near systems that store, process, or transmit CUI. Logs transform physical security from theater into enforceable policy, turning doors and badge readers into evidence-generating checkpoints that support insider threat detection and compliance verification.
What evidence assessors expect
Assessors typically look for: screenshot, photo, CSV export, PDF. FORCE coaches you through the exact implementation steps and captures each artifact in-platform.
Related controls
See your live posture on PE.L1-3.10.4.
FORCE shows where you stand on this control and walks you through closing it.
Start a free trial tenant →