AC.L2-3.1.12 — Monitor and control remote access sessions.
What this control requires
Monitor and control remote access sessions.
Source: CMMC L2 v2.13 AC.L2-3.1.12 / NIST SP 800-171 R2 3.1.12 (official control text).
Why this matters
Remote access creates expanded attack surface by allowing users to connect to organizational systems from outside the physical perimeter. Without active monitoring and session controls, compromised credentials or insider threats can establish persistent connections undetected, exfiltrate data over extended periods, or pivot through the network. This control enforces real-time visibility into who accesses what resources remotely, from which locations, using which methods, and for how long—enabling rapid detection of anomalous sessions and enforcement of time-based or geographic access restrictions that limit exposure windows.
What evidence assessors expect
Assessors typically look for: screenshot, configuration export, CSV export. FORCE coaches you through the exact implementation steps and captures each artifact in-platform.
Related controls
See your live posture on AC.L2-3.1.12.
FORCE shows where you stand on this control and walks you through closing it.
Start a free trial tenant →