PR.AC-3(a)

Remote access is managed

Protect · Access Control

Manual Attestation

Compliance Score

70%

Partially Compliant

Documentation Maturity

3/ 5

Target: 2.5

Implementation Maturity

3/ 5

Target: 2.5

Control Description

Wireless access points are configured securely with strong encryption (WPA3/WPA2-Enterprise), hidden SSIDs where appropriate, and separate guest networks.

Findings (1)

0/1 items compliant

Severity	Finding	Recommendation
medium	Improvement needed: Remote access is managed Current implementation does not fully meet the requirements of PR.AC-3(a).	Use WPA2-Enterprise or WPA3 for corporate WiFi. Create separate guest network with internet-only access. Disable unused wireless access points. Change default admin credentials on all access points.

Severity

Finding

medium

Improvement needed: Remote access is managed

Current implementation does not fully meet the requirements of PR.AC-3(a).

Remediation Guidance

Use WPA2-Enterprise or WPA3 for corporate WiFi. Create separate guest network with internet-only access. Disable unused wireless access points. Change default admin credentials on all access points.