NIST 800-53 REV 5 • PHYSICAL AND ENVIRONMENTAL PROTECTION

PE-3(1)System Access

Enforce physical access authorizations to the system in addition to the physical access controls for the facility at {{ insert: param, pe-03.01_odp }}.

CMMC Practice Mapping

No direct CMMC mapping

NIST 800-171 Mapping

No direct NIST 800-171 mapping

Related Controls

No related controls listed

Supplemental Guidance

Control of physical access to the system provides additional physical security for those areas within facilities where there is a concentration of system components.

Practitioner Notes

Beyond controlling access to the building, you need to control access to the systems themselves — the server room, network closets, and any area where IT equipment is installed.

Example 1: Install a separate badge reader on your server room door with a more restricted access list than the general facility. Only IT staff and authorized maintenance personnel should have server room badges. Log all entries and review logs weekly.

Example 2: For network closets (IDF/MDF rooms), install key locks at a minimum, or electronic locks with logging for higher-security environments. Ensure these rooms are not left propped open. Include network closet checks in your building security rounds.

More Physical and Environmental Protection Controls

PE-1 Policy and Procedures PE-2 Physical Access Authorizations PE-2(1) Access by Position or Role PE-2(2) Two Forms of Identification