CMMC 1.0 Practice AC.2.015 Requirement:

Route remote access via managed access control points.

CMMC 1.0 AC.2.015 Requirement Explanation:

By limiting the number of access points for remote connections you can reduce your company's attack surface.

Example CMMC 1.0 AC.2.015 Implementation:

Route all your VPN connections through a single point (e.g. your external firewall). This allows you to better monitor VPN connections. This generally applies when you have VPN connections coming in from multiple offices.

CMMC 1.0 AC.2.015 Scenario(s):

- Scenario 1:

Alice is a system administrator who manages the IT systems at her company's headquarters and two overseas offices. Each office has its own VPN setup to allow access to the resources on their networks. To better monitor VPN connections, Alice routes all VPN connections through the intrusion detection system at her company's headquarters.

Discover Our NIST SP 800-171 & CMMC 2.0 Solutions:


Compliance Accelerator

Power through compliance. Meet and maintain your NIST SP 800-171 & CMMC 2.0 compliance requirements.

Quantum Assessor

Transform your business. Create new revenue streams and provide scalability for your NIST SP 800-171 and CMMC 2.0 services.

Supply Chain Verifier

Trust is everything. Verify, monitor, and support subcontactor compliance.