CMMC Practice SC.2.178

Prohibit remote activation of collaborative computing devices and provide indication of devices in use to users present at the device.


CMMC Version 1.02, pg. 248

Bold Coast Security Guidance

For Level 2 compliance, you'll need a practice and a written policy to prohibit remote enabling of collaborative components. The policy should require local management of these devices, and also require configuration to display all connections, or at least alert appropriate personnel when there are new connections.

Discussion From Source

DRAFT NIST SP 800-171 R2 Collaborative computing devices include networked white boards, cameras, and microphones. Indication of use includes signals to users when collaborative computing devices are activated . Dedicated video conferencing systems, which rely on one of the participants calling or connecting to the other party to activate the video conference, are excluded.