M-19-17 Enabling Mission Delivery through Improved Identity, Credential, and Access Management

OMB’s 2019 Memorandum, M-19-17, sets forth the federal government’s[1] Identity, Credential, and Access Management (ICAM) policy and includes the following sections:

  1. Contextualizing Identity in the Federal Government
  2. Managing Identities, Credentials, and Access in Modern Government
  3. Adapting the Government’s Approach to Homeland Security Presidential Directive 12 (HSPD-12)
  4. Shifting the Operating Model beyond the Perimeter
  5. Improving Digital Interactions with the American Public
  6. Enumerating Government-wide Responsibilities
View the full Memo on Enabling Mission Delivery through Improved Identity, Credential, and Access Management

Rescissions

OMB rescinds the following with the release of this memorandum:

  1. M-04-04, E-Authentication Guidance for Federal Agencies
  2. M-05-05, Electronic Signatures: How to Mitigate the Risk ofCommercial Managed Services
  3. M-06-18, Acquisition ofProducts and Services for Implementation of HSPD-12
  4. M-11-11, Continued Implementation of Homeland Security Presidential Directive (HSPD) 12 - Policy for a Common Identification Standard for Federal Employees and Contractors
  5. OMB Memorandum, Requirements/or Accepting Externally-Issued Identity Credentials, October 6, 2011

Policy Assistance

Address all questions or inquiries regarding this memorandum to the OMB Office ofthe Federal Chief Information Officer (OFCIO) via email: ofcio@omb.eop.gov.

Footnotes

  1. This memorandum is not applicable to national security systems (NSS) as defined in 44 U.S.C. § 3552 (Federal Information Security Modernization Act of 2014), although OMB encourages owners and operators of NSS to utilize the requirements in this document where appropriate.