Hello. I am a certified AS9100 internal auditor and was told something recently by another employee at my shop that I am not aware of and would like input. We have Zeiss CMM's at our shop. We want to have our programmers have MAaster rights, which means you can do just about anything to the machine. Then, we wnat to have operators and non-programmers ahve right to run just programs, but make no edits or save changes to the programs. To do this, we need to set up passwords for both. I was told that this violates AS9100 with the NIST requirements. Is this true? I was not aware of that anyplace. Thanks for the help with this.
Assign topic to the user
I do not know where the person you were talking to got the information that this is against the AS9100 requirements because those requirements do not go into this much detail on how you manage the organization, they only give a structure on what needs to be included.
In fact, in AS9100 clause 8.5.2 it talks about using acceptance media as part of the identification and traceability, and gives examples of electronic signatures and passwords as being acceptable. This is how you will be controlling the approval in your CMM area. Again, the standard does require that you control changes and access for production processes, but this is what you will be doing.
Comment as guest or Sign in
Apr 10, 2024