I posted in the r/NISTControls and someone mentioned that this sub may give me a better answer.

If you would like to read the original posting it can be found here.

My main question is if I can have controlled computers and non-controlled computers accessing the server with CUI IF the CUI is segregated and the non-controlled computers cannot see or access it.

Obviously the controlled computers will meet all requirements. I can either have a separate partition and share under my file server. OR I could create a separate server hosted on the same physical server machine.

We are a small company and I am trying to minimize the numbers of workstations that need to meet NIST guidelines.

​

I am still learning. Thanks for the patience.