IA-02.5: Individual Authentication with Group...

IA-02.5 · Individual Authentication with Group Authentication

Control Description

When shared accounts or authenticators are employed, require users to be individually authenticated before granting access to the shared accounts or resources.

Impact Baselines

Security baselines where this control applies

Not in any baseline

Control Properties

SP800-53-enhancement

organization

Enhancement

Control Statement

The control requirements

When shared accounts or authenticators are employed, require users to be individually authenticated before granting access to the shared accounts or resources.

Supplemental Guidance

Individual authentication prior to shared group authentication mitigates the risk of using group accounts or authenticators.