⭐ Repository → 💼 PCI DSS v3.2.1 → 💼 8 Identify and authenticate access to system components

💼 8.2 In addition to assigning a unique ID, ensure proper user-authentication management for non-consumer users and administrators on all system components.

• ID: /frameworks/pci-dss-v3.2.1/08/02

Description

Employ at least one of the following methods to authenticate all users:

• Something you know, such as a password or passphrase.
• Something you have, such as a token device or smart card.
• Something you are, such as a biometric.

Similar

• Sections
  • /frameworks/pci-dss-v4.0/08/03/01
  • /frameworks/pci-dss-v4.0/08/03/10/01
• Internal
  • ID: dec-c-cda11f40

Similar Sections (Take Policies From)

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance
💼 PCI DSS v4.0 → 💼 8.3.1 All user access to system components for users and administrators is authenticated.		1	1		no data
💼 PCI DSS v4.0 → 💼 8.3.10.1 If passwords/passphrases are used as the only authentication factor for customer user access then either passwords/passphrases are changed at least once every 90 days, or the security posture of accounts is dynamically analyzed.			1		no data

Similar Sections (Give Policies To)

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance
💼 PCI DSS v4.0 → 💼 8.3.1 All user access to system components for users and administrators is authenticated.		1	1		no data
💼 PCI DSS v4.0 → 💼 8.3.10.1 If passwords/passphrases are used as the only authentication factor for customer user access then either passwords/passphrases are changed at least once every 90 days, or the security posture of accounts is dynamically analyzed.			1		no data

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance
💼 8.2.1 Using strong cryptography, render all authentication credentials unreadable during transmission and storage on all system components.			14		no data
💼 8.2.2 Verify user identity before modifying any authentication credential.					no data
💼 8.2.3 Passwords/passphrases must have complexity and strength.		1	2		no data
💼 8.2.4 Change user passwords/passphrases at least once every 90 days.			2		no data
💼 8.2.5 Do not allow an individual to submit a new password/passphrase that is the same as any of the last four passwords/passphrases he or she has used.		1	2		no data
💼 8.2.6 Set passwords/passphrases for first-time use and upon reset to a unique value for each user, and change immediately after the first use.					no data

Policies (1)

Policy	Logic Count	Flags	Compliance
🛡️ AWS IAM User MFA is not enabled for all users with console password🟢	1	🟢 x6	no data