πΌ 8.5 Do not use group, shared, or generic IDs, passwords, or other authentication methods.
-
Contextual name: πΌ 8.5 Do not use group, shared, or generic IDs, passwords, or other authentication methods.
-
ID:
/frameworks/pci-dss-v3.2.1/08/05 -
Located in: πΌ 8 Identify and authenticate access to system components
Descriptionβ
As follows:
- Generic user IDs are disabled or removed.
- Shared user IDs do not exist for system administration and other critical functions.
- Shared and generic user IDs are not used to administer any system components.
Similarβ
- Sections
/frameworks/pci-dss-v4.0/08/02/02
- Internal
- ID:
dec-c-c33bf83a
- ID:
Similar Sections (Take Policies From)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ PCI DSS v4.0 β πΌ 8.2.2 Group, shared, or generic accounts, or other shared authentication credentials are only used when necessary on an exception basis. | 1 |
Similar Sections (Give Policies To)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ PCI DSS v4.0 β πΌ 8.2.2 Group, shared, or generic accounts, or other shared authentication credentials are only used when necessary on an exception basis. | 1 |
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ 8.5.1 Service providers with remote access to customer premises must use a unique authentication credential for each customer. |
Policies (1)β
| Policy | Logic Count | Flags |
|---|---|---|
| π AWS Account Root User credentials were used is the last 30 days π΄π’ | 1 | π΄ x1, π’ x6 |
Internal Rulesβ
| Rule | Policies | Flags |
|---|---|---|
| βοΈ dec-x-e58fd8e0 | 1 |