💼 8.6 Where other authentication mechanisms are used, use of these mechanisms must be assigned.

• Contextual name: 💼 8.6 Where other authentication mechanisms are used, use of these mechanisms must be assigned.

• ID: /frameworks/pci-dss-v3.2.1/08/06

• Located in: 💼 8 Identify and authenticate access to system components

Description

As follows:

• Authentication mechanisms must be assigned to an individual account and not shared among multiple accounts.
• Physical and/or logical controls must be in place to ensure only the intended account can use that mechanism to gain access.

Similar

• Sections
  • /frameworks/pci-dss-v4.0/08/03/11
• Internal
  • ID: dec-c-8361a878

Similar Sections (Take Policies From)

Section	Sub Sections	Internal Rules	Policies	Flags
💼 PCI DSS v4.0 → 💼 8.3.11 Where authentication factors such as physical or logical security tokens, smart cards, or certificates are used factors are assigned to an individual user and not shared among multiple users, and physical and/or logical controls ensure only the intended user can use that factor to gain access.		1	1

Similar Sections (Give Policies To)

Section	Sub Sections	Internal Rules	Policies	Flags
💼 PCI DSS v4.0 → 💼 8.3.11 Where authentication factors such as physical or logical security tokens, smart cards, or certificates are used factors are assigned to an individual user and not shared among multiple users, and physical and/or logical controls ensure only the intended user can use that factor to gain access.		1	1

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags

Policies (1)

Policy	Logic Count	Flags
📝 AWS IAM User MFA is not enabled for all users with console password 🟢	1	🟢 x6