πΌ 8.2.6 Inactive user accounts are removed or disabled within 90 days of inactivity.
-
Contextual name: πΌ 8.2.6 Inactive user accounts are removed or disabled within 90 days of inactivity.
-
ID:
/frameworks/pci-dss-v4.0/08/02/06 -
Located in: πΌ 8.2 User identification and related accounts for users and administrators are strictly managed throughout an account's lifecycle.
Descriptionβ
Empty...
Similarβ
- Sections
/frameworks/pci-dss-v3.2.1/08/01/04/frameworks/pci-dss-v4.0.1/08/02/06
Similar Sections (Take Policies From)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ PCI DSS v3.2.1 β πΌ 8.1.4 Remove/disable inactive user accounts within 90 days. | 1 | |||
| πΌ PCI DSS v4.0.1 β πΌ 8.2.6 Inactive user accounts are removed or disabled within 90 days of inactivity. | 1 |
Similar Sections (Give Policies To)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ PCI DSS v3.2.1 β πΌ 8.1.4 Remove/disable inactive user accounts within 90 days. | 1 | |||
| πΌ PCI DSS v4.0.1 β πΌ 8.2.6 Inactive user accounts are removed or disabled within 90 days of inactivity. | 1 |
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|
Policies (1)β
| Policy | Logic Count | Flags |
|---|---|---|
| π AWS IAM User with credentials unused for 45 days or more is not disabled π’ | 1 | π’ x6 |