💼 8.2 User identification and related accounts for users and administrators are strictly managed throughout an account's lifecycle.

• Contextual name: 💼 8.2 User identification and related accounts for users and administrators are strictly managed throughout an account's lifecycle.

• ID: /frameworks/pci-dss-v4.0/08/02

• Located in: 💼 8 Identify Users and Authenticate Access to System Components

Description

Empty...

Similar

• Internal
  • ID: dec-b-611a3d40

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags
💼 8.2.1 All users are assigned a unique ID before access to system components or cardholder data is allowed.			2
💼 8.2.2 Group, shared, or generic accounts, or other shared authentication credentials are only used when necessary on an exception basis.		2	2
💼 8.2.3 Service providers with remote access to customer premises use unique authentication factors for each customer premises.
💼 8.2.4 Addition, deletion, and modification of user IDs, authentication factors, and other identifier objects are managed.			1
💼 8.2.5 Access for terminated users is immediately revoked.
💼 8.2.6 Inactive user accounts are removed or disabled within 90 days of inactivity.			1
💼 8.2.7 Accounts used by third parties to access, support, or maintain system components via remote access are managed.
💼 8.2.8 If a user session has been idle for more than 15 minutes, the user is required to re-authenticate to re-activate the terminal or session.