IAM-07—Shared Logical Accounts

>Control Description

Organization restricts the use of shared and group authentication credentials. Authentication credentials for shared and group accounts are reset every 90 days.

Theme

Process

Type

Preventive

Policy/Standard

Access Management Procedure

>Implementation Guidance

1. Design and document a process for Logical Access and requirements for rotation of shared credentials. 2. Ensure that shared secrets were rotated as per the defined policy.

>Testing Procedure

1. Inspect the Logical Access Account Standard to determine whether Organization requires the restriction of shared and group authentication credentials, and that authentication credentials are rotated 2. For a sample of services validate that shared secrets were rotated as per the defined policy and appropriate evidences are available.

>Audit Artifacts

E-IAM-01

E-IAM-10

>Framework Mappings

Cross-framework mappings provided by Adobe CCF Open Source under Creative Commons License.

Ask AI

Configure your API key to use AI features.

>Control Description

Theme

Type

Policy/Standard

>Implementation Guidance

>Testing Procedure

>Audit Artifacts

>Framework Mappings

PCI DSS3

HIPAA Security Rule1

SOC 21

BSI C51

Ask AI

PCI DSS
3

HIPAA Security Rule
1

SOC 2
1

BSI C5
1