IA-2(5)—Individual Authentication With Group Authentication
HIGH
>Control Description
When shared accounts or authenticators are employed, require users to be individually authenticated before granting access to the shared accounts or resources.
>Supplemental Guidance
Individual authentication prior to shared group authentication mitigates the risk of using group accounts or authenticators.