|
5.3 Install and configure security controls when performing account management, based on best practices.
- Mitigates issues associated with users with multiple account/roles and/or shared accounts
- Account policy enforcement
- Credential management
- Group policy
- Password complexity
- Expiration
- Recovery
- Disablement
- Lockout
- Password history
- Password reuse
- Password length
- Generic account prohibition
- Group based privileges
- User assigned privileges
- User access reviews
- Continuous monitoring
|
|
|