Overview:
The organization only permits the use of shared/group accounts that meet [Assignment: organization-defined conditions for establishing shared/group accounts].
Action Items:
1) Define conditions for use of shared/group accounts if utilized
Related Documents:
1) Access Control Policy
2) Identity and Access Management Policy
Additional Guidance:
Moderate FedRAMP-Defined Assignment / Selection Parameters
none
Moderate Additional FedRAMP Requirements and Guidance
AC-2 (9) Required if shared/group accounts are deployed
Article ID: 17
Created: September 25, 2022
Last Updated: September 26, 2022
Author: Matthew Burdick
Online URL: http://www.compliancewiki.org/article/fedramp-restrictions-on-use-of-shared-groups-accounts-ac-2-9-17.html