Standards Group:
YALE-MSS-9: Authentication and Authorization
YALE-MSS-9.1: Ensure all account types are uniquely authenticated
Low Risk Endpoint
Required
Moderate Risk Endpoint
Required
High Risk Endpoint
Required
Low Risk Server
Required
Moderate Risk Server
Required
High Risk Server
Required
Low Risk Mobile Device
Required
Moderate Risk Mobile Device
Required
High Risk Mobile Device
Required
Low Risk Network Printer
Required
Moderate Risk Network Printer
Required
High Risk Network Printer
Required
Details
Authentication verifies the identity of a user, process, or device.
This control applies to user accounts, administrative accounts, and service accounts.
User accounts grant individuals non-privileged access to a system.
Administrative accounts grant individuals privileged access to a system.
Service accounts run applications or services.
Shared accounts are not permitted.
Service accounts must not be used on multiple systems.