Standard:
YALE-MSS-9.12: Ensure authentication events are associated with an individual and not just an administrative or service account
YALE-MSS-9.12.1: Disable direct login with generic, shared account names ("root", "administrator", "dba", "sa"). The login accounts must meet the account requirements outlined in Yale-MSS-9.3.
Low Risk Endpoint
Required for IA
Moderate Risk Endpoint
Required for IA
High Risk Endpoint
Required for IA
Low Risk Server
Required for IA
Moderate Risk Server
Upcoming
Required for IA
High Risk Server
Upcoming
Required for IA
Low Risk Mobile Device
Not Required
Moderate Risk Mobile Device
Not Required
High Risk Mobile Device
Not Required
Low Risk Network Printer
Not Required
Moderate Risk Network Printer
Not Required
High Risk Network Printer
Not Required
Details
For example, do not SSH as ROOT on Linux, don't RDP as ADMINISTRATOR on Windows.