Documentation - V-222529

V-222529

Application Security and Development Security Technical Implementation Guide

CAT II

Title

The application must ensure users are authenticated with an individual authenticator prior to using a group authenticator.

Description

<VulnDiscussion>To ensure individual accountability and prevent unauthorized access, application users must be individually identified and authenticated. Individual accountability mandates that each user is uniquely identified. A group authenticator is a shared account or some other form of authentication that allows multiple unique individuals to access the application using a single account. If an application allows or provides for group authenticators, it must first individually authenticat...

Fix Text (Documentation Requirement)

Design and configure the application to individually authenticate group account members prior to allowing access.

View Full STIG Details →

Documentation Status

Status

Documented Verified - link to a ship document Awaiting Review Evidence submitted, needs verification Pending Needs documentation Not Required Documentation not needed Not Applicable STIG doesn't apply

Notes (Optional)

Cancel