Which statement best describes the requirement for avoiding generic and shared IDs in system administration?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $24.99Unlock all

Prepare for the PCI Approved Scanning Vendor (ASV) Test. Study with flashcards, multiple choice questions, hints, and explanations. Get exam ready!

Multiple Choice

Which statement best describes the requirement for avoiding generic and shared IDs in system administration?

Explanation:
The idea being tested is accountability and traceability in system administration. To keep actions attributable to a specific person, you avoid generic or shared accounts and require individual, unique admin credentials. Disabling or removing generic IDs, ensuring there are no shared IDs, and not using such IDs to administer components means every privileged action can be tied to a particular administrator, which supports proper auditing, monitoring, and the ability to revoke access promptly. Using generic IDs for convenience undermines accountability because it hides who actually performed an action. Allowing shared IDs without an audit trail defeats traceability, making it impossible to determine responsibility for changes or incidents. Relying on default credentials is insecure and violates best practices for access control, increasing the risk of unauthorized access.

The idea being tested is accountability and traceability in system administration. To keep actions attributable to a specific person, you avoid generic or shared accounts and require individual, unique admin credentials. Disabling or removing generic IDs, ensuring there are no shared IDs, and not using such IDs to administer components means every privileged action can be tied to a particular administrator, which supports proper auditing, monitoring, and the ability to revoke access promptly.

Using generic IDs for convenience undermines accountability because it hides who actually performed an action. Allowing shared IDs without an audit trail defeats traceability, making it impossible to determine responsibility for changes or incidents. Relying on default credentials is insecure and violates best practices for access control, increasing the risk of unauthorized access.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy