4.3: Ensure the Use of Dedicated Administrative Accounts
CSF v1.1 References:
PF v1.0 References:
Threats Addressed:
Next Version:
- Critical Security Controls Version 8:
- 5.4: Restrict Administrator Privileges to Dedicated Administrator Accounts
Control Statement
Ensure that all users with administrative account access use a dedicated or secondary account for elevated activities. This account should only be used for administrative activities and not internet browsing, email, or similar activities.
[csf.tools Note: For more information on the Critical Security Controls, visit the Center for Internet Security.]