Unique privileged user accounts are used for administering individual server applications.
Topic
Privileged access to systems
Applicable to
all
History
Priority
must
Sep 2024
Unique privileged user accounts are used for administering individual server applications.
References to ‘privileged accounts’ were changed to ‘privileged user accounts’ in order to more closely match Microsoft Active Directory account types (i.e. ‘users’ and ‘computers’). Note, the definition of privileged accounts (which referred to such accounts as being a combination of privileged user accounts and privileged service accounts) has been removed. Privileged service accounts are now treated as a subset of privileged user accounts.
Mar 2023
Unique privileged accounts are used for administering individual server applications.
An existing control relating to database administrator accounts being used exclusively for database administrative activities was expanded to ensure that unique privileged accounts are used for administration of individual server applications.
2015
Database administrator accounts must be used exclusively for administrative tasks, withstandard database accounts used for general purpose interactions with databases.