Which statement accurately reflects the handling of generic user IDs and shared IDs in system administration?

• A. Generic user IDs are disabled or removed.
• B. Shared user IDs exist for system administration.
• C. Shared and generic IDs are not used to administer any system components.
• D. Group IDs must be used for all critical functions.

Answer: (A)

The key idea here is accountability through unique, traceable access. When generic user IDs or shared accounts are used for system administration, actions cannot be reliably linked to a single person. This undermines auditing, makes it easy for credentials to be misused, and increases risk if someone’s access is shared or reused by others. The proper approach is to disable or remove generic IDs so each administrator uses their own unique user ID with appropriate, least-privilege access. If elevated or automated tasks must run without a person present, use separate, tightly controlled service or administrator accounts that are managed and audited, rather than sharing a single generic account. The other options imply keeping or relying on shared or generic access or overemphasize group IDs, which does not support the necessary traceability and control.