User Access Controls. 4.1 The Applicant Institution shall ensure that access to the Materials is controlled through access privileges as set out above. The use of usernames or user accounts and appropriately secure passwords is required as a minimum. Additional appropriate controls may include the use of passwordless technologies and the use of multi-factor authentication. 4.2 The Applicant Institution shall ensure that authorised individuals do not share or use the same user account, and exceptions must be documented with adequate mitigations described and auditable. 4.3 Use of multi-factor authentication is highly recommended to authenticate authorised users of IT systems.
Appears in 2 contracts
Sources: Material Transfer Agreement, Material Transfer Agreement