Use only individual accounts and never share passwords
User accounts and their corresponding unique passwords need to remain strictly confidential in order to guarantee security. Shared accounts carry a risk of diluting responsibility and mean an absence of traceability of operations performed under that account.
Assigning accounts to single individuals, i.e. not using (shared) generic accounts creates user accountability. One user can have several accounts for several levels of access, but each of these accounts is strictly personal.