I’m trying to figure out some best practices when it comes to accounts that we as a IT support provider should have on our customer servers when doing work. I’m really against sharing generic accounts to do work, but it becomes really difficult to have each technical person with their named account across several different customers. Each customer has their own active directory on premise, so basically we need to create the same account several times on each customer and manually manage the passwords.
What are the best practices used for a scenario like this? What are the options in your opinion?