Your security posture will thank you.
If one person’s laptop is infected with info-stealing malware, and that laptop contains the "kshared password" to your AWS console, then person in the sharing group is compromised simultaneously. The attacker doesn't need to phish five people; they only need to breach the weakest link. kshared password
If you absolutely must have a true kshared password (legacy on-premise hardware, for example), set a mandatory rotation policy: every 30 days, the password changes, and only the password manager’s “share” feature distributes the new one. Your security posture will thank you
Treat KShared Passwords as a temporary, high-risk workaround. Transition to per-user identities, enforce least privilege, use password managers and MFA, and apply logging and rotation to reduce risk. the password changes