Protect nonlocal maintenance sessions by employing organization-defined authenticators that are replay resistant.