π Google Accounts are not configured with MFA π’
- Contextual name: π Google Accounts are not configured with MFA π’
- ID:
/ce/ca/google/iam/multi-factor-authentication - Located in: π Google IAM
Flagsβ
- π’ Impossible policy
- π’ Policy with categories
- π’ Policy with type
Our Metadataβ
- Policy Type:
COMPLIANCE_POLICY - Policy Category:
SECURITY
Similar Policiesβ
- Cloud Conformity
Descriptionβ
Descriptionβ
Setup multi-factor authentication for Google Cloud Platform accounts.
Rationaleβ
Multi-factor authentication requires more than one mechanism to authenticate a user. This secures user logins from attackers exploiting stolen or weak credentials.
Auditβ
From Google Cloud Consoleβ
For each Google Cloud Platform project, folder, or organization:
- Identify non-service accounts.
- Manually verify that multi-factor authentication for each account is set.
Default Valueβ
By default, multi-factor authentication is not set.
Referencesβ
Remediationβ
Remediationβ
From Google Cloud Consoleβ
For each Google Cloud Platform project:
- Identify non-service accounts.
- Setup multi-factor authentication for each account.
policy.yamlβ
Linked Framework Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ CIS GCP v3.0.0 β πΌ 1.2 Ensure that Multi-Factor Authentication is 'Enabled' for All Non-Service Accounts - Level 1 (Manual) | 1 | |||
| πΌ Cloudaware Framework β πΌ Multi-Factor Authentication (MFA) Implementation | 16 |