💼 6.1.2 Ensure that 'multifactor authentication' is 'enabled' for all users (Manual)

Contextual name: 💼 6.1.2 Ensure that 'multifactor authentication' is 'enabled' for all users (Manual)
ID: /frameworks/cis-azure-v4.0.0/06/01/02
Located in: 💼 6.1 Security Defaults (Per-User MFA)

Description

[IMPORTANT - Please read the section overview: If your organization pays for Microsoft Entra ID licensing (included in Microsoft 365 E3, E5, F5, or Business Premium, and EM&S E3 or E5 licenses) and CAN use Conditional Access, ignore the recommendations in this section and proceed to the Conditional Access section.] Enable multifactor authentication for all users. Note: Since 2024, Azure has been rolling out mandatory multifactor authentication. For more information: • https://azure.microsoft.com/en-us/blog/announcing-mandatory-multi-factor-authentication-for-azure-sign-in • https://learn.microsoft.com/en-us/entra/identity/authentication/concept-mandatory-multifactor-authentication

Sections
- /frameworks/cis-azure-v3.0.0/02/01/02
- /frameworks/cis-azure-v3.0.0/02/01/03

Section	Sub Sections	Internal Rules	Policies	Flags
💼 CIS Azure v3.0.0 → 💼 2.1.2 Ensure that 'Multi-Factor Auth Status' is 'Enabled' for all Privileged Users (Manual)			1
💼 CIS Azure v3.0.0 → 💼 2.1.3 Ensure that 'Multi-Factor Auth Status' is 'Enabled' for all Non-Privileged Users (Manual)			1

Section	Sub Sections	Internal Rules	Policies	Flags
💼 CIS Azure v3.0.0 → 💼 2.1.2 Ensure that 'Multi-Factor Auth Status' is 'Enabled' for all Privileged Users (Manual)			1
💼 CIS Azure v3.0.0 → 💼 2.1.3 Ensure that 'Multi-Factor Auth Status' is 'Enabled' for all Non-Privileged Users (Manual)			1

Section	Sub Sections	Internal Rules	Policies	Flags

Policy	Logic Count	Flags
📝 Microsoft Entra ID User Multi-Factor Auth Status is not enabled 🟢		🟢 x3