💼 8.3 Secure all individual non-console administrative access and all remote access to the CDE using multi-factor authentication.

ID: /frameworks/pci-dss-v3.2.1/08/03

Description

Multi-factor authentication requires that a minimum of two of the three authentication methods (see Requirement 8.2 for descriptions of authentication methods) be used for authentication. Using one factor twice (for example, using two separate passwords) is not considered multi-factor authentication.

Similar

Internal
- ID: dec-c-18be0c23

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance
💼 8.3.1 Incorporate multi-factor authentication for all non-console access into the CDE for personnel with administrative access.			3		no data
💼 8.3.2 Incorporate multi-factor authentication for all remote network access originating from outside the entity's network.			1		no data

Policies (1)

Policy	Logic Count	Flags	Compliance
🛡️ Google Accounts are not configured with MFA🟢⚪		🟢 x2, ⚪ x1	no data

Description​

Similar​

Sub Sections​

Policies (1)​

Description

Similar

Sub Sections

Policies (1)