💼 8.3 Secure all individual non-console administrative access and all remote access to the CDE using multi-factor authentication.
- ID:
/frameworks/pci-dss-v3.2.1/08/03
Stats
not available
Description
Multi-factor authentication requires that a minimum of two of the three authentication methods (see Requirement 8.2 for descriptions of authentication methods) be used for authentication. Using one factor twice (for example, using two separate passwords) is not considered multi-factor authentication.
Similar
- Internal
- ID:
dec-c-18be0c23
- ID:
Sub Sections
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 8.3.1 Incorporate multi-factor authentication for all non-console access into the CDE for personnel with administrative access. | 3 | no data | |||
| 💼 8.3.2 Incorporate multi-factor authentication for all remote network access originating from outside the entity's network. | 1 | no data |
Policies (1)
| Policy | Logic Count | Flags | Compliance |
|---|---|---|---|
| 🛡️ Google Accounts are not configured with MFA🟢⚪ | 🟢 x2, ⚪ x1 | no data |