Authentication

Console access users with MFA disabled

Risk Level

Hazardous (3)

Platform(s)
  • N/A

Compliance Frameworks

Description

Multi factor authentication adds an extra layer of security during the login process and makes it harder for unauthorized users to gain access to OCI resources. It was detected that user {OciUser.Name} has MFA disabled. Each user must enable MFA for themselves using a device they will have access to every time they sign in.
  • Recommended Mitigation

    It is recommended to enforce MFA for all users. Since an administrator cannot enable MFA for another user, it can be done by identifying the list of non-compliant users, notifying them or disabling access by resetting password for non-compliant accounts.