Create a Metric Alarm and Filter for Management Console sign-in without MFA

Logging and monitoring

Create a Metric Alarm and Filter for Management Console sign-in without MFA

Risk Level

Informational (4)

Platform(s)

Compliance Frameworks

AWS CIS
Brazilian General Data Protection (LGPD)
CCM-CSA
CSA CCM
GDPR
HITRUST
ISO/IEC 27001
Mitre ATT&CK v12
New Zealand Information Security Manual
NIST 800-171
NIST 800-53
UK Cyber Essentials

Description

Real-time monitoring of API calls can be achieved by directing CloudTrail Logs to CloudWatch Logs and establishing corresponding metric filters and alarms. Monitoring for single-factor console logins will increase visibility into accounts that are not protected by MFA.

Recommended Mitigation

Create a metric filter and alarm for console logins that are not protected by multi-factor authentication (MFA).

Create a Metric Alarm and Filter for Management Console sign-in without MFA

Description

Need help?

CLOUD SECURITY PLATFORM

TECHNOLOGY ECOSYSTEM

By Solution

By Industry

COMPARISONS