Ensure that Multi-Factor Authentication (MFA) is enabled to secure your Cloud Conformity account by adding an extra layer of protection on top of your existing credentials (email address and password) in order to achieve stronger authentication. The Multi-Factor Authentication is a simple, yet efficient method of verifying your Cloud Conformity user identity by requiring an authentication code generated by an MFA device. We highly recommend that you use Multi-Factor Authentication every time you sign in to your Cloud Conformity account in order to secure the access to your resources and adhere to security best practices.
This rule resolution is part of the Conformity solution.
Security Having an MFA-protected account represents the best way to safeguard your Cloud Conformity account against malicious users, as MFA adds extra security to the authentication process by forcing you to enter a unique passcode generated by an approved authentication device every time you sign in to your account.
Audit
To determine if your Cloud Conformity account is MFA-protected, perform the following actions:
Note: Checking MFA status using Cloud Conformity API is disabled for security reasons. The operation can be implemented only using the Cloud Conformity dashboard.Remediation / Resolution
To enable Multi-Factor Authentication (MFA) access protection for your Cloud Conformity account, perform the following:
Note 1: As example, this guide will use Google Authenticator as MFA device since is one of the most popular MFA virtual applications.Note 2: Installing and activating a Multi-Factor Authentication device for a Cloud Conformity account using the API is not currently supported.
References
- Cloud Conformity Documentation
- Help
- Cloud Conformity User Has Signed In Without MFA
- Install Google Authenticator