CSCv6|12.6

Title

Require all remote login access (including VPN, dial-up, and other forms of access that allow login to internal systems) to use two-factor authentication.

Description

Require all remote login access (including VPN, dial-up, and other forms of access that allow login to internal systems) to use two-factor authentication.

Reference Item Details

Reference: CIS Critical Security Controls v6

Category: Boundary Defense

Family: Network

Audit Items

View all Reference Audit Items

Name	Plugin	Audit Name
IAM: GetAccountSummary - 'Root Account MFA enabled'	amazon_aws	Tenable AWS Best Practice Audit
IAM: MFA is enabled for all users that have a console password - 'User Accounts MFA enabled'	amazon_aws	Tenable AWS Best Practice Audit

Detections

Analytics

CSCv6|12.6

Title

Description

Reference Item Details

Audit Items