CSCv6|5.6

Title

Use multi-factor authentication for all administrative access, including domain administrative access.

Description

Use multi-factor authentication for all administrative access, including domain administrative access. Multi-factor authentication can include a variety of techniques, to include the use of smart cards,certificates, One Time Password (OTP) tokens, biometrics, or other similar authentication methods.

Reference Item Details

Reference: CIS Critical Security Controls v6

Category: Controlled Use of Administrative Privileges

Family: System

Audit Items

View all Reference Audit Items

Name	Plugin	Audit Name
IAM: GetAccountSummary - 'Root Account MFA enabled'	amazon_aws	Tenable AWS Best Practice Audit
IAM: MFA is enabled for all users that have a console password - 'User Accounts MFA enabled'	amazon_aws	Tenable AWS Best Practice Audit

Detections

Analytics

CSCv6|5.6

Title

Description

Reference Item Details

Audit Items