[New Control] GR1 V1 All Cloud User Accounts MFA Check - Githubissues

ssc-spc-ccoe-cei / azure-guardrails-solution-accelerator

This implementation automates reporting to verify compliance with GC Cloud Guardrails. SSC and TBS review the results. Cette mise en œuvre automatise la production de rapports afin de vérifier la conformité aux mesures de sécurité infonuagique du GC. SPC et SCT examinent les résultats.

Other

7 stars 4 forks source link

[New Control] GR1 V1 All Cloud User Accounts MFA Check #183

Closed dutt0 closed 1 month ago

dutt0 commented 1 month ago

Overview/Summary

This new control is to determine if all Azure Native User Accounts have MFA authentication methods for their logins.

This PR fixes/adds/changes/removes

This PR adds a new control for GR1 V1 All Cloud User Accounts MFA Check.

Finds a list of Azure Cloud Native Accounts automatically (MS Entra ID)
determines if every user has at least two valid methods of authentication configured
Excludes breakglass accounts

Breaking Changes

N/A

Testing Evidence

As part of this Pull Request I have

[x] Checked for duplicate Pull Requests
[x] Associated it with relevant GitHub Issues
[x] Ensured my code/branch is up-to-date with the latest changes in the main branch
[x] Performed testing and provided evidence.
[ ] Updated relevant and associated documentation.
[x] Ensure PowerShell module versions have been updated (manually or with the ./tools/Update-ModuleVersions.ps1 script)