Aqua CSPM

Users MFA Enabled

Quick Info

Plugin TitleUsers MFA Enabled
CloudORACLE
CategoryIdentity
DescriptionEnsures a multi-factor authentication device is enabled for all users within the account.
More InfoUser accounts should have an MFA device setup to enable two-factor authentication.
ORACLE Linkhttps://docs.cloud.oracle.com/iaas/Content/Identity/Tasks/usingmfa.htm
Recommended ActionEnable an MFA device for the user account.

Detailed Remediation Steps

  1. Log in to the Oracle Cloud Platform Console.
  2. Scroll down the left navigation panel and choose the “Identity” under the “Governance and Administration.”
  3. On the Identity menu, select the “Users” option.
  4. On the “Users” page, select the “User” and click on the “Name” as a link to access the user settings.
  5. On the selected user, check if it’s showing to “Enable Multi-Factor Authentication”.
  6. Repeat steps number 2 - 5 to check other users in the account.
  7. Navigate to “Identity” under the “Governance and Administration”, click on the “Users” settings to enable the “MFA” and select the user on which changes needs to be done.
  8. On the selected user click on the “Enable Multi-Factor Enable Authentication” option at the top.
  9. Follow the next steps as mentioned in “Enable Multi-Factor Enable Authentication” tab and enter the “Verfication code” obtain on your “Authenticator” application and click on the “Verify” button.
  10. Repeat steps number 7 - 9 to enable an MFA device for the user account.