How to resolve Sprinto check for enabling Multi factor Authentication (MFA) on Infrastructure services

In this article:

• About

• Purpose

• How to fix

  • Additional workaround

• Support

About

Sprinto check: {*service provider name*} user should have MFA enabled

The above Sprinto check fails for users who don't have Multi-Factor Authentication (MFA) enabled on their accounts for any configured critical system under the Access section. The checks fail at an individual staff member level and automatically pass if the user updates their account security configuration.

Purpose

The purpose of the check is to enforce MFA on all users' accounts that access any critical service. The MFA adds an additional layer of user authentication, ensuring enhanced security and data integrity even in case of theft of user credentials.

How to fix

The staff members need to configure MFA on the user account to fix the check. Below is reference documentation to enable MFA for the respected services:

• Okta

• Zoho

• Office365

• GitLab

• AWS CodeCommit

• Google Cloud Platform (GCP)

• Bitbucket

• Google Suite (GSuite)

• AWS

• GitHub (Organization)

• GitHub (User)

• Mongo Atlas

• Netlify

• Sentry

Additional workaround

For any reason, if any user account cannot configure MFA, you can take the following action against the above Sprinto check:

• Special case: Mark the check as a special case with details and relevant evidence (Optional). You can mark them as special cases for a defined time period or forever. Refer to the marking checks as a special case guide for detailed instructions.

• External evidence upload: If the user's status does not update automatically, you can upload external evidence against the check to pass it.

Support

Please get in touch with our support team if you have any queries related to enabling MFA or need any assistance.