> For the complete documentation index, see [llms.txt](https://docs.sprinto.com/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://docs.sprinto.com/monitors/authentication-and-access-monitors/how-to-resolve-sprinto-check-for-enabling-multi-factor-authentication-mfa-on-infrastructure-services.md).

# How to resolve Sprinto check for enabling Multi factor Authentication (MFA) on Infrastructure services

### About <a href="#about" id="about"></a>

Sprinto check: {\*service provider name\*} user should have MFA enabled

The above Sprinto check fails for users who don't have Multi-Factor Authentication (MFA) enabled on their accounts for any configured critical system under the Access section. The checks fail at an individual staff member level and automatically pass if the user updates their account security configuration.

### Purpose <a href="#purpose" id="purpose"></a>

The purpose of the check is to enforce MFA on all users' accounts that access any critical service. The MFA adds an additional layer of user authentication, ensuring enhanced security and data integrity even in case of theft of user credentials.

### How to fix <a href="#how-to-fix" id="how-to-fix"></a>

The staff members need to configure MFA on the user account to fix the check. Below is reference documentation to enable MFA for the respected services:

* [Okta](https://developer.okta.com/docs/guides/mfa/-/main/)
* [Zoho](https://www.zoho.com/mail/how-to/setup-two-factor-authentication.html)
* [Office365](https://learn.microsoft.com/en-us/microsoft-365/admin/security-and-compliance/set-up-multi-factor-authentication?view=o365-worldwide)
* [GitLab](https://docs.gitlab.com/ee/user/profile/account/two_factor_authentication.html)
* [AWS CodeCommit](https://aws.amazon.com/blogs/devops/secure-aws-codecommit-with-multi-factor-authentication/)
* [Google Cloud Platform (GCP)](https://cloud.google.com/identity-platform/docs/web/mfa#:~:text=%3D%20%27myTenantId1%27%3B-,Enabling%20multi%2Dfactor%20authentication,in%20the%20Google%20Cloud%20console.\&text=In%20the%20box%20titled%20SMS,%2DFactor%20Authentication%2C%20click%20Enable.\))
* [Bitbucket](https://support.atlassian.com/bitbucket-cloud/docs/enable-two-step-verification/)
* [Google Suite (GSuite)](https://support.google.com/a/answer/9176657?hl=en)
* [AWS](https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_mfa_enable_virtual.html)
* [GitHub (Organization)](https://docs.github.com/en/authentication/securing-your-account-with-two-factor-authentication-2fa/configuring-two-factor-authentication)
* [GitHub (User)](https://docs.github.com/en/authentication/securing-your-account-with-two-factor-authentication-2fa/configuring-two-factor-authentication)
* [Mongo Atlas](https://www.mongodb.com/docs/atlas/security-multi-factor-authentication/#prerequisites)
* [Netlify](https://docs.netlify.com/security/secure-netlify-access/enforce-2fa/)
* [Sentry](https://docs.sentry.io/organization/authentication/two-factor-authentication/)

#### Additional workaround <a href="#additional-workaround" id="additional-workaround"></a>

For any reason, if any user account cannot configure MFA, you can take the following action against the above Sprinto check:

* Special case: Mark the check as a special case with details and relevant evidence (Optional). You can mark them as special cases for a defined time period or forever. Refer to the[ marking checks as a special case](https://sprinto.freshdesk.com/support/solutions/articles/72000632095-how-to-mark-a-sprinto-check-as-a-special-case) guide for detailed instructions.
* External evidence upload: If the user's status does not update automatically, you can upload external evidence against the check to pass it.

### Support <a href="#support" id="support"></a>

Please get in touch with our [support team](mailto:www.support@sprinto.com) if you have any queries related to enabling MFA or need any assistance.


---

# Agent Instructions
This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com.

## Querying This Documentation
If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.sprinto.com/monitors/authentication-and-access-monitors/how-to-resolve-sprinto-check-for-enabling-multi-factor-authentication-mfa-on-infrastructure-services.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.