Using Cloud Guard
Use Cloud Guard to detect users who don't have MFA enabled, and local users who have authenticated without using MFA.
- User does not have MFA enabled
Alert when a user doesn't have multifactor authentication (MFA) enabled. Risk level is CRITICAL. See User does not have MFA enabled in the Cloud Guard service documentation.
- Local user authenticated without MFA
Alert when a local user who doesn't have multifactor authentication (MFA) enabled is authenticated. Risk level is HIGH. See Local user authenticated without MFA in the Cloud Guard service documentation.
In Cloud Guard, filter the list of problems detected to find out the users who triggered these alerts so that you can take the appropriate actions to ensure that MFA is enabled and being used by all users. See Processing and Resolving Problems on the Problems Page in the Cloud Guard documentation.