Control: 1.2 Ensure that multi-factor authentication is enabled for all non-service accounts
Setup multi-factor authentication for Google Cloud Platform accounts.
Multi-factor authentication requires more than one mechanism to authenticate a user. This secures user logins from attackers exploiting stolen or weak credentials. By default, multi-factor authentication is not set.
For each Google Cloud Platform project, folder, or organization
- Identify non-service accounts.
- Manually verify that multi-factor authentication for each account is set.
Refer here for more details.
steampipe check gcp_compliance.control.cis_v120_1_2
This control uses a named query:manual_control