Azure_IAM_22

Ensure that Require Multi - Factor Auth to join devices is set to Yes

Description

Joining devices to the active directory should require Multi-factor authentication.

Remediation

Perform the following in the Azure Console:

  1. Go to Azure Active Directory
  2. Go to Users and group
  3. Go to Device settings
  4. Ensure that Require Multi-Factor Auth to join devices is set to Yes

References:

  1. https://blogs.technet.microsoft.com/janketil/2016/02/29/azure-mfa-for-enrollment-in-intune-and-azure-ad-device-registration-explained/

Service

IAM

Severity

Medium

Compliance

Mapping

We are now live on AWS Marketplace.
The integrated view of your cloud infrastructure is now easier than ever!