Drata

This test is part of the <b>MFA on Accounts </b>control that ensures Multi-Factor Authentication (MFA) is being required for access to any sensitive systems or applications. Drata will verify that in order to log in a user needs to provide their ID, a password, and then either a One-Time Password (OTP) or certificate.

If Drata finds an identity within your Identity Provider (IdP) that does not have MFA enabled for all users of the application the test will fail. With a failed test you will receive a list of users that do not have MFA enabled on their account. 

To remediate a failed test you will have the ability to send email reminders within Drata to each user, reminding them that they need to enable MFA on their account. The emails sent from Drata will direct your employees back to their onboarding tasks in Drata, which include instructions on how to enable MFA.

<a href="https://www.onelogin.com/learn/what-is-mfa" rel="nofollow noopener noreferrer" target="_blank">What is Multi-Factor Authentication (MFA)?</a>

<a href="https://support.microsoft.com/en-us/office/set-up-your-microsoft-365-sign-in-for-multi-factor-authentication-ace1d096-61e5-449b-a875-58eb3d74de14" rel="nofollow noopener noreferrer" target="_blank">How to enable MFA on your Office 365 account</a>

<a href="https://www.google.com/landing/2step/" rel="nofollow noopener noreferrer" target="_blank">How to enable MFA on your Google account</a>

<a href="https://support.okta.com/help/s/end-user-adoption-toolkit/setting-up-mfa-for-end-users?language=en_US" rel="nofollow noopener noreferrer" target="_blank">How to enable MFA on your Okta account</a>

- <a href="https://www.onelogin.com/learn/what-is-mfa" rel="nofollow noopener noreferrer" target="_blank">What is Multi-Factor Authentication (MFA)?</a>
- <a href="https://support.microsoft.com/en-us/office/set-up-your-microsoft-365-sign-in-for-multi-factor-authentication-ace1d096-61e5-449b-a875-58eb3d74de14" rel="nofollow noopener noreferrer" target="_blank">How to enable MFA on your Office 365 account</a>
- <a href="https://www.google.com/landing/2step/" rel="nofollow noopener noreferrer" target="_blank">How to enable MFA on your Google account</a>
- <a href="https://support.okta.com/help/s/end-user-adoption-toolkit/setting-up-mfa-for-end-users?language=en_US" rel="nofollow noopener noreferrer" target="_blank">How to enable MFA on your Okta account</a>

Drata uses its synchronized account delegation with your Identity Provider to request a list of all users and determine if MFA is enabled.