infrastructure
Unique account authentication enforced
All system authentication requires unique username/password or authorized SSH keys.
PassingCritical RiskSemi-Automated
Owner
Infrastructure Team
Last Tested
10/6/2025
Test Frequency
Continuous
Maturity Level
Level 4 / 5
Framework Mappings
Evidence (5)
MFA on GitHub
This test verifies that multi-factor authentication (MFA) is enabled on all GitHub accounts that are not marked as external or non-human.
ACCOUNT SECURITY•TEST
MFA on Google Workspace
This test verifies that all members of a Google Workspace organization have multi-factor authentication (MFA) enabled, except for users who were recently added within the configured SLA.
ACCOUNT SECURITY•TEST
MFA on infrastructure provider
This test checks whether all AWS accounts with a password have multi-factor authentication (MFA) enabled.
ACCOUNT SECURITY•TEST
MFA on infrastructure root accounts (AWS)
This test verifies that Multi-Factor Authentication (MFA) is enabled on AWS root accounts that have console password access enabled, excluding AWS GovCloud accounts.
ACCOUNT SECURITY•TEST
Unique production database authentication enforced
Vanta indicates that MFA is not enabled on the following GWS user accounts: Careers Mesta, Compliance Operations, Media Contact, Mesta Security, and Shubhada Bhat. Please enable MFA for these accounts and provide updated evidence confirming compliance.
CUSTOM•EVIDENCE_REQUEST
Related Policies
Control Information
- Control ID
- unique-account-authentication-enforced
- Category
- INFRASTRUCTURE
- Family
- infrastructure
- Last Updated
- 10/6/2025