IA-2 (1) - Network Access to Privileged Accounts

Control requirements

IA-2 (1) - 0

The information system implements multifactor authentication for network access to privileged accounts.

Implementation guidance

See the resources that follow to learn more about how to implement this control.

• IBM Cloud account setup
• Running operator actions through a bastion host
• Working with Red Hat OpenShift on IBM Cloud

IBM Cloud for Financial Services profile

The rules related to this control that follow are part of the IBM Cloud for Financial Services v1.2.0 profile in IBM Cloud® Security and Compliance Center.

• Check whether App ID multifactor authentication (MFA) is enabled for Cloud Directory users
• Check whether multifactor authentication (MFA) is enabled at the account level