Control 1.2 (require MFA) doesn't seem to recognize U2F-based MFA.
cakoose opened this issue · 0 comments
cakoose commented
We switched some of our IAM users from TOTP-based MFA to U2F-based MFA.
Now when we run this tool, we get the following errors for those IAM users:
ControlId 1.2
Description Ensure multi-factor authentication (MFA) is enabled for all IAM users that have a console password
failReason No MFA on users with password.