maester-tests/cisa/entra/Test-MtCisaPrivilegedPhishResistant.Tests.ps1
|
Describe "CISA" -Tag "MS.AAD", "MS.AAD.3.6", "CISA.MS.AAD.3.6", "CISA", "Security", "Entra ID P1" { It "CISA.MS.AAD.3.6: Phishing-resistant MFA SHALL be required for highly privileged roles." { $result = Test-MtCisaPrivilegedPhishResistant if ($null -ne $result) { $result | Should -Be $true -Because "an enabled conditional access policy for highly privileged roles should require phishing resistant MFA." } } } |