Google Cloud to Require Multifactor Authentication by 2025
Blog post from SSOJet
Google Cloud plans to mandate multifactor authentication (MFA) for all users by the end of 2025, citing research from the US Cybersecurity and Infrastructure Security Agency that shows MFA reduces the likelihood of being hacked by 99%. This requirement will not apply to general consumer accounts but targets those using Google Cloud, driven by the need to combat phishing and credential theft as identified by Google Cloud's Mandiant. The transition will occur in three phases, starting with reminders in November 2024, a requirement for all users signing in with passwords by early 2025, and extending to federated users by the end of 2025. Google will offer flexibility in compliance, allowing MFA through primary identity providers or additional layers via Google accounts. Historically, Google has focused on enhancing security with features like two-factor authentication and passkeys. For organizations, implementing Single Sign-On (SSO) solutions such as those offered by SSOJet can simplify user management and bolster security.
No tracked trend matches for this post yet.