Securing user accounts is more critical than ever, especially within identity providers like Google Workspace, which enable access to vast amounts of sensitive information and resources. 

One of the most effective measures to securing access across your Google Cloud environment is to implement and enforce multi-factor authentication (MFA). MFA provides an added layer of security by requiring users to verify their identity through multiple means, significantly reducing the risk of unauthorized access, even if passwords are compromised. However, to maintain a strong security posture, it’s essential to regularly monitor and ensure that all user accounts are leveraging MFA.

This guide walks you through a simple three-step process using Google Cloud Shell to retrieve a list of all Google Workspace users who are not MFA-enforced or dormant.

You will learn how to: 

• Quickly identify at-risk accounts lacking MFA
• See who your dormant users are
• Enhance your overall security and meet compliance requirements

Download the guide to learn how to use what you already have so that you can bolster your Google Workspace security!