Using Nagios to check Github MFA users

We still have a few users to work down before we can run full speed with this, but now we know who to bother.

We still have a few users to work down before we can run full speed with this, but now we know who to bother.

We want all of our users to be using multi-factor authentication to log into our more sensitive things, Github being high among that. We wanted a way to continually check to make sure our users were using MFA, which would catch both new users as well as anyone that had turned theirs off.

Our intern, Caleb, wrote up a Nagios check for us that did just this. Now the number of non-MFA users will display in Nagios and turn our system yellow if someone disables their MFA. We're now alerted whenever someone doesn't have it and can track that user down, without us having to periodically check the Github site.

The below script can be put on a Nagios server and it can keep some additional attention to security in your org as well.