Hey everyone. Quick question for you all. We have enabled MFA for user accounts for Office 365. CUI data is stored in an encrypted, access controlled file share (that's not exactly how it's setup, but close enough). This file share does NOT have MFA configured for it. Are we non-compliant because MFA is not enabled to access the system that stores the CUI data? Or are we compliant as it's setup on user accounts already.