Why is the "GCP 1.2 Ensure that multi-factor authentication is enabled for all non-service accounts (Not Scored)" compliance recommendation listed in Advanced Suppression but is not listed in the main Compliance Report panel?
This compliance recommendation is listed in a report only when the integration is at the organization level and the organization has no project. Here is the GCP 1.2 compliance recommendation as listed in Advanced Suppression.
Here are the compliance reports for integration at the organization level when the organization has a project. Note that the GCP 1.2 compliance recommendation is not listed.