πDay 6 of 100 Days AWS Cloud Challenge-Lab-4 Strengthening AWS Account Security: Enable MFA
Table of contents
- π Synopsis
- π Prerequisites
- π‘ Plan of Execution
- π Importance of enabling MFA?
- π How to Enable MFA for the AWS Account?
- π How to validate if MFA has been enabled successfully?
- π Best practices to Secure a Root Account?
- π₯³ conclusion
- πThanks for Reading π
- Please follow for more such contentπ .
π Synopsis
In this blog, we will learn how to enable MFA for your Account
π Prerequisites
π AWS Account.
π Internet Connection.
π Download Twilio Authy authenticator from the App Store or Play Store
π‘ Plan of Execution
π Importance of enabling MFA?
π How to Enable MFA for the AWS Account?
π How to validate if MFA has been enabled successfully?
π Best practices to Secure a Root Account?
π₯³ conclusion
π Importance of enabling MFA?
π‘ Scenario: An Unauthorized person gets complete access to your AWS resources, compromising sensitive data, resources and services.
π‘ Problem: An Unauthorized person gets complete access to your AWS resources, compromising sensitive data, resources and services.
π‘ Solution: To mitigate the risks from unauthorized access, itβs mandatory to add an extra layer of protection(2FA) for the AWS Account by enabling Multi-Factor-Authentication(MFA).
π How to Enable MFA for the AWS Account?
We can see, a successful notification post adding the MFA.
π How to validate if MFA has been enabled successfully?
Now, we have logged in to the AWS Management Console post-MFA validation.
π Best practices to Secure a Root Account?
Enable two-factor Authentication for the root account as it adds an extra layer of protection to your account.
Never share these credentials with anyone.
Donβt use the root account for daily activities.
Create an IAM User and Assign only the required ADMIN access for the IAM ADMIN User.
π₯³ conclusion
We have successfully enabled the Multi-Factor Authentication for the root account and we have validated the MFA access by re-logging into the account. In the next blog, we will create an IAM user and assign the required policies so that we can stop using the root account for day-to-day tasks.
πThanks for Reading π
π I want to express my heartfelt appreciation to every one of you who took the time to read my blog. I am truly grateful for your presence on this learning journey. π
π‘ I would also like to extend an open invitation for feedback. As I continue to share my knowledge and insights, I understand that growth comes from acknowledging and learning from our mistakes. So, if you spot any errors or have suggestions for improvement, I genuinely encourage you to correct me.