Root User without Hardware MFA

Authentication

Root User without Hardware MFA

Platform(s)

Compliance Frameworks

AWS CIS
AWS Foundational Security Best Practices Controls
CCM-CSA
cis_8
CSA CCM
Data Security Posture Management (DSPM) Best Practices
essential_8_au
essential_8_au_level_1
essential_8_au_level_2
Mitre ATT&CK
mpa
New Zealand Information Security Manual
NIST 800-171
NIST 800-53
Orca Best Practices
pipeda
UK Cyber Essentials

Description

The root user account is the most privileged user in an AWS account. MFA adds an extra layer of protection on top of a user name and password. With MFA enabled, when a user signs in to an AWS website, they will be prompted for their user name and password as well as for an authentication code from their AWS MFA device. For Level 2, it is recommended that the root user account be protected with a hardware MFA.

Root User without Hardware MFA

Description

Need help?

CLOUD SECURITY PLATFORM

TECHNOLOGY ECOSYSTEM

By Solution

By Industry

COMPARISONS