Skip to content
By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post
About re:Post

CLI command 'aws iam list-mfa-devices' does not return MFA devices belonging to the account root user

1

AWS CLI command aws iam list-mfa-devices does not appear to return MFA devices belonging to the account root user.

aws iam list-mfa-devices --user-name root
An error occurred (NoSuchEntity) when calling the ListMFADevices operation: The user with name root cannot be found.

However, CLI command aws iam list-virtual-mfa-devices does return virtual MFA devices belonging to the account root user.

Is this by design?

Thanks!

Topics
Management & GovernanceSecurity, Identity, & Compliance
Tags
AWS Command Line InterfaceAWS Identity and Access Management
Language
English
asked 3 years ago1.3K views
1 Answer
1
Accepted Answer

Yes, it is by design. Note that root is not an IAM user, which is why it cannot find the user. aws iam list-users does not list root in the results.

EXPERT
answered 3 years ago
AWS
EXPERT
reviewed 3 years ago
  • User-0929887
    3 years ago

    Got it, thanks. Is there any way to see if a hardware MFA device is configured for the root account via the CLI?

  • Ben Whaley EXPERT
    3 years ago

    Not to the best of my knowledge, unfortunately. The root user is configured in the console.

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Relevant content