How to validate the Trusted Advisor MFA on Root Account List?
0
Hi Team, One of my customer has 90 sub-accounts which are not root accounts but is being highlighted in the Trusted Advisor MFA on Root not enabled report. How do we verify or validate these sub-accounts which don't really need an MFA and they are all tied up to a single payerid which has MFA enabled.
已提问 6 个月前244 查看次数
1 回答
- 最新
- 投票最多
- 评论最多
0
Every AWS account has a root user. This will be why it’s being reported. True when you create an account in an org there is no password but an email address is required. The way to log into the account is to perform a password recovery.
Usual to satisfy the AWS control each account would require an MFA device adding to root.
Aws CONFIG and backed with security hub will also provide the same insight if configured across the org.
相关内容
AWS 官方已更新 2 年前- AWS 官方已更新 2 年前
- AWS 官方已更新 4 年前
- AWS 官方已更新 4 年前
