Aqua CSPM

Root Hardware MFA

Quick Info

Plugin TitleRoot Hardware MFA
CloudAWS
CategoryIAM
DescriptionEnsures the root account is using a hardware MFA device
More InfoThe root account should use a hardware MFA device for added security, rather than a virtual device which could be more easily compromised.
AWS Linkhttps://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_mfa_enable_physical.html
Recommended ActionEnable a hardware MFA device for the root account and disable any virtual devices

Detailed Remediation Steps