Vulnerabilities
Misconfiguration
Runtime Security
Compliance
AWS > Iam >

Enforce Root Hardware Mfa

MEDIUM
Source
Trivy
Frameworks

CIS AWS 1.4

ID
AVD-AWS-0165

The “root” account has unrestricted access to all resources in the AWS account. It is highly

recommended that this account have hardware MFA enabled.

Hardware MFA adds an extra layer of protection on top of a user name and password. With MFA enabled, when a user signs in to an AWS website, they’re prompted for their user name and password and for an authentication code from their AWS MFA device.

Impact

Compromise of the root account compromises the entire AWS account and all resources within it.

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.
Copyright © 2023 Aqua Security Software Ltd.   Privacy Policy | Terms of Use