Secure AWS accounts require Multi Factor Authentication. Polices are added to accounts that allow users to add their own MFA device to their account. Account access will be limited until an MFA device is enabled.
Steps to enable an MFA device:
1. Log the into the AWS account. A password reset may be required 2. From the console, choose the Identity and Access Management tab 3. From the left side menu, choose your user name 4. Choose the Security Credentials tab 6. Choose the pencil beside **Assigned MFA device** 7. Virtual MFA device is the default. 8. Choose Next Step * Suggested virtual MFA devices: * Google Authenticator App * 1password 8. Use your virtual MFA device to finalize the set up
Users must login with the MFA device to lift account restrictions.