This guide will teach you how to set up or Enable MFA on AWS Account.
Multi-Factor Authentication (MFA) is a security measure that requires users to provide two or more forms of identification so that they can access a system or account. In most cases, single-factor authentication is vulnerable that may be compromised so this additional layer of security helps to protect against unauthorized access to an account. MFA uses a combination of different forms of credentials such as a password, smartphone or hardware token or biometric authentication like fingerprint or face recognition. This way you can prevent any sort of unauthorized access to an account from a potential attacker.
To set up an MFA (Multi-Factor Authentication) on an AWS account, follow the procedure stated below. Login to your AWS Management Console on the official website.
Navigate to the IAM (Identity and Access Management) service from the services menu in the dashboard. You can also search IAM on the search bar as well.
Select “Users” from the left-hand menu on the Dashboard. Choose the user for which you want to enable MFA.
Click on the “Security Credentials” tab, then under the “Multi-Factor Authentication” section, click on the “Activate MFA” button.
Select “Virtual MFA device” as the MFA type on the Manage MFA device pop-up window and click on “Continue”. You can select any of the other two options if you have those particular devices.
Now install an authenticator application on your smartphone or laptop. AWS always recommends using the Google Authenticator application, but you can also use other apps such as Authy or LastPass Authenticator. Open the authenticator app and scan the QR code displayed on the AWS screen.
Alternatively, you can manually enter the MFA serial number and secret key displayed on the screen into the authenticator app. Now AWS will prompt you to test the device by entering the code generated by the authenticator app. Enter the two codes generated by the app and click on the “Assign MFA” button.
You will see a confirmation message indicating that the Virtual MFA device has been assigned. Now keep your MFA device secure and accessible only to you in order to prevent unauthorized access to your AWS account.