1 Answer
- Newest
- Most votes
- Most comments
0
Every AWS account has a root user. This will be why it’s being reported. True when you create an account in an org there is no password but an email address is required. The way to log into the account is to perform a password recovery.
Usual to satisfy the AWS control each account would require an MFA device adding to root.
Aws CONFIG and backed with security hub will also provide the same insight if configured across the org.
Relevant content
- asked a year ago
- asked 23 days ago
- AWS OFFICIALUpdated 4 months ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated 4 months ago