1 回答
- 最新
- 投票最多
- 评论最多
0
Hi Martin,
One way to overcome this is to create an OU which is only used to house new accounts temporarily. This OU should not have the Disallow Actions as a Root User
guardrail enabled, allowing your platform team to login and activate MFA. Then the account is ready to move to it's actual intended OU, which does have the Disallow Actions as a Root User
enabled. Not a perfect solution, but it is one that I have seen with other customers.
Hope this helps!
已回答 2 年前
相关内容
- AWS 官方已更新 3 年前