1 個回答
- 最新
- 最多得票
- 最多評論
0
Hi Martin,
One way to overcome this is to create an OU which is only used to house new accounts temporarily. This OU should not have the Disallow Actions as a Root User
guardrail enabled, allowing your platform team to login and activate MFA. Then the account is ready to move to it's actual intended OU, which does have the Disallow Actions as a Root User
enabled. Not a perfect solution, but it is one that I have seen with other customers.
Hope this helps!
已回答 2 年前
相關內容
- 已提問 1 年前
- AWS 官方已更新 2 年前
- AWS 官方已更新 7 個月前