Account Protection Mechanisms

Password Policy

Can set up following password policies,
- Set minimum length policy.
- Require specific character types.
- Allow IAM users to reset their own password.
- Prevent password reuse.
- Password expiry.

MFA

Password (OAuth Token) + Security Device together leads to MFA.
AWS allows following MFA devices
- Virtual MFA device (eg: Google Authenticator).
- Security Key (eg: Univeral 2nd Factor (U2F) Security Key).
- Hardware TOTP token (eg: Gemalto, SurePassID).

PreviousIdentity and Access Management (IAM)NextAccess Mechanism of AWS Resources

Last updated 5 months ago