MFA for AWS Accounts

For increased security, we recommend that you configure multi-factor authentication (MFA) to help protect your AWS resources.

You can enable one MFA device (of any kind) per root user or IAM user.

In this guide, we will go through 3 MFA options:

  1. Virtual MFA devices (applications) on your smartphone such as Microsoft Authenticator, Google Authenticator, or Okta Verify.
  2. Physical U2F security key such as a YubiKey.
  3. Hardware MFA devices such as the Gemalto token.