💼 1.6 Ensure hardware MFA is enabled for the "root user" account

ID: /frameworks/cis-aws-v1.3.0/01/06

Description

The root user account is the most privileged user in an AWS account. MFA adds an extra layer of protection on top of a user name and password. With MFA enabled, when a user signs in to an AWS website, they will be prompted for their user name and password as well as for an authentication code from their AWS MFA device. For Level 2, it is recommended that the root user account be protected with a hardware MFA.

Similar

Sections
- /frameworks/cis-aws-v1.4.0/01/06
- /frameworks/cis-aws-v1.2.0/01/14
Internal
- ID: dec-c-49a19cb0

Similar Sections (Take Policies From)

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance
💼 CIS AWS v1.2.0 → 💼 1.14 Ensure hardware MFA is enabled for the "root" account			1		no data
💼 CIS AWS v1.4.0 → 💼 1.6 Ensure hardware MFA is enabled for the 'root' user account			1		no data

Similar Sections (Give Policies To)

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance
💼 CIS AWS v1.2.0 → 💼 1.14 Ensure hardware MFA is enabled for the "root" account			1		no data
💼 CIS AWS v1.4.0 → 💼 1.6 Ensure hardware MFA is enabled for the 'root' user account			1		no data

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance

Policies (1)

Policy	Logic Count	Flags	Compliance
🛡️ AWS Account Root User Hardware MFA is not enabled.🟢⚪		🟢 x2, ⚪ x1	no data

Description​

Similar​

Similar Sections (Take Policies From)​

Similar Sections (Give Policies To)​

Sub Sections​

Policies (1)​