AWS adds vital security feature to make life easier for its users

AWS and IAM users are getting new security features

When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.

AmazonWeb Services is upping the ante on the security front with new and important changes forAWSandIdentity and Access Management(IAM) users. Announcing the changes in a blog post published earlier this week, the company’s Liam Wadman and Khaled Zaky announced that users can now add more than onemulti-factor authentication(MFA) device to AWS account root users, and IAM users in their AWS accounts.

Up until now, there could only have been one MFA endpoint associated with root users or IAM users, but now Amazon brought it up to eight, a change which “raises the security bar”, as the authors put it.

To register multiple MFA devices, in any combination of the currently supported MFA types, these are the steps:

Available today

Having multiple MFA devices active doesn’t mean they all need to confirm someone’s login session, though. Only one MFA device is needed to sign in to the console, or to create a session through the AWS Command Line Interface (AWS CLI) as that principal, the authors explained.

AWS will start offering some customers free USB security keys>Your AWS S3 instance may not be as secure as you hope>These are the best identity theft protection services available

Furthermore, this upgrade doesn’t warrant any changes in the permissions. Both root and IAM users in the accounts that manage MFA devices today can use their existing IAM permissions to enable extra devices.

With the exception of customers operating in AWS GovCloud (US) Regions, or the AWS China Regions, the new feature is now available, with no additional cost to use.

Multi-factor authentication is widely considered one of the most important features of a secure account for any online services. This technology complementspassword managersand has been rolled out across billions of accounts worldwide including the biggest service providers -Google, Facebook,Microsoftand more.

Are you a pro? Subscribe to our newsletter

Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

This new phishing strategy utilizes GitHub comments to distribute malware

Should your VPN always be on?

NYT Strands today — hints, answers and spangram for Sunday, November 10 (game #252)