From the course: Amazon Web Services: Data Security
Unlock the full course today
Join today to access over 22,400 courses taught by industry experts or purchase this course individually.
IAM root account - Amazon Web Services (AWS) Tutorial
From the course: Amazon Web Services: Data Security
IAM root account
- [Instructor] So as we're learning about IAM objects, I want to talk about the root account. It's just very, very important that you understand how to use it correctly. You get one root account per AWS account, and it's associated to the email of the person who set up the AWS account. And that is the administrator, and you can think of it like the domain administrator. There are a small subset of activities that you have to have the root account login credential to perform on AWS. It has to do with billing and some of the high level control. The majority of the activities, though, can be done by a regular IAM account with the administrator privileges as I showed setting up in a previous movie. Because of this, no one should be logging on with a root account in a production environment. It should be IAM accounts. Also, root accounts should use multi-factor authentication, which means that you have either an external validator, like Google authenticator which gives you a unique code…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Contents
-
-
-
-
Core AWS security services7m 2s
-
Design security with IAM: Users and roles6m 29s
-
IAM root account5m 13s
-
Design security with IAM: Policies6m 9s
-
Security with CloudWatch and CloudTrail8m 36s
-
Design security for EC2 with Inspector5m 12s
-
Design security for EC2 with WAF4m 40s
-
Design security for VPC11m 3s
-
-
-
-
-
-