Walk through exactly how to implement Multifactor Authentication for your root AWS account. This includes signing into the AWS Web Console, where to enable Multifactor Authentication, and how to set up a virtual MFA device. This video demonstrates this process using Google Authenticator on an iPhone.
- [Narrator] Now that we understand…the importance of separation of duties,…let's fire up a browser, go into the AWS console,…and see exactly how we enable MFA on the root account.…In order to sign in, I go to the My Account menu…and choose AWS Management Console from the drop down.…As you can see, the only things that we have to provide…to gain access to our account…are an email address and a password.…Upon logging in, we see the AWS console in all its glory.…There are so many services to look at…it's easy to get overwhelmed.…
In addition, AWS iterates quickly…and releases new services with some frequency.…Therefore, this screen might look a little different…if you're following along in your account.…Let's focus on the mission at hand,…getting MFA set up for that root account.…In order to do that, in the center column…I'm going to locate the security and identity section.…Under that header I will click on the IAM link.…This brings me to the IAM dashboard.…As you'll note throughout this course,…AWS often provides signposts within the console…
Sharif Nijim couples pragmatic advice with practical examples that educate IT pros on how to create a secure infrastructure within Amazon Web Services. Sharif explores the shared responsibility model of security, which splits duties between your company and AWS, and introduces key identity and access management concepts, including users, groups, roles, and policies. Learn how to configure Identity and Access Manager (IAM) and Simple Storage Service (S3) access management, including policies and access control lists. At the end of the course, Sharif helps you prepare for the inevitable audit of your AWS account(s).
This course is also part of a series designed to help you prepare for the AWS Certified SysOps Administrator – Associate certification exam.
- Summarize the AWS Shared Responsibility Model.
- Recall how to implement separation of duties.
- Differentiate between assigning permissions to an individual versus a group.
- Summarize how to create IAM roles.
- Describe how to secure financial access.
- Recall the steps for managing access to S3 with IAM.
- Cite the advantages of a pre-signed URL.