Multi-Factor Authentication (MFA) on AWS
Overview
I will be posting a series of some cool articles related to AWS security, some are required to use Multi-Factor Authentication (MFA) so here is a basic one how to enable MFA on AWS.
Probably many of you already familiar with using MFA login in a web browser, In this post, I will also share how to use MFA login on AWS CLI.
Create IAM User
The first step is to create an IAM user if you don’t have one using the AWS Console. Make sure you allow console access or programmatic access (if required)
In this example, I am creating a user called mfatest
Enable MFA
To enable MFA on IAM User, open AWS Console > IAM > Users > select the user you want to enable MFA. In my example, it is user mfatest.
Click on the Manage under Assign MFA device section
Select the MFA device you want to use, the most common these days in Virtual MFA device, you can use Google Authenticator app on your mobile device to use Virtual MFA.
Note: Just in case you are not familiar with the Physical MFA devices, they look like the following ;-)
Scan the barcode with the Google authenticator app
On Google Authenticator app click the + sign and choose Scan barcode