You are viewing a free preview of this lesson.
Subscribe to unlock all 10 lessons in this course and every other course on LearningBro.
Multi-factor authentication adds a critical layer of security to your AWS identities. Even if a password or access key is compromised, MFA ensures that the attacker cannot gain access without the second authentication factor.
MFA is a security mechanism that requires two or more independent forms of verification before granting access. The factors typically fall into three categories:
| Factor Type | Description | Example |
|---|---|---|
| Something you know | A secret only you know | Password, PIN |
| Something you have | A physical device you possess | Phone, hardware token, security key |
| Something you are | A biometric characteristic | Fingerprint, facial recognition |
In AWS, MFA combines your password (something you know) with a one-time code from a device (something you have). This means an attacker who steals your password still cannot access your account without also having your MFA device.
Consider the consequences of a compromised AWS account:
Subscribe to continue reading
Get full access to this lesson and all 10 lessons in this course.