MFA for API Calls

Enabling Multi-Factor Authentication
There are many ways to gain access to execute commands against AWS. By using IAM policies with MFA conditions, you can ensure that MFA is required for users who are able to make API calls. This will add an additional layer of protection and accountability before a user is allowed to perform sensitive API operations. 

When accessing the AWS environment, there are multiple methods to gain access and execute commands against AWS. You can log into the control panel, use the AWS CLI, or use the AWS STK. This allows you to connect to the AWS APIs. Protection should be implemented to ensure that when accessing the AWS APIs, MFA is enabled and accounts accessing those environments are required to use MFA to execute API calls. As such, this will ensure that API access requires the use of multi-factor authentication to secure the access to that environment.

Related Videos