AWS Organizations root sessions feature should be enabled

iam
이 페이지는 아직 영어로 제공되지 않습니다. 번역 작업 중입니다.
현재 번역 프로젝트에 대한 질문이나 피드백이 있으신 경우 언제든지 연락주시기 바랍니다.

Description

Enabling the AWS Organizations Root Sessions feature increases security by centralizing control and minimizing the attack surface associated with highly privileged root user credentials. This feature allows you to remove long-term root access keys for member accounts and instead grant temporary, time-bound, and task-scoped permissions for essential administrative actions. By doing so, you eliminate the risks of compromised root credentials and ensure that powerful permissions are only used when absolutely necessary and in a monitored, auditable manner.

Remediation

For guidance on enabling centralized root sessions, refer to the Centralize root access for member accounts section of the AWS Identity and Access Management User Guide

PREVIEWING: ida.adjivon/DOCS-11256