So, I just logged in and a message popped up saying that I should enhance my account security by registering for multi-factor authentication (MFA). They mentioned that this adds a second way to verify my identity alongside my password. I've already got 2FA set up with a password and a code sent to my email, but now it seems like that won't be enough going forward. The message suggested that only options like Passkeys, Security keys, Authenticator apps, or Hardware TOTP Tokens will be allowed. Is my current setup going to be obsolete?
2 Answers
Hey there! It’s definitely a good idea to switch to one of the recommended AWS MFA options for better security. AWS typically suggests using an Authenticator app or a security key. If you want more info on what's available, check AWS’s page on their MFA options. And if you have any specific questions, their support site is super helpful too!
Honestly, relying on email for MFA isn’t the best choice. It can be pretty insecure since emails can be hacked. Is there a reason you’re holding back on using an Authenticator app? It’s generally much safer!
I get what you mean about security. The whole idea of MFA is to make it harder for someone to access both my password and email at the same time. I guess I'll have to switch to an Authenticator app when AWS rolls out the change, but I still find it a bit of a hassle.