Key Security Steps After Creating Your AWS Account
Hey there,
You've just created your AWS account—exciting!
Before you get started, let's make sure you do a few things to keep your account safe and secure.
Let's dive in.
Task 1: Assign MFA to your root account.
After creating your AWS account, you become the root user, which means you have all the privileges. It's crucial to secure your account properly.
On your account, on right top corner,
Click on and then Select Security Credentials.
You'll see like the following interface.
Click on Assign MFA.
Name your MFA device.
I'm using Authenticator app for MFA purpose.
It authenticates using a code generated by an app on your mobile device. This code is unique and valid only for a short time, adding an extra layer of security to your accounts.
There are multiple authenticator apps. I've installed Google's Google Authenticator.
Scan the QR code from your authenticator app.
Fill the two consecutive codes from your Authenticator device.
So, our first task is completed.
Task 2: Create Budget Alert
Click on Billing & Cost Management.
Scroll a bit and click on Billing Preferences.
Now Click on the check boxes as below and provide your email address to receive Free Tier usage alerts.
Now, we've setup our Billing preferences.
On Billing & Cost Management section, click on Budgets.
Create a budget.
Choose Customize option on Budget setup.
Scroll a bit and Click on Next.
Provide name for your budget and also enter your budgeted amount.
Scroll down and Click on Next.
Click on Add an alert threshold.
In my case, I've applied 50%. Provide your desired Email recipients.
When your actual cost is greater than 50.00% ($5.00) of your budgeted amount ($10.00), the alert threshold will be exceeded.
Click on Next.
Review all of your information and click on Create Budget.
That completes our second task.
Task 3: Create an IAM user.
Why we need IAM user?
Daily tasks with the root user in AWS are risky, like giving everyone a house key. IAM users are better - create specific users with limited access, like assigning keys only to certain rooms. This keeps your AWS environment more secure!
Alright, On the services, search for IAM and click on it.
Click on Users and then Create user and provide a suitable username with password.
Click on Next.
Search for Administrator Access, tick the box and Click on Next.
Review what you've done and proceed to Create user.
Return to dashboard.
Click on Create below Account Alias.
An AWS account alias is a custom name for your account ID, making it easier to remember and use when accessing AWS services.
Provide your preferred name.
Copy the given Sign-in URL and paste it into your browser and bookmark it.
Provide your IAM username and enter password to Sign in.
We've signed in as an IAM user.
Click on Security credentials, for this new identity we've to setup MFA just like we did earlier for our root account.
Assign MFA and do as we did earlier.
I hope you've done yours as well.
Alright. We've finished the account setup and securing process.
This concludes the blog.
In a nutshell, we accomplished the following:
Assigned MFA to root account,
Created a Budget Alert,
Created IAM user and assigned MFA.
Hope you guys had a wonderful time.
See you again in the next one.
