When will be MFA Delete required on the AWS S3?

What is MFA?

Multi-factor Authentication (MFA) is an extra layer of protection on top of your username and password. MFA in AWS (Amazon Web Services) is an IAM best practice that helps you to secure services that require a second authentication in addition to the username and password credentials....

When will be MFA Delete required on the AWS S3?

Permanently delete an object version. Suspend versioning on the bucket....

When do we not require an MFA Delete on the AWS S3?

Enable versioning List deleted versions...

Prerequisites

Create and set up an AWS Account. Versioning must be enabled on the S3 bucket. Only the bucket owner (root owner) can enable/disable MFA Delete....

Step-by-Step Guide to Register MFA Delete on AWS S3

Step 1: Create S3 Bucket...

Benefits of enabling MFA on the AWS

MFA ensures only authorised personnel with both valid password and second factor authentication can access AWS S3 Bucket. MFA can be setup by the IAM users to provide extra security for already authorised AWS services. You can add more than one MFA devices. This will help you to access the account using the other MFA device, in case of the devices is lost, stolen and inaccessible....

Configuring MFA Delete on S3 Buckets – FAQ’s

What if an MFA device is lost or has stopped working?...