Moving to the Cloud? Six Best Practices for AWS Se
Post# of 82686
(Total Views: 466)
Posted On: 11/28/2017 6:25:47 PM
Moving to the Cloud? Six Best Practices for AWS Security Centrify 11/22/2017
https://blog.centrify.com/best-practices-aws-security/amp/
MFA everywhere
Highly sensitive actions may require additional user validation, the best practice is to use multi-factor authentication (MFA) everywhere. Even with the appropriate role, users must assure their identities with an out-of-band factor like a push notification to a pre-enrolled mobile device before certain actions can be performed. This can significantly increase confidence in identity assurance, preventing attackers using compromised credentials common in the latest cyberattacks. Implement MFA for AWS service management upon login and privilege elevation for Amazon EC2 instances, when checking out vaulted passwords and when accessing enterprise apps.
GLTA
https://blog.centrify.com/best-practices-aws-security/amp/
MFA everywhere
Highly sensitive actions may require additional user validation, the best practice is to use multi-factor authentication (MFA) everywhere. Even with the appropriate role, users must assure their identities with an out-of-band factor like a push notification to a pre-enrolled mobile device before certain actions can be performed. This can significantly increase confidence in identity assurance, preventing attackers using compromised credentials common in the latest cyberattacks. Implement MFA for AWS service management upon login and privilege elevation for Amazon EC2 instances, when checking out vaulted passwords and when accessing enterprise apps.
GLTA
(3)
(0)