AWS Identity and Access Management
Using IAM (API Version 2010-05-08)
AWS Documentation » AWS Identity and Access Management » Using IAM » IAM Users and Groups » Using Multi-Factor Authentication (MFA) Devices with AWS » Using a Virtual MFA Device with AWS
« PreviousNext »
View the PDF for this guide.Go to the AWS Discussion Forum for this product.Go to the Kindle Store to download this guide in Kindle format.Did this page help you?  Yes | No |  Tell us about it...

Using a Virtual MFA Device with AWS

Topics

To use a virtual MFA device with AWS, you must configure it for use with AWS, and then enable it. In this section you'll learn what a virtual MFA device is and what you need to do to configure and enable it.

A virtual MFA device uses a software application that generates six-digit authentication codes that are compatible with the Time-Based One-Time Password (TOTP) standard, as described in RFC 6238. The software application can run on any mobile hardware device, including a smartphone. Most virtual MFA applications allow you to host more than one virtual MFA device, which makes them more convenient than hardware MFA devices. However, you should be aware that because a virtual MFA might be run on a less secure device such as a smartphone, a virtual MFA might not provide the same level of security as a hardware MFA device.

Tip

The AWS Virtual MFA application is one example of an TOTP-compatible virtual MFA device. The AWS Virtual MFA application runs on the Android mobile operating system and is available for download from the Amazon Appstore for Android. For more information about downloading and installing the AWS Virtual MFA, see Installing the AWS Virtual MFA Mobile Application.

Document Conventions« PreviousNext »
Terms of UseDid this page help you?  Yes | No |  Tell us about it...