Menu
AWS Identity and Access Management
User Guide

Changing the AWS Account Root User Password

You must be signed in as the AWS account root user in order to change the password.

To change the password for the root user

  1. Use your AWS account email address and password to sign in to the AWS Management Console as the root user.

    Note

    If you previously signed in to the console with IAM user credentials, your browser might remember this preference and open your account-specific sign-in page. You cannot use the IAM user sign-in page to sign in with your AWS account root user credentials. If you see the IAM user sign-in page, choose Sign-in using root account credentials near the bottom of the page to return to the main sign-in page. From there, you can type your AWS account email address and password.

  2. In the upper right corner of the console, choose your account name or number and then choose My Account.

  3. On the right side of the page, next to the Account Settings section, choose Edit.

  4. On the Password line choose Edit to change your password.

  5. Choose a strong password. Although you can set an account password policy for IAM users, that policy does not apply to your AWS account root user.

    AWS requires that your password meet these conditions:

    • have a minimum of 8 characters and a maximum of 128 characters

    • include a minimum of three of the following mix of character types: uppercase, lowercase, numbers, nonalphanumeric symbols (for example, ! @ # $ % ^ & * <> -)

    • not be identical to your AWS account name or email address

    To protect your password, it's important to follow these best practices:

    • Change your password periodically and keep your password private, since anyone who knows your password may access your account.

    • Use a different password on AWS that you use on other sites.

    • Avoid passwords that are easy to guess. These include passwords such as secret, password, amazon, or 123456. They also include things like a dictionary word, your name, email address, or other personal information that can easily be obtained.