AWS Security ChangesHomeSearch

AWS signin documentation change

Service: signin · 2025-04-16 · Documentation low

File: signin/latest/userguide/introduction-to-root-user-sign-in-tutorial.md

Summary

Clarified MFA enforcement policy for root users, removing distinction between standalone/management accounts and member accounts

Security assessment

The change updates documentation about MFA requirements but does not address a specific security vulnerability. It reinforces security best practices by emphasizing MFA enforcement.

Diff

diff --git a/signin/latest/userguide/introduction-to-root-user-sign-in-tutorial.md b/signin/latest/userguide/introduction-to-root-user-sign-in-tutorial.md
index 361cc05a3..75e1b0dfa 100644
--- a//signin/latest/userguide/introduction-to-root-user-sign-in-tutorial.md
+++ b//signin/latest/userguide/introduction-to-root-user-sign-in-tutorial.md
@@ -41 +41 @@ Type the alphanumeric characters you see (or hear) in order without spaces.
-  6. Authenticate with MFA. MFA is enforced by default on root users of standalone accounts and management accounts. For root users of member accounts, you must manually enable MFA, which is strongly recommended. For more information, see [Multi-factor authentication for AWS account root user](https://docs.aws.amazon.com/IAM/latest/UserGuide/enable-mfa-for-root.html) in the _AWS Identity and Access Management User Guide_.
+  6. Authenticate with MFA. MFA is enforced by default on the root user. For root users of standalone and member accounts, you must manually enable MFA, which is strongly recommended. For more information, see [Multi-factor authentication for AWS account root user](https://docs.aws.amazon.com/IAM/latest/UserGuide/enable-mfa-for-root.html) in the _AWS Identity and Access Management User Guide_.