Jul 21, 2017 · 1 min read
Hi,
great article on the matter. However, AWS api keys are not MFA protected unless you add this condition on the policy.
"Condition": {"Bool": {"aws:MultiFactorAuthPresent": "true"}}Take a look here.
http://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_mfa_configure-api-require.html
Best,
