More Info:

Ensure that your root account password is rotated every few days.

Risk Level

Critical

Address

Security

Compliance Standards

AWSWAF

Triage and Remediation

Remediation

To remediate the misconfiguration “Root Account Should Have Password Rotation” for AWS, follow these steps:

  1. Log in to your AWS Management Console using your Root Account credentials.
  2. Click on your account name in the top right corner and select “My Security Credentials” from the dropdown menu.
  3. In the “Security Status” section, you will see a message that says “Password rotation for root account is recommended”. Click on the “Rotate now” button next to it.
  4. Follow the prompts to create a new password for your Root Account. Make sure to use a strong and unique password, and do not reuse any previous passwords.
  5. Once you have created a new password, click on the “Apply password policy now” button to enforce the new password policy for your Root Account.
  6. You will receive a confirmation message that your Root Account password has been rotated successfully.

Congratulations, you have now remediated the misconfiguration “Root Account Should Have Password Rotation” for AWS using the AWS console. It is recommended to set up a password rotation policy to ensure that your Root Account password is rotated automatically on a regular basis.

Additional Reading: