![]() When you add an MFA device to an AWS account, you need to get the secret key to both sides. Since both of these data are present on both sides the server can verify the digits. The digits you see on the device are the hash of the shared secret and the current value of the clock rounded to 30 seconds. It works by having a secret key shared between the device and the server, and a synchronized clock. When you log in, you need to input the numbers you see in addition to the password. TOTP is short for Time-based One-time Password, which is a device or an app that shows a 6-digit number every 30 seconds. They are fundamentally different, so let’s see each of them! TOTP-based MFA ![]() When there is one associated with the user, signing in to the Console requires using it. In AWS, each IAM user and the root user can have an MFA device.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |