IAM.5 MFA should be enabled for all IAM users that have a console password

mfa enables additional authentication layers for aws account access, requiring multiple verification methods (e g , password + authenticator code) mfa is strongly recommended for security aws advises enabling mfa on the root user to protect against unauthorized access, using a virtual or hardware mfa device go to iam dashboard under iam dashboard , select users sort on the column mfa remove or email users without mfa to pass this control the easiest way is to delete the user and add them again upon their request alternativly, if your colleagues can act quickly, ask them to enable mfa subject action required enable mfa for aws compliance by tomorrow dear team, to ensure compliance with our security standards, please enable multi factor authentication (mfa) for your aws iam user account by tomorrow follow these steps sign in to the aws iam console https //console aws amazon com/iam/ click users , then select your username go to security credentials > assign mfa device choose a supported mfa type (virtual, hardware) , and click next complete setup verify mfa is enabled in "my security credentials" (status shows active) thank you for helping us maintain a secure and compliant aws environment