Terraform May Bypass AWS IAM MFA Limit

Question

Terraform May Bypass AWS IAM MFA Limit

I use Terraform to manage AWS resources.

Terraform calls the IAM administrative user that was blocked by the MFA. But the team terraform applyand terraform destroywith my local computer successfully introduced a unique authentication code.

So, does Terraform bypass multi-factor authentication?

+4

amazon-web-services amazon-iam multi-factor terraform

Hello lad May 18, '17 at 12:12

source share

1 answer

ITAdminNC · Answer 1 · 2017-05-18T13:21:50+0000

Terraform is usually configured using API credentials. By default, MFA does not apply to API calls. You must configure and accept the role intended exclusively for this if you want to enable multi-factor authentication when calling APIs for specific requests (for example, TerminateInstances).

For more information see

AWS Blog: How to Enable MFA Protection on Your AWS API Calls

Terraform Documentation: AWS

Terraform May Bypass AWS IAM MFA Limit

More articles: