You may be familiar with the recommended best practice to secure your Amazon Web Services (AWS) account:
- 2-factor authentication
- Root account very rarely used
- Single sign on using your corporate IdP/AD
- Service control policies on accounts in your AWS organisation
- Many other controls
Just when you think it couldn't get any better, AWS introduces something else to help you keep your cloud computing account secure - AWS Management Console Private Access.
You can now limit access to the AWS Management Console from
- your AWS virtual private cloud
- trusted AWS accounts
- trusted AWS Organisations
- other connected network.
AxylCloud advises, use it. If you have a corporate network, only allow access to your AWS Management Console from your corporate IP address. It'll greatly reduce the chances of someone trying to break in to your account. If a burglar cannot find your house, s/he cannot burgle (burlarize, home invasion) your home.