Ensure security questions are registered in the AWS account

1.15 Identity and Access Management (AWS CIS Benchmark).


The AWS support portal allows account owners to establish security questions that can be used to authenticate individuals calling AWS customer service for support.

It is recommended that security questions be established.

Register security questions in the AWS account via the AWS Management Console

Step 1. Log in to the AWS Management Console at https://console.aws.amazon.com/vpc/home as a root user.

Step 2. Click on the <Root_Account_Name> from the top right of the console.

Step 3. From the drop-down menu, click My Account.

Step 4. Scroll down to the "Configure Security Questions" section and click on Edit.

Step 5. Click on each Question

  • From the drop-down menu, select an appropriate question.
  • Click on the Answer section.
  • Enter an appropriate answer.

Follow this process for all three questions.

Step 6. Click Update when complete.

Step 7. Store the security questions and answers in a secure physical location.