Skip to main content
Skip table of contents

Root Account Vault

As part of the AWS Solution Provider Program (SPP), it is required to transfer the root account ownership over to the partner. This offers the opportunity to improve the security of your root account by SoftwareOne Enterprise-Grade Vault. SoftwareOne ensures stringent security practices for root accounts and employing rigorous security hygiene procedures.

image-20240709-130941.png

This includes:

  • Enterprise-Grade Vault: Root credentials are stored in a secure vault with partitioning and isolation, separating root and MFA credentials into independent vaults managed by different teams.

  • Four-Eyes Principle: Adhering to industry-recognized security practices, no individual at the Partner organization can access both the root password and MFA credentials.

  • Logging and Auditing: All use and changes made with these credentials are thoroughly logged and audited to ensure transparency and security.

These measures provide robust protection and management of root account credentials, ensuring high standards of security and compliance.

Frequent Asked Question: We need to be able to make regular changes with root and collaboration with a partner will slow us down.

Answer: Most changes (99%) to AWS accounts and AWS organizations don't require root credentials. Using root for BAU changes goes against AWS security best practices. Typically, organisations only need to use root a few times per year. For specific use cases where root is required, refer to this AWS article.

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close