☁️
CTHFM: AWS
  • Welcome
  • Getting Started
    • Account Setup
  • AWS CLI
    • AWS CLI Overview
    • Installation
  • AWS Fundamentals
    • AWS Documentation
    • AWS Shared Responsibility Model
    • Organizational Hierarchy
    • AWS Principals
    • IAM Fundamentals
      • IAM Policy Components
      • IAM Documentation References
    • AWS Security Services Overview
    • AWS Core Services
    • AWS Frameworks
    • Regions and Availability Zones
  • SQL
    • SQL Refresher for Threat Hunting
  • Logging Reference
    • Cloudtrail
      • What is Cloudtrail?
      • Setting Up Cloudtrail
      • Cloudtrail Events Structure
      • Filtering and Searching CloudTrail Logs
      • IAM ID Prefixes
      • Additional Resources
      • API References
    • VPCFlow Logs
    • GuardDuty
      • Multi-Account Setup
      • GuardDuty Concepts
      • GuardDuty Finding References
      • S3 Protection
      • Malware Protection
        • EC2 Malware Protection
          • EC2 Protection Resources
          • Monitoring Scans
          • EC2 Malware Protection Events: CloudWatch
        • S3 Malware Protection
          • Enabling S3 Malware Protection
          • After Enabling S3 Malware Protection
          • S3 Malware Resource Plan Status
          • S3 Malware Protection Quotas
      • RDS Protection Enablement
      • Lambda Protection Enablement
      • Trusted IP Lists and Threat Lists in Amazon GuardDuty
      • Remediation Recommendations
      • GuardDuty API Reference
      • GuardDuty Quotas
    • Access Analyzer
      • Setup
      • External Access and Unused Access Analyzer Findings
      • Review Findings
      • Access Analyzer Resources
      • Access Analyzer API Reference
    • AWS Network Firewall
      • Permissions
      • Firewall Log Contents
      • Logging Destinations
      • CloudWatch Firewall Metrics
    • AWS Config
      • Resource Management in AWS Config
      • AWS Config Integrations
      • AWS Config Resources
      • Configuration Item
      • Config Rules
        • Evaluation Modes
  • CloudWatch
    • Amazon CloudWatch
      • CloudWatch Concepts
      • CloudWatch Metrics
        • Filter Pattern Syntax
      • CloudWatch Alarms
        • Alarm Recommendations
      • Subscriptions
      • CloudWatch Agent
      • CloudWatch Insights
        • Supported Logs and Discovered Fields
        • CloudWatch Insights Query Syntax
      • Anomaly Detection
        • Create Anomaly Detector
        • Alarms for Anomaly Detections
      • CloudWatch Filter Syntax
      • CloudWatch Service Quota
  • Athena For Threat Hunting
    • Introduction to Athena
    • Setting Up Athena
    • SQL For Threat Hunters
    • Automated Response
    • Query Best Practices
  • AWS Security Research and Resources
    • AWS Security Blog
    • AWS Goat
    • Cloud Goat
    • Pacu
    • Prowler
    • Scout Suite
  • Threat Hunting in AWS
    • Threat Hunting in AWS
    • Threat Hunting Introduction
    • Threat Hunting Process
      • Hypothesis Generation
      • Investigation
      • Identification
      • Resolution & Follow Up
    • Pyramid of Pain
    • MITRE Att&ck
      • MITRE Att&ck Concepts
      • MITRE Att&CK Data Sources
      • MITRE Att&CK Mitigations
    • MITRE Att&ck: AWS
      • MITRE Att&CK Matrix
      • Amazon Web Services Security Control Mappings
    • AWS Threat Hunting Ideas
      • AWS Threat Hunting Ideas: EC2
      • AWS Threat Hunting Ideas: Lambda
      • AWS Threat Hunting Ideas: SQS
      • AWS Threat Hunting Ideas: SNS
      • AWS Threat Hunting Ideas: RDS
Powered by GitBook
On this page
  • Overview
  • Step 1: Go to the AWS Website
  • Step 2: Begin the Registration Process
  • Step 3: Set Account Type and Contact Information
  • Step 4: Enter Payment Information
  • Step 5: Identity Verification
  • Step 6: Select a Support Plan
  • Step 7: Sign In to Your New AWS Account
  • Step 8: Enable Multi-Factor Authentication (MFA) for Root User
  • Step 9: Set Up Billing Alerts and Free Tier Usage Monitoring
  • Step 10: Create an IAM User for Daily Use (Best Practice)
  • Step 11: Secure Your Account
  1. Getting Started

Account Setup

Overview

The following are instructions on setting up an account in AWS.

Step 1: Go to the AWS Website

  1. Open your web browser and navigate to the AWS Sign-Up Page.

Step 2: Begin the Registration Process

  1. On the AWS homepage, click "Create an AWS Account."

  2. Enter your email address, password, and AWS account name (choose a unique account name to make it easy to identify).

  3. Click "Continue" to proceed.

Step 3: Set Account Type and Contact Information

  1. Select Account Type:

    • Personal: If the account is for personal use or learning.

    • Business: If the account is for an organization or a business.

  2. Enter your contact information, including:

    • Full name (or business name)

    • Phone number

    • Country/region, address, and postal code

  3. Check the Terms and Conditions box and click "Continue".

Step 4: Enter Payment Information

  1. AWS requires a payment method to verify your account, even if you only plan to use the Free Tier.

  2. Enter credit/debit card details or payment method.

  3. AWS will place a temporary authorization charge (usually $1) to verify the card.

  4. Click "Verify and Continue."

Step 5: Identity Verification

  1. Choose how you want AWS to verify your identity:

    • Text message (SMS): Enter your phone number, and AWS will send a verification code.

    • Voice call: AWS will call you with a code to enter.

  2. Enter the verification code when prompted, and click Continue.

Step 6: Select a Support Plan

AWS offers the following support plans:

  • Basic Support (Free) – Recommended if you’re just starting.

  • Developer Support – For test environments.

  • Business Support – For production workloads.

  • Enterprise Support – For mission-critical applications.

Select Basic Support to avoid extra costs for now, and click "Continue."

Step 7: Sign In to Your New AWS Account

  1. After setting up the account, go to the AWS Management Console.

  2. Use the email and password you created to log in.

  3. You’ll be prompted to set up Multi-Factor Authentication (MFA) — it’s highly recommended for enhanced security.

Step 8: Enable Multi-Factor Authentication (MFA) for Root User

  1. In the AWS Management Console, search for "IAM" (Identity and Access Management).

  2. Select Users > Root User.

  3. Click Activate MFA and follow the steps to set up MFA using:

    • A virtual MFA app (e.g., Google Authenticator)

    • A hardware MFA device (if you have one)

Step 9: Set Up Billing Alerts and Free Tier Usage Monitoring

  1. Go to Billing and Cost Management in the console.

  2. Set Billing Alerts to ensure you don’t accidentally exceed the free tier.

  3. Enable AWS Budgets to track and monitor usage.

Step 10: Create an IAM User for Daily Use (Best Practice)

  1. Go to IAM from the console.

  2. Click Users > Add User and create a user with:

    • Programmatic Access (if you need CLI access)

    • Management Console Access (for console use)

  3. Assign Administrator Access to the new user (you can adjust permissions later).

  4. Download the credentials securely.

Note: Use the IAM user for day-to-day tasks instead of the root user to improve security.

Step 11: Secure Your Account

  1. Enable MFA for the new IAM user as well.

  2. Set Strong Password Policies under IAM > Account Settings.

  3. Enable CloudTrail to log all account activity for auditing.

  4. Set Up AWS Config to monitor resource changes.

PreviousWelcomeNextAWS CLI Overview

Last updated 8 months ago