- Root User = Account Owner (created when the account is created)
- Root User has complete access to all AWS services and resources
- Lock away your AWS account root user access keys!
- Do not use root account for everyday tasks, even administrative tasks
- Action that can only be performed by root user:
- Change account settings (account name, email address, root user password, etc.)
- View certain tax invoices
- Close your AWS account
- Restore IAM user permissions
- Change or cancel your AWS Support Plan
- Register as a seller in the Reserved Instance Marketplace
- Configure an S3 bucket to enable MFA
- Edit or delete and S3 bucket policy that includes an invalid VPC ID or VPC endpoint ID
- Sign up for GovCloud