Amazon WorkMail now supports multi-factor authentication (MFA) through integration with AWS IAM Identity Center. MFA adds an extra layer of security to WorkMail sign-ins, reducing the risk of unauthorized access. Administrators can connect IAM Identity Center to Active Directory or external identity providers, such as Okta or Microsoft Entra ID. Mailbox users can authenticate and log into the WorkMail web app using IAM Identity Center credentials.
The Identity Center integration also provides personal access tokens for secure mailbox access from desktop and mobile email clients. Administrators can review audit logs to find out who accessed a mailbox, from what IP address, and why users were unable to access their mailbox using personal access tokens. You can choose to deliver personal access token logs to Amazon CloudWatch Logs, Amazon S3, or Amazon Data Firehose.
To learn more, see Working with IAM Identity Center on Amazon WorkMail. To learn more about Amazon WorkMail, or to create a no-cost 30-day test organization, see Amazon WorkMail.
Source:: Amazon AWS