--- title: Getting Started with Datadog description: Datadog, the leading service for cloud-scale monitoring. breadcrumbs: Docs > Infrastructure > Datadog Resource Catalog --- # aws_iam_virtual_mfa_device{% #aws_iam_virtual_mfa_device %} ## `account_id`{% #account_id %} **Type**: `STRING` ## `enable_date`{% #enable_date %} **Type**: `TIMESTAMP`**Provider name**: `EnableDate`**Description**: The date and time on which the virtual MFA device was enabled. ## `serial_number`{% #serial_number %} **Type**: `STRING`**Provider name**: `SerialNumber`**Description**: The serial number associated with `VirtualMFADevice`. ## `tags`{% #tags %} **Type**: `UNORDERED_LIST_STRING` ## `user`{% #user %} **Type**: `STRUCT`**Provider name**: `User`**Description**: The IAM user associated with this virtual MFA device. - `arn`**Type**: `STRING`**Provider name**: `Arn`**Description**: The Amazon Resource Name (ARN) that identifies the user. For more information about ARNs and how to use ARNs in policies, see [IAM Identifiers](https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html) in the IAM User Guide. - `create_date`**Type**: `TIMESTAMP`**Provider name**: `CreateDate`**Description**: The date and time, in [ISO 8601 date-time format](http://www.iso.org/iso/iso8601), when the user was created. - `password_last_used`**Type**: `TIMESTAMP`**Provider name**: `PasswordLastUsed`**Description**: The date and time, in [ISO 8601 date-time format](http://www.iso.org/iso/iso8601), when the user's password was last used to sign in to an Amazon Web Services website. For a list of Amazon Web Services websites that capture a user's last sign-in time, see the [Credential reports](https://docs.aws.amazon.com/IAM/latest/UserGuide/credential-reports.html) topic in the IAM User Guide. If a password is used more than once in a five-minute span, only the first use is returned in this field. If the field is null (no value), then it indicates that they never signed in with a password. This can be because: - The user never had a password. - A password exists but has not been used since IAM started tracking this information on October 20, 2014. A null value does not mean that the user never had a password. Also, if the user does not currently have a password but had one in the past, then this field contains the date and time the most recent password was used. This value is returned only in the GetUser and ListUsers operations. - `path`**Type**: `STRING`**Provider name**: `Path`**Description**: The path to the user. For more information about paths, see [IAM identifiers](https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html) in the IAM User Guide. The ARN of the policy used to set the permissions boundary for the user. - `permissions_boundary`**Type**: `STRUCT`**Provider name**: `PermissionsBoundary`**Description**: For more information about permissions boundaries, see [Permissions boundaries for IAM identities ](https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_boundaries.html)in the IAM User Guide. - `permissions_boundary_arn`**Type**: `STRING`**Provider name**: `PermissionsBoundaryArn`**Description**: The ARN of the policy used to set the permissions boundary for the user or role. - `permissions_boundary_type`**Type**: `STRING`**Provider name**: `PermissionsBoundaryType`**Description**: The permissions boundary usage type that indicates what type of IAM resource is used as the permissions boundary for an entity. This data type can only have a value of `Policy`. - `user_id`**Type**: `STRING`**Provider name**: `UserId`**Description**: The stable and unique string identifying the user. For more information about IDs, see [IAM identifiers](https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html) in the IAM User Guide. - `user_name`**Type**: `STRING`**Provider name**: `UserName`**Description**: The friendly name identifying the user.