AWS Organizations centralized root credentials management feature should be enabled

Description

To ensure the security of your AWS environment, you should centrally manage the root user credentials for all accounts within your AWS Organization. The root user has unrestricted access to all services and resources. By centralizing the management of these credentials, you can prevent unauthorized recovery and large-scale access, strengthening the security posture of your organization.

Remediation

For guidance on enabling centralized root credentials management, refer to the Centralize root access for member accounts section of the AWS Identity and Access Management User Guide