VirtualMFADevice - Amazon Identity and Access Management
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China.


Contains information about a virtual MFA device.



The base32 seed defined as specified in RFC3548. The Base32StringSeed is base64-encoded.

Type: Base64-encoded binary data object

Required: No


The date and time on which the virtual MFA device was enabled.

Type: Timestamp

Required: No


A QR code PNG image that encodes otpauth://totp/$virtualMFADeviceName@$AccountName?secret=$Base32String where $virtualMFADeviceName is one of the create call arguments. AccountName is the user name if set (otherwise, the account ID otherwise), and Base32String is the seed in base32 format. The Base32String value is base64-encoded.

Type: Base64-encoded binary data object

Required: No


The serial number associated with VirtualMFADevice.

Type: String

Length Constraints: Minimum length of 9. Maximum length of 256.

Pattern: [\w+=/:,.@-]+

Required: Yes


A list of tags that are attached to the virtual MFA device. For more information about tagging, see Tagging IAM resources in the IAM User Guide.

Type: Array of Tag objects

Array Members: Maximum number of 50 items.

Required: No


The IAM user associated with this virtual MFA device.

Type: User object

Required: No

See Also

For more information about using this API in one of the language-specific Amazon SDKs, see the following: