Root Access Keys provide unlimited access to your AWS resources. It's not recommended to use them in normal situations. AWS recommends to delete existing Root Access Keys and create IAM user and Access Keys limited to specific service or resource (see below).
To Delete Root Access Keys
To get the access key ID and secret access key for an AWS Identity and Access Management (IAM) user, you can configure AWS CLI, or get temporary credentials for federated users to access AWS CLI. Generate jwt secret key c. Before you can give access to a federated user, you must: Enable federation to AWS using Windows Active Directory, ADFS, and SAML 2.0. To create access keys for your AWS account root user, you must use the AWS Management Console. A newly created access key has the status of active, which means that you can use the access key for CLI and API calls.
1. Type https://aws.amazon.com/ in your web browser
2. Click My Account, AWS Management Console
3. Enter your account email address and password:
4. Type the IAM in the search box and choose the IAM service from the drop-down list.
You will be redirected to IAM Dashboard
5. Navigate to Security Status and expand the Delete your root access keys section.
6. Click Manage Security Credentials
7. Click Continue to Security Credentials
Your Security Credentials page will open
8. Expand the Access Keys (access key id and secret acces key) section
Aws Generate Access Key For User Id
9. Click the Delete link next to your access keys row.
Aws Generate Access Key For User Login
10. Confirm Access Keys deletion.
11. Your Root Access Keys are deleted. Now you can create IAM user and Access Keys limited to specific service or resource (see below).
Be sure to replace your root access keys with your IAM access keys in any programs/scripts you are currently using.