Once you have credentials from the Credential Factory or are logged into an EC2 instance from the Instance Factory, verify that you can run
substrate assume-role -management. If so, you can finally delete your root and OrganizationAdministrator access keys. They’re simply security liabilities. Let’s delete them:
substrate delete-static-access-keysto delete access keys for the OrganizationAdministrator IAM user in your management account
From now on, the Credential and Instance Factories are how you access your organization via the command line.
Integrating your identity provider to control access to AWS
Integrating your original AWS account(s)