Configure multi-factor authentication for all IAM users.

Deactivate existing users and re-create new users every time a credential rotation is required.

Re-create identity federation with new identity providers every time a credential rotation is required

Set up a password policy to enable password of expiration for IAM users.