For security reasons, I recommend you use the root account only for billing! So, the first thing is to create another user with fewer privileges:

Create a user with the following steps:

1. Sign into the AWS Management console (https://console.aws.amazon.com/).
2. Choose Security, Identity, & Compliance > IAM or search for IAM under Find services.
3. In the IAM page, choose Add User.
4. For User name, type new user on the set user details pane.

5. For Select AWS access Type, select the check boxes next to Programmatic access, AWS Console access. Optionally select Autogenerated password and Require password rest.
6. Choose Next: Permissions:

Follow these steps to set the permission for the new user:

1. Choose Create group.
2. In the Create group dialog box, type Administrator for new group name.
3. In policy list, select the checkbox next to AdministratorAccess (note that, for non-proof of concept or non-development AWS environments, I recommend using more restricted access policies).
4. Select Create group.

5. Choose refresh and ensure the checkbox next to Administrator is selected.
6. Choose Next: Tags.
7. Choose Next: Review.
8. Choose Create user.
9. Choose Download .csv and take a note of the keys and password. You will need these to access the account programmatically and log on as this user.
10. Choose Close.

As with the root account, I recommend you enable MFA:

1. In the Management Console, choose IAM | User and choose the newuser.
2. Choose the Security Credentials tab, then choose Manage next to Assigned MFA device Not assigned.
3. Choose a virtual MFA device and choose Continue.
4. Install an MFA application such as Authy (https://authy.com/).
5. Choose Show QR code then scan the QR code with you smartphone. Click on the Account and generate an Amazon six-digit token.
6. Type the six-digit token in the MFA code 1 box.
7. Wait for your phone to generate a new token, which is generated every 30 seconds.
8. Type the six-digit token into the MFA code 2 box.
9. Choose Assign MFA.