-
From discussion in Slack:
In security section:
- Mention that it's possible to enforce MFA-only via IAM policy (use case is #237 from @pingles )
- Mention federated users (e.g. AD FS) and also …
jlevy updated
8 years ago
-
```
saml2aws exec --username=.. --password=.. --mfa=TOTP --mfa-token=... --idp-provider=Okta --url=https://... --role=arn:aws:iam.. aws s3 ls
error aws credentials have expired
```
```
saml2aws s…
-
We have several accounts, which we access by assuming roles from a common 'login' account requiring MFA. ecs-cli doesn't prompt for MFA.
```
# .aws/config
[profile account2]
role_arn = arn:aws…
-
**Describe the bug**
Attempting to `vault login` using this particular IAM profile setup in `~/.aws/credentials` fails with the following error:
```
Error authenticating: failed to retrieve…
-
**Your Environment**
- OS: Linux (kernel: 5.19.0-40-generic)
- JetBrains product: PyCharm
- JetBrains product version: 2023.1.1 (Professional Edition; Build #PY-231.8770.66; Runtime version: 17.…
-
### Is there an existing issue for this?
- [X] I have searched the existing issues
### Current Behavior
When executing dbt run for the AWS Compliance pack 12 out of the 13 models complete. aws_com…
-
Currently, `aws-env` will get STS temporary credentials even if it doesn't need to (when no MFA serial specified). Ordinarily, this is fine, except when using the IAM API which doesn't seem to suppor…
-
Hi, thanks for the incredibly useful tool. I just ran into the issue where variables in IAM policies need to be escaped (ex. "arn:aws:iam::1234567890:user/${aws:username}").
This is [discussed in t…
seren updated
4 years ago
-
I am trying to execute the code from https://github.com/awslabs/aws-config-rules/blob/master/python/IAM_USER_MFA_ENABLED/IAM_USER_MFA_ENABLED.py in a lambda. I am getting the following error:
[ERRO…
-
I have next in ~/.aws/credentials
```
[extra]
source_profile = default
region = us-east-1
mfa_serial = arn:aws:iam::xxx
role_arn = arn:aws:iam::xxx
assumed_role = True
assumed_role_arn = arn:a…