Boto3 session within Master Account is not assuming the ExecutionRole

awslabs / aws-securityhub-multiaccount-scripts

This script automates the process of running the Security Hub multi-account workflow across a group of accounts that are in your control

MIT No Attribution

271 stars 108 forks source link

Boto3 session within Master Account is not assuming the ExecutionRole #2

Closed rc1405 closed 5 years ago

rc1405 commented 5 years ago

At line 127 of enablesecurityhub.py, master_session is initiated with boto3.Session(); where it should be utilizing assume_role(args.master_account, args.assume_role). This is required for the implementation of utilizing the InstanceProfile for account setup.

ryanholland commented 5 years ago

fixed on 2/15