Open mark-sawers opened 4 years ago
Another use case is when you want to restart the clock on that 36 hour max window. Because if you do another aws-mfa --device arn:aws:iam::123:mfa/abc --duration 129600
when already authenticated, it will say something like:
INFO - Validating credentials for profile: default INFO - Your credentials are still valid for 18999.929462 seconds they will expire at 2023-09-11 14:42:44
Another use case is when you want to restart the clock on that 36 hour max window.
Doesn't the force option achieve this?
Would be nice to clear or pre-expire the token. This is more for testing policies, profiles and such, so may not be a common use case.
The workaround is to manually delete the entries in the ~/.aws/credentials file.