duo-labs / cloudmapper

CloudMapper helps you analyze your Amazon Web Services (AWS) environments.
BSD 3-Clause "New" or "Revised" License
5.99k stars 809 forks source link

Cloudmapper authentication #741

Closed messi26 closed 4 years ago

messi26 commented 4 years ago

While setting up cloudmapper, can the initial authentication be done without providing access keys and just on the basis of IAM roles?

0xdabbad00 commented 4 years ago

Yes, CloudMapper uses the AWS SDK, so you never provide CloudMapper with access keys. It uses the methods provided by the SDK, which include accessing ~/.aws/config, your environment variables (which get set by aws-vault), the EC2 metadata service, ECS, etc.