Skip to content
/ aws-sso-profile-tool Public

The AWS IAM Identity Center Profile Tool (aka AWS SSO Profile Tool) is a script that helps create profiles for all the accounts/roles you have access to as an SSO user. These profiles can then be used by AWS CLI v2 to get access to your AWS accounts using short-lived credentials.

License

MIT-0 license
29 stars 15 forks Branches Tags Activity
Star
Notifications

aws-samples/aws-sso-profile-tool

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

16 Commits

CODE_OF_CONDUCT.md

CODE_OF_CONDUCT.md

 
 

CONTRIBUTING.md

CONTRIBUTING.md

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

awsssoprofiletool.sh

awsssoprofiletool.sh

 
 

Repository files navigation

AWS SSO Profile Tool

The AWS SSO Profile Tool is a script that helps create profiles for all the accounts/roles you have access to as an AWS SSO user. These profiles can then be used by AWS CLI v2 to get access to your AWS accounts using short-lived credentials.

The AWS SSO Profile Tool differs from AWS CLI v2's aws configure sso in that it gives you the ability to create all possible profiles in one go. Think of it as aws configure sso on steroids.

When you run the tool, you will be asked to log into AWS SSO using your browser. Once you login, the tool will walk through each account/role pair, giving you an opportunity to create a profile if desired. You can also have the tool create profiles for all account/role pairs using default information. The profiles will be appended to the file you provide as an argument or your default config file if no file name is provided.

Once these profiles are created, you can use them by specifying the profile name as an argument to the '--profile' command line option (e.g., aws s3 ls --profile my_profile).

Note: You will always have to login to AWS SSO using the aws sso login command before you can use any AWS SSO profile. However, once you have logged in once, you will be able to use any of the created profiles until your authorization token expires.

Installation

To install the tool, follow these steps:

  1. Download the awsssoprofiletool.sh script onto your machine, using one of the following methods:
  • Clone the repository
  • Download the ZIP file and unzip
  • Copy and paste the script into a file
  1. (Optional) Mark the awsssoprofiletool.sh script as executable using chmod +x awsssoprofiletool.sh

Running

To run the script, do one of the following:

  • If the script is executable, run it with ./awsssoprofiletool.sh <region> <start_url> [<profile_file>]
  • If the script is not executable, run it with bash awsssoprofiletool.sh <region> <start_url> [<profile_file>]

The arguments are as follows:

  • <region> - the region where AWS SSO is running
  • <start_url> - the start URL from the AWS SSO page
  • <profile_file> - where the profiles will be created; defaults to ~/.aws/config

Security

See CONTRIBUTING for more information.

License

This code is licensed under the MIT-0 License. See the LICENSE file.

About

The AWS IAM Identity Center Profile Tool (aka AWS SSO Profile Tool) is a script that helps create profiles for all the accounts/roles you have access to as an SSO user. These profiles can then be used by AWS CLI v2 to get access to your AWS accounts using short-lived credentials.

Topics

aws aws-cli-utilities aws-sso aws-identity-center

Resources

Readme

License

MIT-0 license

Code of conduct

Code of conduct

Security policy

Security policy
Activity
Custom properties

Stars

29 stars

Watchers

2 watching

Forks

15 forks
Report repository

Contributors 2

  •  
  •  

Languages