How to let IAM Identity Center user operate Lightsail container via AWS CLI?
Hi guys, I am newbie here.
I have create a user in IAM Identity Center with AdministratorAccess permission, I can use this user to deploy the lightsail container in aws console, but I can't upload image via cli , it be rejected as below:
Does anyone knows how to solve it? thanks
- 新しい順
- 投票が多い順
- コメントが多い順
Hello.
If you are an IAM Identity Center user, you cannot use it unless you also set "aws_session_token" in addition to the access key and secret access key.
So, please try setting the "~/.aws/credentials" file as follows.
[yyyyyyyy_AdministratorAccess]
aws_access_key_id=yyyyyyyyyyyy
aws_secret_access_key=yyyyyyyyyyy
aws_session_token=yyyyyyyyyyyyy.....
Or you can use it by running the command to set environment variables as shown below.
export AWS_ACCESS_KEY_ID="yyyyyyyyyyyy"
export AWS_SECRET_ACCESS_KEY="yyyyyyyyyyyy"
export AWS_SESSION_TOKEN="yyyyyyyyyyyyy....."
One way is to use the "aws configure sso" command.
https://docs.aws.amazon.com/cli/latest/userguide/sso-configure-profile-token.html#sso-configure-profile-token-auto-sso
I appreciate it