By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

AWS SSO With External Account

1

Hi, I'm working on out internal AWS SSO. If i try to login to one of organization account i have the option to open the Management Console or to get the access key and secret key by clicking on "programmatic access". This option is also avaiable from cli using "aws sso configure" command.

When i add an external AWS Account (that not belongs to our organization) this option is not available and when i click on the external account the login on Management Console is performed.

How can i configure sso to show the "Command line or programmatic access" on external AWS account?

thanks in advance Piero

  • Raphael EXPERT
    2 years ago

    How have you added this account into AWS SSO?

Topics
Security, Identity, & ComplianceManagement & Governance
Tags
AWS IAM Identity CenterAWS Account Management
Language
English
petecocoon
asked 2 years ago800 views
1 Answer
0

The reason for this is that external accounts are treated as third party applications which we currently dont generate API keys for. AWS accounts belonging to your organization are treated differently and known as AWS accounts while Accounts outside your organization are added the same way you configure an application in the user portal.

AWS
Adeyini
answered 2 years ago
  • petecocoon
    2 years ago

    Hi Adeyini, thank you for your answer, did you know if there is any solution / tools for quickly creating API keys for that accounts (even on CLI)?

    Thank you

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content