Skip to content
By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post
About re:Post

Retrieve Access Key ID and Secret Access Key from IDENTITY CENTER user (not IAM USER)

0

How does one obtain an Access Key ID and Secret Access Key for an Identity Center User?

I have pored all over the Identity Center documentation and cannot find how an Identity Center User (NOT IAM USER) obtains Secret Access Keys and Key IDs required by many web-services such as Former 2

In order to connect to ones AWS Account from this and still many web-services an Access Key ID and Secret Access Key are required.

Topics
Security, Identity, & Compliance
Tags
AWS IAM Identity CenterSecurity, Identity, & Compliance
Language
English
asked a year ago1.1K views
1 Answer
2
Accepted Answer

Hello.

After signing in to the access portal as an IAM Identity Center user, click the assigned AWS account and click Access keys to check the access key ID, secret access key, and session token.
After confirming the access key etc., you can set it in the config file in the same way as an IAM user, and you will be able to access your AWS account from your local PC using AWS CLI etc.
Unlike IAM users, IAM Identity Center users have temporary information such as access keys, so if the session expires, you will need to check and reset the access keys using the same steps.
a

The steps are described in the document below.
https://docs.aws.amazon.com/singlesignon/latest/userguide/howtogetcredentials.html#how-to-get-temp-credentials-manual

EXPERT
answered a year ago
EXPERT
reviewed a year ago
  • JG
    a year ago

    Interesting. This view and link has never been presented to me in all the times I have authenticated through the console. I have been presented a very similar view after authenticating to the console though the link to the "Access Keys" your image clearly illustrates has never been listed or displayed. I have bookmarked it now.

    It is clear others have been seeking this same clarity you have provided. The link you and others have provided to the documentation does not clearly illustrate this in the manner you have with the picture you provided.

    For others seeking the same answer, the link to this specific view is: https://{your-identity-center-domain}.awsapps.com/start/#/?tab=accounts

    For me, this was (example) https://d-9999a99aa9.awsapps.com/start/#/?tab=accounts. Replace the "d-9999a99aa9" with your Identity Center domain.

    Thank you very much for the very clear solution and including that image. I strongly encourage AWS to update the documentation to match the clarity you have provided in your response.

    Respect and gratitude,

    Rod

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Relevant content