Skip to content
/ aws-mfa-terraform Public

A simple script to update the ~.aws/credentials with temporary MFA credentials.

License

GPL-3.0 license
3 stars 2 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

tcarrondo/aws-mfa-terraform

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

23 Commits
LICENSE
LICENSE
 
 
README.md
README.md
 
 
aws-creds-update.sh
aws-creds-update.sh
 
 

Repository files navigation

aws-mfa-terraform

A simple script to update the ~.aws/credentials with temporary MFA credentials.

Usage:

Add/edit 3 profiles to your ~/.aws/credentials:

[profile-for-mfa]
aws_access_key_id = <AWS_ACCESS_KEY_ID>
aws_secret_access_key = <AWS_SECRET_ACCESS_KEY>

[profile-with-updated-token]
aws_access_key_id = REDACTED
aws_secret_access_key = REDACTED
aws_session_token = REDACTED

# Profile(s) to be used

[profile-in-use]
source_profile = profile-with-updated-token
role_arn = arn:aws:iam::123456789012:role/a_nice_role

(REDACTED values will be updated later when you run aws-mfa-terraform)

Add this to a new file ~/.aws/config.vars file:

# aws-mfa-terraform
mfa_token_sn=arn:aws:iam::123456789012:mfa/<AWS_PROFILE_USERNAME>
aws_base_profile=profile-for-mfa
aws_update_profile=profile-with-updated-token
token_duration=129600 # 36h, max

Run the script:

$ ./aws-creds-update.sh

...and test the result:

$ aws s3 ls --profile profile-in-use

About

A simple script to update the ~.aws/credentials with temporary MFA credentials.

Topics

aws amazon-web-services hacktoberfest

Resources

Readme

License

GPL-3.0 license
Activity

Stars

3 stars

Watchers

3 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages