Is it possible to use aws sts to generate a token so I can use aws cli in another machine?

Question

It is the use case: My aws account is using aws identity with MFA enabled. I have some long running jobs I wish to be able to run on an ec2 instance.

Is it possible to generate some kind of token using aws sts such that I can use in the ec2 instance to grant my job scripts access to some aws resources?

score 1 · Answer 1 · answered Aug 12 '19 at 08:41

1

EC2 instances already fetch short-term credentials from STS periodically. You just need to create an IAM role, and assign this role to your instance as an instance profile.

answered Aug 12 '19 at 08:41

Vikyol

161
4

Is it possible to use aws sts to generate a token so I can use aws cli in another machine?

1 Answers1