I'm trying to figure out how to use AWS CLI with SSO instead of relying on access keys and secrets stored on my developer machines. I feel like having those access keys floating around isn't secure. From what I've read, using AWS CLI SSO seems like a better solution since it involves signing in through a browser and using 2FA. However, I'm having a tough time understanding the instructions in the documentation link provided. Specifically, I can't find the options mentioned regarding permission sets or access keys in my AWS account. I'm new to AWS and the whole process is quite confusing. Can anyone provide clearer steps or insights?
1 Answer
It sounds like you're missing the initial setup for IAM Identity Center, which is crucial for enabling SSO access in your AWS account. It's easy to configure and doesn't cost anything. Check out this link for more info: [IAM Identity Center Overview](https://docs.aws.amazon.com/singlesignon/latest/userguide/what-is.html).
I do have IAM Identity Center, but I'm stuck on a few steps about permission sets. What does 'permission set for development' mean? I only see one auto-created permission set named policyformabdaviasam and I can't find the 'Get Credentials' dialog they mention.