saml2aws
CLI tool which enables you to login and retrieve AWS temporary credentials using a SAML IDP (by Versent)
gimme-aws-creds
A CLI that utilizes Okta IdP via SAML to acquire temporary AWS credentials (by Nike-Inc)
saml2aws | gimme-aws-creds | |
---|---|---|
12 | 5 | |
2,005 | 907 | |
0.7% | 0.7% | |
9.1 | 7.9 | |
2 days ago | 7 days ago | |
Go | Python | |
MIT License | Apache License 2.0 |
The number of mentions indicates the total number of mentions that we've tracked plus the number of user suggested alternatives.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
saml2aws
Posts with mentions or reviews of saml2aws.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2023-01-19.
- CLI tool to login and retrieve AWS temporary credentials using a SAML IDP
- Script or software that automatically populate specific profile in ~/.aws/credentials
-
Completions plugin `saml2aws`
related: message on saml2aws repo
-
Securing the AWS CLI
If you have an external identity provider, you can add a SAML provider in IAM and use saml2aws locally. The session duration can be configured on the role.
-
don't want to store access key and secret key in plain text in the .aws/credentials file or variables
Or if you have an existing IdP you can use https://github.com/Versent/saml2aws and https://github.com/makethunder/awsudo. By setting up a central account that you put in your trust policy which users can assume roles.
- Script for cli commands with MFA and multiple accounts
-
Show HN: Authenticate into AWS right from your terminal window
In my company everything goes through Active Directory and we use saml2aws [1] to generate credentials with two factor involved. It works quite well for us. We even use this for our artists to create local builds of our games since we keep all important secrets and such in aws secrets mananger. We scope access to said secrets with custom roles and tags.
[1] https://github.com/Versent/saml2aws
- How do you get CLI credentials for a federated role?
-
Getting CLI credentials for an AWS account that is not under your AWS SSO organization
Technically I guess it should be possible with something like saml2aws, but it doesn't support AWS as an IdP yet.
-
saml2aws-multi: a simple tool providing an easy-to-use command line interface for saml2aws
saml2aws-multi is a simple tool I created for using saml2aws more effectively on day-to-day tasks. saml2aws-multi provides an easy-to-use command line interface to support login and retrieve AWS temporary credentials for multiple roles of different accounts with saml2aws.
gimme-aws-creds
Posts with mentions or reviews of gimme-aws-creds.
We have used some of these posts to build our list of alternatives
and similar projects. The last one was on 2023-01-19.
- Script or software that automatically populate specific profile in ~/.aws/credentials
-
Getting AWS CLI credentials through Okta SSO?
I got gimme-aws-creds (https://github.com/Nike-Inc/gimme-aws-creds) to authenticate via Okta - but no AWS roles are found in the SAML response. It works fine through the AWS console.
- How do you get CLI credentials for a federated role?
-
How to use AWS CLI with Okta?
Gimme creds works nicely: https://github.com/Nike-Inc/gimme-aws-creds
-
Securing AWS API credentials and access to AWS API
AWS has always lagged behind is offering reasonable native authentication options to its console and CLI. In order to support something like "yubikey" you need to go with another authentication and authorization provider such as Okta which provides support for a wide variety of MFA options. Then you can also use open source tooling such as https://github.com/Nike-Inc/gimme-aws-creds to grab temporary credentials. Okta is the one I'm most familiar but there are others out there as well.
What are some alternatives?
When comparing saml2aws and gimme-aws-creds you can also consider the following projects:
awsume - A utility for easily assuming AWS IAM roles from the command line.
aws-runas - aws-runas rewritten in Go
aws-toolkit-vscode - Amazon Q, CodeWhisperer, CodeCatalyst, Local Lambda debug, SAM/CFN syntax, ECS Terminal, AWS resources
okta-aws-cli-assume-role - Okta AWS CLI Assume Role Tool
aws-extend-switch-roles - Extend your AWS IAM switching roles by Chrome extension, Firefox add-on, or Edge add-on
sceptre - Build better AWS infrastructure
leapp - Leapp is the DevTool to access your cloud
terraform-provider-aws - The AWS Provider enables Terraform to manage AWS resources.
terraform-aws-icons - Annotate Terraform graphs with AWS icons.
aws-mfa - Manage AWS MFA Security Credentials
saml2aws vs awsume
gimme-aws-creds vs aws-runas
saml2aws vs aws-toolkit-vscode
gimme-aws-creds vs okta-aws-cli-assume-role
saml2aws vs aws-extend-switch-roles
gimme-aws-creds vs sceptre
saml2aws vs aws-runas
gimme-aws-creds vs awsume
saml2aws vs leapp
gimme-aws-creds vs terraform-provider-aws
saml2aws vs terraform-aws-icons
gimme-aws-creds vs aws-mfa