HiveBrain v1.2.0
Get Started
← Back to all entries
snippetbashTip

aws-google-auth — Acquire AWS temporary (STS) credentials using Google Apps as a federated (Single Sign-On) provider.

Submitted by: @import:tldr-pages··
0
Viewed 0 times
commandaws-google-authtemporaryclicredentialsawsacquirests

Problem

How to use the aws-google-auth command: Acquire AWS temporary (STS) credentials using Google Apps as a federated (Single Sign-On) provider. More information: <https://github.com/cevoaustralia/aws-google-auth>.

Solution

aws-google-auth — Acquire AWS temporary (STS) credentials using Google Apps as a federated (Single Sign-On) provider. More information: <https://github.com/cevoaustralia/aws-google-auth>.

Log in with Google SSO using the specified username IDP and SP identifiers and set the credentials duration to one hour:
aws-google-auth {{[-u|--username]}} {{example@example.com}} {{[-I|--idp-id]}} {{$GOOGLE_IDP_ID}} {{[-S|--sp-id]}} {{$GOOGLE_SP_ID}} {{[-d|--duration]}} {{3600}}


Log in asking which role to use (in case of several available SAML roles):
aws-google-auth {{[-u|--username]}} {{example@example.com}} {{[-I|--idp-id]}} {{$GOOGLE_IDP_ID}} {{[-S|--sp-id]}} {{$GOOGLE_SP_ID}} {{[-d|--duration]}} {{3600}} {{[-a|--ask-role]}}


Resolve aliases for AWS accounts:
aws-google-auth {{[-u|--username]}} {{example@example.com}} {{[-I|--idp-id]}} {{$GOOGLE_IDP_ID}} {{[-S|--sp-id]}} {{$GOOGLE_SP_ID}} {{[-d|--duration]}} {{3600}} {{[-a|--ask-role]}} --resolve-aliases


Display help:
aws-google-auth {{[-h|--help]}}

Code Snippets

Log in with Google SSO using the specified username IDP and SP identifiers and set the credentials duration to one hour

aws-google-auth {{[-u|--username]}} {{example@example.com}} {{[-I|--idp-id]}} {{$GOOGLE_IDP_ID}} {{[-S|--sp-id]}} {{$GOOGLE_SP_ID}} {{[-d|--duration]}} {{3600}}

Log in asking which role to use (in case of several available SAML roles)

aws-google-auth {{[-u|--username]}} {{example@example.com}} {{[-I|--idp-id]}} {{$GOOGLE_IDP_ID}} {{[-S|--sp-id]}} {{$GOOGLE_SP_ID}} {{[-d|--duration]}} {{3600}} {{[-a|--ask-role]}}

Resolve aliases for AWS accounts

aws-google-auth {{[-u|--username]}} {{example@example.com}} {{[-I|--idp-id]}} {{$GOOGLE_IDP_ID}} {{[-S|--sp-id]}} {{$GOOGLE_SP_ID}} {{[-d|--duration]}} {{3600}} {{[-a|--ask-role]}} --resolve-aliases

Display help

aws-google-auth {{[-h|--help]}}

Context

tldr-pages: common/aws-google-auth

Revisions (0)

No revisions yet.