AWS account setup

How to select a role in the AWS CLI

Once you have CLI credentials, you need to configure the roles you want to use in ~/.aws/credentials.

Append the contents of credentials.ini to your ~/.aws/credentials file.
This contains a list of named profiles, e.g. a profile for the read-only role in the platform account:
```
[platform-read_only]
source_profile=default
role_arn=arn:aws:iam::760097843905:role/platform-read_only
region=eu-west-1
```
The list is generated automatically by the create_account_role_config.py script.
To select a role, pass the AWS_PROFILE environment variable with the name of the profile.
For example, these S3 commands will run in the platform, catalogue, and workflow accounts, respectively:
```
$ AWS_PROFILE=platform-read_only aws s3 ls

$ AWS_PROFILE=catalogue-developer aws s3 ls

$ AWS_PROFILE=workflow-admin aws s3 ls
```

PreviousHow to get credentials for working locally, e.g. the AWS CLI NextHow to get credentials for staff who aren't developers

Last updated 1 year ago