Difference between revisions of "Aws iam get-account-summary"

• https://awscli.amazonaws.com/v2/documentation/api/latest/reference/iam/get-account-summary.html

aws iam get-account-summary
An error occurred (InvalidClientTokenId) when calling the GetAccountSummary operation: The security token included in the request is invalid.

aws iam get-account-summary
An error occurred (ExpiredToken) when calling the GetAccountSummary operation: The security token included in the request is expired

Unable to locate credentials. You can configure credentials by running "aws configure".

Official example

{
  "SummaryMap": {
      "UsersQuota": 5000,
      "GroupsQuota": 100,
      "InstanceProfiles": 6,
      "SigningCertificatesPerUserQuota": 2,
      "AccountAccessKeysPresent": 0,
      "RolesQuota": 250,
      "RolePolicySizeQuota": 10240,
      "AccountSigningCertificatesPresent": 0,
      "Users": 27,
      "ServerCertificatesQuota": 20,
      "ServerCertificates": 0,
      "AssumeRolePolicySizeQuota": 2048,
      "Groups": 7,
      "MFADevicesInUse": 1,
      "Roles": 3,
      "AccountMFAEnabled": 1,
      "MFADevices": 3,
      "GroupsPerUserQuota": 10,
      "GroupPolicySizeQuota": 5120,
      "InstanceProfilesQuota": 100,
      "AccessKeysPerUserQuota": 2,
      "Providers": 0,
      "UserPolicySizeQuota": 2048
  }
}

Examples

{
    "SummaryMap": {
        "GroupPolicySizeQuota": 5120,
        "InstanceProfilesQuota": 1000,
        "Policies": 0,
        "GroupsPerUserQuota": 10,
        "InstanceProfiles": 0,
        "AttachedPoliciesPerUserQuota": 10,
        "Users": 1,
        "PoliciesQuota": 1500,
        "Providers": 0,
        "AccountMFAEnabled": 0,
        "AccessKeysPerUserQuota": 2,
        "AssumeRolePolicySizeQuota": 2048,
        "PolicyVersionsInUseQuota": 10000,
        "GlobalEndpointTokenVersion": 1,
        "VersionsPerPolicyQuota": 5,
        "AttachedPoliciesPerGroupQuota": 10,
        "PolicySizeQuota": 6144,
        "Groups": 0,
        "AccountSigningCertificatesPresent": 0,
        "UsersQuota": 5000,
        "ServerCertificatesQuota": 20,
        "MFADevices": 0,
        "UserPolicySizeQuota": 2048,
        "PolicyVersionsInUse": 4,
        "ServerCertificates": 0,
        "Roles": 4,
        "RolesQuota": 1000,
        "SigningCertificatesPerUserQuota": 2,
        "MFADevicesInUse": 0,
        "RolePolicySizeQuota": 10240,
        "AttachedPoliciesPerRoleQuota": 10,
        "AccountAccessKeysPresent": 0,
        "GroupsQuota": 300
    }
}

Related

• aws sts get-caller-identity --query Account --output text

See also

• aws iam [ create-user, create-group, get-user, list-users | list-policies | list-attached-user-policies | attach-user-policy | list-attached-user-policies | list-roles | get-account-summary | put-group-policy | put-role-policy | put-user-policy | create-login-profile | aws iam delete-virtual-mfa-device | aws iam list-virtual-mfa-devices | aws iam create-saml-provider | aws iam list-account-aliases | aws iam create-role | aws iam change-password| enable-mfa-device | list-instance-profiles
• IAM: AWS IAM Identity Center, AWS Identity and Access Management, Google Cloud IAM, Azure IAM, SailPoint, CyberArk, CIAM, ForgeRock, iam:ChangePassword, aws iam, AdministratorAccess, Context keys, IAM Access Analyzer, AWS policy, AWS managed policies, IAMUserChangePassword, AWS Roles, List of AWS policies, Resource-based policy, aws-iam-authenticator, IRSA, RDS Authentication, AccessDenied, AWS Authentication, AWS IAM external access analyzer