Difference between revisions of "AWS Security Token Service (STS)"

AWS Security Token Service (at least 2015) ^[1], aws sts

News

• Feb 2015 AWS Security Token Service (STS) in every AWS Region

Activities

• Read sts blog:
  • https://aws.amazon.com/blogs/security/tag/aws-sts/
  • https://aws.amazon.com/blogs/security/category/security-identity-compliance/aws-security-token-service/
• Read StackOverflow related questions: https://stackoverflow.com/questions/tagged/aws-sts?tab=Votes
• Read Managing AWS STS in an AWS Region ^[2]

Errors

eksctl get cluster
Error: checking AWS STS access – cannot get role ARN for current session: operation error STS: GetCallerIdentity, failed to sign request: failed to retrieve credentials: failed to refresh cached credentials, no EC2 IMDS role found, operation error ec2imds: GetMetadata, request send failed, Get "http://169.254.169.254/latest/meta-data/iam/security-credentials/": dial tcp 169.254.169.254:80: i/o timeout

An error occurred (UnrecognizedClientException) when calling the UpdateService operation: The security token included in the request is invalid.

Related

• GetSessionToken
• Amazon Region
• sts:AssumeRoleWithSAML
• AssumeRoleWithWebIdentity
• AWS SAML
• AWS STS SourceIdentity
• AWS IAM

See also

• AWS STS (sts:), aws sts [ get-session-token | get-caller-identity | assume-role | assume-role-with-web-identity | assume-role-with-saml | get-access-key-info ]
• AWS Security Token Service (STS), aws sts, aws iam set-security-token-service-preferences, AWS bearer tokens, sts.amazonaws.com
• STS, AWS Security Token Service (STS), aws sts, Terraform AWS provider: assume_role