Inotevera ichave mirairo yekumisikidza AWS MFA, uye wozoisa nekugadzirisa AWS CLI.
Sezvineiwo, izvi zvakanditorera hafu yezuva rangu rekushanda. Kuti vamwe vasina kuchengeteka vashandisi veAWS π, seni, usatambise nguva yakakosha pane zvisina basa, ndakafunga kuunganidza mirairo.
Kunyangwe kune sandbox account kumisikidza Izvi zvinowanzova chinhu chinosungirwa. Izvi ndizvo zvazvakaita kwatiri.
Kugadzira MFA
- Set
- Enda ku
- -> Govera MFA Chishandiso
- Virtual MFA Device
- Tevedza rairo dziri pachiratidziri
- Virtual mudziyo wagadzirira
Kuisa AWS CLI
Kugadzira mbiri ine zita
- -> Gadzira kiyi yekuwana
- Kopa kiyi ye clipboard yako. Unozozvida munhanho inotevera
$ aws configure --profile <your profile name>
AWS CLI kuburikidza neMFA
- Kopa iyo chaiyo mudziyo ARN
aws sts get-session-token --profile <ΠΈΠΌΡ ΠΏΡΠΎΡΠΈΠ»Ρ> --serial-number <ARN Π²ΠΈΡΡΡΠ°Π»ΡΠ½ΠΎΠ³ΠΎ ΡΡΡΡΠΎΠΉΡΡΠ²Π°> --token-code <ΠΎΠ΄Π½ΠΎΡΠ°Π·ΠΎΠ²ΡΠΉ ΠΏΠ°ΡΠΎΠ»Ρ>
Iyo-imwe-nguva password inofanirwa kutorwa kubva kune mobile application yakagadziriswa kare.- Murairo uchaburitsa JSON, iyo yega minda inofanirwa kutsiviwa mune inoenderana nharaunda siyana AWS_ACCESS_KEY_ID, AWS_SECRET_ACCESS_KEY, AWS_SESSION_TOKEN
Ndakasarudza kuita otomatiki ~/.bash_profile
Kuti utarise JSON, chinyorwa ichi chinoda .
#!/usr/bin/env bash
aws_login() {
session=$(aws sts get-session-token "$@")
echo "${session}"
AWS_ACCESS_KEY_ID=$(echo "${session}" | jq -r '.Credentials.AccessKeyId')
export AWS_ACCESS_KEY_ID
AWS_SECRET_ACCESS_KEY=$(echo "${session}" | jq -r '.Credentials.SecretAccessKey')
export AWS_SECRET_ACCESS_KEY
AWS_SESSION_TOKEN=$(echo "${session}" | jq -r '.Credentials.SessionToken')
export AWS_SESSION_TOKEN
}
alias aws-login-dev='aws_login --profile <ΠΈΠΌΡ dev ΠΏΡΠΎΡΠΈΠ»Ρ> --serial-number <ARN Π²ΠΈΡΡΡΠ°Π»ΡΠ½ΠΎΠ³ΠΎ ΡΡΡΡΠΎΠΉΡΡΠ²Π°> --token-code '
alias aws-login-prod='aws_login --profile <ΠΈΠΌΡ prod ΠΏΡΠΎΡΠΈΠ»Ρ> --serial-number <ARN Π²ΠΈΡΡΡΠ°Π»ΡΠ½ΠΎΠ³ΠΎ ΡΡΡΡΠΎΠΉΡΡΠ²Π°> --token-code 'Kushandisa:
$ aws-login-dev <ΠΎΠ΄Π½ΠΎΡΠ°Π·ΠΎΠ²ΡΠΉ ΠΏΠ°ΡΠΎΠ»Ρ>Ndinovimba kuraira uku kuchakubatsira kudzivirira kudzungaira kwenguva refu kuburikidza nemagwaro epamutemo π
Source: www.habr.com