|
|
|
|
|
|
by jason_wo
1202 days ago
|
|
|
Nice! Do I understand this correctly? You use aws-vault(https://github.com/99designs/aws-vault) and configure it with IAM and MFA with YubiKeys. You configure e.g. the profile jonsmith. When you run aws-vault exec jonsmith -- aws s3 ls it will ask you, e.g. every hour to confirm with YubiKeys and cache the key for one hour. After that the temporary keys expire. Can you also store keys different from AWS? |
|
|