· 7 years ago · Jul 01, 2018, 11:40 PM
1# Global
2$mfa_serial = "arn:aws:iam::123456789123:mfa/xxx"
3$source_profile = "default"
4$region = "ap-southeast-2"
5$role_arn = "arn:aws:iam::123456789123:role/role-test"
6$token_code = $null
7$target_profile = "test"
8$target_profile_path = "C:\Users\xxx\.aws\credentials"
9
10
11# Assume Role
12$Response = (Use-STSRole -Region $region -RoleArn $role_arn -RoleSessionName RoleSession1 -ProfileName $source_profile).Credentials
13
14# Create Profile with Credentials
15Set-AWSCredential -StoreAs $target_profile -ProfileLocation $target_profile_path -AccessKey $Response.AccessKeyId -SecretKey $Response.SecretAccessKey -SessionToken $Response.SessionToken
16
17# Print expirate time
18Write-Host("Credentials will expire at: " + $Response.Expiration)