Security Assertion Markup Language (SAML) for Amazon.
Project description
Purpose
Access to the AWS Management Console and AWS API for my Active Directory users using federation (AD FS).
Usage
Requirements
- Linux (not tested on Windows OS, hope work)
- Python 3 - latest version 3.x
Installation
pip3 install -i https://test.pypi.org/simple/ awssaml
Configuration file
All configuration is stored in ~/.aws/config
file.
Basic configuration
[samlapi]
identity_url = https://adfs.example.com/adfs/ls/IdpInitiatedSignOn.aspx?loginToRp=urn:amazon:webservices
region = eu-west-1
Advanced samlapi configuration
Default username
[samlapi]
#...
username = [SAML User]
Default session duration
Setup 12 hours (it's 43200 seconds):
[samlapi]
#...
session_duration = 43200
Keep encrypted password
To generate password, use set-samlapi-access.py
script.
Application store password encrypted, using PEM certificate.
Before you use script, generate your private RSA key (more info)
> python3 set-samlapi-access.py
Full path to your PEM file: <full-path-to-your-file>.pem
Username: <SAML User>
Password:
Configuration updated.
Advanced profile configuration
You can setup custom profiles to reuse. Sample configuration entry for profile:
[profile nonprod-application1]
role_arn = arn:aws:iam::[ID]:role/[role]
principal_arn = arn:aws:iam::[ID]:saml-provider/[provider]
source_profile = nonprod
session_duration = 43200
Usage:
> awssaml api nonprod-application1
> awssaml console nonprod-application1
Reference
Project details
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distributions
No source distribution files available for this release.See tutorial on generating distribution archives.
Built Distribution
Close
Hashes for awssaml-0.0.11-py2.py3-none-any.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | e8287b9e1b1cc1138984e7a808ee5640b1f95c6e14a32b7041139831d1f1f729 |
|
MD5 | 7c8364749c5eb8f7147e0498732f1664 |
|
BLAKE2b-256 | 2914f9fee47897e107d9a69be257459a753f769db29f530d55d99659a27219e8 |