This tool will report on identities and access in AWS IAM Identity Center

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for jeffmaley2016 from gravatar.com jeffmaley2016

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: MIT License (# MIT License MIT License Copyright (c) 2023 Jeff Maley Permsssion is hereby granted, free of cha...)
  • Author: Jeff Maley
  • Requires: Python >=3.7
Classifiers
Report project as malware

Project description

awsssoreporting.py

Description

AWS IAM Identity Center (FKA AWS SSO) connects an IdP to an AWS Organization. Identities are granted access (in the form of Permission Sets) to accounts. The combined identity/permission set/account binding is called an assignment. It is challenging to use the AWS Console to generate a report of all granted access. This package provides a way of reporting this access to the terminal or a CSV.

Installation

python3 -m pip install boto3

python3 -m pip install awsssoreporting

Usage

Because this utility uses the AWS IAM Identity Center and Organization APIs, it must be run from the Organization management account.

export AWS_PROFILE=<your AWS profile. This must have read access to the sso-admin, identitystore, and organizations API.>

export AWS_DEFALT_REGION=<region AWS Identity Center is configured in>

awsssoreporting.py [-a | -u] -c -f myfile.csv -q

  • -a Report access by AWS account
  • -u Report access by identity
  • -c Write the results to a CSV
  • -f The filename to write the CSV to. Otherwise, the default (aws_sso_reporting-<date>.csv) is used
  • -q Quite mode. No results printed to terminal. The default is False.

TODO

  • Support more than one AWS Identity Center Instance

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for jeffmaley2016 from gravatar.com jeffmaley2016

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: MIT License (# MIT License MIT License Copyright (c) 2023 Jeff Maley Permsssion is hereby granted, free of cha...)
  • Author: Jeff Maley
  • Requires: Python >=3.7
Classifiers

Release history Release notifications | RSS feed

This version

0.12

0.11

0.10

0.9

0.8

0.7

0.4

0.3

0.2

0.1

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

awsssoreporting-0.12.tar.gz (7.4 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

awsssoreporting-0.12-py3-none-any.whl (7.1 kB view details)

Uploaded Python 3

File details

Details for the file awsssoreporting-0.12.tar.gz.

File metadata

  • Download URL: awsssoreporting-0.12.tar.gz
  • Upload date:
  • Size: 7.4 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/4.0.2 CPython/3.10.12

File hashes

Hashes for awsssoreporting-0.12.tar.gz
Algorithm Hash digest
SHA256 97d8bf6947536fcaebbccbe3266c10092a731db4d1b3907223c99513b27d2e02
MD5 f6c9d8c71ec3eec94b39c7669d6e51e9
BLAKE2b-256 fda8e84bf1bcc8f32f37f6df2f722585a4f2ec85b951ea76d8b663232764ec44

See more details on using hashes here.

File details

Details for the file awsssoreporting-0.12-py3-none-any.whl.

File metadata

  • Download URL: awsssoreporting-0.12-py3-none-any.whl
  • Upload date:
  • Size: 7.1 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/4.0.2 CPython/3.10.12

File hashes

Hashes for awsssoreporting-0.12-py3-none-any.whl
Algorithm Hash digest
SHA256 28dbfcb95f8656e689c090db48fe31e4322ecf7a46891ffc2045474a5b028653
MD5 e961f82f04e1f9447843d087f4d3bccf
BLAKE2b-256 0ef75991aa8ad83ebcfecad4ea44b02e49a701ac66941c4e12cb18ff3c95c7ae

See more details on using hashes here.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page