/tags/auth/ Recent content in Auth on IGAAWI docs Hugo en-us Thu, 19 Mar 2026 00:00:00 +0000 /infrastructure/authentication/ Thu, 19 Mar 2026 00:00:00 +0000 /infrastructure/authentication/ <h2 id="aws">AWS</h2> <h3 id="configure-sso">Configure SSO</h3> <div class="alert alert-warning" role="alert"> <h4 class="alert-heading">Important</h4> <p>You will need to upgrade to latest:</p> <ul> <li>aws-vault 7.2.0,</li> <li>aws 2.15.38</li> </ul> <p>And then remove old <strong>saritasa/v2/administrators</strong> profile from the <code>~/.aws/config</code> file, otherwise you may get crashes.</p> </div> <div class="highlight"><pre tabindex="0" style="color:#4c4f69;background-color:#eff1f5;-moz-tab-size:4;-o-tab-size:4;tab-size:4;"><code class="language-sh" data-lang="sh"><span style="display:flex;"><span>aws configure sso </span></span><span style="display:flex;"><span> </span></span><span style="display:flex;"><span>SSO session name <span style="color:#04a5e5;font-weight:bold">(</span>Recommended<span style="color:#04a5e5;font-weight:bold">)</span>: saritasa/v2/administrators </span></span><span style="display:flex;"><span>SSO start URL <span style="color:#04a5e5;font-weight:bold">[</span>None<span style="color:#04a5e5;font-weight:bold">]</span>: https://saritasa.awsapps.com/start </span></span><span style="display:flex;"><span>SSO region <span style="color:#04a5e5;font-weight:bold">[</span>None<span style="color:#04a5e5;font-weight:bold">]</span>: us-west-2 </span></span><span style="display:flex;"><span>SSO registration scopes <span style="color:#04a5e5;font-weight:bold">[</span>sso:account:access<span style="color:#04a5e5;font-weight:bold">]</span>: </span></span><span style="display:flex;"><span>Attempting to automatically open the SSO authorization page in your default browser. </span></span><span style="display:flex;"><span>If the browser does not open or you wish to use a different device to authorize this request, open the following URL: </span></span><span style="display:flex;"><span> </span></span><span style="display:flex;"><span>https://device.sso.us-west-2.amazonaws.com/ </span></span><span style="display:flex;"><span> </span></span><span style="display:flex;"><span>Then enter the code: </span></span><span style="display:flex;"><span> </span></span><span style="display:flex;"><span>LWGS-RVJX </span></span><span style="display:flex;"><span>There are <span style="color:#fe640b">3</span> AWS accounts available to you. </span></span><span style="display:flex;"><span>Using the account ID <span style="color:#fe640b">965067289393</span> </span></span><span style="display:flex;"><span>There are <span style="color:#fe640b">2</span> roles available to you. </span></span><span style="display:flex;"><span>Using the role name <span style="color:#40a02b">&#34;saritasa-administrators-role&#34;</span> </span></span><span style="display:flex;"><span>CLI default client Region <span style="color:#04a5e5;font-weight:bold">[</span>None<span style="color:#04a5e5;font-weight:bold">]</span>: us-west-2 </span></span><span style="display:flex;"><span>CLI default output format <span style="color:#04a5e5;font-weight:bold">[</span>None<span style="color:#04a5e5;font-weight:bold">]</span>: json </span></span><span style="display:flex;"><span>CLI profile name <span style="color:#04a5e5;font-weight:bold">[</span>saritasa-administrators-role-965067289393<span style="color:#04a5e5;font-weight:bold">]</span>: saritasa/v2/administrators </span></span><span style="display:flex;"><span> </span></span><span style="display:flex;"><span>To use this profile, specify the profile name using --profile, as shown: </span></span><span style="display:flex;"><span> </span></span><span style="display:flex;"><span>aws s3 ls --profile saritasa/v2/administrators </span></span></code></pre></div><p>then modify your <code>~/aws/profile</code> and change profile <code>saritasa-administrators-role-965067289393</code> to match the following. Change it&rsquo;s name <strong>saritasa/v2/administrators</strong> and include <code>credential_process</code> as shown below:</p>