in our AWS infrastructure, we use AWS organizations, a way to centralize user accounts and allow them to take a role in our other AWS accounts. This allows us to isolate each environment and at the same time allow only one account, which you can use to work with resources in other accounts without 4-5 passwords.
The problem is with S3 buckets, as we have some users who use Cyberduck to access files in s3 buckets. Unfortunately, Cyberduck does not support AWS STS takeRole (see the cyberduck documentation ), this forces you to configure the passkey identifier and secret key in to access the s3 buckets of this particular account.
Do you know any S3 GUI client for MAC that supports takeRole?
source
share