How does one get the aws session token?

Question

How does one get the aws session token?

waygee opened this issue 9 years ago · 6 comments

Not sure how to get the aws session token mentioned in the example. Can someone provide any assistance here? Is it a necessary setting?

Answer 1 · 2015-08-12T15:27:23.000Z

ok, found my own answer.

Download and install the Amazon Command Line Interface
http://docs.aws.amazon.com/cli/latest/userguide/installing.html
Configure the command line interface
http://docs.aws.amazon.com/cli/latest/userguide/cli-chap-getting-started.html
$aws configure
Request the session token
$aws sts get-session-token --duration-seconds 129600 (enter your own duration)

Answer 2 · 2015-08-12T15:43:28.000Z

I entered the SecretAccessKey, Session Token, and AccessKeyId from the get-session-token request I made earlier, and now I am getting this error message:

$ vagrant up --provider=aws
Bringing machine 'default' up with 'aws' provider...
==> default: Warning! The AWS provider doesn't support any of the Vagrant
==> default: high-level network configurations (config.vm.network). They
==> default: will be silently ignored.
==> default: Launching an instance with the following settings...
==> default: -- Type: m3.medium
==> default: -- AMI: ami-7747d01e
==> default: -- Region: us-east-1
==> default: -- Keypair: dev
==> default: -- Block Device Mapping: []
==> default: -- Terminate On Shutdown: false
==> default: -- Monitoring: false
==> default: -- EBS optimized: false
==> default: -- Assigning a public IP address in a VPC: false
There was an error talking to AWS. The error message is shown
below:

UnauthorizedOperation => You are not authorized to perform this operation. Encoded authorization failure message

Answer 3 · 2015-08-12T15:58:54.000Z

ok, I had to make sure the Amazon IAM user had the correct group access. I used AmazonEC2FullAccess

Answer 4 · 2015-10-23T21:10:52.000Z

@waygee thank you.

Answer 5 · 2016-08-19T04:27:49.000Z

btw in testing, and by convention, an aws Session Token is not a requirement.

Answer 6 · 2016-10-08T21:48:26.000Z

Since Session Token is not required (and I can verify this, having spun up a machine without a Session Token), shouldn't the reference to a Session Token be removed from the Readme? Or shouldn't the Readme at least say that the Session Token is not required?

Alternatively or additionally, is there some reason for using a Session Token that should be explained somewhere?