We have 17 AWS accounts. I am going to setup 17 different okta applications and assign different people to each app they need for console access. This is working fine. But I have several users who need to use the AWS CLI. I tried following the doc, but got hung up in a few places:
- The support team informed me that the java tool was not officially supported
- When I create the user in appendix A, what resource ARN do I use. The doc is not clear on this.
- For the custom tool, the directory structure you provide in docs does not match what is in Git, so I had to hunt around a bit for where awscli.command was. It’s actually in out and not in lib. config.properties is in root and not in out. There are a few more examples of this.
- If a user has access to multiple AWS apps configured in okta is there a command line argument to connect to a certain AWS app?