Stuck on an issue?

Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.

And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.

AWS SSO Support does not work

See original GitHub issue

I currently have SSO credentials using the command aws sso login, which work fine for aws cli (v2) commands, but mssh does not support using these credentials:

mssh i-02d6e842cb8375f64
Unable to locate credentials

mssh --profile nonprod i-02d6e842cb8375f64
Unable to locate credentials

aws --version
aws-cli/2.0.0 Python/3.7.4 Darwin/19.3.0 botocore/2.0.0dev4

Issue Analytics

State:
Created 4 years ago
Reactions:10
Comments:5 (1 by maintainers)

Top GitHub Comments

1reaction

derektamsencommented, Nov 9, 2021

AWS SSO credentials with a recent pip install ec2instanceconnectcli appears to be working.

Name: ec2instanceconnectcli
Version: 1.0.2
Summary: Command Line Interface for AWS EC2 Instance Connect
Home-page: https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/Connect-using-EC2-Instance-Connect.html
Author: Amazon Web Services
Author-email: UNKNOWN
License: Apache License 2.0
Location: /home/user/.local/lib/python3.9/site-packages
Requires: cryptography, botocore
Required-by:

Reviewing the code it calls botocore.session.get_session() which means support for aws sso is based on whether the dependency botocore supports sso profiles. As of botocore 1.14.0, aws sso profiles are supported. I was able to successful use mssh to connect using aws sso with botocore 1.23.2.

Steps

pip install ec2instanceconnectcli
aws sso login --profile <your_sso_profile_config_name>
mssh --profile <your_sso_profile_config_name> --region <instance_region> <user>@<instance_id>

1reaction

z0mbixcommented, Apr 27, 2021

I ended up creating https://github.com/z0mbix/essh instead of using mssh. It supports AWS SSO from v0.0.5 onwards.