Channels
announcements
automation-api
aws
azure
blog-posts
built-with-pulumi
cloudengineering
cloudengineering-support
content-share
contribex
contribute
docs
dotnet
finops
general
getting-started
gitlab
golang
google-cloud
hackathon-03-19-2020
hacktoberfest
install
java
jobs
kubernetes
learn-pulumi-events
linen
localstack
multi-language-hackathon
office-hours
oracle-cloud-infrastructure
package-authoring
pulumi-ai
pulumi-cdk
pulumi-cloud
pulumi-crosscode
pulumi-deployments
pulumi-kubernetes-operator
pulumiverse
python
registry
status
testingtesting123
testingtesting321
typescript
welcome
workshops
yaml
Powered by
Title
b
better-zoo-17970
09/18/2021, 2:09 AM
im trying to run pulumi from a machine that has roles to create infrastructure, is there a way to tell pulumi to use the machine roles instead of asking for aws credentials (secret key id and secret key)
c
crooked-pillow-11944
09/18/2021, 2:16 AM
https://www.pulumi.com/docs/tutorials/aws/aws-ts-assume-role/
b
better-zoo-17970
09/18/2021, 2:24 AM
Thanks! i will try this
but this assumes that i create the role then use it, i want to just use a role
that i dont have the keys for
c
crooked-pillow-11944
09/18/2021, 5:55 AM
You need an access key for any api request to AWS This is how IAM works
Is the machine that you're running this on an ec2 instance? If so you can use an instance profile and allow that role to assume another role
Checkout
https://medium.com/swlh/aws-iam-assuming-an-iam-role-from-an-ec2-instance-882081386c49
#aws
Join Slack