I’ve had some issues in the past working with
AWS.ToolsPowerShell SDK and correctly assuming credentials.
By default, most of the time it was easier to use a dedicated IAM credential setup for the purpose.
However, as I’ve wanted to run some scripts across multiple accounts, the need to simplify by assuming a role has been more important.
It’s also a better practice than having to manage multiple key rotations in all accounts.
Read on to see how far Sheldon has been able to take this, but also how much more work is left to do.