The process to configure your application to access AWS, requires to generate an AWS API Key
configure your application to use the AWS API Key
It is recommended to create an IAM user
and assign only required permissions.
Open your AWS Console
and then search for IAM
(Identity and Access Management).
Click on Users
(left panel) and then click on the Add User
type a user name and then click on the Programmatic access
click the Attach existing policies directly
button. There are several ways to make this. You can create your own policies or use groups. This is simple, secure and easy way.
Then select the proper policy for your application. If the application only generate reports, such AWS Inventory, the ReadOnlyAccess
policy is enough and it will work for all AWS services.
Also, you can narrow the policy to specific AWS Services, such AmazonEC2ReadOnlyAccess
If the application will update or manage multiple AWS services, select the AdministratorAccess
If the application will update or manipulate one single AWS service, for example, the RDS service, select only the FullAccess policy for only the service, in this case AmazonRDSFullAccess
Add optional tags, in you want.
Review the user settings and then click on the Create User
Copy the AWS Access Key and AWS Secret Key and store in secure place.
to configure your application to use the AWS API Key.
, if you have issues to validate your credentials in AWS Inventory
, create a new IAM user and attach the AdministratorAccess
, if you are looking for a restricted policy for AWS Inventory
, check this repo