SAML to AWS STS Keys Conversion SAML to AWS STS Keys Conversion

Developer Tools
Version: 3.3
Last Update: 2023-03-20

Overview

SAML to AWS STS Keys Conversion is a Chrome extension developed by prolane.org. According to the data from Chrome web store, current version of SAML to AWS STS Keys Conversion is 3.3, updated on 2023-03-20.
10,000+ users have installed this extension. 11 users have rated this extension with an average rating of .

Generates file with AWS STS Keys after logging in to AWS webconsole using SSO (SAML 2.0). It leverages 'assumeRoleWithSAML' API.

Google Chrome Extension which converts a SAML 2.0 assertion to AWS STS Keys (temporary credentials -> AccessKeyId, SecretAccessKey and SessionToken).

### Why this Chrome Extension? ###
If you don't have any user administration setup within AWS Identity & Access Management (IAM) but instead rely on your corporate user directory, i.e. Microsoft Active Directory. Your company uses a SAML 2.0 Identity Provider (IDP) to log in to the AWS Web Management Console (Single Sign On). Then this Chrome Estension if for you!

You run into trouble as soon as you would like to execute some fancy scripts from your computer which calls the AWS API's. When sending a request to the AWS API's you need credentials, meaning an AccessKey and SecretKey. You can easily generate these keys for each user in AWS IAM. However, since you don't have any users in AWS IAM and don't want to create users just for the sake of having an AccessKey and SecretKey you are screwed. But there is a way to get temporary credentials specifically for your corporate identity.

The Security Token Service (STS) from AWS provides an API action assumeRoleWithSAML. Using the SAML Assertion given by your IDP the Chrome Extension will call this API action to fetch temporary credentials. (AccessKeyId, SecretAccessKey and SessionToken). This way there is no need to create some sort of anonymous user in AWS IAM used for executing scripts. This would be a real security nightmare, since it won't be possible to audit who did what. This Chrome Extension however will make it super easy for you to just use your corporate identity for executing scripts calling AWS API's.

Rating

11 ratings
5
4
3
2
1

Total Installs

10,000+

Information

Last Update

2023-03-20

Current Version

3.3

Size

157KiB

Author

prolane.org

Website

None

Category

Developer Tools

SAML to AWS STS Keys Conversion Alternatives

Name Category Rating Rating Count Installs
extension logo AWS SAML Keys Developer Tools
(0) 74
extension logo aws-launcher Productivity
(4) 81
extension logo Chrome AWS SAML Token Expiry Reminder Developer Tools
(3) 150
extension logo CloudKeeper - Credential Helper Developer Tools
(2) 306
extension logo SAML Assertion to AWS STS Assumption Developer Tools
(0) 346
extension logo Cloud Pegboard AWS Console Enhancer Developer Tools
(8) 298
extension logo Secret Server Clipboard Utility Productivity
(21) 100,000+
extension logo AWS Console Fixes Developer Tools
(3) 366
extension logo AWS Sidebar Developer Tools
(4) 537
extension logo AWS Extend Switch Roles Developer Tools
(79) 100,000+
extension logo Console Recorder for AWS Productivity
(13) 5,000+
extension logo idpawssamlinterceptor Developer Tools
(1) 171
extension logo ModHeader - Modify HTTP headers Developer Tools
(677) 700,000+
extension logo SAML Message Decoder Developer Tools
(29) 80,000+
extension logo SAML-tracer Developer Tools
(25) 200,000+
extension logo SAML Chrome Panel Developer Tools
(44) 100,000+
extension logo My Apps Secure Sign-in Extension Productivity
(62) 2,000,000+
extension logo Virtru Email Protection Social & Communication
(106) 600,000+
extension logo SAML DevTools extension Developer Tools
(26) 40,000+
extension logo AWS Region Color Highlights Accessibility
(4) 264
extension logo AWS Helper Developer Tools
(4) 489
extension logo Former2 Helper Productivity
(4) 10,000+
extension logo AWS console regions color Productivity
(18) 599
extension logo Real AWS Status Productivity
(8) 461

Latest Reviews

See More

avatar Moh Basher
2021-05-07

Love it! If it doesn't work for you! Change the session timeout of your role to match or be more than the one you have on your identity provider

avatar Alexander Carlson
2020-09-21

Excellent!

avatar R W
2019-04-11

Best tool aout there for this, but no competition.

Would be good to see it write aws_session_expiration value into the credentials.

Even better if it could load an existing credentials file then update

avatar Jason Hutchinson
2019-03-17

As per @Leander's review. Very,very handy tool for federated access to AWS accounts when using the CLI!

avatar Leander Janssen
2016-07-25

Very handy extension when using SAML to login to your AWS account(s) and want to use the AWS CLI tools.