1.0
1.0
scpcli sts sts assume role with saml
--saml_assertion <value>
--role_indicator <value>
--principal_indicator <value>
[--duration_seconds <value>]
Description
Acquire temporary role credential from SAML Assertion
State ACTIVE (CURRENT)
| Version | Supported Until |
|---|---|
| 1.0 | - |
Parameters
| Name | Type | Description | Example |
|---|---|---|---|
| saml_assertion required | string | BASE64 encoded SAML response | - |
| role_indicator required | string | Identifier of the role to assume. [offering:account_id:role_name] | - |
| principal_indicator required | string | Identifier of the SAML provider in IAM. [offering:account_id:provider_name] | - |
| duration_seconds optional | integer | Duration of seconds of the role session | - |
Responses
| Name | Description | Example |
|---|---|---|
| assumed_role_user | SRN and assumed role ID | |
| audience | Value of Recipient attribute of SubjectConfirmationData element of SAML | |
| credentials | Temporary security credentials | |
| issuer | Value of Issuer element of SAML | |
| subject | Value of NameID element in the Subject element of SAML | |
| subject_type | Format of nameID |