CLI key rotation for team members

Question

Hi there,&nbsp;I was looking for a solution on how to decrease the work load on rotating AWS CLI keys and distributing the individual keys to the team members.&nbsp;I know that AWS identity center could solve this but this has some dependencies on our side to get there.&nbsp;Now here is what was searching for but did not find a solution:&nbsp;I want to distribute a new CLI key to a developer, sure I can create 25 vaults, for each developer one and place the new key into such a vault, but this is not scalable.&nbsp;Ultimately I have one vault and for each developer the CLI key. I would replace existing key and secret with the new one, when it is about time to rotate.&nbsp;The advantage I see here, that the developer would not even change her/his workflow since the item id would remain the same and would be able to keep on using the same item id in the IDE.But maybe I missed something how to solve this but I was not finding any solution when searching for it.&nbsp;Looking forward to understand how others are solving it!

phildmno · Answer

Just so I understand, you want to have a separate key for each dev, but keep them all colocated in the same vault?&nbsp;

Forum Discussion

CLI key rotation for team members

1 Reply

Recent Discussions

I havent add group button

You are not in the Provision Managers group" Error Despite Proper Setup

How do I tell 1Password to update a username/email as web developer

Feature request: select account in `op://` url querystring

Windows Hello prompt comes up every time I unlock the vault using a password