AWS re:Invent 2020 Day 1: Top 5 Announcements
The first virtual re:Invent has officially kicked off with Monday Night Live and Andy Jassy's keynote. In this article we'll highlight the 5 most important announcements and releases for day 1. 1.…
How to add AWS Account bookmarks to Locksmith.
Locksmith can be used both stand-alone and managed by a service.
Here we show how to use Locksmith as a stand-alone tool.
Instructions for adding an AWS account bookmark to Locksmith are given below.
First, create an IAM Role in the target account.
Second, add a bookmark to Locksmith.
In the AWS console, create a new IAM Role:
Choose a role name, for example the email address of the user
Click “Role for Cross-Account Access”
In “Provide access between AWS accounts you own”, click “Select”
Enter the AccountID of the account in which the IAM User for Locksmith was
Make sure “Require MFA” is checked!
Click “Next Step”
Select the Policy you wish the user to be able to use
It is good practice to give the minimum required set of privileges.
If you must provide almost all privileges, please consider using
“PowerUserAccess” (allows evertything, except IAM user management) over
“AdministratorAccess” (allows everything).
Please make a note of the “Role ARN”, this is a string like
Click “Create Role”, don’t forget this step!
Click the plus sign in the upper left corner of the Locksmith popup
Fill following information in the form:
http) it will use
Try to use the new bookmark. Feel free to add as many bookmarks as you like,
there is no limit.
When the amount of AWS accounts you manage is becoming too large for you to
manage manually, implement the Locksmith API, or feel free to give us a