How to login with AWS CLI using credentials profiles
For me although I setup everything is above, I have older aws cli version is causing this issue.
$ curl "https://s3.amazonaws.com/aws-cli/awscli-bundle.zip" -o "awscli-bundle.zip"
$ unzip awscli-bundle.zip
$ sudo ./awscli-bundle/install -i /usr/local/aws -b /usr/local/bin/aws
By applying above commands it resolves my issue.
To setup multiple profiles for AWS login you need to the following:
- Setup the credentials file with your access keys
- Setup default settings for profiles (optional)
- Set the AWS_PROFILE environment variable
- Remove previous AWS_ACCESS_KEY_ID and AWS_SECRET_ACCESS_KEY
1: ~/.aws/credentials
[default]
aws_access_key_id =
aws_secret_access_key =
[cat]
aws_access_key_id = XXXX
aws_secret_access_key = XXXXXXXXXXXX
[dog]
aws_access_key_id = XXXX
aws_secret_access_key = XXXXXXXXXXXX
2: ~/.aws/config
[default]
region = eu-central-1
[profile cat]
region = us-west-2
[profile dog]
region = ap-northeast-1
3. Select profile
The selected profile is determined by the $AWS_PROFILE environment variable. In bash this could be done in ~\.bash_profile by adding a line export AWS_PROFILE="cat". To switch profiles in the current terminal, type AWS_PROFILE=dog.
4. Remove global settings
You also need to make sure that the environment variables AWS_ACCESS_KEY_ID and AWS_SECRET_ACCESS_KEY are not set because the aws-cli will give priority to those variables over profiles.
Running
You can then login to the AWS service of your choice. To see what profile is currently in use echo $AWS_PROFILE. Example command for ECR login would be $(aws ecr get-login)
Debugging
If you're still having problems you can add the --debug flag to see what credentials it's using for the command.