AWS IAM Identity Center (formerly AWS SSO) has some rough edges, and aws-sso-util is here to smooth them out, hopefully temporarily until AWS makes it better.

aws-sso-util contains utilities for the following:

• Configuring .aws/config
• Logging in/out
• AWS SDK support
• Looking up identifiers
• CloudFormation

The underlying Python library for Identity Center authentication is aws-sso-lib, which has useful functions like interactive login, creating a boto3 session for specific a account and role, and the programmatic versions of the lookup functions in aws-sso-util.

aws-sso-util supersedes aws-sso-credential-process, which is still available in its original form here. Read the updated docs for aws-sso-util credential-process here.

1. I recommend you install pipx, which installs the tool in an isolated virtualenv while linking the script you need.

Mac and Linux:

brew install pipx
pipx ensurepath

Other:

python3 -m pip install --user pipx
python3 -m pipx ensurepath

2. Install

pipx install aws-sso-util

3. Learn

aws-sso-util --help

See the full docs at https://github.com/benkehoe/aws-sso-util