AWS Bites

113. How do you revoke leaked credentials?

Listen Later

In this episode, we discuss what to do if you accidentally leak your AWS credentials during a live stream. We explain the difference between temporary credentials and long-lived credentials, and how to revoke each type. For temporary credentials, we recommend using the AWS console to revoke sessions or creating an IAM policy to deny access. For long-lived credentials, you must deactivate and rotate the credentials. We also touch on using tools like HashiCorp Vault to manage credentials securely.


💰 SPONSORS 💰

AWS Bites is brought to you by fourTheorem, the AWS consulting partner that doesn’t suck. Check us out at ⁠⁠https://fourTheorem.com⁠⁠
In this episode, we mentioned the following resources:

  • Gist with example policy: https://gist.github.com/lmammino/02fef8ce0cc22a45f219fe4f47fcf20c
  • Revoking IAM role temporary security credentials (official AWS docs): https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_use_revoke-sessions.html


    • Do you have any AWS questions you would like us to address?

    Leave a comment here or connect with us on X, formerly Twitter:
    - ⁠⁠⁠⁠⁠⁠⁠https://twitter.com/eoins⁠⁠⁠⁠⁠⁠⁠
    - ⁠⁠⁠⁠⁠⁠⁠https://twitter.com/loige⁠⁠

    ...more
    View all episodesView all episodes
    Download on the App Store
    AWS BitesBy AWS Bites
    • 4.7
    • 4.7
    • 4.7
    • 4.7
    • 4.7

    4.7

    12 ratings

    More shows like AWS Bites

    View all
    Up First from NPR by NPR

    Up First from NPR

    56,572 Listeners

    AWS Podcast by Amazon Web Services

    AWS Podcast

    203 Listeners

    .NET Rocks! by Carl Franklin and Richard Campbell

    .NET Rocks!

    243 Listeners

    Bad Friends by Bobby Lee & Andrew Santino

    Bad Friends

    14,376 Listeners

    The AWS Developers Podcast by Amazon Web Services

    The AWS Developers Podcast

    26 Listeners