Test AWS credentials using AWS CLI

Posted Jun 1, 2022 Updated Dec 20, 2023

By Senad Dizdarević 1 min read

Testing for AWS credentials is a straightforward operation.

Using get-caller-identity

There is a single API call that will always work regardless of permissions: GetCallerIdentity

aws sts get-caller-identity

Output:

  
{
    "UserId": "AIDA...",
    "Account": "123456789012",
    "Arn": "arn:aws:iam::123456789012:user/thomas"
}

The Arn value depends on the type of credentials, but mostly includes the human-friendly name.

In addition, checking the status is reliable: 0 for success, 255 for failure.

This post is licensed under CC BY 4.0 by the author.