Skip to main content
Customize AWS CLI
Last update:

Customize AWS CLI

AWS CLI (AWS Command Line Interface — A command line interface for working with AWS services.

Using the AWS CLI, you can work with the logging platform: get the events, event streams и log groups.

  1. Create a service user.
  2. Issue an S3 key to the user.
  3. Install the client.
  4. Configure the AWS CLI configuration.

1. Create a service user

Create a service user with the role of Project Administrator or Project Supervisor. Users with the role Account Owner or User Administrator.

2. Issue an S3 key to the user

Control panel users may S3 keys on your own, but we recommend create service users and use the keys in conjunction with them.

Only the Account Owner or User Administrator can issue S3 keys to other users. A service user cannot get an S3 key by himself because he does not have access to the control panel — he must be issued a key by the Account Owner or User Administrator.

You must create a separate key for each project. Multiple keys can be issued for one project.

  1. В control panels from the top menu, press Account.

  2. Go to the section with the desired user type:

    • Users — for control panel users;
    • Service users — for service users.

  3. Open the user page → tab Access .

  4. In the block S3 keys click Add key.

  5. Enter the name of the key.

  6. Select project for which the key will work.

  7. Click Generate. Two values will be generated:

    • Access key — Access Key ID, key identifier;
    • Secret key — Secret Access Key, secret key.

  8. Click Copy and save the key — it cannot be viewed after closing the window.

3. Install the client

Use the instructions Install or update to the latest version of the AWS CLI Amazon documentation.

4. Configure AWS CLI configurations

  1. Open the terminal.

  2. Open the configuration mode:

    aws configure

  3. Enter AWS Access Key ID — field value Access key from S3 key.

  4. Enter AWS Secret Access Key — field value Secret key from the S3 key.

  5. Enter Default region name — pool where the logging platform is located (e.g., ru-8).

  6. Enter Default output format or leave it blank.

  7. The settings will be saved in the configuration files:

    • credentials in .aws/credentials;
    • pool in ~/.aws/config.

  8. In the file ~/.aws/config add a parameter endpoint_url, as a value specify the address of the logging platform in the desired pool, you can look in the URL list:

    [default]
    region = ru-8
    endpoint_url = https://ru-8.logs.selcloud.ru