how to show an IAM user's roles with 'aws iam'?

amazon-web-services aws-cli amazon-iam

If I run $ aws iam get-user --user-name anthony, I get result like this

{
    "User": {
        "Path": "/",
        "UserName": "anthony",
        "UserId": "E2S4XZIL9NRNSBIDBI5U6",
        "Arn": "arn:aws:iam::123456:user/anthony",
        "CreateDate": "2015-04-03T01:22:11Z",
        "PasswordLastUsed": "2019-04-10T01:38:14Z"
    }
}

If I want to get a list of role this login has, how can I do it with aws iam?


IAM User doesn't have IAM Roles, hence you can't list them.

IAM User can have IAM Policies (either attached directly or through IAM Group membership) that allow it to assume other roles.

You can list directly attached policies:

aws iam list-attached-user-policies --user-name ...

Group memberships:

aws iam list-groups-for-user --user-name ...

And from there groups policies:

aws iam list-attached-group-policies --group-name ... # group names from previous step

Hope that helps :)

Related

Linux - User name with a "$" cannot sudo
Bash function hangs while command run perfectly without function
VPN tunnel IP is 172.16.4.2, how can I see what IP's/Subnets are on the other side?
Postfix blank sender from= <>
Centos 6.10 - How to increase allocated PE size to take up Free P/E size
OneNote local copy of web notebook?
Can I use a pci-e x16 slot for multple cards?
Which files do I need to backup to keep my Linux user settings?
What's the correct Processor Architecture type to pick during Debian Installation?
Perforce P4 client: how can I transfer my workspaces and bookmarks to a new computer
How to style window borders in Linux Mint w/ Cinnamon?
How to delete a downloaded OS X automatic update?