This document page is related to the deprecated dashboard. We advise using the updated dashboard at app.serverless.com and using the new Providers feature to manage AWS connections for any new orgs created.
You can use the Serverless Framework Dashboard to set up an AWS Access Role to help you secure your service deployments on AWS by enabling the Serverless Framework to issue temporary AWS Access Keys to deploy your services to AWS.
With AWS Access Roles the AWS Access Keys are generated by Serverless Framework on every command and the credentials expire after one hour. The Serverless Framework leverages AWS Security Token Service and the AssumeRole API to automate creating and usage of temporary credentials, so your developers can stay productive and work securely without doing this manually.
If you do not use the Serverless Framework Dashboard to set up an AWS Access Role, then you will need to configure your Serverless Framework open source CLI to use the AWS Access Keys stored in environment variables or AWS Profiles.
- Open the Dashboard
- Once logged in, click "profiles" near the top of the page.
- Navigate to the profile you would like to configure with the AWS Access Role.
- In the AWS account tab, click connect aws button.
- Follow the instructions on AWS which will take you through creating an IAM Role for the Serverless Framework.
- Once the IAM Role is created, your profile will be automatically updated.
You don't have to do anything in your
serverless.yml file. When you run
sls deploy the Serverless Framework will identify the deployment profile associated with the application or stage and it will generate the AWS Access Keys using the associated AWS Access Role automatically.
That’s it! You are now ready to deploy using your AWS Access Roles.