Configuring the AWS CLI

This section explains how to configure the settings that the AWS Command Line Interface (AWS CLI) uses to interact with AWS. These include your security credentials, the default output format, and the default AWS Region.

Note

AWS requires that all incoming requests are cryptographically signed. The AWS CLI does this for you. The "signature" includes a date/time stamp. Therefore, you must ensure that your computer's date and time are set correctly. If you don't, and the date/time in the signature is too far off of the date/time recognized by the AWS service, AWS rejects the request.

Topics

Configuration basics
Configuration and credential file settings
Named profiles for the AWS CLI
Configuring the AWS CLI to use AWS IAM Identity Center (successor to AWS Single Sign-On)
Environment variables to configure the AWS CLI
Command line options
Command completion
AWS CLI retries
Sourcing credentials with an external process
Using credentials for Amazon EC2 instance metadata
Using an HTTP proxy
Using an IAM role in the AWS CLI

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

Quick setup

Configuration basics