IAM key last used

Anju

·

Follow

Jun 22, 2023

--

Listen

Share

#!/bin/bash

# Set the AWS profile to be used
export AWS_PROFILE=$1

# Retrieve IAM users using AWS CLI
iam_users=$(aws iam list-users --output json | jq -r '.Users[].UserName')

# Print table header
printf "%-20s %-20s %-20s\n" "User" "Key" "LastUsedDate"

# Iterate over each IAM user
for user in $iam_users; do
    # Retrieve last used information for the user
    key_list=$(aws iam list-access-keys --user-name "$user" --query 'AccessKeyMetadata[].AccessKeyId' --output text)

    # Extract last used date and time
    for key in $key_list; do
    last_used_date=$(aws iam get-access-key-last-used --access-key-id $key --query 'AccessKeyLastUsed.LastUsedDate' --output text)

    # Display user and last used information
    #echo "User: $user"
    #echo "Key: $key"
    #echo "Last Used Date: $last_used_date"
    # Print table rows
    printf "%-20s %-20s %-20s\n" "$user" "$key" "$last_used_date"
    echo
    done
done