AWS Toolkit vscode extension, Connect Using AWS Identity Center keeps trying to access the wrong region
I installed the extension AWS Toolkit for VScode. My IAM Identity Center Users, Groups, etc were all created in us-east-2.
But for some reason AWS keeps trying to route me through us-east-1 even though this causes an invalid_grant Invalid grant provided error. I tried setting the region for AWS Toolkit to us-east-2:
After setting the region to us-east-2, I tried to connect via AWS Identity Center.
But it still directs me to https://device.sso.us-east-1.amazonaws.com/ to enter in my auth code. Notice the us-east-1 in the url instead of us-east-2. When I enter in the auth code, I get the dreaded invalid_grant Invalid grant provided error:
So how do I force it to use us-east-2 instead of us-east-2? It seems to ignore the fact that I set the region to us-east-2.
It looks like you are trying to use a credentials profile configured to use AWS IAM Identity Center (AWS SSO). This profile may not be configured to refer to the region where your SSO portal is defined.
Check your credentials files (~/.aws/credentials and/or ~/.aws/config) for the credentials profile of interest. This profile should contain a sso_region property that is assigned to the region where your SSO portal is (us-east-2 in your case).
- How to upgrade AWS CLI to the latest version?
- How to cp file only if it does not exist, throw error otherwise?
- Query in DynamoDB contains list of values in KeyConditionExpression
- How to display only files from aws s3 ls command?
- UnrecognizedClientException error when authenticating on aws-cli
- -bash: aws: command not found
- AWS CLI not listing policies attached to role
- Localstack - bucket does not exists
- AWS CLI getting 504 Gateway Timeout on apigateay put-rest-api
- How to use bazel to download amzn2-core packages
- Cannot connect to s3 from ec2 via php sdk - cURL error 7
- AWS CLI is returning random hex string rather than output
- aws configure list show me nothing
- I am trying to get list of databases from AWS Glue using AWS Glue SDK for Java 1.X with limited resource access on policy but getting empty list
- Disable progress output aws s3 sync without disabling all output
- Value for parameter MessageDeduplicationId is invalid. Reason: The request includes a parameter that is not valid for this queue type
- InvalidClientTokenId error aws when trying to get caller identity
- Downloading an entire S3 bucket?
- aws cli output automatically being sent to vi
- AWS CLI: Authenticating Docker CLI to default registry
- How to delete all images in an ECR repository?
- AWS Codecommit - fatal: unable to access : The requested URL returned error: 403
- Parsing secrets from AWS secrets manager using AWS cli
- How to add one IP in ip-set using aws wafv2 cli?
- Installing AWS CLI v2 through PIP on Windows
- AWS CLI - [SSL : CERTIFICATE_VERIFY_FAILED] certificate verify failed: self signed certificate in certificate chain (_ssl.c:1056)
- Use AWS CLI to import existing resources into CloudFormation
- "bash: aws: command not found" on Windows 7 in Git Bash
- AWS CLI to run SQL query
- aws rds enable-http-endpoint not changing flag of postgres db cluster