AWS 4 Signer Assertion customization
search cancel

AWS 4 Signer Assertion customization

book

Article ID: 389587

calendar_today

Updated On: 02-28-2025

Products

CA API Gateway

Issue/Introduction

we need to use the AWS 4 Signer Assertion and we see that field "AWS Secret Access Key" is a dropdown list, but we need it to be a dynamic field, so we can select the value based on a variable value. Do you have a newer version of this assertion with such capability?
Policy Manager version is 11.1.1.18484 , it seems that the dynamic variable should be supported in this version, but need to confirm from your side.

Environment

11.1

Resolution

That field that is mentioned is a drop down which gets the data from password store .

You need to add this key to the password store and select this in the assertion drop down.

AWS Secret Access Key

This is the secret access key Amazon assigned to you when you create your AWS account. The assertion uses it to create a derived key to sign the request. The secret access key must be stored with the gateway's password store.

The Secret Access Key is only used within the assertion as part of the signing process and is never exported or sent to Amazon.
Powered by Wolken Software