Given I have two account i.e. A and B.
I have created a role in account B. This role can be accessed by an IAM user in account A. I want to use STS AssumeRole in AWS secrets engine to generate temporary credentials to assume the role in Account A.
I have successfully assumed role when their is no requirement of externalID to assume the role in account B. But, when their is a requirement. I don’t see any option to add externalID in my STS AssumeRole request.
Can anyone help me with this? If it’s supported by AWS secrets engine or their is a way around and achieve this task?