in reply to Re^3: Paws questions
in thread Paws questions

Yes, but that is supposed to happen - and happens - 'under the hood'.

Basically, I'm trying to access the cloudwatch service, with an IAM user account set up to switch to a given role, from an external (non-AwS) machine.

Replies are listed 'Best First'.
Re^5: Paws questions
by nikosv (Deacon) on May 05, 2017 at 11:01 UTC
    In this case I would suggest setting up an API Gateway which exposes and HTTP API endpoint which calls into the Cloudwatch service. Since you don't want to use any AWS credentials in the clean machine you can authorize through creating API Keys by choosing security for your endpoint as "Open with access key", so that you can access the backend service over HTTP