AWS SageMaker: Authentication action

To authenticate access to AWS SageMaker from the Control Room you need to obtain AWS access key ID and secret access key. You can include a session token which is a temporary token used when working with temporary security credentials.

Prerequisites

Note: The examples and graphics provided on this page are for representation purposes only and may not accurately reflect your specific instance. We do not assume responsibility for their maintenance or accuracy.
  1. Create a AWS account (Create a standalone AWS account) or create a member account in your organization (Creating a member account in your organization).
  2. Log in to your AWS account and create a project. If you already have access to a project, you can view it after you login into you AWS account.
This topic describes the steps to acquire the following key components and use them in the Control Room to authenticate to AWS SageMaker:
  • AWS Access Key ID: The AWS Access Key ID serves as your unique identifier within the AWS ecosystem. It is a fundamental part of the authentication process, allowing AWS services to recognize and validate your access.
  • Secret Access Key: The Secret Access Key is the confidential counterpart to your Access Key ID. This key is used to sign requests made to AWS, enhancing security by ensuring that only authorized individuals or systems can access your AWS resources.
  • Session Token (Optional): Additionally, you have the option to include a Session Token. A Session Token is a temporary, time-bound token used when working with temporary security credentials. It provides an added layer of security, particularly in scenarios where temporary access is required, such as when using temporary security credentials.

Procedure

  1. Log in to your AWS Console and select the project.
  2. Click Command line or programmatic access corresponding to the project you selected. AWS SageMaker Command Line or Programmatic Access
  3. Click on Windows and scroll down the screen to copy the: AWS Access Key ID, AWS Secret Access Key, and AWS Session Token.AWS SageMaker Keys and Token
  4. Log in to the Control Room.
  5. Create a new bot. For more details, see Create your first bot.
  6. From the Actions pane, select AI > AWS SageMaker > Authentication and place it under the Start of the bot flow.
  7. Paste all the credentials you copied as follows:
    Note: You can use one of the following options to specify the Access Key/Secret Access Key/Session Token (optional):
    • Credential: To implement stronger security, you can use values in the Credential Vault that contains information about the AWS access key ID/Secret access key/Session Token (optional).
    • Variable: To implement stronger security, you can use a credential variable that contains information about the AWS access key ID/Secret access key/Session Token (optional).
    • Insecure string: Enables you to enter the AWS access key ID/Secret access key/Session Token (optional).
    AWS SageMaker Authentication
    1. In the Access Key field, paste the Access Key copied from your AWS Environment.
    2. In the Secret Access Key field, paste the Secret Access Key copied from your AWS Environment.
    3. In the Session Token (optional) field, paste the Session Token (optional) copied from your AWS Environment.
    4. Select any one of the following tabs to create an AI session:
      • Local session: Specify a session name that can be used only in the current bot.
      • Global session: Specify a session name that can be used across multiple bots, such as parent bots and child bots.
        Recommendation: The parent and child bots should have the same package version.
      • Variable: Specify or create a session variable of subtype AI session.
  8. Click Run to ensure you are successfully authenticated.

Next steps

Invoke SageMaker Endpoint action