Problem: How do I delete an AWS access key?
To create, disable, or delete an access key for your AWS account root user
- Use your AWS account email address and password to sign in to the AWS Management Console as the AWS account root user.
Note: If you previously signed in to the console with IAM user credentials, your browser might remember this preference and open your account-specific sign-in page. You cannot use the IAM user sign-in page to sign in with your AWS account root user credentials. If you see the IAM user sign-in page, choose Sign-in using root user credentials near the bottom of the page to return to the main sign-in page. From there, you can type your AWS account email address and password.
- On the IAM Dashboard page, choose your account name in the navigation bar, and then choose My Security Credentials.
- If you see a warning about accessing the security credentials for your AWS account, choose Continue to Security Credentials.
- Expand the Access keys (access key ID and secret access key)
- Choose your preferred action:
To create an access key
Choose Create New Access Key. Then choose Download Key File to save the access key ID and secret access key to a file on your computer. After you close the dialog box, you can't retrieve this secret access key again.
To disable an existing access key
Choose Make Inactive next to the access key that you are disabling. To reenable an inactive access key, choose Make Active.
To delete an existing access key
Before you delete an access key, make sure it's no longer in use. For more information, see Finding unused access keys in the IAM User Guide. You can't recover an access key after deleting it. To delete your access key, choose Delete next to the access key that you you want to delete.
For instructions on deleting access keys for an IAM user:
To create, modify, or delete a user's access keys (console)
- Sign in to the AWS Management Console and open the IAM console at https://console.aws.amazon.com/iam/.
- In the navigation pane, choose Users.
- Choose the name of the preferred user, and then choose the Security credentials
- If needed, expand the Access keys section and do any of the following:
- To create an access key, choose Create access key. Then choose Download .csv file to save the access key ID and secret access key to a CSV file on your computer. Store the file in a secure location. You will not have access to the secret access key again after this dialog box closes. After you have downloaded the CSV file, choose Close.
- To disable an active access key, choose Make inactive.
- To reenable an inactive access key, choose Make active.
- To delete an access key, choose its X button at the far right of the row. Then choose Delete to confirm.
Managing Access Keys (AWS CLI)
To manage a user's access keys from the AWS CLI, run the following commands.
- To create an access key: aws iam create-access-key
- To disable or reenable an access key: aws iam update-access-key
- To list a user's access keys: aws iam list-access-keys
- To determine when an access key was most recently used: aws iam get-access-key-last-used
- To delete an access key: aws iam delete-access-key
Note: After an access key is deleted, it cannot be retrieved, and any users or applications that are using the access key are not able to programmatically access your account and resources until the deleted access key is replaced with a new one.
If you continue to experience difficulties, please open a case with the DLT Opscenter using the following contact information: