for the non-interactive portion, Is there many benefits over using something like federated access (Say using a managed identity in Azure to assume a role in AWS temporarily with a session limit) the fact it doesnt rely on any aspect of a private key being on disk (and being handled by TPM) has a nice plus of scalabilty but perhaps at a security cost that anyone could try to assume a role if they got access to the host
for the non-interactive portion, Is there many benefits over using something like federated access (Say using a managed identity in Azure to assume a role in AWS temporarily with a session limit) the fact it doesnt rely on any aspect of a private key being on disk (and being handled by TPM) has a nice plus of scalabilty but perhaps at a security cost that anyone could try to assume a role if they got access to the host
🤣 promosm