Clarification about actions required after changing IdP password

[JonRoma]

The documentation, in the Known issues section, defines what to do when a user is unable to authenticate after changing his/her IdP password, namely to run

keyring set awscli_login username@hostname_of_your_IdP

In spite of this explicit statement, some people seem to use the term "URL" and "hostname" interchangeably. Further, a user might overthink the situation and observe that he/she used the ECP endpoint URL to configure the IdP, and must correspondingly use that value to reset the keyring password.

In talking with @ddriddle, there are possible solutions.

• Explicitly stating that the hostname should be extracted from the ECP URL.
• Adding a command-line option to invoke the keyring operation.

As an aside, it might not be a bad idea to include links to the various keyring systems for the benefit of users who don't know about them or who aren't familiar with them.

[github-actions[bot]]

This issue is stale because it has been open 60 days with no activity. Remove stale label or comment or this will be closed in 14 days.