We’d like to provision an IAM Role w/Third Party External ID rather than having to provision an IAM User with an Access Key/Secret that we have to rotate on a regular basis in order to adhere to security best practices.
This looks like a relatively small feature to implement. I’ve created an issue at https://github.com/OctopusDeploy/Issues/issues/6384 to track this request, which at this point is targeting version 2020.3.