We are using the Amazon AWS plugin and the Amazon S3 integration in our QuickBuild server, and historically we have leveraged an IAM user with static credentials (access key and secret key) to access AWS resources. We would like to move away from this pattern and instead use IAM roles that have short-lived, dynamically generated credentials, as this eliminates the need to rotate credentials and overall improves our security posture.
Ideally, we would create IAM roles and associate them with the EC2 instances on which our QuickBuild agents are running. Do the QuickBuild Amazon AWS plugin and the Amazon S3 integration support credentials provided via IAM role rather than static credentials?