I should have said using IAM user access keys to access AWS resources from an application is not best practice and certainly using long term keys is not
AWS best practice is to use Roles when accessing from an application.
With IAM access keys, key rotation (which hopefully gets implemented by anyone using them) force a configuration changed in MIQ every time keys are rotated.
Also, storing long term keys with an application is not a good idea
IAM Roles keys automatically expire every hour and it is configurable to expire even sooner. You dont need to provide, share, store, etc keys since they can be obtain from the instance metadata (this is how BOTO3 and other AWS SDK do it)
Not to mention that many organizations dont use IAM users or IAM users key, we use Federation and IAM roles