The recommended approach to share and manage AWS credentials:

Note: this option requires at least one System Scope AWS Connector to be configured within the Identity Federation for AWS app
a connector yields a set of temporary credentials on task execution (optionally limiting the IAM permissions)
you can configure multiple connectors to provide credentials with different IAM permissions tailored for specific use cases

An alternative to AWS Connectors, replacing direct credential management with an IAM Role for Amazon EC2 assignment (Instance Profiles):

Note: this option requires agents based on EC2 instances with assigned IAM Roles for EC2
in Elastic Bamboo, the Instance Profile can be assigned to the elastic images the agents executing the tasks are created from
you can assign different roles/profiles to different agents to provide different IAM permissions tailored for specific use cases