I can probably do that, sure 
I’ve never used rclone with S3 before, so I just created a silly setup:
[s3]
type = s3
env_auth = true
access_key_id =
secret_access_key =
region = us-east-1
endpoint =
location_constraint =
acl = private
server_side_encryption =
storage_class =
Without MFA,
% rclone ls s3:sweh-test-bucket
2017/11/07 18:31:56 ERROR : : error listing: NoCredentialProviders: no valid providers in chain. Deprecated.
For verbose messaging see aws.Config.CredentialsChainVerboseErrors
2017/11/07 18:31:56 Failed to ls: NoCredentialProviders: no valid providers in chain. Deprecated.
For verbose messaging see aws.Config.CredentialsChainVerboseErrors
With MFA environment variables defined (via my scripts)
% rclone copy testfile s3:sweh-test-bucket
% rclone ls s3:sweh-test-bucket
5 testfile
It’d be nice to be able to specify a “base” bucket, but the code seems to work properly