AWS IAM Identity Center (Successor to AWS Single Sign-On)
Attribute-Based Access Control (ABAC) for AWS
- Create or connect your workforce identities only once for use across AWS.
- Centrally manage your workforce access to multiple AWS accounts.
- Assign user permissions based on common job functions or user attributes.
- Provide your workforce single sign-on access to cloud applications.
Using IAM Identity Center, you can create and manage user identities in AWS, or connect your existing identity source, including:
- Microsoft Active Directory
- Okta
- Ping Identity
- JumpCloud
- Google Workspace
- Azure Active Directory (Azure AD)
- Enable multi-account access to your AWS accounts
- AWS Command Line Interface (CLI)
- AWS SDKs
- AWS Console Mobile Application
- Enable single sign-on access to your AWS applications
- Amazon SageMaker Studio
- AWS Systems Manager Change Manager
- AWS IoT SiteWise
- Enable single sign-on access to Amazon EC2 Windows instances
- Enable single sign-on access to cloud-based applications
- Salesforce
- Box
- Microsoft 365
(Supporte Applications)[https://docs.aws.amazon.com/singlesignon/latest/userguide/saasapps.html] Supporte Applications highlights:
| Application | |||||
|---|---|---|---|---|---|
| Atlassian | Ext. Account | Lucidchart | Salesforce | Snowflake | SumoLogic |
| Box | GitHub | Office365 | SAP | Spinnaker | Tableau |
| Databricks | GitLab | OpsGenie | ServiceNow | Splunk Cloud | |
| Datadog | Jenkins | PagerDuty | Slack | Splunk Enterprise | |
| DocuSign | Jira | Quip | SnarQube | Statuspage |