SAMLs

Leave a Comment / By /

Authenticate usingYour on-premises SAML 2.0- compliant identity provider (IDP).
, retrieve temporary credentials with
STS and provide federated access to the AWS console
through the AWS single sign-on (SSO) endpoint using
Browser.

How to implement above ?

  1. Create a SAML provider entity in IAM.
    1. Go to the IAM console.
    2. In the navigation pane, choose Identity providers.
    3. Choose Create provider.
    4. For Provider type, choose SAML.
    5. For Provider name, enter a name for your SAML provider entity.
    6. For Metadata document, upload the SAML metadata document that you obtained from your IdP.
    7. Choose Create provider.
  2. Create an IAM role that specifies the SAML provider entity in its trust policy.
    1. Go to the IAM console.
    2. In the navigation pane, choose Roles.
    3. Choose Create role.
    4. For Choose a role type, choose Web identity.
    5. For Choose an identity provider, choose the SAML provider entity that you created in the previous step.
    6. For Audience, enter the AWS account ID of your AWS account.
    7. Choose Next: Permissions.
    8. Attach the necessary permissions to the role.
    9. Choose Next: Review.
    10. Review the role details and choose Create role.
  3. Retrieve temporary credentials with STS and provide federated access to the AWS console through the AWS single sign-on (SSO) endpoint using Browser.

Leave a Comment

Your email address will not be published. Required fields are marked *

Scroll to Top