What is a bit unclear to me is how IdC works with an external IdP. For security reasons, we absolutely do NOT use IAM users. We set up only role access as defined in IAM and that's tied to our IdP. So, when I user logs in, it hits our IdP for authentication, checks Active Directory for the role they are going to assume and then logs them into the console (trusted relationship is provided when the role is set up). We still want to use role-based, temporary access (NOT IAM accounts). Are we forced by IdC to IAM user accounts or can we still federate using IAM roles?
Hi there, we recommend posting your question in our Facebook group. Our community members are always happy to share their knowledge and help each other out. If you're not already a member of our Facebook community, we'd love to have you join us! Here's the link to sign up: facebook.com/groups/awscertificationqa Once you're in, you can post your question and get some helpful insights.
Hi there, we recommend posting your question in our Facebook group. Our community members are always happy to share their knowledge and help each other out. If you're not already a member of our Facebook community, we'd love to have you join us! Here's the link to sign up: facebook.com/groups/awscertificationqa Once you're in, you can post your question and get some helpful insights.
incredibly helpful thanks🙌
Thanks for the video, Really helped alot
You're welcome!
What is a bit unclear to me is how IdC works with an external IdP. For security reasons, we absolutely do NOT use IAM users. We set up only role access as defined in IAM and that's tied to our IdP. So, when I user logs in, it hits our IdP for authentication, checks Active Directory for the role they are going to assume and then logs them into the console (trusted relationship is provided when the role is set up). We still want to use role-based, temporary access (NOT IAM accounts). Are we forced by IdC to IAM user accounts or can we still federate using IAM roles?
Hi there, we recommend posting your question in our Facebook group. Our community members are always happy to share their knowledge and help each other out.
If you're not already a member of our Facebook community, we'd love to have you join us!
Here's the link to sign up: facebook.com/groups/awscertificationqa
Once you're in, you can post your question and get some helpful insights.
Is there any associated cost to setup and monthly cost for iam identity center?
Hi there, we recommend posting your question in our Facebook group. Our community members are always happy to share their knowledge and help each other out.
If you're not already a member of our Facebook community, we'd love to have you join us!
Here's the link to sign up: facebook.com/groups/awscertificationqa
Once you're in, you can post your question and get some helpful insights.