How to Setup Okta as an Identity Provider in AWS IAM Identity Center

แชร์
ฝัง
  • เผยแพร่เมื่อ 25 พ.ย. 2024

ความคิดเห็น • 60

  • @doctornkz
    @doctornkz 2 ปีที่แล้ว

    Maaan, you saved my day, honestly. Bless you God, bro.

    • @JKSTechLab
      @JKSTechLab  2 ปีที่แล้ว

      Glad to help, thanks for watching!

  • @boxenryan
    @boxenryan 4 หลายเดือนก่อน

    very detailed and easy to understand thank you so much John!

  • @BrennanFamilyVideos
    @BrennanFamilyVideos 4 หลายเดือนก่อน

    Excellent video. Very helpful.

  • @doctornkz
    @doctornkz 2 ปีที่แล้ว +1

    Folks, probably it will help you also, (but probably not). I got the same error as JK Swopes after full setup, looks like we are getting 400HTTP response from AWS. I spent a week with AWS support to break through, but without success. As the last hope, I updated this current identity provider with the same SAML XML and Okta certificate (just how I did before) and for some reason it got working. Don't forget to update provisioning token in Okta, the old one is getting deprecated after updating IdP.

    • @JKSTechLab
      @JKSTechLab  2 ปีที่แล้ว +1

      Yep, if you delete and redo the setup it usually works for whatever reason. Sometimes I get this error on a new setup and sometimes I don't.

  • @TarsonFlorencio-ik4fd
    @TarsonFlorencio-ik4fd หลายเดือนก่อน

    Thanks Bruv!!! Amazing explanation

  • @DanielCaballeroSanchez
    @DanielCaballeroSanchez 6 หลายเดือนก่อน

    @JKSTechLab I have a question about the prices for example if I have 1000 users in okta and I want to do a synchronization to take them to aws with "Assign Users to App" would have a high value or where I could see more of these prices of aws?

  • @mohammedshamim3575
    @mohammedshamim3575 2 หลายเดือนก่อน

    Great work 👍

  • @allenstore4974
    @allenstore4974 2 ปีที่แล้ว

    Yooooooooooo, I remember you from Sounds and Gear! It's dope to see you're an IT guy too. Thanks for the information, I'm transitioning to some cloud knowledge and your SC-900 video is helpful. Peace and Blessings.

    • @JKSTechLab
      @JKSTechLab  2 ปีที่แล้ว +1

      What's up! Thanks for stopping by and glad to help! Yes, the love for tech spills over into all areas LOL

  • @eliteballer360
    @eliteballer360 หลายเดือนก่อน

    GREAT VIDEO! keep it up!

  • @tech4383
    @tech4383 ปีที่แล้ว

    good one.. learnt from this.. thanks for posting this..

    • @JKSTechLab
      @JKSTechLab  ปีที่แล้ว

      Thanks for watching

  • @skp-radio
    @skp-radio ปีที่แล้ว

    Hey bro, just want to thank you. Save a lot of my time again.

  • @aaronlu2908
    @aaronlu2908 ปีที่แล้ว +1

    What if I want to connect multiple aws instances? Like prod, demo, and dev? Would this work by following the same instructions?

    • @JKSTechLab
      @JKSTechLab  ปีที่แล้ว

      It may be possible if they are different environments, they would appear as different applications in Okta.

  • @trivikram1988
    @trivikram1988 4 หลายเดือนก่อน

    Thanks bro! Super useful content

  • @TheThesuresh
    @TheThesuresh 9 หลายเดือนก่อน

    How do provide access to okta user after the integration?

  • @latoya1928
    @latoya1928 3 หลายเดือนก่อน

    5 seconds in and I have subscribed.

  • @杰-x2z
    @杰-x2z 2 หลายเดือนก่อน

    Clear and efficient.

  • @rohanokta1891
    @rohanokta1891 2 ปีที่แล้ว +1

    I had a question, post integration when I need to assign AWS service permissions/policies to the user, where can I do that?

    • @JKSTechLab
      @JKSTechLab  2 ปีที่แล้ว

      Any policies or permissions within AWS would be assigned in AWS/Identity Center.

    • @rohanokta1891
      @rohanokta1891 2 ปีที่แล้ว

      @@JKSTechLab Let's say I have to provide EC2Full access to one user, and RDSFull access to another, can that be done using the same?

    • @JKSTechLab
      @JKSTechLab  2 ปีที่แล้ว

      @@rohanokta1891 You would set that up within AWS, this is just for the authentication portion (though you could use groups to assign roles as well, but still has to be setup in AWS).

  • @zscaler_nm
    @zscaler_nm ปีที่แล้ว

    Great video!
    can i use aws cli to list those users/groups etc.. ?
    Thanks!

    • @JKSTechLab
      @JKSTechLab  ปีที่แล้ว

      Thanks for watching, I'm not sure, I haven't tried it, but I would think if they are in AWS you should be good to go.

  • @blacula3000
    @blacula3000 2 หลายเดือนก่อน

    Great video im a fan

  • @andrejab74
    @andrejab74 7 หลายเดือนก่อน

    Great video, it helped me a lot!

  • @ehivan24
    @ehivan24 2 ปีที่แล้ว

    excellent content. Where did u get the file okta.cert?

    • @JKSTechLab
      @JKSTechLab  2 ปีที่แล้ว

      You download it from the Okta interface, I show it in the video. It's in the part where you get the IdP metadata.

  • @davidpintor1677
    @davidpintor1677 2 ปีที่แล้ว

    When you enable IAM Identity Center integration, do the IAM local users still work?

    • @JKSTechLab
      @JKSTechLab  2 ปีที่แล้ว

      Everyone logging into Identity Center will log in through Okta instead of local account credentials.

  • @noamc7816
    @noamc7816 ปีที่แล้ว

    Great video. Explained well! 👑

    • @JKSTechLab
      @JKSTechLab  ปีที่แล้ว

      Thanks for watching

    • @noamc7816
      @noamc7816 ปีที่แล้ว

      @@JKSTechLab Do you have the same for Azure AD?
      Thanks!

    • @JKSTechLab
      @JKSTechLab  ปีที่แล้ว

      @@noamc7816 not currently

  • @AkebonoRadio
    @AkebonoRadio 7 หลายเดือนก่อน

    Thanks, great video!!!

  • @sanatanshekhar362
    @sanatanshekhar362 2 ปีที่แล้ว

    I am facing the same error as you are at the end. any idea what could be causing it?

    • @JKSTechLab
      @JKSTechLab  2 ปีที่แล้ว

      Sometimes it starts working after you keep trying a few times. You could also try starting over, but the error seems to be with AWS, every once in a while I see that error when setting up integrations.

    • @sanatanshekhar362
      @sanatanshekhar362 2 ปีที่แล้ว

      Thanks a lot for your help. Really appreciate it 😊 I’ll give it another try

    • @JKSTechLab
      @JKSTechLab  2 ปีที่แล้ว

      @@sanatanshekhar362 no problem

    • @sanatanshekhar362
      @sanatanshekhar362 2 ปีที่แล้ว

      ​@@JKSTechLab Didn't work for me using the AWS Identity Provider app integration on okta. :( Though when I configured the same using used SAML 2.0 and SCIM 2.0 Test app integrations, it works perfectly. I referred to your video as a head start and it helped a lot. Thanks :) :)

    • @JKSTechLab
      @JKSTechLab  2 ปีที่แล้ว

      @@sanatanshekhar362 Yeah, I think they recently just added that app, and there is another one by a different name I believe, so there may be some issues with it. But yes, setting it up via SAML/SCIM should work the same way, glad you got it going, good stuff!

  • @e4stark
    @e4stark 2 ปีที่แล้ว

    nice work

    • @JKSTechLab
      @JKSTechLab  2 ปีที่แล้ว +1

      Thanks for watching.

  • @TechTualChatter
    @TechTualChatter 2 ปีที่แล้ว

    🔥🔥🔥

    • @JKSTechLab
      @JKSTechLab  2 ปีที่แล้ว

      preciate ya bro!

    • @cameronka01
      @cameronka01 2 ปีที่แล้ว

      Really well done

    • @JKSTechLab
      @JKSTechLab  2 ปีที่แล้ว

      @@cameronka01 Thanks for watching!

  • @ronikuggz3362
    @ronikuggz3362 11 หลายเดือนก่อน

    Is that really something on their end?? at 12:44 seconds, thats driving me nuts, and no useful help from support!

    • @NoName-mi6le
      @NoName-mi6le 8 หลายเดือนก่อน

      Hello, did you find out why this happens? Is it fixed for you?

    • @ronikuggz3362
      @ronikuggz3362 7 หลายเดือนก่อน

      @@NoName-mi6le yep- way too many groups trying to sync through.... ended up testing it with just a user with 10 groups and it was working fine. Ended up doing a bit of custom claims just to only send specific groups to send to AWS

  • @rocketman5041
    @rocketman5041 4 หลายเดือนก่อน

    Subbed!

  • @SSN194
    @SSN194 2 ปีที่แล้ว

    Thank you for the great and simple explanation.
    Have a query here.
    If we are setting this up in an existing environment, is there any way by which we can import the SSO users (that have been manually in SSO ) into okta?
    Or do we need to remove them and assign the AWS sso app on their okta profile?

    • @JKSTechLab
      @JKSTechLab  2 ปีที่แล้ว +1

      Thanks for watching. I haven't explored that yet, I do believe that if your users in AWS match the same info that your users in Okta have, it will update their accounts in AWS. For example, if the username/email, etc is the same, it will update them according to the IAM Identity Center documentation.

  • @youtubegarbage4u
    @youtubegarbage4u ปีที่แล้ว

    are you paying for the okta account or it is free trial for this video?

    • @JKSTechLab
      @JKSTechLab  ปีที่แล้ว

      I’m using a free dev account.