Configure AWS Single Sign-On integration
What is AWS Identity Center (ex AWS Single Sign-On)
AWS Identity Center (ex AWS Single Sign-On) is a cloud service that allows you to grant your users access to AWS resources across multiple AWS accounts.
AWS SSO provides a directory that you can use to create users, organize them in groups, and set permissions across those groups; alternatively, you can obtain them from your Microsoft Active Directory or any standards-based identity provider, such as Okta Universal Directory or Azure AD.
After logging in the first time, Leapp will map all your roles and users into Sessions.
Info
To get started using AWS SSO refer to this guide.
How to configure an AWS Identity Center (ex AWS Single Sign-On) integration in Leapp
- Click on the Add Integration button in the sidebar.
- Select AWS Single Sign-On as the Integration type.
- Provide the required information (described in the next section).
- Click on the Add integration button.
Required information
Field | Description |
---|---|
INTEGRATION TYPE | Set as AWS Single Sign-on |
AWS SSO URL | The portal URL to begin the authentication flow. It usually follows this pattern: d-xxxxxxxxxx.awsapps.com/start . |
REGION | The region on which AWS SSO is administered and configured. This is NOT where your generated credentials will be valid; it's only used for the login part. |