AWS Identity Center
About
Amazon Identity Center (successor to AWS Single Sign-On) helps you securely create or connect your workforce identities and manage their access centrally across AWS accounts and applications.
Why You Should Integrate
This integration will provide visibility into your AWS Identity Center users within Sevco.
How Does the Integration Work
This integration pulls all users from a given AWS Identity Store (the user store that back AWS Identity Center)
This data is only used internally; we do not share it with any parties outside of Sevco. Refer to our privacy policy for details.
If you haven't already, please review our instructions for configuring the AWS integration before proceeding with the instructions below.
Configuration Options
| Field | Description | Example |
|---|---|---|
Identity Store ID* | The ID of the Identity Store to pull users from | d-1234567890 |
Region* | The AWS Region that the Identity Store is hosted in | us-east-1 |
External Documentation
Creating Credentials
See platform documentation for details on AWS - Creating credentials
Required Permissions
Your IAM user (Access Key ID/Secret) or newly created role (AssumeRole) should use a permission policy with at least the following permissions:
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": [
"identitystore:ListGroupMemberships",
"identitystore:ListGroups",
"identitystore:ListUsers"
],
"Resource": "*" // Or the ARN for whatever Identity Store ID you want to read from
}
]
}
Contact Us
If you're having problems integrating a source, or if you've found something wrong in this document, please email us at [email protected].
Updated about 1 year ago