AWS Single Sign-On | SSO Access to Business Applications Flashcards
How long are the AWS Command Line Interface credentials from the AWS SSO user portal valid?
SSO Access to Business Applications
AWS Single Sign-On | Security, Identity & Compliance
AWS CLI Credentials fetched through the AWS SSO user portal are valid for 60 minutes. You can get a fresh set of credentials as often as needed.
How do I set up SSO to business applications, such as Salesforce?
SSO Access to Business Applications
AWS Single Sign-On | Security, Identity & Compliance
From the AWS SSO console, navigate to the applications pane, choose Configure new application, and choose an application from the list of cloud applications that are preintegrated with AWS SSO. Follow the on-screen instructions to configure the application. Your application is now configured and you may assign access to it. Choose the groups or users that you want to provide with access to the application and Choose Assign Access to complete the process.
My company uses business applications that are not in AWS SSO’s preintegrated application list. Can I still use AWS SSO?
Yes. If your application supports SAML 2.0, you can configure your application as a custom SAML 2.0 application. From the AWS SSO console, navigate to the applications pane, choose Configure new application, and choose Custom SAML 2.0 application. Follow the instructions to configure the application. Your application is now configured and you may assign access to it. Choose the groups or users that you want to provide with access to the application, and choose Assign Access to complete the process.
My application supports OpenID Connect (OIDC) only. Can I set up SSO with AWS SSO?
No. AWS SSO supports only SAML 2.0–based applications.