Identity Center 3 Flashcards

1
Q

Application Assignments

What are App Assignments?

A

Way to AuthZ your Workforce Identities with cloud apps (SalesForce) or SAML apps

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Application Assignments

What apps can use Identity Center?

A

SAML apps, cloud apps, some AWS Services, AWS Console

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Application Assignments

Examples of AWS systems that use Identity Center for login?

A

SageMaker Studio, EC2 Windows instances

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Application Assignments

What cloud apps can use Identity Center?

A

Piles, not just a few. Examples: Microsoft 365, DropBox, SAP, SonarQube, Splunk

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Application Assignments

How many preintegrated apps come with Identity Center?

A

Dozens and dozens

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Application Assignments

Examples of pre-integrated apps you can use with App Assignments?

A

Slack

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Application Assignments

What are examples of SAML apps?

A

Salesforce and Microsoft 365

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Multi-Account Perms, AWS Organizations

How does IC handle permissions across multiple AWS accounts?

A

IC holds the permissions, don’t have duplicate IAM Policies across accounts

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Multi-Account Perms, AWS Organizations

Who can administer Identity Center?

A

Pick other AWS accounts in your Org you set up as Delegated Administrators

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Multi-Account Perms, AWS Organizations

Isn’t delegating admin to an entire AWS acct insecure?

A

No, each Principal still needs Policy giving access to I.C.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Portal

How does the Portal work?

A

Auth with it, then just click any app icon to be automatically logged into it.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Portal

Caveat with the portal and new apps?

A

Might have to log out and back in again to see new apps.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Portal

How do you switch to a different user in the Portal?

A

You don’t. Sign out and back in as the other user. Lose all your logins to currently-running apps.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Portal

How do you avoid people constantly logging out and in to do different things?

A

One user per human, many roles. Can switch Roles easily in the Portal.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Portal

How does the Portal work to sign you into AWS accounts?

A

Just like Isengard: sign into Portal, click an AWS account you want to assume. Get CLI creds or web redirect.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Portal

How is security setup for AWS account access in the Portal?

A

Assign user access to an AWS account -> Identity Center creates a Service Linked Role in the target account to assume.

17
Q

Portal

When you click on an AWS account in the Portal, what do you see?

A

All the Permission Sets assigned to you for that account