AWS SSO

aws/security aws/iam aws/service

💡 Definition

AWS Single Sign-On (SSO) is a cloud-based SSO service that makes it easy to centrally manage SSO access to multiple AWS accounts and business applications. It simplifies the process of managing user access to AWS.

🔑 Key Concepts

⚙️ How it Works

  1. Enable SSO: Enable AWS SSO in the AWS Organizations master account.
  2. Connect Identity Source: Configure users directly in SSO or link to an external directory.
  3. Assign Users/Groups: Grant users or groups access to specific AWS accounts with defined permission sets.
  4. User Login: Users log in once to the AWS SSO user portal and can then access all assigned AWS accounts and applications.

🎯 Use Cases

💰 Pricing Model

📝 Exam Tips (CLF-C02)


See Also: * IAM * AWS Organizations