- Neueste
- Die meisten Stimmen
- Die meisten Kommentare
To set up SSO access for your customers using two self-managed ADs, where one is connected to AWS IAM Identity Center (previously AWS SSO) and the other belongs to your customers, you need to make both ADs trust each other. This lets your customers' AD users log in to AWS resources without directly connecting to the Identity Center, with only your AD connected.
The article you mentioned talks about linking a self-managed AD with AWS Managed Microsoft AD, setting up trust between two self-managed ADs is somewhat similar in concept. Here's an overview:
1/Network Connection: Make sure the network works between the two AD domains (yours and your customers'). 2/Trust Setup: On both AD domains, you need to set up a two-way trust. Optional: User Sync: Depending on what you need, you might choose to sync some users or groups between the ADs to make management easier. 3/AWS Access Setup: On the AWS side, you'll need to set up IAM Identity Center to recognize and authenticate users from your customers' AD.
Relevanter Inhalt
- AWS OFFICIALAktualisiert vor 3 Jahren
- AWS OFFICIALAktualisiert vor 3 Jahren
- AWS OFFICIALAktualisiert vor 2 Jahren
- AWS OFFICIALAktualisiert vor 7 Monaten