By using AWS re:Post, you agree to the AWS re:Post Terms of Use

OpenSearch Saml SP-initiated login through IAM Identity Center SSO

0

Hello, i m looking for a way to activate the SP-Initiated Login to OpenSearch I have an OpenSearch that runs into an account aws A and i have another account B where OpenSearch is an application into my IAM Identity center. The login from the aws sso page works perfectly but i don't know how to enable the SP-initiated login. The documentation here https://docs.aws.amazon.com/opensearch-service/latest/developerguide/saml.html give informations about how to but i m not able to same into my IdP (IAM IdentityCenter)

1 Answer
0

Hello,

Thank you for your inquiry regarding SP-Initiated Login to OpenSearch with IAM Identity Center SSO.

To enable SP-Initiated Login, follow these steps:

  1. Configure IdP in IAM Identity Center: Ensure you've configured the IAM Identity Center as an Identity Provider (IdP) for OpenSearch as described in the documentation.

  2. Configure OpenSearch for SAML: Follow the steps outlined in the OpenSearch documentation to configure OpenSearch for SAML-based authentication.

  3. IdP Metadata: Ensure you provide the necessary Identity Provider (IdP) metadata to OpenSearch, which includes SAML endpoints and keys. More information can be found in the SAML Configuration for OpenSearch section.

  4. Test SP-Initiated Login: Once configured, initiate the SP-Initiated Login from your Identity Center's SSO page and ensure the flow works as expected. If any issues are encountered, refer to the troubleshooting section of the documentation for guidance.

  5. Additional Reference Documentation: https://aws.amazon.com/blogs/big-data/role-based-access-control-in-amazon-opensearch-service-via-saml-integration-with-aws-iam-identity-center/

Please response if you have any more questions!

AWS
answered a year ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions