AWS as IDP

Step 1: Setup AWS as Identity Provider

  • Go to AWS, search for AWS Single Sign-On in AWS Services or click on this link.
  • After opening the AWS SSO Service, select Enable AWS SSO.
  • SAML Single Sign On(SSO) using AWS Identity Provider, Enable AWS SSO
  • Click on Create AWS Organisation .
  • SAML Single Sign On(SSO) using AWS Identity Provider,Create AWS Organisation
  • Click on Applications → Add a new application.
  • SAML Single Sign On(SSO) using AWS Identity Provider,Add Application
  • Select Add a custom SAML 2.0 application.
  • SAML Single Sign On(SSO) using AWS Identity Provider, Custom Application
  • Fill the Details of the application.
  • SAML Single Sign On(SSO) using AWS Identity Provider, Details of Application
  • Download AWS SSO SAML Metadata file as it will be required by Service Provider in step-2.
  • SAML Single Sign On(SSO) using AWS Identity Provider, Download Metadata file
  • Go to miniorange SAML Single Sign-On Plugin → Service Provider Info tab → Download Metadata.Now, upload it to the AWS Application Metadata section.
  • SAML Single Sign On(SSO) using AWS Identity Provider, AWS Metadata
  • Click on Save changes and your Demo Application has been configured.
  • Go to Attribute Mappings configure the various attributes (first name, last name and e-mail address) for the SAML response from the Attribute mappings tab as shown:
  • SAML Single Sign On(SSO) using AWS Identity Provider, Attributes
  • Go to your configured Demo Application → Assigned users and add the users. If you want to assign new users you can navigate to the left section and go to Users→ Add User and Enter the User details and click on Next:Groups and assign group to users.
  • SAML Single Sign On(SSO) using AWS Identity Provider, Add User
  • Your user has been successfully added.
  • SAML Single Sign On(SSO) using AWS Identity Provider, Added User