AWS SSO support
Article ID: 282867
Updated On:
Products
CloudHealth
Issue/Introduction
While this can technically work with CloudHealth, AWS SSO is limited in where you cannot control the SAML tokens for different user groups.
Resolution
Only static role information in the SAML token for all users can be sent and it doesn't serve the purpose of role-based access.
To achieve role-based access, you need to use different SSO solutions like ADFS, Okta, or AzureAD, where you have more control to craft the SAML token based on user groups.
Feedback
Yes
No
Powered by
