Enabling Single Sign-On access to Amazon EC2 instances using Okta and AWS Single Sign-On (AWS SSO)
What is Okta OIN and AWS IAM Identity Center?
The Okta Integration Network (OIN) is Okta’s pre-built cloud integration to manage access management, authentication, and provisioning of user identity.
Okta Integration Network - AWS IAM Identity Center:
- AWS IAM Identity Center is an OIN application to manage workforce identities in AWS centrally across your AWS organizations
- Enables an Okta sign-in experience to the AWS console, along with AWS resources across your AWS accounts
- AWS IAM Identity Center app can federate Okta identities into AWS IAM Identity Center. It can provision roles and permission policies across hundreds of AWS accounts
- After authenticating with their Okta credentials, users can see assigned AWS accounts and roles
- AWS IAM Identity Center app enables Okta users and groups to sync user identities and attributes
AWS IAM Identity Center Benefits:
- Simplify SSO access to AWS accounts for your workforce identities
- Control SSO access and user permissions across your AWS accounts in AWS Organizations
- Enable you to define and assign roles centrally across your AWS Organizations account using permission sets
- Manage AWS permission sets and role definitions that outline the session duration and policies for the role when you assign a permission set to a user or group