Skip to content
By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post
About re:Post

Enable Kiro enterprise subscription with IAM Identity Center in your AWS account

3 minute read
Content level: Intermediate
3

How to enable Kiro enterprise subscription with IAM Identity Center (IdC) in your AWS account

Overview

KIro supports individual and enterprise paid subscription.

With individual subscription, you use GitHub, Google or AWS Builder ID account for Kiro login. An AWS account is not required to use Kiro.

With enterprise subscription, billing for an individual or a team of users is through your AWS account. Enterprise subscription has additional settings, governance, and other features that are not available in individual subscription. You configure Kiro enterprise subscription to use either AWS IAM Identity Center, or a external Identity Provider such as Okta or Microsoft Entra for Kiro login authentication.

This article walks through steps to enable Kiro enterprise subscription in your AWS account with IAM Identity Center.

IAM Identity Center is offered at no additional charge

Enable IAM Identity Center (IdC)

Decide on AWS Region

Refer to IAM identity center regions supported by Kiro and decide on the AWS Region to enable IdC for Kiro subscription.

If you already have IdC Organization instance enabled on a non-supported Region, you can enable IdC Account instance in a member AWS account that is not a delegated administrator account

Enable IdC

Go to IDC of your desired Region, and click Enable IDC Console

Kiro supports both Organization or Account instance. Refer to Organization and account instances of IAM Identity Center to learn more about Identity Center instance types.

More details in documentation

Enter image description here

Add Users

Go to Users section to add user

IDC Users

Optional: MFA

You may want to go to Settings, Authentication section to configure MFA settings

Settings

Settings, MFA

Enable Kiro Enterprise Subscription

Enable Kiro

Within the AWS console, navigate to the Kiro console. If you have enabled IDC, click Onboard your team to Kiro or Enable small teams

Enable Kiro Team

Identity Source

When prompted for identity management source, select IAM Identity Center

Select IDC

You may be prompted to verify your IdC configuration

Sign Up

Click Enable to enable Kiro in your AWS account

Enable Kiro IDC

Kiro profile created

Kiro Done

Note the Sign in URL value

Add User

In the Users & Groups page, choose the Users or Groups tab. Choose the Add user or Add group button. Specify the IdC user or group that you have created

A dialog box appears where you can select the Kiro subscription tier with details about each tier.

Add Plan

Assign the desired plan

Demo video

Kiro Sign In

From Kiro applciation, sign off and sign in

Select Your Organization

Signin

Select Sign in via IAM Identity Center instead

Your Organization

Enter Sign In URL from your Kiro console and enter the correct AWS Region code

Sign In URL

That should redirect you to your IdC login portal. After you have successfully login, click Allow Access

Allow Access

Verify subscription

You can view your Kiro subscription from within Kiro

Kiro Subscription

More information

Refer to Kiro documentation

Topics
Developer ToolsGenerative AI on AWS
Tags
Developer ToolsGenerative AI on AWS
Language
English
AWS
EXPERT
published 19 days ago685 views
No comments

Relevant content