Al usar AWS re:Post, aceptas las AWS re:Post Términos de uso
AWS re:Postre:Post

What happens to existing AWS IAM users when enable IAM Identity Center?

0

I want to enable IAM Identity Center and configure an external IdP for an existing AWS account. This AWS account already has users, created with IAM. What happens to these users?

I'm especially worried about users used by my application to, for example, access S3 buckets. They have no password but only an access key and secret. Will these users' keys work after the configuration of the external IdP?

Thanks

Temas
Seguridad, identidad y cumplimientoGestión y gobierno
Etiquetas
AWS Identity and Access ManagementCentro de identidad de AWS IAMAWS Account Management
Idioma
English
Gigitsu
preguntada hace un año851 visualizaciones
2 Respuestas
2

Hi There

Nothing will happen to the existing IAM users and access keys when you deploy IAM Identity Center and federate with an external IdP. THey can co-exist.

See https://repost.aws/questions/QUfNomVCt5TCiac7oQoT8n0A/can-i-keep-existing-iam-users-and-add-sso-to-our-accounts

profile pictureAWS
EXPERTO
Matt-B
respondido hace un año
1

Hi Matt, thank you for the answer. So my application will still work even after the IdP configuration, great.

But in the Review and confirm step of the configuration, I saw this point:

IAM Identity Center preserves your current users and groups, and their assignments. However, only users who have usernames that match the usernames in your identity provider (IdP) can authenticate.

This affect only users with a password?

Thank you

Gigitsu
respondido hace un año

No has iniciado sesión. Iniciar sesión para publicar una respuesta.

Una buena respuesta responde claramente a la pregunta, proporciona comentarios constructivos y fomenta el crecimiento profesional en la persona que hace la pregunta.

Pautas para responder preguntas

Contenido relevante