En utilisant AWS re:Post, vous acceptez les AWS re:Post Conditions d’utilisation
AWS re:Postre:Post

AWS SSO IDp For OpenSearch

0

We are using AWS SSO with Google Workspace to log into AWS.

We also have OpenSerch in use. We want to use AWS SSO as an IDP for OpenSearch however we get the following error

Oops, something went wrong
Provide your administrator with the following info:
No access
Request ID: xxxx
HTTP status: 403

The 403 call is when a GET is made on https://portal.sso.eu-west-1.amazonaws.com/saml/v2/assertion/xxxxxredactedxxxxx/ HTTP/1.1

  • rePost-User-3884245
    il y a un an

    I was struggling with this problem until i saw a subtle mistake.Hope this could help : in the IAM Identity Center, settings of the application, i was using "dot" instead of "double point" for attribute mappings. Lost so many hours because of my eyes.

Sujets
Sans serveurAnalytiqueSécurité, identité et conformité
Balises
Service Amazon OpenSearchCentre d’identité IAM AWS
Langue
English
ShaunAdams
demandé il y a 2 ans1204 vues
1 réponse
0

Hello

Not sure if you ve referred the below links for the same. AWS SSO with G-suite as an External IDP: https://aws.amazon.com/blogs/security/how-to-use-g-suite-as-external-identity-provider-aws-sso/

SAML with AWS Open-search: https://docs.aws.amazon.com/opensearch-service/latest/developerguide/saml.html

These provide the basic steps for configuration & the right approach. However for a detailed check, I would advise to open up a support case with the AWS SSO/AWS Opensearch team and get it checked, once verified the steps in the above links.

profile pictureAWS
INGÉNIEUR EN ASSISTANCE TECHNIQUE
Chirag_R
répondu il y a 2 ans
AWS
EXPERT
Fabrizio@AWS
vérifié il y a 2 ans

Vous n'êtes pas connecté. Se connecter pour publier une réponse.

Une bonne réponse répond clairement à la question, contient des commentaires constructifs et encourage le développement professionnel de la personne qui pose la question.

Instructions pour répondre aux questions

Contenus pertinents