2回答
- 新しい順
- 投票が多い順
- コメントが多い順
2
Hi There
Nothing will happen to the existing IAM users and access keys when you deploy IAM Identity Center and federate with an external IdP. THey can co-exist.
1
Hi Matt, thank you for the answer. So my application will still work even after the IdP configuration, great.
But in the Review and confirm step of the configuration, I saw this point:
IAM Identity Center preserves your current users and groups, and their assignments. However, only users who have usernames that match the usernames in your identity provider (IdP) can authenticate.
This affect only users with a password?
Thank you
回答済み 1年前
That message only applies if you already have users and groups defined within IAM Identity Center's native user store. It is not talking about IAM users and groups.
https://docs.aws.amazon.com/singlesignon/latest/userguide/manage-your-identity-source-considerations.html#:~:text=AD%20directory.-,Changing%20between%20IAM%20Identity%20Center%20and%20an%20external%20identity%20provider%20(IdP),-If%20you%20change
Hi, sorry to up this question 6 months later. This point you highlighted confused me too. Does it mean existing users with username/password cannot login at all, or does it mean they cannot login using the SSO portal (which make sense).
Thx