Can't seem to login as ADMIN on Amazon Managed Grafana

Question

Hi,

I've started an Amazon Grafana workspace where I am using SAML for authentication. I am able to login to the grafana workspace using my IdP but I am not able to login with admin privileges. I don't mind others from my org logging in as admin, so I've set the **Assertion attribute role** to the *mail* attribute and the **Admin role values** to *\** i.e. allow all users to be admin. I've also explicitly tried setting the **Admin role values** to my email, even then I was not able to log in as an admin and am logging in as a *Viewer*.

The weird part is I was able to view the admin dashboard in one of the logins but once I logged myself out and logged back in, I started seeing the viewer dashboard again.

Note that the "I want to opt-out of assigning admins to my workspace." button is not selected in my configuration. Any help on the matter will be greatly appreciated. Thank you!

Answer

Hello,

To log in as an Admin you will need to ensure that your IdP role is mapped to the Grafana Admin role in the Amazon Managed Grafana workspace. For more information on this please see the link: https://docs.aws.amazon.com/grafana/latest/userguide/authentication-in-AMG-SAML.html#authentication-in-AMG-SAML-providers

Since I am unsure of the IdP you are using, there is a tutorial that you can follow that helps you connect your IdP to Grafana and set up the Admin role. https://aws.amazon.com/blogs/mt/amazon-managed-grafana-supports-direct-saml-integration-with-identity-providers/

Can't seem to login as ADMIN on Amazon Managed Grafana

관련 콘텐츠