IAM Identity Center Applications Metadata

It seems there is currently no way to create applications in IAM Identity Center programmatically but is there any way that the metadata for an already created application can be fetched programmatically? I have checked the cli and neither aws sso or aws sso-admin has an option for applications, and the same goes for boto3.

Is this just not possible yet?

ns-simon
일 년 전
Were you able to find anything? I came here to ask the same question.

We are specifically looking for a way to list the users who have been granted access to an IAM IC-enabled application so we can automate the provisioning of those users into said application. Using IAM groups isn't always an option (say if you federate with Azure AD and your E3 license precludes the provisioning of groups...bummer).

주제

관리 및 거버넌스 보안, 신원 및 규정 준수

태그

AWS 명령줄 인터페이스 AWS IAM 자격 증명 센터

언어

English

Bobk

질문됨 일 년 전242회 조회

1개 답변

최신
최다 투표
가장 많은 댓글

이 답변이 도움이 되었나요?커뮤니티가 여러분의 지식을 활용할 수 있도록 정답을 찬성하세요.

Unfortunately not. The console is the only method I have been able to find thus far.

Bobk

답변함 일 년 전

ns-simon
일 년 전
FWIW, we were recently talking with AWS support and they recommended that we use Cognito instead of IAM Identity Center. It does have some benefits, such as the ability to mix/match local pool users, federated users, as well as user aliasing.

If you are using Shibboleth (like us), prepare to pull you hair out...

IAM Identity Center Applications Metadata

관련 콘텐츠