Quicksight identity center integration

When integrating Amazon QuickSight with AWS IAM Identity Center, it's important to note that QuickSight doesn't typically appear as a separate application in the IAM Identity Center console. The integration works differently compared to other applications.

After you've assigned the proper admin and reader groups in QuickSight, these groups should automatically synchronize with QuickSight. The integration is managed directly within QuickSight, where administrators can map the IAM Identity Center groups to QuickSight roles such as Admin, Author, Reader, or their Pro versions.

You don't need to create or assign additional permission sets in IAM Identity Center specifically for QuickSight access. The access is controlled through the group mappings you've set up in QuickSight.

However, to ensure the integration is working correctly:

1. Verify that you've subscribed to QuickSight Enterprise edition and selected the IAM Identity Center instance during the subscription process.

2. Check that you have the necessary permissions, including administrative access to the AWS account where QuickSight is subscribed and access to the IAM Identity Center console.

3. Ensure that you've properly mapped the IAM Identity Center groups to the corresponding QuickSight roles in the QuickSight console.

4. Remember that once you've implemented this native integration approach with IAM Identity Center, you cannot switch to a different approach (like federation) in the future without ending your QuickSight subscription.

If you're still experiencing issues, it may be worth reviewing your QuickSight subscription settings and consulting AWS support for further assistance.
Sources
Granting QuickSight access through IAM Identity Center integration - AWS Prescriptive Guidance
Manage access to insights with an account instance of AWS IAM Identity Center and Amazon QuickSight | AWS Business Intelligence Blog