使用 AWS re:Post 即表示您同意 AWS re:Post 使用條款
AWS re:Postre:Post

Multiple Organizations & IAM Identity Center SSO

0

Hi,

I have multiple organizations in my account hierarchy. We're using multiple organizations as each needs to be billed separately (different countries). Is it possible to have a single instance of IAM Identity Center to enable SSO across multiple organizations?

Note: Multiple organizations is a suggested approach per AWS documentation - https://d0.awsstatic.com/aws-answers/AWS_Multi_Account_Billing_Strategy.pdf

主題
管理與治理安全性、身分識別與合規
標籤
AWS OrganizationsAWS IAM Identity Center
語言
English
PeteMo
已提問 1 年前檢視次數 1535 次
2 個答案
2

No, Identity Center supports one AWS Organizations at a time. In your situation, if you want to keep separate Organization per customer, you will need to setup Identity Center in each Organization's management account. Each of these Identity Centers/Organizations can then point to the same IdP.

profile pictureAWS
專家
kentrad
已回答 1 年前
0

I believe the document you referenced recommends that you use Organizational Units (OUs) within your AWS Organization. This is what we are doing and it allows us to generate bills for each OU as well as shows us total spending across the enterprise.

profile picture
Carlos del Castillo
已回答 1 年前

您尚未登入。 登入 去張貼答案。

一個好的回答可以清楚地回答問題並提供建設性的意見回饋,同時有助於提問者的專業成長。

回答問題指南

相關內容