2 個答案
- 最新
- 最多得票
- 最多評論
2
Hi There
Nothing will happen to the existing IAM users and access keys when you deploy IAM Identity Center and federate with an external IdP. THey can co-exist.
1
Hi Matt, thank you for the answer. So my application will still work even after the IdP configuration, great.
But in the Review and confirm step of the configuration, I saw this point:
IAM Identity Center preserves your current users and groups, and their assignments. However, only users who have usernames that match the usernames in your identity provider (IdP) can authenticate.
This affect only users with a password?
Thank you
已回答 1 年前
相關內容
- 已提問 1 年前
AWS 官方已更新 1 年前- AWS 官方已更新 5 個月前
- AWS 官方已更新 1 年前
- AWS 官方已更新 3 年前
That message only applies if you already have users and groups defined within IAM Identity Center's native user store. It is not talking about IAM users and groups.
https://docs.aws.amazon.com/singlesignon/latest/userguide/manage-your-identity-source-considerations.html#:~:text=AD%20directory.-,Changing%20between%20IAM%20Identity%20Center%20and%20an%20external%20identity%20provider%20(IdP),-If%20you%20change
Hi, sorry to up this question 6 months later. This point you highlighted confused me too. Does it mean existing users with username/password cannot login at all, or does it mean they cannot login using the SSO portal (which make sense).
Thx