Difference between revisions of "AWS SAML"

• AWS SAML endpoint: https://signin.aws.amazon.com/saml

• SAML Role attribute: https://aws.amazon.com/SAML/Attributes/Role
• https://aws.amazon.com/SAML/Attributes/RoleSessionName

Ref: https://support.google.com/a/answer/6194963

Errors

• Your request included an invalid saml response

Read

• Creating IAM SAML identity providers: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_create_saml.html
• https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_create_saml_assertions.html

Activities

• Okta: https://saml-doc.okta.com/SAML_Docs/How-to-Configure-SAML-2.0-for-Amazon-Web-Service
• Google Workspace - AWS: https://support.google.com/a/answer/6194963

Related

• AWS IAM
• IdP
• aws iam create-saml-provider
• ForgeRock, Google Workspace, Okta .../...

See also

• SAML, IdP, AWS SAML, AWS IAM, AWS SAML endpoint, SAML:EduPersonOrgDN, SAML Role Attribute, assume-role-with-saml
• SAML, IdP, Assertion, Attribute, SCIM, Amazon Cognito, OpenID Connect (OIDC), SAML response, SAML:EduPersonOrgDN, Assertion Consumer Service (ACS), SAML examples, Entity ID, Name ID, SAMLResponse, saml-provider, saml2aws, aws_iam_saml_provider