🗂️ Navigation
📁 Multi-Cloud Management
📋 AWS Security Tools
🔧 AWS IAM Identity Center (AWS Single Sign-On)

AWS IAM Identity Center (AWS Single Sign-On)

Securely create or connect your workforce identities and manage their access centrally across AWS accounts and applications.

Visit Website →

Overview

AWS IAM Identity Center (successor to AWS Single Sign-On) helps you securely create or connect your workforce identities and manage their access centrally across AWS accounts and applications. You can create and manage user identities in IAM Identity Center's identity store, or easily connect to your existing identity source, including Microsoft Active Directory, Okta, Ping Identity, JumpCloud, and Microsoft Entra ID.

✨ Key Features

  • Single sign-on (SSO) to AWS accounts and business applications.
  • Centralized permission management across multiple accounts.
  • Integration with existing identity providers (e.g., Active Directory, Okta, Azure AD).
  • Attribute-based access control (ABAC).
  • Multi-factor authentication (MFA) enforcement.

🎯 Key Differentiators

  • No additional cost
  • Deep integration with AWS Organizations for multi-account access
  • Simplified permission management using 'permission sets'

Unique Value: Provides a free, centralized way to manage human access across multiple AWS accounts and cloud applications, simplifying administration and improving user experience.

🎯 Use Cases (4)

Providing employees with SSO access to multiple AWS accounts Managing access to cloud applications like Salesforce and Microsoft 365 Centralizing user management for a multi-account AWS environment Implementing just-in-time access with temporary credentials

✅ Best For

  • Using an existing Active Directory to grant role-based access to AWS accounts
  • Providing a unified user portal for accessing both AWS and third-party SaaS applications
  • Scaling access management across a large AWS Organization

💡 Check With Vendor

Verify these considerations match your specific requirements:

  • Managing customer identities for a consumer-facing application (better suited for Amazon Cognito)

🏆 Alternatives

Okta Microsoft Entra ID (Azure AD) Ping Identity OneLogin

While third-party IdPs offer broader application support, IAM Identity Center provides a more streamlined, cost-effective, and deeply integrated solution for managing access specifically to the AWS ecosystem.

💻 Platforms

Web API

🔌 Integrations

AWS Organizations Microsoft Active Directory Okta Microsoft Entra ID (Azure AD) Salesforce Slack

🛟 Support Options

  • ✓ Email Support
  • ✓ Live Chat
  • ✓ Phone Support
  • ✓ Dedicated Support (Business, Enterprise tier)

🔒 Compliance & Security

✓ SOC 2 ✓ HIPAA ✓ BAA Available ✓ GDPR ✓ ISO 27001 ✓ SSO ✓ SOC 1/2/3 ✓ PCI DSS Level 1 ✓ HIPAA ✓ FedRAMP ✓ ISO/IEC 27001

💰 Pricing

Contact for pricing
Free Tier Available

Free tier: IAM Identity Center is offered at no additional charge.

Visit AWS IAM Identity Center (AWS Single Sign-On) Website →

🔄 Similar Tools in AWS Security Tools

AWS Identity and Access Management (IAM)

Centrally manage fine-grained access to AWS....

Contact

Amazon GuardDuty

A managed threat detection service that continuously monitors for malicious activity....

Contact

AWS Security Hub

A cloud security posture management (CSPM) service....

Contact

AWS Secrets Manager

A secrets management service to protect access to applications, services, and IT resources....

$0.40/mo

AWS Config

A service that enables you to assess, audit, and evaluate resource configurations....

Contact

AWS Firewall Manager

A security management service for centrally managing firewall rules....

$100.00/mo