AWS Single Sign-On Launches with Active Directory Integration
A new solution from Amazon Web Services (AWS) gives organizations single sign-on capabilities using Microsoft Active Directory credentials.
The no-cost AWS Single Sign-On (SSO) service became generally available on Thursday out of AWS' Northern Virginia region.
With AWS SSO, users can access all of their AWS accounts and applications by logging in just once to a central portal. This reduces the management load that can come from using third-party single sign-on tools to juggle user identities across multiple AWS accounts.
The service integrates with on-premises Active Directory, so that organizations running Microsoft's directory server can give their employees access to the AWS SSO portal using their corporate credentials. For IT managers, this also means they can determine which AWS accounts can be accessed by which users via their corporate directory.
AWS SSO also integrates with other AWS solutions, such as Organizations for managing multiple accounts, the AWS Management Console for defining user permissions, and CloudTrail for logging all user sign-in activities.
It also supports the SAML 2.0 markup language, allowing administrators to switch on SSO capabilities in any SAML-enabled application in their corporate environment.
Finally, AWS SSO comes with built-integration with popular business productivity apps like Microsoft Office 365, Salesforce.com and Box.
AWS' Anand Murugesan walked through a few use cases for AWS SSO in this blog post from Thursday. More information on AWS SSO is available here.