User authentication in Amazon Managed Grafana

Users are authenticated to use the Grafana console in an Amazon Managed Grafana workspace by single sign-on using your organization’s identity provider, instead of by IAM. Each workspace can use one or both of the following authentication methods:

User credentials stored in identity providers (IdPs) that support Security Assertion Markup Language 2.0 (SAML 2.0)
AWS Single Sign-On

For each of your workspaces, you can use SAML, AWS SSO, or both. If you begin by using one method, you can switch to using the other.

Topics

Using SAML with your Amazon Managed Grafana workspace
Using AWS SSO with your Amazon Managed Grafana workspace

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

Setting up

SAML