ALTER IDENTITY PROVIDER
Alters an identity provider to assign new parameters and values. When you run this command, all previously set parameter values are deleted before the new values are assigned. Only a superuser can alter an identity provider.
Syntax
ALTER IDENTITY PROVIDER identity_provider_name [PARAMETERS parameter_string] [NAMESPACE namespace] [IAM_ROLE iam_role]
Parameters
- identity_provider_name
-
Name of the new identity provider. For more information about valid names, see Names and identifiers.
- parameter_string
-
A string containing a properly formatted JSON object that contains parameters and values required for the specific identity provider.
- namespace
-
The organization namespace.
- iam_role
-
The IAM role that provides permissions for the connection to IAM Identity Center. This parameter is applicable only when the identity-provider type is AWSIDC.
Examples
The following example alters an identity provider named oauth_standard.
ALTER IDENTITY PROVIDER oauth_standard PARAMETERS '{"issuer":"https://sts.windows.net/2sdfdsf-d475-420d-b5ac-667adad7c702/", "client_id":"87f4aa26-78b7-410e-bf29-57b39929ef9a", "client_secret":"BUAH~ewrqewrqwerUUY^%tHe1oNZShoiU7", "audience":["https://analysis.windows.net/powerbi/connector/AmazonRedshift"] }'
The following sample statements show how to connect an existing Redshift provisioned cluster or workgroup to IAM Identity Center, if you have a connection set up through a managed application. You would have to provide values applicable to your resources.
ALTER IDENTITY PROVIDER "my-redshift-idc-application" NAMESPACE 'myorgnamespace'; ALTER IDENTITY PROVIDER "my-redshift-idc-application" IAM_ROLE 'arn:aws:iam::123456789012:role/myadministratorrole';
For more information about setting up a connection to IAM Identity Center from Redshift, see Connect Redshift with IAM Identity Center to give users a single sign-on experience.
