Document history - AWS IAM Identity Center (successor to AWS Single Sign-On)

Document history

The following table describes important additions to the AWS IAM Identity Center (successor to AWS Single Sign-On) documentation. We also update the documentation frequently to address the feedback that you send us.

  • Latest major documentation update: July 26, 2022

ChangeDescriptionDate

AWS Single Sign-On (AWS SSO) renamed to AWS IAM Identity Center

AWS introduces AWS IAM Identity Center (successor to AWS Single Sign-On). IAM Identity Center expands the capabilities of AWS Identity and Access Management (IAM) to help you centrally manage account and access to cloud applications for your workforce users. IAM Identity Center features include application assignments, multi-account permissions, and an AWS access portal.

July 26, 2022

Support for permissions boundaries and customer managed policies in permission sets

Added content for using AWS managed and customer managed AWS Identity and Access Management (IAM) policies with permission sets.

July 14, 2022

Support for manually enabled AWS Regions

Added content for using IAM Identity Center in manually enabled Regions.

June 15, 2022

Updates for AWS managed policies

Updated permissions for the AWSSSOServiceRolePolicy AWS managed policy.

May 11, 2022

Support for delegated administration

Added content for the delegated administration feature.

May 11, 2022

Updates for AWS managed policies

Updated permissions for the AWSSSOMasterAccountAdministrator, AWSSSOMemberAccountAdministrator, and AWSSSOReadOnly AWS managed policies.

April 28, 2022

Support for configurable AD sync

Added content for the configurable AD sync feature.

April 14, 2022

New AWS managed policy topic

Added details for the AWSSSOMasterAccountAdministrator AWS managed policy.

August 4, 2021

Updates for quotas

Adjustments to quota tables.

December 21, 2020

New example policies

Added new customer managed policy examples and updates to the permissions required section.

December 21, 2020

Support for attribute-based access control (ABAC)

Added content for ABAC feature.

November 24, 2020

Support for MFA forced enrollment

Updates to require users to enroll an MFA device at sign-in.

November 23, 2020

Support for WebAuthn

Added content for new WebAuthn feature.

November 20, 2020

Support for Ping Identity

Added content to integrate with Ping Identity products as a supported external identity provider.

October 26, 2020

Support for OneLogin

Added content to integrate with OneLogin as a supported external identity provider.

July 31, 2020

Support for Okta

Added content to integrate with Okta as a supported external identity provider.

May 28, 2020

Support for external identity providers

Changed references from directory to identity source, added content to support external identity providers.

November 26, 2019

New MFA settings

Removed two-step verification topic and added new MFA topic in its place.

October 24, 2019

New setting to add two-step verification

Added content on how to enable two-step verification for users.

January 16, 2019

Support for session duration on AWS accounts

Added content on how to set the session duration for an AWS account.

October 30, 2018

New option to use Identity Center directory

Added content for choosing either Identity Center directory or connecting to an existing directory in Active Directory.

October 17, 2018

Support for relay state and session duration on applications

Added content about relay state and session duration for cloud applications.

October 10, 2018

Additional support for new cloud applications

Added 4me, BambooHR, Bonusly, Citrix ShareFile, ClickTime, Convo, Deputy, Deskpro, Dome9, DruvaInSync, Egnyte, Engagedly, Expensify, Freshdesk, IdeaScale, Igloo, Jitbit, Kudos, LiquidFiles, Lucidchart, PurelyHR, Samanage, ScreenSteps, Sli.do, SmartSheet, Syncplicity, TalentLMS, Trello, UserVoice, Zoho, OpsGenie, DigiCert, WeekDone, ProdPad, and UserEcho to the application catalog.

August 3, 2018

Support for multi-account access to management accounts

Added content about how to delegate multi-account access to users in a management account.

July 9, 2018

Support for new cloud applications

Added DocuSign, Keeper Security, and SugarCRM to the application catalog.

March 16, 2018

Get temporary credentials for CLI access

Added information about how to get temporary credentials to run AWS CLI commands.

February 22, 2018

New guide

This is the first release of the IAM Identity Center User Guide.

December 7, 2017