Document history

The following table describes important additions to the AWS IAM Identity Center documentation. We also update the documentation frequently to address the feedback that you send us.

Latest major documentation update: September 23, 2022

Change	Description	Date
Updates for AWS managed policy	Updated permissions for the `AWSIAMIdentityCenterAllowListForIdentityContext` AWS managed policy.	October 2, 2024
Updates for AWS managed policy	Updated permissions for the `AWSSSOMasterAccountAdministrator` AWS managed policy.	September 26, 2024
Updates for AWS managed policy	Updated permissions for the `AWSIAMIdentityCenterAllowListForIdentityContext` AWS managed policy.	September 4, 2024
Updates to the "What is IAM Identity Center?" topic	Updated the content that describes the benefits and capabilities of IAM Identity Center.	August 19, 2024
Updates for AWS managed policy	Updated permissions for the `AWSIAMIdentityCenterAllowListForIdentityContext` AWS managed policy.	July 12, 2024
Updates for AWS managed policy	Updated permissions for the `AWSIAMIdentityCenterAllowListForIdentityContext` AWS managed policy.	June 27, 2024
Updates for AWS managed policy	Updated permissions for the `AWSIAMIdentityCenterAllowListForIdentityContext` AWS managed policy.	May 17, 2024
Updates for AWS managed policy	Updated permissions for the `AWSIAMIdentityCenterAllowListForIdentityContext` AWS managed policy.	April 30, 2024
Updates for AWS managed policy	Updated permissions for the `AWSSSOMasterAccountAdministrator` AWS managed policy.	April 26, 2024
Updates for AWS managed policy	Updated permissions for the `AWSSSOMemberAccountAdministrator` AWS managed policy.	April 26, 2024
Updates for AWS managed policy	Updated permissions for the `AWSSSOReadOnly` AWS managed policy.	April 26, 2024
Updates for AWS managed policy	Updated permissions for the `AWSIAMIdentityCenterAllowListForIdentityContext` AWS managed policy.	April 26, 2024
Updates for AWS managed policy	Updated permissions for the `AWSIAMIdentityCenterAllowListForIdentityContext` AWS managed policy.	April 24, 2024
Updates for AWS managed policy	Updated permissions for the `AWSIAMIdentityCenterAllowListForIdentityContext` AWS managed policy.	April 19, 2024
Updates for AWS managed policy	Updated permissions for the `AWSIAMIdentityCenterAllowListForIdentityContext` AWS managed policy.	April 11, 2024
Updates for AWS managed policy	Updated permissions for the `AWSIAMIdentityCenterAllowListForIdentityContext` AWS managed policy.	November 26, 2023
New AWS managed policy topic	Added details for the `AWSIAMIdentityCenterAllowListForIdentityContext` AWS managed policy.	November 15, 2023
Enhanced guidance for getting started with IAM Identity Center	Added new content for getting started with IAM Identity Center and creating an administrative user	September 23, 2022
Updated users and groups in the Identity Center API Reference	This update includes references to the new Create, Update and Delete APIs in the Identity Center API Reference Guide.	August 31, 2022
AWS Single Sign-On (AWS SSO) renamed to AWS IAM Identity Center	AWS introduces AWS IAM Identity Center. IAM Identity Center expands the capabilities of AWS Identity and Access Management (IAM) to help you centrally manage account and access to applications for your workforce users. IAM Identity Center features include application assignments, multi-account permissions, and an AWS access portal.	July 26, 2022
Support for permissions boundaries and customer managed policies in permission sets	Added content for using AWS managed and customer managed AWS Identity and Access Management (IAM) policies with permission sets.	July 14, 2022
Support for manually enabled AWS Regions	Added content for using IAM Identity Center in manually enabled Regions.	June 15, 2022
Updates for AWS managed policies	Updated permissions for the `AWSSSOServiceRolePolicy` AWS managed policy.	May 11, 2022
Support for delegated administration	Added content for the delegated administration feature.	May 11, 2022
Updates for AWS managed policies	Updated permissions for the `AWSSSOMasterAccountAdministrator`, `AWSSSOMemberAccountAdministrator`, and `AWSSSOReadOnly` AWS managed policies.	April 28, 2022
Support for configurable AD sync	Added content for the configurable AD sync feature.	April 14, 2022
New AWS managed policy topic	Added details for the `AWSSSOMasterAccountAdministrator` AWS managed policy.	August 4, 2021
Updates for quotas	Adjustments to quota tables.	December 21, 2020
New example policies	Added new customer managed policy examples and updates to the permissions required section.	December 21, 2020
Support for attribute-based access control (ABAC)	Added content for ABAC feature.	November 24, 2020
Support for MFA forced enrollment	Updates to require users to enroll an MFA device at sign-in.	November 23, 2020
Support for WebAuthn	Added content for new WebAuthn feature.	November 20, 2020
Support for Ping Identity	Added content to integrate with Ping Identity products as a supported external identity provider.	October 26, 2020
Support for OneLogin	Added content to integrate with OneLogin as a supported external identity provider.	July 31, 2020
Support for Okta	Added content to integrate with Okta as a supported external identity provider.	May 28, 2020
Support for external identity providers	Changed references from directory to identity source, added content to support external identity providers.	November 26, 2019
New MFA settings	Removed two-step verification topic and added new MFA topic in its place.	October 24, 2019
New setting to add two-step verification	Added content on how to enable two-step verification for users.	January 16, 2019
Support for session duration on AWS accounts	Added content on how to set the session duration for an AWS account.	October 30, 2018
New option to use Identity Center directory	Added content for choosing either Identity Center directory or connecting to an existing directory in Active Directory.	October 17, 2018
Support for relay state and session duration on applications	Added content about relay state and session duration for applications.	October 10, 2018
Additional support for new applications	Added 4me, BambooHR, Bonusly, Citrix ShareFile, ClickTime, Convo, Deputy, Deskpro, Dome9, DruvaInSync, Egnyte, Engagedly, Expensify, Freshdesk, IdeaScale, Igloo, Jitbit, Kudos, LiquidFiles, Lucidchart, PurelyHR, Samanage, ScreenSteps, Sli.do, SmartSheet, Syncplicity, TalentLMS, Trello, UserVoice, Zoho, OpsGenie, DigiCert, WeekDone, ProdPad, and UserEcho to the application catalog.	August 3, 2018
Support for multi-account access to management accounts	Added content about how to delegate multi-account access to users in a management account.	July 9, 2018
Support for new applications	Added DocuSign, Keeper Security, and SugarCRM to the application catalog.	March 16, 2018
Get temporary credentials for CLI access	Added information about how to get temporary credentials to run AWS CLI commands.	February 22, 2018
New guide	This is the first release of the IAM Identity Center User Guide.	December 7, 2017

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

Troubleshooting

AWS Glossary