Manage Your Identity Source - AWS Single Sign-On

Manage Your Identity Source

You can configure your identity source in AWS SSO to determine where your users and groups are stored. Once configured, you can then look up users or groups in your store to grant them single sign-on access to AWS accounts, cloud applications, or both.

AWS SSO automatically provides you with a store by default, which you can use to manage your users and groups within AWS SSO. If you choose to store them in AWS SSO, create your users and groups and assign their level of access to your AWS accounts and applications. Alternatively, you can choose to Connect to Your External Identity Provider using Azure Active Directory, or Connect to Your Microsoft AD Directory using AWS Directory Service.


AWS SSO does not support SAMBA4-based Simple AD as a connected directory.