Cloud Applications
You can use the AWS SSO application configuration wizard to include built-in SAML integrations to many popular cloud applications. Examples include Salesforce, Box, and Office 365. For a complete list of applications that you can add from the wizard, see Supported Applications.
Most cloud applications come with detailed instructions on how to set up the trust between AWS SSO and the application's service provider. You can find these instructions on the cloud applications configuration page during the setup process and after the application has been set up. After the application has been configured, you can assign access to the groups or users that require it.
Supported Applications
AWS SSO has built-in support for the following commonly used cloud applications.
Note
AWS Support engineers can assist customers who have Business and Enterprise support plans with some integration tasks that involve third-party software. For a current list of supported platforms and applications, see Third-Party Software Support on the AWS Support Features page.
| 10000ft | Cybozu Garoon | HackerRank | Peakon | Splunk Cloud |
| 4me | Cybozu Mailwise | HappyFox | PhraseApp | Splunk Enterprise |
| 7Geese | Cybozu Office | Heap | PipeDrive | Spotinst |
| Abstract | Cybozu.com | HelloSign | Pivotal Tracker | SproutVideo |
| Accredible | Dashlane | Helpdocs.io | PlanMyLeave | Squadcast |
| Adobe Connect | Databricks | HelpScout | PolicyIQ | Stackify |
| Adobe Creative Cloud | Datadog | Hightail | ProcessPlan | Status Hero |
| Adobe Sign | Declaree | Honey | ProdPad | StatusCast |
| Aha | Deputy | Honeycomb.io | Proto.io | StatusDashboard |
| AlertOps | DeskPro | HostedGraphite | Proxyclick | StatusHub |
| AlertSite | Deskradar | HubSpot | PurelyHR | Statuspage |
| Amazon Appstream 2.0 | Detectify | Humanity | Quip | StoriesOnBoard |
| Amazon Business | Digicert | IdeaScale | Rapid7 Insight products | Stormboard |
| Amazon Connect | Dmarcian | Igloo | Recognize | SugarCRM |
| Amazon QuickSight | Docebo | ImageRelay | Redash.io | SumoLogic |
| Amazon WorkLink | DocuSign | iSpring | Redlock | SurveyGizmo |
| Andfrankly | Dome9 | IT Glue | RescueAssist | SurveyMonkey |
| AnswerHub | Domo | JamaSoftware | RingCentral | Syncplicity |
| AppDynamics | Drift | Jamf | Roadmunk | Tableau |
| AppFollow | Dropbox | Jenkins | Robin | Tableau Server |
| Asana | DruvaInSync | JFrog Artifactory | Rollbar | TalentLMS |
| Assembla | Duo | Jira | Room Booking System | TargetProcess |
| Atlassian | EduBrite | Jitbit | Salesforce | TeamSupport |
| Automox | Egnyte | Jive | Samanage | Tenable.io |
| BambooHR | eLeaP | join.me | SAP BW | TextMagic |
| BenSelect | Engagedly | Kanbanize | SAP Cloud Platform | ThousandEyes |
| BitaBIZ | Envoy | Keeper Security | SAP CRM ABAP | TinfoilSecurity |
| Bitglass | Evernote | Kentik | SAP CRM Java | TitanFile |
| BlueJeans | ExpenseIn | Kintone | SAP Enterprise Portal Java | TOPdesk Operator |
| BMCRemedyforce | Expensify | Klipfolio | SAP ERP ABAP | TOPdesk Self Service Desk |
| Bonusly | Expiration Reminder | KnowledgeOwl | SAP EWM ABAP | Trakdesk |
| Box | External AWS Account | Kudos | SAP Fiori ABAP | Trello |
| Brandfolder | EZOfficeInventory | LiquidFiles | SAP GRC Access Control ABAP | Trend Micro Deep Security |
| Breezy HR | EZRentOut | LiquidPlanner | SAP LMS | Uptime.com |
| Buddy Punch | Fastly | Litmos | SAP Netweaver ABAP | Uptrends |
| Bugsee | Federated Directory | LiveChat | SAP Netweaver Java | UserEcho |
| BugSnag | FileCloud | LogMeInRescue | SAP S4 ABAP | UserVoice |
| Buildkite | FireHydrant | Lucidchart | SAP Solution Manager ABAP | Velpic |
| Bynder | Fivetran | ManageEngine | SAP Solution Manager Java | Veracode |
| CakeHR | Flock | MangoApps | SAP SRM ABAP | VictorOps |
| Canvas | FogBugz | Marketo | SAP xMII Java | vtiger |
| Chartio | Formstack | Metricly | ScaleFT | WayWeDo |
| Chatwork | Fossa | Miro | Scalyr | WeekDone |
| Circonus | Freedcamp | MockFlow | ScreenSteps | WhosOnLocation |
| Cisco Webex | Freshdesk | Mode Analytics | Seeit | Wordbee |
| CiscoMeraki | FreshService | Moodle | Sentry.io | Workable |
| CiscoUmbrella | Front | MuleSoft Anypoint | ServiceNow | Workfront |
| CitrixShareFile | G Suite | MyWebTimeSheets | SimpleMDM | Workplace by Facebook |
| Clarizen | GitBook | N2F Expense Reports | Skeddly | Workstars |
| ClickTime | Github | NewRelic | Skilljar | Wrike |
| Cloud CMS | GitLab | Nuclino | Slack | xMatters |
| CloudAMQP | Glasscubes | Office365 | Slemma | XperienceHR |
| CloudCheckr | GlassFrog | OnDMARC | Sli.do | Yodeck |
| CloudEndure | GorillaStack | OpenVoice | Small Improvements | Zendesk |
| CloudPassage | GoToAssist | OpsGenie | Smartsheet | Zephyr |
| CMNTY | GoToMeeting | Pacific Timesheet | SnapEngage | Ziflow |
| CoderPad | GoToTraining | PagerDuty | Snowflake | Zillable |
| Confluence | GoToWebinar | Panopta | SonarQube | Zoho |
| Convo | Grovo | Panorama9 | SparkPost | Zoho One |
| Coralogix | HackerOne | ParkMyCloud | Split.io | Zoom |
Add and Configure a Cloud Application
Use this procedure when you need to set up a SAML trust relationship between AWS SSO and your cloud application's service provider. Before you begin this procedure, make sure you have the service provider's metadata exchange file so that you can more efficiently set up the trust. If you do not have this file, you can still use this procedure to configure it manually.
To add and configure a cloud application
-
In the AWS SSO console, choose Applications in the left navigation pane. Then choose Add a new application.
-
In the Select an application dialog box, select the application you want to add from the list. Then choose Add.
-
On the Configure <application name> page, under Details, type a Display name for the application, such as
Salesforce. -
Under AWS SSO metadata, do the following:
-
Next to AWS SSO SAML metadatafile, choose Download to download the identity provider metadata.
-
Next to AWS SSO certificate, choose Download certificate to download the identity provider certificate.
Note
You will need these files later when you set up the cloud application from the service provider's website. Follow the instructions from that provider.
-
-
(Optional) Under Application properties, you can specify additional properties for the Application start URL, Relay State, and Session Duration. For more information, see Application Properties.
-
Under Application metadata, provide the Application ACS URL and Application SAML audience values.
-
Choose Save changes to save the configuration.
