AWS Launches Single Sign-On Service with Microsoft AD Integration
Amazon Web Services (AWS) this week rolled out a new Single Sign-On (SSO) service that integrates with Microsoft Active Directory, as well as popular business applications like Microsoft Office 365.
Announced Thursday, AWS SSO is now available out of AWS' Northern Virginia region at no cost.
With AWS SSO, users can access all of their AWS accounts and applications by logging in just once to a central portal. This reduces the management load that can come from using third-party SSO tools to juggle user identities across multiple AWS accounts.
The service integrates with on-premises Active Directory, so that organizations running Microsoft's directory server can give their employees access to the AWS SSO portal using their corporate credentials. For IT managers, this also means they can determine which AWS accounts can be accessed by which users via their corporate directory.
AWS SSO also integrates with other AWS solutions, such as Organizations for managing multiple accounts, the AWS Management Console for defining user permissions, and CloudTrail for logging all user sign-in activities.
It also supports the SAML 2.0 markup language, allowing administrators to switch on SSO capabilities in any SAML-enabled application in their corporate environment.
Finally, AWS SSO comes with built-integration with business productivity apps like Office 365, Salesforce.com and Box.
AWS' Anand Murugesan walked through a few use cases for AWS SSO in this blog post from Thursday. More information on AWS SSO is available here.
Gladys Rama is the senior site producer for RCPmag.com and senior editor of AWSInsider.net.