Auto-sync: 2026-04-29 04:03

wiki/concepts/AWS-Identity-Center.md

@@ -0,0 +1,38 @@
+---
+title: "AWS Identity Center"
+type: concept
+tags:
+  - AWS-Identity-Center
+  - IAM
+  - Identity-Governance
+  - SSO
+sources:
+  - learning-sessions-identity-governance-vsm-replacement-20231128-160326-meeting-re
+last_updated: 2023-11-28
+---
+
+## AWS Identity Center
+
+AWS Identity Center（AWS 单点登录服务，原 AWS SSO）是 AWS 提供的跨账户身份与访问管理服务，为多账户 AWS 环境提供统一的身份认证和权限管理。
+
+## Core Function
+
+AWS Identity Center 通过 IAM 提供云资源访问控制，是 Micro Focus IGA 身份治理平台与 AWS 云资源之间的关键集成点。
+
+## Architecture Integration
+
+```
+User → IGA Portal → AD Groups (role mapping) → AWS Identity Center → IAM → AWS Resources
+         ↑                              ↑
+         └── Azure AD Domain Services (auth bridge)
+```
+
+## Related Concepts
+
+- [[Identity-Governance]]：身份治理框架，AWS Identity Center 是其 AWS 云端的实现基础
+- [[Micro-Focus-IGA]]：Micro Focus 身份治理平台，通过 AWS Identity Center 连接 AWS 资源
+- [[Active-Directory-Integration]]：AD 组映射到 IAM 角色的联合身份机制
+
+## Sources
+
+- [[learning-sessions-identity-governance-vsm-replacement-20231128-160326-meeting-re]]