39 lines
1.2 KiB
Markdown
39 lines
1.2 KiB
Markdown
---
|
||
title: "AWS Identity Center"
|
||
type: concept
|
||
tags:
|
||
- AWS-Identity-Center
|
||
- IAM
|
||
- Identity-Governance
|
||
- SSO
|
||
sources:
|
||
- learning-sessions-identity-governance-vsm-replacement-20231128-160326-meeting-re
|
||
last_updated: 2023-11-28
|
||
---
|
||
|
||
## AWS Identity Center
|
||
|
||
AWS Identity Center(AWS 单点登录服务,原 AWS SSO)是 AWS 提供的跨账户身份与访问管理服务,为多账户 AWS 环境提供统一的身份认证和权限管理。
|
||
|
||
## Core Function
|
||
|
||
AWS Identity Center 通过 IAM 提供云资源访问控制,是 Micro Focus IGA 身份治理平台与 AWS 云资源之间的关键集成点。
|
||
|
||
## Architecture Integration
|
||
|
||
```
|
||
User → IGA Portal → AD Groups (role mapping) → AWS Identity Center → IAM → AWS Resources
|
||
↑ ↑
|
||
└── Azure AD Domain Services (auth bridge)
|
||
```
|
||
|
||
## Related Concepts
|
||
|
||
- [[Identity-Governance]]:身份治理框架,AWS Identity Center 是其 AWS 云端的实现基础
|
||
- [[Micro-Focus-IGA]]:Micro Focus 身份治理平台,通过 AWS Identity Center 连接 AWS 资源
|
||
- [[Active-Directory-Integration]]:AD 组映射到 IAM 角色的联合身份机制
|
||
|
||
## Sources
|
||
|
||
- [[learning-sessions-identity-governance-vsm-replacement-20231128-160326-meeting-re]]
|