Configure Single sign-on (SSO) - AWS Identity Center
Overview
This guide outlines the process to configure Single Sign-On (SSO) using AWS Identity Center (formerly AWS SSO) with Axiom Security. By following these steps, organizations can enable secure and seamless authentication for their users.
Prerequisites
Ensure the following requirements are met before proceeding:
Requirement | Details |
AWS Management Console Access | Permissions to configure AWS Identity Center. |
Axiom Security SAML Configuration Details | Required for SSO setup. |
SAML Configuration Details
SSO URL:
https://login.axiom.security/login/callback?connection=[YourCompanyName]Entity ID:
urn:auth0:axiom-production:[YourCompanyName]
Configuration Steps
Step 1: Access AWS Identity Center
Log in to the AWS Management Console.
Navigate to AWS Identity Center.
Select Applications from the left-hand menu.
Step 2: Add a New Application
Click Add a new application.
Choose Add a custom SAML 2.0 application.
Step 3: Configure Application Details
In the Details section:
Enter the Entity ID: urn:auth0:axiom-production:[YourCompanyName].
Optionally, add a description.
Click Next.
Step 4: Provide SAML Application Configuration
In the Application Metadata section:
Application ACS URL (Assertion Consumer Service URL): https://login.axiom.security/login/callback?connection=[YourCompanyName]
Application Entity ID: urn:auth0:axiom-production:[YourCompanyName]
Leave the Relay State field blank unless a specific relay state is required.
Step 5: Review and Save
Review the configuration details.
Click Save Changes.
Step 6: Assign Users or Groups
Navigate to the Assigned Users tab.
Click Assign Users or Groups.
Select the users or groups that require access to the application.
Click Assign Access.
Next Steps
Test the SSO integration by logging in via the AWS Identity Center.
Monitor logs for any authentication issues.
If needed, update settings based on organization policies.