Register Sign in Need help? FAQ SailPoint directory
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Amazon Web Services (AWS) Connector

Amazon Web Services (AWS) Connector

___________________________________________________________________________________________________________________________________

IMPORTANT: You must purchase Cloud Access Management to enable Cloud Governance features. Contact your SailPoint CSM to request access.

___________________________________________________________________________________________________________________________________

Amazon Web Services (AWS) is a secure cloud services platform, offering compute power, database storage, content delivery and other functionality to help businesses scale and grow. The SailPoint Amazon Web Services (AWS) Connector can be used to manage all the AWS Accounts in your organization or a subset of AWS Accounts. IdentityIQ for Amazon Web Services manages the AWS Organizations entities such as Service Control Policies, Organization Units and AWS Accounts. It also manages the IAM (Identity Access Management) entities such as Users, Groups, Roles, Inline policies, Managed policies (AWS and Customer managed) under each AWS Account.

 

Support Level: SailPoint Delivered

Connectors developed by SailPoint's Engineering team and supported under annual SailPoint support and maintenance. Reach out to SailPoint support for assistance.

 

Supported Use Cases

  • Full Account Aggregation
  • Single Account Aggregation
  • Full Entitlement Aggregation
  • Full Group Aggregation
  • Single Group Aggregation
  • Create Account Provisioning
  • Update Account Provisioning
  • Delete Account Provisioning
  • Create Group Provisioning*
  • Update Group Provisioning*
  • Delete Group Provisioning*
  • Enable / Disable Account Provisioning
  • Unlock Account Provisioning
  • Change Account Password
  • Add Entitlement(s)
  • Remove Entitlement(s)

*This feature is currently supported only with the IdentityIQ platform

Supported Versions

  • Amazon Web Services 

 

Related Documentation

IdentityNow

IdentityIQ

 

Contact Us

SailPoint Support

SailPoint Professional Services

Comments
suresh_patike
‎Sep 29, 2020 12:37 PM
‎Sep 29, 2020 12:37 PM

Does IdentityIQ AWS connector support add Tags to AWS IAM User Account profile part of account provisioning process?

https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html

 

 

Ajin
‎Sep 30, 2020 03:17 AM
‎Sep 30, 2020 03:17 AM

Does IdentityIQ AWS connector also manage AWS Single Sign-On (SSO)?

vonschwc
‎Jul 08, 2021 01:05 PM
‎Jul 08, 2021 01:05 PM

I was wondering the same, does the IdentityIQ AWS connector also manage AWS Single Sign-On (SSO)?

Asmita_Shinde
‎Jul 08, 2021 11:57 PM
‎Jul 08, 2021 11:57 PM

@vonschwc  The IdentityIQ AWS connector is specifically designed to integrate with and manage access to AWS resources, such as IAM users, groups, and roles. You can try to use Web-service or SCIM connector for AWS SSO. 

lennoz
‎Jul 24, 2021 10:13 AM
‎Jul 24, 2021 10:13 AM

Currently this connector does not support federated Active Directory Security Group/Role to connect to AWS IAM Accounts, I believe the product manager mentioned this should be implemented in 8.3p1. 

aby-varghese
‎Sep 02, 2021 06:24 PM
‎Sep 02, 2021 06:24 PM

I have configured IdentityNow using the Amazon Web Services (AWS) Connector and am now able to report on IAM Users. However I also have some AWS SSO users and am not able to report on these SSO users. Does the Amazon Web Services (AWS) Connector also manage AWS Single Sign-On (AWS SSO) users?

cowe
‎Oct 28, 2022 10:57 AM
‎Oct 28, 2022 10:57 AM

AWS has released a new API recently. Should we use the generic Webservice connector for that?
Announcing new AWS IAM Identity Center (successor to AWS SSO) APIs to manage users and groups at sca...

Juma
‎Mar 06, 2023 08:29 AM
‎Mar 06, 2023 08:29 AM

is there a SailPoint integration with AWS IAM Identity Center (Successor to AWS Single Sign-On)?

partart
‎Aug 03, 2023 10:29 AM
‎Aug 03, 2023 10:29 AM

is there a SailPoint integration with AWS IAM Identity Center (Successor to AWS Single Sign-On)?

vmauduit
‎Aug 04, 2023 04:41 AM
‎Aug 04, 2023 04:41 AM

@parth1 @CJump There isn't. You need to create a custom connector.

salam1
‎Aug 10, 2023 11:20 AM
‎Aug 10, 2023 11:20 AM

Does Sailpoint now support the AWS IAM identity Center now? 

partart
‎Aug 16, 2023 06:54 AM
‎Aug 16, 2023 06:54 AM

Where can I get details on creating a custom connector in order to integrate with AWS IAM identity Center ?

Are there any plans to offer this integration out of the box as part of the IdentityIQ product ?

vinit_khera
‎Sep 13, 2023 07:31 PM
‎Sep 13, 2023 07:31 PM

is there any update from SailPoint on integration with AWS IAM Identity Center ?

ADLOR
‎Dec 01, 2023 07:11 AM
‎Dec 01, 2023 07:11 AM

Do you guys have a demo on what IdentityIQ --> AWS connector can do? A video would be enough

kcarrosino
‎Feb 05, 2024 10:54 AM
‎Feb 05, 2024 10:54 AM

I am interested in same topic - could someone from SailPoint respond to the question about an IIQ integration to AWS IAM Identity Center? 

 

vmauduit
‎Feb 05, 2024 10:59 AM
‎Feb 05, 2024 10:59 AM

@kcarrosino there is no connector right. But I encourage you and every one who wants this connector to be included in IIQ to check the in discovery topic about this: https://developer.sailpoint.com/discuss/t/in-discovery-iiq-aws-connector-support-for-aws-iam-identit...

 

Else you will need to create a custom connector to do it thanks to AWS SDK.

Version history
Revision #:
11 of 11
Last update:
‎May 26, 2023 11:32 AM
Updated by:
SailPoint Employee
 
View Article History