Announcing the Saviynt Knowledge Exchange unifying the Saviynt forums, documentation, training,
and more in a single search tool across platforms. Read the announcement here.
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

AWS SSO Integration

jezzanuena
Regular Contributor
Regular Contributor

‎10/12/2022 05:47 PM

Hello! Does anyone integrate AWS SSO here? What approach did you use? We've been trying to integrate it into our environment. But, AWS SSO API actions do not include a listing of group members, we're unable to do the account-entitlement mapping. Your response is highly appreciated.

Labels:
0 Kudos
5 REPLIES 5

rushikeshvartak
All-Star
All-Star

‎10/13/2022 01:38 AM - edited ‎10/13/2022 01:39 AM

Your requirements is regarding reconciliation ? if yes share link which currently you are referring 

Or as per subject line making sso for authentication ?


Regards,
Rushikesh Vartak
If you find the response useful, kindly consider selecting Accept As Solution and clicking on the kudos button.
0 Kudos

jezzanuena
Regular Contributor
Regular Contributor
In response to rushikeshvartak

‎10/13/2022 05:44 PM

Referring to AWS IAM Identity Center. And Yes reconciliation. Which link though? 

0 Kudos

rushikeshvartak
All-Star
All-Star
In response to jezzanuena

‎10/13/2022 05:46 PM

API documentation used for

  • authentication 
  • account import
  • access import 

Regards,
Rushikesh Vartak
If you find the response useful, kindly consider selecting Accept As Solution and clicking on the kudos button.
0 Kudos

jezzanuena
Regular Contributor
Regular Contributor
In response to rushikeshvartak

‎10/13/2022 06:05 PM - last edited on ‎10/13/2022 08:36 PM by Community Manager

Here you go, so the authentication is successful as well as the importing of accounts and access. The only thing that is not working is the mapping, when you go to the Account and see if it has entitlement, I see nothing. Same when you go to the entitlement, there are no accounts in it.

"acctEntParams": { 

           "connection": "userAuth", 

           "entTypes": { 

              "Groups": { 

                 "call": { 

                    "call1": { 

                       "callOrder": 0, 

                       "stageNumber": 0, 

                       "processingType": "httpAcctToEnt", 

                       "http": { 

                          "httpHeaders": { 

                             "Authorization": "${access_token}" 

                                                       }, 

                          "url": "https://....../f3vf91c4a1d-c2d1-4f16-b984-fa652642e776/scim/v2/Groups/?members=$id", 

                          "httpContentType": "application/json", 

                          "httpMethod": "GET" 

                                    }, 

                    "listField": "Resources", 

                    "entKeyField": "entitlementID", 

                     "entIdPath":"id", 

                    "acctKeyField": "accountID" 

                                  } 

                         } 

                     } 

               } 

           } 

     } 

0 Kudos

rushikeshvartak
All-Star
All-Star
In response to jezzanuena

‎10/13/2022 07:22 PM

Please share postman output for Account to Access Mapping


Regards,
Rushikesh Vartak
If you find the response useful, kindly consider selecting Accept As Solution and clicking on the kudos button.
0 Kudos
Copyright © 2024 Khoros, LLC