Azure AD
Azure AD is a SAML-based authentication plugin that works with Azure AD identity
provider. This plugin does not support multifactor authentication (MFA). If you require
MFA support, consider using the BrowserAzureAD plugin instead.
Authentication Type
| Connection string name | Parameter type | Default value | Connection string example |
|---|---|---|---|
| AuthenticationType | Required | IAM Credentials |
AuthenticationType=AzureAD; |
Preferred role
The Amazon Resource Name (ARN) of the role to assume. For information about ARN roles, see AssumeRole in the Amazon Security Token Service API Reference.
| Connection string name | Parameter type | Default value | Connection string example |
|---|---|---|---|
| preferred_role | Optional | none |
preferred_role=arn:aws:iam::123456789012:id/user1; |
Session duration
The duration, in seconds, of the role session. For more information, see AssumeRole in the Amazon Security Token Service API Reference.
| Connection string name | Parameter type | Default value | Connection string example |
|---|---|---|---|
| duration | Optional | 900 |
duration=900; |
Tenant ID
Specifies your application tenant ID.
| Connection string name | Parameter type | Default value | Connection string example |
|---|---|---|---|
| idp_tenant | Required | none |
idp_tenant=123zz112z-z12d-1z1f-11zz-f111aa111234; |
Client ID
Specifies your application client ID.
| Connection string name | Parameter type | Default value | Connection string example |
|---|---|---|---|
| client_id | Required | none |
client_id=9178ac27-a1bc-1a2b-1a2b-a123abcd1234; |
Client secret
Specifies your client secret.
| Connection string name | Parameter type | Default value | Connection string example |
|---|---|---|---|
| client_secret | Required | none |
client_secret=zG12q~.xzG1xxxZ1wX1.~ZzXXX1XxkHZizeT1zzZ; |