Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions,
see Getting Started with Amazon Web Services in China
(PDF).
Use Case 4: Amazon IAM Identity Center to Office 365 and other cloud applications
You can use Amazon Managed Microsoft AD to provide Amazon IAM Identity Center services for cloud applications. You can use Microsoft Entra Connect (formerly known as Azure Active Directory Connect)
to synchronize your users into Microsoft Entra (formerly known as Azure Active Directory (Azure AD)), and then use Active Directory Federation
Services (AD FS) so that your users can access Microsoft Office 365 and other SAML 2.0 cloud applications by using their Active Directory
credentials.
Integrating Amazon Managed Microsoft AD with IAM Identity Center adds SAML capabilities to your Amazon Managed Microsoft AD
and / or your on-premises trusted domains. Once integrated your users can then use IAM Identity Center with
services that support SAML, including the Amazon Web Services Management Console and third-party cloud applications such as
Office 365, Concur, and Salesforce without having to configure a SAML infrastructure. For a
demonstration on the process of allowing your on-premises users to use IAM Identity Center, see the following
YouTube video.
Amazon Single Sign-On was renamed to IAM Identity Center.