IAM federation - Amazon Quick Suite
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

IAM federation

   Applies to: Enterprise Edition and Standard Edition 
   Intended audience: System administrators 
Important

Amazon Quick Suite recommends that you integrate new Amazon Quick Suite subscriptions with IAM Identity Center for identity management. This IAM identity federation user guide is provided as a reference for existing account configurations. For more information on integrating your Amazon Quick Suite account with IAM Identity Center, see Configure your Amazon Quick Suite account with IAM Identity Center.

Note

IAM identity federation doesn't support syncing identity provider groups with Amazon Quick Suite.

Amazon Quick Suite supports identity federation in both Standard and Enterprise editions. When you use federated users, you can manage users with your enterprise identity provider (IdP) and use Amazon Identity and Access Management (IAM) to authenticate users when they sign in to Quick Suite. You can use a third-party identity provider that supports Security Assertion Markup Language 2.0 (SAML 2.0) to provide an onboarding flow for your Amazon Quick Suite users. Such identity providers include Microsoft Active Directory Federation Services, Okta, and Ping One Federation Server. With identity federation, your users get one-click access to their Amazon Quick Suite applications using their existing identity credentials. You also have the security benefit of identity authentication by your identity provider. You can control which users have access to Amazon Quick Suite using your existing identity provider.

Topics