Add groups to your Identity Center directory - Amazon IAM Identity Center
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

Add groups to your Identity Center directory

Use the following procedure to add groups to your Identity Center directory. Alternatively, you can call the Amazon API operation CreateGroup to add groups.

Console
To add a group

  1. Open the IAM Identity Center console.

  2. Choose Groups.

  3. Choose Create group.

  4. Enter a Group name and Description - optional. The description should provide details on what permissions have been or will be assigned to the group. Under Add users to group - optional, locate the users you want to add as members. Then select the check box next to each of them.

  5. Choose Create group.

Amazon CLI
To add a group

The following create-group command creates a new group in your Identity Center directory.

aws identitystore create-group \
    --identity-store-id d-1234567890 \
    --display-name "Developers" \
    --description "Group that contains all developers"

Output:

{
    "GroupId": "1a2b3c4d-5e6f-7g8h-9i0j-1k2l3m4n5o6p",
    "IdentityStoreId": "d-1234567890"
}

After you add this group to your Identity Center directory, you can assign single sign-on access to the group. For more information, see Assign user or group access to Amazon Web Services accounts.