IAM identity provider

When you add single sign-on access to an Amazon Web Services account, IAM Identity Center creates an IAM identity provider in each Amazon Web Services account. An IAM identity provider helps keep your Amazon Web Services account secure because you don't have to distribute or embed long-term security credentials, such as access keys, in your application.

Repair the IAM identity provider

If you accidentally delete or modify your identity provider, you must manually reapply your user and group assignments. Reapplying your user and group assignments recreates the identity provider. For more information, see:

Manage access to Amazon Web Services accounts
Manage access to applications

Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Create permission policies for ABAC in IAM Identity Center

Service-linked roles