Map attributes in IAM Identity Center to attributes in your Amazon Managed Microsoft AD directory - Amazon IAM Identity Center
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

Map attributes in IAM Identity Center to attributes in your Amazon Managed Microsoft AD directory

You can use the following procedure to specify how your user attributes in IAM Identity Center should map to corresponding attributes in your Microsoft AD directory.

To map attributes in IAM Identity Center to attributes in your directory
  1. Open the IAM Identity Center console.

  2. Choose Settings.

  3. On the Settings page, choose the Attributes for access control tab, and then choose Manage Attributes.

  4. On the Manage attribute for access control page, find the attribute in IAM Identity Center that you want to map and then type a value in the text box. For example, you might want to map the IAM Identity Center user attribute email to the Microsoft AD directory attribute ${dir:windowsUpn}.

  5. Choose Save changes.