Trusted identity propagation use cases - Amazon IAM Identity Center
Analytics and data lakehouse use casesAdditional use cases
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

Trusted identity propagation use cases

As an IAM Identity Center administrator, you might be asked to help configure trusted identity propagation from user facing applications to Amazon Web Services services. To support this request, you'll need the following information:

  • What client-facing application will your users interface with?

  • Which Amazon Web Services services are used to query the data and to authorize access to the data?

  • Which Amazon Web Services service authorizes access to the data?

Your role in enabling trusted identity propagation use cases that don't involve third-party applications or custom-developed applications is to:

  1. Enable IAM Identity Center.

  2. Connect your existing source of identities to IAM Identity Center.

The remaining steps of the trusted identity configuration for these use cases are performed within the connected Amazon Web Services services and applications. The administrators of the connected Amazon Web Services services or applications should refer to the respective user guides for comprehensive service-specific guidance.

Your role in enabling trusted identity propagation use cases that involve third-party applications or custom-developed applications includes the steps of Enable IAM Identity Center and connecting your source of identities as well as:

  1. Configuring the connection of your identity provider (IdP) to the third-party party or custom-developed application.

  2. Enabling IAM Identity Center to recognize the third-party or custom-developed application.

  3. Configuring your IdP as a trusted token issuer in IAM Identity Center. For more information, see Using applications with a trusted token issuer.

The administrators of the connected applications and Amazon Web Services services should refer to the respective user guides for comprehensive service-specific guidance.

Analytics and data lakehouse use cases

You can enable trusted propagation use cases with the following analytics services:

Additional use cases

You can enable IAM Identity Center and trusted identity propagation with these additional Amazon Web Services services:

Topics