AWS SSO ¶
SSO Strengths ¶
- 100% cloud-based
- Secure directory services
- Unified device management
- SSO and user lifecycle management
- Secure app and server authentication with cloud LDAP
- Event logging, reporting, and monitoring
SSO Groups ¶
| Account / Groups | Administrators | DevOps | FinOps | SecurityAuditors |
|---|---|---|---|---|
| Management | x | x | x | x |
Consideration
This definition could be fully customized based on the project specific needs
SSO Permission Sets (w/ Account Associations) ¶
| Account / Permission Sets | Administrator | DevOps | FinOps | SecurityAuditors |
|---|---|---|---|---|
| Management | x | x | ||
| Security | x | x | x | |
| Shared | x | x | x | |
| Network | x | x | x | |
| Apps-DevStg | x | x | x | |
| Apps-Prd | x | x | x |
Considerations
- Developers could have their specific SSO Group + Permission Set policy association.
- This definition could be fully customized based on the project specific needs