Posted On: Jun 13, 2023
Customers can now connect their Google Workspace to AWS IAM Identity Center (successor to AWS Single Sign-On) once and manage access to AWS accounts and applications centrally, in IAM Identity Center. This integration enables end users to sign in using their Google Workspace identity to access all their assigned AWS accounts and applications. The integration helps administrators simplify AWS access management across multiple accounts while maintaining familiar Google Workspace experiences for end users as they sign in. IAM Identity Center and Google Workspace use Google auto-provisioning to securely provision users into IAM Identity Center, saving administrative time.
The interoperability of IAM Identity Center and Google Workspace enables administrators to assign user access centrally to their AWS Organizations accounts and applications. This integration makes it easier for an AWS administrator to manage access to AWS and ensure Google Workspace users have the right access to the right AWS accounts. To configure Google auto-provisioning and SAML (Security Assertion Markup Language) connections, administrators can use the AWS cloud application available in Google’s pre-integrated apps catalog. Your users now get single-click access to all their assigned accounts and applications from the IAM Identity Center user portal. They can use their Google credentials to sign-in to the AWS Management Console, AWS Command Line Interface (CLI) and Identity Center enabled applications.
This feature is available in all regions supported by IAM Identity Center. To connect Google Workspace to IAM Identity Center as an external identity provider or learn more, see the AWS IAM Identity Center documentation and the AWS IAM Identity Center User Guide.