Desktop and Application Streaming

Tag: IAM

Enabling identity federation with Duo Single Sign-On and Amazon AppStream 2.0

Amazon AppStream 2.0 supports identity federation to AppStream 2.0 stacks through Security Assertion Markup Language 2.0 (SAML 2.0). This blog provides guidance on how to configure Duo Single Sign-On as an identity provider for AppStream 2.0. If you don’t have an identity provider, you can use AWS Single Sign-On. Review the AppStream 2.0 administration guide […]

Read More

How to use Okta claims with application entitlements for Amazon AppStream 2.0

This blog post shows you how to use Okta claims to configure application entitlements for your Amazon AppStream 2.0 stacks. Customers use Amazon AppStream 2.0 to manage applications centrally, and stream them to their end users. With , you control access to specific applications in the AppStream 2.0 application catalog with SAML assertions. In addition, […]

Read More

Use Amazon AppStream 2.0 application entitlements with Azure AD

This blog post shows you how to use application entitlements with Azure Active Directory (Azure AD) for your AppStream 2.0 stacks. Customers use Amazon AppStream 2.0 to manage applications centrally, and stream them to their end users. With application entitlements, you can control access to specific applications in the AppStream 2.0 application catalog based on […]

Read More

Create a Single Identity Provider for all your Amazon AppStream 2.0 Stacks with Azure AD

Customers use Amazon AppStream 2.0 to centrally manage applications and stream them to their end users. Organizations have multiple stacks associated with different fleets to separate workloads based on underlying resources, applications, or different user permissions. Administrators want a way to manage permissions for multiple stacks without having to create an IAM identity provider for […]

Read More

Enabling Federation with SimpleSAMLphp and Amazon AppStream 2.0

SimpleSAMLphp is an open-source project written in native PHP that deals with authentication for SAML 2.0 as a Service Provider and as an Identity Provider. You can use single sign-on with Amazon AppStream 2.0 with many identity services that are compliant with Security Assertion Markup Language 2.0 (SAML 2.0). This post explains how to configure federated user […]

Read More

Use Session Tags to Simplify AppStream 2.0 Permissions

Customers use Amazon AppStream 2.0 to centrally manage applications and stream them to their end users. Organizations have multiple stacks associated with different fleets to separate workloads based on underlying resources, applications, or different user permissions. In this blog post I show you how to use session tags in the SAML assertion to be used […]

Read More

Storing AppStream 2.0 Windows Event logs in S3 with IAM roles and Windows Task Scheduler

Recently, AWS announced support for using IAM roles with image builders and fleets. Now, Amazon AppStream 2.0 streaming instances can take advantage of the flexibility and security of role-based access to AWS API actions. One useful application of this feature is easily uploading and storing Windows Event logs for troubleshooting. Because of the ephemeral and […]

Read More