AWS Security Blog

Author: Roberto Migli

Roberto Migli is a Solutions Architect in the AWS France team. He assists clients in the financial sector to adopt and get the most out of AWS Cloud technologies.

Access AWS services programmatically using trusted identity propagation

March 7, 2025: This post was republished to update the code, architecture, and narrative introducing the launch of Single Sign-on and trusted identity propagation support for Amazon Redshift Data API with AWS IAM Identity Center. With the introduction of trusted identity propagation, applications can now propagate a user’s workforce identity from their identity provider (IdP) […]

Conceptual model using a trusted token issuer and token exchange

Simplify workforce identity management using IAM Identity Center and trusted token issuers

December 12, 2023: We’ve updated this post to clarify that you can use both sts:audit_context and sts:identity_context can be used to create an identity-enhanced session. AWS Identity and Access Management (IAM) roles are a powerful way to manage permissions to resources in the Amazon Web Services (AWS) Cloud. IAM roles are useful when granting permissions […]

AWS Security Blog

Author: Roberto Migli

Access AWS services programmatically using trusted identity propagation

Simplify workforce identity management using IAM Identity Center and trusted token issuers

Learn

Resources

Developers

Help