AWS Identity and Access Management Integration Partners

AWS Identity and Access Management (IAM) Partners help you enable federated access to AWS accounts. IAM allows you to define a SAML 2.0 or OIDC identity provider (IdP) for each AWS account. You can pass federated user attributes, such as cost center or job role, from your IdPs to AWS, and use them for access control by implementing fine-grained access permissions based on these attributes. IAM helps you define permissions once, and then grant, revoke, or modify AWS access by simply changing the attributes in the IdP.

To learn more, see the IAM User Guide.  


Auth0 is a leading identity management platform for developers and application teams. Auth0 gives you a platform to authenticate, authorize, and secure access to applications, devices, and users. Security and development teams rely on Auth0’s simplicity, extensibility, and expertise to make identity work for everyone. Securing more than 4.5 billion login transactions per month, Auth0 is built and runs on AWS and integrates with AWS API gateway, IAM, and AWS Cognito, making it fast and easy for developers to deliver a scalable and secure identity solution for people and machines.

CyberArk is the global leader in privileged access management and SaaS-delivered identity and access management. The CyberArk Identity Security Platform helps organizations secure access to critical business data and infrastructure, protect a distributed workforce, and accelerate business in the cloud. CyberArk Identity Single Sign-On, Multi-factor Authentication, and Lifecycle Management services integrate with AWS to provide workers simple and secure access to all AWS resources across any device, anywhere, at just the right time.


ForgeRock, is an AWS Partner specializing in digital identity, radically improves and scales all things identity, governance, and access management with the industry's only full-suite, AI-driven platform. ForgeRock solves complex identity problems for consumers, workforce, and things. Organizations that choose ForgeRock are empowered to deliver exceptional digital experiences designed for remote work and life. ForgeRock and AWS joint customers can orchestrate, manage, and secure the complete lifecycle of identities all within their AWS environment.


IBM Security Verify is an enterprise grade identity-as-a-service solution protecting organizations’ users, assets, and data in a hybrid cloud world. It provides single sign-on to cloud, mobile, and on-premises applications, plus modern multifactor authentication, adaptive access, lifecycle management, and identity analytics. Through its AWS connector, Verify uses session tags to provide fine-grained control over authorization to AWS services, allowing admins to manage accounts and connect users to multiple AWS instances and centrally master and administer access.


Okta is an independent provider of identity for the enterprise. The Okta Identity Cloud enables organizations to securely connect the right people to the right AWS resources at the right time, and provides a seamless user and customer experiences for enterprises relying on AWS technologies. Okta is an AWS Competency Partner whose strategic collaboration with AWS is focused on launching advanced integrations to solve customer-requested use cases.


OneLogin offers a complete cloud-native Identity & Access Management (IAM) platform that seamlessly manages all digital identities for your workforce and customers. Quickly enable secure single sign-on (SSO) and contextual multi-factor authentication (MFA) for every user, login, and account across AWS and all your corporate applications and automate user lifecycle management. Integrate OneLogin with AWS management solutions such as AWS Control Tower, AWS Organizations, AWS Session Tags, and AWS SSO for advanced IAM security. Combine OneLogin with Amazon EventBridge to leverage identity insights to monitor activities across your environment, alert on threats, and execute advanced security and user lifecycle management workflows. 

Ping Identity

Ping Identity is the intelligent identity solution for the enterprise, providing customers, workforce, and partners with access to cloud, mobile, SaaS, and on-premises applications. Ping Identity’s industry-leading solutions have out-of-the-box integrations to AWS that allow organizations to leverage federation servers such as PingFederate or PingOne for Enterprise as an identity bridge. This enables single sign-on into the AWS console without storing user keys and without additional passwords or sign-ons.

RSA Archer

RSA specializes in cybersecurity and digital risk management solutions. Its enterprise identity solution, RSA SecurID Suite, consists of two solutions that work together to address the challenges of securing a dynamic user population across complex environments. With RSA SecurID Access, customers can quickly onboard new applications using wizard-based connectors that leverage leading integration standards such as SAML, password vaulting and RADIUS. RSA Identity Governance and Lifecycle takes a governance-first approach to manage identity risk and ensure that the security posture of the organization is intact with regard to user access.

Explore IAM features

IAM enables you to control access and permissions to your AWS services and resources.

Learn more 
Sign up for a free account

Instantly get access to the AWS Free Tier. 

Sign up 
Start building in the console

Enable IAM in the AWS Management Console.

Sign in