IAM Identity Center now enables programmatic AWS account access for customer managed applications

IAM Identity Center Updates
IAM Identity Center now enables customer managed applications to programmatically access AWS accounts on behalf of their users. This includes discovering accounts and roles assigned to a user and retrieving temporary credentials required for AWS account access.
Key Features
- Programmatically access AWS accounts for customer managed applications.
- Discover accounts and roles assigned to a user.
- Retrieve temporary security credentials for authorized roles.
- Eliminates redundant sign-in prompts for users authenticated through an external identity provider (IdP).
What to do
- Configure your external IdP as a trusted token issuer (TTI) in IAM Identity Center.
- Enable AWS account access for your customer managed application in the IAM Identity Center console.
Source: AWS release notes
If you need further guidance on AWS, our experts are available at AWS@westloop.io. You may also reach us by submitting the Contact Us form.



