You likely need to provision a few dedicated AWS resources to get started with identity federation. To ease this, there are two AWS CloudFormation templates to choose from. |
Resources
The following resources are required or recommended in order to use Identity Federation for AWS:
An IAM role
A managed IAM policy
An IAM user
An IAM access key
The CloudFormation templates below can provision these resources for you.
CloudFormation Templates
There are two CloudFormation templates to choose from for provisioning required AWS resources:
Identity Federation for AWS (Core)
This template provisions the following Identity Federation for AWS core resources:
These resources are semantically required and we recommend to provision a dedicated IAM role indeed.
Key | Type | Description |
|---|---|---|
CoreRoleArn | ARN of Identity Federation for AWS (Core) IAM role | |
CorePolicyArn | ARN of Identity Federation for AWS (Core) managed IAM policy |
Identity Federation for AWS (Quickstart)
This template provisions the following Identity Federation for AWS quickstart resources:
These resources aim to get you started quickly by covering the basic use cases.
Key | Related Type | Description |
|---|---|---|
CoreRoleArn | ARN of Identity Federation for AWS (Core) IAM role | |
CorePolicyArn | ARN of Identity Federation for AWS (Core) managed IAM policy | |
CoreUserArn | ARN of Identity Federation for AWS (Core) IAM user | |
CoreAccessKeyId | AWS Access Key ID of Identity Federation for AWS (Core) IAM user | |
CoreSecretAccessKey | AWS Secret Access Key of Identity Federation for AWS (Core) IAM user |