Conditional Access: SSO Applications

In this simulation, you'll experience what it's like to create a conditional access policy to require MFA for users authenticating to the AWS application via SSO from the User Portal. Conditional Access Policies are customizable to fit your preferred requirements for each SSO application.

How it Works

  1. Navigate to Conditional Policies and click the green plus button to create a new policy.
  2. Select SSO Applications as the resource.
  3. Enter a policy name and description, if desired.
  4. In the “Assignments” section, click “Select Applications”.
  5. Click the search bar to select an SSO application. Note: the application must already be configured in JumpCloud.
  6. For this example, select “Amazon Web Services".
  7. Scroll to the Action section.
  8. In the Action section, click “Allow authentication”.
  9. Click “Require MFA”.
  10. Click “create policy” to save.
  11. Congrats! All users who access Amazon Web Services will be required to authenticate with MFA.