{"id":89000,"date":"2023-06-05T13:09:15","date_gmt":"2023-06-05T17:09:15","guid":{"rendered":"https:\/\/jumpcloud.com\/?post_type=support&#038;p=89000"},"modified":"2023-08-15T15:47:22","modified_gmt":"2023-08-15T19:47:22","slug":"grant-access-for-integration-with-amazon-aws-in-iam","status":"publish","type":"support","link":"https:\/\/jumpcloud.com\/support\/grant-access-for-integration-with-amazon-aws-in-iam","title":{"rendered":"Grant Access for Integration with Amazon AWS in IAM"},"content":{"rendered":"\n<p>When admins connect AWS in JumpCloud for single sign on (SSO), AWS accepts SSO based on roles. AWS roles are a set of permissions for making AWS service requests that are not associated with a user or group (Refer to&nbsp;<a href=\"https:\/\/aws.amazon.com\/iam\/faqs\/\" target=\"_blank\" rel=\"noreferrer noopener\">Amazon\u2019s IAM FAQs<\/a>&nbsp;for more information). Admins can configure AWS roles in JumpCloud with Custom User Attributes and Constant Attributes.&nbsp;<br><br><strong>Read first<\/strong>:<\/p>\n\n\n\n<ul>\n<li>Learn how to <a href=\"https:\/\/support.jumpcloud.com\/support\/s\/article\/single-sign-on-sso-with-amazon-aws-in-iam-2019-08-21-10-36-47\" target=\"_blank\" rel=\"noreferrer noopener\">configure single sign on with AWS<\/a>.\u00a0<\/li>\n\n\n\n<li>Learn how to <a href=\"https:\/\/jumpcloud.com\/support\/create-federated-roles-in-aws\" target=\"_blank\" rel=\"noreferrer noopener\">create federated roles in AWS<\/a>.<\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\">Option 1: Configuring AWS Roles with Custom Attributes<\/h2>\n\n\n\n<p>Configuring AWS roles with custom user attributes provides admins with one connector to service all of their AWS roles and is an effective method for admins who have highly unique permission sets across their users.&nbsp;<a href=\"https:\/\/jumpcloud.com\/support\/configure-dynamic-aws-roles-in-jumpcloud\" target=\"_blank\" rel=\"noreferrer noopener\">Configure AWS roles with custom attributes<\/a>.&nbsp;<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Option 2: Configuring AWS Roles with Constant Attributes&nbsp;<\/h2>\n\n\n\n<p>Configuring AWS roles with constant attributes works well if users need access to the same collection of roles. This method produces multiple connectors, each with their own collection of roles.&nbsp;<a href=\"https:\/\/jumpcloud.com\/support\/configure-aws-roles-in-jumpcloud-with-constant-attributes\" target=\"_blank\" rel=\"noreferrer noopener\">Configure AWS roles with constant attributes<\/a>.&nbsp;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>When admins connect AWS in JumpCloud for single sign on (SSO), AWS accepts SSO based on roles. AWS roles are [&hellip;]<\/p>\n","protected":false},"author":206,"featured_media":0,"template":"","meta":{"_acf_changed":false,"_oasis_is_in_workflow":0,"_oasis_original":0,"_oasis_task_priority":"","inline_featured_image":false,"footnotes":""},"support_category":[2855,2907,2902],"support_tag":[],"coauthors":[2842],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v22.9 (Yoast SEO v22.9) - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Grant Access for Integration with Amazon AWS in IAM - JumpCloud<\/title>\n<meta name=\"description\" content=\"Learn how to configure AWS roles within JumpCloud for AWS SSO using either custom user attributes or constant user attributes.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/jumpcloud.com\/support\/grant-access-for-integration-with-amazon-aws-in-iam\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Grant Access for Integration with Amazon AWS in IAM\" \/>\n<meta property=\"og:description\" content=\"Learn how to configure AWS roles within JumpCloud for AWS SSO using either custom user attributes or constant user attributes.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/jumpcloud.com\/support\/grant-access-for-integration-with-amazon-aws-in-iam\" \/>\n<meta property=\"og:site_name\" content=\"JumpCloud\" \/>\n<meta property=\"article:modified_time\" content=\"2023-08-15T19:47:22+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2024\/07\/202405-MISC-JumpCloudHelpCenter-SiteDisplay-min-2.png\" \/>\n\t<meta property=\"og:image:width\" content=\"890\" \/>\n\t<meta property=\"og:image:height\" content=\"525\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data1\" content=\"1 minute\" \/>\n\t<meta name=\"twitter:label2\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data2\" content=\"pamkellman\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/jumpcloud.com\/support\/grant-access-for-integration-with-amazon-aws-in-iam\",\"url\":\"https:\/\/jumpcloud.com\/support\/grant-access-for-integration-with-amazon-aws-in-iam\",\"name\":\"Grant Access for Integration with Amazon AWS in IAM - JumpCloud\",\"isPartOf\":{\"@id\":\"https:\/\/jumpcloud.com\/#website\"},\"datePublished\":\"2023-06-05T17:09:15+00:00\",\"dateModified\":\"2023-08-15T19:47:22+00:00\",\"description\":\"Learn how to configure AWS roles within JumpCloud for AWS SSO using either custom user attributes or constant user attributes.\",\"breadcrumb\":{\"@id\":\"https:\/\/jumpcloud.com\/support\/grant-access-for-integration-with-amazon-aws-in-iam#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/jumpcloud.com\/support\/grant-access-for-integration-with-amazon-aws-in-iam\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/jumpcloud.com\/support\/grant-access-for-integration-with-amazon-aws-in-iam#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/jumpcloud.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Support\",\"item\":\"https:\/\/jumpcloud.com\/support\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Grant Access for Integration with Amazon AWS in IAM\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/jumpcloud.com\/#website\",\"url\":\"https:\/\/jumpcloud.com\/\",\"name\":\"JumpCloud\",\"description\":\"Daily insights on directory services, IAM, LDAP, identity security, SSO, system management (Mac, Windows, Linux), networking, and the cloud.\",\"publisher\":{\"@id\":\"https:\/\/jumpcloud.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/jumpcloud.com\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/jumpcloud.com\/#organization\",\"name\":\"JumpCloud\",\"url\":\"https:\/\/jumpcloud.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png\",\"contentUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png\",\"width\":598,\"height\":101,\"caption\":\"JumpCloud\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/\"}}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Grant Access for Integration with Amazon AWS in IAM - JumpCloud","description":"Learn how to configure AWS roles within JumpCloud for AWS SSO using either custom user attributes or constant user attributes.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/jumpcloud.com\/support\/grant-access-for-integration-with-amazon-aws-in-iam","og_locale":"en_US","og_type":"article","og_title":"Grant Access for Integration with Amazon AWS in IAM","og_description":"Learn how to configure AWS roles within JumpCloud for AWS SSO using either custom user attributes or constant user attributes.","og_url":"https:\/\/jumpcloud.com\/support\/grant-access-for-integration-with-amazon-aws-in-iam","og_site_name":"JumpCloud","article_modified_time":"2023-08-15T19:47:22+00:00","og_image":[{"width":890,"height":525,"url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2024\/07\/202405-MISC-JumpCloudHelpCenter-SiteDisplay-min-2.png","type":"image\/png"}],"twitter_card":"summary_large_image","twitter_misc":{"Est. reading time":"1 minute","Written by":"pamkellman"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/jumpcloud.com\/support\/grant-access-for-integration-with-amazon-aws-in-iam","url":"https:\/\/jumpcloud.com\/support\/grant-access-for-integration-with-amazon-aws-in-iam","name":"Grant Access for Integration with Amazon AWS in IAM - JumpCloud","isPartOf":{"@id":"https:\/\/jumpcloud.com\/#website"},"datePublished":"2023-06-05T17:09:15+00:00","dateModified":"2023-08-15T19:47:22+00:00","description":"Learn how to configure AWS roles within JumpCloud for AWS SSO using either custom user attributes or constant user attributes.","breadcrumb":{"@id":"https:\/\/jumpcloud.com\/support\/grant-access-for-integration-with-amazon-aws-in-iam#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/jumpcloud.com\/support\/grant-access-for-integration-with-amazon-aws-in-iam"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/jumpcloud.com\/support\/grant-access-for-integration-with-amazon-aws-in-iam#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/jumpcloud.com\/"},{"@type":"ListItem","position":2,"name":"Support","item":"https:\/\/jumpcloud.com\/support"},{"@type":"ListItem","position":3,"name":"Grant Access for Integration with Amazon AWS in IAM"}]},{"@type":"WebSite","@id":"https:\/\/jumpcloud.com\/#website","url":"https:\/\/jumpcloud.com\/","name":"JumpCloud","description":"Daily insights on directory services, IAM, LDAP, identity security, SSO, system management (Mac, Windows, Linux), networking, and the cloud.","publisher":{"@id":"https:\/\/jumpcloud.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/jumpcloud.com\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/jumpcloud.com\/#organization","name":"JumpCloud","url":"https:\/\/jumpcloud.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/","url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png","contentUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png","width":598,"height":101,"caption":"JumpCloud"},"image":{"@id":"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/"}}]}},"_links":{"self":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support\/89000"}],"collection":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support"}],"about":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/types\/support"}],"author":[{"embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/users\/206"}],"version-history":[{"count":3,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support\/89000\/revisions"}],"predecessor-version":[{"id":95756,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support\/89000\/revisions\/95756"}],"wp:attachment":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/media?parent=89000"}],"wp:term":[{"taxonomy":"support_category","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support_category?post=89000"},{"taxonomy":"support_tag","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support_tag?post=89000"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/coauthors?post=89000"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}