Configure SSO with AWS IAM

AWS IAM Identity Center SSO for Forest Admin

PreviousOrganization settings NextConfigure SSO with Azure AD

Last updated 3 days ago

Was this helpful?

Configure SSO with AWS IAM

AWS IAM Identity Center SSO for Forest Admin

You must have one project in your organization with the plan to access this feature.

Configuration

Forest Admin is compatible with AWS's SAML 2.0 application. To enable SSO from your AWS IAM Identity Center, please follow the detailed step by step Set up your own SAML 2.0 application

Setting

Description

Value

Application ACS URL

Assertion Consumer Service URL is responsible for receiving the SAML response. Check Use this for Recipient URL and Destination URL

https://api.forestadmin.com/api/saml/callback

Application SAML audience

This is a globally unique name that Forest Admin gives you (Unique User ID).

forestadmin-OrganizationName

(Optional) Relay State

Only useful for

{"organizationName": "<OrganizationName>", "destinationUrl": "organization.projects"}

Troubleshooting

Check the steps below this if you encounter an issue:

Double check all information (endpoints, certificate expiration dates, etc..)
Make sure the nameID configured on your Identity Provider is the email address used on Forest Admin accounts

PreviousOrganization settings NextConfigure SSO with Azure AD

Last updated 3 days ago

Was this helpful?