AWS IAM Identity Center(SSO) :
- AWS IAM Identity Center is successor to AWS Single Sign-On
- AWS IAM Identity Center is used to enable sign/user creation and handling facility for organization level users using SAML 2.0 or Active directory and OpenID(Sign in with Google, Facebook, Github, Twitter…more) users.
Amazon Defined :
- AWS IAM IdentityCenter is used to manage sign-in security for your workforce identities, also known as workforce users.
- IAM Identity Center provides one place where you can create or connect workforce users and centrally manage their access across all their AWS accounts and applications.
- You can use multi-account permissions to assign your workforce users access to AWS accounts.
- You can use application assignments to assign your users access to IAM Identity Center enabled applications, cloud applications, and customer Security Assertion Markup Language (SAML 2.0) applications.
Identity Providers :
- SAML
- OpenID
AWS Organizations :
- AWS Organizations helps you centrally manage and govern your environment as you grow and scale your AWS resources.
- Using AWS Organizations, you can create accounts and allocate resources, group accounts to organize your workflows, apply policies for governance, and simplify billing by using a single payment method for all of your accounts.
- AWS Organizations is integrated with other AWS services so you can define central configurations, security mechanisms, audit requirements, and resource sharing across accounts in your organization. AWS Organizations is available to all AWS customers at no additional charge.