Amazon AWS Apps Portal
Amazon AWS proposes an extensive catalog of SaaS applications and by defining UserLock SSO as the IdP for AWS, it is possible to access all these applications by linking UserLock SSO and AWS SSO. This will allow you to protect the access to AWS with UserLock SSO and consequently, AWS SSO will be used to access any SaaS application configured in AWS.
In this example, we will show how to setup Dropbox with AWS SSO. Each application needs a specific configuration. We recommend to follow the documentation of AWS dedicated to the application you want to add.
First, AWS must already be protected with UserLock SSO as explained here.
AWS SSO Configuration
- In AWS SSO, select Applications → Add a new application
- Enter Dropbox in the search field, select it and click the Add application button
- Download the AWS SSO Certificate
- In the Assigned Users tab, add the user account you will test with
- In another browser tab, open the Dropbox administration console and navigate to Settings → Single Sign-on
- Use the AWS SSO sign-in URL in Identity provider sign-in URL field
- Use the AWS SSO sign-out URL in Identity provider sign-out URL field
- Upload the AWS SSO Certificate as X.509 certificate
Test the setup
- Launch the User portal URL (located in AWS SSO Settings)
- Select Dropbox