user3493508
Reputation: 11
Federated Single Sign-On to AWS Using Google Apps
We have had everything working perfectly for the last couple of years, then all of a sudden in the last week we cant log into AWS using the Google SSO.
We are setting up the roles for the users again (as per https://aws.amazon.com/blogs/security/how-to-set-up-federated-single-sign-on-to-aws-using-google-apps/), but when we get to the users.patch (or users.update) section with the following call (values for <role ARN>,<provider ARN> replaced with actual...):
"customSchemas": {
"SSO": {
"role": [
{
"value": "<role ARN>,<provider ARN>",
"customType": "iPDA-sysadmin"
}
]
}
}
}
We get the following error:
{
"error": {
"code": 400,
"message": "Invalid Input: Bad request for ",
"errors": [
{
"message": "Invalid Input: Bad request for ",
"domain": "global",
"reason": "invalid"
}
]
}
}
Any ideas would be great...
Upvotes: 0
Views: 111
Answers (1)
Anurag
Reputation: 41
https://support.google.com/a/answer/6327792?hl=en
You need to pass in the type as well.
{
"customSchemas":
{
"SSO":
{
"role": [
{
"value": "<role ARN>,<provider ARN>",
"type": "custom"
"customType": "SSO"
}
]
}
}
}
Upvotes: 0
Related Questions
- AWS VPN using federated login with Google IdP - app_not_configured_for_user
- Google cloud service account federated access to AWS service
- OpenID and federated logins
- Enabling AAD federated SSO for Google compute engine hosted app
- Configuring single federated login to AWS using Google Apps using Users Patch API - Found array where value was expected
- Android & Google App engine Federated Login
- Federated identity on Google App Engine
- Google Federated Login (OpenID + OAuth 2)
- Single Sign-On with Google Apps + App Engine
- Google app engine Federated (openid) login localhost