Set up user access to the Athena workgroup role.Set up automatic IAM role provisioning.Set up an IAM role and policies for each Athena workgroup.Set up an IAM user with read role permission.Configure the Azure AD app with delegated permissions.Set up Azure AD as your SAML IdP for an AWS single-account app.Set up Azure AD as your identity provider (IdP):.You can control access to the workgroup by either an on-premises AD group or Azure AD group. This solution helps you configure IAM federation with Azure AD connected to on-premises AD and configure Athena workgroup-level access for users. For more information on how to integrate Azure AD with an AWS Managed AD, see Enable Office 365 with AWS Managed Microsoft AD without user password synchronization and how to integrate Azure AD with an on-premises AD, see Microsoft article Custom installation of Azure Active Directory Connect. We don’t cover how to setup synchronization between on-premises AD and Azure AD with the help of Azure AD connect. On-prem Active directory managed users and groups synchronized to Azure AD.Azure AD managed users and groups, and on-premises AD.This blog post illustrates how to set up AWS IAM federation with Azure AD connected to on-premises AD and configure Athena workgroup- level access for different users. For more information on how to use ADFS with Athena, see Enabling Federated Access to the Athena API. Athena supports federation with Active Directory Federation Service (ADFS), PingFederate, Okta, and Microsoft Azure Active Directory (Azure AD) federation. This setup reduces the overhead experience by cloud operation teams when managing IAM users. This simplifies administration by allowing a governing team to control user access to Athena workgroups from a centrally managed Azure AD connected to an on-premise Active Directory. Cloud operation teams can use AWS Identity and Access Management (IAM) federation to centrally manage access to Athena. Amazon Athena is an interactive query service that makes it easier to analyze data directly in Amazon Simple Storage Service (Amazon S3) using standard SQL.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |