Skip to content

internet2/aws-saml-scripts

ae20d9da37
Switch branches/tags

Name already in use

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?
3 branches 0 tags
Go to file
Code

Latest commit

@chubing
chubing Update create_saml_aws.sh
ae20d9d Oct 4, 2018
Update create_saml_aws.sh
ae20d9d

Git stats

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
README.md
ordered list
October 4, 2018 10:57
create_saml_aws.sh
Update create_saml_aws.sh
October 4, 2018 11:03
idp.xml
updated script
October 4, 2018 10:58
shibpolicy.json
Initial commit for shell script to add SAML integration to AWS account
October 4, 2018 10:53

README.md

aws-saml-scripts

This repo will contain some scripts to integrate a SAML IDP with an AWS account and enable roles called administrator and readonly. This is only part of a two step process when integrating an AWS account with a SAML provider. The SAML IDP will still need to be configured to release the appropriate attributes and values.

  1. modify shibpolicy.json
    • change the AWS account number (123456789012) to the actual number
    • change the value after saml-provider/ to the name you want to call the IDP (a hostname is usually a good practice)
  2. put the IDP metadata in idp.xml (right now, it contains the IDP metdata for login.at.internet.edu, the ICP SAML Proxy)
  3. run the create script:
    • ICP integration: create_saml_aws.sh login.at.internet2.edu
    • or: create_saml_aws.sh idp_name

About

Contains some scripts to integrate a SAML IDP with an AWS account and enable roles called administrator and readonly

Resources

Readme
Activity

Stars

1 star

Watchers

6 watching

Forks

0 forks

Releases

No releases published

Packages

No packages published

Languages