SAP-C02 - Design Solutions for Organizational Complexity - Section 1.2
Prescribe cross-account access and workforce identity using AWS IAM Identity Center, IAM roles and federation with third-party identity providers.
Configure centralised workforce identity using AWS IAM Identity Center, permission sets, and SAML federation with a third-party identity provider to grant cross-account access without long-term credentials. Distinguish when to use IAM Identity Center permission sets versus direct cross-account roles for a given organisational scale.
AWS IAM Identity CenterCross-account rolesSAML federationPermission sets
More in this domain
Back to all Design Solutions for Organizational Complexity objectives, or the SAP-C02 cert hub.
Examworthy is not affiliated with or endorsed by Amazon Web Services. Original, blueprint-aligned practice material only.