security

No menu items for this category
Home/Security/Saml/Aws

SAML AWS SSO

Follow the sections in this guide to set up AWS SSO using SAML.

Security requirements for your production environment:

  • DELETE the admin default account shipped by OM.
  • UPDATE the Private / Public keys used for the JWT Tokens in case it is enabled.

Create OpenMetadata application

Step 1: Configure a new Application in AWS Console

  • Login to AWS Console as an administrator and search for IAM Identity Center.
IAM-Identity-Center
  • Click on Choose your identity source and configure as per security requirements.
identity-source
  • After identity source is set up successfully, goto step 2 and click on Manage Access to application and add all the required users who need access to application.
manage-access
  • Click on Set up Identity Center enabled applications, and click Add application, and select Add custom SAML 2.0 application.
saml-application
  • Set Display Name to OpenMetadata , and download the metadata xml file and save it someplace safe, it is needed to setup OM Server
metadata-xml

  • Click on Manage assignments to your cloud applications and select OpenMetadata from list of applications.

  • Click on Actions and select Edit Configurations from list. Populate the shown values replacing localhost:8585 with your {domain}:{port} and Submit.

edit-configuration
  • Click on Actions again and select Edit Attribute Mapping from list. Populate the values as shown below and submit
edit-attribute

Send the Collate team the above information to configure the server.