Home
Product Guides
Start typing to search…

AWS Integration

This guide helps you configure AWS SSO using Fixiam as the identity provider. You’ll go from setting up the app in IAM to completing configuration on AWS, and then back to IAM to finish the setup.


✅ Prerequisites

  • You're using an AWS Organization Root account
  • You have AdministratorAccess in AWS
  • You have admin access to Fixiam

Step 1: Start in Fixiam

  1. Log in to Fixiam as an admin
  2. Navigate to Applications > Apps
  3. From the list of pre-integrated apps, select AWS
  4. The SAML configuration page will open
  5. On the Configuration page, Click Export Metadata
  6. This will download but opens a new tab (especially in Chrome).
  7. If a new tab open with the metadata, right-click the page and Save As an .xml file — e.g., seamfix-idp-metadata.xml
  8. You will upload this XML file in AWS during the next step.

Step 4: Set Up AWS Identity Center

  1. Open the AWS Identity Center: https://aws.amazon.com/iam/identity-center/.
  2. On the identity center page, select Enable

Step 5: Set Identity Source to External

  1. In the resulting page, locate IAM Identity Center Setup
  2. Click Confirm identity source
  3. Click Actions > Change Identity Source
  4. Select External Identity Provider → Click Next

Step 6: Configure SAML credentials

  1. On the Identity Provider page, click on Download metadata file,
  2. Open file and copy the value for “Entity ID”. This will be pasted on the Fixiam in the SP Entity ID field
  3. Copy the IAM Identity Center Assertion Consumer Service (ACS) URL and paste it in the Fixiam field labeled ACS URL.

  1. In the Identity Provider Metadata section, locate Idp SAML metadata and click on choose file
  2. Upload the downloaded Metadata from Fixiam from Step 3
  3. Review and confirm

Step 7: Provision Users on both AWS Identity Center and Fixiam

  1. From the sidebar on AWS, select Users and follow the steps to add a user.

  1. Ensure the same user with email exists on the Fixiam. You can manually create the user on Fixiam.
  2. Assign users to group and assign necessary permissions to group.

Step 8: Assign the SSO Profile to the right organization account

  1. From the sidebar on AWS, select AWS accounts and follow the steps in the images below.

  1. Review and submit

Step 9: Confirm Configuration

  1. To test the setup, using the AWS access portal sign in url from step 3 above.
  2. The SSO setup is now complete

Updated 3 months ago