Skip to the content

RISHI RAJ S GERA

Chief Solutions Officer, Magic Edtech

RISHI RAJ S GERA

Chief Solutions Officer, Magic Edtech

  • Home
  • My Profile
    • Know your Consultant
    • Technical Skills
    • My Certifications
  • Expertise
    • Education Advisory Services
    • Digital Transformation
      • Platform Engineering
      • Digital Content – Micro Learning Instruction
  • Resources
    • News and Trends

IAM Identity Center now enables programmatic AWS account access for customer managed applications

Advanced learning
    • By Rishi Raj Singh Gera
    • No Comments on IAM Identity Center now enables programmatic AWS account access for customer managed applications
    • June 30, 2026

IAM Identity Center now enables programmatic AWS account access for customer managed applications

IAM Identity Center now enables customer managed applications to programmatically access AWS accounts on behalf of their users, including the ability to discover accounts and roles assigned to a user and retrieve temporary credentials required for AWS account access.

If you have a customer managed application that authenticates users through an external identity provider (IdP), you can configure that IdP as a trusted token issuer (TTI) in IAM Identity Center. With this launch, you can now enable AWS account access for this application. Users who have already signed in through the IdP can access their assigned AWS accounts and obtain temporary security credentials for their authorized roles without a separate authentication flow. This eliminates redundant sign-in prompts that previously required users to re-authenticate even after signing in through their external identity provider.

This feature is available for organization instances of IAM Identity Center. IAM Identity Center administrators must explicitly enable AWS account access for each customer managed application. Only management account administrators or delegated administrators can enable this capability, ensuring centralized governance over which applications can access account-level resources.

This feature is available in all commercial AWS Regions, the AWS GovCloud (US) Regions, and the China Regions. To get started, navigate to the IAM Identity Center console, select your customer managed application, and enable AWS account access. For more information, see Enable AWS account access for customer managed applications in the IAM Identity Center User Guide.

Share this:

  • Share on X (Opens in new window) X

Related

Leave a ReplyCancel reply

Follow Blog via Email

Enter your email address to follow this blog and receive notifications of new posts by email.

Discover more from RISHI RAJ S GERA

Subscribe now to keep reading and get access to the full archive.

Continue reading

Back To Top