🔑
Terraform CloudにAWS IAM Identity Centerでログインする
Terraform Cloud側
Metadata URL
https://portal.sso.<Region>.amazonaws.com/saml/metadata/************
Entity ID or Issuer URL
https://portal.sso.<Region>.amazonaws.com/saml/assertion/************
Single Sign-On URL
https://portal.sso.<Region>.amazonaws.com/saml/assertion/************
Single Log Out URL
https://portal.sso.<Region>.amazonaws.com/saml/logout/************
Username Attribute
Name
AWS IAM Identity Center側
アプリケーション ACS URL
https://app.terraform.io/sso/saml/samlconf-************/acs
アプリケーション SAML 対象者
https://app.terraform.io/sso/saml/samlconf-************/metadata
属性マッピング
| Subject | ${user:email} | emailAddress |
| Name | ${user:familyName} | unspecified |
※Nameは自由に👇から使用してください。
| IAM Identity Centerでサポートされている属性 |
|---|
| ${user:AD_GUID} |
| ${user:email} |
| ${user:familyName} |
| ${user:givenName} |
| ${user:middleName} |
| ${user:name} |
| ${user:preferredUsername} |
| ${user:subject} |
Discussion