AWS SSO/AWS Opensearch SAML integration
I have an implementation of AWS OpenSearch that I can access using a master password/user combination.
Our AWS implementation uses AWS SSO to access accounts via the console. I have configured a custom SAML 2.0 application in AWS SSO and enabled SAML in OpenSearch.
- Service provider entity ID (OS) copied and mapped to Application ACS URL (AWS SSO)
- IdP-initiated SSO URL (OS) copied and mapped to Application SAML audience (SSO)
- AWS SSO SAML metadata file downloaded (SSO) and imported as IdP metadata (OS).