Page created: 16 Aug 2021
|
Page updated: 15 Dec 2021
During authentication to Amazon Managed Grafana, you can optionally assign the Grafana Admin role to users by defining an admin role attribute and populating a PingOne SAML assertion attribute with the expected agreed-upon value.
For the example configuration, in PingOne, the memberOf
attribute is mapped to the SAML assertion groups attribute.
In Amazon Managed Grafana, the SAML assertion groups
attribute is mapped to the Grafana admin role value, as shown in the following
image.