Page created: 22 Oct 2019
|
Page updated: 25 Jul 2022
You can configure AWS Session Tag support for OpenID Connect (OIDC) connections in PingFederate.
- If you want to use OGNL expressions to populate the values of the AWS session tags, see Enable and disable expressions in the PingFederate documentation.
- Create an Amazon Web Services (AWS) console account and policy that uses session tags. For help, see AWS prerequisites in the PingAccess documentation.
- Configure your PingFederate OAuth client for AWS console authentication.
- Define a PingFederate OpenID Connect policy. For help, see Configuring OpenID Connect policies in the PingFederate documentation.
https://aws.amazon.com/Tags:
{
"principal_tags ": {
"project ":["Project1],
"cost_center": ["1234"]
}
"transitive_tags": ["cost_center"]
}