You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: README.md
+27-7Lines changed: 27 additions & 7 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -27,7 +27,25 @@ You can visualize the the results using Amazon Managed Grafana through Amazon At
27
27
28
28
## Deployment
29
29
30
-
The deployment of the dashboard is composed of three steps.
30
+
The deployment of the dashboard is composed of four steps.
31
+
32
+
### AWS Organization and AWS IAM Identity Center
33
+
34
+
Amazon Managed Grafana relies on single sign-on using your organization’s identity provider to authenticate users.
35
+
The following steps guide you to setup [AWS Organization](https://aws.amazon.com/organizations/), and [AWS IAM Identity Center](https://aws.amazon.com/iam/identity-center/).
36
+
37
+
**NOTE**: If you already have AWS Organization and AWS IAM Identity Center you can skip those steps.
38
+
39
+
#### 1. Create an AWS Organizations
40
+
41
+
1. Open [AWS Organization](<https://console.aws.amazon.com/organizations/v2>).
42
+
1. Choose **Create an Organization**. By default, the organization is created with all features enabled.
43
+
1. The organization is created and the AWS accounts page appears. The only account present is your management account, and it's currently under the root organizational unit (OU).
44
+
45
+
#### 2. Enable AWS IAM Identity Center
46
+
47
+
1. Open [AWS IAM Identity Center](<https://console.aws.amazon.com/singlesignon>).
48
+
1. Choose **Enable**.
31
49
32
50
### Deploy the architecture
33
51
@@ -53,8 +71,9 @@ GRAFANA_ID=`sam list stack-outputs --stack-name ${BATCH_DASHBOARD_NAME} \
53
71
54
72
### Create and add group permissions to grafana
55
73
56
-
Amazon Managed Grafana relies on to authenticate users.
57
-
The following steps guide you to setup AWS Organization, AWS IAM Identity Center and create a viewer and admin group.
74
+
Amazon Managed Grafana integrates with AWS IAM Identity Center to provide identity federation.
75
+
The federation provides users and groups that will grant access to Amazon Managed Grafana as a **Viewer**, **Editor** or **Admin**.
76
+
The following steps guide you to create a viewer and admin group.
58
77
59
78
#### 1. Create an AWS Organizations
60
79
@@ -64,19 +83,20 @@ The following steps guide you to setup AWS Organization, AWS IAM Identity Center
64
83
65
84
#### 2. Enable AWS IAM Identity Center
66
85
67
-
1. Open [AWS IAM Identity Center](<https://console.aws.amazon.com/singlesignon>).
68
-
1. Choose **Enable**.
69
-
1. Choose **Go to settings**.
86
+
1. Open **[AWS IAM Identity Center settings](https://console.aws.amazon.com/singlesignon/identity/home#!/settings)**
70
87
1. Copy the **Identity store ID** from the identity store tab. This will be used in the next step
71
88
72
89
### Create groups and users in IAM Identity Center
73
90
74
-
Create grafana admin and viewer groups.
75
91
Set the identity store ID to the value copied in the previous step.
0 commit comments