Provider guides
AWS
What’s supported
Supported actions
This connector supports:- Read Actions, including full historic backfill. Please note that incremental read is not supported, a full read of the AWS instance will be done for each scheduled read.
- Write Actions.
- Proxy Actions, unsupported.
Supported Objects
The AWS connector supports reading and writing to and from the following objects:- AccountAssignmentCreationStatus (read)
- AccountAssignmentDeletionStatus (read)
- ApplicationProviders (read)
- Applications (read/create/update/delete)
- Groups (read/create/update/delete)
- Instances (read/create/update/delete)
- PermissionSetProvisioningStatus (read)
- TrustedTokenIssuers (read/create/update/delete)
- Users (read/create/update/delete)
- AccountAssignments (create)
- ApplicationAccessScopes (update)
- ApplicationAssignmentConfigurations (update)
- ApplicationAssignments (create)
- ApplicationAuthenticationMethods (update)
- ApplicationGrants (update)
- GroupMemberships (create/delete)
- InstanceAccessControlAttributeConfigurations (create/delete)
- PermissionSets (create/update/delete)
Using the connector
This connector uses Basic Auth:- Username = AWS Access Key ID
- Password = AWS Access Key Secret
Obtain Access Key ID and Secret
Follow instructions to get your AWS access keys.Obtain connector metadata
To initialize the connector, you need:- AWS region
- Identity Store ID
- Instance ARN To find these, open AWS dashboard, search for IAM Identity Center service, then open the Settings tab.