AWS Multiple Accounts SAML based User Federation using Keycloak

If not a medium member, try using the link here to view it for free.

Introduction

Continuing from the previous blog only which is here. This one will cover the same thing only but for multiple AWS accounts. And it is better that you go through the previous article to co-relate the things.

Prerequisites

1. You should have the real urge to do federation between an identity provider and AWS Multiple Accounts using SAML based setup.
2. Have some knowledge of — AWS, AWS IAM, SAML, Access and Identity Management as general topic, Keycloak, etc.

Scope.

1. Configuration setup of Identity Provider on the AWS side.
2. Role management on the AWS IAM side.
3. Configuration setup on the Keycloak side.
4. And mapping of the users/ groups/ roles etc. on the Keycloak side.

Out of Scope.

1. Setting up Keycloak server is strictly out of scope! We are only supposed to configure it in this article!
2. Setting up AWS account is also out of scope! 😃

Steps

1. Repeat this step on all the AWS accounts…