Search Call 1-800-383-5193 Emergency Contact

Cloudflare Access of AWS SSO | Everything to Know

by | Jun 11, 2022 | Amazon Web Services (AWS), Cloudflare, Latest | 0 comments

Cloudflare access for AWS SSO allows users to sign in once with a single set of credentials and gain access to all enabled apps.

Bobcares responds to all inquiries, large or small, as part of our AWS support service.

Let’s look at the details of Cloudflare access for AWS SSO.

Cloudflare access for AWS SSO

AWS SSO does not typically require any additional apps, certificates, or complicated installations; everything is done through a web browser. Furthermore, SSO simplifies the job of administrators by providing a centralised system for managing user accounts, assigning and removing access to specific apps, and monitoring risk.

Cloudflare Access for SaaS enables us to layer additional network and device posture policies on top of our identity provider’s existing identity authentication. In this example, Okta is used as the identity provider, but any supported identity provider can be used.

Configure AWS

  1. Firstly, login to the AWS admin panel.
  2. Then, search for SSO.
  3. Then, link the AWS account to AWS Single Sign On.

  4. Select an identity source by clicking the Choose an identity source button.
  5. Then, switch the identity provider to External Identity provider.
  6. Then, select Show individual metadata values from the drop-down menu. These are the fields that will be included in the Cloudflare Access for SaaS app.
  7. Finally, copy the AWS SSO ACS URL.

Configure Cloudflare

  1. Firstly, open the Zero Trust Dashboard.
  2. Then, go to Access > Applications.
  3. Then, to begin creating a SaaS application, select SaaS as the application type.
  4. Copy the following AWS account fields and paste them into the Zero Trust application configuration:

    AWS value.
    Cloudflare value.
    URL for AWS SSO ACS.
    Assertion Consumer Service URL
    URL of the AWS SSO Issuer
    Entity ID

  5. Email must be selected as the Name ID Format.
  6. The IdP can then pass additional Attribute Statements to AWS SSO.
  7. Then, Copy and save the Cloudflare IdP metadata values for the final AWS configuration.
  8. Then, Click Next
  9. Make an Access policy to control who has access to our application.
  10. Finally, return to the AWS SSO dashboard after saving the policy.

Complete the AWS configuration

  1. Firstly, Copy the Cloudflare IdP metadata and paste it into the AWS account with these mappings.cloudflare access aws sso
  2. Then click the Next: Review button.
  3. Finally, set Provisioning to Manual.

Check the connection

The user should now be able to log in successfully. Open the user portal URL to test the connection.

[Looking for a solution to another query? We are just a click away.]

Conclusion

To sum up, our Support team went over the details of Cloudflare access for AWS SSO.

PREVENT YOUR SERVER FROM CRASHING!

Never again lose customers to poor server speed! Let us help you.

Our server experts will monitor & maintain your server 24/7 so that it remains lightning fast and secure.

GET STARTED

Related posts:

    1. Cloudflare AWS Load Balancer | Setup Guide
    2. Cloudflare Browser Isolation Setup
    3. AWS S3 Bucket in Cloudflare | All about.
    4. Cloudflare AWS Amplify | Integration

Submit a Comment

Your email address will not be published. Required fields are marked *