AWS Security ChangesHomeSearch

AWS singlesignon medium security documentation change

Service: singlesignon · 2025-10-22 · Security-related medium

File: singlesignon/latest/userguide/other-idps.md

Summary

Added note about lack of SAML request signing support for external IdPs

Security assessment

Documents a security limitation where IAM Identity Center cannot sign SAML requests to external IdPs, potentially affecting message integrity in federated authentication scenarios.

Diff

diff --git a/singlesignon/latest/userguide/other-idps.md b/singlesignon/latest/userguide/other-idps.md
index 45463aa53..0ef42af6e 100644
--- a//singlesignon/latest/userguide/other-idps.md
+++ b//singlesignon/latest/userguide/other-idps.md
@@ -29,0 +30,2 @@ Any identity provider (IdP) that implements these standard protocols is expected
+    * IAM Identity Center does not support signing SAML authentication requests that it sends to external IdPs.
+