AWS singlesignon medium security documentation change
Summary
Added note about lack of SAML request signing support for external IdPs
Security assessment
Documents a security limitation where IAM Identity Center cannot sign SAML requests to external IdPs, potentially affecting message integrity in federated authentication scenarios.
Diff
diff --git a/singlesignon/latest/userguide/other-idps.md b/singlesignon/latest/userguide/other-idps.md index 45463aa53..0ef42af6e 100644 --- a//singlesignon/latest/userguide/other-idps.md +++ b//singlesignon/latest/userguide/other-idps.md @@ -29,0 +30,2 @@ Any identity provider (IdP) that implements these standard protocols is expected + * IAM Identity Center does not support signing SAML authentication requests that it sends to external IdPs. +