From 705bd7cfd49f417cadd29cd536f77ed3e6d715f1 Mon Sep 17 00:00:00 2001
From: aman <amansaxena8055@gmail.com>
Date: Tue, 31 Oct 2023 23:23:13 +0530
Subject: [PATCH] add info about AWS IAM Identity Center

---
 README.md                     |  2 +-
 sections/advanced_identity.md | 17 ++++++++++-------
 2 files changed, 11 insertions(+), 8 deletions(-)

diff --git a/README.md b/README.md
index 3c9d9a0..d8aaaf9 100644
--- a/README.md
+++ b/README.md
@@ -45,7 +45,7 @@ Each Section contains a number of units. **Below Table Link** containing informa
 - [Account Management, Billing & Support](sections/account_management_billing_support.md)
   - AWS Organizations, Multi Account Strategies, Service Control Policies (SCP), AWS Organization - Consolidated Billing, AWS Control Tower, AWS Resource Access Manager (AWS RAM), AWS Service Catalog, Pricing Models in AWS, Compute Pricing, Storage Pricing, Database Pricing - RDS, Content Delivery - CloudFront, Networking Costs in AWS per GB - Simplified
 - [Advanced Identity](sections/advanced_identity.md)
-  - AWS STS (SecurityToken Service), Amazon Cognito (simplified), What is Microsoft Active Directory (AD)?, AWS Single Sign-On (SSO)
+  - AWS STS (SecurityToken Service), Amazon Cognito (simplified), What is Microsoft Active Directory (AD)?, AWS IAM Identity Center
 - [Other AWS Services](sections/other_aws_services.md)
   - Amazon WorkSpaces, Amazon AppStream 2.0, Amazon Sumerian, AWS IoT Core, Amazon Elastic Transcoder, AWS Device Farm, AWS Backup, AWS Elastic Disaster Recovery (DRS), AWS DataSync, AWS Fault Injection Simulator (FIS)
 - [AWS Architecting & Ecosystem](sections/architecting_and_ecosystem.md)
diff --git a/sections/advanced_identity.md b/sections/advanced_identity.md
index 6fb1170..6822ceb 100644
--- a/sections/advanced_identity.md
+++ b/sections/advanced_identity.md
@@ -5,7 +5,7 @@
   - [Amazon Cognito (simplified)](#amazon-cognito-simplified)
   - [What is Microsoft Active Directory (AD)?](#what-is-microsoft-active-directory-ad)
     - [AWS Directory Services](#aws-directory-services)
-  - [AWS Single Sign-On (SSO)](#aws-single-sign-on-sso)
+  - [AWS IAM Identity Center (successor to AWS Single Sign-On)](#aws-iam-identity-center-successor-to-aws-single-sign-on)
   - [Summary](#summary)
 
 ## AWS STS (SecurityToken Service)
@@ -40,12 +40,15 @@
   - AD-compatible managed directory on AWS
   - Cannot be joined with on-premise AD
 
-## AWS Single Sign-On (SSO)
+## AWS IAM Identity Center (successor to AWS Single Sign-On)
 
-- Centrally manage Single SignOn to access multiple accounts and 3rd-party business applications.
-- Integrated with AWS Organizations
-- Supports SAML 2.0 markup
-- Integration with on-premise Active Directory
+- One login (single sign-on) for all your
+  - AWS accounts in AWS Organizations
+  - Business cloud applications (e.g., Salesforce, Box, Microsoft 365, ...)
+  - SAML2.0-enabled applications
+  - EC2 Windows Instances
+- Identity providers
+  - Built-in identity store in IAM Identity Center
 
 ## Summary
 
@@ -56,7 +59,7 @@
 - **Security Token Service (STS)**: temporary, limited-privileges credentials to access AWS resources
 - **Cognito**: create a database of users for your mobile & web applications
 - **Directory Services**: integrate Microsoft Active Directory in AWS
-- **Single Sign-On (SSO)**: one login for multiple AWS accounts & applications
+- **IAM Identity Center**: one login for multiple AWS accounts & applications
 
 * * *