IdentityCenterOptions
Settings container for integrating IAM Identity Center with OpenSearch UI applications, which enables enabling secure user authentication and access control across multiple data sources. This setup supports single sign-on (SSO) through IAM Identity Center, allowing centralized user management.
Contents
- EnabledAPIAccess
- 
               Indicates whether IAM Identity Center is enabled for the application. Type: Boolean Required: No 
- IdentityCenterApplicationARN
- 
               The ARN of the IAM Identity Center application that integrates with Amazon OpenSearch Service. Type: String Length Constraints: Minimum length of 20. Maximum length of 2048. Pattern: ^arn:aws[a-z\\-]*:[a-z]+:[a-z0-9\\-]*:[0-9]*:[a-z0-9\\-]+\/[a-z0-9\\-]+\/[a-z0-9\\-]+Required: No 
- IdentityCenterInstanceARN
- 
               The Amazon Resource Name (ARN) of the IAM Identity Center instance. Type: String Length Constraints: Minimum length of 20. Maximum length of 2048. Pattern: ^arn:aws[a-z\\-]*:[a-z]+:[a-z0-9\\-]*:[0-9]*:[a-z0-9\\-]+\/[a-z0-9\\-]+Required: No 
- IdentityStoreId
- 
               The identifier of the IAM Identity Store. Type: String Length Constraints: Minimum length of 1. Maximum length of 64. Pattern: ^d-[0-9a-f]{10}$|^[0-9a-f]{8}\\b-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-\\b[0-9a-f]{12}$Required: No 
- RolesKey
- 
               Specifies the attribute that contains the backend role identifier (such as group name or group ID) in IAM Identity Center. Type: String Valid Values: GroupName | GroupIdRequired: No 
- SubjectKey
- 
               Specifies the attribute that contains the subject identifier (such as username, user ID, or email) in IAM Identity Center. Type: String Valid Values: UserName | UserId | EmailRequired: No 
See Also
For more information about using this API in one of the language-specific AWS SDKs, see the following: