Welcome

AWS IAM Identity Center is the AWS solution for connecting your workforce users to AWS managed applications and other AWS resources. You can connect your existing identity provider and synchronize users and groups from your directory, or create and manage your users directly in IAM Identity Center. You can then use IAM Identity Center for either or both of the following:

User access to applications
User access to AWS accounts

This guide provides information about single sign-on operations that you can use for access to applications and AWS accounts. For information about IAM Identity Center features, see the IAM Identity Center User Guide.

Note

IAM Identity Center uses the sso and identitystore API namespaces.

Many API operations for IAM Identity Center rely on identifiers for users and groups, known as principals. For more information about how to work with principals and principal IDs in IAM Identity Center, see the Identity Store API Reference.

Note

AWS provides SDKs that consist of libraries and sample code for various programming languages and platforms (Java, Ruby, .Net, iOS, Android, and more). The SDKs provide a convenient way to create programmatic access to IAM Identity Center and other AWS services. For more information about the AWS SDKs, including how to download and install them, see Tools for Amazon Web Services.

This document was last published on May 1, 2026.

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

Actions