Help Center/
Well-Architected Framework/
Well-Architected Framework and Practices/
Security Pillar/
Infrastructure Security/
SEC02 Identity Authentication/
SEC02-04 Integrated Identity Management
Updated on 2025-05-22 GMT+08:00
SEC02-04 Integrated Identity Management
Create a unified identity management system across the company to centrally manage the private cloud, public cloud, and the accounts on the public cloud.
- Risk level
Medium
- Key strategies
- Create a unified identity management system across the company to centrally store user identity information.
- The system supports identity federation between private and public cloud IAM systems, enabling seamless cross-cloud access for users.
- The system is integrated with the company's HR process. User creation, change, and deletion can be triggered when an employee joins, change positions, or leaves the company.
- With IAM Identity Center in a multi-account environment built on Landing Zone, you can centrally manage user identities and their access to resources, eliminating per-account IAM user creation and simplifying identity permission management.
- The system establishes identity federation with IAM Identity Center, eliminating the need for separate federation with each account's IAM system.
- Related cloud services and tools
- IAM Identity Center
- IAM
- OneAccess
Parent topic: SEC02 Identity Authentication
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
The system is busy. Please try again later.
For any further questions, feel free to contact us through the chatbot.
Chatbot