Wow the way you explains is so soothing and understandable. It would be great if you could take cloudformation explanation on how to build entire application infrastructure which has vpc, few private and public subnets, rds or dynamo db, ALB etc.

Thank you for such a knowledgeable content. your way of explanation is awesome. ! Please explain on load balancers and how to understand which load balancer to use as per the scenarios.

Hey, Have you updated your cloud practitioner course on zero to mastery to reflect the new exam content?

Thanks for the nice comment, Diksha! 😊 And I'll add this topic to my list for future videos.

Hi Roy! I responded on another comment, but for anyone else curious, it'll hopefully be next week. I'll update the description in that video when it's ready to go. 🤓

I'm so glad it helped!! 🤓💪🌟

Thanks so much, Siddharth! 🙏😊 And this is a great suggestion...I'll add it to my list!

WOW, this is SUCH a nice comment! I'm going to save this one. 🥰 I'm so glad you're enjoying the videos. Thanks for supporting the channel! 🙏🤓🌟

Oh, I'm so glad it helped! Welcome to the channel! 🤓🌟👋

Thanks for the kind words, Mohammad!! 🙏😊 I'll add the Okta idea to my list for future videos.

Yes, it is!!! So glad the video helped. Thanks for watching! 🙏🌟🤓

Thanks SO much, James!! 🙏🌟🤓 And this is a really helpful tip! 👍

Yay! I'm so glad it helped. It *does* seem like AWS is nudging us in that direction. Thanks for watching!! 🙏🤓🌟

Oh, I'm so glad you were able to figure it out! Thanks for watching, and for the nice comment! 🤓🙏🌟

Thanks for the nice comments, Wilfred! I'm glad you're enjoying the videos. 😊

I'm so glad they're helpful!! Thanks for watching, and for the nice comment! 🙏🌟🤓

@@TinyTechnicalTutorials you're very welcome

Yay! I'm so glad it was helpful. Thanks for watching! 🤓🌟🙏

I'm so glad it helped! Thanks for watching!! 🙏🤓🌟

You're so welcome! I'm glad it helped. And thank YOU for watching! 🤓🙏🌟

I'm so glad it helped! Thanks for watching! 🙏🤓🌟

Awwww...shucks!! Thanks so much! 🙏🥰🌟

Glad you liked it!! Thanks for watching! 🌟🙏🤓

I'm so glad!! Thanks for watching!! 🤓🙏🌟

You bet! Glad it helped! 😊

Welcome to the channel!! 🤓🌟🙏

Glad it helped! Thanks for watching! 🤓🙏👋

Hey @ronsijm! 👋 Yes, they made some pretty big updates a couple months ago that aren't reflected in the video (it's impossible to keep up! 🤓 ). Here's a blog that describes them: aws.amazon.com/blogs/security/how-to-use-multiple-instances-of-aws-iam-identity-center/. I've got this video on my list to update, but in the meantime, the best I can suggest is the latest user guide: docs.aws.amazon.com/singlesignon/latest/userguide/get-set-up-for-idc.html

You bet! Thanks for watching! 🤓🌟🙏

I'll add this to my list! Thanks for the suggestion. 🙏🤓🌟

Hi @sheikhs121! 👋 I haven't used that particular setup myself, but maybe this will help? aws.amazon.com/blogs/security/how-to-enable-secure-seamless-single-sign-on-to-amazon-ec2-windows-instances-with-aws-sso/

Thanks for the nice comment, Charles! 🙏🤓 Glad it was helpful. To answer your question: AWS Organizations are used to manage policies at the account and service level, where Identity Center manages user access and identities. Essentially, Organizations is about resource and service management across multiple accounts, and Identity Center is about user access management. Hope that helps! 😊

I'm so glad it helped! I'll add Microsoft AD to my list. Thanks for watching! 🙏🤓🌟

Hi 12G! Thanks for watching! 🙏🤓 1. AWS recently released APIs to let you programmatically set things up, but I'm not aware of a way to do it with CloudFormation: stackoverflow.com/questions/74594889/is-it-possible-to-create-an-aws-iam-identity-center-f-k-a-aws-sso-instance-pr 2. Can you provide the time stamp you're referring to here? When setting up a user in the default identity source, there's no "type." But maybe I'm misunderstanding your question? 3. If you're using AD as the Identity Source, there are sync options to briacng your users over from AD, so you shouldn't need to create them manually like I did: docs.aws.amazon.com/singlesignon/latest/userguide/provision-users-groups-AD.html. Hope that helps! 😊

Thanks so much, Hugh! 🙏🌟😊 I've got a couple videos that might help: -Load balancing basics: kzbin.info/www/bejne/kHiqoXitic2bqK8 -Load balancing with multiple target groups (a little more advanced): kzbin.info/www/bejne/ZomwpKF3nK2LpdE -I cover Organizations a little bit here, but only as part of talking about IAM Identity Center: kzbin.info/www/bejne/lXzLo3p8i8SBptk Hope that helps get you started! I'll add Control Tower and Organizations to my list for future standalone videos. Thanks for the suggestion! 🤓

I currently hold my AWS Solutions architect certification. However, some stuff was never clear. @@TinyTechnicalTutorials

Glad you enjoyed it! Thanks for watching!! 🙏🌟🤓

Hey Frederik! 👋 Apologies for the SUPER slow response! If you're still looking for info on this, check out this StackOverflow discussion about this (search for the part that starts "AWS has a little bit hidden..."). stackoverflow.com/questions/73960189/assuming-roles-when-logged-in-via-iam-identity-center Hopefully that helps! 🤓🌟

Yes! The UI has changed since I created this video (it's impossible to keep up! 😅). For the latest, here's the official documentation: docs.aws.amazon.com/singlesignon/latest/userguide/tutorials.html

Glad you liked it! Thanks for watching! 🌟🤓🙏

Hi @wikidora! 👋 I *think* what you're describing is actually an IAM user, not a separate AWS account. Guessing you went to aws.amazon.com and created an account, logged in as root, then went to IAM and created another user? Then yes, you'd have a single account with two users (one for root and one for your everyday work). The Organization is made up of *accounts,* rather than IAM users. So if you went to aws.amazon.com and created a second account, then you should be able to invite that account to your organization. Here's a little bit more about how to do that if you need help: docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_accounts_invites.html Hope that helps! 🤓

@@TinyTechnicalTutorials thank you so much You clarified this for me. I understand now the concept :)

You bet! Thanks for watching! 🤓🌟🙏

Hey @monkeydvamshi! 👋 Are you trying to add an external identity provider, like Okta or Google or something? My video only covers using the built-in Identity Center directory. Here's a guide for the external provider that might help: docs.aws.amazon.com/singlesignon/latest/userguide/manage-your-identity-source-idp.html

You bet! Thanks for watching! 🙏🌟🤓

Hi Anantha! 👋 AWS Identity Center is separate from "regular" IAM. So if user John has an IAM user account (with Console access enabled), then he can log in to the Management Console at console.aws.amazon.com (with account ID, user name and password). But assuming he was also set up with Identity Center, he could also log in to the AWS Access Portal (with the URL taken from the Identity Center dashboard). If the IAM user isn't working on your end, it's possible that Console access wasn't enabled for the user. Were you ever able to log in before?

@@TinyTechnicalTutorials Thanks again.. Now I am clear. I thought initially Identity center user can login through the IAM user option, though I understood from the video initially that IAM and Identity center user are different. One more question - If so how can a identity user login into mobile aws app?

Oh, interesting! Yeah, this must have been a recent addition, that you can create "account instances" (that don't use an Organization). I haven't played with this yet. Maybe this will help get you started? docs.aws.amazon.com/singlesignon/latest/userguide/account-instances-identity-center.html

Oh wow! 😲 Didn't know about that issue. Thanks for posting about this!

Ooh, interesting! I hadn't seen that update. Thanks for the heads-up! 🤓🙏

A very belated thank you!! Really appreciate it! 🥰🙏🌟

Hi @MrCalvo1526! 😊 Just to clarify a couple things: -When you say you created an account...do you mean you created an IAM Identity Center user? -When you say "try to enter services"...do you mean that you've signed into the Access Portal and tried to go to a service (like S3, EC2, etc.)?

It's mean may be you don't complete your sign up process... (Like valid credit card payment information)

De nada! 😊

Thanks, Ike! 🙏🌟🤓 You're right..."regular" IAM and Identity Center are two separate systems. So if I have an "Amber" IAM user, and then an "amberawsidentity" user (set up in Identity Center), they are treated as separate users with separate permissions, and also separate login pages (one through console.aws.amazon.com and the other through the portal URL that you get in Identity Center). Some additional detail here: stackoverflow.com/questions/75733725/what-happens-to-existing-aws-iam-users-when-enable-iam-identity-center There doesn't seem to be a ton of guidance about using them together, but Amazon seems to be pushing us towards Identity Center generally. So if you have a bunch of IAM user accounts, it's probably best to set up Identity Center users for them, then tell them to use that login and stop using the IAM login (because you're right...managing permissions would be a nightmare with two users/sets of permissions). Hope that helps!

@@TinyTechnicalTutorials Thanks for the swift response! It seems I had a fundamental misunderstanding on how IAM Identity Center users/groups and permission sets were assigned to an account. While learning about IAM Identity Center and watching your video I somehow got the idea that permission sets were assigned to an AWS account outright and without any association to a specific user/group. This caused me to think that when an IAM Identity Center User was given access to an AWS account, they would be able to use whatever permission sets have been assigned to the account, which would be a huge security concern. After further research and following the steps in your video myself, I was able to notice that permission sets were only assigned to an AWS account when it was associated with specific users/groups, which means my original concern was null and void.

Glad it makes sense now! 😊

Just replied on another comment! 🤓

Hi Marko! 👋 I know there have been some changes to Identity Center and the UI since I made this video, but wondering if you chose the Single Account option when setting up? There's a thread here that might explain what's going on for you too: www.reddit.com/r/aws/comments/191jhkd/needhelp_i_have_enabled_the_iam_identity_center/

@@TinyTechnicalTutorials Hi, I think that was the case, and also I didn’t have organization created yet. So when I created an organization, I couldn’t access Identity Center, it showed a button to enable Identity Center, didn’t want to go to Dashboard and when I click that button it said that Identity Center already created. I needed to delete Identity Center from aws cli, then create it again and it worked. Hopefully this helps someone. Thank you for creating these videos, they were very helpful!

Thanks for the kind words, and for posting your solution! I'm sure this will help someone else. 🤓🔥

It's free. 😊

Thanks so much for watching! 🙏🌟🤓

Welcome to the channel, and thanks for watching!! 🙏🌟🤓 Yes, this basically replaces SSO.

No, from the U.S. 😊

Yay!!! I'm so glad it helped. Thanks for supporting the channel!! 🙏🌟🤓

Hi Daniel! 👋 Did you set up a new permission set and assign it to the new user? That should be around 05:13 in the video.

Wow, thank you! I'm going to print out this comment and frame it!!! 🥰😂 Thanks for taking the time to drop such a nice note...really appreciate the support! 🤓🙏

Completely agree with @valentingeorgiev3760's comments . Infact I was very sure somebody would have definitely commented on your soothing voice . Its amazing ..

Woohoo!!! Nice work! 💪😎👏