{"id":20496,"date":"2024-04-05T20:17:42","date_gmt":"2024-04-05T18:17:42","guid":{"rendered":"https:\/\/chochol.io\/smart-home\/authentik-single-sign-on-configuration-for-amazon-business\/"},"modified":"2025-08-23T19:56:20","modified_gmt":"2025-08-23T17:56:20","slug":"authentik-single-sign-on-configuration-for-amazon-business","status":"publish","type":"post","link":"https:\/\/chochol.io\/en\/software\/authentik-single-sign-on-configuration-for-amazon-business\/","title":{"rendered":"Authentik: Single Sign-On Configuration for Amazon Business"},"content":{"rendered":"\t\t<div data-elementor-type=\"wp-post\" data-elementor-id=\"20496\" class=\"elementor elementor-20496 elementor-1214\" data-elementor-post-type=\"post\">\n\t\t\t\t<div class=\"elementor-element elementor-element-e56beb9 e-flex e-con-boxed e-con e-parent\" data-id=\"e56beb9\" data-element_type=\"container\" data-e-type=\"container\">\n\t\t\t\t\t<div class=\"e-con-inner\">\n\t\t\t\t<div class=\"elementor-element elementor-element-94b3e43 elementor-toc--minimized-on-tablet elementor-widget elementor-widget-table-of-contents\" data-id=\"94b3e43\" data-element_type=\"widget\" data-e-type=\"widget\" data-settings=\"{&quot;exclude_headings_by_selector&quot;:[],&quot;no_headings_message&quot;:&quot;No headings were found on this page.&quot;,&quot;headings_by_tags&quot;:[&quot;h2&quot;,&quot;h3&quot;,&quot;h4&quot;,&quot;h5&quot;,&quot;h6&quot;],&quot;marker_view&quot;:&quot;numbers&quot;,&quot;minimize_box&quot;:&quot;yes&quot;,&quot;minimized_on&quot;:&quot;tablet&quot;,&quot;hierarchical_view&quot;:&quot;yes&quot;,&quot;min_height&quot;:{&quot;unit&quot;:&quot;px&quot;,&quot;size&quot;:&quot;&quot;,&quot;sizes&quot;:[]},&quot;min_height_tablet&quot;:{&quot;unit&quot;:&quot;px&quot;,&quot;size&quot;:&quot;&quot;,&quot;sizes&quot;:[]},&quot;min_height_mobile&quot;:{&quot;unit&quot;:&quot;px&quot;,&quot;size&quot;:&quot;&quot;,&quot;sizes&quot;:[]}}\" data-widget_type=\"table-of-contents.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<div class=\"elementor-toc__header\">\n\t\t\t\t\t\t<div class=\"elementor-toc__header-title\">\n\t\t\t\tTable of Contents\t\t\t<\/div>\n\t\t\t\t\t\t\t\t\t\t<div class=\"elementor-toc__toggle-button elementor-toc__toggle-button--expand\" role=\"button\" tabindex=\"0\" aria-controls=\"elementor-toc__94b3e43\" aria-expanded=\"true\" aria-label=\"Open table of contents\"><svg aria-hidden=\"true\" class=\"e-font-icon-svg e-fas-chevron-down\" viewBox=\"0 0 448 512\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\"><path d=\"M207.029 381.476L12.686 187.132c-9.373-9.373-9.373-24.569 0-33.941l22.667-22.667c9.357-9.357 24.522-9.375 33.901-.04L224 284.505l154.745-154.021c9.379-9.335 24.544-9.317 33.901.04l22.667 22.667c9.373 9.373 9.373 24.569 0 33.941L240.971 381.476c-9.373 9.372-24.569 9.372-33.942 0z\"><\/path><\/svg><\/div>\n\t\t\t\t<div class=\"elementor-toc__toggle-button elementor-toc__toggle-button--collapse\" role=\"button\" tabindex=\"0\" aria-controls=\"elementor-toc__94b3e43\" aria-expanded=\"true\" aria-label=\"Close table of contents\"><svg aria-hidden=\"true\" class=\"e-font-icon-svg e-fas-chevron-up\" viewBox=\"0 0 448 512\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\"><path d=\"M240.971 130.524l194.343 194.343c9.373 9.373 9.373 24.569 0 33.941l-22.667 22.667c-9.357 9.357-24.522 9.375-33.901.04L224 227.495 69.255 381.516c-9.379 9.335-24.544 9.317-33.901-.04l-22.667-22.667c-9.373-9.373-9.373-24.569 0-33.941L207.03 130.525c9.372-9.373 24.568-9.373 33.941-.001z\"><\/path><\/svg><\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<div id=\"elementor-toc__94b3e43\" class=\"elementor-toc__body\">\n\t\t\t<div class=\"elementor-toc__spinner-container\">\n\t\t\t\t<svg class=\"elementor-toc__spinner eicon-animation-spin e-font-icon-svg e-eicon-loading\" aria-hidden=\"true\" viewBox=\"0 0 1000 1000\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\"><path d=\"M500 975V858C696 858 858 696 858 500S696 142 500 142 142 304 142 500H25C25 237 238 25 500 25S975 237 975 500 763 975 500 975Z\"><\/path><\/svg>\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-ab927be elementor-widget elementor-widget-text-editor\" data-id=\"ab927be\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<h2>Hello!<\/h2><p>Today I&#8217;ll walk you through the steps of setting up a single sign-on (SSO) service between Amazon Business and Authentik.<\/p><h2>Introduction<\/h2><h3>What is Amazon Business?<\/h3><p><img fetchpriority=\"high\" decoding=\"async\" class=\"alignleft\" src=\"https:\/\/static-assets.business.amazon.com\/assets\/global\/images\/social\/homepage-social-graphic2.jpg.transform\/1450x664\/image.jpg\" alt=\"Procurement &amp; Wholesale Buying Solutions | Amazon Business\" width=\"416\" height=\"215\" \/><strong>Amazon Business<\/strong> is a business-to-business (B2B) platform created by Amazon that allows companies and organizations to purchase products and services in bulk quantities and prices. This platform is designed for companies, organizations and institutions, not for individual customers. It offers special wholesale pricing, reporting, purchase management and other features useful to businesses, providing access to millions of products from various categories.<\/p><p>Amazon Business allows central management of orders, purchasing policies and payments, and offers analytical tools and reports on spending and order management. It also allows integration with ERP systems and other tools used in companies.<\/p><h3>What is Authentik?<\/h3><p><img decoding=\"async\" class=\"alignleft wp-image-518\" src=\"https:\/\/chochol.io\/wp-content\/uploads\/2023\/12\/authentik-orange-icon-2048x1567-suu0o0ov-300x230.png\" sizes=\"(max-width: 150px) 100vw, 150px\" srcset=\"https:\/\/chochol.io\/wp-content\/uploads\/2023\/12\/authentik-orange-icon-2048x1567-suu0o0ov-300x230.png 300w, https:\/\/chochol.io\/wp-content\/uploads\/2023\/12\/authentik-orange-icon-2048x1567-suu0o0ov-1024x784.png 1024w, https:\/\/chochol.io\/wp-content\/uploads\/2023\/12\/authentik-orange-icon-2048x1567-suu0o0ov-768x588.png 768w, https:\/\/chochol.io\/wp-content\/uploads\/2023\/12\/authentik-orange-icon-2048x1567-suu0o0ov-1536x1175.png 1536w, https:\/\/chochol.io\/wp-content\/uploads\/2023\/12\/authentik-orange-icon-2048x1567-suu0o0ov-330x250.png 330w, https:\/\/chochol.io\/wp-content\/uploads\/2023\/12\/authentik-orange-icon-2048x1567-suu0o0ov.png 2048w\" alt=\"\" width=\"240\" height=\"184\"><strong>Authentik<\/strong> is an open source software that serves as an Identity Provider to manage user authentication and authorization. As an alternative to commercial services such as Okta or One Login, Authentik offers similar functionality in an open-source model. Other open-source tools with a similar purpose include Keycloak and Authelia, which also allow central management of user identities in applications and web services.<\/p><p>It stands out for its configuration flexibility and broad support for various authentication protocols, making it an excellent choice for organizations looking for an advanced but accessible open-source identity management solution.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-ca65495 elementor-alert-info elementor-widget elementor-widget-alert\" data-id=\"ca65495\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"alert.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"elementor-alert\" role=\"alert\">\n\n\t\t\t\t\t\t<span class=\"elementor-alert-title\">Information<\/span>\n\t\t\t\n\t\t\t\t\t\t<span class=\"elementor-alert-description\">The following guide was developed using versions: Authentik 2024.2 and Amazon.de (B2B).<\/span>\n\t\t\t\n\t\t\t\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-5ba6cbe elementor-widget elementor-widget-text-editor\" data-id=\"5ba6cbe\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<h2>Preparation<\/h2><p>For the purpose of preparing the guide, let&#8217;s start with the domain names and identifiers described below. Keep in mind, however, that during the setup process you should adjust the settings according to your needs.<\/p><ul><li>Full domain name (FQDN) Authentik: <strong>https:\/\/auth.xyz.com<\/strong>,<\/li><li>Registered business account on Amazon&#8217;s business platform,<\/li><li>An administrator account on the Amazon Business shopping platform.<\/li><\/ul><p>With these assumed values, we can move on to the actual part of the guide. Of course, if necessary, these values should be changed to suit your configuration.<\/p><h3>What is the purpose of using Single Sign-On for Amazon Business?<\/h3><p class=\"whitespace-pre-wrap break-words\">The main goal of the Single Sign-On (SSO) implementation between Amazon Business and the identity provider is to <strong>provide smooth and centralized authentication integration<\/strong>.<\/p><p class=\"whitespace-pre-wrap break-words\"><a class=\"jlTjKd\" tabindex=\"0\" role=\"link\" href=\"https:\/\/www.google.com\/url?sa=i&amp;url=https%3A%2F%2Fbookstack.soffid.com%2Fbooks%2Ffederation%2Fpage%2Fsaml-security-assertion-markup-language&amp;psig=AOvVaw3PJsABLzYVbXmH_nPgIg6a&amp;ust=1712419303407000&amp;source=images&amp;cd=vfe&amp;opi=89978449&amp;ved=0CBIQjRxqFwoTCPi745S5q4UDFQAAAAAdAAAAABAE\" target=\"_blank\" rel=\"noopener\" data-ved=\"0CBIQjRxqFwoTCPi745S5q4UDFQAAAAAdAAAAABAE\" aria-label=\"Otw\u00f3rz stron\u0119 Documentation library - Soffid\"><img decoding=\"async\" class=\"sFlh5c pT0Scc iPVvYb alignleft\" src=\"https:\/\/bookstack.soffid.com\/uploads\/images\/gallery\/2021-09\/0dNsaml-logo.png\" alt=\"SAML (Security Asserti... | Documentation library\" width=\"300\" height=\"187\" aria-hidden=\"false\" \/><\/a>Amazon Business uses the standard <a href=\"https:\/\/pl.wikipedia.org\/wiki\/Security_Assertion_Markup_Language\" target=\"_blank\" rel=\"noopener\">Security Assertion Markup Language (SAML) 2.0<\/a> protocol, which means an SSO deployment can be easily integrated with any large identity provider that supports SAML. Amazon Business supports provider-initiated SAML with identity providers such as Okta, OneLogin, AWS SSO and Azure AD.<\/p><p class=\"whitespace-pre-wrap break-words\">This allows organizations to use SSO to allow users to log into Amazon Business using the same credentials they use for other corporate applications. This approach brings the benefits of increased convenience, security and administrative efficiency.<\/p><h3>What are the benefits of integrating identity providers with Amazon Business?<\/h3><p class=\"whitespace-pre-wrap break-words\">The use of Single Sign-On (SSO) between Amazon Business and various identity providers such as Authentik, Okta, OneLogin and Azure AD brings many benefits:<\/p><ol class=\"list-decimal pl-8 space-y-2 -mt-1\"><li class=\"whitespace-normal break-words\"><strong>Universality and flexibility<\/strong> &#8211; No matter what identity provider an organization uses, SSO allows users to seamlessly log in to Amazon Business using the same credentials.<\/li><li class=\"whitespace-normal break-words\"><strong>Centralized identity management<\/strong> &#8211; By integrating with an identity provider, the processes of creating, modifying and deactivating user accounts in Amazon Business can be automated and synchronized.<\/li><li class=\"whitespace-normal break-words\"><strong>Improved visibility and control<\/strong> &#8211; IDaaS (Identity as a Service) solutions, such as Okta and Azure AD, provide comprehensive reporting and analysis of access to Amazon Business, which improves security and compliance.<\/li><li class=\"whitespace-normal break-words\"><strong>Unified work environment<\/strong> &#8211; Users can freely switch between Amazon Business and other corporate applications without having to log in again, increasing productivity and satisfaction.<\/li><li class=\"whitespace-normal break-words\"><strong>Better data protection<\/strong> &#8211; Identity providers offer advanced authentication mechanisms, such as two-step verification, which further secures access to Amazon Business.<\/li><\/ol><p class=\"whitespace-pre-wrap break-words\">Regardless of the identity provider chosen, implementing SSO between it and Amazon Business benefits the organization with greater convenience, security and efficiency in managing access to critical business systems.<\/p><h3>What is SAML?<\/h3><p>SAML (Security Assertion Markup Language) is an open federated standard that allows identity providers (IdPs) to authenticate users and then pass authentication tokens to other applications, known as service providers (SP). SAML allows service providers to operate without performing their own authentication and identity transfer, integrating internal and external users. It also allows security credentials to be shared with a service provider on the network, usually within an application or service.<\/p><p>With SAML, secure, cross-domain communication is possible between the public cloud and other SAML-enabled systems, as well as a select number of other identity management systems that may reside on-premises or in another cloud. The protocol allows single sign-on (SSO) users in any two SAML-enabled applications to perform a range of security functions on behalf of one or more applications.<\/p><p>In a technical context, SAML refers to a variant of the XML language used to encode this information, and can include various protocol messages and profiles that are an integral part of the standard.<\/p><h2>Step 1 &#8211; Configuration in Amazon Business<\/h2><h4>Log in<\/h4><ul><li class=\"whitespace-normal break-words\">First, log in to your Amazon Business account.<\/li><\/ul>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-4316e7b elementor-widget elementor-widget-image\" data-id=\"4316e7b\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"image.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<a href=\"https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.07.29.png\" data-elementor-open-lightbox=\"yes\" data-elementor-lightbox-title=\"Amazon Business- home page\" data-e-action-hash=\"#elementor-action%3Aaction%3Dlightbox%26settings%3DeyJpZCI6MjA0NDMsInVybCI6Imh0dHBzOlwvXC9jaG9jaG9sLmlvXC93cC1jb250ZW50XC91cGxvYWRzXC8yMDI0XC8wNFwvU2NyZWVuc2hvdC0yMDI0LTA0LTA0LWF0LTIwLjA3LjI5LnBuZyJ9\">\n\t\t\t\t\t\t\t<img loading=\"lazy\" decoding=\"async\" width=\"768\" height=\"451\" src=\"https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.07.29-768x451.png\" class=\"attachment-medium_large size-medium_large wp-image-20443\" alt=\"Amazon Business homepage screenshot with search bar, navigation menu, and featured deals tiles\" srcset=\"https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.07.29-768x451.png 768w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.07.29-300x176.png 300w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.07.29-1024x601.png 1024w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.07.29-1536x902.png 1536w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.07.29-2048x1203.png 2048w\" sizes=\"(max-width: 768px) 100vw, 768px\" \/>\t\t\t\t\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-48f8e67 elementor-widget elementor-widget-text-editor\" data-id=\"48f8e67\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<ul>\n<li>Go to the <strong>quick settings menu and account details<\/strong>.<\/li>\n<\/ul>\n\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-f5ef858 elementor-widget elementor-widget-image\" data-id=\"f5ef858\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"image.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<img loading=\"lazy\" decoding=\"async\" width=\"768\" height=\"451\" src=\"https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.07.34-768x451.png\" class=\"attachment-medium_large size-medium_large wp-image-20445\" alt=\"Amazon Business product search page with order management sidebar and account details panel open\" srcset=\"https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.07.34-768x451.png 768w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.07.34-300x176.png 300w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.07.34-1024x601.png 1024w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.07.34-1536x902.png 1536w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.07.34-2048x1203.png 2048w\" sizes=\"(max-width: 768px) 100vw, 768px\" \/>\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-1b131ca elementor-widget elementor-widget-text-editor\" data-id=\"1b131ca\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<ul><li>From the Manage Your Business section, select <strong>System Integrations<\/strong>. Click on this link.<\/li><\/ul><p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-20446 size-medium\" src=\"https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.07.43-300x250.png\" alt=\"Amazon Business, System integrations\" width=\"300\" height=\"250\" srcset=\"https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.07.43-300x250.png 300w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.07.43.png 476w\" sizes=\"(max-width: 300px) 100vw, 300px\" \/><\/p><ul><li>From the System integrations category, select single sign-on (SSO) management. Click on <strong>Manage<\/strong> to open the SSO settings.<\/li><\/ul><p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-20448\" src=\"https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.31.23.png\" alt=\"Amazon Business, System integrations menu\" width=\"650\" height=\"443\" srcset=\"https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.31.23.png 1476w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.31.23-300x204.png 300w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.31.23-768x523.png 768w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.31.23-1024x698.png 1024w\" sizes=\"(max-width: 650px) 100vw, 650px\" \/><\/p><h3>SSO configuration<\/h3><ul><li>From the list of suggested identity providers, select <strong>Other<\/strong><\/li><li>Complete the following values:<ul><li>Enter your identity provider (IdP): <strong>np. authentik<\/strong><\/li><li>Encrypted SAML assertions: <strong>Off<\/strong><\/li><\/ul><\/li><\/ul><p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-20450\" src=\"https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-05-at-16.05.00.png\" alt=\"Amazon Business, SSO Identity Provider\" width=\"650\" height=\"374\" srcset=\"https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-05-at-16.05.00.png 1232w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-05-at-16.05.00-300x172.png 300w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-05-at-16.05.00-768x441.png 768w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-05-at-16.05.00-1024x588.png 1024w\" sizes=\"(max-width: 650px) 100vw, 650px\" \/><\/p><ul><li>Click <strong>Submit<\/strong> to proceed.<\/li><\/ul><h3>New user account defaults<\/h3><ul><li>Select a default group and a default purchasing role.<ul><li>Default group: <strong>Select the group to which new users should be added by SSO<\/strong>. New employees can start shopping immediately, as their accounts will be automatically created the first time they log in.<\/li><li>Default buying role: set the default role for new users: Punchout (PPI) or Requestioner (Direct Buy). If you are using a procurement system and want your users to follow the order flow by default, choose Punchout. Otherwise, select <strong>Requestioner<\/strong> to enable employees to shop directly through the Amazon Business website.<\/li><\/ul><\/li><\/ul><p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-20456\" src=\"https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.32.39.png\" alt=\"Amazon Business, SSO Identity Provider New user account defaults\" width=\"650\" height=\"284\" srcset=\"https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.32.39.png 1412w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.32.39-300x131.png 300w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.32.39-768x336.png 768w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.32.39-1024x448.png 1024w\" sizes=\"(max-width: 650px) 100vw, 650px\" \/><\/p><ul><li>Proceed further.<\/li><\/ul><h3>Upload your metadata file<\/h3><ul><li>Click <strong>Add manually<\/strong> to fill in the configuration values manually.<\/li><\/ul><p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-20452\" src=\"https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.33.50.png\" alt=\"Amazon Business, SSO Identity Provider configuration\" width=\"650\" height=\"332\" srcset=\"https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.33.50.png 1276w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.33.50-300x153.png 300w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.33.50-768x392.png 768w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.33.50-1024x523.png 1024w\" sizes=\"(max-width: 650px) 100vw, 650px\" \/><\/p><h3>Connection data<\/h3><ul><li>Enter the following values:<ul><li>EntityID: <strong>https:\/\/auth.xyz.com<\/strong><ul><li>A globally unique URL provided by the identity provider.<\/li><\/ul><\/li><li>IssuerUrl: <strong>https:\/\/auth.xyz.com<\/strong><ul><li>A URL that uniquely identifies the SAML identity provider.<\/li><\/ul><\/li><li>HTTP-Redirect: <strong>https:\/\/auth.xyz.com\/application\/saml\/amazon\/sso\/binding\/redirect\/<\/strong><ul><li>Determines how the browser redirects the user to the IDP for authentication.<\/li><li>If you use a different provider name in Authentik, the link should look like this: https:\/\/auth.xyz.com\/application\/saml\/[FILLTHERE]\/sso\/binding\/redirect\/<\/li><\/ul><\/li><li>HTTP-Post: <strong>https:\/\/auth.xyz.com\/application\/saml\/amazon\/sso\/binding\/post\/<\/strong><ul><li>If you use a different provider name in Authentik, the link should look like this: https:\/\/auth.xyz.com\/application\/saml\/[FILLTHERE]\/sso\/binding\/post\/<\/li><\/ul><\/li><li>Signing Certificate Public Key: <strong>Enter the public certificate generated by your SSO Authentik<\/strong>.<ul><li class=\"whitespace-normal break-words\">This makes it possible to verify signatures and establish trust in the messages exchanged. Make sure you have correctly entered the complete contents of the certificate.<ul><li>The public key is located: <strong>Admin Interface -&gt; System -&gt; Certificates -&gt; authentik Self-signed Certificate -&gt; Download Certificate<\/strong>,<\/li><li><strong>Download<\/strong> <strong>file<\/strong>,<\/li><li><strong>Open with notepad<\/strong> or other simple text editor,<\/li><li><strong>Copy the entire contents of the file<\/strong>,<\/li><li>Paste in place of <strong>Signing Certificate Public Key<\/strong>.<\/li><\/ul><\/li><\/ul><\/li><\/ul><\/li><\/ul><p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-20454\" src=\"https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-05-at-00.20.21.png\" alt=\"Amazon Business, SSO Identity Provider connection data\" width=\"650\" height=\"689\" srcset=\"https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-05-at-00.20.21.png 1292w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-05-at-00.20.21-283x300.png 283w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-05-at-00.20.21-768x814.png 768w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-05-at-00.20.21-966x1024.png 966w\" sizes=\"(max-width: 650px) 100vw, 650px\" \/><\/p><ul><li>Click <strong>Save<\/strong> to move on.<\/li><\/ul><h3>Attribute statement<\/h3><ul><li>We will need to provide user attributes that will be passed as part of the SAML response. At this stage, click <strong>Skip<\/strong>.<\/li><li>Attribute mapping &#8211; fill in:<ul><li>E-mail: <strong>http:\/\/schemas.xmlsoap.org\/ws\/2005\/05\/identity\/claims\/emailaddress<\/strong><\/li><li>Select Full Name from the menu: <strong>http:\/\/schemas.microsoft.com\/identity\/claims\/displayname<\/strong><\/li><\/ul><\/li><\/ul><p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-20458\" src=\"https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.39.13.png\" alt=\"Amazon Business, SSO Identity Provider Attribute mapping\" width=\"650\" height=\"656\" srcset=\"https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.39.13.png 1236w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.39.13-150x150.png 150w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.39.13-297x300.png 297w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.39.13-768x775.png 768w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.39.13-1014x1024.png 1014w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.39.13-60x60.png 60w\" sizes=\"(max-width: 650px) 100vw, 650px\" \/><\/p><ul><li>Make sure the above attributes are mapped correctly. This will transfer the necessary user information from the identity provider to Amazon Business during single sign-on (SSO).<\/li><li>Click <strong>Next<\/strong> to move on.<\/li><\/ul><h3>Amazon connection data<\/h3><ul><li class=\"whitespace-normal break-words\"><strong>Download the Metadata XML file<\/strong>. This file will be necessary to configure the provider in Authentik.<\/li><\/ul><p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-20460\" src=\"https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.39.20.png\" alt=\"Amazon Business, SSO Identity Provider Amazon connection data\" width=\"650\" height=\"722\" srcset=\"https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.39.20.png 1242w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.39.20-270x300.png 270w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.39.20-768x853.png 768w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.39.20-922x1024.png 922w\" sizes=\"(max-width: 650px) 100vw, 650px\" \/><\/p><ul><li>Check the confirmation of your identity provider and click <strong>Continue<\/strong>.<\/li><\/ul>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-9812680 elementor-widget elementor-widget-text-editor\" data-id=\"9812680\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<h2>Step 2 &#8211; Configuration in Authentik<\/h2><ul><li class=\"whitespace-normal break-words\">First, <strong>log in to your account<\/strong> and go to the Authentik administrative interface.<\/li><li>After successfully logging in, go to the <strong>Applications<\/strong> tab on the left side of the screen and then select <strong>Providers<\/strong>.<\/li><\/ul><p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter\" src=\"data:image\/png;base64,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\" alt=\"Authentik\" width=\"290\" height=\"170\" \/><\/p><ul><li>Click <strong>Create<\/strong> and select the type of <strong>SAML Provider from Metadata<\/strong>. The next step will be to click <strong>Next<\/strong> to proceed.<\/li><\/ul><p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-20465\" src=\"https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.40.05.png\" alt=\"Authentik, New provider\" width=\"650\" height=\"443\" srcset=\"https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.40.05.png 2192w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.40.05-300x204.png 300w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.40.05-768x523.png 768w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.40.05-1024x698.png 1024w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.40.05-1536x1047.png 1536w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.40.05-2048x1396.png 2048w\" sizes=\"(max-width: 650px) 100vw, 650px\" \/><\/p><ul><li>Complete the parameters:<ul><li>Name: <strong>amazon<\/strong><\/li><li>Authorization flow: <strong>choose your configured<\/strong> or set <strong>explicit<\/strong> or <strong>implicit<\/strong> consent. (<em>This setting refers to the function used during authorization for this application &#8211; we define whether Authentik should display a button that allows you to go to the application after logging in, or simply redirect you without asking)<\/em>.<\/li><li>Metadata: <strong>Upload the metadata file in XML format<\/strong>, previously downloaded from the Amazon Business website when setting up SSO.<\/li><\/ul><\/li><\/ul><p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-20467\" src=\"https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.40.22.png\" alt=\"Authentik, New provider Amazon SAML\" width=\"650\" height=\"172\" srcset=\"https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.40.22.png 1718w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.40.22-300x79.png 300w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.40.22-768x203.png 768w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.40.22-1024x271.png 1024w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.40.22-1536x406.png 1536w\" sizes=\"(max-width: 650px) 100vw, 650px\" \/><\/p><ul><li>Save with the <strong>Finish<\/strong> button and wait for the configuration to be pulled from the file.<\/li><li>On the main screen of the provider list, you will see the SAML Provider you just created for Amazon.<\/li><\/ul><p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-20469 size-large\" src=\"https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.40.35-1024x67.png\" alt=\"Authentik, Providers Amazon SAML\" width=\"1024\" height=\"67\" srcset=\"https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.40.35-1024x67.png 1024w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.40.35-300x20.png 300w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.40.35-768x50.png 768w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.40.35-1536x100.png 1536w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.40.35-2048x134.png 2048w\" sizes=\"(max-width: 1024px) 100vw, 1024px\" \/><\/p><ul><li>We still need to hook the Authentik certificate to this provider. <strong>Go back to the SAML Provider configuration for Amazon<\/strong>.<\/li><\/ul><p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-20471\" src=\"https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-05-at-00.19.26.png\" alt=\"Authentik, Update SAML Provider\" width=\"650\" height=\"471\" srcset=\"https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-05-at-00.19.26.png 2198w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-05-at-00.19.26-300x217.png 300w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-05-at-00.19.26-768x556.png 768w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-05-at-00.19.26-1024x742.png 1024w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-05-at-00.19.26-1536x1113.png 1536w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-05-at-00.19.26-2048x1483.png 2048w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-05-at-00.19.26-110x80.png 110w\" sizes=\"(max-width: 650px) 100vw, 650px\" \/><\/p><ul><li>Go below to the <strong>Advanced protocol settings<\/strong> section.<\/li><li>Signing Certificate: <strong>Select the default certificate from Authentik<\/strong> or another one you configured earlier (instead of the default one).<\/li><\/ul><p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-20473\" src=\"https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-05-at-00.19.33.png\" alt=\"Authentik, Update SAML Provider Advanced protocol settings\" width=\"650\" height=\"367\" srcset=\"https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-05-at-00.19.33.png 2190w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-05-at-00.19.33-300x169.png 300w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-05-at-00.19.33-768x433.png 768w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-05-at-00.19.33-1024x578.png 1024w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-05-at-00.19.33-1536x867.png 1536w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-05-at-00.19.33-2048x1156.png 2048w\" sizes=\"(max-width: 650px) 100vw, 650px\" \/><\/p><ul><li><strong>Save your settings<\/strong>. We will now move on to creating applications in Authentik.<\/li><li>On the left side of the screen, select <strong>Applications<\/strong> and then <strong>Applications<\/strong> again.<\/li><li>Kliknij <strong>Create<\/strong> and fill the application with the following values:<ul><li>Name: <strong>Amazon.de<\/strong><\/li><li>Slug: <strong>amazon<\/strong><\/li><li>Provider:<b> amazon<\/b><\/li><li><strong>UI Settings<\/strong> you may or may not want to complete.<ul><li>Icon: <strong>download the Amazon icon<\/strong> from the Internet and upload it.<\/li><li>Publisher: i.e. <strong>Amazon Inc.<\/strong><\/li><li>Description: example <strong>My company&#8217;s shopping center on Amazon Business<\/strong><\/li><\/ul><\/li><\/ul><\/li><li>Finally, confirm the creation of the application with the <strong>Create<\/strong> button.<\/li><\/ul><p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-20475 size-medium\" src=\"https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.43.27-292x300.png\" alt=\"Authentik, My applications Amazon\" width=\"292\" height=\"300\" srcset=\"https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.43.27-292x300.png 292w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.43.27.png 598w\" sizes=\"(max-width: 292px) 100vw, 292px\" \/><\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-a0beb37 elementor-widget elementor-widget-text-editor\" data-id=\"a0beb37\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<h2>Step 3 &#8211; Check the configuration in Amazon Business<\/h2><h3>Testing the connection<\/h3><ul><li>To test the performance of our configuration with the identity provider, <strong>click the button to start testing<\/strong>. A new browser tab will open, which will redirect you to IdP for authentication. In Authentik, log in as a user who has access to the Amazon Business application. If you are already authenticated, Amazon will attempt to profile you using SSO to Amazon Business. After successful authentication, you will be able to go to the Amazon.de website.<\/li><\/ul><p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-20477\" src=\"https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.41.14.png\" alt=\"Amazon Business, Test SSO Connection\" width=\"650\" height=\"279\" srcset=\"https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.41.14.png 1230w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.41.14-300x129.png 300w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.41.14-768x330.png 768w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.41.14-1024x440.png 1024w\" sizes=\"(max-width: 650px) 100vw, 650px\" \/><\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-4ba493f elementor-alert-warning elementor-widget elementor-widget-alert\" data-id=\"4ba493f\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"alert.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"elementor-alert\" role=\"alert\">\n\n\t\t\t\t\t\t<span class=\"elementor-alert-title\">Pay attention<\/span>\n\t\t\t\n\t\t\t\t\t\t<span class=\"elementor-alert-description\">If your network uses a Pi Hole or AdGuardHome-based DNS server, it's worth checking that connections to Amazon's servers are not blocked by any filtering lists. I myself spent an hour diagnosing problems with testing the SSO connection between Authentik and Amazon before the thought of checking the DNS server finally occurred to me. Only then did I realize that this could have been the cause of the problems.<\/span>\n\t\t\t\n\t\t\t\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-b022081 elementor-widget elementor-widget-text-editor\" data-id=\"b022081\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<ul><li>If the test is successful, you will then see a summary of this in a message on Amazon&#8217;s website.<\/li><\/ul><p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-20479\" src=\"https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.41.29.png\" alt=\"Amazon Business, Success configuration SSO\" width=\"650\" height=\"361\" srcset=\"https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.41.29.png 1248w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.41.29-300x167.png 300w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.41.29-768x427.png 768w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.41.29-1024x569.png 1024w\" sizes=\"(max-width: 650px) 100vw, 650px\" \/><\/p><ul><li>Check the box confirming the completion of all tests. The first time someone logs into Amazon Business using SSO, they will automatically receive an Amazon Business account.<\/li><\/ul><h3>Activation of communication with identity provider<\/h3><ul><li>Confirm the configuration check and accept the start of the connection on the so-called production to activate communication with the identity provider.<\/li><\/ul><p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-20481\" src=\"https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.41.48.png\" alt=\"Amazon Business, Are you ready to switch to active SSO\" width=\"600\" height=\"705\" srcset=\"https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.41.48.png 1256w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.41.48-255x300.png 255w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.41.48-768x903.png 768w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.41.48-871x1024.png 871w\" sizes=\"(max-width: 600px) 100vw, 600px\" \/><\/p><ul><li>Check the confirmation to test the settings and click <strong>Switch to active<\/strong>.<\/li><\/ul><h3>Confirming SSO settings in Amazon Business<\/h3>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-c6b5711 elementor-widget elementor-widget-image\" data-id=\"c6b5711\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"image.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<a href=\"https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.42.17.png\" data-elementor-open-lightbox=\"yes\" data-elementor-lightbox-title=\"Amazon Business, SSO Connection Details\" data-e-action-hash=\"#elementor-action%3Aaction%3Dlightbox%26settings%3DeyJpZCI6MjA0ODQsInVybCI6Imh0dHBzOlwvXC9jaG9jaG9sLmlvXC93cC1jb250ZW50XC91cGxvYWRzXC8yMDI0XC8wNFwvU2NyZWVuc2hvdC0yMDI0LTA0LTA0LWF0LTIwLjQyLjE3LnBuZyJ9\">\n\t\t\t\t\t\t\t<img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"601\" src=\"https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.42.17-1024x601.png\" class=\"attachment-large size-large wp-image-20484\" alt=\"Amazon SSO Connection Details page with certificate info, status Active, and SP\/IDP initiated URLs fields\" srcset=\"https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.42.17-1024x601.png 1024w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.42.17-300x176.png 300w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.42.17-768x451.png 768w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.42.17-1536x902.png 1536w, https:\/\/chochol.io\/wp-content\/uploads\/2024\/04\/Screenshot-2024-04-04-at-20.42.17-2048x1203.png 2048w\" sizes=\"(max-width: 1024px) 100vw, 1024px\" \/>\t\t\t\t\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t<div class=\"elementor-element elementor-element-e117b61 e-flex e-con-boxed e-con e-parent\" data-id=\"e117b61\" data-element_type=\"container\" data-e-type=\"container\">\n\t\t\t\t\t<div class=\"e-con-inner\">\n\t\t\t\t<div class=\"elementor-element elementor-element-30b224f elementor-widget elementor-widget-text-editor\" data-id=\"30b224f\" data-element_type=\"widget\" data-e-type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t<ul><li>Done.<\/li><\/ul><p>If you have additional questions about the setup, <strong>go ahead and leave a comment under this article<\/strong> or <strong>contact me directly<\/strong>. I will be happy to answer any concerns and help solve any problems. Your questions can help improve this guide for other users.<\/p><h2>Additional Sources and information<\/h2><p>For further exploration and more information, I recommend checking out the links below. They are valuable sources that were used in the development of this guide:<\/p><ul><li>What is SAML, Oracle &#8211; <a href=\"https:\/\/www.oracle.com\/pl\/security\/cloud-security\/what-is-saml\/\" target=\"_blank\" rel=\"noopener\">https:\/\/www.oracle.com\/pl\/security\/cloud-security\/what-is-saml\/<\/a><\/li><li>SAML Provider, Authentik &#8211; <a href=\"https:\/\/docs.goauthentik.io\/docs\/providers\/saml\/\" target=\"_blank\" rel=\"noopener\">https:\/\/docs.goauthentik.io\/docs\/providers\/saml\/<\/a><\/li><li>Single Sign-On, Amazon &#8211; <a href=\"https:\/\/www.amazon.de\/ab\/sso\/info?ref_=b2b_sso_self_service_incoming_abmanagement\" target=\"_blank\" rel=\"noopener\">https:\/\/www.amazon.de\/ab\/sso\/info?ref_=b2b_sso_self_service_incoming_abmanagement<\/a><\/li><li>Setup guide SSO, Amazon &#8211; <a href=\"https:\/\/business.amazon.com\/assets\/global\/documents\/guides\/amazon-business-sso-integration-guide.pdf\" target=\"_blank\" rel=\"noopener\" download=\"\">https:\/\/business.amazon.com\/assets\/global\/documents\/guides\/amazon-business-sso-integration-guide.pdf<\/a><\/li><\/ul><h2>Read also<\/h2><ul><li><a href=\"https:\/\/chochol.io\/en\/computer-networking\/nginx-proxy-cloudflare-how-to-restore-a-real-ip-address\/\">Nginx Proxy &amp; Cloudflare: How to restore real IP address<\/a> \/ Learn how to restore the display of users&#8217; real IP addresses in server logs using Nginx Proxy Manager and Cloudflare as reverse proxy.<\/li><li><a href=\"https:\/\/chochol.io\/en\/hardware\/tvheadend-satip-decoder-installation-and-configuration\/\">TVHeadend: Installing and configuring SAT&gt;IP decoder<\/a> \/ Telestar Digibit Twin: Discover in today&#8217;s blog post the step-by-step configuration of SAT&gt;IP with TVHeadend in Docker Compose.<\/li><li><a href=\"https:\/\/chochol.io\/en\/smart-home\/home-assistant-esphome-to-control-a-housing-estate-gate\/\">Home Assistant: ESPHome and estate barrier control<\/a> \/ Learn how to integrate and control a residential barrier or entrance gate remotely using ESPHome and the Home Assistant platform.<\/li><li><a href=\"https:\/\/chochol.io\/en\/computer-networking\/how-to-configure-a-leox-gpon-ont-module-on-a-mikrotik-router\/\">How to configure Leox GPON ONT insert on Mikrotik router<\/a> \/ Step-by-step guide on how to configure Leox LXT-010S-H GPON ONT insert on Mikrotik RB5009 router, instead of ONT module from Orange.<\/li><li><a href=\"https:\/\/chochol.io\/en\/computer-networking\/unifi-network-application-remote-adoption-of-an-access-point\/\">UniFi Network Application: Connecting an Access Point from another network<\/a> \/ Discover how to connect a device from Ubiquiti UniFi from another network to Network Application &#8211; using Mikrotik&#8217;s IPSec tunnel as an example.<\/li><li><a href=\"https:\/\/chochol.io\/en\/computer-networking\/unifi-controller-in-docker-migrating-to-unifi-network-application\/\">UniFi Controller in Docker: Migrating to UniFi Network Application<\/a> \/ UniFi Controller: Discover step-by-step how to successfully migrate to Network Application using Docker Compose.<\/li><li><a href=\"https:\/\/chochol.io\/en\/hardware\/ads-b-receiver-installation-and-configuration-on-raspberry-pi\/\">ADS-B: Receiver Installation and Configuration on Raspberry Pi<\/a> \/ Discover the secrets of installing and configuring your own ADS-B antenna on Raspberry Pi. Develop skills and track aircraft in real time.<\/li><li><a href=\"https:\/\/chochol.io\/en\/software\/traccar-docker-installation-guide-on-synology\/\">Traccar: A guide to installing on Synology with Docker<\/a> \/ Step-by-step guide: Installing Traccar on Synology using Docker. Effective vehicle tracking on your own server.<\/li><\/ul>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t","protected":false},"excerpt":{"rendered":"<p>Learn how to set up Single Sign-On between Authentik, and Amazon Business to provide login for your users.<\/p>\n","protected":false},"author":1,"featured_media":20439,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[96],"tags":[100],"class_list":["post-20496","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-software","tag-authentik"],"_links":{"self":[{"href":"https:\/\/chochol.io\/en\/wp-json\/wp\/v2\/posts\/20496","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/chochol.io\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/chochol.io\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/chochol.io\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/chochol.io\/en\/wp-json\/wp\/v2\/comments?post=20496"}],"version-history":[{"count":0,"href":"https:\/\/chochol.io\/en\/wp-json\/wp\/v2\/posts\/20496\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/chochol.io\/en\/wp-json\/wp\/v2\/media\/20439"}],"wp:attachment":[{"href":"https:\/\/chochol.io\/en\/wp-json\/wp\/v2\/media?parent=20496"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/chochol.io\/en\/wp-json\/wp\/v2\/categories?post=20496"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/chochol.io\/en\/wp-json\/wp\/v2\/tags?post=20496"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}