Configure single sign-on using Amazon Web Services

Before you begin, make sure you have an Admin account (Viewer or Contributor) and access to the Amazon Web Services (AWS) single sign-on (SSO) console with permissions to manage applications.

Step 1: Configure SAML 2.0 for Abstract in AWS

  1. Add the Abstract application from the AWS SSO application catalog.
  2. Upon adding the Abstract app, AWS generates integration instructions unique for each customer, which includes the Metadata URL and Entity ID for that customer.
  3. Locate and record your Metadata URL and Entity ID.

Step 2: Set up SAML single sign-on in Abstract

  1. Open the Abstract app (desktop or web).
  2. In the left side pane, click on the organization name.
  3. From the dropdown, select Organization Settings.
  4. Select the Permissions tab.
  5. In the Configure SSO section, enter the Metadata URL and Entity ID you recorded from AWS.
  6. Enter any manual exceptions you might have. Emails listed in the manual exceptions section bypass SSO and can log in with email and password.
  7. Click Test with my Account.
    Note: You may see an error message if one or more users are in multiple Abstract Organizations. Ask those users to either leave their other Organizations or create a new account with their company email.
  8. Toggle Activate SSO on. 
  9. Click Save Changes.