<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeCommunityForum
0D50Z00008G7V4tSAFOkta Classic EngineSingle Sign-OnAnswered2024-08-11T09:02:35.000Z2017-07-25T16:27:15.000Z2020-05-20T21:23:17.000Z

diwqj (diwqj) asked a question.

July 25, 2017 at 4:27 PM
Managing multiple AWS Accounts with cross account roles
I followed the process from the Okta site on how to configure multiple AWS accounts but the roles for the child accounts are not being listed after I assign the application to a user. I did make the role in the child accounts "Okta-Idp-cross-account-role" as specified in the instructions. I also have the role in the child account trusting my master account and Okta(identity provider). How do I get Okta to list the roles from my child accounts?
  • 2 answers
  • 1.48K views

  • emanuel.costisor (Okta, Inc.)

    Hi Erin,

     

    If everything is correctly configured, but you don't see the AWS roles in Okta, then all you need to do is to go to the Okta admin page -> Applications -> bottom of the right panel -> click on Refresh Application Data button. This will download all the AWS roles set for Okta authentication.

     

    If the above does not resolve the issue, then please submit a support ticket via the support portal (https://support.okta.com/help) for further investigation.

     

    Thank you,

    Emanuel
    Expand Post

  • jbmrw (jbmrw)

    Okta should be ashamed of their documentation on this app. It was confusing before but at least it included all the necessary steps. The multi-account configuration guide does not even include the Okta-Idp-cross-account-role step or the proper IAM policy for the IAM user API keys for mult-account. I have to use my own environments that were set up a year ago to find the proper configurations. This is beyond appalling.

    Expand Post
This question is closed.
Loading
Managing multiple AWS Accounts with cross account roles