AWS IAM Identity Centre: A Practitioner's Guide to Centralised Workforce Access
AWS IAM Identity Centre: centralised workforce access done right If you are still issuing long-term IAM user credentials to engineers in a multi-account AWS estate, you are carrying a risk that regulators and your own incident response team will eventually force you to address. AWS IAM Identity Centre (formerly AWS Single Sign-On) is the answer, and as of June 2026 it has matured to the point where it is the only defensible choice for human access to AWS. This guide covers the architecture, the configuration decisions that matter, the quotas that will bite you at scale, and the mistakes I see repeated across nearly every organisation I work with. ...