Assign Permission Sets

  1. Go to AWS accounts, select an AWS Account and click on Assign users or groups. Select Accounts

  2. Switch to Tab Groups, select AWS PowerUserAccess and click Next. The two displayed groups are the ones we provisioned from Okta to AWS IAM Identity Center. Assign group select group

  3. Click on Next.

  4. Validate that you selected the group AWS PowerUserAccess and the permission set PowerUserAccess. Click on Submit. Complete assign group

  5. Repeat the same steps for AWS ViewOnlyAccess with the corresponding group and permission set.

  6. Validate your configuration: You will have two Permission Sets which are assigned to the AWS Account via Groups. Validate AWS Account Configuration