Amazon SageMaker Unified Studio enhances identity and user management capabilities
Amazon SageMaker Unified Studio has introduced new features for enhanced identity and user management, allowing administrators greater control over user access and collaboration. These updates are available in multiple AWS Regions.
Amazon SageMaker Unified Studio has introduced new administrative features designed to enhance control over identity configuration and user management for both IAM and Identity Center domain types. These updates aim to streamline the management of user access and collaboration within the platform.
For SageMaker IAM domains, administrators now have the ability to onboard users via single sign-on by configuring AWS IAM Identity Center. Once set up, administrators can incorporate IAM roles, IAM users, IAM Identity Center users, and IAM Identity Center groups into projects as members. This facilitates team collaboration on project data and resources, irrespective of individual authentication methods. The integration with IAM Identity Center can be configured through the SageMaker Unified Studio admin portal.
Additionally, a new domain user management page has been introduced for SageMaker IAM domains, providing administrators with a comprehensive view of all active users within the domain. This page allows for efficient management of access and permissions from a centralized interface.
In the context of SageMaker Identity Center domains, users can now access the SageMaker Unified Studio portal by federating through an IAM role. This feature ensures that each federated user receives a distinct session, preventing overlap in work when multiple users share the same role. It also enables administrators to audit individual user actions, even when a single IAM role is shared among multiple users.
These enhancements allow customers to utilize either IAM identity or IAM Identity Center corporate identity across both domain types, providing flexibility for teams to collaborate within SageMaker Unified Studio regardless of their authentication method.
The new features are available across several AWS Regions, including Asia Pacific (Mumbai, Seoul, Singapore, Sydney, Tokyo), Canada (Central), Europe (Frankfurt, Ireland, London, Paris, Stockholm), South America (São Paulo), and the United States (N. Virginia, Ohio, Oregon). For more detailed information, users are encouraged to consult the SageMaker Unified Studio documentation.