Before You Start
You need admin access to the AWS IAM Identity Center and to Whistleblower Software Settings.
Users must already exist in Whistleblower Software before they can sign in via SAML.
SAML 2.0 is available only on the Advanced plan.
Step 1: Open AWS IAM Identity Center Applications
Step 2: Add a Custom SAML App
Click Add a new application, then select Add custom SAML app.
Step 3: Name the Application
Give it a name such as "Whistleblower Software".
Step 4: Download the AWS SSO Metadata File
In the AWS interface, download the AWS SSO metadata file. You will upload this into Whistleblower Software shortly.
Step 5: Upload the AWS Metadata File into Whistleblower Software
Go to Settings > Security in Whistleblower Software. Enable Login with SAML. Under Identity provider metadata file, upload the metadata file you downloaded from AWS.
Step 6: Download the Whistleblower Software Metadata File
Still in Settings > Security, click Download next to Service provider metadata file to download the Whistleblower Software metadata file.
Step 7: Upload the Whistleblower Software Metadata File into AWS
Back in the AWS interface, upload the metadata file you just downloaded from Whistleblower Software.
Step 8: Configure Attribute Mapping
Under Attribute mapping in AWS, add the following configuration:
Subject mapped to ${user:email}
first_name mapped to ${user:givenName}
last_name mapped to ${user:familyName}
email mapped to ${user:email}
Step 9: Save and Assign Users
Click Save changes. Then assign permissions to the users who need access to the application.
Only administrators, system technician and user-defined users with access to security settings can make these changes in Whistleblower Software.
We’re here to support you. If you have questions reach out to us directly via the Messenger icon in the bottom right corner of your screen, or send us an email at support@whistleblowersoftware.com