Complicated and deceptive errors end result from lack of testing and an unfriendly expertise associated to AWS SSO session timeout
I actually don’t perceive the purpose of the ugly hyperlink you get when an AWS SSO session instances out. I perceive you would possibly need to ensure a consumer remains to be there, however many banks do that in a way more user-friendly method.
Pop up a field asking a consumer if they’re nonetheless there. In the event that they click on it it takes them precisely again to the spot they have been at. I perceive you might have some system re-design and re-architecture to determine to assist this — and securely — however the present answer is absolutely hokey.
So many issues break as a consequence of this conduct. Had been you modifying sophisticated Lambda code? Sorry, it’s gone. You’ll want to begin over.
Had been you making an attempt to replace a posh function? Nope that’s gone too. Begin over.
Right here’s one other instance, with footage:
I used to be making an attempt so as to add a brand new function that I had efficiently created and verified existed within the IAM console and CloudFormation. After I went again to the Lambda display it wouldn’t present up even with a refresh. I attempted to return to take a look at my function as I used to be certain I had added a correct belief coverage. That’s once I discovered my SSO session had timed out.
As soon as I logged again in once more I might see the 2 roles I created.
This conduct is absolutely complicated and one other instance of why some elements of IAM are nonetheless higher than AWS SSO.
Teri Radichel
When you appreciated this story please clap and observe:
Medium: Teri Radichel or E-mail Checklist: Teri Radichel
Twitter: @teriradichel or @2ndSightLab
Requests providers through LinkedIn: Teri Radichel or IANS Analysis
© 2nd Sight Lab 2022
____________________________________________
Creator:
Cybersecurity for Executives within the Age of Cloud on Amazon
Want Cloud Safety Coaching? 2nd Sight Lab Cloud Safety Coaching
Is your cloud safe? Rent 2nd Sight Lab for a penetration check or safety evaluation.
Have a Cybersecurity or Cloud Safety Query? Ask Teri Radichel by scheduling a name with IANS Analysis.
Cybersecurity & Cloud Safety Sources by Teri Radichel: Cybersecurity and Cloud safety lessons, articles, white papers, shows, and podcasts
