Hello By any chance have anyone here configured Pulumi authe

Question

Hello By any chance have anyone here configured Pulumi authentication with AWS SSO We are having an error Request nameID format does not match our record no luck so far

plain-businessperson-30883 · Answer

< gentle diamond 70147> Help slightly smiling face

gentle-diamond-70147 · Answer

Yep pinging someone to come help I have to run to our webinar slightly smiling face

plain-businessperson-30883 · Answer

Oh thanks

clever-sunset-76585 · Answer

Hi Fernando

clever-sunset-76585 · Answer

I ll PM you

clever-sunset-76585 · Answer

It turns out that things were configured correctly Fernando followed our Okta guide to setup SSO with AWS Setting the `Relay State` URL to the Pulumi ACS base URL allowed him to perform an SSO from AWS to Pulumi successfully The ACS base URL is say your org login name is `myorg` then it would be `<https api pulumi com login myorg sso>` The relay state URL allows SSO users to click on the application tile from AWS SSO applications page to be directly taken to Pulumi Console without having to type the org name again on Pulumi

chilly-crayon-57653 · Answer

Nice Thanks for handling Are there any updates or clarifications we should make to our Okta doc

plain-businessperson-30883 · Answer

< clever sunset 76585> I just moved that URL to the `Application start url` configuration it works fine

clever-sunset-76585 · Answer

Great Thanks for confirming So the issue was that the Application Start URL Fernando used before was of the wrong format

plain-businessperson-30883 · Answer

Maybe it would be cool to have it in the docs Maybe one section for a more generic configuration

clever-sunset-76585 · Answer

Yes I will add it Okta doesn t have an Application Start URL but GSuite does which is actually sort of like a Relay State In any case I ll add some docs around this

clever-sunset-76585 · Answer