{"id":112698,"date":"2023-07-25T16:23:00","date_gmt":"2023-07-25T13:23:00","guid":{"rendered":"https:\/\/elementor.com\/blog\/habilitar-la-autenticacion-sso-de-redshift-con-aws-iam-identity-center-multi-account\/"},"modified":"2025-12-01T13:17:47","modified_gmt":"2025-12-01T11:17:47","slug":"habilitar-la-autenticacion-sso-de-redshift-con-aws-iam-identity-center-multi-account","status":"publish","type":"post","link":"https:\/\/elementor.com\/blog\/es\/habilitar-la-autenticacion-sso-de-redshift-con-aws-iam-identity-center-multi-account\/","title":{"rendered":"Habilitar la autenticaci\u00f3n SSO de Redshift con AWS IAM Identity Center (Multi-Account)"},"content":{"rendered":"\n<p>En esta gu\u00eda paso a paso, aprenderemos c\u00f3mo configurar la autenticaci\u00f3n SSO con Redshift y AWS IAM Identity Center para aumentar la seguridad y facilitar el acceso de los usuarios.<\/p>\n\n<figure class=\"wp-block-image size-full\"><img fetchpriority=\"high\" decoding=\"async\" width=\"751\" height=\"161\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Redshift-SSO.drawio.png\" alt=\"\" class=\"wp-image-85731\" \/><\/figure>\n\n<h3 class=\"wp-block-heading\" id=\"Used-Sources:\">Fuentes Utilizadas:<\/h3>\n\n<ul class=\"wp-block-list\"><li><a href=\"https:\/\/aws.amazon.com\/blogs\/big-data\/federated-authentication-to-amazon-redshift-using-aws-single-sign-on\/\" target=\"_blank\" rel=\"noreferrer noopener\">https:\/\/aws.amazon.com\/blogs\/big-data\/federated-authentication-to-amazon-redshift-using-aws-single-sign-on\/<\/a><\/li><li><a href=\"https:\/\/aws.amazon.com\/blogs\/big-data\/amazon-redshift-identity-federation-with-multi-factor-authentication\/\" target=\"_blank\" rel=\"noreferrer noopener\">https:\/\/aws.amazon.com\/blogs\/big-data\/amazon-redshift-identity-federation-with-multi-factor-authentication\/<\/a><\/li><\/ul>\n\n<h3 class=\"wp-block-heading\" id=\"Terms-Dictionary:\">Diccionario de T\u00e9rminos:<\/h3>\n\n<figure class=\"wp-block-table\"><table class=\"has-fixed-layout\"><tbody><tr><th class=\"has-text-align-left\" data-align=\"left\"><strong>T\u00e9rmino<\/strong><\/th><th class=\"has-text-align-left\" data-align=\"left\"><strong>Significado<\/strong><\/th><\/tr><tr><td class=\"has-text-align-left\" data-align=\"left\">Cuenta del Identity Center<\/td><td class=\"has-text-align-left\" data-align=\"left\">La cuenta donde se configura el IAM Identity Center.<\/td><\/tr><tr><td class=\"has-text-align-left\" data-align=\"left\">Cuenta de Redshift<\/td><td class=\"has-text-align-left\" data-align=\"left\">La cuenta secundaria de la cuenta del Identity Center que contiene el cl\u00faster de Redshift al que queremos conectarnos.<\/td><\/tr><tr><td class=\"has-text-align-left\" data-align=\"left\">IDP<\/td><td class=\"has-text-align-left\" data-align=\"left\">Proveedor de Identidad<\/td><\/tr><\/tbody><\/table><\/figure>\n\n<h3 class=\"wp-block-heading\" id=\"What's-Redshift?\">\u00bfQu\u00e9 es Redshift?<\/h3>\n\n<p><a class=\"wpil_keyword_link\" href=\"https:\/\/elementor.com\/blog\/es\/11-mejores-alojamientos-en-la-nube-para-wordpress-en-year\/\" title=\"10 Best Cloud Hosting for WordPress in 2025\" data-wpil-keyword-link=\"linked\" data-wpil-monitor-id=\"23745\">AWS<\/a> Redshift es un servicio de almacenamiento de datos completamente gestionado proporcionado por Amazon Web Services (AWS).<br \/>Est\u00e1 dise\u00f1ado para manejar cargas de trabajo de an\u00e1lisis de datos a gran escala y permite a las organizaciones analizar grandes cantidades de datos de manera r\u00e1pida y rentable.<\/p>\n\n<h3 class=\"wp-block-heading\" id=\"What&#x2019;s-IAM-Identity-Center?\">\u00bfQu\u00e9 es IAM Identity Center?<\/h3>\n\n<p>IAM Identity Center proporciona un lugar donde puedes crear o conectar usuarios de la fuerza laboral y gestionar centralmente su acceso a todas sus cuentas y aplicaciones de AWS.<br \/>Puedes usar permisos de m\u00faltiples cuentas para asignar a tus usuarios de la fuerza laboral acceso a cuentas de AWS.<\/p>\n\n<h3 class=\"wp-block-heading\" id=\"Why-SSO?\">\u00bfPor qu\u00e9 SSO?<\/h3>\n\n<p>SSO <strong>reduce el n\u00famero de superficies de ataque<\/strong> porque los usuarios solo inician sesi\u00f3n una vez al d\u00eda y solo usan un conjunto de credenciales.<br \/>Reducir el inicio de sesi\u00f3n a un conjunto de credenciales mejora la seguridad de la empresa.\nCuando los empleados tienen que usar contrase\u00f1as separadas para cada aplicaci\u00f3n, generalmente no lo hacen. <\/p>\n\n<h2 class=\"wp-block-heading\" id=\"Prerequisites\">Requisitos Previos<\/h2>\n\n<ol class=\"wp-block-list\"><li>IAM Identity Center preconfigurado \u2192 <a href=\"https:\/\/docs.aws.amazon.com\/singlesignon\/latest\/userguide\/getting-started.html\" target=\"_blank\" rel=\"noreferrer noopener\">Empezando &#8211; AWS IAM Identity Center.<\/a><\/li><li>Cl\u00faster de Redshift preconfigurado con acceso administrativo.<\/li><li>Usuario y contrase\u00f1a de la fuente de identidad (Okta, PingOne, etc.).<\/li><li>JetBrains DataGrip instalado (puede ser la versi\u00f3n gratuita).<\/li><\/ol>\n\n<h2 class=\"wp-block-heading\" id=\"Step-by-Step:\">Paso a Paso:<\/h2>\n\n<h3 class=\"wp-block-heading\" id=\"Configure-Identity-Center-application\">Configurar la aplicaci\u00f3n del Identity Center<\/h3>\n\n<p>Nuestro primer paso ser\u00e1 crear una nueva aplicaci\u00f3n de AWS Identity Center <strong>en la cuenta del Identity Center<\/strong> para ser utilizada como el canal principal entre los usuarios y el cl\u00faster de Redshift.<\/p>\n\n<ol class=\"wp-block-list\"><li>En el panel lateral de IAM Identity Center, haz clic en \u201cAplicaciones\u201d.<br \/><img decoding=\"async\" width=\"278\" height=\"71\" class=\"wp-image-85732\" style=\"width: 278px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-15.25.46.png\" alt=\"\" \/><br \/> <\/li><li>En la esquina superior derecha, haz clic en \u201cAgregar aplicaci\u00f3n\u201d.<br \/><img decoding=\"async\" width=\"1402\" height=\"152\" class=\"wp-image-85733\" style=\"width: 1402px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-15.27.18.png\" alt=\"\" \/><\/li><li>Marca \u201cagregar aplicaci\u00f3n SAML 2.0 personalizada\u201d y haz clic en \u201cSiguiente\u201d.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"1057\" height=\"178\" class=\"wp-image-85734\" style=\"width: 1057px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-15.28.44.png\" alt=\"\" \/><\/li><li>Establece un nombre de visualizaci\u00f3n apropiado, llamaremos a nuestra aplicaci\u00f3n \u201cRedshift-ReadOnly\u201d, ya que esta aplicaci\u00f3n se utilizar\u00e1 para obtener acceso de solo lectura a los datos del cl\u00faster.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"965\" height=\"201\" class=\"wp-image-85735\" style=\"width: 965px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-15.32.25.png\" alt=\"\" \/><\/li><li>Descargar el archivo de metadatos SAML del Identity Center, lo utilizaremos m\u00e1s tarde para configurar nuestra aplicaci\u00f3n de cuenta de Redshift.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"872\" height=\"420\" class=\"wp-image-85736\" style=\"width: 872px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-15.33.39.png\" alt=\"\" \/><br \/> <\/li><li>Copia la <a class=\"wpil_keyword_link\" href=\"https:\/\/elementor.com\/blog\/es\/que-es-una-urlestructura-sintaxis-mejores-practicas\/\" title=\"What is a URL? Structure, Syntax &#038; Best Practices\" data-wpil-keyword-link=\"linked\" data-wpil-monitor-id=\"23744\">URL<\/a> de inicio de sesi\u00f3n de la aplicaci\u00f3n ya que la necesitaremos m\u00e1s tarde.<br \/><\/li><li>A continuaci\u00f3n, configuraremos la <strong>ACS de la aplicaci\u00f3n SAML<\/strong> (tambi\u00e9n conocido como Servicio de Consumidor de Aserciones).<br \/>Brevemente, ACS es la ubicaci\u00f3n donde se enviar\u00e1 la respuesta de la aplicaci\u00f3n SAML.<br \/><br \/>Como utilizaremos el <strong>controlador JDBC de AWS Redshift<\/strong> para conectarnos a nuestro cl\u00faster de Redshift, necesitaremos configurar la ACS de la aplicaci\u00f3n a <code>http:\/\/localhost:7890\/redshift\/<\/code> &#8211; ya que el controlador JDBC inicia un servidor que escucha en el puerto 7890 por defecto.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"308\" height=\"74\" class=\"wp-image-85737\" style=\"width: 308px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-15.56.40.png\" alt=\"\" \/><img decoding=\"async\" alt=\"\" src=\"https:\/\/elementor.atlassian.net\/ab00f622-901e-48a6-af15-55b11fe407f4#media-blob-url=true&amp;id=a1039895-cc77-4376-8887-687b0a94ffae&amp;collection=contentId-664896059&amp;contextId=664896059&amp;height=74&amp;width=308&amp;alt=\" \/><\/li><li>Para restringir la aserci\u00f3n de la aplicaci\u00f3n SAML solo a redshift, configuraremos el campo \u201cAudiencia de la aplicaci\u00f3n SAML\u201d a <code>urn:amazon:webservices:redshift<\/code>.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"247\" height=\"70\" class=\"wp-image-85738\" style=\"width: 247px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-15.58.17.png\" alt=\"\" \/> <\/li><\/ol>\n\n<h3 class=\"wp-block-heading\" id=\"Create-Identity-Provider\">Crear Proveedor de Identidad<\/h3>\n\n<p>Despu\u00e9s de crear nuestra aplicaci\u00f3n <strong>Redshift-ReadOnly<\/strong> en la cuenta del Identity Center, necesitamos configurar un proveedor de identidad para ser utilizado por la aplicaci\u00f3n <strong>Redshift-ReadOnly<\/strong> para conectarse al cl\u00faster de Redshift de la cuenta de Redshift.<\/p>\n\n<ol class=\"wp-block-list\"><li>En el panel lateral del Dashboard de IAM de tu cuenta de Redshift, haz clic en <strong>Proveedores de Identidad<\/strong>.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"271\" height=\"431\" class=\"wp-image-85742\" style=\"width: 271px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-16.19.31.png\" alt=\"\" \/> <\/li><li>En la esquina superior derecha, haz clic en \u201cAgregar proveedor\u201d.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"1328\" height=\"78\" class=\"wp-image-85743\" style=\"width: 1328px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-16.21.05.png\" alt=\"\" \/><br \/><\/li><li>Rellena los detalles para el nuevo IDP:<ol start=\"1\"><li>Establece el \u201cNombre del proveedor\u201d a Redshift-ReadOnly (igual que nuestra aplicaci\u00f3n configurada previamente).<\/li><li>Sube el archivo de metadatos que descargamos durante el proceso de configuraci\u00f3n de nuestra aplicaci\u00f3n de IAM Identity Center.<img decoding=\"async\" alt=\"\" src=\"https:\/\/elementor.atlassian.net\/f2db2cb3-28d0-4578-ac63-f813a350a2d9#media-blob-url=true&amp;id=af2a9aac-ed5d-4c7c-8aea-e91254cfdeaf&amp;collection=contentId-664896059&amp;contextId=664896059&amp;height=597&amp;width=866&amp;alt=\" \/> Haz clic en \u201cAgregar proveedor\u201d y finaliza.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"866\" height=\"597\" class=\"wp-image-85744\" style=\"width: 866px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-16.22.59.png\" alt=\"\" \/><\/li><\/ol><\/li><li>Ve a la p\u00e1gina de descripci\u00f3n del IDP y copia el <strong>ARN del IDP<\/strong>, lo utilizaremos m\u00e1s tarde<strong>.<\/strong><br \/><img loading=\"lazy\" decoding=\"async\" width=\"626\" height=\"321\" class=\"wp-image-85745\" style=\"width: 626px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-17.04.43.png\" alt=\"\" \/><img decoding=\"async\" alt=\"\" src=\"https:\/\/elementor.atlassian.net\/0a06764a-c351-43f3-810a-15da912d7c05#media-blob-url=true&amp;id=39497b0d-7a31-4add-8c83-107db8043f05&amp;collection=contentId-664896059&amp;contextId=664896059&amp;height=321&amp;width=626&amp;alt=\" \/><\/li><\/ol>\n\n<h3 class=\"wp-block-heading\" id=\"Create-IAM-Role-&amp;-Policy\">Crear Rol y Pol\u00edtica de IAM<\/h3>\n\n<p>Ahora que hemos creado el Proveedor de Identidad para ser utilizado por nuestra aplicaci\u00f3n de IAM Identity Center, podemos crear el rol que se utilizar\u00e1 para conectarse al cl\u00faster de Redshift.<\/p>\n\n<ol class=\"wp-block-list\"><li>En el panel lateral del Dashboard de IAM de tu cuenta de Redshift, haz clic en <strong>Roles<\/strong>.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"271\" height=\"437\" class=\"wp-image-85747\" style=\"width: 271px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-16.14.15.png\" alt=\"\" \/> <\/li><li>En la esquina superior derecha, haz clic en \u201cCrear Rol\u201d.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"1341\" height=\"128\" class=\"wp-image-85748\" style=\"width: 1341px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-16.15.37.png\" alt=\"\" \/><br \/> <\/li><li>Crea una entidad de confianza de tipo federaci\u00f3n SAML 2.0 y establece lo siguiente:<ol start=\"1\"><li>Establece el IDP al IDP \u201cRedshift-ReadOnly\u201d que creamos anteriormente.<\/li><li>Marca el bot\u00f3n de radio \u201cPermitir solo acceso program\u00e1tico\u201d y establece:<br \/><strong>Atributo: \u201cSAML:aud\u201d<\/strong> \u2192 estableciendo qu\u00e9 audiencia puede asumir este rol.<br \/><strong>Valor: \u201c<\/strong><a href=\"http:\/\/localhost:7890\/redshift\/\"><strong>http:\/\/localhost:7890\/redshift\/<\/strong><\/a><strong>\u201d<\/strong> \u2192 Estableciendo la audiencia a nuestro servidor local del controlador JDBC de Redshift (como se explic\u00f3 en la primera secci\u00f3n).<br \/><img loading=\"lazy\" decoding=\"async\" width=\"1190\" height=\"780\" class=\"wp-image-85749\" style=\"width: 1190px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-16.44.02.png\" alt=\"\" \/><br \/>Haz clic en \u201cSiguiente\u201d.<br \/><\/li><\/ol><\/li><li>Haz clic en \u201cCrear pol\u00edtica\u201d y se abrir\u00e1 una nueva pesta\u00f1a.<img decoding=\"async\" alt=\"\" src=\"https:\/\/elementor.atlassian.net\/5f413ee0-9082-48fe-bbf9-1266e384f039#media-blob-url=true&amp;id=f54050e8-48e9-4c67-8e16-34cb159b53b5&amp;collection=contentId-664896059&amp;contextId=664896059&amp;height=165&amp;width=1303&amp;alt=\" \/> <\/li><li>Selecciona \u201cJSON\u201d.<img decoding=\"async\" alt=\"\" src=\"https:\/\/elementor.atlassian.net\/38e95090-ae9b-4366-9c1e-4c24cab89231#media-blob-url=true&amp;id=75587102-9ee1-4ce6-abd5-c83d2c872050&amp;collection=contentId-664896059&amp;contextId=664896059&amp;height=135&amp;width=1139&amp;alt=\" \/> <\/li><li>En el panel del editor de Pol\u00edticas, pega la siguiente declaraci\u00f3n de pol\u00edtica y edita los siguientes valores en el \u00e1mbito \u201cResource\u201d para que coincidan con los tuyos: <code>&lt;region&gt;, &lt;account&gt;, &lt;clusterName&gt;<\/code>.<br \/>\t\t<div data-elementor-type=\"container\" data-elementor-id=\"85752\" class=\"elementor elementor-85752\" data-elementor-post-type=\"elementor_library\">\n\t\t\t\t<div class=\"elementor-element elementor-element-1bd19134 e-flex e-con-boxed e-con e-parent\" data-id=\"1bd19134\" data-element_type=\"container\">\n\t\t\t\t\t<div class=\"e-con-inner\">\n\t\t\t\t<div class=\"elementor-element elementor-element-1630fc85 elementor-widget elementor-widget-code-highlight\" data-id=\"1630fc85\" data-element_type=\"widget\" data-widget_type=\"code-highlight.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"prismjs-tomorrow copy-to-clipboard \">\n\t\t\t<pre data-line=\"\" class=\"highlight-height language-json line-numbers\">\n\t\t\t\t<code readonly=\"true\" class=\"language-json\">\n\t\t\t\t\t<xmp>{\n    \"Version\": \"2012-10-17\",\n    \"Statement\": [\n        {\n            \"Effect\": \"Allow\",\n            \"Action\": [\n                \"redshift:CreateClusterUser\",\n                \"redshift:JoinGroup\",\n                \"redshift:GetClusterCredentials\",\n                \"redshift:ListSchemas\",\n                \"redshift:ListTables\",\n                \"redshift:ListDatabases\",\n                \"redshift:ExecuteQuery\",\n                \"redshift:FetchResults\",\n                \"redshift:CancelQuery\",\n                \"redshift:DescribeClusters\",\n                \"redshift:DescribeQuery\",\n                \"redshift:DescribeTable\"\n            ],\n            \"Resource\": [\n                \"arn:aws:redshift:<region>:<account>:cluster:<clusterName>\",\n                \"arn:aws:redshift:<region>:<account>:dbuser:<clusterName>\/${redshift:DbUser}\",\n                \"arn:aws:redshift:<region>:<account>:dbname:<clusterName>\/${redshift:DbName}\",\n                \"arn:aws:redshift:<region>:<account>:dbgroup:<clusterName>\/bi_users_group\",\n            ]\n        }\n    ]\n}<\/xmp>\n\t\t\t\t<\/code>\n\t\t\t<\/pre>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t<br \/><\/li><li>Nombra la pol\u00edtica \u201cRedshift-ReadOnly-policy\u201d y haz clic en \u201cCreate policy\u201d.<img decoding=\"async\" alt=\"\" src=\"https:\/\/elementor.atlassian.net\/638f1d27-23e5-4a2f-8351-3f13ebf6a7f1#media-blob-url=true&amp;id=e6d9b9f7-ff16-4b5a-851e-162a99c4d39d&amp;collection=contentId-664896059&amp;contextId=664896059&amp;height=287&amp;width=1042&amp;alt=\" \/> <br \/><img loading=\"lazy\" decoding=\"async\" width=\"1042\" height=\"287\" class=\"wp-image-85756\" style=\"width: 1042px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-16.55.08.png\" alt=\"\" \/><\/li><li>Vuelve a la pesta\u00f1a de origen donde comenzamos a crear nuestro rol IAM<br \/>\u2192 haz clic en actualizar \u2192 escribe \u201cRedshift-ReadOnly-policy\u201d en la barra de b\u00fasqueda \u2192 marca la pol\u00edtica \u201cRedshift-ReadOnly-policy\u201d \u2192 haz clic en \u201cNext\u201d.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"1136\" height=\"359\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-16.56.59.png\" class=\"wp-image-85757\" style=\"width: 1136px\" alt=\"\" \/><\/li><li>Nombra el rol \u201cRedshift-ReadOnly-role\u201d y haz clic en \u201cCreate role\u201d en la esquina inferior derecha.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"618\" height=\"244\" class=\"wp-image-85758\" style=\"width: 618px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-16.59.54.png\" alt=\"\" \/><img decoding=\"async\" alt=\"\" src=\"https:\/\/elementor.atlassian.net\/f0080f98-f453-40bb-83c7-24e81210a9f2#media-blob-url=true&amp;id=7ece7e5c-f65e-4144-9c4a-e4856fa6e8db&amp;collection=contentId-664896059&amp;contextId=664896059&amp;height=244&amp;width=618&amp;alt=\" \/><\/li><li>Ahora que hemos creado el rol IAM, ve a su p\u00e1gina de descripci\u00f3n y copia el <strong>ARN del rol<\/strong>, lo usaremos m\u00e1s adelante.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"1126\" height=\"320\" class=\"wp-image-85759\" style=\"width: 1126px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-17.08.58.png\" alt=\"\" \/><\/li><\/ol>\n\n<h3 class=\"wp-block-heading\" id=\"Configure-the-IAM-Identity-Center-Application-Attributes\">Configura los Atributos de la Aplicaci\u00f3n del Centro de Identidad IAM<\/h3>\n\n<p>Para configurar nuestra aplicaci\u00f3n para trabajar con Redshift, necesitamos configurar algunos atributos de la aplicaci\u00f3n que le guiar\u00e1n \u201cc\u00f3mo conectarse\u201d a ella.<\/p>\n\n<ol class=\"wp-block-list\"><li>En el Centro de Identidad IAM, ve al panel de Aplicaciones y elige la aplicaci\u00f3n que creamos anteriormente.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"880\" height=\"506\" class=\"wp-image-85761\" style=\"width: 880px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-17.21.15.png\" alt=\"\" \/><br \/> <\/li><li>Asigna usuarios y grupos a los que te gustar\u00eda dar permisos para esta aplicaci\u00f3n \u2192 <a rel=\"noreferrer noopener\" href=\"https:\/\/docs.aws.amazon.com\/singlesignon\/latest\/userguide\/assignuserstoapp.html\" target=\"_blank\">Asigna acceso de usuario a aplicaciones en la consola del Centro de Identidad IAM &#8211; AWS IAM Identity Center (sucesor de AWS Single Sign-On)<\/a>.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"1368\" height=\"419\" class=\"wp-image-85762\" style=\"width: 1368px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-17.25.48.png\" alt=\"\" \/><br \/> <\/li><li>Haz clic en \u201cattribute mappings\u201d.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"1395\" height=\"345\" class=\"wp-image-85763\" style=\"width: 1395px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-17.27.54.png\" alt=\"\" \/> <\/li><li>Configura los atributos seg\u00fan la siguiente tabla y reemplaza el <code>&lt;role_arn&gt;<\/code> &amp; <code>&lt;idp_arn&gt;<\/code> marcador de posici\u00f3n con los ARNs que copiaste en los pasos anteriores:<\/li><\/ol>\n\n<figure class=\"wp-block-table\"><table class=\"has-fixed-layout\"><tbody><tr><th class=\"has-text-align-left\" data-align=\"left\"><strong>Atributo<\/strong><\/th><th class=\"has-text-align-left\" data-align=\"left\"><strong>Valor<\/strong><\/th><th class=\"has-text-align-left\" data-align=\"left\"><strong>Explicaci\u00f3n<\/strong><\/th><\/tr><tr><td class=\"has-text-align-left\" data-align=\"left\">Sujeto (atributo predeterminado)<\/td><td class=\"has-text-align-left\" data-align=\"left\">${user:email}<\/td><td class=\"has-text-align-left\" data-align=\"left\">El sujeto utilizado.<\/td><\/tr><tr><td class=\"has-text-align-left\" data-align=\"left\">https:\/\/aws.amazon.com\/SAML\/Attributes\/RoleSessionName<\/td><td class=\"has-text-align-left\" data-align=\"left\">${user:email}<\/td><td class=\"has-text-align-left\" data-align=\"left\">El nombre de la sesi\u00f3n creada contra el cl\u00faster.<\/td><\/tr><tr><td class=\"has-text-align-left\" data-align=\"left\">https:\/\/redshift.amazon.com\/SAML\/Attributes\/AutoCreate<\/td><td class=\"has-text-align-left\" data-align=\"left\">true<\/td><td class=\"has-text-align-left\" data-align=\"left\">Configura la aplicaci\u00f3n para crear el usuario de Redshift autom\u00e1ticamente al autenticarse.<\/td><\/tr><tr><td class=\"has-text-align-left\" data-align=\"left\">https:\/\/aws.amazon.com\/SAML\/Attributes\/Role<\/td><td class=\"has-text-align-left\" data-align=\"left\">,<\/td><td class=\"has-text-align-left\" data-align=\"left\">El rol IAM y el IDP que se utilizar\u00e1n para conectarse a Redshift.<\/td><\/tr><tr><td class=\"has-text-align-left\" data-align=\"left\">https:\/\/redshift.amazon.com\/SAML\/Attributes\/DbUser<\/td><td class=\"has-text-align-left\" data-align=\"left\">${user:email}<\/td><td class=\"has-text-align-left\" data-align=\"left\">El nombre del usuario de la base de datos a crear.<\/td><\/tr><tr><td class=\"has-text-align-left\" data-align=\"left\">https:\/\/redshift.amazon.com\/SAML\/Attributes\/DbGroups<\/td><td class=\"has-text-align-left\" data-align=\"left\">readonly<\/td><td class=\"has-text-align-left\" data-align=\"left\">El grupo de la base de datos al que se asignar\u00e1 el nuevo usuario creado.<\/td><\/tr><\/tbody><\/table><\/figure>\n\n<figure class=\"wp-block-image size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"1406\" height=\"716\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-17.38.32.png\" alt=\"\" class=\"wp-image-85764\" \/><\/figure>\n\n<p>Haz clic en \u201cSave changes\u201d.<\/p>\n\n<h3 class=\"wp-block-heading\" id=\"Create-Redshift-group-&amp;-Grant-permissions\">Crear grupo de Redshift &amp; Otorgar permisos<\/h3>\n\n<p>En esta etapa, configuraremos el <code>readonly<\/code> grupo de Redshift (como se define en los atributos de la aplicaci\u00f3n en la etapa anterior) al que se asignar\u00e1 cada usuario al conectarse a trav\u00e9s de la aplicaci\u00f3n.<\/p>\n\n<ol class=\"wp-block-list\"><li>Con\u00e9ctate a tu cl\u00faster de Redshift con un usuario privilegiado (superusuario).<\/li><li>Ejecuta el siguiente script SQL para crear el <code>readonly<\/code> grupo y asignarle <code>read<\/code> permisos al esquema p\u00fablico (el esquema predeterminado).<br \/>\t\t<div data-elementor-type=\"container\" data-elementor-id=\"85766\" class=\"elementor elementor-85766\" data-elementor-post-type=\"elementor_library\">\n\t\t\t\t<div class=\"elementor-element elementor-element-13d86d9a e-flex e-con-boxed e-con e-parent\" data-id=\"13d86d9a\" data-element_type=\"container\">\n\t\t\t\t\t<div class=\"e-con-inner\">\n\t\t\t\t<div class=\"elementor-element elementor-element-885ec86 elementor-widget elementor-widget-code-highlight\" data-id=\"885ec86\" data-element_type=\"widget\" data-widget_type=\"code-highlight.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"prismjs-tomorrow copy-to-clipboard \">\n\t\t\t<pre data-line=\"\" class=\"highlight-height language-sql line-numbers\">\n\t\t\t\t<code readonly=\"true\" class=\"language-sql\">\n\t\t\t\t\t<xmp>create group readonly;\ngrant usage on schema public to group readonly;\ngrant select on all tables in schema public to group readonly;<\/xmp>\n\t\t\t\t<\/code>\n\t\t\t<\/pre>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t<\/li><\/ol>\n\n<h3 class=\"wp-block-heading\" id=\"Configure-the-DataGrip-client-Data-Source\">Configura la Fuente de Datos del cliente DataGrip<\/h3>\n\n<p><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/elementor.com\/cdn-cgi\/image\/f=auto,w=20,h=20https:\/\/elementor.atlassian.net\/gateway\/api\/emoji\/bc79594b-ab29-4483-8266-81959ca3f62f\/1f389\/path\" alt=\":tada:\" width=\"20\" height=\"20\" \/> \u00a1Estamos listos y finalmente a punto de cosechar nuestros frutos! <img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/elementor.atlassian.net\/gateway\/api\/emoji\/bc79594b-ab29-4483-8266-81959ca3f62f\/1f389\/path\" alt=\":tada:\" width=\"20\" height=\"20\" \/><br \/>En este paso, configuraremos una fuente de datos de DataGrip que se utilizar\u00e1 como la conexi\u00f3n entre nosotros y el cl\u00faster de Redshift.<\/p>\n\n<ol class=\"wp-block-list\"><li>Abre DataGrip y crea una nueva fuente de datos de Redshift.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"467\" height=\"114\" class=\"wp-image-85769\" style=\"width: 467px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-17.52.46.png\" alt=\"\" \/> <\/li><li>Se abrir\u00e1 un asistente de fuente de datos para que configures la conexi\u00f3n, establece los siguientes atributos:<ol start=\"1\"><li><strong>Nombre<\/strong>: Redshift ReadOnly SSO.<\/li><li><strong>Host<\/strong>:<strong> <\/strong>tu endpoint del servidor de Redshift.<\/li><li><strong>Usuario<\/strong>: tu identificador de correo electr\u00f3nico (se utilizar\u00e1 como el Usuario de la BD de Redshift).<\/li><li><strong>Contrase\u00f1a<\/strong>: la contrase\u00f1a que has configurado en tu Fuente de Identidad (Okta, PingOne, etc.)<\/li><li><strong>Base de datos<\/strong>: la base de datos a la que deseas conectarte.<\/li><li><strong><a class=\"wpil_keyword_link\" href=\"https:\/\/elementor.com\/blog\/es\/que-es-una-urlestructura-sintaxis-mejores-practicas\/\" title=\"What is a URL? Structure, Syntax &amp; Best Practices\" data-wpil-keyword-link=\"linked\" data-wpil-monitor-id=\"31208\">URL<\/a><\/strong>: la URL estar\u00e1 mayormente configurada en este punto (debido al autocompletado de DataGrip), todo lo que queda por hacer es cambiar el prefijo de la URL JDBC de <code>jdbc:redshift:\/\/<\/code> a <code>jdbc:redshift:iam:\/\/<\/code>.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"559\" height=\"671\" class=\"wp-image-85770\" style=\"width: 559px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-17.57.29.png\" alt=\"\" \/> <\/li><\/ol><\/li><li>Ve a la pesta\u00f1a <code>Advanced<\/code> y configura estos 3 atributos:<ol start=\"1\"><li><strong>plugin_name<\/strong>: <code>com.amazon.redshift.plugin.BrowserSamlCredentialsProvider<\/code> &#8211; ya definido, as\u00ed que ed\u00edtalo.<\/li><li><strong>idp_reponse_timeout: <\/strong>60 &#8211; crea un nuevo valor.<\/li><li><strong>login_url<\/strong>: &lt;tu URL de inicio de sesi\u00f3n de la aplicaci\u00f3n SAML copiada previamente&gt; &#8211; crea un nuevo valor.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"547\" height=\"245\" class=\"wp-image-85771\" style=\"width: 547px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-18.10.07.png\" alt=\"\" \/> <\/li><\/ol><\/li><li>En la parte inferior del asistente de configuraci\u00f3n de la fuente de datos, haz clic en \u201ctest connection\u201d.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"549\" height=\"88\" class=\"wp-image-85772\" style=\"width: 549px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-18.11.44.png\" alt=\"\" \/><img decoding=\"async\" alt=\"\" src=\"https:\/\/elementor.atlassian.net\/938ff2bb-46c7-4cd9-9020-aa00b134d7b5#media-blob-url=true&amp;id=ec78f4d0-c3c0-4743-8a1d-e5568685c9e7&amp;collection=contentId-664896059&amp;contextId=664896059&amp;height=88&amp;width=549&amp;alt=\" \/><br \/>Una vez hecho clic, tu navegador se abrir\u00e1 y mostrar\u00e1 la siguiente pantalla:<br \/><img loading=\"lazy\" decoding=\"async\" width=\"1156\" height=\"197\" class=\"wp-image-85773\" style=\"width: 1156px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-18.14.29.png\" alt=\"\" \/><br \/>Si todo est\u00e1 configurado correctamente, deber\u00edas ver el siguiente mensaje emergente en DataGrip:<br \/><img loading=\"lazy\" decoding=\"async\" width=\"467\" height=\"215\" class=\"wp-image-85774\" style=\"width: 467px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-18.14.34.png\" alt=\"\" \/><img decoding=\"async\" src=\"https:\/\/elementor.atlassian.net\/8b152b94-3cbd-465a-a56f-6cfc8cec2c19#media-blob-url=true&amp;id=ac42272d-34e4-46b6-9ec4-57583deb1983&amp;collection=contentId-664896059&amp;contextId=664896059&amp;height=215&amp;width=467&amp;alt=\" alt=\"\" \/><br \/>Haz clic en OK.<br \/><br \/>\u00a1Eso es todo!\nGracias por leer \ud83d\ude42 <\/li><\/ol>\n","protected":false},"excerpt":{"rendered":"<p>\u00bfEs lo suficientemente segura tu conexi\u00f3n a Redshift?<br \/>\nEn esta gu\u00eda paso a paso, aprender\u00e1s c\u00f3mo mejorar la seguridad y simplificar el acceso de los usuarios configurando la autenticaci\u00f3n SSO con Redshift y AWS IAM Identity Center. <\/p>\n","protected":false},"author":2024233,"featured_media":112699,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[289],"tags":[],"marketing_persona":[],"marketing_intent":[],"class_list":["post-112698","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-development-es"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v26.7 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Habilitar la autenticaci\u00f3n SSO de Redshift con AWS IAM Identity Center (Multi-Account)<\/title>\n<meta name=\"description\" content=\"\u00bfEs lo suficientemente segura tu conexi\u00f3n a Redshift? En esta gu\u00eda paso a paso, aprender\u00e1s c\u00f3mo mejorar la seguridad y simplificar el acceso de los usuarios configurando la autenticaci\u00f3n SSO con Redshift y AWS IAM Identity Center.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/elementor.com\/blog\/es\/habilitar-la-autenticacion-sso-de-redshift-con-aws-iam-identity-center-multi-account\/\" \/>\n<meta property=\"og:locale\" content=\"es_ES\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Habilitar la autenticaci\u00f3n SSO de Redshift con AWS IAM Identity Center (Multi-Account)\" \/>\n<meta property=\"og:description\" content=\"\u00bfEs lo suficientemente segura tu conexi\u00f3n a Redshift? En esta gu\u00eda paso a paso, aprender\u00e1s c\u00f3mo mejorar la seguridad y simplificar el acceso de los usuarios configurando la autenticaci\u00f3n SSO con Redshift y AWS IAM Identity Center.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/elementor.com\/blog\/es\/habilitar-la-autenticacion-sso-de-redshift-con-aws-iam-identity-center-multi-account\/\" \/>\n<meta property=\"og:site_name\" content=\"Blog\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/elemntor\/\" \/>\n<meta property=\"article:published_time\" content=\"2023-07-25T13:23:00+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2025-12-01T11:17:47+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/2023_7_Enabling-Redshift-SSO-authentication.png\" \/>\n\t<meta property=\"og:image:width\" content=\"2400\" \/>\n\t<meta property=\"og:image:height\" content=\"1260\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Yuval Press\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@elemntor\" \/>\n<meta name=\"twitter:site\" content=\"@elemntor\" \/>\n<meta name=\"twitter:label1\" content=\"Escrito por\" \/>\n\t<meta name=\"twitter:data1\" content=\"Yuval Press\" \/>\n\t<meta name=\"twitter:label2\" content=\"Tiempo de lectura\" \/>\n\t<meta name=\"twitter:data2\" content=\"8 minutos\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/elementor.com\/blog\/es\/habilitar-la-autenticacion-sso-de-redshift-con-aws-iam-identity-center-multi-account\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/elementor.com\/blog\/es\/habilitar-la-autenticacion-sso-de-redshift-con-aws-iam-identity-center-multi-account\/\"},\"author\":{\"name\":\"Yuval Press\",\"@id\":\"https:\/\/elementor.com\/blog\/es\/#\/schema\/person\/13b9197afb0317055c2c68ec36812410\"},\"headline\":\"Habilitar la autenticaci\u00f3n SSO de Redshift con AWS IAM Identity Center (Multi-Account)\",\"datePublished\":\"2023-07-25T13:23:00+00:00\",\"dateModified\":\"2025-12-01T11:17:47+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/elementor.com\/blog\/es\/habilitar-la-autenticacion-sso-de-redshift-con-aws-iam-identity-center-multi-account\/\"},\"wordCount\":1585,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/elementor.com\/blog\/es\/#organization\"},\"image\":{\"@id\":\"https:\/\/elementor.com\/blog\/es\/habilitar-la-autenticacion-sso-de-redshift-con-aws-iam-identity-center-multi-account\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/2023_7_Enabling-Redshift-SSO-authentication.png\",\"articleSection\":[\"Desarrollo\"],\"inLanguage\":\"es\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/elementor.com\/blog\/es\/habilitar-la-autenticacion-sso-de-redshift-con-aws-iam-identity-center-multi-account\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/elementor.com\/blog\/es\/habilitar-la-autenticacion-sso-de-redshift-con-aws-iam-identity-center-multi-account\/\",\"url\":\"https:\/\/elementor.com\/blog\/es\/habilitar-la-autenticacion-sso-de-redshift-con-aws-iam-identity-center-multi-account\/\",\"name\":\"Habilitar la autenticaci\u00f3n SSO de Redshift con AWS IAM Identity Center (Multi-Account)\",\"isPartOf\":{\"@id\":\"https:\/\/elementor.com\/blog\/es\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/elementor.com\/blog\/es\/habilitar-la-autenticacion-sso-de-redshift-con-aws-iam-identity-center-multi-account\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/elementor.com\/blog\/es\/habilitar-la-autenticacion-sso-de-redshift-con-aws-iam-identity-center-multi-account\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/2023_7_Enabling-Redshift-SSO-authentication.png\",\"datePublished\":\"2023-07-25T13:23:00+00:00\",\"dateModified\":\"2025-12-01T11:17:47+00:00\",\"description\":\"\u00bfEs lo suficientemente segura tu conexi\u00f3n a Redshift? En esta gu\u00eda paso a paso, aprender\u00e1s c\u00f3mo mejorar la seguridad y simplificar el acceso de los usuarios configurando la autenticaci\u00f3n SSO con Redshift y AWS IAM Identity Center.\",\"breadcrumb\":{\"@id\":\"https:\/\/elementor.com\/blog\/es\/habilitar-la-autenticacion-sso-de-redshift-con-aws-iam-identity-center-multi-account\/#breadcrumb\"},\"inLanguage\":\"es\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/elementor.com\/blog\/es\/habilitar-la-autenticacion-sso-de-redshift-con-aws-iam-identity-center-multi-account\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"es\",\"@id\":\"https:\/\/elementor.com\/blog\/es\/habilitar-la-autenticacion-sso-de-redshift-con-aws-iam-identity-center-multi-account\/#primaryimage\",\"url\":\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/2023_7_Enabling-Redshift-SSO-authentication.png\",\"contentUrl\":\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/2023_7_Enabling-Redshift-SSO-authentication.png\",\"width\":2400,\"height\":1260},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/elementor.com\/blog\/es\/habilitar-la-autenticacion-sso-de-redshift-con-aws-iam-identity-center-multi-account\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Blog\",\"item\":\"https:\/\/elementor.com\/blog\/es\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Desarrollo\",\"item\":\"https:\/\/elementor.com\/blog\/es\/category\/development-es\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Habilitar la autenticaci\u00f3n SSO de Redshift con AWS IAM Identity Center (Multi-Account)\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/elementor.com\/blog\/es\/#website\",\"url\":\"https:\/\/elementor.com\/blog\/es\/\",\"name\":\"Elementor\",\"description\":\"Website Builder for WordPress\",\"publisher\":{\"@id\":\"https:\/\/elementor.com\/blog\/es\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/elementor.com\/blog\/es\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"es\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/elementor.com\/blog\/es\/#organization\",\"name\":\"Elementor\",\"url\":\"https:\/\/elementor.com\/blog\/es\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"es\",\"@id\":\"https:\/\/elementor.com\/blog\/es\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2025\/06\/images.png\",\"contentUrl\":\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2025\/06\/images.png\",\"width\":225,\"height\":225,\"caption\":\"Elementor\"},\"image\":{\"@id\":\"https:\/\/elementor.com\/blog\/es\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.facebook.com\/elemntor\/\",\"https:\/\/x.com\/elemntor\",\"https:\/\/www.instagram.com\/elementor\/\",\"https:\/\/www.youtube.com\/channel\/UCt9kG_EDX8zwGSC1-ycJJVA?sub_confirmation=1\",\"https:\/\/en.wikipedia.org\/wiki\/Elementor\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/elementor.com\/blog\/es\/#\/schema\/person\/13b9197afb0317055c2c68ec36812410\",\"name\":\"Yuval Press\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"es\",\"@id\":\"https:\/\/elementor.com\/blog\/es\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/faf67adc84158d77545efc51c560e86b017a0dbc7b31fbd9146ca076480ba73d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/faf67adc84158d77545efc51c560e86b017a0dbc7b31fbd9146ca076480ba73d?s=96&d=mm&r=g\",\"caption\":\"Yuval Press\"},\"description\":\"Senior DataOps Engineer. A long-time fan of professional challenges, endlessly fascinated with the latest technologies. Especially Passionate about the security aspect of DevOps.\",\"url\":\"https:\/\/elementor.com\/blog\/es\/author\/yuvalp\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Habilitar la autenticaci\u00f3n SSO de Redshift con AWS IAM Identity Center (Multi-Account)","description":"\u00bfEs lo suficientemente segura tu conexi\u00f3n a Redshift? En esta gu\u00eda paso a paso, aprender\u00e1s c\u00f3mo mejorar la seguridad y simplificar el acceso de los usuarios configurando la autenticaci\u00f3n SSO con Redshift y AWS IAM Identity Center.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/elementor.com\/blog\/es\/habilitar-la-autenticacion-sso-de-redshift-con-aws-iam-identity-center-multi-account\/","og_locale":"es_ES","og_type":"article","og_title":"Habilitar la autenticaci\u00f3n SSO de Redshift con AWS IAM Identity Center (Multi-Account)","og_description":"\u00bfEs lo suficientemente segura tu conexi\u00f3n a Redshift? En esta gu\u00eda paso a paso, aprender\u00e1s c\u00f3mo mejorar la seguridad y simplificar el acceso de los usuarios configurando la autenticaci\u00f3n SSO con Redshift y AWS IAM Identity Center.","og_url":"https:\/\/elementor.com\/blog\/es\/habilitar-la-autenticacion-sso-de-redshift-con-aws-iam-identity-center-multi-account\/","og_site_name":"Blog","article_publisher":"https:\/\/www.facebook.com\/elemntor\/","article_published_time":"2023-07-25T13:23:00+00:00","article_modified_time":"2025-12-01T11:17:47+00:00","og_image":[{"width":2400,"height":1260,"url":"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/2023_7_Enabling-Redshift-SSO-authentication.png","type":"image\/png"}],"author":"Yuval Press","twitter_card":"summary_large_image","twitter_creator":"@elemntor","twitter_site":"@elemntor","twitter_misc":{"Escrito por":"Yuval Press","Tiempo de lectura":"8 minutos"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/elementor.com\/blog\/es\/habilitar-la-autenticacion-sso-de-redshift-con-aws-iam-identity-center-multi-account\/#article","isPartOf":{"@id":"https:\/\/elementor.com\/blog\/es\/habilitar-la-autenticacion-sso-de-redshift-con-aws-iam-identity-center-multi-account\/"},"author":{"name":"Yuval Press","@id":"https:\/\/elementor.com\/blog\/es\/#\/schema\/person\/13b9197afb0317055c2c68ec36812410"},"headline":"Habilitar la autenticaci\u00f3n SSO de Redshift con AWS IAM Identity Center (Multi-Account)","datePublished":"2023-07-25T13:23:00+00:00","dateModified":"2025-12-01T11:17:47+00:00","mainEntityOfPage":{"@id":"https:\/\/elementor.com\/blog\/es\/habilitar-la-autenticacion-sso-de-redshift-con-aws-iam-identity-center-multi-account\/"},"wordCount":1585,"commentCount":0,"publisher":{"@id":"https:\/\/elementor.com\/blog\/es\/#organization"},"image":{"@id":"https:\/\/elementor.com\/blog\/es\/habilitar-la-autenticacion-sso-de-redshift-con-aws-iam-identity-center-multi-account\/#primaryimage"},"thumbnailUrl":"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/2023_7_Enabling-Redshift-SSO-authentication.png","articleSection":["Desarrollo"],"inLanguage":"es","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/elementor.com\/blog\/es\/habilitar-la-autenticacion-sso-de-redshift-con-aws-iam-identity-center-multi-account\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/elementor.com\/blog\/es\/habilitar-la-autenticacion-sso-de-redshift-con-aws-iam-identity-center-multi-account\/","url":"https:\/\/elementor.com\/blog\/es\/habilitar-la-autenticacion-sso-de-redshift-con-aws-iam-identity-center-multi-account\/","name":"Habilitar la autenticaci\u00f3n SSO de Redshift con AWS IAM Identity Center (Multi-Account)","isPartOf":{"@id":"https:\/\/elementor.com\/blog\/es\/#website"},"primaryImageOfPage":{"@id":"https:\/\/elementor.com\/blog\/es\/habilitar-la-autenticacion-sso-de-redshift-con-aws-iam-identity-center-multi-account\/#primaryimage"},"image":{"@id":"https:\/\/elementor.com\/blog\/es\/habilitar-la-autenticacion-sso-de-redshift-con-aws-iam-identity-center-multi-account\/#primaryimage"},"thumbnailUrl":"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/2023_7_Enabling-Redshift-SSO-authentication.png","datePublished":"2023-07-25T13:23:00+00:00","dateModified":"2025-12-01T11:17:47+00:00","description":"\u00bfEs lo suficientemente segura tu conexi\u00f3n a Redshift? En esta gu\u00eda paso a paso, aprender\u00e1s c\u00f3mo mejorar la seguridad y simplificar el acceso de los usuarios configurando la autenticaci\u00f3n SSO con Redshift y AWS IAM Identity Center.","breadcrumb":{"@id":"https:\/\/elementor.com\/blog\/es\/habilitar-la-autenticacion-sso-de-redshift-con-aws-iam-identity-center-multi-account\/#breadcrumb"},"inLanguage":"es","potentialAction":[{"@type":"ReadAction","target":["https:\/\/elementor.com\/blog\/es\/habilitar-la-autenticacion-sso-de-redshift-con-aws-iam-identity-center-multi-account\/"]}]},{"@type":"ImageObject","inLanguage":"es","@id":"https:\/\/elementor.com\/blog\/es\/habilitar-la-autenticacion-sso-de-redshift-con-aws-iam-identity-center-multi-account\/#primaryimage","url":"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/2023_7_Enabling-Redshift-SSO-authentication.png","contentUrl":"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/2023_7_Enabling-Redshift-SSO-authentication.png","width":2400,"height":1260},{"@type":"BreadcrumbList","@id":"https:\/\/elementor.com\/blog\/es\/habilitar-la-autenticacion-sso-de-redshift-con-aws-iam-identity-center-multi-account\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Blog","item":"https:\/\/elementor.com\/blog\/es\/"},{"@type":"ListItem","position":2,"name":"Desarrollo","item":"https:\/\/elementor.com\/blog\/es\/category\/development-es\/"},{"@type":"ListItem","position":3,"name":"Habilitar la autenticaci\u00f3n SSO de Redshift con AWS IAM Identity Center (Multi-Account)"}]},{"@type":"WebSite","@id":"https:\/\/elementor.com\/blog\/es\/#website","url":"https:\/\/elementor.com\/blog\/es\/","name":"Elementor","description":"Website Builder for WordPress","publisher":{"@id":"https:\/\/elementor.com\/blog\/es\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/elementor.com\/blog\/es\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"es"},{"@type":"Organization","@id":"https:\/\/elementor.com\/blog\/es\/#organization","name":"Elementor","url":"https:\/\/elementor.com\/blog\/es\/","logo":{"@type":"ImageObject","inLanguage":"es","@id":"https:\/\/elementor.com\/blog\/es\/#\/schema\/logo\/image\/","url":"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2025\/06\/images.png","contentUrl":"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2025\/06\/images.png","width":225,"height":225,"caption":"Elementor"},"image":{"@id":"https:\/\/elementor.com\/blog\/es\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/elemntor\/","https:\/\/x.com\/elemntor","https:\/\/www.instagram.com\/elementor\/","https:\/\/www.youtube.com\/channel\/UCt9kG_EDX8zwGSC1-ycJJVA?sub_confirmation=1","https:\/\/en.wikipedia.org\/wiki\/Elementor"]},{"@type":"Person","@id":"https:\/\/elementor.com\/blog\/es\/#\/schema\/person\/13b9197afb0317055c2c68ec36812410","name":"Yuval Press","image":{"@type":"ImageObject","inLanguage":"es","@id":"https:\/\/elementor.com\/blog\/es\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/faf67adc84158d77545efc51c560e86b017a0dbc7b31fbd9146ca076480ba73d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/faf67adc84158d77545efc51c560e86b017a0dbc7b31fbd9146ca076480ba73d?s=96&d=mm&r=g","caption":"Yuval Press"},"description":"Senior DataOps Engineer. A long-time fan of professional challenges, endlessly fascinated with the latest technologies. Especially Passionate about the security aspect of DevOps.","url":"https:\/\/elementor.com\/blog\/es\/author\/yuvalp\/"}]}},"_links":{"self":[{"href":"https:\/\/elementor.com\/blog\/es\/wp-json\/wp\/v2\/posts\/112698","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/elementor.com\/blog\/es\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/elementor.com\/blog\/es\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/elementor.com\/blog\/es\/wp-json\/wp\/v2\/users\/2024233"}],"replies":[{"embeddable":true,"href":"https:\/\/elementor.com\/blog\/es\/wp-json\/wp\/v2\/comments?post=112698"}],"version-history":[{"count":3,"href":"https:\/\/elementor.com\/blog\/es\/wp-json\/wp\/v2\/posts\/112698\/revisions"}],"predecessor-version":[{"id":148789,"href":"https:\/\/elementor.com\/blog\/es\/wp-json\/wp\/v2\/posts\/112698\/revisions\/148789"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/elementor.com\/blog\/es\/wp-json\/wp\/v2\/media\/112699"}],"wp:attachment":[{"href":"https:\/\/elementor.com\/blog\/es\/wp-json\/wp\/v2\/media?parent=112698"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/elementor.com\/blog\/es\/wp-json\/wp\/v2\/categories?post=112698"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/elementor.com\/blog\/es\/wp-json\/wp\/v2\/tags?post=112698"},{"taxonomy":"marketing_persona","embeddable":true,"href":"https:\/\/elementor.com\/blog\/es\/wp-json\/wp\/v2\/marketing_persona?post=112698"},{"taxonomy":"marketing_intent","embeddable":true,"href":"https:\/\/elementor.com\/blog\/es\/wp-json\/wp\/v2\/marketing_intent?post=112698"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}