{"id":113016,"date":"2023-07-25T16:23:00","date_gmt":"2023-07-25T13:23:00","guid":{"rendered":"https:\/\/elementor.com\/blog\/habilitando-autenticacao-sso-do-redshift-com-o-aws-iam-identity-center-multi-conta\/"},"modified":"2025-12-01T13:17:47","modified_gmt":"2025-12-01T11:17:47","slug":"habilitando-autenticacao-sso-do-redshift-com-o-aws-iam-identity-center-multi-conta","status":"publish","type":"post","link":"https:\/\/elementor.com\/blog\/pt-br\/habilitando-autenticacao-sso-do-redshift-com-o-aws-iam-identity-center-multi-conta\/","title":{"rendered":"Habilitando autentica\u00e7\u00e3o SSO do Redshift com o AWS IAM Identity Center (Multi-Conta)"},"content":{"rendered":"\n<p>Neste guia passo a passo, aprenderemos como configurar a autentica\u00e7\u00e3o SSO com o Redshift e AWS IAM Identity Center para aumentar a seguran\u00e7a e facilitar o acesso dos usu\u00e1rios.<\/p>\n\n<figure class=\"wp-block-image size-full\"><img fetchpriority=\"high\" decoding=\"async\" width=\"751\" height=\"161\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Redshift-SSO.drawio.png\" alt=\"\" class=\"wp-image-85731\" \/><\/figure>\n\n<h3 class=\"wp-block-heading\" id=\"Used-Sources:\">Fontes Utilizadas:<\/h3>\n\n<ul class=\"wp-block-list\"><li><a href=\"https:\/\/aws.amazon.com\/blogs\/big-data\/federated-authentication-to-amazon-redshift-using-aws-single-sign-on\/\" target=\"_blank\" rel=\"noreferrer noopener\">https:\/\/aws.amazon.com\/blogs\/big-data\/federated-authentication-to-amazon-redshift-using-aws-single-sign-on\/<\/a><\/li><li><a href=\"https:\/\/aws.amazon.com\/blogs\/big-data\/amazon-redshift-identity-federation-with-multi-factor-authentication\/\" target=\"_blank\" rel=\"noreferrer noopener\">https:\/\/aws.amazon.com\/blogs\/big-data\/amazon-redshift-identity-federation-with-multi-factor-authentication\/<\/a><\/li><\/ul>\n\n<h3 class=\"wp-block-heading\" id=\"Terms-Dictionary:\">Dicion\u00e1rio de Termos:<\/h3>\n\n<figure class=\"wp-block-table\"><table class=\"has-fixed-layout\"><tbody><tr><th class=\"has-text-align-left\" data-align=\"left\"><strong>Termo<\/strong><\/th><th class=\"has-text-align-left\" data-align=\"left\"><strong>Significado<\/strong><\/th><\/tr><tr><td class=\"has-text-align-left\" data-align=\"left\">Conta do Identity Center<\/td><td class=\"has-text-align-left\" data-align=\"left\">A conta onde o IAM Identity Center est\u00e1 configurado.<\/td><\/tr><tr><td class=\"has-text-align-left\" data-align=\"left\">Conta do Redshift<\/td><td class=\"has-text-align-left\" data-align=\"left\">A conta filha da conta do Identity Center que cont\u00e9m o Cluster Redshift ao qual queremos nos conectar.<\/td><\/tr><tr><td class=\"has-text-align-left\" data-align=\"left\">IDP<\/td><td class=\"has-text-align-left\" data-align=\"left\">Provedor de Identidade<\/td><\/tr><\/tbody><\/table><\/figure>\n\n<h3 class=\"wp-block-heading\" id=\"What's-Redshift?\">O que \u00e9 o Redshift?<\/h3>\n\n<p><a class=\"wpil_keyword_link\" href=\"https:\/\/elementor.com\/blog\/pt-br\/11-melhores-hospedagens-em-nuvem-para-wordpress-em-year\/\" title=\"10 Best Cloud Hosting for WordPress in 2025\" data-wpil-keyword-link=\"linked\" data-wpil-monitor-id=\"23628\">AWS<\/a> Redshift \u00e9 um servi\u00e7o de data warehousing totalmente gerenciado fornecido pela Amazon Web Services (AWS).<br \/>Ele \u00e9 projetado para lidar com cargas de trabalho de an\u00e1lise de dados em grande escala e permite que as organiza\u00e7\u00f5es analisem grandes quantidades de dados de forma r\u00e1pida e econ\u00f4mica.<\/p>\n\n<h3 class=\"wp-block-heading\" id=\"What&#x2019;s-IAM-Identity-Center?\">O que \u00e9 o IAM Identity Center?<\/h3>\n\n<p>O IAM Identity Center fornece um local onde voc\u00ea pode criar ou conectar usu\u00e1rios da for\u00e7a de trabalho e gerenciar centralmente seu acesso a todas as suas contas e aplicativos da <a class=\"wpil_keyword_link\" href=\"https:\/\/elementor.com\/blog\/pt-br\/11-melhores-hospedagens-em-nuvem-para-wordpress-em-year\/\" title=\"10 Best Cloud Hosting for WordPress in 2025\" data-wpil-keyword-link=\"linked\" data-wpil-monitor-id=\"31191\">AWS<\/a>.<br \/>Voc\u00ea pode usar permiss\u00f5es de v\u00e1rias contas para atribuir acesso dos usu\u00e1rios da for\u00e7a de trabalho \u00e0s contas da AWS.<\/p>\n\n<h3 class=\"wp-block-heading\" id=\"Why-SSO?\">Por que SSO?<\/h3>\n\n<p>SSO <strong>reduz o n\u00famero de superf\u00edcies de ataque <\/strong>porque os usu\u00e1rios fazem login apenas uma vez por dia e usam apenas um conjunto de credenciais.<br \/>Reduzir o login para um conjunto de credenciais melhora a seguran\u00e7a da empresa.\nQuando os funcion\u00e1rios precisam usar senhas separadas para cada aplicativo, geralmente n\u00e3o o fazem. <\/p>\n\n<h2 class=\"wp-block-heading\" id=\"Prerequisites\">Pr\u00e9-requisitos<\/h2>\n\n<ol class=\"wp-block-list\"><li>IAM Identity Center pr\u00e9-configurado \u2192 <a href=\"https:\/\/docs.aws.amazon.com\/singlesignon\/latest\/userguide\/getting-started.html\" target=\"_blank\" rel=\"noreferrer noopener\">Primeiros passos &#8211; AWS IAM Identity Center.<\/a><\/li><li>Cluster Redshift pr\u00e9-configurado com acesso administrativo.<\/li><li>Usu\u00e1rio e senha da Fonte de Identidade (Okta, PingOne, etc.).<\/li><li>JetBrains DataGrip instalado (pode ser a vers\u00e3o gratuita).<\/li><\/ol>\n\n<h2 class=\"wp-block-heading\" id=\"Step-by-Step:\">Passo a Passo:<\/h2>\n\n<h3 class=\"wp-block-heading\" id=\"Configure-Identity-Center-application\">Configurar aplicativo do Identity Center<\/h3>\n\n<p>Nosso primeiro passo ser\u00e1 criar um novo aplicativo do AWS Identity Center <strong>na conta do Identity Center <\/strong>para ser usado como o principal canal entre os usu\u00e1rios e o cluster Redshift.<\/p>\n\n<ol class=\"wp-block-list\"><li>No painel lateral do IAM Identity Center, clique em \u201cAplicativos\u201d.<br \/><img decoding=\"async\" width=\"278\" height=\"71\" class=\"wp-image-85732\" style=\"width: 278px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-15.25.46.png\" alt=\"\" \/><br \/> <\/li><li>No canto superior direito, clique em \u201cAdicionar aplicativo\u201d.<br \/><img decoding=\"async\" width=\"1402\" height=\"152\" class=\"wp-image-85733\" style=\"width: 1402px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-15.27.18.png\" alt=\"\" \/><\/li><li>Marque \u201cadicionar aplicativo SAML 2.0 personalizado\u201d e clique em \u201cPr\u00f3ximo\u201d.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"1057\" height=\"178\" class=\"wp-image-85734\" style=\"width: 1057px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-15.28.44.png\" alt=\"\" \/><\/li><li>Defina um nome de exibi\u00e7\u00e3o apropriado, chamaremos nosso aplicativo de \u201cRedshift-ReadOnly\u201d, pois este aplicativo ser\u00e1 usado para obter acesso somente leitura aos dados do cluster.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"965\" height=\"201\" class=\"wp-image-85735\" style=\"width: 965px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-15.32.25.png\" alt=\"\" \/><\/li><li>Baixe o arquivo de metadados SAML do Identity Center, usaremos ele mais tarde para configurar nosso aplicativo da conta Redshift.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"872\" height=\"420\" class=\"wp-image-85736\" style=\"width: 872px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-15.33.39.png\" alt=\"\" \/><br \/> <\/li><li>Copie a <a class=\"wpil_keyword_link\" href=\"https:\/\/elementor.com\/blog\/pt-br\/o-que-e-um-urlestrutura-sintaxe-melhores-praticas\/\" title=\"What is a URL? Structure, Syntax &#038; Best Practices\" data-wpil-keyword-link=\"linked\" data-wpil-monitor-id=\"23627\">URL<\/a> de login do aplicativo, pois precisaremos dela mais tarde.<br \/><\/li><li>Em seguida, configuraremos o <strong>ACS do aplicativo SAML<\/strong> (tamb\u00e9m conhecido como Servi\u00e7o de Consumidor de Asser\u00e7\u00e3o).<br \/>Brevemente, ACS \u00e9 o local onde a resposta do aplicativo SAML ser\u00e1 enviada.<br \/><br \/>Como usaremos o <strong>driver JDBC do AWS Redshift<\/strong> para conectar ao nosso cluster Redshift, precisaremos definir o ACS do aplicativo para <code>http:\/\/localhost:7890\/redshift\/<\/code> &#8211; pois o driver JDBC inicia um servidor ouvindo na porta 7890 por padr\u00e3o.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"308\" height=\"74\" class=\"wp-image-85737\" style=\"width: 308px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-15.56.40.png\" alt=\"\" \/><img decoding=\"async\" alt=\"\" src=\"https:\/\/elementor.atlassian.net\/ab00f622-901e-48a6-af15-55b11fe407f4#media-blob-url=true&amp;id=a1039895-cc77-4376-8887-687b0a94ffae&amp;collection=contentId-664896059&amp;contextId=664896059&amp;height=74&amp;width=308&amp;alt=\" \/><\/li><li>Para restringir a asser\u00e7\u00e3o do aplicativo SAML apenas ao redshift, configuraremos o campo \u201cP\u00fablico do SAML do Aplicativo\u201d para <code>urn:amazon:webservices:redshift<\/code>.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"247\" height=\"70\" class=\"wp-image-85738\" style=\"width: 247px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-15.58.17.png\" alt=\"\" \/> <\/li><\/ol>\n\n<h3 class=\"wp-block-heading\" id=\"Create-Identity-Provider\">Criar Provedor de Identidade<\/h3>\n\n<p>Depois de criarmos nosso aplicativo <strong>Redshift-ReadOnly<\/strong> na conta do Identity Center, precisamos configurar um provedor de identidade para ser usado pelo aplicativo <strong>Redshift-ReadOnly <\/strong>para conectar ao cluster Redshift da conta Redshift.<\/p>\n\n<ol class=\"wp-block-list\"><li>No painel lateral do IAM Dashboard da sua conta Redshift, clique em <strong>Provedores de Identidade<\/strong>.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"271\" height=\"431\" class=\"wp-image-85742\" style=\"width: 271px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-16.19.31.png\" alt=\"\" \/> <\/li><li>No canto superior direito, clique em \u201cAdicionar provedor\u201d.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"1328\" height=\"78\" class=\"wp-image-85743\" style=\"width: 1328px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-16.21.05.png\" alt=\"\" \/><br \/><\/li><li>Preencha os detalhes do novo IDP:<ol start=\"1\"><li>Defina o \u201cNome do provedor\u201d como Redshift-ReadOnly (mesmo que nosso aplicativo configurado anteriormente).<\/li><li>Envie o arquivo de metadados que baixamos durante o processo de configura\u00e7\u00e3o do nosso aplicativo IAM Identity Center.<img decoding=\"async\" alt=\"\" src=\"https:\/\/elementor.atlassian.net\/f2db2cb3-28d0-4578-ac63-f813a350a2d9#media-blob-url=true&amp;id=af2a9aac-ed5d-4c7c-8aea-e91254cfdeaf&amp;collection=contentId-664896059&amp;contextId=664896059&amp;height=597&amp;width=866&amp;alt=\" \/> Clique em \u201cAdicionar provedor\u201d e finalize.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"866\" height=\"597\" class=\"wp-image-85744\" style=\"width: 866px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-16.22.59.png\" alt=\"\" \/><\/li><\/ol><\/li><li>V\u00e1 para a p\u00e1gina de descri\u00e7\u00e3o do IDP e copie o <strong>ARN do IDP<\/strong>, usaremos ele mais tarde<strong>.<\/strong><br \/><img loading=\"lazy\" decoding=\"async\" width=\"626\" height=\"321\" class=\"wp-image-85745\" style=\"width: 626px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-17.04.43.png\" alt=\"\" \/><img decoding=\"async\" alt=\"\" src=\"https:\/\/elementor.atlassian.net\/0a06764a-c351-43f3-810a-15da912d7c05#media-blob-url=true&amp;id=39497b0d-7a31-4add-8c83-107db8043f05&amp;collection=contentId-664896059&amp;contextId=664896059&amp;height=321&amp;width=626&amp;alt=\" \/><\/li><\/ol>\n\n<h3 class=\"wp-block-heading\" id=\"Create-IAM-Role-&amp;-Policy\">Criar Fun\u00e7\u00e3o e Pol\u00edtica do IAM<\/h3>\n\n<p>Agora que criamos o Provedor de Identidade para ser usado pelo nosso aplicativo IAM Identity Center, podemos criar a fun\u00e7\u00e3o que ser\u00e1 usada para conectar ao cluster Redshift em si.<\/p>\n\n<ol class=\"wp-block-list\"><li>No painel lateral do IAM Dashboard da sua conta Redshift, clique em <strong>Fun\u00e7\u00f5es<\/strong>.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"271\" height=\"437\" class=\"wp-image-85747\" style=\"width: 271px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-16.14.15.png\" alt=\"\" \/> <\/li><li>No canto superior direito, clique em \u201cCriar Fun\u00e7\u00e3o\u201d.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"1341\" height=\"128\" class=\"wp-image-85748\" style=\"width: 1341px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-16.15.37.png\" alt=\"\" \/><br \/> <\/li><li>Crie uma entidade confi\u00e1vel do tipo federa\u00e7\u00e3o SAML 2.0 e defina o seguinte:<ol start=\"1\"><li>Defina o IDP para o IDP \u201cRedshift-ReadOnly\u201d que criamos anteriormente.<\/li><li>Marque o bot\u00e3o de r\u00e1dio \u201cPermitir acesso program\u00e1tico apenas\u201d e defina:<br \/><strong>Atributo: \u201cSAML:aud\u201d<\/strong> \u2192 definindo qual p\u00fablico pode assumir esta fun\u00e7\u00e3o.<br \/><strong>Valor: \u201c<\/strong><a href=\"http:\/\/localhost:7890\/redshift\/\"><strong>http:\/\/localhost:7890\/redshift\/<\/strong><\/a><strong>\u201d<\/strong> \u2192 Definindo o p\u00fablico para nosso servidor local do driver JDBC do Redshift (conforme explicado na primeira se\u00e7\u00e3o).<br \/><img loading=\"lazy\" decoding=\"async\" width=\"1190\" height=\"780\" class=\"wp-image-85749\" style=\"width: 1190px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-16.44.02.png\" alt=\"\" \/><br \/>Clique em \u201cPr\u00f3ximo\u201d.<br \/><\/li><\/ol><\/li><li>Clique em \u201cCriar pol\u00edtica\u201d e uma nova aba ser\u00e1 aberta.<img decoding=\"async\" alt=\"\" src=\"https:\/\/elementor.atlassian.net\/5f413ee0-9082-48fe-bbf9-1266e384f039#media-blob-url=true&amp;id=f54050e8-48e9-4c67-8e16-34cb159b53b5&amp;collection=contentId-664896059&amp;contextId=664896059&amp;height=165&amp;width=1303&amp;alt=\" \/> <\/li><li>Selecione \u201cJSON\u201d.<img decoding=\"async\" alt=\"\" src=\"https:\/\/elementor.atlassian.net\/38e95090-ae9b-4366-9c1e-4c24cab89231#media-blob-url=true&amp;id=75587102-9ee1-4ce6-abd5-c83d2c872050&amp;collection=contentId-664896059&amp;contextId=664896059&amp;height=135&amp;width=1139&amp;alt=\" \/> <\/li><li>No painel do editor de Pol\u00edticas, cole a seguinte declara\u00e7\u00e3o de pol\u00edtica e edite os seguintes valores no escopo \u201cRecurso\u201d para corresponder aos seus pr\u00f3prios: <code>&lt;region&gt;, &lt;account&gt;, &lt;clusterName&gt;<\/code>.<br \/>\t\t<div data-elementor-type=\"container\" data-elementor-id=\"85752\" class=\"elementor elementor-85752\" data-elementor-post-type=\"elementor_library\">\n\t\t\t\t<div class=\"elementor-element elementor-element-1bd19134 e-flex e-con-boxed e-con e-parent\" data-id=\"1bd19134\" data-element_type=\"container\">\n\t\t\t\t\t<div class=\"e-con-inner\">\n\t\t\t\t<div class=\"elementor-element elementor-element-1630fc85 elementor-widget elementor-widget-code-highlight\" data-id=\"1630fc85\" data-element_type=\"widget\" data-widget_type=\"code-highlight.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"prismjs-tomorrow copy-to-clipboard \">\n\t\t\t<pre data-line=\"\" class=\"highlight-height language-json line-numbers\">\n\t\t\t\t<code readonly=\"true\" class=\"language-json\">\n\t\t\t\t\t<xmp>{\n    \"Version\": \"2012-10-17\",\n    \"Statement\": [\n        {\n            \"Effect\": \"Allow\",\n            \"Action\": [\n                \"redshift:CreateClusterUser\",\n                \"redshift:JoinGroup\",\n                \"redshift:GetClusterCredentials\",\n                \"redshift:ListSchemas\",\n                \"redshift:ListTables\",\n                \"redshift:ListDatabases\",\n                \"redshift:ExecuteQuery\",\n                \"redshift:FetchResults\",\n                \"redshift:CancelQuery\",\n                \"redshift:DescribeClusters\",\n                \"redshift:DescribeQuery\",\n                \"redshift:DescribeTable\"\n            ],\n            \"Resource\": [\n                \"arn:aws:redshift:<region>:<account>:cluster:<clusterName>\",\n                \"arn:aws:redshift:<region>:<account>:dbuser:<clusterName>\/${redshift:DbUser}\",\n                \"arn:aws:redshift:<region>:<account>:dbname:<clusterName>\/${redshift:DbName}\",\n                \"arn:aws:redshift:<region>:<account>:dbgroup:<clusterName>\/bi_users_group\",\n            ]\n        }\n    ]\n}<\/xmp>\n\t\t\t\t<\/code>\n\t\t\t<\/pre>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t<br \/><\/li><li>Nomeie a pol\u00edtica como \u201cRedshift-ReadOnly-policy\u201d e clique em \u201cCreate policy\u201d.<img decoding=\"async\" alt=\"\" src=\"https:\/\/elementor.atlassian.net\/638f1d27-23e5-4a2f-8351-3f13ebf6a7f1#media-blob-url=true&amp;id=e6d9b9f7-ff16-4b5a-851e-162a99c4d39d&amp;collection=contentId-664896059&amp;contextId=664896059&amp;height=287&amp;width=1042&amp;alt=\" \/> <br \/><img loading=\"lazy\" decoding=\"async\" width=\"1042\" height=\"287\" class=\"wp-image-85756\" style=\"width: 1042px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-16.55.08.png\" alt=\"\" \/><\/li><li>Volte para a aba de origem onde come\u00e7amos a criar nossa fun\u00e7\u00e3o IAM<br \/>\u2192 clique em atualizar \u2192 digite \u201cRedshift-ReadOnly-policy\u201d na barra de pesquisa \u2192 marque a pol\u00edtica \u201cRedshift-ReadOnly-policy\u201d \u2192 clique em \u201cNext\u201d.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"1136\" height=\"359\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-16.56.59.png\" class=\"wp-image-85757\" style=\"width: 1136px\" alt=\"\" \/><\/li><li>Nomeie a fun\u00e7\u00e3o como \u201cRedshift-ReadOnly-role\u201d e clique em \u201cCreate role\u201d no canto inferior direito.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"618\" height=\"244\" class=\"wp-image-85758\" style=\"width: 618px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-16.59.54.png\" alt=\"\" \/><img decoding=\"async\" alt=\"\" src=\"https:\/\/elementor.atlassian.net\/f0080f98-f453-40bb-83c7-24e81210a9f2#media-blob-url=true&amp;id=7ece7e5c-f65e-4144-9c4a-e4856fa6e8db&amp;collection=contentId-664896059&amp;contextId=664896059&amp;height=244&amp;width=618&amp;alt=\" \/><\/li><li>Agora que criamos a fun\u00e7\u00e3o IAM, v\u00e1 para a p\u00e1gina de descri\u00e7\u00e3o dela e copie o <strong>ARN da fun\u00e7\u00e3o<\/strong>, usaremos isso mais tarde.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"1126\" height=\"320\" class=\"wp-image-85759\" style=\"width: 1126px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-17.08.58.png\" alt=\"\" \/><\/li><\/ol>\n\n<h3 class=\"wp-block-heading\" id=\"Configure-the-IAM-Identity-Center-Application-Attributes\">Configure os Atributos do Aplicativo do IAM Identity Center<\/h3>\n\n<p>Para configurar nosso aplicativo para funcionar com o Redshift, precisamos configurar alguns atributos do aplicativo que ir\u00e3o orient\u00e1-lo sobre \u201ccomo se conectar\u201d a ele.<\/p>\n\n<ol class=\"wp-block-list\"><li>No IAM Identity Center, v\u00e1 para o painel de Aplicativos e escolha o aplicativo que criamos anteriormente.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"880\" height=\"506\" class=\"wp-image-85761\" style=\"width: 880px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-17.21.15.png\" alt=\"\" \/><br \/> <\/li><li>Atribua usu\u00e1rios e grupos que voc\u00ea gostaria que tivessem permiss\u00f5es para este aplicativo \u2192 <a rel=\"noreferrer noopener\" href=\"https:\/\/docs.aws.amazon.com\/singlesignon\/latest\/userguide\/assignuserstoapp.html\" target=\"_blank\">Atribuir acesso de usu\u00e1rio a aplicativos no console do IAM Identity Center &#8211; AWS IAM Identity Center (sucessor do AWS Single Sign-On)<\/a>.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"1368\" height=\"419\" class=\"wp-image-85762\" style=\"width: 1368px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-17.25.48.png\" alt=\"\" \/><br \/> <\/li><li>Clique em \u201cattribute mappings\u201d.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"1395\" height=\"345\" class=\"wp-image-85763\" style=\"width: 1395px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-17.27.54.png\" alt=\"\" \/> <\/li><li>Defina os atributos de acordo com a tabela a seguir e substitua o <code>&lt;role_arn&gt;<\/code> &amp; <code>&lt;idp_arn&gt;<\/code> espa\u00e7o reservado pelos ARNs que voc\u00ea copiou nas etapas anteriores:<\/li><\/ol>\n\n<figure class=\"wp-block-table\"><table class=\"has-fixed-layout\"><tbody><tr><th class=\"has-text-align-left\" data-align=\"left\"><strong>Atributo<\/strong><\/th><th class=\"has-text-align-left\" data-align=\"left\"><strong>Valor<\/strong><\/th><th class=\"has-text-align-left\" data-align=\"left\"><strong>Explica\u00e7\u00e3o<\/strong><\/th><\/tr><tr><td class=\"has-text-align-left\" data-align=\"left\">Assunto (atributo padr\u00e3o)<\/td><td class=\"has-text-align-left\" data-align=\"left\">${user:email}<\/td><td class=\"has-text-align-left\" data-align=\"left\">O assunto utilizado.<\/td><\/tr><tr><td class=\"has-text-align-left\" data-align=\"left\">https:\/\/aws.amazon.com\/SAML\/Attributes\/RoleSessionName<\/td><td class=\"has-text-align-left\" data-align=\"left\">${user:email}<\/td><td class=\"has-text-align-left\" data-align=\"left\">O nome da sess\u00e3o criada contra o cluster.<\/td><\/tr><tr><td class=\"has-text-align-left\" data-align=\"left\">https:\/\/redshift.amazon.com\/SAML\/Attributes\/AutoCreate<\/td><td class=\"has-text-align-left\" data-align=\"left\">true<\/td><td class=\"has-text-align-left\" data-align=\"left\">Configure o aplicativo para criar o usu\u00e1rio do Redshift automaticamente na autentica\u00e7\u00e3o.<\/td><\/tr><tr><td class=\"has-text-align-left\" data-align=\"left\">https:\/\/aws.amazon.com\/SAML\/Attributes\/Role<\/td><td class=\"has-text-align-left\" data-align=\"left\">,<\/td><td class=\"has-text-align-left\" data-align=\"left\">A fun\u00e7\u00e3o IAM e o IDP a serem usados para conectar ao Redshift.<\/td><\/tr><tr><td class=\"has-text-align-left\" data-align=\"left\">https:\/\/redshift.amazon.com\/SAML\/Attributes\/DbUser<\/td><td class=\"has-text-align-left\" data-align=\"left\">${user:email}<\/td><td class=\"has-text-align-left\" data-align=\"left\">O nome do usu\u00e1rio do banco de dados a ser criado.<\/td><\/tr><tr><td class=\"has-text-align-left\" data-align=\"left\">https:\/\/redshift.amazon.com\/SAML\/Attributes\/DbGroups<\/td><td class=\"has-text-align-left\" data-align=\"left\">readonly<\/td><td class=\"has-text-align-left\" data-align=\"left\">O grupo do banco de dados ao qual o novo usu\u00e1rio ser\u00e1 atribu\u00eddo.<\/td><\/tr><\/tbody><\/table><\/figure>\n\n<figure class=\"wp-block-image size-full\"><img loading=\"lazy\" decoding=\"async\" width=\"1406\" height=\"716\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-17.38.32.png\" alt=\"\" class=\"wp-image-85764\" \/><\/figure>\n\n<p>Clique em \u201cSave changes\u201d.<\/p>\n\n<h3 class=\"wp-block-heading\" id=\"Create-Redshift-group-&amp;-Grant-permissions\">Criar grupo Redshift &amp; Conceder permiss\u00f5es<\/h3>\n\n<p>Nesta etapa, configuraremos o <code>readonly<\/code> grupo Redshift (conforme definido nos atributos do Aplicativo na etapa anterior) ao qual cada usu\u00e1rio ser\u00e1 atribu\u00eddo ao se conectar via o aplicativo.<\/p>\n\n<ol class=\"wp-block-list\"><li>Conecte-se ao seu cluster Redshift com um usu\u00e1rio privilegiado (superusu\u00e1rio).<\/li><li>Execute o seguinte script SQL para criar o grupo <code>readonly<\/code> e atribuir a ele <code>read<\/code> permiss\u00f5es para o esquema p\u00fablico (o esquema padr\u00e3o).<br \/>\t\t<div data-elementor-type=\"container\" data-elementor-id=\"85766\" class=\"elementor elementor-85766\" data-elementor-post-type=\"elementor_library\">\n\t\t\t\t<div class=\"elementor-element elementor-element-13d86d9a e-flex e-con-boxed e-con e-parent\" data-id=\"13d86d9a\" data-element_type=\"container\">\n\t\t\t\t\t<div class=\"e-con-inner\">\n\t\t\t\t<div class=\"elementor-element elementor-element-885ec86 elementor-widget elementor-widget-code-highlight\" data-id=\"885ec86\" data-element_type=\"widget\" data-widget_type=\"code-highlight.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<div class=\"prismjs-tomorrow copy-to-clipboard \">\n\t\t\t<pre data-line=\"\" class=\"highlight-height language-sql line-numbers\">\n\t\t\t\t<code readonly=\"true\" class=\"language-sql\">\n\t\t\t\t\t<xmp>create group readonly;\ngrant usage on schema public to group readonly;\ngrant select on all tables in schema public to group readonly;<\/xmp>\n\t\t\t\t<\/code>\n\t\t\t<\/pre>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t<\/li><\/ol>\n\n<h3 class=\"wp-block-heading\" id=\"Configure-the-DataGrip-client-Data-Source\">Configure a Fonte de Dados do cliente DataGrip<\/h3>\n\n<p><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/elementor.com\/cdn-cgi\/image\/f=auto,w=20,h=20https:\/\/elementor.atlassian.net\/gateway\/api\/emoji\/bc79594b-ab29-4483-8266-81959ca3f62f\/1f389\/path\" alt=\":tada:\" width=\"20\" height=\"20\" \/> Estamos todos configurados e finalmente prestes a colher nossos frutos! <img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/elementor.atlassian.net\/gateway\/api\/emoji\/bc79594b-ab29-4483-8266-81959ca3f62f\/1f389\/path\" alt=\":tada:\" width=\"20\" height=\"20\" \/><br \/>Nesta etapa, configuraremos uma fonte de dados DataGrip que ser\u00e1 usada como a conex\u00e3o entre n\u00f3s e o cluster Redshift.<\/p>\n\n<ol class=\"wp-block-list\"><li>Abra o DataGrip e crie uma nova fonte de dados Redshift.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"467\" height=\"114\" class=\"wp-image-85769\" style=\"width: 467px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-17.52.46.png\" alt=\"\" \/> <\/li><li>Um assistente de fonte de dados ser\u00e1 aberto para voc\u00ea configurar a conex\u00e3o, defina os seguintes atributos:<ol start=\"1\"><li><strong>Nome<\/strong>: Redshift ReadOnly SSO.<\/li><li><strong>Host<\/strong>:<strong> <\/strong>endpoint do seu servidor Redshift.<\/li><li><strong>Usu\u00e1rio<\/strong>: seu email identificador (ser\u00e1 usado como o Usu\u00e1rio do DB Redshift).<\/li><li><strong>Senha<\/strong>: a senha que voc\u00ea configurou na sua Fonte de Identidade (Okta, PingOne, etc.)<\/li><li><strong>Banco de Dados<\/strong>: o banco de dados ao qual voc\u00ea deseja se conectar.<\/li><li><strong>URL<\/strong>: a URL estar\u00e1 principalmente configurada neste ponto (devido ao preenchimento autom\u00e1tico do DataGrip), tudo o que resta para voc\u00ea fazer \u00e9 mudar o prefixo da URL JDBC de <code>jdbc:redshift:\/\/<\/code> para <code>jdbc:redshift:iam:\/\/<\/code>.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"559\" height=\"671\" class=\"wp-image-85770\" style=\"width: 559px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-17.57.29.png\" alt=\"\" \/> <\/li><\/ol><\/li><li>V\u00e1 para a aba <code>Advanced<\/code> e configure estes 3 atributos:<ol start=\"1\"><li><strong>plugin_name<\/strong>: <code>com.amazon.redshift.plugin.BrowserSamlCredentialsProvider<\/code> &#8211; j\u00e1 definido, ent\u00e3o edite-o.<\/li><li><strong>idp_reponse_timeout: <\/strong>60 &#8211; crie um novo valor.<\/li><li><strong>login_url<\/strong>: &lt;a URL de login do aplicativo SAML que voc\u00ea copiou anteriormente&gt; &#8211; crie um novo valor.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"547\" height=\"245\" class=\"wp-image-85771\" style=\"width: 547px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-18.10.07.png\" alt=\"\" \/> <\/li><\/ol><\/li><li>Na parte inferior do assistente de configura\u00e7\u00e3o da fonte de dados, clique em \u201ctest connection\u201d.<br \/><img loading=\"lazy\" decoding=\"async\" width=\"549\" height=\"88\" class=\"wp-image-85772\" style=\"width: 549px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-18.11.44.png\" alt=\"\" \/><img decoding=\"async\" alt=\"\" src=\"https:\/\/elementor.atlassian.net\/938ff2bb-46c7-4cd9-9020-aa00b134d7b5#media-blob-url=true&amp;id=ec78f4d0-c3c0-4743-8a1d-e5568685c9e7&amp;collection=contentId-664896059&amp;contextId=664896059&amp;height=88&amp;width=549&amp;alt=\" \/><br \/>Uma vez clicado, seu navegador abrir\u00e1 e exibir\u00e1 a seguinte tela:<br \/><img loading=\"lazy\" decoding=\"async\" width=\"1156\" height=\"197\" class=\"wp-image-85773\" style=\"width: 1156px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-18.14.29.png\" alt=\"\" \/><br \/>Se tudo estiver configurado corretamente, voc\u00ea dever\u00e1 ver o seguinte pop-up no DataGrip:<br \/><img loading=\"lazy\" decoding=\"async\" width=\"467\" height=\"215\" class=\"wp-image-85774\" style=\"width: 467px\" src=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/Screenshot-2566-07-02-at-18.14.34.png\" alt=\"\" \/><img decoding=\"async\" src=\"https:\/\/elementor.atlassian.net\/8b152b94-3cbd-465a-a56f-6cfc8cec2c19#media-blob-url=true&amp;id=ac42272d-34e4-46b6-9ec4-57583deb1983&amp;collection=contentId-664896059&amp;contextId=664896059&amp;height=215&amp;width=467&amp;alt=\" alt=\"\" \/><br \/>Clique em OK.<br \/><br \/>\u00c9 isso!\nObrigado por ler \ud83d\ude42 <\/li><\/ol>\n","protected":false},"excerpt":{"rendered":"<p>Sua conex\u00e3o com o Redshift \u00e9 segura o suficiente?<br \/>\nNeste guia passo a passo, voc\u00ea aprender\u00e1 como aumentar a seguran\u00e7a e simplificar o acesso dos usu\u00e1rios configurando a autentica\u00e7\u00e3o SSO com o Redshift e o AWS IAM Identity Center. <\/p>\n","protected":false},"author":2024233,"featured_media":113017,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[288],"tags":[],"marketing_persona":[],"marketing_intent":[],"class_list":["post-113016","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-development-pt"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v26.7 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Habilitando autentica\u00e7\u00e3o SSO do Redshift com o AWS IAM Identity Center (Multi-Conta)<\/title>\n<meta name=\"description\" content=\"Sua conex\u00e3o com o Redshift \u00e9 segura o suficiente? Neste guia passo a passo, voc\u00ea aprender\u00e1 como aumentar a seguran\u00e7a e simplificar o acesso dos usu\u00e1rios configurando a autentica\u00e7\u00e3o SSO com o Redshift e o AWS IAM Identity Center.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/elementor.com\/blog\/pt-br\/habilitando-autenticacao-sso-do-redshift-com-o-aws-iam-identity-center-multi-conta\/\" \/>\n<meta property=\"og:locale\" content=\"pt_BR\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Habilitando autentica\u00e7\u00e3o SSO do Redshift com o AWS IAM Identity Center (Multi-Conta)\" \/>\n<meta property=\"og:description\" content=\"Sua conex\u00e3o com o Redshift \u00e9 segura o suficiente? Neste guia passo a passo, voc\u00ea aprender\u00e1 como aumentar a seguran\u00e7a e simplificar o acesso dos usu\u00e1rios configurando a autentica\u00e7\u00e3o SSO com o Redshift e o AWS IAM Identity Center.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/elementor.com\/blog\/pt-br\/habilitando-autenticacao-sso-do-redshift-com-o-aws-iam-identity-center-multi-conta\/\" \/>\n<meta property=\"og:site_name\" content=\"Blog\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/elemntor\/\" \/>\n<meta property=\"article:published_time\" content=\"2023-07-25T13:23:00+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2025-12-01T11:17:47+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/2023_7_Enabling-Redshift-SSO-authentication.png\" \/>\n\t<meta property=\"og:image:width\" content=\"2400\" \/>\n\t<meta property=\"og:image:height\" content=\"1260\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Yuval Press\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@elemntor\" \/>\n<meta name=\"twitter:site\" content=\"@elemntor\" \/>\n<meta name=\"twitter:label1\" content=\"Escrito por\" \/>\n\t<meta name=\"twitter:data1\" content=\"Yuval Press\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. tempo de leitura\" \/>\n\t<meta name=\"twitter:data2\" content=\"7 minutos\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/elementor.com\/blog\/pt-br\/habilitando-autenticacao-sso-do-redshift-com-o-aws-iam-identity-center-multi-conta\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/elementor.com\/blog\/pt-br\/habilitando-autenticacao-sso-do-redshift-com-o-aws-iam-identity-center-multi-conta\/\"},\"author\":{\"name\":\"Yuval Press\",\"@id\":\"https:\/\/elementor.com\/blog\/pt-br\/#\/schema\/person\/13b9197afb0317055c2c68ec36812410\"},\"headline\":\"Habilitando autentica\u00e7\u00e3o SSO do Redshift com o AWS IAM Identity Center (Multi-Conta)\",\"datePublished\":\"2023-07-25T13:23:00+00:00\",\"dateModified\":\"2025-12-01T11:17:47+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/elementor.com\/blog\/pt-br\/habilitando-autenticacao-sso-do-redshift-com-o-aws-iam-identity-center-multi-conta\/\"},\"wordCount\":1485,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/elementor.com\/blog\/pt-br\/#organization\"},\"image\":{\"@id\":\"https:\/\/elementor.com\/blog\/pt-br\/habilitando-autenticacao-sso-do-redshift-com-o-aws-iam-identity-center-multi-conta\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/2023_7_Enabling-Redshift-SSO-authentication.png\",\"articleSection\":[\"Desenvolvimento\"],\"inLanguage\":\"pt-BR\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/elementor.com\/blog\/pt-br\/habilitando-autenticacao-sso-do-redshift-com-o-aws-iam-identity-center-multi-conta\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/elementor.com\/blog\/pt-br\/habilitando-autenticacao-sso-do-redshift-com-o-aws-iam-identity-center-multi-conta\/\",\"url\":\"https:\/\/elementor.com\/blog\/pt-br\/habilitando-autenticacao-sso-do-redshift-com-o-aws-iam-identity-center-multi-conta\/\",\"name\":\"Habilitando autentica\u00e7\u00e3o SSO do Redshift com o AWS IAM Identity Center (Multi-Conta)\",\"isPartOf\":{\"@id\":\"https:\/\/elementor.com\/blog\/pt-br\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/elementor.com\/blog\/pt-br\/habilitando-autenticacao-sso-do-redshift-com-o-aws-iam-identity-center-multi-conta\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/elementor.com\/blog\/pt-br\/habilitando-autenticacao-sso-do-redshift-com-o-aws-iam-identity-center-multi-conta\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/2023_7_Enabling-Redshift-SSO-authentication.png\",\"datePublished\":\"2023-07-25T13:23:00+00:00\",\"dateModified\":\"2025-12-01T11:17:47+00:00\",\"description\":\"Sua conex\u00e3o com o Redshift \u00e9 segura o suficiente? Neste guia passo a passo, voc\u00ea aprender\u00e1 como aumentar a seguran\u00e7a e simplificar o acesso dos usu\u00e1rios configurando a autentica\u00e7\u00e3o SSO com o Redshift e o AWS IAM Identity Center.\",\"breadcrumb\":{\"@id\":\"https:\/\/elementor.com\/blog\/pt-br\/habilitando-autenticacao-sso-do-redshift-com-o-aws-iam-identity-center-multi-conta\/#breadcrumb\"},\"inLanguage\":\"pt-BR\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/elementor.com\/blog\/pt-br\/habilitando-autenticacao-sso-do-redshift-com-o-aws-iam-identity-center-multi-conta\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"pt-BR\",\"@id\":\"https:\/\/elementor.com\/blog\/pt-br\/habilitando-autenticacao-sso-do-redshift-com-o-aws-iam-identity-center-multi-conta\/#primaryimage\",\"url\":\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/2023_7_Enabling-Redshift-SSO-authentication.png\",\"contentUrl\":\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/2023_7_Enabling-Redshift-SSO-authentication.png\",\"width\":2400,\"height\":1260},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/elementor.com\/blog\/pt-br\/habilitando-autenticacao-sso-do-redshift-com-o-aws-iam-identity-center-multi-conta\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Blog\",\"item\":\"https:\/\/elementor.com\/blog\/pt-br\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Desenvolvimento\",\"item\":\"https:\/\/elementor.com\/blog\/pt-br\/category\/development-pt\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Habilitando autentica\u00e7\u00e3o SSO do Redshift com o AWS IAM Identity Center (Multi-Conta)\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/elementor.com\/blog\/pt-br\/#website\",\"url\":\"https:\/\/elementor.com\/blog\/pt-br\/\",\"name\":\"Elementor\",\"description\":\"Website Builder for WordPress\",\"publisher\":{\"@id\":\"https:\/\/elementor.com\/blog\/pt-br\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/elementor.com\/blog\/pt-br\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"pt-BR\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/elementor.com\/blog\/pt-br\/#organization\",\"name\":\"Elementor\",\"url\":\"https:\/\/elementor.com\/blog\/pt-br\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"pt-BR\",\"@id\":\"https:\/\/elementor.com\/blog\/pt-br\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2025\/06\/images.png\",\"contentUrl\":\"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2025\/06\/images.png\",\"width\":225,\"height\":225,\"caption\":\"Elementor\"},\"image\":{\"@id\":\"https:\/\/elementor.com\/blog\/pt-br\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.facebook.com\/elemntor\/\",\"https:\/\/x.com\/elemntor\",\"https:\/\/www.instagram.com\/elementor\/\",\"https:\/\/www.youtube.com\/channel\/UCt9kG_EDX8zwGSC1-ycJJVA?sub_confirmation=1\",\"https:\/\/en.wikipedia.org\/wiki\/Elementor\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/elementor.com\/blog\/pt-br\/#\/schema\/person\/13b9197afb0317055c2c68ec36812410\",\"name\":\"Yuval Press\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"pt-BR\",\"@id\":\"https:\/\/elementor.com\/blog\/pt-br\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/faf67adc84158d77545efc51c560e86b017a0dbc7b31fbd9146ca076480ba73d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/faf67adc84158d77545efc51c560e86b017a0dbc7b31fbd9146ca076480ba73d?s=96&d=mm&r=g\",\"caption\":\"Yuval Press\"},\"description\":\"Senior DataOps Engineer. A long-time fan of professional challenges, endlessly fascinated with the latest technologies. Especially Passionate about the security aspect of DevOps.\",\"url\":\"https:\/\/elementor.com\/blog\/pt-br\/author\/yuvalp\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Habilitando autentica\u00e7\u00e3o SSO do Redshift com o AWS IAM Identity Center (Multi-Conta)","description":"Sua conex\u00e3o com o Redshift \u00e9 segura o suficiente? Neste guia passo a passo, voc\u00ea aprender\u00e1 como aumentar a seguran\u00e7a e simplificar o acesso dos usu\u00e1rios configurando a autentica\u00e7\u00e3o SSO com o Redshift e o AWS IAM Identity Center.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/elementor.com\/blog\/pt-br\/habilitando-autenticacao-sso-do-redshift-com-o-aws-iam-identity-center-multi-conta\/","og_locale":"pt_BR","og_type":"article","og_title":"Habilitando autentica\u00e7\u00e3o SSO do Redshift com o AWS IAM Identity Center (Multi-Conta)","og_description":"Sua conex\u00e3o com o Redshift \u00e9 segura o suficiente? Neste guia passo a passo, voc\u00ea aprender\u00e1 como aumentar a seguran\u00e7a e simplificar o acesso dos usu\u00e1rios configurando a autentica\u00e7\u00e3o SSO com o Redshift e o AWS IAM Identity Center.","og_url":"https:\/\/elementor.com\/blog\/pt-br\/habilitando-autenticacao-sso-do-redshift-com-o-aws-iam-identity-center-multi-conta\/","og_site_name":"Blog","article_publisher":"https:\/\/www.facebook.com\/elemntor\/","article_published_time":"2023-07-25T13:23:00+00:00","article_modified_time":"2025-12-01T11:17:47+00:00","og_image":[{"width":2400,"height":1260,"url":"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/2023_7_Enabling-Redshift-SSO-authentication.png","type":"image\/png"}],"author":"Yuval Press","twitter_card":"summary_large_image","twitter_creator":"@elemntor","twitter_site":"@elemntor","twitter_misc":{"Escrito por":"Yuval Press","Est. tempo de leitura":"7 minutos"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/elementor.com\/blog\/pt-br\/habilitando-autenticacao-sso-do-redshift-com-o-aws-iam-identity-center-multi-conta\/#article","isPartOf":{"@id":"https:\/\/elementor.com\/blog\/pt-br\/habilitando-autenticacao-sso-do-redshift-com-o-aws-iam-identity-center-multi-conta\/"},"author":{"name":"Yuval Press","@id":"https:\/\/elementor.com\/blog\/pt-br\/#\/schema\/person\/13b9197afb0317055c2c68ec36812410"},"headline":"Habilitando autentica\u00e7\u00e3o SSO do Redshift com o AWS IAM Identity Center (Multi-Conta)","datePublished":"2023-07-25T13:23:00+00:00","dateModified":"2025-12-01T11:17:47+00:00","mainEntityOfPage":{"@id":"https:\/\/elementor.com\/blog\/pt-br\/habilitando-autenticacao-sso-do-redshift-com-o-aws-iam-identity-center-multi-conta\/"},"wordCount":1485,"commentCount":0,"publisher":{"@id":"https:\/\/elementor.com\/blog\/pt-br\/#organization"},"image":{"@id":"https:\/\/elementor.com\/blog\/pt-br\/habilitando-autenticacao-sso-do-redshift-com-o-aws-iam-identity-center-multi-conta\/#primaryimage"},"thumbnailUrl":"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/2023_7_Enabling-Redshift-SSO-authentication.png","articleSection":["Desenvolvimento"],"inLanguage":"pt-BR","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/elementor.com\/blog\/pt-br\/habilitando-autenticacao-sso-do-redshift-com-o-aws-iam-identity-center-multi-conta\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/elementor.com\/blog\/pt-br\/habilitando-autenticacao-sso-do-redshift-com-o-aws-iam-identity-center-multi-conta\/","url":"https:\/\/elementor.com\/blog\/pt-br\/habilitando-autenticacao-sso-do-redshift-com-o-aws-iam-identity-center-multi-conta\/","name":"Habilitando autentica\u00e7\u00e3o SSO do Redshift com o AWS IAM Identity Center (Multi-Conta)","isPartOf":{"@id":"https:\/\/elementor.com\/blog\/pt-br\/#website"},"primaryImageOfPage":{"@id":"https:\/\/elementor.com\/blog\/pt-br\/habilitando-autenticacao-sso-do-redshift-com-o-aws-iam-identity-center-multi-conta\/#primaryimage"},"image":{"@id":"https:\/\/elementor.com\/blog\/pt-br\/habilitando-autenticacao-sso-do-redshift-com-o-aws-iam-identity-center-multi-conta\/#primaryimage"},"thumbnailUrl":"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/2023_7_Enabling-Redshift-SSO-authentication.png","datePublished":"2023-07-25T13:23:00+00:00","dateModified":"2025-12-01T11:17:47+00:00","description":"Sua conex\u00e3o com o Redshift \u00e9 segura o suficiente? Neste guia passo a passo, voc\u00ea aprender\u00e1 como aumentar a seguran\u00e7a e simplificar o acesso dos usu\u00e1rios configurando a autentica\u00e7\u00e3o SSO com o Redshift e o AWS IAM Identity Center.","breadcrumb":{"@id":"https:\/\/elementor.com\/blog\/pt-br\/habilitando-autenticacao-sso-do-redshift-com-o-aws-iam-identity-center-multi-conta\/#breadcrumb"},"inLanguage":"pt-BR","potentialAction":[{"@type":"ReadAction","target":["https:\/\/elementor.com\/blog\/pt-br\/habilitando-autenticacao-sso-do-redshift-com-o-aws-iam-identity-center-multi-conta\/"]}]},{"@type":"ImageObject","inLanguage":"pt-BR","@id":"https:\/\/elementor.com\/blog\/pt-br\/habilitando-autenticacao-sso-do-redshift-com-o-aws-iam-identity-center-multi-conta\/#primaryimage","url":"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/2023_7_Enabling-Redshift-SSO-authentication.png","contentUrl":"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2023\/08\/2023_7_Enabling-Redshift-SSO-authentication.png","width":2400,"height":1260},{"@type":"BreadcrumbList","@id":"https:\/\/elementor.com\/blog\/pt-br\/habilitando-autenticacao-sso-do-redshift-com-o-aws-iam-identity-center-multi-conta\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Blog","item":"https:\/\/elementor.com\/blog\/pt-br\/"},{"@type":"ListItem","position":2,"name":"Desenvolvimento","item":"https:\/\/elementor.com\/blog\/pt-br\/category\/development-pt\/"},{"@type":"ListItem","position":3,"name":"Habilitando autentica\u00e7\u00e3o SSO do Redshift com o AWS IAM Identity Center (Multi-Conta)"}]},{"@type":"WebSite","@id":"https:\/\/elementor.com\/blog\/pt-br\/#website","url":"https:\/\/elementor.com\/blog\/pt-br\/","name":"Elementor","description":"Website Builder for WordPress","publisher":{"@id":"https:\/\/elementor.com\/blog\/pt-br\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/elementor.com\/blog\/pt-br\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"pt-BR"},{"@type":"Organization","@id":"https:\/\/elementor.com\/blog\/pt-br\/#organization","name":"Elementor","url":"https:\/\/elementor.com\/blog\/pt-br\/","logo":{"@type":"ImageObject","inLanguage":"pt-BR","@id":"https:\/\/elementor.com\/blog\/pt-br\/#\/schema\/logo\/image\/","url":"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2025\/06\/images.png","contentUrl":"https:\/\/elementor.com\/blog\/wp-content\/uploads\/2025\/06\/images.png","width":225,"height":225,"caption":"Elementor"},"image":{"@id":"https:\/\/elementor.com\/blog\/pt-br\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/elemntor\/","https:\/\/x.com\/elemntor","https:\/\/www.instagram.com\/elementor\/","https:\/\/www.youtube.com\/channel\/UCt9kG_EDX8zwGSC1-ycJJVA?sub_confirmation=1","https:\/\/en.wikipedia.org\/wiki\/Elementor"]},{"@type":"Person","@id":"https:\/\/elementor.com\/blog\/pt-br\/#\/schema\/person\/13b9197afb0317055c2c68ec36812410","name":"Yuval Press","image":{"@type":"ImageObject","inLanguage":"pt-BR","@id":"https:\/\/elementor.com\/blog\/pt-br\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/faf67adc84158d77545efc51c560e86b017a0dbc7b31fbd9146ca076480ba73d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/faf67adc84158d77545efc51c560e86b017a0dbc7b31fbd9146ca076480ba73d?s=96&d=mm&r=g","caption":"Yuval Press"},"description":"Senior DataOps Engineer. A long-time fan of professional challenges, endlessly fascinated with the latest technologies. Especially Passionate about the security aspect of DevOps.","url":"https:\/\/elementor.com\/blog\/pt-br\/author\/yuvalp\/"}]}},"_links":{"self":[{"href":"https:\/\/elementor.com\/blog\/pt-br\/wp-json\/wp\/v2\/posts\/113016","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/elementor.com\/blog\/pt-br\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/elementor.com\/blog\/pt-br\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/elementor.com\/blog\/pt-br\/wp-json\/wp\/v2\/users\/2024233"}],"replies":[{"embeddable":true,"href":"https:\/\/elementor.com\/blog\/pt-br\/wp-json\/wp\/v2\/comments?post=113016"}],"version-history":[{"count":3,"href":"https:\/\/elementor.com\/blog\/pt-br\/wp-json\/wp\/v2\/posts\/113016\/revisions"}],"predecessor-version":[{"id":148775,"href":"https:\/\/elementor.com\/blog\/pt-br\/wp-json\/wp\/v2\/posts\/113016\/revisions\/148775"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/elementor.com\/blog\/pt-br\/wp-json\/wp\/v2\/media\/113017"}],"wp:attachment":[{"href":"https:\/\/elementor.com\/blog\/pt-br\/wp-json\/wp\/v2\/media?parent=113016"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/elementor.com\/blog\/pt-br\/wp-json\/wp\/v2\/categories?post=113016"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/elementor.com\/blog\/pt-br\/wp-json\/wp\/v2\/tags?post=113016"},{"taxonomy":"marketing_persona","embeddable":true,"href":"https:\/\/elementor.com\/blog\/pt-br\/wp-json\/wp\/v2\/marketing_persona?post=113016"},{"taxonomy":"marketing_intent","embeddable":true,"href":"https:\/\/elementor.com\/blog\/pt-br\/wp-json\/wp\/v2\/marketing_intent?post=113016"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}