Cannot connect to quicksight when the user is not in the default namespace

ilyasse · December 4, 2025, 5:09pm

Hello,

I did create a new Entrprise edition Quicksight account where i did set the authentication method to “Password based or Signle-Sign On”.

With the quicsight API CLI, i did create diffrent namespaces as well as diffrent users in those namespaces.

My issue is that only users that are created in the default namespace could access Quicksight with this url : https://eu-west-3.quicksight.aws.amazon.com/sn

But other users in namespace X for example couldn’t access. They get this error message :

The calculation is not done.

We have not been able to verify your login credentials. Please try again.

Thanks in advance!

Xclipse · December 4, 2025, 5:37pm

Hi @ilyasse

Quick URL you are using defaults to the default namespace and may not work directly for users in non-default namespaces. Users in non-default namespaces must be created and authenticated using federated Single Sign-On (SSO) configured with your identity provider (IdP) via IAM federation.

Please refer to the following documentations this might be helpful for you.

ilyasse · December 4, 2025, 7:02pm

Hi

if i understand verry well, it is impossible to have users in diffrent namespace authenticate to quicksight directly with url, an SSO configuration is mandatory for them right?

I wonder if it is the only way for them to access quicksight except iam identity center or active directory?

Thank you

Xclipse · December 5, 2025, 6:00am

Hi @ilyasse

Yes, users in non-default (custom) namespaces cannot authenticate directly via the standard URL using password based login, federated Single Sign On (SSO) via IAM is mandatory for them. Custom namespaces support only IAM federated SSO users.

ilyasse · December 5, 2025, 9:16am

Hi @Xclipse,

I’d like to add one more question please,

I already have an external IDP that uses OIDC standard. i can use it in order to configure my quicksight users with diffrent namespaces right ?

Is there any configuration needed to achieve that ? Any documentation regarding this ?

Thanks !

Xclipse · December 5, 2025, 5:27pm

Hi @ilyasse

Yes, external OIDC IdP can be used to federate Quick users into different custom namespaces, as supports custom OIDC providers through IAM identity federation.

Please refer to the following documentations and videos this might be helpful for you.

Topic		Replies	Views
With custom namespace, how can a user log in Quick Sight and author visuals? Q&A quick-sight , qls-multi-env , Business-Intelligence-Engineer	2	1299	February 11, 2024
Register namespace users Q&A error , quick-sight , Business-Intelligence-Engineer	9	247	January 3, 2025
Use of Quicksight name spaces for multi-tenancy with IAM Identity Center Q&A namespace , quick-sight	6	885	June 6, 2023
Quicksight Namespaces Q&A developer , namespace , quick-sight	7	630	February 21, 2024
Understanding Namespaces, Groups, Users and Shared Folder in Amazon Quick Sight Technical Articles row-level-security , namespace , groups	2	10922	May 31, 2023

Cannot connect to quicksight when the user is not in the default namespace

Related topics