Okta with Quicksight

larry · September 22, 2025, 4:37pm

Hi,
I am a bit confused about this Integration. Say, here is what I have and my client is requesting a seamless integration with minimal code and maintenance.
1 All the Identities who will be accessing Quick Sight are in Okta so it SAML federated Identities.

2 We would like that all users who use the Okta -QS App should be auto registered with Quicksight using the email address which they used to Authenticate.

I am using the following document -

Tutorial: Amazon QuickSight and IAM identity federation - Amazon QuickSight

but I get confused when I see this blog –

Do I really need to develop lambda to automate and implement this process.
Appreciate some clarification.

Thanks !

Deep · September 22, 2025, 6:15pm

Hello Lary,

you may refer to this Federate Amazon QuickSight access with Okta | AWS Business Intelligence Blog

Hope this helps.

Cheers,

Deep

larry · September 22, 2025, 6:38pm

Hi @Deep,

Thanks for your quick response.

Before I start the work, Is it mandatory to do this – “Creating an AWS access key for Okta”.

If we are using a Federated user and selecting a role – this step can be avoided ?

Can you pl suggest ?

Thanks again,

Deep · September 23, 2025, 9:09am

Hello Larry,

No, you need to have the access key - you need to create an AWS user with specific permissions so Okta can dynamically fetch a list of available roles from your accounts. This makes assigning users and groups to specific AWS roles easy and secure for administrators.

The access key is associated with an IAM user that has permissions to assume the necessary IAM roles
This enables Okta to assume the appropriate roles for Quick Sight federation

Hope this helps.

Cheers,

Deep

larry · September 23, 2025, 11:03am

@Deep

A lot of clients may not allow the creation of access keys. I understand that the users who are part of an OKTA group have to pre-provisioned in Quick Sight. Is this the place where a scheduled Lambda can read from the Okta group and populate Quick Sight ?

Pl confirm.

Is there a sample code which I can use ?

Thanks !

Deep · September 23, 2025, 11:34am

Hello Larry,

No, you manage the users in Okta not in Quick Sight. Okta is your identity provider. the access key enables okta to assume appropriate roles.

Please refer - here for more info

Hope this clears your doubt.

Cheers,

Deep

Topic		Replies	Views
How can I programmatically access Quick Sight after integrating with IAM Identity Center and Okta? Q&A api , developer , quick-sight	4	60	June 27, 2025
Sync users and groups from Okta with Amazon Quick Sight Blogs	3	746	August 12, 2024
Amazon Quick Sight Integration with Q business which is using OKTA IDP(OIDC auth) Q&A developer , quick-sight , qls-community	3	39	October 16, 2025
Okta integration Q&A quick-sight	11	2228	September 5, 2023
Granting access to non-developer resources Q&A admin , quick-sight , user-management	3	173	May 23, 2024

Okta with Quicksight

Related topics