Is there the possibility to use an OTP token for users created within Quicksight (not IAM, external AD users, or external IdP auth) - normal email/password users created within Quicksight.
I do not see the option to enable OTP (via email or OTP device) anywhere - but have this compliance requirement for 2 factor authentication. What are my options?
We don’t have OTP support for native users. That would need to rely on external IdP for the time being. The new signin experience does not change the functionalities.
We don’t currently have plans to support this on the roadmap, but I’ll make sure the team gets this feedback.
For AWS SSO we do support similar to how other IdP work with IAM federation. We have it on our roadmap to have a tighter integration with AWS SSO. This blog post goes over how to do it for Okta and it would be similar for AWS SSO: Federate Amazon QuickSight access with Okta | AWS Big Data Blog
Thanks for the information @lillie. My question regarding AWS SSO is mainly due to this comment in the instructions from AWS SSO to set up QuickSight as an application
It would be strange that SP to IdP auth supports external providers (Okta, Google, Microsoft etc) but does not support SP to IdP using AWS’s internal AWS SSO service.