Home
Mapping Frameworks
AWS Home
AWS Single Sign-On

AWS aws_single_sign-on Mappings

AWS Single Sign-On is a cloud-based single sign-on (SSO) service that makes it easy to centrally manage SSO access to all your AWS accounts and cloud applications. Specifically, it helps you manage SSO access and user permissions across all your AWS accounts in AWS Organizations. AWS SSO also helps you manage access and permissions to commonly used third-party software as a service (SaaS) applications, AWS SSO-integrated applications as well as custom applications that support Security Assertion Markup Language (SAML) 2.0.

Mappings

Capability ID	Capability Description	Category	Value	ATT&CK ID	ATT&CK Name
aws_single_sign-on	AWS Single Sign-On	protect	partial	T1078	Valid Accounts
aws_single_sign-on	AWS Single Sign-On	protect	partial	T1078.004	Cloud Accounts
aws_single_sign-on	AWS Single Sign-On	protect	partial	T1078.002	Domain Accounts
aws_single_sign-on	AWS Single Sign-On	protect	significant	T1133	External Remote Services
aws_single_sign-on	AWS Single Sign-On	protect	partial	T1110	Brute Force
aws_single_sign-on	AWS Single Sign-On	protect	significant	T1110.001	Password Guessing
aws_single_sign-on	AWS Single Sign-On	protect	significant	T1110.003	Password Spraying
aws_single_sign-on	AWS Single Sign-On	protect	significant	T1110.004	Credential Stuffing