A company that uses AWS Organizations recently implemented AWS Control Towerю The company now needs to centralize identity management. A SysOps administrator must federate AWS ШAM Identity Center with an external SAML 2.0 identity provider (IdP) to centrally manage access to all the company’s accounts and cloud applications.
Which prerequisites must the SysOps administrator have so that the SysOps administrator can connect to the external IdP?
(Choose two.)
A copy of the IAM identity Center SAML metadata
The IdP metadata including the public X 509 certificate
The IP address of the IdP
Root access to the management account
Administrative permissions to the member accounts of the organization
I scheme that the answer is:
A copy of the IAM identity Center SAML metadata