Forum Discussion
Unable to integrate Amazon Managed Grafana on Azure
Hello everyone, I am struggling here with Amazon Managed Grafana on Azure (the one available on Gallery). Have checked https://learn.microsoft.com/en-us/entra/identity/saas-apps/amazon-managed-gr...
I did try below, hope it works for your case:
- Verify Assertion Attributes:
- Ensure that the attributes in the Attributes & Claims section of your Azure app match the expected attributes on the AMG side. For example:
- mail should map to user.userprincipalname.
- displayName should map to user.displayname.
- Unique User Identifier should map to user.userprincipalname.
- Ensure that the attributes in the Attributes & Claims section of your Azure app match the expected attributes on the AMG side. For example:
- Check Group Mappings:
- If you're using group-based access control, ensure that the group claims are correctly configured in Azure. You might need to include the group attribute in the SAML assertion and ensure it matches the group settings in AMG.
- Test with Different Users:
- Since one user is able to log in while another is blocked, compare the attributes of both users in Azure AD. Look for discrepancies in group memberships or attribute values.
- Enable Debugging:
- On the AWS side, enable logging for the SAML integration to get more detailed error messages. This can help pinpoint the exact issue with the assertion.