<?xml version="1.0" encoding="UTF-8"?><rss version="2.0"
	xmlns:content="http://purl.org/rss/1.0/modules/content/"
	xmlns:wfw="http://wellformedweb.org/CommentAPI/"
	xmlns:dc="http://purl.org/dc/elements/1.1/"
	xmlns:atom="http://www.w3.org/2005/Atom"
	xmlns:sy="http://purl.org/rss/1.0/modules/syndication/"
	xmlns:slash="http://purl.org/rss/1.0/modules/slash/"
	>

<channel>
	<title>Security token service &#8211; Noise</title>
	<atom:link href="https://noise.getoto.net/tag/security-token-service/feed/" rel="self" type="application/rss+xml" />
	<link>https://noise.getoto.net</link>
	<description>The collective thoughts of the interwebz</description>
	<lastBuildDate>Mon, 24 Feb 2025 16:25:01 +0000</lastBuildDate>
	<language>en-US</language>
	<sy:updatePeriod>
	hourly	</sy:updatePeriod>
	<sy:updateFrequency>
	1	</sy:updateFrequency>
	<generator>https://wordpress.org/?v=6.8.2</generator>
	<item>
		<title>Connect your on-premises Kubernetes cluster to AWS APIs using IAM Roles Anywhere</title>
		<link>https://noise.getoto.net/2025/02/24/connect-your-on-premises-kubernetes-cluster-to-aws-apis-using-iam-roles-anywhere/</link>
		
		<dc:creator><![CDATA[Varun Sharma]]></dc:creator>
		<pubDate>Mon, 24 Feb 2025 16:25:01 +0000</pubDate>
				<category><![CDATA[Advanced (300)]]></category>
		<category><![CDATA[authentication]]></category>
		<category><![CDATA[authorization]]></category>
		<category><![CDATA[EKS]]></category>
		<category><![CDATA[IAM]]></category>
		<category><![CDATA[IAM Roles Anywhere]]></category>
		<category><![CDATA[Identity]]></category>
		<category><![CDATA[security]]></category>
		<category><![CDATA[Security Blog]]></category>
		<category><![CDATA[Security token service]]></category>
		<category><![CDATA[Security, Identity & Compliance]]></category>
		<category><![CDATA[Technical How-to]]></category>
		<category><![CDATA[X.509 certificate]]></category>
		<guid isPermaLink="false">http://noise.getoto.net/?guid=13538fb61a99518e62926adb5496f817</guid>

					<description><![CDATA[Many customers want to seamlessly integrate their on-premises Kubernetes workloads with AWS services, implement hybrid workloads, or migrate to AWS. Previously, a common approach involved creating long-term access keys, which posed security risks and is no longer recommended. While solutions such as Kubernetes secrets vault and third-party options exist, they fail to address the underlying […]]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>SaaS authentication: Identity management with Amazon Cognito user pools</title>
		<link>https://noise.getoto.net/2024/08/05/saas-authentication-identity-management-with-amazon-cognito-user-pools/</link>
		
		<dc:creator><![CDATA[Shubhankar Sumar]]></dc:creator>
		<pubDate>Mon, 05 Aug 2024 16:29:42 +0000</pubDate>
				<category><![CDATA[Amazon Cognito]]></category>
		<category><![CDATA[Intermediate (200)]]></category>
		<category><![CDATA[SaaS]]></category>
		<category><![CDATA[security]]></category>
		<category><![CDATA[Security Blog]]></category>
		<category><![CDATA[Security token service]]></category>
		<category><![CDATA[Security, Identity & Compliance]]></category>
		<category><![CDATA[Technical How-to]]></category>
		<category><![CDATA[Tenant isolation]]></category>
		<guid isPermaLink="false">http://noise.getoto.net/?guid=b7cd1680c3d8c66d6d940cc59ed54718</guid>

					<description><![CDATA[Amazon Cognito is a customer identity and access management (CIAM) service that can scale to millions of users. Although the Cognito documentation details which multi-tenancy models are available, determining when to use each model can sometimes be challenging. In this blog post, we’ll provide guidance on when to use each model and review their pros […]]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>How to use Regional AWS STS endpoints</title>
		<link>https://noise.getoto.net/2024/02/26/how-to-use-regional-aws-sts-endpoints/</link>
		
		<dc:creator><![CDATA[Darius Januskis]]></dc:creator>
		<pubDate>Mon, 26 Feb 2024 18:09:35 +0000</pubDate>
				<category><![CDATA[AWS Identity and Access Management (IAM)]]></category>
		<category><![CDATA[AWS Security Token Service]]></category>
		<category><![CDATA[Intermediate (200)]]></category>
		<category><![CDATA[Security Blog]]></category>
		<category><![CDATA[Security token service]]></category>
		<category><![CDATA[Security, Identity & Compliance]]></category>
		<category><![CDATA[sts]]></category>
		<category><![CDATA[Technical How-to]]></category>
		<guid isPermaLink="false">http://noise.getoto.net/?guid=eeee54529d927ed5ee41970cdfdd415e</guid>

					<description><![CDATA[This blog post provides recommendations that you can use to help improve resiliency in the unlikely event of disrupted availability of the global (now legacy) AWS Security Token Service (AWS STS) endpoint. Although the global (legacy) AWS STS endpoint https://sts.amazonaws.com is highly available, it’s hosted in a single AWS Region—US East (N. Virginia)—and like other […]]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>Extend AWS IAM roles to workloads outside of AWS with IAM Roles Anywhere</title>
		<link>https://noise.getoto.net/2022/07/06/extend-aws-iam-roles-to-workloads-outside-of-aws-with-iam-roles-anywhere/</link>
		
		<dc:creator><![CDATA[Faraz Angabini]]></dc:creator>
		<pubDate>Wed, 06 Jul 2022 20:04:19 +0000</pubDate>
				<category><![CDATA[authentication]]></category>
		<category><![CDATA[authorization]]></category>
		<category><![CDATA[IAM]]></category>
		<category><![CDATA[IAM Roles Anywhere]]></category>
		<category><![CDATA[Identity]]></category>
		<category><![CDATA[Intermediate (200)]]></category>
		<category><![CDATA[security]]></category>
		<category><![CDATA[Security Blog]]></category>
		<category><![CDATA[Security token service]]></category>
		<category><![CDATA[Security, Identity & Compliance]]></category>
		<category><![CDATA[X.509 certificate]]></category>
		<guid isPermaLink="false">http://noise.getoto.net/?guid=cff4834bab36c6b70e055100854ff393</guid>

					<description><![CDATA[AWS Identity and Access Management (IAM) has now made it easier for you to use IAM roles for your workloads that are running outside of AWS, with the release of IAM Roles Anywhere. This feature extends the capabilities of IAM roles to workloads outside of AWS. You can use IAM Roles Anywhere to provide a […]]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>How to use regional SAML endpoints for failover</title>
		<link>https://noise.getoto.net/2022/05/31/how-to-use-regional-saml-endpoints-for-failover/</link>
		
		<dc:creator><![CDATA[Jonathan VanKim]]></dc:creator>
		<pubDate>Tue, 31 May 2022 15:53:20 +0000</pubDate>
				<category><![CDATA[Advanced (300)]]></category>
		<category><![CDATA[AWS STS]]></category>
		<category><![CDATA[Disaster Recovery]]></category>
		<category><![CDATA[Federation]]></category>
		<category><![CDATA[Identity]]></category>
		<category><![CDATA[resilience]]></category>
		<category><![CDATA[Security Blog]]></category>
		<category><![CDATA[Security token service]]></category>
		<category><![CDATA[Security, Identity & Compliance]]></category>
		<guid isPermaLink="false">http://noise.getoto.net/?guid=7d7e06096007b33766375b8ed481a400</guid>

					<description><![CDATA[Many Amazon Web Services (AWS) customers choose to use federation with SAML 2.0 in order to use their existing identity provider (IdP) and avoid managing multiple sources of identities. Some customers have previously configured federation by using AWS Identity and Access Management (IAM) with the endpoint signin.aws.amazon.com. Although this endpoint is highly available, it is […]]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
		<item>
		<title>How to integrate AWS STS SourceIdentity with your identity provider</title>
		<link>https://noise.getoto.net/2022/04/11/how-to-integrate-aws-sts-sourceidentity-with-your-identity-provider/</link>
		
		<dc:creator><![CDATA[Keith Joelner]]></dc:creator>
		<pubDate>Mon, 11 Apr 2022 20:19:22 +0000</pubDate>
				<category><![CDATA[Advanced (300)]]></category>
		<category><![CDATA[AWS STS]]></category>
		<category><![CDATA[Federation]]></category>
		<category><![CDATA[Identity]]></category>
		<category><![CDATA[Security Blog]]></category>
		<category><![CDATA[Security token service]]></category>
		<category><![CDATA[Security, Identity & Compliance]]></category>
		<category><![CDATA[Sessions]]></category>
		<category><![CDATA[tracing]]></category>
		<guid isPermaLink="false">http://noise.getoto.net/?guid=634519eee34053e7d687b2cbcee467ed</guid>

					<description><![CDATA[You can use third-party identity providers (IdPs) such as Okta, Ping, or OneLogin to federate with the AWS Identity and Access Management (IAM) service using SAML 2.0, allowing your workforce to configure services by providing authorization access to the AWS Management Console or Command Line Interface (CLI). When you federate to AWS, you assume a […]]]></description>
		
		
		<enclosure url="" length="0" type="" />

			</item>
	</channel>
</rss>

<!--
Performance optimized by W3 Total Cache. Learn more: https://www.boldgrid.com/w3-total-cache/

Object Caching 35/173 objects using Memcached
Page Caching using Disk: Enhanced 
Lazy Loading (feed)
Database Caching using Memcached

Served from: noise.getoto.net @ 2025-12-08 08:40:20 by W3 Total Cache
-->