👥 EntraID integrations with AWS Identity Center tracking issue (see comments)

[bagg3rs]

User Story

As the AP team I want to know where we are at with AWS Identity Center

Value / Purpose

🗣️ Keep team updated on external dependancies

Useful Contacts

Julia and Rich

Proposal

keep this issue in progress/block until done

relates to #4271 ministryofjustice/modernisation-platform#6227

Definition of Done

• App Registrations have been created by TechServices
• Work completed on AWS Identity Centre

[bagg3rs]

From the 13/05/24 John N
"The two EntraID App Registrations have been scoped that will need to be completed for the SCIM functionality and the AWS Identity Centre connection. Yesterday they started looking at the Entra Security Groups self-service side of the demand. It is the piece that we need to spend some time focussing on getting right for us and you so that it will be secure and easy for you moving forward until we look at the next demand for options on automation."

They are looking to update us on Wednesday to go over details

[bagg3rs]

Meeting scheduled to for today 15/05 09:30 with John N

[julialawrence]

Original demand submitted on April 30th.
Approved on May 13th
Contacted by TS requesting additional information on May 21st
Returned questionnaire on May 22nd.
Expecting a meeting either 23rd-24th May or First week of June

[bagg3rs]

We are taking Identity Center to the CTO Solutions Surgery to get feedback and visibility

[bagg3rs]

Solution Surgery ✅
Next steps

• continue implementation with MP
• start an ADR on using IC SAML for AP

[bagg3rs]

Related issue

[bagg3rs]

ADR-010 created here

[bagg3rs]

Successfully tested app registrations on Friday with Julia and Dave for auth0

[bagg3rs]

Ongoing

• IDAM Submissions for Application Registrations approved and received
• Integration testing with Identity Center completed

Planned Next Steps  

• App registration added to Auth0 configuration
• Current GitHub Team group to accounts to be transformed into EntraID groups
• Testing with users

[julialawrence]

ministryofjustice/aws-root-account#939
To give us access Identity Center

[julialawrence]

Closing. The apps have been delivered and tested. Outstanding work will be tracked in #4838