This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(166.4, 92%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVC%3C/text%3E%3C/svg%3E)
Is it possible to select a subset of ad users to connect to aws identity center? Also, this same subset of ad users will require MFA, will the pricing be different like in terms of plan per users?
Hello @Anonymous , yes you can limit/control what Azure AD users get to log into AWS Identity Center . MFA is free to user under the per user model and Security Defaults but requires paid licensing under Conditional Access.
Let us know if you need additional assistance. If the answer was helpful, please accept it and rate it so that others facing a similar issue can easily find a solution.
the pricing will still be same? or do we need to upgrade the tier per user for the ones being assigned to be required to use MFA for that subset of users to Identity Center?
Because i read that MFA is either enabled for all or disabled for all for the basic free tier. Im looking for MFA tier level which requires MFA for only users assigned to login in via Identity Center to aws console and not the whole organisation's users
In that case per user MFA or Conditional Access is what you need. The former is free, the latter costs.
i see, thanks a lot @Alfredo Revilla - Upwork Top Talent | IAM SWE SWA