Federating users by creating a custom identity broker application

• If your identity store is not compatible with SAML 2.0, then you can build a custom identity broker application to perform a similar function.

• The broker application authenticates users, requests temporary credentials for users from AWS, and then provides them to the user to access AWS resources.