

********
SSOAdmin
********



======
Client
======



.. py:class:: SSOAdmin.Client

  A low-level client representing AWS Single Sign-On Admin (SSO Admin)
  

  IAM Identity Center is the Amazon Web Services solution for connecting your workforce users to Amazon Web Services managed applications and other Amazon Web Services resources. You can connect your existing identity provider and synchronize users and groups from your directory, or create and manage your users directly in IAM Identity Center. You can then use IAM Identity Center for either or both of the following:

   

  
  * User access to applications
   
  * User access to Amazon Web Services accounts
  

   

  This guide provides information about single sign-on operations that you can use for access to applications and Amazon Web Services accounts. For information about IAM Identity Center features, see the `IAM Identity Center User Guide <https://docs.aws.amazon.com/singlesignon/latest/userguide/what-is.html>`__.

   

  .. note::

    

    IAM Identity Center uses the ``sso`` and ``identitystore`` API namespaces.

    

   

  Many API operations for IAM Identity Center rely on identifiers for users and groups, known as principals. For more information about how to work with principals and principal IDs in IAM Identity Center, see the `Identity Store API Reference <https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/welcome.html>`__.

   

  .. note::

    

    Amazon Web Services provides SDKs that consist of libraries and sample code for various programming languages and platforms (Java, Ruby, .Net, iOS, Android, and more). The SDKs provide a convenient way to create programmatic access to IAM Identity Center and other Amazon Web Services services. For more information about the Amazon Web Services SDKs, including how to download and install them, see `Tools for Amazon Web Services <http://aws.amazon.com/tools/>`__.

    

  ::

    
    import boto3
    
    client = boto3.client('sso-admin')

  

These are the available methods:

.. toctree::
  :maxdepth: 1
  :titlesonly:

  sso-admin/client/add_region
  sso-admin/client/attach_customer_managed_policy_reference_to_permission_set
  sso-admin/client/attach_managed_policy_to_permission_set
  sso-admin/client/can_paginate
  sso-admin/client/close
  sso-admin/client/create_account_assignment
  sso-admin/client/create_application
  sso-admin/client/create_application_assignment
  sso-admin/client/create_instance
  sso-admin/client/create_instance_access_control_attribute_configuration
  sso-admin/client/create_permission_set
  sso-admin/client/create_trusted_token_issuer
  sso-admin/client/delete_account_assignment
  sso-admin/client/delete_application
  sso-admin/client/delete_application_access_scope
  sso-admin/client/delete_application_assignment
  sso-admin/client/delete_application_authentication_method
  sso-admin/client/delete_application_grant
  sso-admin/client/delete_inline_policy_from_permission_set
  sso-admin/client/delete_instance
  sso-admin/client/delete_instance_access_control_attribute_configuration
  sso-admin/client/delete_permission_set
  sso-admin/client/delete_permissions_boundary_from_permission_set
  sso-admin/client/delete_trusted_token_issuer
  sso-admin/client/describe_account_assignment_creation_status
  sso-admin/client/describe_account_assignment_deletion_status
  sso-admin/client/describe_application
  sso-admin/client/describe_application_assignment
  sso-admin/client/describe_application_provider
  sso-admin/client/describe_instance
  sso-admin/client/describe_instance_access_control_attribute_configuration
  sso-admin/client/describe_permission_set
  sso-admin/client/describe_permission_set_provisioning_status
  sso-admin/client/describe_region
  sso-admin/client/describe_trusted_token_issuer
  sso-admin/client/detach_customer_managed_policy_reference_from_permission_set
  sso-admin/client/detach_managed_policy_from_permission_set
  sso-admin/client/get_application_access_scope
  sso-admin/client/get_application_assignment_configuration
  sso-admin/client/get_application_authentication_method
  sso-admin/client/get_application_grant
  sso-admin/client/get_application_session_configuration
  sso-admin/client/get_inline_policy_for_permission_set
  sso-admin/client/get_paginator
  sso-admin/client/get_permissions_boundary_for_permission_set
  sso-admin/client/get_waiter
  sso-admin/client/list_account_assignment_creation_status
  sso-admin/client/list_account_assignment_deletion_status
  sso-admin/client/list_account_assignments
  sso-admin/client/list_account_assignments_for_principal
  sso-admin/client/list_accounts_for_provisioned_permission_set
  sso-admin/client/list_application_access_scopes
  sso-admin/client/list_application_assignments
  sso-admin/client/list_application_assignments_for_principal
  sso-admin/client/list_application_authentication_methods
  sso-admin/client/list_application_grants
  sso-admin/client/list_application_providers
  sso-admin/client/list_applications
  sso-admin/client/list_customer_managed_policy_references_in_permission_set
  sso-admin/client/list_instances
  sso-admin/client/list_managed_policies_in_permission_set
  sso-admin/client/list_permission_set_provisioning_status
  sso-admin/client/list_permission_sets
  sso-admin/client/list_permission_sets_provisioned_to_account
  sso-admin/client/list_regions
  sso-admin/client/list_tags_for_resource
  sso-admin/client/list_trusted_token_issuers
  sso-admin/client/provision_permission_set
  sso-admin/client/put_application_access_scope
  sso-admin/client/put_application_assignment_configuration
  sso-admin/client/put_application_authentication_method
  sso-admin/client/put_application_grant
  sso-admin/client/put_application_session_configuration
  sso-admin/client/put_inline_policy_to_permission_set
  sso-admin/client/put_permissions_boundary_to_permission_set
  sso-admin/client/remove_region
  sso-admin/client/tag_resource
  sso-admin/client/untag_resource
  sso-admin/client/update_application
  sso-admin/client/update_instance
  sso-admin/client/update_instance_access_control_attribute_configuration
  sso-admin/client/update_permission_set
  sso-admin/client/update_trusted_token_issuer


==========
Paginators
==========


Paginators are available on a client instance via the ``get_paginator`` method. For more detailed instructions and examples on the usage of paginators, see the paginators `user guide <https://boto3.amazonaws.com/v1/documentation/api/latest/guide/paginators.html>`_.

The available paginators are:

.. toctree::
  :maxdepth: 1
  :titlesonly:

  sso-admin/paginator/ListAccountAssignmentCreationStatus
  sso-admin/paginator/ListAccountAssignmentDeletionStatus
  sso-admin/paginator/ListAccountAssignments
  sso-admin/paginator/ListAccountAssignmentsForPrincipal
  sso-admin/paginator/ListAccountsForProvisionedPermissionSet
  sso-admin/paginator/ListApplicationAccessScopes
  sso-admin/paginator/ListApplicationAssignments
  sso-admin/paginator/ListApplicationAssignmentsForPrincipal
  sso-admin/paginator/ListApplicationAuthenticationMethods
  sso-admin/paginator/ListApplicationGrants
  sso-admin/paginator/ListApplicationProviders
  sso-admin/paginator/ListApplications
  sso-admin/paginator/ListCustomerManagedPolicyReferencesInPermissionSet
  sso-admin/paginator/ListInstances
  sso-admin/paginator/ListManagedPoliciesInPermissionSet
  sso-admin/paginator/ListPermissionSetProvisioningStatus
  sso-admin/paginator/ListPermissionSets
  sso-admin/paginator/ListPermissionSetsProvisionedToAccount
  sso-admin/paginator/ListRegions
  sso-admin/paginator/ListTagsForResource
  sso-admin/paginator/ListTrustedTokenIssuers
