AWS Setup Guide

Navigate to the AWS Management Console and sign in with your AWS account credentials.

Open AWS Console

In the AWS Console, search for "IAM" in the services search bar and select IAM (Identity and Access Management).

Direct link to IAM Console

You have two options:

• Use existing user: Click on "Users" in the left sidebar and select an existing user
• Create new user: Click "Users" → "Create user" and follow the wizard

Ensure your user has the necessary DynamoDB permissions. You can:

• Use AWS managed policy: Attach "AmazonDynamoDBFullAccess" for full access
• Use AWS managed policy: Attach "AmazonDynamoDBReadOnlyAccess" for read-only access
• Create custom policy: Define specific permissions for your needs

AWS Documentation: DynamoDB IAM Permissions

Navigate to the user's "Security credentials" tab and create an access key:

• Click "Create access key"
• Select "Application running outside AWS" as the use case
• Add a description tag (optional): "DinoDB macOS App"
• Click "Create access key"

In DinoDB:

• Click the "+" button or use File → New Account
• Enter your AWS Access Key ID
• Enter your AWS Secret Access Key
• Select your preferred AWS Region
• Give your account a descriptive name
• Click "Add Account"

Sign in to your AWS Management Console and navigate to AWS Identity Center:

• Search for "IAM Identity Center" in the services search
• Select your preferred region (us-east-1 recommended)
• Click "Enable" if Identity Center isn't already enabled
• Choose your identity source (AWS Identity Center directory or external provider)

Open AWS Identity Center Console

Set up users and groups in Identity Center:

• Navigate to "Users" in the left sidebar
• Add users manually or sync from your external identity provider
• Create groups to organize users (optional but recommended)
• Assign users to appropriate groups

AWS Documentation: Adding Users

Create permission sets that define what users can access:

• Go to "Permission sets" in the left sidebar
• Click "Create permission set"
• Choose predefined or custom permission set
• For DynamoDB access, include policies like:

AWS Documentation: Permission Sets

Connect users to AWS accounts with their permission sets:

• Navigate to "AWS accounts" in the left sidebar
• Select the AWS account you want to provide access to
• Click "Assign users or groups"
• Select users/groups and assign the appropriate permission set
• Repeat for additional AWS accounts as needed

You'll need these details for DinoDB configuration:

• Start URL: Found in Identity Center settings (e.g., https://d-1234567890.awsapps.com/start)
• SSO Region: The region where Identity Center is configured
• Account ID(s): The AWS account numbers you have access to
• Role Names: The permission set names that will become role names

In DinoDB Professional:

• Click the "+" button or use File → New Account
• Select "AWS Identity Center (SSO)" as the authentication type
• Enter your Start URL
• Select your SSO Region
• Give your configuration a descriptive name
• Click "Add Account"
• Follow the browser authentication flow
• Select the account and role you want to use

Access Denied Errors

• Verify your IAM user has the correct DynamoDB permissions
• Check that your access keys are valid and not expired
• Ensure you're connecting to the correct AWS region

SSO Authentication Fails

• Verify your Start URL is correct and accessible
• Check that you have been assigned to the AWS account
• Ensure your SSO session hasn't expired
• Try clearing browser cookies for the SSO domain

No Tables Visible

• Confirm you're connected to the correct AWS region
• Verify your permissions include "dynamodb:ListTables"
• Check that DynamoDB tables exist in the selected region

Connection Timeout

• Check your internet connection
• Verify AWS service status for your region
• Try a different AWS region