Amazon OpenSearch Service now supports JWKS URL configuration for JWT authentication
News
This article announces JWKS URL configuration support for JWT authentication in Amazon OpenSearch Service.
- OpenSearch domains automatically fetch and validate public keys from identity provider JWKS endpoints
- Eliminates manual public key configuration and updates when keys rotate
- Includes built-in security validation checks and error messaging
- Requires OpenSearch version 3.3 or later
- Configurable via console, AWS CLI, CreateDomain, and UpdateDomainConfig APIs
- Available in all AWS Regions where OpenSearch Service operates
This enhancement simplifies JWT authentication management by automating key retrieval and validation from identity providers.
The AWS News Feed is currently looking for gold sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.
Related articles
Jun 19
2024
2024
Amazon OpenSearch Service now supports JSON Web Token (JWT) authentication and authorization
Apr 17
2025
2025
Amazon OpenSearch Service supports SAML single sign-on for OpenSearch UI
Apr 30
2025
2025
Amazon OpenSearch Service now supports OpenSearch version 2.19
Nov 14
2024
2024
Amazon OpenSearch Service now supports OpenSearch version 2.17
The AWS News Feed is currently looking for silver sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.