...
Attribute 2:
The Name value of the second attribute is, https://aws.amazon.com/SAML/Attributes/Role
In the Script edit box, enter the text below:
"arn:aws:iam::226196376180:saml-provider/DualShield,arn:aws:iam::226196376180:role/"+AWSRole
The first part, "arn:aws:iam::226196376180:saml-provider/DualShield" is the ARN of the Identity Provider created in AWS. See below:
The second part, "arn:aws:iam::226196376180:role/"+AWSRole is the ARN of the role of the user. AWSRole is a user's identity attribute mapped to an AD attribute that define the user's role in AWS.
Finally, click Save to save it"SAVE" to complete creation of this Service Provider.
