An access to Cloudflare Applications by AWS SSO

Hello everyone,

I have a tunnel on Cloudflare Zero Trust and for now, I am securing connection to my services by One-time PIN code, but I want to add an AWS SSO SAML 2.0

Settings are pretty easy:

  • metadata file with the links and cert from AWS add to Cloudflare
  • metadata file with the links from Cloudflare add to AWS

And also I have an access policy in Cloudflare and a user with the right email in AWS, but still have an error even with a test connection

Can someone help me please with it?
Sorry, but as a new user I can add just one screenshot

Attributes in AWS SSO