This topic describes the resource quotas of CloudSSO.
| Item | Upper limit |
|---|---|
| The number of CloudSSO directories in a management account | 1 |
| The number of CloudSSO directories in a region | 1 |
| The number of users in a CloudSSO directory | 1000 |
| The number of groups in a CloudSSO directory | 500 |
| The number of users that can be added to a group | 1000 |
| The number of groups to which a user can be added | 500 |
| The number of multi-factor authentication (MFA) devices that can be bound to a user | 2 |
| The number of external identity providers (IdPs) that can be configured in a CloudSSO directory | 1 |
| The number of certificates in the metadata file of an external IdP | 2 |
| The number of characters in the metadata file of an external IdP | 75~75000 |
| The number of System for Cross-domain Identity Management (SCIM) credentials within a CloudSSO directory | 2 |
| The number of access configurations that can be created within a CloudSSO directory | 1000 |
| The number of system policies that can be configured for an access configuration | 20 |
| The number of inline policies that can be configured for an access configuration | 1 |
| The number of access configurations that can be provisioned for an account in a resource directory | 1000 |
| The number of access configurations that can be specified for a user | 50 |
| The number of access configurations that can be specified for a group | 10 |
| The number of characters that can be contained in the policy document of an inline policy | 4096 |