Steps to create a role that works with the Identity Provider are given below.
Launch IAM, click Roles from left panel and click Create role button.
Choose trusted entity type of Web Identity, pick the Identity Provider (created in last step) and Audience from drop downs and then click Next: Permissions.
Click Next: Tags button followed by Next: Review button on the next screen.
Name the role as QSER and click Create role button.
(This role name appears as part of QuickSight user name. Hence, keeping the role name short.)
Open the role, copy it’s arn and save as RoleArn in your notepad.