Posted On: May 17, 2019

Now AWS Security Token Service (STS) enables you to specify IAM managed policies as session policies to create fine-grained session permissions when user assume a role in AWS to create a session in the AWS China (Beijing) Region, Operated by Sinnet and in AWS China (Ningxia) Region, Operated by NWCD.

A session policy is a permissions policy which you can pass in the session when you assume a role. With this launch, you can use policies managed by customers and by us as session policies as session policies in a role session to further restrict role permissions for specific sessions. Additionally, using managed policies; you can now centrally store and manage session permissions as well as apply the same session permissions for multiple sessions easily. To learn more, view documentation on session permissions