Posted On: Apr 25, 2018
Amazon Identity and Access Management (IAM) now enables simplified permissions management in the Amazon Web Services China (Beijing) Region, Operated by Sinnet and in Amazon Web Services China (Ningxia) Region, Operated by NWCD. IAM allows you to use a single IAM policy condition across all Amazon Web Services services to control access to a specific region. By adding the new global condition key ‘aws:RequestedRegion’ in the condition element of your IAM policy, you can control access to the region in which an IAM principal (user or role) can perform Amazon Web Services actions.
For example, you can specify the region your developers can launch new EC2 instances, create databases in RDS, and create Lambda functions by using the single global condition key in your IAM policy.
To learn more about this new global condition, please visit Amazon Web Services Global and IAM Condition Context Keys