Posted On: May 17, 2019
Now Amazon Web Services Security Token Service (STS) enables you to specify IAM managed policies as session policies to create fine-grained session permissions when user assume a role in Amazon Web Services to create a session in the Amazon Web Services China (Beijing) Region, Operated by Sinnet and in Amazon Web Services China (Ningxia) Region, Operated by NWCD.
A session policy is a permissions policy which you can pass in the session when you assume a role. With this launch, you can use policies managed by customers and by us as session policies as session policies in a role session to further restrict role permissions for specific sessions. Additionally, using managed policies; you can now centrally store and manage session permissions as well as apply the same session permissions for multiple sessions easily. To learn more, view documentation on session permissions.