AWS IAM Identity Center simplifies calls to AWS services with single identity context
News
AWS IAM Identity Center now enables the use of a single identity context to simplify calls to AWS services, making it easier for application developers to propagate user identities across AWS services.
Specifically, the article covers:
- Previously, developers had to use two different IAM role sessions for services that authorize user access and those that only log user identities
- With this release, developers can use a single IAM role session with sts:identity_context for all AWS services
- Services that support trusted identity propagation will use the identity context to authorize user access
- Services not part of trusted identity propagation will continue to authorize access via IAM roles
- All AWS services using CloudTrail event version 1.09 and above will log the IAM Identity Center userId in their service logs and CloudTrail logs
- This feature is available at no additional cost in all AWS Regions with IAM Identity Center
The AWS News Feed is currently looking for gold sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.
Related articles
Oct 17
2024
2024
Amazon DataZone launches support for AWS IAM Identity Center account instance
Sep 25
2024
2024
Managing identity source transition for AWS IAM Identity Center
Feb 3
2026
2026
AWS IAM Identity Center now supports multi-Region replication for AWS account access and application use
Mar 14
2026
2026
Deploy AWS applications and access AWS accounts across multiple Regions with IAM Identity Center
The AWS News Feed is currently looking for silver sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.