Announcing upcoming changes to the AWS Security Token Service global endpoint

Security Blog

AWS is making changes to the AWS Security Token Service (STS) global endpoint to improve resiliency and performance:

Starting in early 2025, STS global endpoint requests will be automatically served in the same Region as deployed workloads
Applies to AWS Regions enabled by default, with gradual rollout beginning in Europe (Stockholm) Region
CloudTrail logs will be updated with new fields to clarify endpoint and serving Region
Requests to global endpoint will continue to have `us-east-1` as the `aws:RequestedRegion`
Global endpoint requests will have a separate request quota from Regional endpoints

AWS recommends using Regional STS endpoints whenever possible, especially for workloads outside AWS or in opt-in Regions.

Go to article

The AWS News Feed is currently looking for gold sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.

Nov 21
2025

AWS Security Token Service Now Supports Internet Protocol version 6 (IPv6)

May 20
2025

AWS service changes

Dec 5
2025

Amazon SES adds VPC support for API endpoints

Jun 23
2025

Introducing security group referencing and enhanced DNS support for AWS Cloud WAN

The AWS News Feed is currently looking for silver sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.

Announcing upcoming changes to the AWS Security Token Service global endpoint

Related articles