1 réponse
- Le plus récent
- Le plus de votes
- La plupart des commentaires
1
AWS endpoints are regional. For example here are the IAM endpoints.. You experience something similar in the S3 console, it will indicate global, but actually the buckets and objects are region-scoped, they exist in a region. The bucket name has to be unique within the partition so you don't have to specify the region in the ARN
IAM resource (user, groups, roles, policies) are partition-scoped (globally-scoped). They can be referenced, accessed, managed from any region in the partition. You will noticed that IAM resource ARNs do not specify the region.
Contenus pertinents
- demandé il y a un an
- demandé il y a 5 mois
- AWS OFFICIELA mis à jour il y a un an
- AWS OFFICIELA mis à jour il y a 2 ans
Ok, so basically, the region I set doesn't matter, just so something is set?
In the IAM case, yes. It uses that region value to construct/find the endpoint that it calls.