- Newest
- Most votes
- Most comments
Hello.
Although this is not a method of restricting to specific countries, it is possible to restrict IAM user usage by IP address.
https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_examples_aws_deny-ip.html
When it comes to protecting AWS accounts, IAM users, etc., I think it would be safe to go through the following documents.
https://repost.aws/knowledge-center/security-best-practices
If you want to restrict the region you want to use, you need to set the policy as described in the document below.
https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_examples_aws_deny-requested-region.html
If you are using AWS Organizations, you can also restrict the regions that can be used with SCP.
https://docs.aws.amazon.com/organizations/latest/userguide/orgs_manage_policies_scps_examples_general.html
Relevant content
- asked a year ago
- Accepted Answerasked 5 years ago
- asked 7 months ago
- AWS OFFICIALUpdated 3 years ago
- AWS OFFICIALUpdated 2 months ago
- AWS OFFICIALUpdated 3 months ago
- AWS OFFICIALUpdated 5 months ago