- 最新
- 投票最多
- 评论最多
It depends on how you are logging into the console. If you are logging in through federation, then you can configure the session duration. For example, However, if you use SAML for authentication, you can include the DurationSeconds parameter. in SAML assertion This parameter specifies the duration of the federated console session. The value can range from 900 seconds (15 minutes) to 43200 seconds (12 hours).
Q: When does my session expire?
For security purposes, a login session will expire 12 hours after you sign in to the AWS Management Console with your AWS or IAM account credentials. To resume your work after the session expires, choose Click login to continue and log in again. The duration of federated sessions varies depending on the federation API (GetFederationToken or AssumeRole) and the administrator’s preference. Please go to our Security Blog to learn more about building a secure delegation solution to grant temporary access to your AWS account.
相关内容
AWS 官方已更新 2 年前- AWS 官方已更新 2 年前
Thank you for the answer. We are not using SSO, we are only using IAM features (access keys, role chaining, aws console passwords). But yeah, as i understood, for just IAM user authentication via AWS console the session duration is always 12h, is that the same case even with using MFA?