Learn R Programming
paws.security.identity (version 0.1.5)

iam_set_security_token_service_preferences: Sets the specified version of the global endpoint token as the token version used for the AWS account

Description

Sets the specified version of the global endpoint token as the token version used for the AWS account.

Usage

iam_set_security_token_service_preferences(GlobalEndpointTokenVersion)

Arguments

GlobalEndpointTokenVersion

[required] The version of the global endpoint token. Version 1 tokens are valid only in AWS Regions that are available by default. These tokens do not work in manually enabled Regions, such as Asia Pacific (Hong Kong). Version 2 tokens are valid in all Regions. However, version 2 tokens are longer and might affect systems where you temporarily store tokens.

For information, see Activating and Deactivating STS in an AWS Region in the IAM User Guide.

Request syntax

svc$set_security_token_service_preferences(
  GlobalEndpointTokenVersion = "v1Token"|"v2Token"
)

Details

By default, AWS Security Token Service (STS) is available as a global service, and all STS requests go to a single endpoint at https://sts.amazonaws.com. AWS recommends using Regional STS endpoints to reduce latency, build in redundancy, and increase session token availability. For information about Regional endpoints for STS, see AWS Regions and Endpoints in the AWS General Reference.

If you make an STS call to the global endpoint, the resulting session tokens might be valid in some Regions but not others. It depends on the version that is set in this operation. Version 1 tokens are valid only in AWS Regions that are available by default. These tokens do not work in manually enabled Regions, such as Asia Pacific (Hong Kong). Version 2 tokens are valid in all Regions. However, version 2 tokens are longer and might affect systems where you temporarily store tokens. For information, see Activating and Deactivating STS in an AWS Region in the IAM User Guide.

To view the current session token version, see the GlobalEndpointTokenVersion entry in the response of the GetAccountSummary operation.

Examples

Run this code
# NOT RUN {
# The following command sets the STS global endpoint token to version 2.
# Version 2 tokens are valid in all Regions.
# }
# NOT RUN {
svc$set_security_token_service_preferences(
  GlobalEndpointTokenVersion = "v2Token"
)
# }
# NOT RUN {
# }

Run the code above in your browser using DataLab