AWS Security Token Service endpoints and quotas - AWS General Reference

AWS Security Token Service endpoints and quotas

The following are the service endpoints and service quotas for this service. To connect programmatically to an AWS service, you use an endpoint. In addition to the standard AWS endpoints, some AWS services offer FIPS endpoints in selected Regions. For more information, see AWS service endpoints. Service quotas, also referred to as limits, are the maximum number of service resources or operations for your AWS account. For more information, see AWS service quotas.

Service Endpoints

By default, the AWS Security Token Service (AWS STS) is available as a global service, and all STS requests go to a single endpoint at https://sts.amazonaws.com. AWS recommends using Regional STS endpoints to reduce latency, build in redundancy, and increase session token validity. Most Regional endpoints are active by default, but you must manually enable endpoints for some Regions, such as Asia Pacific (Hong Kong). You can deactivate STS endpoints for any Regions that are enabled by default if you do not intend to use those Regions.

For more information, see Activating and Deactivating AWS STS in an AWS Region in the IAM User Guide.

Region Name Region Endpoint Protocol
US East (Ohio) us-east-2 sts.us-east-2.amazonaws.com HTTPS
US East (N. Virginia) us-east-1 sts.us-east-1.amazonaws.com HTTPS
US West (N. California) us-west-1 sts.us-west-1.amazonaws.com HTTPS
US West (Oregon) us-west-2 sts.us-west-2.amazonaws.com HTTPS
Africa (Cape Town) af-south-1 sts.af-south-1.amazonaws.com HTTPS
Asia Pacific (Hong Kong) ap-east-1 sts.ap-east-1.amazonaws.com HTTPS
Asia Pacific (Mumbai) ap-south-1 sts.ap-south-1.amazonaws.com HTTPS
Asia Pacific (Osaka-Local) ap-northeast-3 sts.ap-northeast-3.amazonaws.com HTTPS
Asia Pacific (Seoul) ap-northeast-2 sts.ap-northeast-2.amazonaws.com HTTPS
Asia Pacific (Singapore) ap-southeast-1 sts.ap-southeast-1.amazonaws.com HTTPS
Asia Pacific (Sydney) ap-southeast-2 sts.ap-southeast-2.amazonaws.com HTTPS
Asia Pacific (Tokyo) ap-northeast-1 sts.ap-northeast-1.amazonaws.com HTTPS
Canada (Central) ca-central-1 sts.ca-central-1.amazonaws.com HTTPS
China (Beijing) cn-north-1 sts.cn-north-1.amazonaws.com.cn HTTPS
China (Ningxia) cn-northwest-1 sts.cn-northwest-1.amazonaws.com.cn HTTPS
Europe (Frankfurt) eu-central-1 sts.eu-central-1.amazonaws.com HTTPS
Europe (Ireland) eu-west-1 sts.eu-west-1.amazonaws.com HTTPS
Europe (London) eu-west-2 sts.eu-west-2.amazonaws.com HTTPS
Europe (Milan) eu-south-1 sts.eu-south-1.amazonaws.com HTTPS
Europe (Paris) eu-west-3 sts.eu-west-3.amazonaws.com HTTPS
Europe (Stockholm) eu-north-1 sts.eu-north-1.amazonaws.com HTTPS
Middle East (Bahrain) me-south-1 sts.me-south-1.amazonaws.com HTTPS
South America (São Paulo) sa-east-1 sts.sa-east-1.amazonaws.com HTTPS
AWS GovCloud (US-East) us-gov-east-1 sts.us-gov-east-1.amazonaws.com HTTPS
AWS GovCloud (US) us-gov-west-1 sts.us-gov-west-1.amazonaws.com HTTPS

For information about using AWS Security Token Service in the AWS GovCloud (US-West) Region, see AWS GovCloud (US-West) Endpoints.

For information about using AWS Security Token Service in the China Regions, see: