Region support - Multi-party approval

Region support

To use Multi-party approval, you must create approval teams and the identity source in the US East (N. Virginia) Region. For more information about AWS Regions, see Region in the AWS Glossary Reference.

Multi-party approval requires an organization instance of AWS IAM Identity Center. The IAM Identity Center instance can be enabled in any supported Region. For more information, see Considerations for choosing an AWS Region in the IAM Identity Center User Guide.

Cross-Region considerations

You can create approval teams that protect resources which are located in any commercial Region, even in Regions that are not US East (N. Virginia). During an approval session, user content (specifically requester comments) moves across Regions. When protecting resources in other Regions, there might be delays in the approval process if the US East (N. Virginia) Region experiences issues.

When you enable Multi-party approval and your IAM Identity Center instance in different Regions, Multi-party approval makes calls across Regions to IAM Identity Center. This means that user and group information moves across Regions. If the Region where the IAM Identity Center instance is located experiences issues, approvers might temporarily be unable to access the Multi-party approval portal, and delivery of notifications about new approvals might be delayed.

For more information, see IAM Identity Center Region data storage and operations in the IAM Identity Center User Guide.