本文属于机器翻译版本。若本译文内容与英语原文存在差异,则一律以英文原文为准。
AWS IAM Identity Center 终端节点和配额
以下是该服务的服务端点和服务限额。要以编程方式连接到 AWS 服务,请使用终端节点。除标准 AWS 终端节点外,一些 AWS 服务还提供选定区域的FIPS终端节点。有关更多信息,请参阅 AWS 服务端点。服务配额,也称为限制,是您的 AWS 账户的最大服务资源或操作数量。有关更多信息,请参阅 AWS 服务配额。
注意
AWS 建议在您的应用程序中使用区域STS终端节点,并避免使用全局(旧版)STS终端节点。区域STS端点可减少延迟、内置冗余并提高会话令牌的有效性。有关配置应用程序以使用区域STS终端节点的更多信息,请参阅工具参考指南中的AWS STS 区域化终端节点。AWS SDKs有关全局(传统) AWS STS 终端节点的更多信息,包括如何监控此端点的使用情况,请参阅AWS 安全博客中的如何使用区域 AWS STS 终端节点。
服务端点
IAM身份中心
| 区域名称 | 区域 | 端点 | 协议 |
|---|---|---|---|
| 美国东部(俄亥俄州) | us-east-2 | sso.us-east-2.amazonaws.com | HTTPS |
| 美国东部(弗吉尼亚州北部) | us-east-1 | sso.us-east-1.amazonaws.com | HTTPS |
| 美国西部(加利福尼亚北部) | us-west-1 | sso.us-west-1.amazonaws.com | HTTPS |
| 美国西部(俄勒冈州) | us-west-2 | sso.us-west-2.amazonaws.com | HTTPS |
| 非洲(开普敦) | af-south-1 | sso.af-south-1.amazonaws.com | HTTPS |
| 亚太地区(香港) | ap-east-1 | sso.ap-east-1.amazonaws.com | HTTPS |
| 亚太地区(海得拉巴) | ap-south-2 | sso.ap-south-2.amazonaws.com | HTTPS |
| 亚太地区(雅加达) | ap-southeast-3 | sso.ap-southeast-3.amazonaws.com | HTTPS |
| 亚太地区(墨尔本) | ap-southeast-4 | sso.ap-southeast-4.amazonaws.com | HTTPS |
| 亚太地区(孟买) | ap-south-1 | sso.ap-south-1.amazonaws.com | HTTPS |
| 亚太地区(大阪) | ap-northeast-3 | sso.ap-northeast-3.amazonaws.com | HTTPS |
| 亚太地区(首尔) | ap-northeast-2 | sso.ap-northeast-2.amazonaws.com | HTTPS |
| 亚太地区(新加坡) | ap-southeast-1 | sso.ap-southeast-1.amazonaws.com | HTTPS |
| 亚太地区(悉尼) | ap-southeast-2 | sso.ap-southeast-2.amazonaws.com | HTTPS |
| 亚太地区(东京) | ap-northeast-1 | sso.ap-northeast-1.amazonaws.com | HTTPS |
| 加拿大(中部) | ca-central-1 | sso.ca-central-1.amazonaws.com | HTTPS |
| 加拿大西部(卡尔加里) | ca-west-1 | sso.ca-west-1.amazonaws.com | HTTPS |
| 欧洲地区(法兰克福) | eu-central-1 | sso.eu-central-1.amazonaws.com | HTTPS |
| 欧洲地区(爱尔兰) | eu-west-1 | sso.eu-west-1.amazonaws.com | HTTPS |
| 欧洲地区(伦敦) | eu-west-2 | sso.eu-west-2.amazonaws.com | HTTPS |
| 欧洲地区(米兰) | eu-south-1 | sso.eu-south-1.amazonaws.com | HTTPS |
| 欧洲地区(巴黎) | eu-west-3 | sso.eu-west-3.amazonaws.com | HTTPS |
| 欧洲(西班牙) | eu-south-2 | sso.eu-south-2.amazonaws.com | HTTPS |
| 欧洲地区(斯德哥尔摩) | eu-north-1 | sso.eu-north-1.amazonaws.com | HTTPS |
| 欧洲(苏黎世) | eu-central-2 | sso.eu-central-2.amazonaws.com | HTTPS |
| 以色列(特拉维夫) | il-central-1 | sso.il-central-1.amazonaws.com | HTTPS |
| 中东(巴林) | me-south-1 | sso.me-south-1.amazonaws.com | HTTPS |
| 中东 (UAE) | me-central-1 | sso.me-central-1.amazonaws.com | HTTPS |
| 南美洲(圣保罗) | sa-east-1 | sso.sa-east-1.amazonaws.com | HTTPS |
| AWS GovCloud (美国东部) | us-gov-east-1 | sso.us-gov-east-1.amazonaws.com | HTTPS |
| AWS GovCloud (美国西部) | us-gov-west-1 | sso.us-gov-west-1.amazonaws.com | HTTPS |
Identity Store
| 区域名称 | 区域 | 端点 | 协议 |
|---|---|---|---|
| 美国东部(俄亥俄州) | us-east-2 | identitystore.us-east-2.amazonaws.com | HTTPS |
| 美国东部(弗吉尼亚州北部) | us-east-1 | identitystore.us-east-1.amazonaws.com | HTTPS |
| 美国西部(北加利福尼亚) | us-west-1 | identitystore.us-west-1.amazonaws.com | HTTPS |
| 美国西部(俄勒冈州) | us-west-2 | identitystore.us-west-2.amazonaws.com | HTTPS |
| 非洲(开普敦) | af-south-1 | identitystore.af-south-1.amazonaws.com | HTTPS |
| 亚太地区(香港) | ap-east-1 | identitystore.ap-east-1.amazonaws.com | HTTPS |
| 亚太地区(海得拉巴) | ap-south-2 | identitystore.ap-south-2.amazonaws.com | HTTPS |
| 亚太地区(雅加达) | ap-southeast-3 | identitystore.ap-southeast-3.amazonaws.com | HTTPS |
| 亚太地区(墨尔本) | ap-southeast-4 | identitystore.ap-southeast-4.amazonaws.com | HTTPS |
| 亚太地区(孟买) | ap-south-1 | identitystore.ap-south-1.amazonaws.com | HTTPS |
| 亚太地区(大阪) | ap-northeast-3 | identitystore.ap-northeast-3.amazonaws.com | HTTPS |
| 亚太地区(首尔) | ap-northeast-2 | identitystore.ap-northeast-2.amazonaws.com | HTTPS |
| 亚太地区(新加坡) | ap-southeast-1 | identitystore.ap-southeast-1.amazonaws.com | HTTPS |
| 亚太地区(悉尼) | ap-southeast-2 | identitystore.ap-southeast-2.amazonaws.com | HTTPS |
| 亚太地区(东京) | ap-northeast-1 | identitystore.ap-northeast-1.amazonaws.com | HTTPS |
| 加拿大(中部) | ca-central-1 | identitystore.ca-central-1.amazonaws.com | HTTPS |
| 加拿大西部(卡尔加里) | ca-west-1 | identitystore.ca-west-1.amazonaws.com | HTTPS |
| 欧洲地区(法兰克福) | eu-central-1 | identitystore.eu-central-1.amazonaws.com | HTTPS |
| 欧洲地区(爱尔兰) | eu-west-1 | identitystore.eu-west-1.amazonaws.com | HTTPS |
| 欧洲地区(伦敦) | eu-west-2 | identitystore.eu-west-2.amazonaws.com | HTTPS |
| 欧洲地区(米兰) | eu-south-1 | identitystore.eu-south-1.amazonaws.com | HTTPS |
| 欧洲地区(巴黎) | eu-west-3 | identitystore.eu-west-3.amazonaws.com | HTTPS |
| 欧洲(西班牙) | eu-south-2 | identitystore.eu-south-2.amazonaws.com | HTTPS |
| 欧洲地区(斯德哥尔摩) | eu-north-1 | identitystore.eu-north-1.amazonaws.com | HTTPS |
| 欧洲(苏黎世) | eu-central-2 | identitystore.eu-central-2.amazonaws.com | HTTPS |
| 以色列(特拉维夫) | il-central-1 | identitystore.il-central-1.amazonaws.com | HTTPS |
| 中东(巴林) | me-south-1 | identitystore.me-south-1.amazonaws.com | HTTPS |
| 中东 (UAE) | me-central-1 | identitystore.me-central-1.amazonaws.com | HTTPS |
| 南美洲(圣保罗) | sa-east-1 | identitystore.sa-east-1.amazonaws.com | HTTPS |
| AWS GovCloud (美国东部) | us-gov-east-1 | identitystore.us-gov-east-1.amazonaws.com | HTTPS |
| AWS GovCloud (美国西部) | us-gov-west-1 | identitystore.us-gov-west-1.amazonaws.com | HTTPS |
服务限额
| 名称 | 默认值 | 可调整 | 描述 |
|---|---|---|---|
| 服务提供商 SAML 2.0 证书的文件大小(PEM格式) | 每个受支持的区域:2 KB | 否 | 服务提供商 SAML 2.0 证书的最大文件大小(以 KB 为单位)(PEM格式)。 |
| IAM身份中心支持的群组数量 | 每个受支持的区域:10 万个 | 否 | IAM身份中心支持的最大群组数。 |
| IAM身份中心允许的权限集数量 | 每个支持的区域:2000 个 | 是 |
IAM身份中心中权限集的默认数量。 |
| 每个 AWS 账户允许的权限集数量 | 每个支持的区域:250 个 | 是 |
每个 AWS 账户允许的默认权限集数量。 |
| 可用于评估用户权限的唯一组数量 | 每个受支持的区域:1000 个 | 否 | 可用于评估用户权限的唯一组的最大数量。在 AWS 访问门户中显示用户的可用 AWS 帐户和应用程序图标之前,Ident IAM ity Center 会通过评估用户的群组成员资格来评估用户的有效权限。 |
| IAM身份中心支持的用户数量 | 每个受支持的区域:10 万个 | 是 |
IAM身份中心支持的默认用户数。 |
| 可以配置的 AWS 账户或应用程序的总数 | 每个受支持的区域:3000 个 | 是 |
可以配置的默认 AWS 账户或应用程序总数(总和)。例如,您可能配置了 2750 个账户和 250 个应用程序,总共有 3000 个账户和应用程序。 |
有关更多信息,请参阅《AWS IAM Identity Center 用户指南》中的 AWS IAM Identity Center 配额。
