AWS IAM Identity Center now supports multi-Region replication for AWS account access and application use

AWS IAM Identity Center now supports multi-Region replication, allowing organizations to replicate workforce identities and permission sets across AWS Regions for improved resiliency and data compliance.

• •Workforce identities, permission sets, and metadata can be replicated from the primary Region to additional Regions using an organization instance connected to an external IdP (e.g., Microsoft Entra ID, Okta).
• •In the event of a primary Region service disruption, users can still access AWS accounts through the access portal in a replicated Region using already provisioned permissions.
• •AWS managed applications can be deployed in additional Regions close to users and datasets, supporting data residency requirements and improved performance.
• •Requires a multi-Region customer managed AWS KMS key configured with IAM Identity Center permissions before replication can begin.
• •Available in 17 enabled-by-default commercial AWS Regions at no additional cost; standard AWS KMS charges apply