DEV Community

Cover image for How to Enable Multi-Session Support in the AWS Console
Chandegara Rushit
Chandegara Rushit

Posted on

3

How to Enable Multi-Session Support in the AWS Console

Have you explored AWS Multi-Session Support yet?

You might have spotted the option to enable it in the top-right corner of the AWS Management Console when you're logged in.

Multi-Session AWS Console


AWS has rolled out multi-session support in the AWS Management Console, allowing users to log in to up to 5 accounts simultaneously—be it root, IAM, or federated roles across different accounts or even within the same account.

Gone are the days of logging out and back in repeatedly. With this feature, you can seamlessly switch between dev, staging, and production accounts or roles, all in one browser!

How It Works

  1. Enable Multi-Session: Click your account name in the AWS Console, then select “Turn on multi-session support.”
  2. Add a New Session: Choose “Add session” and sign in to a new AWS account or role in a fresh tab.
  3. Isolated Tabs: Each session opens in its own tab with a unique subdomain, such as:
  4. https://123456789012-abcdefgh.us-east-1.console.aws.amazon.com

Important Notes

  • Supports up to 5 concurrent sessions.
  • Browser-specific – needs to be enabled per browser.
  • Update bookmarks to reflect unique session URLs.

Security Considerations

While this feature is a massive productivity boost, there's a security concern worth noting:

AWS Account IDs in Subdomains

  • Once multi-session support is enabled, the account ID becomes part of the console URL.
  • Even if you use an account alias, the account ID remains visible in the subdomain.
  • Some argue that account IDs should be private, while others see them as mere identifiers.
  • Regardless of where you stand in this debate, AWS account IDs appearing in URLs could potentially expose identifiers that might aid attackers in targeted phishing attempts or enumeration tactics.

Security Considerations

Why This Feature is a Game-Changer

  • Security Investigations: Quickly switch between accounts to analyze events.
  • Support Teams: Troubleshoot issues across multiple environments.
  • DevOps Engineers: Compare configurations between dev, staging, and prod.
  • Cloud Architects: Easily manage multi-account setups.

This feature is currently available in all Commercial AWS Regions and needs to be enabled per browser.

#CloudSecurity #AWSCommunity #AWSSecurity #DevOps #CloudComputing #CloudManagement #SecurityBestPractices #AWSUpdates #DevSecOps

Postmark Image

Speedy emails, satisfied customers

Are delayed transactional emails costing you user satisfaction? Postmark delivers your emails almost instantly, keeping your customers happy and connected.

Sign up

Top comments (0)

Billboard image

The Next Generation Developer Platform

Coherence is the first Platform-as-a-Service you can control. Unlike "black-box" platforms that are opinionated about the infra you can deploy, Coherence is powered by CNC, the open-source IaC framework, which offers limitless customization.

Learn more

👋 Kindness is contagious

Explore a sea of insights with this enlightening post, highly esteemed within the nurturing DEV Community. Coders of all stripes are invited to participate and contribute to our shared knowledge.

Expressing gratitude with a simple "thank you" can make a big impact. Leave your thanks in the comments!

On DEV, exchanging ideas smooths our way and strengthens our community bonds. Found this useful? A quick note of thanks to the author can mean a lot.

Okay