Multi-Region Access Point restrictions and limitations - Amazon Simple Storage Service
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China.

Multi-Region Access Point restrictions and limitations

Multi-Region Access Points in Amazon S3 have the following restrictions and limitations.

  • Multi-Region Access Point names:

    • Must be unique within a single Amazon account.

    • Must begin with a number or lowercase letter.

    • Must be between 3 and 50 characters long.

    • Can't begin or end with a dash.

    • Can't contain underscores, uppercase letters, or periods.

    • Can't be edited after they are created.

  • Multi-Region Access Point aliases are generated by Amazon S3 and can’t be edited or reused.

  • You cannot access data through a Multi-Region Access Point using gateway endpoints or interface endpoints. In order to use Amazon PrivateLink, you must create Multi-Region Access Point endpoints. For more information, see Configuring a Multi-Region Access Point for use with Amazon PrivateLink.

  • You cannot use a Multi-Region Access Point as the distribution origin for Amazon CloudFront. However, you can configure Multi-Region Access Points as a custom distribution origin with Amazon CloudFront. For more details, see Building an active-active, latency-based application across multiple Regions on the Amazon Storage Blog.

  • Multi-Region Access Point minimum requirements:

    • Transport Layer Security (TLS) v1.2

    • Signature Version 4 (SigV4A)

      Multi-Region Access Points support Signature Version 4A. This version of SigV4 allows requests to be signed for multiple Amazon Regions. This is useful in API operations that might result in data access from one of several Regions. When using the Amazon SDK, you supply your credentials and the requests to Multi-Region Access Points will use Signature Version 4A without additional configuration. For more information about SigV4A, see Signing Amazon API requests in the Amazon General Reference.

  • Multi-Region Access Point limitations:

    • IPv6 is not supported.

    • Amazon S3 on Outposts buckets are not supported.

    • No CopyObject support, either as the source or destination.

    • No support for S3 Batch Operations.

  • Service quota limits:

    • There is a maximum of 100 Multi-Region Access Points per account.

    • There is a limit of 20 Regions for a single Multi-Region Access Point.

  • Only the following Amazon Regions are supported:

    • US East (N. Virginia)

    • US East (Ohio)

    • US West (N. California)

    • US West (Oregon)

    • Asia Pacific (Mumbai)

    • Asia Pacific (Osaka)

    • Asia Pacific (Seoul)

    • Asia Pacific (Singapore)

    • Asia Pacific (Sydney)

    • Asia Pacific (Tokyo)

    • Canada (Central)

    • Europe (Frankfurt)

    • Europe (Ireland)

    • Europe (London)

    • Europe (Paris)

    • Europe (Stockholm)

    • South America (São Paulo)