The use of Roles is a good practice in AWS. In this step, we not only configure to allow users to use (assume) a specific role at any time, but also add Condition (condition). Only when meeting the IP address or time conditions, the user can perform the switch role. To understand how to switch roles, you can review the article Getting Started with IAM.
Content: