在AWS中，可以使用AWS Identity and Access Management（IAM）来创建多租户角色。多租户角色可以用于给不同租户分配不同的权限。下面是一个使用Python SDK（boto3）创建多租户角色的示例代码：

import boto3

# 创建IAM客户端
iam_client = boto3.client('iam')

# 创建多租户角色
def create_tenant_role(role_name, trust_policy_document):
    try:
        # 创建角色
        response = iam_client.create_role(
            RoleName=role_name,
            AssumeRolePolicyDocument=trust_policy_document
        )
        
        # 返回新创建的角色ARN
        return response['Role']['Arn']
    except Exception as e:
        print(f"Error creating role: {e}")
        return None

# 设置多租户角色的权限
def set_tenant_role_permissions(role_name, policy_arns):
    try:
        # 为角色附加策略
        for policy_arn in policy_arns:
            response = iam_client.attach_role_policy(
                RoleName=role_name,
                PolicyArn=policy_arn
            )
    except Exception as e:
        print(f"Error attaching policies to role: {e}")

# 示例用法
role_name = 'MyTenantRole'
trust_policy_document = {
    "Version": "2012-10-17",
    "Statement": [
        {
            "Effect": "Allow",
            "Principal": {
                "AWS": "arn:aws:iam::123456789012:root"
            },
            "Action": "sts:AssumeRole",
            "Condition": {}
        }
    ]
}
policy_arns = [
    'arn:aws:iam::aws:policy/AmazonS3ReadOnlyAccess',
    'arn:aws:iam::aws:policy/AmazonEC2ReadOnlyAccess'
]

# 创建多租户角色
tenant_role_arn = create_tenant_role(role_name, trust_policy_document)

# 设置多租户角色的权限
if tenant_role_arn:
    set_tenant_role_permissions(role_name, policy_arns)

以上示例代码中，create_tenant_role函数用于创建多租户角色，set_tenant_role_permissions函数用于为多租户角色设置权限。你可以根据实际需求修改角色名称、信任策略文件和策略ARN列表。