AWS update of Week 7 (13Feb-19Feb)

AWS update of Week 7 (13Feb-19Feb)

Announcing the ability to enable AWS Systems Manager by default across all EC2 instances in an account

Published Date: 2023-02-17 18:54:56+00:00

AWS Systems Manager customers now have the option to enable Systems Manager, and configure permissions for all EC2 instances in an account, with a single action using the Default Host Management Configuration (DHMC) Agent. This feature provides a method to help ensure core Systems Manager capabilities such as Patch Manager, Session Manager, and Inventory are available for all new and existing instances in an account. DHMC is ideal for all EC2 users, and offers a simple, scalable process to standardize the availability of System Manager tools for users who manage a large number of instances.

Amazon Connect launches granular access controls for real-time metrics

Published Date: 2023-02-17 21:16:56+00:00

Amazon Connect now provides the ability for contact center administrators to apply granular access permissions to real-time metrics available in the Amazon Connect UI using resource tagging and tag-based access controls. This new capability enables customers to define who is able to see real-time metrics for specific users, queues, and routing profiles. For example, you can tag users with Team:Compliance and then only enable the Compliance team manager to see real-time metrics for these users.

Amazon RDS for Oracle now supports January 2023 Release Updates (RU) for 19c and 21c

Published Date: 2023-02-17 18:04:55+00:00

Amazon Relational Database Service (Amazon RDS) for Oracle now supports the January 2023 Release Updates (RU) for Oracle Database 19c and Oracle Database 21c.

AWS App Runner adds service level concurrency, CPU and Memory utilization metrics

Published Date: 2023-02-17 21:21:56+00:00

AWS App Runner now adds service level metrics for CPU utilization, Compute Memory utilization, and the total number of concurrent requests served by the App Runner service in the App Runner console and Amazon CloudWatch. App Runner makes it easier for developers to quickly deploy containerized web applications and APIs to the cloud, at scale, and without managing infrastructure. Earlier, you could only view the CPU and memory utilization at application instance level. Now, you can view all these metrics at your App Runner service level. You can use these metrics to optimize your App Runner service’s auto-scaling configuration by analyzing the CPU and Memory utilization for the concurrent requests served by your service.

Amazon Data Lifecycle Manager is now available in the AWS Europe (Spain) and AWS Europe (Zurich) Regions

Published Date: 2023-02-17 19:10:55+00:00

With the general availability of Amazon Data Lifecycle Manager in the AWS Europe (Spain) and AWS Europe (Zurich) Regions, customers in those regions can now automate the creation, sharing, copying and retention of Amazon EBS Snapshots and EBS-backed AMIs via policies. Data Lifecycle Manager eliminates the need for complicated custom scripts to manage your EBS resources, saving you time and money.

AWS Incident Detection and Response now supports New Relic integration

Published Date: 2023-02-17 20:56:55+00:00

AWS Incident Detection and Response now supports ingestion of events from New Relic via Amazon EventBridge. AWS Incident Detection and Response offers AWS Enterprise Support customers proactive monitoring and incident management for their selected workloads to help improve operations, increase workload resiliency, and accelerate recovery from critical incidents. Now when your New Relic Workflow creates an event, AWS Incident Detection and Response is notified of this event and starts the response process. You maintain control of the event details you share with AWS Incident Detection and Response. This launch extends the supported event sources for AWS Incident Detection and Response.

Amazon CloudWatch announces increased quotas for Logs Insights

Published Date: 2023-02-17 18:54:56+00:00

Amazon CloudWatch Logs Insights has increased the log group quota from 20 to 50, increased query timeouts from 15 minutes to 60 minutes, and increased query concurrency quota from 20 to 30. By increasing the queried log groups’ quotas from 20 to 50, customers can now select up to 50 log groups in a single query. With the increased query timeout from 15 mins to 60 mins, customers can successfully execute long-running queries. With increased concurrency from 20 to 30, customers can now run 30 queries parallel. The increases across log group limits, timeouts and concurrency provides an even powerful customer experience to troubleshoot better as customers can efficiently and effectively query on log data in Amazon CloudWatch Logs. The quota increase is supported for both single and cross-account queries.

AWS Step Functions adds integration for 35 services including EMR Serverless

Published Date: 2023-02-17 19:38:55+00:00

AWS Step Functions expands its AWS SDK integrations with support for 35 additional AWS services including Amazon EMR Serverless, AWS Clean Rooms, AWS IoT Fleetwise and AWS IoT Roborunner.

Request tracing for customizations now available for AWS Control Tower Account Factory for Terraform

Published Date: 2023-02-16 20:58:28+00:00

AWS Control Tower now provides you with the ability to trace a customization request through the entire AWS Control Tower Account Factory for Terraform (AFT) workflow. With AFT, Terraform customers can automate the creation of fully functional accounts that grant them access to all the resources they need to be productive. This feature enhancement allows customers to track where their customizations are in the pipeline and enables them to identify and troubleshoot issues more easily. 

Amazon Pinpoint now supports SMS and voice spending metrics in Amazon CloudWatch

Published Date: 2023-02-16 18:07:26+00:00

Amazon Pinpoint now helps customers determine the amount spent for SMS and voice activity during the current month by providing visibility to SMS and voice spend metrics through the Amazon CloudWatch console. Amazon CloudWatch is a monitoring service for AWS cloud resources that you can use to collect and track metrics, collect and monitor log files, and set alarms. With Amazon CloudWatch, users can view their Amazon Pinpoint month to date SMS or voice spend metrics, as well as analyze historical trends.

AWS WAF Captcha adds support for ten additional languages

Published Date: 2023-02-16 18:04:26+00:00

AWS WAF Captcha helps block unwanted bot traffic by requiring users to successfully complete challenges before their web requests are allowed to reach AWS WAF-protected resources. WAF Captcha challenges are simple for humans while remaining effective against bots. Starting today, AWS WAF Captcha is adding ten additional languages - Arabic, German, Spanish, French, Italian, Dutch, Japanese, Portuguese, Turkish, and Chinese (simplified) - and is designed to meet WCAG accessibility requirements. AWS WAF Captcha uses the client browser language settings to select the language of the challenge, so there is no additional configuration needed. In addition, you will see a new option to change the Captcha page language, if needed.

Amazon MQ adds AWS Key Management Service (AWS KMS) support for RabbitMQ brokers

Published Date: 2023-02-16 22:35:26+00:00

Amazon MQ now supports the AWS Key Management Service (AWS KMS) to create and manage keys for at-rest encryption of customer data for RabbitMQ brokers. Amazon MQ handles the encryption and decryption seamlessly, so you don’t have to change your applications to access your data. When you create a broker, you can now select the KMS key used to encrypt your data from the following three options: a KMS key in the Amazon MQ service account, a KMS key in your account that Amazon MQ creates and manages, or a KMS key in your account that you create and manage. In addition to encryption at rest, all data transferred between Amazon MQ and client applications is securely transmitted using TLS/SSL.

AWS WAF Fraud Control - Account Takeover Protection now allows inspection of origin responses

Published Date: 2023-02-16 18:01:26+00:00

AWS WAF Fraud Control - Account Takeover Protection (ATP) can now inspect origin responses, giving customers additional protection against brute force and credential stuffing attacks on their login pages. Until today, ATP rules were limited to inspecting incoming login requests against a stolen credentials database, analyzing requests seen over time for username and password traversals, and then aggregating this data based on unique identifiers, such as IP address or session ID. With this release, ATP managed rules can now also inspect application response data and block login attempts based on customer-defined login failure conditions. This capability helps to protect against brute force attacks involving non-compromised credentials.

Amazon Elastic File System (Amazon EFS) is now available in the AWS Asia Pacific (Hyderabad) region

Published Date: 2023-02-16 22:05:26+00:00

Customers can now create file systems using Amazon Elastic File System (Amazon EFS) in the AWS Asia Pacific (Hyderabad) Region.

Amazon Cognito identity pool data events are now available in AWS CloudTrail

Published Date: 2023-02-16 18:43:26+00:00

Amazon Cognito identity pools now publishes data events to AWS CloudTrail logs. Customers now have greater visibility into access-related activities for both guest and authenticated users of their applications. Administrators can now configure Amazon CloudWatch Alarms to monitor specific activity on Amazon Cognito identity pools and react based on automated workflows. Customers can record data events in AWS CloudTrail and gain better insight into the identity providers leveraged by users to access AWS resources with Amazon Cognito identity pools. AWS CloudTrail may charge for recording data events. 

Amazon Managed Grafana now supports network access control 

Published Date: 2023-02-16 20:35:26+00:00

Amazon Managed Grafana now supports inbound network access control that helps you to restrict user access to your Grafana workspaces. Amazon Managed Grafana is a fully managed service for Grafana, a popular open-source analytics platform that enables you to query, visualize, and alert on your metrics, logs, and traces. With this launch, you have granular security controls over the rollout of Grafana workspaces by defining customer-managed prefix lists and VPC endpoints to help you restrict the inbound network traffic that can reach your Grafana workspaces. 

Amazon EC2 X2iedn instances now available in Asia Pacific (Osaka) region

Published Date: 2023-02-16 20:43:26+00:00

Starting today, memory optimized Amazon EC2 X2iedn instances are available in Asia-Pacific(Osaka) region. X2iedn instances are powered by 3rd generation Intel Xeon Scalable Processors and delivers improvements in performance, price performance, and cost per GiB of memory compared to previous generation X1e instances. X2iedn instances have a memory to vCPU ratio of 32:1 and are great fit for memory-intensive workloads such as databases and analytics, and big data processing engines. X2iedn instances are SAP-certified for running Business Suite on HANA, SAP S/4HANA, Data Mart Solutions on HANA, Business Warehouse on HANA, SAP BW/4HANA, and SAP NetWeaver workloads on any database. You can view the certification data for X2iedn on the Certified and Supported SAP HANA Hardware Directory.

AWS Trusted Advisor fault tolerance check for Amazon ElastiCache for Redis is now available in all regions

Published Date: 2023-02-15 22:12:01+00:00

The AWS Trusted Advisor fault tolerance check for Amazon ElastiCache for Redis is now generally available in 14 additional regions: AWS GovCloud (US-West), AWS GovCloud (US-East), Africa (Cape Town), Asia Pacific (Hong Kong), Asia Pacific (Melbourne), Asia Pacific (Hyderabad), Asia Pacific (Jakarta), Europe (Milan), Europe (Spain), Europe (Zurich), Middle East (Bahrain), Middle East (UAE), China (Beijing, operated by Sinnet), and China (Ningxia, operated by NWCD). With this launch, the Trusted Advisor fault tolerance check for ElastiCache for Redis is now available in all AWS regions. AWS Trusted Advisor evaluates customers’ AWS account with automated best practice checks and provides cloud optimization recommendations to reduce costs, improve performance, increase security, and monitor service quotas. 

Amazon Fraud Detector(AFD) launched AFD-Lists to optimize fraud prevention strategies

Published Date: 2023-02-15 21:53:54+00:00

Today, Amazon Fraud Detector (AFD) announces the launch of AFD Lists feature. Lists allows you to reference a set of values in your AFD rules. Fraud risk teams commonly maintain lists of attributes, such as IP, email address, and devices fingerprints to allow/deny transaction as part of their fraud prevention and detection strategy. With Lists, an organization can dynamically update these lists in real time, without re-publishing the rule.

Amazon Kinesis Data Streams for Amazon DynamoDB now supports AWS CloudFormation for Global Tables

Published Date: 2023-02-16 19:20:26+00:00

Amazon Kinesis Data Streams for Amazon DynamoDB now supports AWS CloudFormation for DynamoDB global tables, which means you can enable streaming to an Amazon Kinesis data stream on your DynamoDB global tables with CloudFormation templates. By streaming your DynamoDB data changes to a Kinesis data stream, you can build advanced streaming applications with Amazon Kinesis services. For example, Amazon Kinesis Data Analytics reduces the complexity of building, managing, and integrating with Apache Flink and provides built-in functions to filter, aggregate, and transform streaming data for advanced analytics. You also can use Amazon Kinesis Data Firehose to take advantage of managed streaming delivery of DynamoDB table data to other AWS services such as Amazon OpenSearch Service, Amazon Redshift, and Amazon S3.

Amazon EC2 Dedicated Hosts now support automated maintenance on rare degradation

Published Date: 2023-02-15 21:11:30+00:00

You now have the automated host maintenance feature available for your Amazon EC2 Dedicated Hosts. With automated host maintenance, in the rare event of degradation of a dedicated host, AWS will automatically reboot the EC2 instances running on it onto a newly allocated dedicated host during a scheduled maintenance event, to reduce your application’s downtime and offload undifferentiated heavy-lifting of host maintenance.

AWS Network Firewall now supports tag-based resource groups

Published Date: 2023-02-15 18:04:15+00:00

AWS Network Firewall now supports tag-based resource groups to simplify management of your firewall rules. AWS Network Firewall is a managed firewall service that makes it easy to deploy essential network protections for all your Amazon VPCs. With this launch, you can tag and filter AWS resources to centrally manage and reference sets of resources in your stateful firewall rules, instead of manually updating your rule groups every time you make changes to a set of resources.

AWS Trusted Advisor fault tolerance check for Amazon MemoryDB for Redis is now available in 4 additional regions

Published Date: 2023-02-15 22:13:13+00:00

The AWS Trusted Advisor fault tolerance check for Amazon MemoryDB for Redis is now generally available in 4 new regions: Asia Pacific (Hong Kong), Europe (Milan), China (Beijing, operated by Sinnet), and China (Ningxia, operated by NWCD). With this launch, the AWS Trusted Advisor fault tolerance check for MemoryDB is now available in all regions where MemoryDB is generally available. AWS Trusted Advisor evaluates customers’ AWS accounts with automated best practice checks and provides cloud optimization recommendations to reduce costs, improve performance, increase security, and monitor service quotas. 

Announcing increased AWS Resource Access Manager default quota values

Published Date: 2023-02-15 19:03:28+00:00

AWS Resource Access Manager (AWS RAM) now supports higher default quotas to help you scale your resource sharing. AWS RAM helps you securely share your resources across AWS accounts, within your organization or organizational units (OUs), and with AWS Identity and Access Management (IAM) roles and users for supported resource types. For each AWS Region in an account, you can now share up to 25,000 resources and share resources with up to 25,000 principals. Additionally, you can create up to 25,000 resource shares per AWS Region in an account. For each individual resource share, you can share up to 5,000 resources and share resources with up to 5,000 principals.

AWS Resource Access Manager is now available in the AWS Asia Pacific (Melbourne) Region

Published Date: 2023-02-15 18:16:34+00:00

Starting today, AWS Resource Access Manager (AWS RAM) is available for use in the AWS Asia Pacific (Melbourne) Region.

Database Activity Streams now supports Amazon RDS for SQL Server

Published Date: 2023-02-15 18:48:45+00:00

Database Activity Streams (DAS) now supports Amazon RDS for SQL Server to provide a near real-time stream of database activities for auditing and compliance purposes. You can integrate DAS with your monitoring tools in order to monitor and set alarms for auditing the database activity. You can also connect Amazon Kinesis Data Stream to Amazon Kinesis Data Firehose to save stream logs in a user readable format to S3 . You can enable DAS with only a few clicks in the AWS Console to provide safeguards for your databases and help you meet compliance and regulatory requirements. 

ENA Express now supports 15 new EC2 Instances

Published Date: 2023-02-15 18:13:22+00:00

ENA Express now supports 15 new instances including: C6i.32xlarge, C6i.metal, C6id.32xlarge, C6id.metal, M6i.32xlarge, M6i.metal, M6id.32xlarge, M6id.metal, R6i.32xlarge, R6i.metal, R6id.32xlarge, R6id.metal, i4i.32xlarge, i4i.metal, and im4gn.16xlarge. Customers using these instances today can now enable ENA Express with a simple configuration. ENA Express is a networking feature that uses the AWS Scalable Reliable Datagram (SRD) protocol to improve network performance in two key ways: higher single flow bandwidth and lower tail latency for network traffic between EC2 instances. SRD is a proprietary protocol that delivers these improvements through advanced congestion control, multi-pathing, and packet reordering directly from the Nitro card. 

AWS announces new AWS Direct Connect location in Ashburn, Virginia

Published Date: 2023-02-14 18:12:50+00:00

Today, AWS announced the opening of a new AWS Direct Connect location within the Digital Realty data center in Ashburn, Virginia. By connecting your network to AWS at this location, you gain private, direct access to all public AWS Regions (except those in China), AWS GovCloud Regions, and AWS Local Zones

Organizations-related condition keys for IAM policies now available in AWS China Regions

Published Date: 2023-02-14 18:05:11+00:00

AWS Identity and Access Management (IAM) now supports the ability to refine permissions policies based on the organizational unit (OU) or organization ID in AWS Organizations of the principal or resource for IAM policies in the AWS China (Beijing) region, operated by Sinnet, and the AWS China (Ningxia) region, operated by NWCD. With these new IAM capabilities, you now can author IAM policies to enable your principals to access only resources inside specific OUs, or organizations.

Amazon GuardDuty now available in AWS Asia Pacific (Hyderabad) Region

Published Date: 2023-02-14 22:02:38+00:00

Amazon GuardDuty is now available in the Asia Pacific (Hyderabad) Region. You can now continuously monitor and detect security threats in this additional region to help protect your AWS accounts, workloads, and data.

Programmatically manage enabled and disabled opt-in AWS Regions on AWS accounts

Published Date: 2023-02-14 21:53:06+00:00

Today, we are making it easier for customers to view and manage enabled and disabled opt-in AWS Regions on their AWS accounts using the AWS Command Line Interface (CLI) and AWS Software Development Kit (SDK). We previously released the Accounts SDK that enables customers to programmatically manage both primary and alternate contact information for their accounts. Starting today, customers can use the same SDK to additionally enable and disable opt-in AWS Regions, saving them the time and effort of doing it through the AWS Management Console.

AWS Snow Family now supports Amazon EKS Anywhere 

Published Date: 2023-02-14 18:05:27+00:00

Today, we are excited to announce the general availability of Amazon Elastic Kubernetes Service (Amazon EKS) Anywhere on Snow, a new deployment option that helps customers create and operate Kubernetes clusters on AWS Snow Family devices. EKS Anywhere on Snow is designed to provide Kubernetes cluster provisioning and familiar operational visibility tooling for customers to manage container applications lifecycle running on Snow devices deployed at the edge. 

Amazon GameLift now supports publishing events to encrypted Amazon SNS topics

Published Date: 2023-02-14 18:15:00+00:00

Amazon GameLift can now publish events to Amazon Simple Notification Service (Amazon SNS) topics that have server-side encryption (SSE) enabled, for additional protection of events that carry sensitive data. Amazon GameLift is a fully managed solution that allows you to manage and scale dedicated game servers for session-based multiplayer games. With this release, customers can now enable server-side encryption to receive player matchmaking and game session queue notifications from the GameLift service.  

Amazon EventBridge event buses supports enhanced integration with AWS Service Quotas

Published Date: 2023-02-14 22:10:18+00:00

Amazon EventBridge event buses now supports enhanced integration with AWS Service Quotas. Previously, you could use the AWS Service Quotas page to view the default quotas, applied quotas, and also request quota increases for Amazon EventBridge. Now, with enhanced integration, your quota increase requests for limits such as PutEvents transactions-per-second, number of rules, and invocations per second among others will be processed within one business day or faster, enabling you to respond quickly to changes in usage. 

Workspot announces Cloud PCs powered by Amazon WorkSpaces Core

Published Date: 2023-02-14 21:36:18+00:00

Today, Workspot announces Workspot Cloud PCs powered by Amazon WorkSpaces Core. You can now provision, deploy, and manage Workspot Cloud PCs powered by Amazon WorkSpaces Core directly from Workspot Control: your single global administration console. You can also use your existing security, PC management tools, and Security Event and Incident Management (SIEM) solutions seamlessly extending your current desktop management processes to your new Cloud PCs. 

Amazon VPC Announces General Availability of Resource Map in AWS Management Console

Published Date: 2023-02-13 18:10:16+00:00

Amazon VPC announces general availability of Resource Map, a tool that displays all your VPC resources and their connections in a visual format on a single page, providing you a clear understanding of your VPC architecture.

AWS announces AWS Modular Data Center (MDC) for U.S. Department of Defense customers

Published Date: 2023-02-13 17:50:16+00:00

Today, AWS announces the availability of AWS Modular Data Center (MDC) to the U.S. Department of Defense (DoD). AWS MDC makes it easy for DoD agencies to deploy modular data centers managed by AWS in infrastructure-limited locations. AWS MDC is available as a self-contained modular data center unit: an environmentally controlled physical enclosure that can host racks of AWS Outposts or AWS Snow Family devices. AWS MDC can scale further through the deployment of additional units. Customers can proactively monitor and manage their modular data centers using the management system available with every unit. Customers also have the option to use satellite communications for network connectivity.

Introducing Amazon EC2 M7g and R7g Instances

Published Date: 2023-02-13 22:53:16+00:00

AWS announces the general availability of Amazon Elastic Compute Cloud (Amazon EC2) M7g instances and Amazon EC2 R7g instances. These instances are powered by AWS Graviton3 processors and deliver up to 25% better performance over Graviton2-based instances. Compared to AWS Graviton2 processors, they offer up to 2x better floating-point performance, up to 2x faster crypto performance, and up to 3x better machine learning (ML) performance, including support for bfloat16. These Graviton3-based instances feature the latest DDR5 memory, which provides 50% more memory bandwidth than DDR4, to enable high-speed access to data in memory. These instances are built on the AWS Nitro System. M7g instances are built for general purpose workloads, such as application servers, microservices, gaming servers, midsize data stores, and caching fleets. R7g instances are used for memory-intensive workloads such as open-source databases, in-memory caches, and real-time big data analytics.

Amazon Elastic Container Service improves accuracy of Service Load Balancing

Published Date: 2023-02-13 18:04:16+00:00

Amazon Elastic Container Service (Amazon ECS) has improved the accuracy of Elastic Load Balancing (ELB) for Amazon ECS services. Load balancing on Amazon ECS now more accurately routes traffic to running tasks as tasks will be deregistered from the ELB before they enter a stopped state. Furthermore, with these improvements, Amazon ECS also helps your services running on the Fargate Spot capacity provider be more resilient to Spot termination notices.

Amazon RDS for PostgreSQL now supports tcn extension

Published Date: 2023-02-13 18:11:16+00:00

Amazon Relational Database Service (Amazon RDS) for PostgreSQL now supports the tcn extension which provides a trigger function that allows you to asynchronously notify listeners of changes to a table.

To view or add a comment, sign in

Insights from the community

Others also viewed

Explore topics