AWS Firewall Manager now supports AWS CloudFormation

AWS Firewall Manager now supports AWS CloudFormation, allowing customers to manage all Firewall Manager policy types and resources with CloudFormation stack templates. AWS Firewall Manager is a security management service which allows you to centrally configure and manage firewall rules across your accounts and applications in AWS Organization. With Firewall Manager, you can manage AWS WAF, AWS Shield Advanced, or VPC security groups across your entire AWS Organization. Firewall Manager ensures that all security rules are consistently enforced, even as new accounts or applications are created.

Amazon Rekognition now detects text in videos, and lets you filter results by region, bounding box size and confidence score

Amazon Rekognition is a deep learning-based image and video analysis service that can identify objects, people, text, scenes, as well as support content moderation by detecting unsafe content. Starting today, you can detect text in videos and get back the detection confidence, location bounding box as well as the timestamp for each text detection. In addition, text detection in both images and videos now provides convenient options to filter out words by regions of interest (ROIs), word bounding box size, and word confidence score.  

AWS Console Mobile Application adds support for new services on iOS

iOS users can now use Amazon API Gateway, AWS CloudTrail, AWS Identity and Access Management, AWS Lambda, and Amazon Simple Queue Service features on the Console mobile app. In addition, we have expanded Amazon CloudWatch capabilities to include logs. 

AWS Security Hub launches security checks aligned to the Payment Card Industry Data Security Standard

AWS Security Hub now supports automated security checks aligned to the Payment Card Industry Data Security Standard (PCI DSS) version 3.2.1 requirements. Security Hub’s PCI DSS standard includes 32 automated rules designed to help you with your ongoing PCI DSS security activities by conducting continuous checks against 32 PCI DSS requirements across 14 AWS services. These 32 security checks are in addition to Security Hub’s existing 43 automated security checks for the Center for Internet Security’s (CIS) AWS Foundations Benchmark. Security Hub’s documentation provides details on how Security Hub’s PCI DSS checks map to specific PCI DSS requirements.  

Amazon RDS for SQL Server Now Supports Joining a Domain Across AWS Accounts and VPCs using Managed Microsoft AD

Starting today, Amazon RDS for SQL Server supports joining DB instances to an AWS Managed Microsoft AD directory residing in a different AWS account or VPC. This makes it easier and cost-effective for you to deploy your directory-aware database workloads by reducing the manual configuration to domain join your DB instances and, the need to deploy directories in each account and VPC. Amazon RDS for SQL Server DB instances can now seamlessly join to a directory from any AWS account and any Amazon VPC within an AWS Region.

Amazon EBS Multi-Attach now available on Provisioned IOPS io1 volumes

Today we are announcing general availability of Multi-Attach on Amazon Elastic Block Store (Amazon EBS) volumes. You can now enable Multi-Attach on Amazon EBS Provisioned IOPS io1 volumes to allow a single volume to be concurrently attached to up to sixteen AWS Nitro System-based Amazon Elastic Compute Cloud (Amazon EC2) instances within the same Availability Zone. Each attached instance has full read and write permission to the shared volume. For applications that manage storage consistency from multiple writers, Multi-Attach makes it easier to achieve higher application availability.

AWS Directory Service enhances security between AWS applications and Active Directory with secure LDAP improvements

AWS Directory Service for Microsoft Active Directory (AWS Managed Microsoft AD) and AD Connector now communicate more securely with self-managed Active Directory when using the Lightweight Directory Access Protocol (LDAP). With support for client-side LDAP signing and client-side secure LDAP (LDAPS), customers using AWS Directory Service-enabled applications like Amazon WorkSpaces and AWS Single Sign-On can now better protect their organization’s identity data and meet security requirements.

Amazon EKS Announces Release of VPC CNI Version 1.6

Amazon VPC Container Networking Interface (CNI) Plugin version 1.6 is now available for use by Kubernetes clusters running on AWS.

AWS Shield Advanced now supports Health Based Detection

AWS Shield Advanced now uses the health of your applications to improve responsiveness and accuracy in attack detection and mitigation. You can now define a health check in Amazon Route 53 and then associate it with a resource that is protected by Shield Advanced through the console or API. You can apply health-based detection to all resource types that Shield Advanced supports: Elastic IP, Elastic Load Balancing (ELB), Amazon CloudFront, AWS Global Accelerator, or Amazon Route 53. 

AWS Config Support for Amazon SQS Is Now Available in AWS Commercial and AWS GovCloud (US) Regions

AWS Config now supports Amazon Simple Queue Service (Amazon SQS) in all AWS Commercial and AWS GovCloud (US) Regions. AWS Config provides a detailed view of the configuration of AWS resources in your AWS account. This includes how the resources are related to one another and how they were configured in the past so that you can see how the configurations and relationships changed over time.

Now enable Amazon EC2 Hibernation for On-Demand and Reserved Instances through AWS CloudFormation

You can now enable Amazon EC2 Hibernation for On-Demand and Reserved Instances through AWS CloudFormation, a service that allows you to easily provision and update a collection of AWS resources in an orderly and predictable fashion. Launching EC2 instances with Hibernation enabled has become easier than ever as now you just need to add a single “HibernationOptions” property with “Configured: true” parameter within the AWS::EC2::Instance resource in your CloudFormation template. With this new feature, you can easily make Hibernation a part of your EC2 instance setup through CloudFormation, provided your EC2 instance meets the Hibernation Prerequisites.  

Amazon ECS-optimized Linux 2 AMIs now come with pre-installed AWS Systems Manager Agent

Amazon ECS Optimized Linux 2 Amazon Machine Images(AMI) now come with the AWS System Manager (SSM) Agent pre-installed. The SSM Agent makes it possible for Systems Manager to update, manage, and configure EC2 instances in a customer’s ECS cluster. ECS customers that used to manually install the SSM agent into thier ECS optimized AMI will now get these features out of the box.

AWS Systems Manager now enables auto-approval of patches by date

Patch Manager, a capability of AWS Systems Manager, now enables you to set a patch release cutoff date to automatically approve only the patches released before the date. For example, if you specify February 7, 2020 as the cutoff date, Patch Manager will not automatically apply patches showing a release date of February 8, 2020 or later. 

Amazon WorkSpaces New Client Release

We are excited to introduce the new Amazon WorkSpaces client for Windows and Mac. The client contains new enhancements including the ability to create personalized labels for registration codes, a new more intuitive UI, and includes the latest updates to the PCoIP protocol.

AWS AppConfig launches support for AWS CloudFormation

AWS AppConfig customers can now use AWS CloudFormation templates to provision AppConfig resources. AWS AppConfig makes it easy for customers to quickly roll out application configurations across applications hosted on EC2 instances, containers, AWS Lambda, mobile apps, IoT devices, and on-premise servers in a validated, controlled and monitored way. 

Notification rules for AWS CodeCommit, AWS CodeBuild, and AWS CodeDeploy are now available in Hong Kong and Bahrain

You can now configure notification rules for AWS CodeCommit, AWS CodeBuild, and AWS CodeDeploy in two additional AWS regions: Hong Kong and Bahrain. You can create notification rules to receive notifications about events in repositories, build projects, and deployments.

AWS Data Exchange introduces email notifications for subscription requests

AWS Data Exchange now provides automated email notifications for subscription request updates. Starting today, customers are automatically notified via email when a subscription request is received or when its status is changed. For example, data subscribers are now automatically notified when a pending subscription request is approved by the data provider. Similarly, data providers are now automatically notified when a new subscription request is received.  

AWS Storage Gateway is now available in AWS China (Ningxia)

AWS Storage Gateway is now available in the China (Ningxia) Region.  

Amazon MSK increases the default broker limit per cluster to 30 brokers

You can now provision up to 30 brokers within a Amazon Managed Streaming for Apache Kafka (Amazon MSK) cluster without a limit increase, making it easier for customers with high traffic or storage requirements to expand or provision new clusters on demand. You can request a limit increase in the AWS Support Center if you need more than 30 brokers within a cluster.  

Amazon RDS for Oracle now supports Oracle OLAP

Amazon RDS for Oracle now supports Oracle OLAP - a multidimensional analytic engine embedded in the Oracle Database Enterprise Edition. Oracle OLAP option provides SQL access to advanced analytics, and cube-organized materialized views to enhance the performance of business intelligence solutions.  

AWS App Mesh is now available in Europe (Stockholm), South America (São Paulo) and Middle East (Bahrain) regions

AWS App Mesh is now available in three additional AWS Regions: Europe (Stockholm), South America (São Paulo) and Middle East (Bahrain). 

AWS CloudFormation StackSets introduces automatic deployments across accounts and regions through AWS Organizations

AWS CloudFormation StackSets announces new automation features to streamline deployments of resources to multiple accounts and regions through AWS Organizations. With this launch, you can use StackSets to centrally manage deployments to the accounts in one or more organizational units (OUs) or all of the accounts in your organization. You will also be able to enable automatic deployments to any new accounts added to your organization or OUs. The permissions needed to deploy across accounts will automatically be taken care of by the StackSets service.  

Amazon Cognito User Pools service now supports case insensitivity for user aliases

Amazon Cognito User Pools now enables customers to configure case sensitivity settings for user aliases, including native username, email alias and preferred username alias. With this update, new user pools will be set to case insensitive by default and customers can change the configuration to case sensitive in the console before a user pool is created. Existing user pools will remain as case sensitive. When creating a user pool through Cognito APIs, the user pool will be case sensitive by default. We will change the default setting for the API in the future after a customer notification campaign.

Amazon Comprehend is Now Available in the AWS Asia Pacific (Seoul), Asia Pacific (Tokyo), and Asia Pacific (Mumbai) regions

Amazon Comprehend is a natural language processing (NLP) service that uses machine learning to discover insights and relationships in text. Starting today, Amazon Comprehend is available in the AWS Asia Pacific (Seoul), Asia Pacific (Tokyo), and Asia Pacific (Mumbai) regions.

Aurora PostgreSQL Supports Machine Learning, Export to Amazon S3, and New Minor Versions

Amazon Aurora with PostgreSQL compatibility is now available with machine learning capabilities, an option to export data into Amazon S3, and compatibility with updated PostgreSQL versions.

Amazon RDS for Oracle now supports Federal Information Processing Standard (FIPS) 140-2 for Secure Sockets Layer (SSL)

Amazon RDS for Oracle enables you to use the Federal Information Processing Standard (FIPS) 140-2 for the Secure Socket Layer (SSL). FIPS 140-2 is a U.S. government standard that defines cryptographic module security requirements.

Amazon RDS for PostgreSQL Supports New Minor Versions 11.6, 10.11, 9.6.16, and 9.5.20

Following the announcement of updates to the PostgreSQL database, we have updated Amazon RDS for PostgreSQL to support PostgreSQL minor versions 11.6, 10.11, 9.6.16, and 9.5.20. This release contains bug fixes and improvements done by the PostgreSQL community. 

Amazon RDS for PostgreSQL now supports additional sizes for db.m5 and db.r5 instance classes

Starting today, Amazon RDS for PostgreSQL supports 8xlarge and 16xlarge sizes for db.m5 and db.r5 instance classes. With support for these new instance sizes, customers who are currently using m4.10xlarge, m4.16xlarge, r4.8xlarge, or r4.16xlarge now have an easy upgrade path to the latest generation of instances.  

Now Available: Updated Versions of 2 APN Partner Digital Courses

We’re excited to announce updated versions of two of our digital courses, AWS Solutions Training for Partners: Amazon Connect (Technical) and AWS Technical Professional. These digital courses were designed, respectively, to help APN Partners understand how to discuss the technical advantages of creating a cloud-based contact center with Amazon Connect, and also to gain a basic technical understanding of AWS services.

AWS Well-Architected Tool now supports AWS Serverless Lens

The AWS Well-Architected Tool (AWS WA Tool) now supports the AWS Serverless Lens, which provides best practices for reviewing serverless workloads.

Configure fine-grained data access with Amazon Elasticsearch Service

Amazon Elasticsearch Service now offers fine-grained access control, which adds multiple capabilities to give you tighter control over your data. New features include the ability to use roles to define granular permissions for indices, documents, or fields and to extend Kibana with read-only views and secure multi-tenant support.

AWS Elastic Beanstalk Launches Python 3.7 on AL2 Platform (Beta)

You can now run your python applications on AWS Elastic Beanstalk using Python 3.7 on Amazon Linux 2 beta platform. The Python 3.7 on Amazon Linux 2 beta platform comes with several improvements and major new features including support for Pipfile and Gunicorn. For a complete list of Python 3.7 features, visit the official Python 3.7 release announcement.

Amazon EC2 I3en and C5 Instances are Now Available in additional regions

Starting today, Amazon EC2 I3en Instances are Now Available in Asia Pacific (Mumbai) AWS Region. In addition, we’ve expanded the availability of C5 Instance sizes in Asia Pacific (Seoul) and GovCloud (US-East) AWS Regions. c5.12xlarge, c5.24xlarge, and c5.metal sizes are now available in GovCloud (US-East) AWS Region, and C5.metal is now available in Asia Pacific (Seoul) Region.

EC2 Hibernation adds support for Ubuntu 16.04 LTS

Amazon EC2 adds Hibernation support for Ubuntu 16.04 LTS operating system in addition to Amazon Linux, Amazon Linux 2, Ubuntu 18.04 LTS, and Windows Server 2012, 2012R2, 2016 and 2019.  

Up to 50 Outputs per Flow Now Supported in AWS Elemental MediaConnect

AWS Elemental MediaConnect now supports up to 50 outputs per flow, more than double the previous limit of 20 outputs. This change provides better fan-out capabilities for your live video content and lets you build more sophisticated workflows to support syndication opportunities. 

Introducing Multi-Region Asynchronous Object Replication Solution

The Multi-Region Asynchronous Object Replication Solution automatically provisions and configures all the AWS services necessary to set up a multi-region replication configuration with Amazon S3 buckets. For example, you can create objects in Oregon, rename them in Singapore, and delete them in Dublin, and the changes are replicated to all other regions. This solution is designed for workloads that can tolerate lost events and variations in replication speed.

Introducing content filtering for Amazon EventBridge

Amazon EventBridge now provides additional content filtering options for builders designing event-driven architectures. With event pattern content filtering, you can write complex rules that only trigger under conditions you specify. This helps reduce the amount of custom code needed in downstream services by handling content filtering at the event bus using a declarative approach. 

Amazon EC2 vCPU-based On-Demand Instance Limits are Now Available in GovCloud (US) Regions

Amazon EC2 is transitioning On-Demand Instance limits from the current instance count-based limits to new vCPU-based limits to simplify the limit management experience for AWS customers. Usage toward the vCPU-based limit is measured in terms of number of vCPUs (virtual central processing units) for the Amazon EC2 Instance Types launched. 

AWS Managed Services (AMS) supports additional AWS Services

AWS Managed Services (AMS) announces support for 8 additional AWS services. With this release, the total number of services supported by AMS has increased to 69, including AWS Transfer for SFTP, a much requested service. In addition to running AWS services within secure and operated AMS managed accounts, you can self provision and configure these services directly in the AWS Console or the APIs. These services fall into the second pricing tier for AMS that is lower for certain groups of AWS services where more of the day-to-day operations is handled by the service itself; 12% for AMS Plus and 18% for AMS Premium.  

Amazon Personalize can now use 10X more item attributes to improve relevance of recommendations

Amazon Personalize is a machine learning service which enables you to personalize your website, app, ads, emails, and more, with custom machine learning models which can be created in Amazon Personalize, with no prior machine learning experience. AWS is pleased to announce that Amazon Personalize now supports ten times more item attributes. Previously, you could use up to five item attributes while building an ML model in Amazon Personalize. This limit is now 50 attributes. You can now use more information about your items, for example, category, brand, price, duration, size, author, year of release etc., to increase the relevance of recommendations.

New Quick Start deploys Poly-integrated Amazon Connect CCP on AWS

This Quick Start automatically deploys the Poly-integrated Amazon Connect Contact Control Panel (CCP) in the Amazon Web Services (AWS) Cloud in about 30 minutes. This Quick Start is for users who have already configured an Amazon Connect instance in their AWS account and want to enable support for Poly, which provides headset button call control. 

AWS AppSync releases integration with AWS X-Ray and GraphQL Info object support

You can now enable AWS X-Ray for your APIs in AWS AppSync, making it easier to trace and analyze user requests as they travel through the APIs to the backend data sources.

AWS RoboMaker now supports creating simulation jobs in batch with a single API call

AWS RoboMaker, a service that makes it easy to develop, simulate, and deploy robotics applications, now supports creating simulation jobs in batch with a single API call. The new support for batch simulations allows developers to easily create multiple simulation jobs for use cases like automated regression testing and reinforcement learning model training. The batch API also provides a queueing capability so that a developer can now submit more simulation jobs than is possible with the existing concurrent job execution limit. The batch API will queue up all the submitted jobs and execute them in batches based on the concurrent execution limit.

Amazon Lex announces support for Alphanumeric slot type

Amazon Lex now supports Alphanumeric slot type allowing you to easily define slots such as flight confirmation code that contain combination of letters and numbers. Up until now, you had to create a custom slot type with a large range of sample values. By using the Alphanumeric slot type you can quickly set up a slot to capture alphanumeric information. Further, you can extend this slot type to restrict the user input to a fixed format by specifying a regular expression. 

Use the new Amazon CloudWatch metrics for Amazon DynamoDB Accelerator (DAX) to gain more insights into your DAX clusters’ performance

Use the new Amazon CloudWatch metrics for Amazon DynamoDB Accelerator (DAX) to better understand your DAX clusters’ performance. Determine more easily whether you need to scale up your cluster because you’re reaching peak utilization, or if you can scale down because your cache is underutilized. 

Amazon RDS Data API now supports AWS PrivateLink

You can now use AWS PrivateLink to privately access Amazon RDS Data API for Aurora Serverless from your Amazon Virtual Private Cloud (Amazon VPC) without using public IPs, and without requiring the traffic to traverse across the Internet. You can now submit your SQL statements to Amazon RDS Data API without requiring an Internet Gateway in your VPC. AWS PrivateLink provides private connectivity between VPCs, AWS services, and on-premises applications, securely on the Amazon network. Amazon RDS Data API customers can now use private IP connectivity and security groups to meet their specific compliance requirements.  

Amazon Elastic Container Service has added support for canary deployments

Updates to your containers orchestrated by Amazon Elastic Container Service (Amazon ECS) can now be performed using canary or linear deployment strategies by using AWS CodeDeploy.

AWS CodeBuild Adds Support for Amazon EFS

You can now use Amazon Elastic Filesystem (EFS) in AWS CodeBuild build jobs. This can be achieved by specifying the EFS file system Id in your CodeBuild Project

Amazon EC2 adds the ability to easily query the billing information of Amazon Machine Images (AMIs)

You can now use the DescribeImages API to determine the billing product information associated with an Amazon Machine Image (AMI). By making it easier to obtain the platform details and billing information of AMIs, this release reduces the chances of erroneously launching instances from incorrect AMIs, and assists with inventory planning and reporting. Starting today, this capability is available in all AWS commercial Regions and AWS GovCloud (US) Regions from API and CLI. Visit our documentation page to learn more.

Amazon DocumentDB (with MongoDB compatibility) adds $objectToArray, $arrayToObject, $slice, $mod, and $range Aggregation Pipeline Operators

Amazon DocumentDB (with MongoDB compatibility) is a fast, scalable, highly available, and fully managed document database service that supports MongoDB workloads.  

New Quick Start deploys Provectus Streaming Data Platform on AWS

This Quick Start automatically deploys Provectus Streaming Data Platform in the Amazon Web Services (AWS) Cloud in about 20 minutes. This Quick Start is for users who are interested in enabling real-time analytics and want to explore capabilities of a streaming-first data platform.

DynamoDB global tables are now available in the Asia Pacific (Mumbai), Canada (Central), EU (Paris), and South America (Sao Paulo) Regions

Amazon DynamoDB global tables are now available in the Asia Pacific (Mumbai), Canada (Central), EU (Paris), and South America (Sao Paulo) Regions. With global tables, you can give massively scaled, global applications local access to a DynamoDB table for fast read and write performance. You also can use global tables to replicate DynamoDB table data to additional AWS Regions for higher availability and disaster recovery.

Amazon ECS now Supports tagging for Task Sets

Amazon Elastic Container Service now enables customers to tag Task Sets when deploying an ECS service that uses the EXTERNAL deployment controller type. This will enable ECS customers to improve visibility into workloads, easily search and identify containerized applications, implement programmatic infrastructure management actions, and define fine-grained resource-level permissions.

AWS Security Hub adds 15 new resources, increases resources limit, and adds RelatedRequirements field

AWS Security Hub today released updates and additions to AWS Security Finding Format (ASFF) that enable integrated Security Hub partners to send richer, more detailed findings to Security Hub.  

Amazon RDS Performance Insights Supports SQL-level Metrics on Amazon RDS for MariaDB

Amazon RDS Performance Insights supports SQL-level metrics on Amazon RDS for MariaDB so you can identify high-frequency, long-running, and stuck SQL queries in seconds. 

Now rerun commands with AWS Systems Manager Run Command in just a few clicks

In just a few clicks, you can now quickly re-execute a previous command using AWS Systems Manager Run Command. Run Command provides safe, secure remote management of your compute nodes at-scale and with safety controls. You can now re-execute a previous command exactly as before by using the new rerun command feature, or first make a few edits by using the new copy-to-new command feature. Simply select the desired command from your command history and click either rerun or copy-to-new, in both cases saving valuable time and effort by automatically copying all of the parameters and controls from the selected command into the new command.

Amazon MQ is Now Available in Asia Pacific (Hong Kong), and Middle East (Bahrain) regions

Amazon MQ is now available in a total of 18 regions, with the addition of the Asia Pacific (Hong Kong), and Middle East (Bahrain) regions.  

Amazon VPC Flow Logs Now Support 1-minute Aggregation Intervals

You can now capture and aggregate your Amazon Virtual Private Cloud (Amazon VPC) flow logs at shorter intervals of up to 1 minute, giving you quicker visibility into your network traffic flows. With a 1-minute configuration, your VPC flow logs arrive in an expedited manner and provide more granular visibility into the sequence of events in a flow, thereby enabling you to accurately investigate and rapidly respond to security incidents, or troubleshoot connectivity issues faster.

Announcing AWS Ground Station Cross Region Data Delivery

AWS Ground Station is a fully managed service that lets you control satellite communications, process satellite data, and scale your satellite operations. Ground Station is pleased to announce the availability of Cross Region Data Delivery, enabling customers to deliver satellite data received through AWS Ground Station into the AWS Region of their choice.

Amazon Cognito User Pools service now supports logging for all API calls with AWS CloudTrail

Amazon Cognito User Pools now supports logging for all of the actions listed on the User Pool Actions page as events in CloudTrail log files, making it easier for developers to record all actions taken by a user, role, or an AWS service. The enhanced CloudTrail logging improves governance, compliance, and operational and risk auditing capabilities. Hosted UI and Federation calls are currently not included in CloudTrail logging events. Developers can create a trail and enable continuous delivery of Cognito API calls captured as CloudTrail events to an Amazon S3 bucket. Without configuring a trail, developers can still view the most recent events in the CloudTrail console in the Event history. This feature is available now in Amazon Cognito User Pools at no additional cost.  

Amazon RDS Performance Insights Supports SQL-level Metrics on Amazon RDS for MySQL

Amazon RDS Performance Insights supports SQL-level metrics on Amazon RDS for MySQL databases so you can identify high-frequency, long-running, and stuck SQL queries in seconds.

Introducing the Desktop Client for AWS Client VPN

We are excited to announce AWS Client VPN for desktop, an application which runs on Mac and Windows devices and provides access to Amazon Virtual Private Cloud (VPC) and on premise networks through AWS Client VPN endpoints. 

Amazon Elastic File System (Amazon EFS) is now available in the AWS GovCloud (US-East) Region

Amazon Elastic File System (Amazon EFS) is now available in the AWS GovCloud (US-East) Region. With this launch, Amazon EFS is now available in all standard AWS Regions.

Amazon QuickSight launches enhancements to narrative editor and anomaly detection

Amazon QuickSight launches a full screen narrative editor that supports easy creation and editing of auto-narratives on QuickSight. With auto-narratives, you can add natural language summaries derived from your data. You can embed these widgets throughout your dashboard to highlight key insights and callouts. The enhanced editor now makes it easy to build these narratives with the support for full screen mode. The editor also provides a preview built on-the-fly making it easier to see the end result as you craft the narrative. Additionally, the editor also supports inserting static and dynamic URLs within narratives allowing you to create URLs based on custom computed functions that are part of the URL parameters. See here to learn more about the full screen editor.

Amazon Redshift now supports per-second billing

Starting today, Redshift will be billed in one-second increments for on-demand clusters. Pricing is still listed on a per-hour basis, but bills are now calculated down to the second and show usage in decimal form.  

AWS Storage Gateway is now available on Linux KVM hypervisor

The AWS Storage Gateway service now includes the Linux Kernel-based Virtual Machine (KVM) hypervisor as a deployment option for all gateway types. If you use KVM hypervisor-based on-premises infrastructure, you can now deploy Storage Gateway in your environment to access virtually unlimited cloud storage.

Cloud9 launches support for tagging new and existing environments

AWS Cloud9 now supports the ability to tag Cloud9 development environments through both the console and the AWS API. Further documentation about tags is available here.

AWS Trusted Advisor expands to new regions and updates existing checks

AWS Trusted Advisor is an application that draws upon best practices learned from AWS’ aggregated operational history of serving millions of AWS customers. Trusted Advisor inspects your AWS environment and makes recommendations for saving money, improving system performance, and closing security gaps.

Amazon EBS increases limits on Fast Snapshot Restore and expands availability to additional regions

Starting today, Amazon EBS Fast Snapshot Restore (FSR) is available in all AWS commercial regions excluding China and AWS GovCloud regions. Additionally, the limits for FSR-enabled snapshots per region are increased from 5 to 50.

Amazon Polly Launches Brand Voice

Amazon Polly is a service that turns text into lifelike speech, and offers over 60 publicly available voices in 29 languages. AWS is excited to announce a new feature in Amazon Polly called Brand Voice, a feature where customers can engage the Amazon Polly team to build custom high-quality Neural Text-to-Speech (NTTS) voices that represent the customer’s brand persona. Polly’s Brand Voices are created for the exclusive use of the customer, allowing them to differentiate themselves by incorporating a unique vocal identity into the products and services that they offer to their end users.

AWS RoboMaker supports sudo access inside robot and simulation applications at runtime

AWS RoboMaker announces the support for sudo access inside robot and simulation applications at runtime. Customers now have additional flexibility to modify their robot and simulation application environment at runtime so as to align with the environment they have on their robot. With sudo access, customers can install custom software, make changes to the root filesystem, update file permissions, and troubleshoot issues.  

Amazon Translate is now FedRAMP compliant

Amazon Translate – a fully managed neural machine translation service that delivers high-quality, and affordable language translation in fifty-four languages and seventeen regions – has been added to the list of AWS Services in Scope for the Federal Risk and Authorization Management Program (FedRAMP) High baseline. Amazon Translate is also included on the list of AWS Services in Scope for the FedRAMP Moderate baseline. Additional information and resources regarding FedRAMP and AWS are available here.

AWS Config now supports multi-account, multi-region aggregation in AWS GovCloud (US) Regions

AWS Config now supports multi-account, multi-region data aggregation capability in AWS GovCloud (US). This feature enables you to aggregate resource configuration and Config rule compliance data into a single account and Region, which reduces the time and overhead needed to gather an enterprise-wide view of your resource inventory and compliance status for governance. The data aggregation capability is also integrated with AWS Organizations, so you can centrally retrieve this data for any account within your organization.  

AWS Compute Optimizer Available In 11 Additional Regions

AWS Backup is now available for Amazon Elastic File System (Amazon EFS) in 4 additional regions

AWS Backup is now available to protect Amazon Elastic File System (Amazon EFS) workloads in four more regions across Asia Pacific, Europe / Middle East / Africa (EMEA), and the Americas. These regions include: Asia Pacific (Hong Kong),EU (Stockholm), Middle East (Bahrain), and South America (São Paulo).

Amazon Managed Cassandra Service now supports ordering clauses in CQL queries and AWS CloudTrail logging

Amazon Managed Apache Cassandra Service (MCS), a scalable, highly available, and managed Apache Cassandra–compatible database service, now supports ordering clauses in Cassandra Query Language (CQL) queries and AWS CloudTrail logging for control-plane operations.

AWS Batch now available in AWS GovCloud (US) Regions

Starting today, AWS Batch is available in the AWS GovCloud (US) Regions.  

New Digital Course: Architecting Serverless Solutions

Learn to “think serverless” with this free training course from AWS. In this intermediate, three-hour digital course, you will learn how to combine AWS Lambda and Amazon API Gateway in event-driven patterns to power scalable and secure serverless applications.

New Digital Course: AWS Transit Gateway Networking and Scaling

We’re excited to announce a free training course that demonstrates how to create and configure an AWS Transit Gateway. In this digital course, you will learn about setting up a basic Transit Gateway, creating a Transit Gateway with shared domains and route tables, and routing and propagation. Demonstrations will help teach you about connecting VPN and direct connect to AWS Transit Gateway.

AWS Certificate Manager Private Certificate Authority Now Offers CloudFormation Resources

AWS Certificate Manager (ACM) Private Certificate Authority (CA) now offers Amazon CloudFormation resources. You can create templates for the service or application architectures you want and have AWS CloudFormation use those templates for quick and reliable provisioning of the services or applications (called “stacks”). You can also easily update or replicate the stacks as needed. For example, you can use CloudFormation to build and activate an issuing CA and then issue a private certificate from that CA. This feature offers templates for CAs, CA activation and private certificates. 

AWS OpsWorks for Chef Automate Now Supports In-Place Upgrade to Chef Automate 2

You can now perform an in-place upgrade of your Chef Automate server to Chef Automate 2 from the AWS OpsWorks for Chef Automate console or the AWS CLI.

Amazon Forecast now available in Seoul (Asia Pacific) region

Amazon Forecast is now available in the Seoul (Asia Pacific) region. Amazon Forecast is a fully managed service that uses machine learning (ML) to generate accurate forecasts, without requiring any prior ML experience. Amazon Forecast is applicable in a wide variety of use cases, including inventory planning, energy demand forecasting, financial planning, workforce planning, cloud infrastructure usage forecasting, and traffic forecasting.

Amazon EC2 T3 instances now support launching as Dedicated Instances

Amazon EC2 T3 instances are now available to launch as dedicated instances. T3 instances are a low cost burstable general-purpose instance type that provide a baseline level of CPU performance with the ability to burst CPU usage at any time for as long as required. T3 instances are designed for applications with moderate CPU usage that experience temporary spikes in use. T3 dedicated instances run in a VPC on hardware that's dedicated to a single customer. This means that your T3 dedicated instances will be physically isolated at the host hardware level from instances that belong to other AWS accounts. Dedicated instances may help customers meet their specific compliance goals or run software with specific licensing restrictions.  

AWS DataSync can now transfer data to and from Amazon FSx for Windows File Server

AWS DataSync now supports transferring files to and from Amazon FSx for Windows File Server, providing you with a simple and automated way to accelerate the migration of your self-managed file systems to fully managed native Microsoft Windows file systems in AWS. With this new capability you can easily and securely transfer datasets containing hundreds of terabytes and millions of files to Amazon FSx for Windows File Server. This simplifies and accelerates the migration of home directories and Windows-based workloads that require file storage, such as CRM, ERP, and .NET applications.  

AWS Cloud Map supports editing custom service instance attributes in the AWS Console

AWS Cloud Map now allows you to view service instance details and edit custom service instance attributes in the AWS Console. This feature, which was previously available only through the AWS CLI, SDK, or API, provides better visibility into the composition of your services and simplifies updating the metadata associated with cloud resources registered in AWS Cloud Map.

AWS Elemental MediaConnect Now Available in Asia Pacific (Hong Kong) Region

AWS Elemental MediaConnect is now available in the Asia Pacific (Hong Kong) region. Using MediaConnect, you can now ingest, transport, and process your high-quality video in the AWS Cloud in more locations globally.

Amazon GuardDuty announces threat detection enhancements, reducing alert volume and increasing accuracy for common customer deployed architectures

This month, Amazon GuardDuty launched enhancements to several existing threat detections that will result in many customers seeing a 50% reduction in findings generated for port probes, SSH brute force attempts, and indications of DNS data exfiltration. These enhancements are now included in Amazon GuardDuty across all supported AWS regions globally.  

Amazon MSK is now available in Middle East (Bahrain)

You can now connect your Apache Kafka applications to Amazon MSK in the Middle East (Bahrain) AWS Region.  

Announcing Amazon Relational Database Service (RDS) Snapshot Export to S3

You can now export Amazon Relational Database Service (Amazon RDS) or Amazon Aurora snapshots to Amazon S3 as Apache Parquet, an efficient open columnar storage format for analytics. The Parquet format is up to 2x faster to export and consumes up to 6x less storage in Amazon S3, compared to text formats. You can analyze the exported data with other AWS services such as Amazon Athena, Amazon EMR, and Amazon SageMaker.

Deep Learning Containers Updates for SageMaker Debugger and Tensorflow Serving

The AWS Deep Learning Containers are available today with bug fixes to the SageMaker integration with Tensorflow Server and the latest version of SageMaker Debugger. You can launch the new versions of Deep Learning Container on Amazon SageMaker, Amazon Elastic Kubernetes Service (Amazon EKS), self-managed Kubernetes on Amazon EC2, and Amazon Elastic Container Service (Amazon ECS). For a complete list of frameworks and versions supported by the AWS Deep Learning Containers, see release notes

AWS IAM policy simulator now simulates permissions boundary policies

With the AWS Identity and Access Management (IAM) policy simulator, administrators can now simulate permissions boundary policies along with other permissions policies to better understand the effective permissions for IAM principals (users and roles) in their AWS environment. Additionally, developers can now use the policy simulator to debug issues related to permissions boundary policies.

AWS Elastic Beanstalk adds support for Windows Server 2019 and .NET Core 3.1

AWS Elastic Beanstalk now supports Windows Server 2019, Windows Server Core 2019, and .NET Core 3.1.  

Amazon MQ now supports ActiveMQ Version 5.15.10

You can now launch Apache ActiveMQ 5.15.10 brokers on Amazon MQ. This patch update to ActiveMQ contains several fixes and new features compared to the previously supported version, ActiveMQ 5.15.9. 

AWS Auto Scaling now available in AWS GovCloud (US) Regions

AWS Auto Scaling is now available in AWS GovCloud (US) Regions. AWS GovCloud (US) customers can now use AWS Auto Scaling to manage dynamic scaling configuration for multiple resources such as Amazon EC2 instances, Amazon ECS tasks, Amazon DynamoDB tables and indexes, and Amazon Aurora read replicas with a single scaling plan. 

Amazon RDS for MySQL Supports Authentication with Microsoft Active Directory

Amazon RDS for MySQL now supports authentication of database users using AWS Managed Microsoft Active Directory Service.

Amazon Elastic File System (Amazon EFS) is now available in the AWS China (Beijing) Region, operated by Sinnet, and AWS China (Ningxia) Region, operated by NWCD

Amazon Elastic File System (Amazon EFS) is now available in the AWS China (Ningxia) Region, operated by NWCD and the AWS China (Beijing) Region, operated by Sinnet.

Quick Start Update: HashiCorp Consul on the AWS Cloud

HashiCorp and AWS are pleased to release a major update to the HashiCorp Consul Quick Start, which deploys HashiCorp Consul on the Amazon Web Services (AWS) Cloud. HashiCorp Consul is a tool that provides a foundation for cloud networking automation by using a central registry for service-based networking. 

AWS Control Tower introduces lifecycle event notifications

AWS Control Tower announces the availability of lifecycle event notifications. A lifecycle event marks the completion of a Control Tower action that can change the state of resources such as organizational units (OUs), accounts and guardrails that are created and managed by Control Tower. Lifecycle events are recorded as AWS CloudTrail events and delivered to Amazon EventBridge as events, and the event log states if the Control Tower action completed successfully or not.

Amazon EBS direct APIs for Snapshots Now Available in Ten Additional Regions

EBS direct APIs for Snapshots are now available in ten additional regions: US East (Ohio), US West (N. California), Canada (Central), Europe (London), Europe (Stockholm), Europe (Paris), Asia Pacific (Mumbai), Asia Pacific (Seoul), Asia Pacific (Sydney), and South America (São Paulo).

New AWS Public Datasets Available from Ford, NASA, and NREL

6 new AWS Public Datasets are now available in the following categories: