All news with #aws tag

🚀 AWS has introduced deployment Standard Operating Procedures (SOPs) in the AWS MCP Server preview, enabling AI agents to perform multi-step web application deployments from MCP-compatible IDEs and CLIs using natural language prompts. The SOPs generate AWS CDK infrastructure, deploy CloudFormation stacks, and create CI/CD pipelines following recommended AWS security best practices. Supported frameworks include React, Vue.js, Angular, and Next.js. The preview in US East (N. Virginia) is available at no additional MCP cost; customers pay only for the AWS resources and data transfer they use.

🚀 Amazon GameLift Servers now supports automatic scaling to and from zero instances, enabling game developers to eliminate charges for idle compute during inactive periods. This removes the need to keep instances running solely to preserve Fleet autoscaling, reducing infrastructure costs for titles with variable or unpredictable traffic. The capability is available in all supported regions and scales up automatically when game sessions are requested, simplifying operations and improving cost-efficiency.

🚀 Amazon EKS and EKS Distro now support Kubernetes 1.35, enabling creation of new clusters and upgrades of existing clusters via the EKS console, eksctl, or infrastructure-as-code tools. Kubernetes 1.35 introduces In-Place Pod Resource Updates to adjust CPU and memory without restarting pods, PreferSameNode traffic distribution to favor local endpoints, Node Topology Labels via the Downward API for region/zone awareness, and Image Volumes for delivering data artifacts such as AI models. EKS 1.35 is available in all AWS Regions where EKS is offered, including AWS GovCloud (US), and EKS Distro builds are published to the ECR Public Gallery and GitHub. Refer to the EKS documentation for available versions, upgrade guidance, lifecycle policies, and use EKS Cluster Insights to surface issues that could affect upgrades.

⚡ Amazon Web Services has made R7gd EC2 instances available in the Europe (Paris) Region, offering up to 3.8 TB of local NVMe-based SSD block storage. Powered by AWS Graviton3 processors with DDR5 memory and built on the AWS Nitro System, these instances target memory-intensive workloads such as open-source databases, in-memory caches, and real-time analytics. They provide high-speed, low-latency local storage suitable for scratch space, temporary files, and caches, and can be launched via the AWS Management Console.

🔁 Amazon MSK Replicator is now available in the Asia Pacific (New Zealand) Region, enabling replication of streaming data across Amazon MSK clusters with a few clicks. The managed feature provides automatic asynchronous replication, scales underlying resources, and replicates Kafka metadata including topic configurations, ACLs, and consumer group offsets. You can orchestrate replication from the console or CLI and use cross‑region failover to resume processing during regional disruptions.

🔁 Amazon DynamoDB multi-Region strong consistency (MRSC) global tables now integrate with AWS Fault Injection Service (FIS), enabling teams to run controlled experiments that pause regional replication to observe application behavior. You can create realistic regional-failure scenarios to validate monitoring, recovery, and resiliency mechanisms. This capability helps tune alarms, failover logic, and operational runbooks before real outages occur. Support is available in multiple AWS Regions and documentation outlines how to get started.

🔧 AWS now lets you edit job names and descriptions in AWS Deadline Cloud after submission, making it easier to organize and identify render and compute jobs. Previously immutable metadata can now be corrected or augmented post-submission to reflect shot numbers, sequence IDs, or internal tracking. Edits are available via the AWS SDK, the Deadline client, and Deadline Monitor, enabling both manual updates and scripted automation for pipeline workflows.

🔍 AWS Network Firewall now provides web category–based filtering and visibility into generative AI (GenAI) application traffic. Administrators can reference pre-defined URL categories—such as GenAI services, social media, and streaming—to allow, block, or log traffic via stateful rule groups. When combined with TLS inspection, the service can inspect full URL paths for granular control. The feature is available across AWS commercial regions.

🔒 This post demonstrates a serverless file integrity monitoring (FIM) pattern using AWS Systems Manager Inventory, Amazon S3, Lambda, and Amazon Security Lake. It collects file metadata from EC2 instances, exports versioned inventory objects to S3, and uses S3 Put events to trigger a Lambda that compares current and previous inventory versions to detect created, modified, or deleted files. When unauthorized changes are found, the function generates ASFF findings in AWS Security Hub, which Security Lake ingests and normalizes for query and visualization via Athena, QuickSight, or OpenSearch.

🖨️ AWS announced advanced printer redirection for Amazon WorkSpaces Personal, enabling Windows users to access full device-specific printing features—double-sided printing, paper tray selection, finishing (stapling, hole-punching) and color management—directly from their virtual desktops. The feature supports configurable driver validation modes (exact, partial, or name-only) so administrators can balance compatibility and capability, and it automatically falls back to basic printing when matching drivers are not found. Available in all Regions offering WorkSpaces Personal, it requires WorkSpaces Agent 2.2.0.2116+ and Windows client 5.31+, with matching printer drivers installed on both the WorkSpace and client device.

🔧 AWS Marketplace now supports a self-service listing flow for sellers publishing Amazon Machine Image (AMI) products that include FPGA images. Sellers can create and manage up to 15 Amazon FPGA images via a new UI or programmatically through the AWS Marketplace Catalog API, with inline validation and step-by-step guidance. The change removes the prior Product Load Form dependency and speeds time-to-market for FPGA-based accelerators on supported Amazon F2 instance types.

🚀 Amazon Web Services has made R6id memory-optimized database instances generally available for Amazon RDS running PostgreSQL, MySQL, and MariaDB in the Tel Aviv region. R6gd instances are now supported for the same engines in Asia Pacific (Osaka) and EU regions (Spain, Zurich). Graviton2-based instances can deliver up to 40% better performance than R5 equivalents, while R6gd adds local NVMe block storage and R6id offers 58% more TB per vCPU and approximately 15% improved price-performance versus R5d. Instances can be launched via the RDS console or AWS CLI; consult the RDS/Aurora documentation for engine-version support and the pricing page for regional costs.

🔒 Amazon Connect Cases now supports tag-based access control, enabling administrators to attach tags to case templates and restrict which users can view or manage cases based on security profiles. For example, teams can tag fraud cases and limit view/edit rights to users assigned to a fraud security profile. This capability strengthens enforcement of internal controls and data access policies, simplifies segmentation of sensitive workflows, and reduces the risk of unauthorized access across supported AWS regions.

🚀 Amazon Lightsail now offers Node.js, LAMP, and Ruby on Rails blueprints that enforce IMDSv2 by default and support IPv6-only instances. With a few clicks you can create a preconfigured VPS sized by bundle that includes the operating system, storage, and a monthly data transfer allowance. These blueprints are available in all AWS Regions where Lightsail is offered, simplifying quick web app deployments.

🔔 Amazon Lightsail now offers new Node.js, LAMP, and Ruby on Rails blueprints that enforce IMDSv2 by default and support IPv6-only instances. With a few clicks you can create a Lightsail VPS of your preferred size with the selected stack preinstalled; bundles include an operating system, storage, and a monthly data transfer allowance. The new blueprints are available in all AWS Regions where Lightsail is offered.

🛡️ AWS IAM Identity Center now supports native IPv6 via new dual-stack endpoints that accept both IPv4 and IPv6 clients, enabling direct IPv6 access without network address translation. Administrators should update external IdP configurations (ACS and SCIM URLs), adjust firewalls and gateways, and share the dual-stack app URL with users. You can monitor adoption through CloudTrail by inspecting clientProvidedHostHeader to distinguish IPv4-only and dual-stack usage.

🔒 AWS announced successful completion of the PCI PIN audit for AWS CloudHSM. The attestation, conducted by Coalfire, validated CloudHSM on FIPS 140-3 Level 3 hardware with zero findings. The compliance package includes a PCI PIN Attestation of Compliance and a PCI PIN Responsibility Summary to clarify customer obligations. Customers can retrieve reports via AWS Artifact and may consider AWS Payment Cryptography as a managed alternative for PIN operations such as translation.

🔒 Amazon Managed Grafana is now available in both AWS GovCloud (US-West) and AWS GovCloud (US-East) Regions, allowing government customers and regulated industries to securely visualize and analyze operational telemetry at scale. The fully managed service, based on open-source Grafana, supports all features in GovCloud except Enterprise plugins. To get started, customers can create workspaces via the AWS Console and consult the Amazon Managed Grafana user guide for region-specific guidance.

🔁 AWS now offers a monthly flat-rate billing option for Amazon WorkSpaces Core managed instances in addition to existing hourly pay-as-you-go pricing. Monthly billing is optimized for predictable, always-on VDI desktops while hourly remains better for variable usage, and customers can mix both models within a single deployment. VDI partners such as Citrix, Workspot, Dizzion, and Leostream can use the WorkSpaces API to enable the monthly option when instances are created; hourly utility charges are also being consolidated on WorkSpaces bills without changing effective on-demand rates.

🔒 AWS Transfer Family now enables access to Amazon FSx for NetApp ONTAP file systems over SFTP, FTPS, and FTP by routing transfers through S3 Access Points. This complements native NFS/SMB access so you can preserve existing internal workflows while offering industry-standard secure transfer protocols to partners and users. Access control is enforced using IAM policies and S3 Access Point configurations, and the capability is available in select AWS Regions.