Amazon Relational Database Service (Amazon RDS) for PostgreSQL zero-ETL integration with Amazon Redshift is now generally available, enabling near real-time analytics and machine learning (ML) on petabytes of transactional data. With this launch, you can create multiple zero-ETL integrations from a single Amazon RDS database, and you can apply data filtering for each integration to include or exclude specific databases and tables, tailoring replication to your needs. You can also use AWS CloudFormation to automate the configuration and deployment of resources needed for zero-ETL integration.
Zero-ETL integrations make it simpler to analyze data from Amazon RDS to Amazon Redshift by removing the need for you to build and manage complex data pipelines and helping you derive holistic insights across many applications. Within seconds of data being written to Amazon RDS for PostgreSQL, the data is replicated to Amazon Redshift. Using zero-ETL, you can enhance data analysis on near real-time data with the rich analytics capabilities of Amazon Redshift, including integrated ML, Spark support, and materialized views.
This zero-ETL integration is available for all RDS for PostgreSQL versions 15.4 and later, Amazon Redshift Serverless, and Amazon Redshift RA3 instance types in supported AWS Regions. To learn more about this zero-ETL integration, visit the documentation for Amazon RDS and Amazon Redshift.
Amazon Relational Database Service (Amazon RDS) for PostgreSQL zero-ETL integration with Amazon Redshift is now generally available, enabling near real-time analytics and machine learning (ML) on petabytes of transactional data. With this launch, you can create multiple zero-ETL integrations from a single Amazon RDS database, and you can apply data filtering for each integration to include or exclude specific databases and tables, tailoring replication to your needs. You can also use AWS CloudFormation to automate the configuration and deployment of resources needed for zero-ETL integration.
Zero-ETL integrations make it simpler to analyze data from Amazon RDS to Amazon Redshift by removing the need for you to build and manage complex data pipelines and helping you derive holistic insights across many applications. Within seconds of data being written to Amazon RDS for PostgreSQL, the data is replicated to Amazon Redshift. Using zero-ETL, you can enhance data analysis on near real-time data with the rich analytics capabilities of Amazon Redshift, including integrated ML, Spark support, and materialized views. This zero-ETL integration is available for all RDS for PostgreSQL versions 15.4 and later, Amazon Redshift Serverless, and Amazon Redshift RA3 instance types in supported AWS Regions. To learn more about this zero-ETL integration, visit the documentation for Amazon RDS and Amazon Redshift.
Starting today, Amazon EC2 Instance Connect and EC2 Serial console are also available in AWS Asia Pacific (Malaysia), AWS Asia Pacific (Thailand) and AWS Mexico (Central) regions.
EC2 Instance Connect allows customers to connect to their instances over Secure Shell (SSH) with a single click from the EC2 console and single command from the AWS CLI. Customers can manage access to instances with AWS Identity and Access Management (IAM) policies as well as generate one-time use SSH keys enhancing the security posture for connectivity. EC2 Serial Console provides customers a simple way to interactively troubleshoot boot and network connectivity issues by establishing a connection to the serial port of an instance. EC2 Serial Console is ideal for situations where you are unable to connect to your instance via normal SSH or RDP connections.
To get started, you can navigate to the Amazon EC2 console, select the instance you want to connect to and with a single click connect using EC2 Serial Console or Instance Connect. You can also connect from the AWS CLI or API. To learn more see our documentation.
Starting today, Amazon EC2 Instance Connect and EC2 Serial console are also available in AWS Asia Pacific (Malaysia), AWS Asia Pacific (Thailand) and AWS Mexico (Central) regions. EC2 Instance Connect allows customers to connect to their instances over Secure Shell (SSH) with a single click from the EC2 console and single command from the AWS CLI. Customers can manage access to instances with AWS Identity and Access Management (IAM) policies as well as generate one-time use SSH keys enhancing the security posture for connectivity. EC2 Serial Console provides customers a simple way to interactively troubleshoot boot and network connectivity issues by establishing a connection to the serial port of an instance. EC2 Serial Console is ideal for situations where you are unable to connect to your instance via normal SSH or RDP connections. To get started, you can navigate to the Amazon EC2 console, select the instance you want to connect to and with a single click connect using EC2 Serial Console or Instance Connect. You can also connect from the AWS CLI or API. To learn more see our documentation.
Cost Optimization Hub, a feature within the Billing and Cost Management Console, announces support for account names in cost optimization opportunities. This enhancement allows you to use account names to easily view, filter, consolidate, and prioritize cost optimization recommendations.
This launch simplifies the process of identifying and managing cost optimization opportunities across complex account structures. With an account name, you can now quickly recognize which accounts are associated with specific recommendations, making it easier to take action on cost-saving opportunities. This enhancement is particularly valuable for large organizations and AWS Partners managing multiple accounts, as it streamlines the cost optimization workflow and enhances visibility into potential savings across the entire account portfolio.
Cost Optimization Hub, a feature within the Billing and Cost Management Console, announces support for account names in cost optimization opportunities. This enhancement allows you to use account names to easily view, filter, consolidate, and prioritize cost optimization recommendations. This launch simplifies the process of identifying and managing cost optimization opportunities across complex account structures. With an account name, you can now quickly recognize which accounts are associated with specific recommendations, making it easier to take action on cost-saving opportunities. This enhancement is particularly valuable for large organizations and AWS Partners managing multiple accounts, as it streamlines the cost optimization workflow and enhances visibility into potential savings across the entire account portfolio. Account names are now available in Cost Optimization Hub across all AWS Regions where Cost Optimization Hub is supported.
Amazon Elastic Container Registry (ECR) now allows you specify exceptions to image tag immutability setting. You can now provide a list of tag filters to exempt certain tags from the tag immutability setting, allowing you to enforce immutability for most tags while retaining flexibility for others.
ECR image tag settings allows you to control whether repository tags can be overwritten. You may set image tags to either mutable which allows tags to be overwritten, or immutable which prevents tags from being overwritten. With ECR support for exception to tag immutability, ECR can now enforce mutability or immutability for all tags except certain tags based on the list of tag filters that you specify. For example, you can now enforce immutability for production tags while retaining flexibility for certain tags such as latest to remain mutable for development, testing, and automation workflows.
ECR’s support for exception to tag mutability and immutability is generally available in all AWS commercial and AWS GovCloud (US) Regions at no additional cost. For more details, visit our documentation.
Amazon Elastic Container Registry (ECR) now allows you specify exceptions to image tag immutability setting. You can now provide a list of tag filters to exempt certain tags from the tag immutability setting, allowing you to enforce immutability for most tags while retaining flexibility for others. ECR image tag settings allows you to control whether repository tags can be overwritten. You may set image tags to either mutable which allows tags to be overwritten, or immutable which prevents tags from being overwritten. With ECR support for exception to tag immutability, ECR can now enforce mutability or immutability for all tags except certain tags based on the list of tag filters that you specify. For example, you can now enforce immutability for production tags while retaining flexibility for certain tags such as latest to remain mutable for development, testing, and automation workflows. ECR’s support for exception to tag mutability and immutability is generally available in all AWS commercial and AWS GovCloud (US) Regions at no additional cost. For more details, visit our documentation.
We are announcing major enhancements to the AWS IoT SiteWise Query API (ExecuteQuery) to support a suite of advanced SQL capabilities, empowering customers to perform sophisticated data analysis on their industrial data and business intelligence tool integration. Customers can now leverage advanced SQL operations including string manipulation (such as pattern matching and substring extraction), aggregation functions (e.g., grouping, SUM, COUNT, and more on telemetry streams), multi-field sorting, and robust datetime operations for time-based analytics. Furthermore, we are introducing an ODBC driver, enabling direct integration with BI tools like Tableau, Power BI, and Excel for enhanced data visualization and reporting on operational data—without custom development or middleware.
These enhancements enable customers to execute advanced queries such as «SELECT avg(rts.double_value), a.asset_name FROM raw_time_series rts, asset a, asset_property ap WHERE a.asset_name LIKE ‘Boiler%’ AND ap.property_name = ‘Temperature’ AND rts.event_timestamp > TIMESTAMP ‘2025-04-15 09:00:00’ AND rts.event_timestamp < TIMESTAMP ‘2025-04-15 17:00:00’ GROUP BY a.asset_name ORDER BY 1» to analyze average boiler temperatures during business hours. This helps streamline the path from industrial data collection to actionable business insights.
This enhanced feature is available in the following AWS Regions: Asia Pacific (Tokyo), Asia Pacific (Seoul), Asia Pacific (Mumbai), Asia Pacific (Singapore), Asia Pacific (Sydney), Europe (Ireland), Europe (Frankfurt), US East (N. Virginia), US West (Oregon). The ODBC driver is compatible with Windows environments.
AWS IoT SiteWise is a managed service that makes it easy to collect, store, organize and analyze data from industrial equipment at scale to help you make data-driven decisions. To learn more about the enhanced Query API and download the ODBC driver, please visit the user guide.
We are announcing major enhancements to the AWS IoT SiteWise Query API (ExecuteQuery) to support a suite of advanced SQL capabilities, empowering customers to perform sophisticated data analysis on their industrial data and business intelligence tool integration. Customers can now leverage advanced SQL operations including string manipulation (such as pattern matching and substring extraction), aggregation functions (e.g., grouping, SUM, COUNT, and more on telemetry streams), multi-field sorting, and robust datetime operations for time-based analytics. Furthermore, we are introducing an ODBC driver, enabling direct integration with BI tools like Tableau, Power BI, and Excel for enhanced data visualization and reporting on operational data—without custom development or middleware. These enhancements enable customers to execute advanced queries such as «SELECT avg(rts.double_value), a.asset_name FROM raw_time_series rts, asset a, asset_property ap WHERE a.asset_name LIKE ‘Boiler%’ AND ap.property_name = ‘Temperature’ AND rts.event_timestamp > TIMESTAMP ‘2025-04-15 09:00:00’ AND rts.event_timestamp < TIMESTAMP ‘2025-04-15 17:00:00’ GROUP BY a.asset_name ORDER BY 1» to analyze average boiler temperatures during business hours. This helps streamline the path from industrial data collection to actionable business insights. This enhanced feature is available in the following AWS Regions: Asia Pacific (Tokyo), Asia Pacific (Seoul), Asia Pacific (Mumbai), Asia Pacific (Singapore), Asia Pacific (Sydney), Europe (Ireland), Europe (Frankfurt), US East (N. Virginia), US West (Oregon). The ODBC driver is compatible with Windows environments. AWS IoT SiteWise is a managed service that makes it easy to collect, store, organize and analyze data from industrial equipment at scale to help you make data-driven decisions. To learn more about the enhanced Query API and download the ODBC driver, please visit the user guide.
Starting today, Amazon Elastic Compute Cloud (Amazon EC2) P6-B200 instances accelerated by NVIDIA Blackwell GPUs are available in US East (N. Virginia) region. These instances offer up to 2x performance compared to P5en instances for AI training and inference.
P6-B200 instances feature 8 Blackwell GPUs with 1440 GB of high-bandwidth GPU memory and a 60% increase in GPU memory bandwidth compared to P5en, 5th Generation Intel Xeon processors (Emerald Rapids), and up to 3.2 terabits per second of Elastic Fabric Adapter (EFAv4) networking. P6-B200 instances are powered by the AWS Nitro System, so you can reliably and securely scale AI workloads within Amazon EC2 UltraClusters to tens of thousands of GPUs.
Starting today, Amazon Elastic Compute Cloud (Amazon EC2) P6-B200 instances accelerated by NVIDIA Blackwell GPUs are available in US East (N. Virginia) region. These instances offer up to 2x performance compared to P5en instances for AI training and inference. P6-B200 instances feature 8 Blackwell GPUs with 1440 GB of high-bandwidth GPU memory and a 60% increase in GPU memory bandwidth compared to P5en, 5th Generation Intel Xeon processors (Emerald Rapids), and up to 3.2 terabits per second of Elastic Fabric Adapter (EFAv4) networking. P6-B200 instances are powered by the AWS Nitro System, so you can reliably and securely scale AI workloads within Amazon EC2 UltraClusters to tens of thousands of GPUs.
Involucrar a los estudiantes en todas las materias puede ser un desafío. El aprendizaje basado en juegos con Minecraft Education ofrece una forma poderosa de cerrar esa brecha y crear un impacto en el mundo real. Minecraft Education ayuda a los educadores a conectar la pasión de los estudiantes con un propósito, para hacer que el aprendizaje se sienta como un juego. Con recursos listos para usar y alineados con los estándares en codificación e inteligencia artificial, ciencia, historia, matemáticas y más, esta plataforma inmersiva da vida a las lecciones a través de la creatividad, la colaboración y la exploración.
Minecraft Education promueve el pensamiento crítico, el trabajo en equipo, la creatividad y la resolución de problemas mientras ayuda a los estudiantes a desarrollar habilidades digitales para su futuro. También puede ayudar a motivar el aprendizaje, mejorar la asistencia y desarrollar la agencia de los estudiantes. Los educadores lo usan para todo, desde desarrollar alfabetización en IA a través de lecciones inmersivas hasta desafíos de diseño sostenible y programas de deportes electrónicos.
Exploren esta colección de experiencias educativas de Minecraft diseñadas para respaldar su instrucción, impulsar la participación e inspirar la creatividad en el aula. Los padres y cuidadores también pueden apoyar el aprendizaje de sus hijos fuera de la escuela con Minecraft Education. Con materiales como un kit de herramientas familiares de seguridad digital, también encontrarán formas de usar Minecraft para explorar temas importantes en casa. Descubran los recursos educativos de Minecraft para padres y familias hoy mismo.
Ciudadanía digital, codificación e IA
Los estudiantes de hoy crecen en un mundo moldeado por herramientas digitales, inteligencia artificial y rápidos cambios tecnológicos. Minecraft Education los ayuda a prepararse para navegar por ese mundo de manera responsable y segura. Con Minecraft Education, los estudiantes pueden participar en experiencias prácticas que les ayudan a fortalecer la ciudadanía digital, explorar el uso responsable de la IA y desarrollar la fluidez de la codificación, todo dentro de un espacio de aprendizaje familiar y lúdico que se conecta con su vida cotidiana.
Den un vistazo a estos mundos educativos de Minecraft diseñados para ayudar a los estudiantes a explorar, crear y crecer como ciudadanos digitales.
CyberSafe AI: Dig Deeper – Desarrollen la ciudadanía digital y las habilidades de alfabetización en IA con CyberSafe AI: Dig Deeper. Esta atractiva aventura desafía a los estudiantes a ir más allá de la superficie y explorar la IA responsable, el pensamiento crítico y la alfabetización de datos. No se limiten a aceptar la IA al pie de la letra: ¡profundicen y descubran el poder del uso consciente de la tecnología!
Hour of Code: The Show Must Go On – Adéntrense en un vibrante mundo teatral para ayudar a salvar el día en Hour of Code 2024: The Show Must Go On de Minecraft. En esta aventura, los estudiantes explorarán el teatro para encontrar a la estrella desaparecida, el Agente, mientras resuelven divertidos acertijos de codificación e interactúan con personajes animados. Desbloquearán bromas ocultas, personalizarán el espectáculo y planificarán una actuación inolvidable.
GameCode: potencien la codificación creativa con este plan de estudios dinámico en el que los estudiantes crean sus propios minijuegos de estilo arcade y aprenden informática en el camino. Este enfoque inmersivo e innovador de la codificación encenderá la pasión por la programación en los estudiantes a medida que se conviertan en diseñadores de juegos inventivos, capacitados para dar forma a sus paisajes digitales.
Estas experiencias introducen a los estudiantes a conceptos digitales esenciales al tiempo que les permiten iterar y construir en un entorno seguro y creativo. Desmitifiquen temas complejos como la IA y la codificación con sus alumnos a través del aprendizaje basado en juegos con Minecraft.
Materias troncales y STEM
Puede ser un desafío hacer que los conceptos académicos abstractos se sientan emocionantes, relevantes y accesibles. Ahí es donde entra Minecraft Education. Estas experiencias alineadas con los estándares están diseñadas para ayudar a los estudiantes a conectarse con la instrucción básica de manera práctica y significativa. Desde ciencias ambientales y astronomía hasta matemáticas e historia, estos mundos ayudan a los estudiantes a involucrarse a fondo con el contenido a través de la investigación, la experimentación y la creatividad.
Exploren estos mundos para ayudar a sus estudiantes a aplicar conceptos académicos en todas las áreas temáticas.
Ocean Heroes – Embárquense en una aventura de conservación marina en Ocean Heroes, presentado por la Comisión Oceanográfica Intergubernamental de la UNESCO y Voice of the Ocean. Los estudiantes investigarán los ecosistemas oceánicos junto con los científicos y los ayudarán a abordar los desafíos ambientales en los bosques de manglares, arrecifes de coral y bosques de algas marinas. En el camino, se encontrarán con criaturas asombrosas, mejorarán su conocimiento del océano y desarrollarán habilidades críticas para resolver problemas.
Data Explorers: desarrollen habilidades de ciencia de datos y sostenibilidad en este mundo, creado por ReWrite Edu en colaboración con NetApp y World’s Largest Lesson. Este juego de estilo “elige tu próximo camino” lleva a los estudiantes a través de cinco ecosistemas diferentes en busca de científicos que los ayuden a usar datos para resolver problemas ambientales específicos. En el camino, los estudiantes pueden perfeccionar sus habilidades de recopilación y análisis de datos, así como ver cómo los científicos aplican los datos a problemas del mundo real.
Peter is here: AI for Cultural Heritage – ¡Adéntrense en el corazón de la historia! Peter is Here: AI for Cultural Heritage es una experiencia cautivadora en la que los estudiantes viajan a través de 2 mil años de innovación arquitectónica. Inspirado en los esfuerzos de preservación del mundo real, este proyecto inmersivo permite a los jóvenes exploradores usar herramientas de IA simuladas para restaurar maravillas antiguas, desde la ingeniería romana hasta las obras maestras barrocas, y explorar la historia de la Basílica de San Pedro en la Ciudad del Vaticano.
James Webb Space Telescope Challenge – Exploren el universo con el telescopio espacial James Webb de la NASA. Alineada con los planes de estudio de ciencias de los Estándares de Ciencias de la Próxima Generación (NGSS, por sus siglas en inglés), Reino Unido, Canadá y Australia (NSW, por sus siglas en inglés), esta lección inmersiva permite a los estudiantes aprender sobre la misión del telescopio, la formación estelar y las galaxias, para culminar en un desafío de construcción del sistema solar. ¡Inspiren a los futuros astrónomos con esta aventura cósmica!
Estas experiencias apoyan las conexiones intercurriculares y ayudan a los estudiantes a desarrollar una comprensión más profunda del contenido académico e inspirar curiosidad a través del aprendizaje basado en juegos. Comiencen y exploren contenido inmersivo en materias básicas para estudiantes de todas las edades.
Diversión creativa en el aula
A veces, el mejor aprendizaje ocurre cuando los estudiantes son libres de explorar, experimentar y jugar. Las experiencias abiertas de Minecraft Education permiten a los estudiantes expresarse, colaborar con sus compañeros y desarrollar confianza creativa. Estas actividades son perfectas para la construcción de la comunidad, el aprendizaje basado en proyectos o los momentos en que su salón de clases necesita una chispa de alegría.
Prueben estos mundos centrados en el estudiante para fomentar la cultura y la creatividad en el aula.
Wheel of Steve – Giren la Rueda de Steve en esta aventura educativa inspirada en una película de Minecraft. Creado para estudiantes de 8 a 14 años, Wheel of Steve admite el juego para hasta ocho alumnos a la vez. Dos equipos competirán entre sí en cinco minijuegos cooperativos diseñados para fortalecer habilidades clave que incluyen creatividad, colaboración, comunicación, comunidad y pensamiento crítico.
Renewtopia – Exploren una isla única y aprendan sobre cuatro tipos diferentes de energía renovable: solar, mareomotriz, eólica y geotérmica. Este desafío de construcción interactivo enseña a los alumnos sobre fuentes de energía sostenibles mediante la construcción de una exhibición para una feria de energía sostenible. Su objetivo es enseñar a otros sobre una o más de las fuentes de energía renovable que se encuentran en la isla.
Estas experiencias son excelentes para construir relaciones, fortalecer la comunidad del aula y permitir que los estudiantes dirijan su propio aprendizaje de manera alegre y significativa. Involucren la creatividad de sus estudiantes y fortalezcan las habilidades preparadas para el futuro en su salón de clases.
Obtengan apoyo e inspiración para el aprendizaje basado en juegos con Minecraft
No importa dónde se encuentren en su recorrido de Minecraft Education, hay una comunidad y una colección de recursos gratuitos listos para ayudarlos a tener éxito. Conecten con otros educadores, participen en eventos especiales y exploren módulos de aprendizaje, desafíos e ideas para llevar Minecraft a su salón de clases:
Ya sea que ayuden a los estudiantes a comprender el uso responsable de la tecnología, busquen reforzar el contenido académico o quieran construir una cultura próspera en el aula, Minecraft Education ofrece mundos inmersivos que hacen que el aprendizaje sea atractivo y significativo. Estas experiencias no son solo lecciones, son plataformas de lanzamiento para la curiosidad, la creatividad y la confianza.
Den un vistazo a Minecraft Education para explorar la colección completa de lecciones, acceder a recursos para educadores y comenzar a enseñar con el poder del juego hoy.
Amazon Timestream for InfluxDB now offers 24xlarge memory-optimized instances, providing enhanced performance for demanding time-series workloads. This new instance type is generally available for both Single-AZ and Multi-AZ deployments, as well as Multi-AZ Read Replica clusters, enabling customers to scale their time-series database solutions.
The 24xlarge instance delivers 96 vCPU, 768 GiB of memory, and up to 40 Gbps of enhanced network bandwidth. This makes it ideal for large-scale, I/O-intensive time-series applications that require fast response times at scale, such as industrial telemetry, IoT analytics, and financial trading platforms.
This feature is now available in US East (Ohio), US East (N. Virginia), US West (Oregon), Asia Pacific (Mumbai), Asia Pacific (Singapore), Asia Pacific (Sydney), Asia Pacific (Tokyo), Europe (Frankfurt), Europe (Ireland), Europe (Spain), and Europe (Stockholm).
Amazon Timestream for InfluxDB now offers 24xlarge memory-optimized instances, providing enhanced performance for demanding time-series workloads. This new instance type is generally available for both Single-AZ and Multi-AZ deployments, as well as Multi-AZ Read Replica clusters, enabling customers to scale their time-series database solutions. The 24xlarge instance delivers 96 vCPU, 768 GiB of memory, and up to 40 Gbps of enhanced network bandwidth. This makes it ideal for large-scale, I/O-intensive time-series applications that require fast response times at scale, such as industrial telemetry, IoT analytics, and financial trading platforms. This feature is now available in US East (Ohio), US East (N. Virginia), US West (Oregon), Asia Pacific (Mumbai), Asia Pacific (Singapore), Asia Pacific (Sydney), Asia Pacific (Tokyo), Europe (Frankfurt), Europe (Ireland), Europe (Spain), and Europe (Stockholm).
You can provision 24xlager memory-optimized instances from the Amazon Timestream console, AWS Command lin Interface (CLI), or SDK, and AWS CloudFormation. To learn more, visit the product page, documentation, and pricing page.
AWS Identity and Access Manager (IAM) Access Analyzer now supports unused access findings, internal access findings, and custom policy checks in the AWS GovCloud (US-East and US-West) Regions to help guide you towards least privilege.
IAM Access Analyzer continuously analyzes your accounts to identify unused access and surfaces findings to highlight unused roles, unused access keys for IAM users, and unused passwords for IAM users. For active IAM roles and users, the findings provide visibility into unused services and actions. With internal access findings, you can identify who within your AWS organization has access to your Amazon S3, Amazon DynamoDB, or Amazon Relational Database Service (RDS) resources. It uses automated reasoning to evaluate all identity policies, resource policies, service control policies (SCPs), and resource control policies (RCPs) to surface all IAM users and roles that have access to your selected critical resources. After the new analyzers are enabled in the IAM console, the updated dashboard highlights your AWS accounts and resources that have the most findings and provides a breakdown of findings by type. Security teams can respond to new findings in two ways: taking immediate action to fix unintended access, or setting up automated notifications through Amazon EventBridge to engage development teams for remediation.
Custom policy checks also use the power of automated reasoning to help security teams proactively detect nonconformant updates to policies. For example, IAM policy changes that are more permissive than their previous version. Security teams can use these checks to streamline their reviews, automatically approving policies that conform with their security standards, and inspecting more deeply when they don’t.
AWS Identity and Access Manager (IAM) Access Analyzer now supports unused access findings, internal access findings, and custom policy checks in the AWS GovCloud (US-East and US-West) Regions to help guide you towards least privilege. IAM Access Analyzer continuously analyzes your accounts to identify unused access and surfaces findings to highlight unused roles, unused access keys for IAM users, and unused passwords for IAM users. For active IAM roles and users, the findings provide visibility into unused services and actions. With internal access findings, you can identify who within your AWS organization has access to your Amazon S3, Amazon DynamoDB, or Amazon Relational Database Service (RDS) resources. It uses automated reasoning to evaluate all identity policies, resource policies, service control policies (SCPs), and resource control policies (RCPs) to surface all IAM users and roles that have access to your selected critical resources. After the new analyzers are enabled in the IAM console, the updated dashboard highlights your AWS accounts and resources that have the most findings and provides a breakdown of findings by type. Security teams can respond to new findings in two ways: taking immediate action to fix unintended access, or setting up automated notifications through Amazon EventBridge to engage development teams for remediation. Custom policy checks also use the power of automated reasoning to help security teams proactively detect nonconformant updates to policies. For example, IAM policy changes that are more permissive than their previous version. Security teams can use these checks to streamline their reviews, automatically approving policies that conform with their security standards, and inspecting more deeply when they don’t. To learn more about IAM Access Analyzer:
AWS Client VPN is now available in two new Asia Pacific Regions: Malaysia and Thailand. This fully managed service enables customers to securely connect their remote workforce to resources in AWS or on-premises networks.
AWS Client VPN eliminates the need for hardware VPN appliances and complex operational management through its pay-as-you-go model. Organizations can easily manage and monitor VPN connections through a single console.
AWS Client VPN is now available in two new Asia Pacific Regions: Malaysia and Thailand. This fully managed service enables customers to securely connect their remote workforce to resources in AWS or on-premises networks.
AWS Client VPN eliminates the need for hardware VPN appliances and complex operational management through its pay-as-you-go model. Organizations can easily manage and monitor VPN connections through a single console.
To learn more about Client VPN:
Visit the AWS Client VPN product page.
Read the AWS Client VPN documentation.
AWS Client VPN pricing page.
