Changes "ListPortfolioAccess" API now has a new optional parameter "OrganizationParentId". When it is provided and if the portfolio with the "PortfolioId" given was shared with an organization or organizational unit with "OrganizationParentId", all accounts in the organization sub-tree under parent which inherit an organizational portfolio share will be listed, rather than all accounts with external shares. To accommodate long lists returned from the new option, the API now supports pagination.
Changes Amazon EC2 Auto Scaling now supports the ability to enable/disable target tracking, step scaling, and simple scaling policies.
Changes Added AudioFallbackUrl to support Chime SDK client.
Changes This release supports Microsoft Active Directory authentication for Amazon Aurora.
Changes AWS Cloud9 now supports the ability to tag Cloud9 development environments.
Changes Amazon DynamoDB enables you to restore your DynamoDB backup or table data across AWS Regions such that the restored table is created in a different AWS Region from where the source table or backup resides. You can do cross-region restores between AWS commercial Regions, AWS China Regions, and AWS GovCloud (US) Regions.
Changes This update adds the ability to detect text in videos and adds filters to image and video text detection.
Changes You can now enable Multi-Attach on Provisioned IOPS io1 volumes through the create-volume API.
Changes AWS Elemental MediaTailor SDK now allows configuration of Personalization Threshold for HLS and DASH streams.
Changes Security Hub has released a new DescribeStandards API action. This API action allows a customer to list all of the standards available in an account. For each standard, the list provides the customer with the standard name, description, and ARN. Customers can use the ARN as an input to the BatchEnableStandards API action. To learn more, visit our API documentation.
Changes This release adds support for associating Amazon Route 53 health checks to AWS Shield Advanced protected resources.
Changes Adds support for DASH with multiple media presentation description periods triggered by presence of SCTE-35 ad markers in the manifest.Also adds optional configuration for DASH SegmentTemplateFormat to refer to segments by Number with Duration, Number with Timeline or Time with Timeline and compact the manifest by combining duplicate SegmentTemplate tags.
Changes Release to add the ExpirationDateTime as an output to ListCertificates so as to ease customers to look into their certificate lifetime and make timely decisions about renewing them.
Changes This release adds support for tagging public IPv4 pools.
Changes Amazon Elasticsearch Service now offers fine-grained access control, which adds multiple capabilities to give tighter control over data. New features include the ability to use roles to define granular permissions for indices, documents, or fields and to extend Kibana with read-only views and secure multi-tenant support.
Changes Adding ability to add arguments that cannot be overridden to AWS Glue jobs
Changes This launch enables Neptune start-db-cluster and stop-db-cluster. Stopping and starting Amazon Neptune clusters helps you manage costs for development and test environments. You can temporarily stop all the DB instances in your cluster, instead of setting up and tearing down all the DB instances each time that you use the cluster.
Changes This release adds support for access control rules management in Amazon WorkMail.
Changes This release of AWS CloudFormation StackSets allows you to centrally manage deployments to all the accounts in your organization or specific organizational units (OUs) in AWS Organizations. You will also be able to enable automatic deployments to any new accounts added to your organization or OUs. The permissions needed to deploy across accounts will automatically be taken care of by the StackSets service.
Changes Features:This release adds a new setting for a user pool to allow if customer wants their user signup/signin with case insensitive username. The current default setting is case sensitive, and for our next release we will change it to case insensitive.
Changes The ConnectCustomKeyStore API now provides a new error code (SUBNET_NOT_FOUND) for customers to better troubleshoot if their "connect-custom-key-store" operation fails.
Changes This release adds support for simulation job batches
Changes AWS CodeBuild adds support for Amazon Elastic File Systems
Changes This release adds platform details and billing info to the DescribeImages API.
Changes Amazon Lex now supports AMAZON.AlphaNumeric with regular expressions.
Changes Adds dataflowEndpointRegion property to DataflowEndpointConfig. The dateCreated, lastUpdated, and tags properties on GetSatellite have been deprecated.
Changes AWS Elemental MediaConvert SDK has added support for fine-tuned QVBR quality level.
Changes Additional resource types are now supported in the AWS Security Finding Format (ASFF). The following new resource types are added, each having an accompanying resource details object with fields for security finding providers to populate: AwsCodeBuildProject, AwsEc2NetworkInterface, AwsEc2SecurityGroup, AwsElasticsearchDomain, AwsLambdaLayerVersion, AwsRdsDbInstance, and AwsWafWebAcl. The following resource types are added without an accompanying details object: AutoscalingAutoscalingGroup, AwsDynamoDbTable, AwsEc2Eip, AwsEc2Snapshot, AwsEc2Volume, AwsRdsDbSnapshot, AwsRedshiftCluster, and AwsS3Object. The number of allowed resources per finding is increased from 10 to 32. A new field is added in the Compliance object, RelatedRequirements. To learn more, visit our documentation on the ASFF.
Changes Amazon VPC Flow Logs adds support for 1-minute aggregation intervals.
Changes This release enables AWS MSK customers to list Apache Kafka versions that are supported on AWS MSK clusters. Also includes changes to expose additional details of a cluster's state in DescribeCluster and ListClusters APIs.
Changes This feature ensures that an instance is patched up to the available patches on a particular date. It can be enabled by selecting the 'ApproveUntilDate' option as the auto-approval rule while creating the patch baseline. ApproveUntilDate - The cutoff date for auto approval of released patches. Any patches released on or before this date will be installed automatically.
Changes This release adds support for tagging Amazon WorkMail organizations.
Changes AWS DataSync now supports FSx for Windows File Server Locations
Changes This release provides support for tagging Amazon ECS task sets for services using external deployment controllers.
Changes This release enables the Identity and Access Management policy simulator to simulate permissions boundary policies.
Changes This SDK release introduces APIs that automate the export of Amazon RDS snapshot data to Amazon S3. The new APIs include: StartExportTask, CancelExportTask, DescribeExportTasks. These APIs automate the extraction of data from an RDS snapshot and export it to an Amazon S3 bucket. The data is stored in a compressed, consistent, and query-able format. After the data is exported, you can query it directly using tools such as Amazon Athena or Redshift Spectrum. You can also consume the data as part of a data lake solution. If you archive the data in S3 Infrequent Access or Glacier, you can reduce long term data storage costs by applying data lifecycle policies.
Changes AWS CodePipeline enables an ability to stop pipeline executions.
Changes Add an enum value to the result of DescribeByoipCidrs to support CIDRs that are not publicly advertisable.
Changes Add support for CreatedTime and ConnectionStatusUpdatedTime in response of SearchDevices API.
Changes This release adds support for a list API to retrieve the configuration events logged during periodic updates to an application by Amazon CloudWatch Application Insights.
Changes This release provides support for a preview of bringing your own IPv6 addresses (BYOIP for IPv6) for use in AWS.
Changes The ConnectCustomKeyStore operation now provides new error codes (USER_LOGGED_IN and USER_NOT_FOUND) for customers to better troubleshoot if their connect custom key store operation fails. Password length validation during CreateCustomKeyStore now also occurs on the client side.
Changes Added reason codes to StateReasonCode (InvalidSubnet, InvalidSecurityGroup) and LastUpdateStatusReasonCode (SubnetOutOfIPAddresses, InvalidSubnet, InvalidSecurityGroup) for functions that connect to a VPC.
Changes Updating DescribeAnomalyDetectors API to return AnomalyDetector Status value in response.
Changes This release introduces resource-level and tag-based access control for AWS CloudHSM resources. You can now tag CloudHSM backups, tag CloudHSM clusters on creation, and tag a backup as you copy it to another region.
Changes This release provides a public preview for specifying Amazon EFS file systems as volumes in your Amazon ECS task definitions.
Changes AWS Elemental MediaConvert SDK has added support for MP3 audio only outputs.
Changes This release includes Deletion Protection for Amazon Neptune databases.
Changes Client VPN now supports Port Configuration for VPN Endpoints, allowing usage of either port 443 or port 1194.
Changes This release adds two new APIs (UpdateWorkforce and DescribeWorkforce) to SageMaker Ground Truth service for workforce IP whitelisting.
Changes Add support for DescribeStandardsControls and UpdateStandardsControl. These new Security Hub API operations are used to track and manage whether a compliance standards control is enabled.
Changes This release adds support for partition placement groups and instance metadata option in Launch Templates
Changes Cross-region backup is a new AWS Backup feature that allows enterprises to copy backups across multiple AWS services to different regions.
Changes This release adds support for managing EFS file system policies and EFS Access Points.
Changes Add shared profile support to new and existing users
Changes This release introduces the ability to tag egress only internet gateways, local gateways, local gateway route tables, local gateway virtual interfaces, local gateway virtual interface groups, local gateway route table VPC association and local gateway route table virtual interface group association. You can use tags to organize and identify your resources for cost allocation.
Changes This release adds an operation that enables users to override the system-default SSL/TLS certificate for new Amazon RDS DB instances temporarily, or remove the customer override.
Changes SageMaker ListTrialComponents API filter by TrialName and ExperimentName.
Changes This release introduces a new endpoint type that allows you to attach Elastic IP addresses from your AWS account with your server's endpoint directly and whitelist access to your server by client's internet IP address(es) using VPC Security Groups.
Changes AWS Firewall Manager now supports tagging, and tag-based access control, of policies.
Changes This release adds a new family of APIs for asynchronous batch translation service that provides option to translate large collection of text or HTML documents stored in Amazon S3 folder. This service accepts a batch of up to 5 GB in size per API call with each document not exceeding 1 MB size and the number of documents not exceeding 1 million per batch. See documentation for more information.
Changes ListApplicationStates API provides a list of all application migration states
Changes Add encryption key override to StartBuild API in AWS CodeBuild.
Changes Amazon Comprehend now supports Multilabel document classification
Changes This release supports service providers configuring a private DNS name for services other than AWS services and services available in the AWS marketplace. This feature allows consumers to access the service using an existing DNS name without making changes to their applications.
Changes You can now restrict direct access to AWS Elemental MediaPackage by securing requests for live content using CDN authorization. With CDN authorization, content requests require a specific HTTP header and authorization code.
Changes This release adds support for Certificate Authority (CA) certificate identifier to managed databases in Amazon Lightsail.
Changes This release adds a new family of APIs (create-data-repository-task, describe-data-repository-task, and cancel-data-repository-task) that allow users to perform operations between their file system and its linked data repository.
Changes With this release, you can now centrally aggregate AWS Health events from all accounts in your AWS organization. Visit AWS Health documentation to learn more about enabling and using this feature: https://docs.aws.amazon.com/health/latest/ug/organizational-view-health.html.