Four new checks have been added to Trusted Advisor to provide recommendations related to Amazon S3, Amazon Redshift, Amazon EC2 Reserved Instances, and security. Additionally, the service limits check now includes IAM. These checks provide further guidance to help provision your resources based on AWS best practices.
You can now assign one or more AWS Identity and Access Management (IAM) roles to your Amazon Redshift cluster for data loading and exporting. Amazon Redshift assumes the assigned IAM roles when you load data into your cluster using the COPY command or export data from your cluster using the UNLOAD command. It uses the resulting credentials to access other AWS services, such as Amazon S3, securely during these operations. IAM roles enhance security of your cluster and simplify data loading and exporting by eliminating the need for you to embed AWS access credentials within SQL commands. They also enable your cluster to periodically re-assume an IAM role during long-running operations. Handling of data encryption keys for COPY and UNLOAD commands remains unchanged.
You can now view change sets before updating your stacks in AWS CloudFormation. This helps you understand the resource-level changes (e.g. adding, deleting, or modifying instances) which CloudFormation will apply to your live stack when you are updating your AWS infrastructure. Previously, you could not see the specific changes that CloudFormation would apply to your stack before submitting changes.
In October of 2015, we added support for the popular open source MariaDB database in Amazon RDS and have since seen rapid adoption by customers. Amazon RDS supports MariaDB instances running in Single-AZ or Multi-AZ configurations in all AWS regions. Today we are extending the RDS Service Level Agreement (“SLA”) that covers Multi-AZ instances for MySQL, Oracle, and PostgreSQL to include Amazon RDS for MariaDB.
Starting today, Amazon RDS supports two new features for RDS for PostgreSQL database instances: the option to enforce only SSL connections to your instance, and near-realtime access to a set of 56 system and process metrics for your instance.
You can now scale up your existing ElastiCache for Redis clusters to a larger node type with a few clicks. Simply modify your node type by choosing from the available options and let ElastiCache manage the rest. Your existing node endpoints will persist, thus no application update is required. Scale up for Redis is designed to make a best effort to retain your existing data and requires Redis replication to succeed. For more details, please refer to Jeff Barr’s blog and ElastiCache Documentation.
You can use AWS Mobile Hub to develop apps in Swift. Simply login to the AWS Mobile Hub console to create a project and select features for your app including user authentication, data storage, backend logic, push notifications, content delivery, and analytics, then choose Swift from the build tab of your project. AWS Mobile Hub automatically provisions these features and generates a working quickstart app for iOS that you can use as a foundation for your app, or cut and paste code snippets to your existing app.
Support for multiple trails: You can now create up to 5 trails in the AWS GovCloud (US) region. Different stakeholders such as IT auditors, security administrators, and developers can create and manage their own trail. Additionally, you can prescribe granular access control to allow or deny access to specific trails for particular users. For more details, refer to the Multiple Trails section of the CloudTrail User Guide. One trail per region is free. Charges apply for additional trails. For pricing details, go to the CloudTrail pricing page.