Posted On: May 14, 2024
Amazon Elastic Block Store (EBS) direct APIs now support Virtual Private Cloud (VPC) endpoint policies in all Amazon Web Services Regions. This newly supported capability provides a granular access control to your EBS resources for improved data protection and security posture. Previously, customers have full access to EBS direct APIs through an interface VPC endpoint, powered by Amazon PrivateLink. With this newly supported capability, customers can attach a VPC endpoint policy to an interface VPC endpoint and manage which EBS direct APIs actions (GetSnapshotBlock, ListSnapshotBlocks, ListChangedBlocks, PutSnapshotBlock) may be performed, the principal that may perform the actions, and the resources on which the actions may be performed.
VPC endpoint policy support is available in all Amazon Web Services Regions where EBS direct APIs are available, including Amazon Web Services China (Beijing) Region, operated by Sinnet and Amazon Web Services China (Ningxia) Region, operated by NWCD. To learn more, visit our documentation.