StackZone AWS Core: v4.27.x Release
Release Notes
Eduardo Van Cauteren
Last Update há um ano
Highlights
New Features:
- Added EKS Cluster Oldest Supported Version Config Rule
- Added EKS Cluster Latest Supported Version Config Rule
- Added ability for Admin Delegator to register CloudTrail organization delegated admin
- Added Remediation for CodeBuild Project Env Var Config Rule
- Added Remediation for IAM Group No Users Config Rule
- Added WellArchitected permissions to StackZoneLimitedRole
- Added WAF Regional WebACL Not Empty Config Rule
- Added NACL No Unrestricted SSH RDP Config Rule
- Added IAM Policy No Statements with Full Access Config Rule
- Added RDS Cluster Default Admin Check Config Rule
- Added RDS Instance Default Admin Check Config Rule
Bug Fixes
Bug Fixes:
- Enabled Compute Optimizer by default in all blueprints
- Moving IAM Inline Policies to Managed to achieve compliance
- Added Compute Optimizer Read Access to StackZoneLimitedRole
- Upgrade boto3 layers
- Added permissions to DelegateAdmin Lambda Role
- Added Pipeline permissions to StackZoneSupportRole
- Remediation for Enable VPC Flow Logs Config Rule has been replaced
- Remediation for VPC Default Security Group Closed Config Rule has been replaced
- Removed MasterSubnetsReach parameter from the ServiceCatalog Jenkins Master application
- Removed Public Subnets from Service Catalog Endpoints product
- Removed some Tags from the WAF Product in Service Catalog
- Added appropriate descriptions to some Logging IAM Roles
- Added correct IAM Role Name for StackZone-CentralizedLoggingDeployRole
- Updated Lambda Layers for Delegate Admin Feature
- Updated some Lambda Functions to NodeJS16.x runtime
- Fixed bugs with the Service Quota Feature
- Removed Version dependency for AWS Managed Remediation SSM Documents
- Fixed Default Value in StackZone Console for S3 Shared Bucket Expiration
Removals
Features Removed:
- Removed Centralized Logging Feature.
The Centralized Logging solution enabled your Organization to collect, analyze, and display Amazon CloudWatchLogs in a single central dashboard with logs aggregated from different sources and multiple accounts. This has been deprecated due to the Lambda Runtime was NodeJS 12.x and would become unusable after December 2022 in AWS Lambda Functions
v4.27.1 Additions
Bug Fixes:
- Fixed a bug with conflicting role names (StackZone-VPC-FlowLogging-Role) that could make the version upgrade to fail if user have more than one AWS Region enabled.
Want to know more about StackZone and how to make your cloud management simple and secure?
Check our how it works section with easy to follow videos or just create your own StackZone Account here