StackZone AWS Core: v4.43.x Release
Release Notes
Eduardo Van Cauteren
Last Update 2 เดือนที่แล้ว
Highlights
New Features:
- Added Config Remediation for AWS Config Rule Athena Workgroup Encrypted
- Added AWS Config Rule S3 Version Lifecycle Policy
- Added AWS Config Rule SNS Topic Delivery Notification Enabled
- Added AWS Config Rule S3 Event Notifications Enabled
- Added Remediation for AWS Config Rule CloudFront Enable Viewer Policy HTTPS
- Added Remediation for AWS Config Rule CloudFront Default Root Object
- Added Remediation for AWS Config Rule CloudFront Access Logs
- Added AWS Config Rule CloudFront Origin Failover Enabled
- Added AWS Config Rule RDS Cluster Multi-AZ Enabled
- Added AWS Config Rule and remediation for Sagemaker Notebook Instance Root Access Check
- Added AWS Config Rule DocumentDB Cluster Snapshot Public Prohibited
Added AWS Config Rule DocumentDB Cluster Encrypted
Added AWS Config Rule DocumentDB Cluster Audit Logging Enabled
Added AWS Config Rule DocumentDB Cluster Deletion Protection Enabled
Added AWS Config Rule DocumentDB Cluster Backup Retention Period
Added Remediation for AWS Config Rule DocumentDB Cluster Backup Retention Period
Bug Fixes
Bug Fixes:
- Added Read S3 Bucket Configuration permissions to StackZone Support Role
- Fixed an issue with S3 Replication creating incorrect Role Names for cross-account replication
- Fixed an issue with S3 AntiVirus Feature not being able to tag infected files
Added permissions to Operations role
Modified permissions for S3 bucket policy
Restricted permissions for services accessing logging S3 bucket
Fixed a SSM read permission with Invited Support Role
Known Issues
- If you previously made use of the StackZone S3 Replication Feature, the role names will have changed which perform the replication functions. This will mean any S3 Bucket Policies may need to be changed for cross-account replication.
- Operations > Resource Management > Identity Management menu entry, although is visible, is not developed yet.
v4.43.1 Additions
Bug Fixes
- Fixed IAM AccessKey Remediation which disables and removes AccessKeys over 90 days old.
- Fixed a duplicate Tag issue which prevented STNO from building under certain circumstances
Want to know more about StackZone and how to make your cloud management simple and secure?
Check our how it works section with easy to follow videos or just create your own StackZone Account here