New organization management policy type that allows you to declare and enforce desired configuration for a given AWS service in your environment. As the name suggests you simply declare the configuration you want and AWS takes care of ensuring it is true. Once set, it PREVENTS non compliant actions. For example, let’s say you want to ensure VPC BPA, you simply create a declarative policy that sets VPC Block Public Access= Bidirectional with a few clicks or commands. Once set, regardless of whether a principal tries to egress out of your VPC, or you have an API Gateway endpoint that supports public access or have an Internet Gateway, none of those actions will be allowed. Declarative policies simplify enforcing desired configuration.
Easy to Use: With Declarative Policies, customers can define desired configuration outcome using English-like statements with a few simple clicks or commands.
Set once and Forget: The configuration defined in the Declarative Policy is always maintained, even when AWS services introduce new APIs, new accounts are added to an Organization and new principals and resources get created. Non-compliant actions fail regardless of whether they were invoked by a principal or a service using an SLR.
Transparent: Declarative Policies support customizable error messages, which allow administrators to redirect end users to internal wiki pages and other resources. This reduces end-user frustration.
What’s new: http://go.aws/3TKa7Kt
AWS News Blog: http://go.aws/3Gap9WS
Documentation: http://go.aws/3TBLMXh
Subscribe to AWS: https://go.aws/subscribe
Sign up for AWS: https://go.aws/signup
AWS free tier: https://go.aws/free
Explore more: https://go.aws/more
Contact AWS: https://go.aws/contact
Next steps:
Explore on AWS in Analyst Research: https://go.aws/reports
Discover, deploy, and manage software that runs on AWS: https://go.aws/marketplace
Join the AWS Partner Network: https://go.aws/partners
Learn more on how Amazon builds and operates software: https://go.aws/library
Do you have technical AWS questions?
Ask the community of experts on AWS re:Post: https://go.aws/3lPaoPb
Why AWS?
Amazon Web Services (AWS) is the world’s most comprehensive and broadly adopted cloud. Millions of customers—including the fastest-growing startups, largest enterprises, and leading government agencies—use AWS to be more agile, lower costs, and innovate faster.
#AWS #AmazonWebServices #CloudComputing #awsorganizations
