Posted On: Jan 30, 2023

AWS Snow Family now supports Instance Metadata Service Version 2 (IMDSv2) for Amazon EC2 instances on AWS Snowcone and AWS Snowball Edge devices. You can use AWS Snow Family devices to run storage, compute, and data-processing operations in locations with denied, disrupted, intermittent, and limited connectivity. IMDSv2 is an enhancement to instance metadata access that requires session-oriented requests to add defense-in-depth against unauthorized metadata access. IMDSv2 requires a PUT request to initiate a session to the instance metadata service and retrieve a token.

With IMDSv2 for AWS Snow Family, you can securely configure and manage the running instance, and access the user specified data while launching your Amazon EC2 instance on Snow. You can also use instance metadata to build generic Amazon Machine Images (AMIs) that can be modified by configuration files supplied at launch time. IMDSv2 provides increased service security through session authentication, offering protection against several vulnerabilities. To get started, configure the instance metadata options while launching the EC2 instance on Snow or while registering your AMI.

Support for IMDSv2 for Amazon EC2 instance on AWS Snow Family is available in the following AWS Regions: US East (N. Virginia), US East (Ohio), US West (N. California), US West (Oregon), Canada (Central), South America (Sao Paulo), Europe (Stockholm), Europe (Ireland), Europe (Milan), Europe (Frankfurt), Europe (Paris), Europe (London), Europe (Paris), Africa (Cape Town), Asia Pacific (Sydney), Asia Pacific (Seoul), Asia Pacific (Osaka), Asia Pacific (Tokyo), Asia Pacific (Hong Kong), Asia Pacific (Singapore), Asia Pacific (Mumbai), and the AWS GovCloud (US) Regions, at no additional cost. To learn more, see AWS Snow Family documentation.