Posted On: May 14, 2024
Amazon Elastic Block Store (EBS) direct APIs now support Virtual Private Cloud (VPC) endpoint policies in all AWS Regions. This newly supported capability provides a granular access control to your EBS resources for improved data protection and security posture. Previously, customers have full access to EBS direct APIs through an interface VPC endpoint, powered by AWS PrivateLink. With this newly supported capability, customers can attach a VPC endpoint policy to an interface VPC endpoint and manage which EBS direct APIs actions (GetSnapshotBlock, ListSnapshotBlocks, ListChangedBlocks, PutSnapshotBlock) may be performed, the principal that may perform the actions, and the resources on which the actions may be performed.
VPC endpoint policy support is available in all AWS Regions where EBS direct APIs are available. To learn more, visit our documentation.