Enabling Opt-In Regions
Instructions for Enabling AWS Commercial Opt-In Regions
InsightCloudSec includes support for several AWS Commercial regions with the "opt-in" classification. Currently those are: Bahrain me-south-1, Hong Kong ap-east-1, Cape Town af-south-1, and Milan eu-south-1. Each of these regions are AWS “opt-in” regions and require additional configuration to be enabled.
The screenshot below provides an example of how to enable the region in the AWS console.
Enabling Opt-In Regions
Once enabled, you will also need to update the STS token compatibility to allow InsightCloudSec to communicate with these regions.
Session Tokens
These tokens need to be enabled in the AWS account where your InsightCloudSec instance is deployed.
Without these changes, InsightCloudSec will be unable to retrieve information from these regions even if they are enabled.
For customers who prefer to keep these regions disabled, there are no changes required. Contact us through the Customer Support Portal.
To do this, visit the AWS console here and modify the Global Endpoint option to allow larger session tokens to the global endpoint (https://sts.amazonaws.com).
Modifying Global Endpoints
Opt-In Region Changes
A full list of AWS Regions can be found here.
Updated 8 months ago