Turbot v3.57.0 Commercial & Gov Cloud Release

Summary

Added guardrails for AWS > VPC Transit Gateways attachments. Added AWS > ElastiCache > Cluster approved guardrails. Other fixes & improvements.

Version
3.57.0

Release Date
2019-08-26

Notes

AWS Services

  • Added: AWS > Billing > Enabled and Rights so that IAM permissions for billing can be granted.
  • Added: AWS > EKS > Cluster API Server Endpoint Access to be able to manage public / private endpoint access configuration for EKS clusters.
  • Added: AWS > EKS > Cluster Control Plane Logging guardrail to manage the logging configuration for EKS clusters.
  • Added: AWS > ElastiCache > Cluster Approved guardrail.
  • Added: AWS > IAM > Role tagging guardrail.
  • Added: AWS > IAM > User tagging guardrail.
  • Added: AWS > VPC > TGW guardrails for configuring and accepting transit gateway attachments.
  • Added: AWS Gov Cloud Support for: Athena, CloudWatch, CodeBuild, CodeCommit, Directory Services, Glue, Health, IoT, MediaConvert, Route53, SageMaker, Secrets Manager, Serverless Application Repository, Service Catalog, Transcribe, Trusted Advisor, WAF, and WorkSpaces.
  • Fixed: Zero values for AWS > Resource Discovery Throttle Rules for service or service and region combinations should be used instead of ignored.
  • Updated: Replaced outdated AWS > Budgets IAM permissions with the latest permissions, including those included for Cost and Usage Report.
  • Updated: Default AWS > IAM permissions with the latest Cost Explorer permissions.

Policy Changes

  • Added: AWS > Billing > Enabled
  • Added: AWS > Billing > Rights
  • Added: AWS > EKS > Cluster API Server Endpoint Access
  • Added: AWS > EKS > Cluster Control Plane Logging
  • Added: AWS > EKS > Cluster Control Plane Logging Type
  • Added: AWS > ElastiCache > Approved Regions
  • Added: AWS > ElastiCache > Cluster Approved Regions
  • Added: AWS > ElastiCache > Cluster Regions
  • Added: AWS > ElastiCache > Cluster Approved Usage
  • Added: AWS > ElastiCache > Cluster Approved Engine Type
  • Added: AWS > ElastiCache > Cluster Approved Encryption At Rest
  • Added: AWS > ElastiCache > Cluster Approved Encryption In Transit
  • Added: AWS > ElastiCache > Cluster Approved
  • Added: AWS > IAM > Tags Template
  • Added: AWS > IAM > Role Tags
  • Added: AWS > IAM > Role Tags Template
  • Added: AWS > IAM > User Tags
  • Added: AWS > IAM > User Tags Template
  • Added: AWS > VPC > TGW Attachment Gateway ID
  • Added: AWS > VPC > TGW Attachment DNS Support
  • Added: AWS > VPC > TGW Attachment IPv6 Support
  • Added: AWS > VPC > TGW Attachment Configuration
  • Added: AWS > VPC > TGW Attachment CIDR Ranges
  • Added: AWS > VPC > TGW Attachment Routed Subnet Types
  • Added: AWS > VPC > TGW Attachment Attached Subnet Types
  • Added: AWS > VPC > Transit Gateway Regions
  • Added: AWS > VPC > TGW Attachment Acceptance
  • Added: AWS > VPC > TGW Attachment Acceptance Trusted Accounts

Other fixes & improvements

  • Fixed: Getting values for Turbot > Internal > AWS Cache Expiration should not raise an error if the TurbotOptions table does not exist yet.
  • Updated: npm dependencies: aws-sdk, config, debug, fast-csv, fs-extra, helmet, ioredis, ip-address, mssql, passport-google-oauth20, passport-saml, pg, semver, tar-fs, through2, totp-generator, uuid, and yargs.
  • Updated: Disable snapd service on the Turbot AMI.
Was this article helpful?
0 out of 0 found this helpful