- Newest
- Most votes
- Most comments
You are correct in your understanding. While AWS GovCloud is designed to meet higher compliance requirements, including FIPS, it does not automatically mean that all endpoints in GovCloud are FIPS-validated by default.
To use FIPS-validated endpoints, you still need to explicitly specify them when using the AWS CLI or SDK. This means you will need to update your code or use environment variables, as you mentioned, to point to the specific FIPS endpoints for the services you're using.
For example, if you're using Amazon S3 in the GovCloud region, you would need to use a FIPS-validated endpoint like this:
s3-fips.us-gov-west-1.amazonaws.com
To find the FIPS-validated endpoints for various AWS services, refer to the official AWS FIPS endpoint list, which can be found here: https://aws.amazon.com/compliance/fips-endpoints/
Remember to verify the FIPS-validated endpoints for the specific services and regions you're working with, as they may differ.
Relevant content
- asked 2 years ago
- Accepted Answerasked a year ago
- AWS OFFICIALUpdated 6 months ago
- AWS OFFICIALUpdated 5 months ago
- AWS OFFICIALUpdated 6 months ago
- AWS OFFICIALUpdated a year ago
The link posted here is showing a 404 message.