Aug 26 - Sep 1 Updates

Last Week Cloud Platform Updates

September 02, 2024

Aug 26 - Sep 1 | AWS, Azure & GCP Updates

AWS has launched the AWS Parallel Computing Service (AWS PCS), a new managed service designed to run and scale high-performance computing (HPC) workloads on AWS. AWS PCS allows you to build complete HPC clusters that integrate compute, storage, networking, and visualization resources, scaling seamlessly from zero to thousands of instances. It supports HPC job schedulers, starting with a fully managed Slurm scheduler, offering built-in technical support and extensive customization options to tailor your HPC environment and integrate it with your preferred software stack.

AWS has introduced a streamlined Federated and SSO sign-in process for the AWS Console Mobile App. Users can now easily select their sign-in URL from a list of recently used URLs when setting up a new identity to access an account. The app supports device password managers and biometric authentication, ensuring quick, secure, and convenient access to AWS resources while on the go.

AWS Control Tower now supports registering Organizational Units (OUs) with up to 1,000 accounts, up from the previous limit of 300. This expansion enables you to implement governance best practices and standardize configurations across a larger number of accounts within your OUs. When an OU is registered or the AWS Control Tower baseline is enabled, member accounts automatically receive configurations, controls, and baseline resources, such as AWS IAM roles, AWS CloudTrail, AWS Config, and AWS Identity Center. The update allows for more flexibility in maintaining existing OU structures and enhances scalability and performance during the registration process.

AWS WAF now allows for lower rate limit thresholds on rate-based rules, supporting limits as low as 10 requests per evaluation window, down from the previous minimum of 100. This enhancement provides more granular control, enabling customers to better detect and respond to traffic spikes or malicious activity targeting sensitive applications and APIs, facilitating quicker mitigation of unexpected usage increases.

Amazon Redshift Serverless now supports AWS PrivateLink, allowing you to connect directly to Amazon Redshift Serverless and its API services within your VPC, without needing to go over the internet. This enhances security and simplifies the network architecture by enabling private, direct connections to your Redshift Serverless resources.

Enable API analysis in Azure API Center effortlessly, without the need for manual management. This process generates both individual and summary reports, offering clear insights and maintaining high standards across your APIs. Experience seamless integration and enhanced API quality with Azure API Center.

As Azure API Management stv1 compute platform runs on Cloud Services (classic), we announced that they would retire on the same date. Now that we have passed that date, decommissioning of the stv1 hardware has begun, and this may affect the availability and performance of your instances hosted on the stv1.

On January 31, 2025, we will retire Azure HDInsight on AKS. The remaining clusters on your subscription will be stopped and removed from the host. To avoid service disruptions, migrate your workloads from Azure HDInsight on AKS to Microsoft Fabric or an equivalent Azure product by January 31, 2025.

Experience the highest Redis performance on Azure using the E200 and E400 cache instances of Azure Cache for Redis. These options give you hundreds of gigabytes of memory and up to 240 vCPUs of compute power for your largest and most demanding Redis workloads.

On October 31 2024, Azure Resource Manager will be retiring support for TLS 1.0 and TLS 1.1. After that date, any incoming calls to Azure using TLS 1.0/1.1 will fail. To avoid any service disruptions, update to TLS 1.2 and remove any dependencies on TLS 1.0/1.1 by October 31, 2024.

  • GKE Metrics Server Update: Starting from version 1.30.3-gke.1451000, new and upgraded GKE clusters now support updates to the GKE Metrics Server where the addon-resizer runs in the cluster's control plane instead of on worker nodes.

  • Security Vulnerabilities: Two vulnerabilities, CVE-2024-36978 and CVE-2024-41009, have been identified in the Linux kernel that may lead to privilege escalation on Container-Optimized OS and Ubuntu nodes. For more information, see the GCP-2024-049 and GCP-2024-048 security bulletins.

  • Incremental Transfers for Teradata Migrations: The BigQuery Data Transfer Service now supports incremental data transfers from Teradata data warehouses to BigQuery, a feature now generally available (GA).

  • Delta Lake BigLake Tables: Delta Lake BigLake tables are now generally available (GA). Delta Lake is an open-source, tabular data storage format that supports petabyte-scale data tables, enhancing data management and analytics capabilities.

Cloud Run now allows you to configure traffic routing between Cloud Run, Google Kubernetes Engine, and Google Compute Engine services using Cloud Service Mesh service routing APIs. Additionally, Cloud Run automatically authenticates calls to destination services using service account credentials, a feature currently in Preview.