snebhu3
commented
1 week ago @silvaalbert thank you for reaching out. I will create an internal backlog to address this.
Open silvaalbert opened 2 months ago
snebhu3
commented
1 week ago @silvaalbert thank you for reaching out. I will create an internal backlog to address this.
Expected behavior AFT makes calls to AWS Organizations. There are Interface Endpoints for other services, but not for AWS Organizations.
Additional context AWS Organizations can be tricky, as endpoints can only be created in
us-east-1, but AFT can be deployed elsewhere. I suggest the endpoint be added to the solution, with a condition that only deploys if the region isus-east-1.Furthermore, this behavior should be called out in the documentation, given that deployments in other regions will be sending this traffic through public IP address space, regardless of whether VPC endpoints are enabled for the solution.