Closed williamhargrove closed 1 year ago
Make it configurable like EKS ControlPlane
Hello Everyone,
Today (2/16/22) Amazon Managed Grafana launch supports for network access control that helps you to restrict network access to your Grafana workspaces!
Check out the What's New post, blog, or user guide on how to use VPC endpoints and customer-managed prefix lists to protect your Grafana workspace from network attacks.
You can also create an interface VPC endpoints to allow AWS resources such as Amazon EC2 instances to access the Amazon Managed Grafana API to manage resources, or you can use a VPC endpoint as part of limiting network access to your Amazon Managed Grafana workspaces.
@mengdic thanks for Update - we using AWS SSO for authentication If we update now to VPC Endpoint Network Protection - how we can update the automatic created AWS SSO Configuration for new VPC Endpoint ?
Once an AMG workspace is provisioned the URL is open globally. I would like the ability to restrict access to this publically visable endpoint to a set of CIDR ranges/addresses, similar to the functionality offered by EC2 Security Groups.