AWS launched the new ap-southeast-4 region on 23 January, 2023. Stax has prerequisites that must be met in order to fully support regions, including requiring that critical security services are made available, so only has limited support for this new region initially.
Please refer to the Supported Regions documentation to familiarize yourself with Stax's compatibility with all regions.
On 5 February 2023 at 0030 UTC (Sunday, 5 February 1130 AEDT), Stax will introduce resource locking for all account operations. Instead of allowing multiple simultaneous operations on a single account and potentially causing conflict, Stax will return a 409 Conflictresponse. Read more
Fetch Account Types API currently returns the account type details including any accounts (with any status) associated with the account type.
The API response will now exclude any closed accounts and will be live in stax-au1, stax-us1 and stax-eu1 on Wednesday 1st February at 0200 UTC (Tuesday 2nd February at 1300 AEST).
If you have any concerns about the change, please raise a support case.
On December 20, 2022 a new OperationStatus, CREATED, was added to the Tasks API and announced on the changelog.
Due to unanticipated compatibility challenges, this change has now been reverted. While the change may be reintroduced in future, any release will be accompanied by a reasonable notice period to help customers to prepare for the change.
The following OperationStatus values have also been removed to simplify usage, as they are not currently available through the API:
COMPLETED_WITH_WARNING
ABORTED
TIMED_OUT
Review the developer documentation for up-to-date details of the Stax API.
A fix has been released to Rule CIS 1.12 - Ensure access keys are rotated every 90/45 days or less to remediate an issue resulting in access keys being incorrectly evaluated as failing. This issue only affected the evaluation of credentials for IAM user with multiple access keys.
If you have any questions, please raise a support case.
The Accounts page in the Stax console now allows you to search for all accounts across your Stax tenancy. In addition to this change, performance improvements have been made to decrease page load time on the Accounts page. See the documentation on how to view accounts in the console.
SCIM is now supported for organizations using Azure AD. See the step-by-step instructions on how to configure your Azure AD instance to sync users and groups into Stax.
As announced in October, from today, only 3 years of cost and usage data will be available in the Cost module. Read More.
An update has been released for Rule *CIS 5.1 - Ensure no Network ACLs allow ingress from 0.0.0.0/0 to remote server administration ports.*This rule will now flag a Network ACL (NACL) as failing when any of the following conditions are met:
There is a NACL rule allowing TCP traffic on SSH (port 22) to all hosts (0.0.0.0/0)
There is a NACL rule allowing TCP traffic on RDP (port 3389) to all hosts (0.0.0.0/0)
There is a NACL rule allowing all traffic on all ports to all hosts (Note: This will often be the case as this is also the default settings.)
Before the update, this rule evaluated that a NACL rule allowed TCP traffic on both an SSH and RDS port to all hosts. This change will impact customers with CIS Benchmark version 1.3.0 or 1.4.0 Rule Bundle enabled. Customers should expect a change in the compliance score of this rule.
As part of the improvements to the creation and scheduling of tasks with the Tasks API, a new OperationStatusof CREATEDhas been added to the API. Read more.