AWS IoT Device Defender endpoints and quotas - AWS General Reference

AWS IoT Device Defender endpoints and quotas

The following are the service endpoints and service quotas for this service. To connect programmatically to an AWS service, you use an endpoint. In addition to the standard AWS endpoints, some AWS services offer FIPS endpoints in selected Regions. For more information, see AWS service endpoints. Service quotas, also referred to as limits, are the maximum number of service resources or operations for your AWS account. For more information, see AWS service quotas.

Service Endpoints

Region Name Region Endpoint Protocol
US East (Ohio) us-east-2 HTTPS
US East (N. Virginia) us-east-1 HTTPS
US West (N. California) us-west-1 HTTPS
US West (Oregon) us-west-2 HTTPS
Asia Pacific (Hong Kong) ap-east-1 HTTPS
Asia Pacific (Mumbai) ap-south-1 HTTPS
Asia Pacific (Seoul) ap-northeast-2 HTTPS
Asia Pacific (Singapore) ap-southeast-1 HTTPS
Asia Pacific (Sydney) ap-southeast-2 HTTPS
Asia Pacific (Tokyo) ap-northeast-1 HTTPS
Canada (Central) ca-central-1 HTTPS
China (Beijing) cn-north-1 HTTPS
China (Ningxia) cn-northwest-1 HTTPS
Europe (Frankfurt) eu-central-1 HTTPS
Europe (Ireland) eu-west-1 HTTPS
Europe (London) eu-west-2 HTTPS
Europe (Paris) eu-west-3 HTTPS
Europe (Stockholm) eu-north-1 HTTPS
Middle East (Bahrain) me-south-1 HTTPS
AWS GovCloud (US-East) us-gov-east-1 HTTPS
AWS GovCloud (US) us-gov-west-1 HTTPS

Service Quotas

Resource Quota Adjustable
Number of scheduled audits 5 maximum No
Number of simultaneous in progress on-demand audits 10 maximum No
Time that audit findings are stored after being reported 90 days maximum No

The following service quotas apply to mitigation actions and audit mitigation action tasks:

Audit Mitigation Actions
Resource Quota
Number of audit mitigation action tasks running at the same time 10 tasks maximum
Number of mitigation actions in an AWS account 100 actions maximum
Retention period for audit mitigation action tasks 90 days
Resource Quota Decription Adjustable
Behaviors per security profile 100 maximum No
Device Defender Detect violations 30 days maximum Violations are stored for 30 days after they have been generated. No
Device metric reporting Throttled to 1 value per metric per device per 5 minutes A device can report a value for every metric for every device at most once every 5 minutes. Yes
Number of device-side metric reports that can be sent from all devices in an account 3500 per second maximum Yes
Number of value elements (counts, IP addresses, ports) per security profile 1000 maximum No
Security profiles per target (thing group or user account) 5 maximum No
Dimensions per account 10 maximum