Amazon GuardDuty endpoints and quotas
The following are the service endpoints and service quotas for this service. To connect programmatically to an AWS service, you use an endpoint. In addition to the standard AWS endpoints, some AWS services offer FIPS endpoints in selected Regions. For more information, see AWS service endpoints. Service quotas, also referred to as limits, are the maximum number of service resources or operations for your AWS account. For more information, see AWS service quotas.
Note
AWS recommends using Regional STS endpoints within your applications and avoid using the global (legacy) STS endpoint. Regional STS endpoints reduce latency, build in redundancy, and increase session token validity. For more information about configuring your applications to use the regional STS endpoint, see AWS STS Regionalized endpoints in the AWS SDKs and Tools Reference Guide. For more information about the global (legacy) AWS STS endpoint, including how to monitor for use of this endpoint, see How to use Regional AWS STS endpoints in the AWS Security blog.
Service endpoints
Region Name | Region | Endpoint | Protocol |
---|---|---|---|
US East (Ohio) | us-east-2 |
guardduty.us-east-2.amazonaws.com guardduty-fips.us-east-2.amazonaws.com |
HTTPS HTTPS |
US East (N. Virginia) | us-east-1 |
guardduty.us-east-1.amazonaws.com guardduty-fips.us-east-1.amazonaws.com |
HTTPS HTTPS |
US West (N. California) | us-west-1 |
guardduty.us-west-1.amazonaws.com guardduty-fips.us-west-1.amazonaws.com |
HTTPS HTTPS |
US West (Oregon) | us-west-2 |
guardduty.us-west-2.amazonaws.com guardduty-fips.us-west-2.amazonaws.com |
HTTPS HTTPS |
Africa (Cape Town) | af-south-1 | guardduty.af-south-1.amazonaws.com | HTTPS |
Asia Pacific (Hong Kong) | ap-east-1 | guardduty.ap-east-1.amazonaws.com | HTTPS |
Asia Pacific (Hyderabad) | ap-south-2 | guardduty.ap-south-2.amazonaws.com | HTTPS |
Asia Pacific (Jakarta) | ap-southeast-3 | guardduty.ap-southeast-3.amazonaws.com | HTTPS |
Asia Pacific (Melbourne) | ap-southeast-4 | guardduty.ap-southeast-4.amazonaws.com | HTTPS |
Asia Pacific (Mumbai) | ap-south-1 | guardduty.ap-south-1.amazonaws.com | HTTPS |
Asia Pacific (Osaka) | ap-northeast-3 | guardduty.ap-northeast-3.amazonaws.com | HTTPS |
Asia Pacific (Seoul) | ap-northeast-2 | guardduty.ap-northeast-2.amazonaws.com | HTTPS |
Asia Pacific (Singapore) | ap-southeast-1 | guardduty.ap-southeast-1.amazonaws.com | HTTPS |
Asia Pacific (Sydney) | ap-southeast-2 | guardduty.ap-southeast-2.amazonaws.com | HTTPS |
Asia Pacific (Tokyo) | ap-northeast-1 | guardduty.ap-northeast-1.amazonaws.com | HTTPS |
Canada (Central) | ca-central-1 | guardduty.ca-central-1.amazonaws.com | HTTPS |
Canada West (Calgary) | ca-west-1 | guardduty.ca-west-1.amazonaws.com | HTTPS |
Europe (Frankfurt) | eu-central-1 | guardduty.eu-central-1.amazonaws.com | HTTPS |
Europe (Ireland) | eu-west-1 | guardduty.eu-west-1.amazonaws.com | HTTPS |
Europe (London) | eu-west-2 | guardduty.eu-west-2.amazonaws.com | HTTPS |
Europe (Milan) | eu-south-1 | guardduty.eu-south-1.amazonaws.com | HTTPS |
Europe (Paris) | eu-west-3 | guardduty.eu-west-3.amazonaws.com | HTTPS |
Europe (Spain) | eu-south-2 | guardduty.eu-south-2.amazonaws.com | HTTPS |
Europe (Stockholm) | eu-north-1 | guardduty.eu-north-1.amazonaws.com | HTTPS |
Europe (Zurich) | eu-central-2 | guardduty.eu-central-2.amazonaws.com | HTTPS |
Israel (Tel Aviv) | il-central-1 | guardduty.il-central-1.amazonaws.com | HTTPS |
Middle East (Bahrain) | me-south-1 | guardduty.me-south-1.amazonaws.com | HTTPS |
Middle East (UAE) | me-central-1 | guardduty.me-central-1.amazonaws.com | HTTPS |
South America (São Paulo) | sa-east-1 | guardduty.sa-east-1.amazonaws.com | HTTPS |
AWS GovCloud (US-East) | us-gov-east-1 | guardduty.us-gov-east-1.amazonaws.com | HTTPS |
AWS GovCloud (US-West) | us-gov-west-1 | guardduty.us-gov-west-1.amazonaws.com | HTTPS |
Service quotas
Name | Default | Adjustable | Description |
---|---|---|---|
Detectors | Each supported Region: 1 | No | The maximum number of detector resources that you can create per AWS account per region. |
Filters | Each supported Region: 100 | No | The maximum number of saved filters per AWS account per region. |
Finding retention period | Each supported Region: 90 | No | The maximum number of days a finding is retained. After 90 days findings are deleted. |
Member accounts by invitation | Each supported Region: 5,000 | No | The maximum number of member accounts that can be associated with a GuardDuty administrator account by invitation. |
Member accounts through AWS Organizations | Each supported Region: 50,000 | No | Your current AWS Organizations member account quota shows the default maximum number of member accounts that you can associate with an administrator through AWS Organizations, including members added by invitation. The number of GuardDuty member accounts added through AWS Organizations cant exceed the total member accounts in your organization. |
Threat intel sets | Each supported Region: 6 | No | The maximum number of Threat intel sets that you can add per AWS account per region. |
Trusted IP sets | Each supported Region: 1 | No | The maximum number of Trusted IP sets that you can add per AWS account per region. |