Sign In to the Console
AWS GovCloud (US) User Guide
AWS GovCloud (US) User Guide

AWS Documentation » AWS GovCloud (US) » AWS GovCloud (US) User Guide » Services in AWS GovCloud (US) Regions » AWS CloudFormation
The AWS Documentation website is getting a new look!
Try it now and let us know what you think. Switch to the new look >>

You can return to the original look by selecting English in the language selector above.

AWS CloudFormation

AWS CloudFormation enables you to create and provision AWS infrastructure deployments predictably and repeatedly. It helps you leverage AWS products such as Amazon EC2, Amazon Elastic Block Store, Amazon SNS, Elastic Load Balancing, and Auto Scaling to build highly reliable, highly scalable, cost-effective applications in the cloud without worrying about creating and configuring the underlying AWS infrastructure. AWS CloudFormation enables you to use a template file to create and delete a collection of resources together as a single unit (a stack).

For more information about AWS CloudFormation, see the AWS CloudFormation documentation.

ITAR Boundary

AWS GovCloud (US) has an ITAR boundary, which defines where customers are allowed to store ITAR-controlled data for this service in AWS GovCloud (US) Regions. To maintain ITAR compliance, you must place ITAR-controlled data on the applicable part of the ITAR boundary. If you do not have any ITAR-controlled data in AWS GovCloud (US) Regions, this section does not apply to you. The following information identifies the ITAR boundary for this service:

ITAR-Regulated Data Permitted

ITAR-Regulated Data Not Permitted

  • The user data section of AWS CloudFormation templates can refer to scripts containing ITAR-regulated. The scripts containing ITAR-regulated data must be stored in an AWS GovCloud (US) Amazon S3 bucket.

  • ITAR-regulated data may be stored and processed on the instances launched using AWS CloudFormation.

  • No ITAR-regulated data may be entered, stored, or processed by AWS CloudFormation. For example, AWS CloudFormation metadata is not permitted to contain ITAR-regulated data. This metadata includes all the configuration data that you enter when creating and maintaining your AWS CloudFormation templates.

On this page: