AWS GovCloud (US) User Guide
AWS GovCloud (US) User Guide

The AWS Documentation website is getting a new look!
Try it now and let us know what you think. Switch to the new look >>

You can return to the original look by selecting English in the language selector above.

AWS Systems Manager

Use AWS Systems Manager to organize, monitor, and automate management tasks on your AWS resources.

The following list details the differences for using this service in AWS GovCloud (US) Regions compared to other AWS Regions:

  • AWS Systems Manager OpsCenter is not supported.

  • Support for viewing association histories is not available in AWS GovCloud (US) Regions.

  • The following AWS Systems Manager Automation actions for invoking APIs from other AWS services are not supported:

    • aws:executeAwsApi

    • aws:waitForAwsResourceProperty

    • aws:assertAwsResourceProperty

For more information about AWS Systems Manager, see the AWS Systems Manager documentation.

ITAR Boundary

AWS GovCloud (US) has an ITAR boundary, which defines where customers are allowed to store ITAR-controlled data for this service in AWS GovCloud (US) Regions. To maintain ITAR compliance, you must place ITAR-controlled data on the applicable part of the ITAR boundary. If you do not have any ITAR-controlled data in AWS GovCloud (US) Regions, this section does not apply to you. The following information identifies the ITAR boundary for this service:

ITAR-Regulated Data Permitted ITAR-Regulated Data Not Permitted
All AWS Systems Manager Document content and Parameter Store values can contain ITAR-regulated data.

The following AWS Systems Manager metadata fields are not permitted to contain ITAR-regulated data:

  • Document names

  • Parameter Store parameter names

  • Patch group names (that is, the value of the Patch Group tag)

On this page: