AWS GovCloud (US) User Guide
AWS GovCloud (US) User Guide

Endpoints for the AWS GovCloud (US) Regions

If you access AWS GovCloud (US-West) or AWS GovCloud (US-East) by using the command line interface (CLI) or programmatically by using the APIs, you need the AWS GovCloud (US-West) or AWS GovCloud (US-East) region endpoints. AWS GovCloud (US-West) and AWS GovCloud (US-East) uses FIPS 140-2 validated cryptographic modules to support compliance with FIPS 140-2 in all our HTTPS endpoints unless otherwise noted. For more information about FIPS 140-2, see "Cryptographic Module Validation Program" on the NIST Computer Security Resource Center website.

When using the endpoints, note the following:

  • Amazon S3 has the following website endpoint:

    Website Endpoint Route 53 Hosted Zone ID

    s3-website-us-gov-west-1.amazonaws.com

    Z31GFT0UA1I2HV

For a list of all AWS endpoints, see Regions and Endpoints in the AWS General Reference.

Endpoints for the AWS GovCloud (US) Regions

The following table lists each AWS service available in the AWS GovCloud (US) Regions and the corresponding endpoints.

AWS Service AWS GovCloud (US-West) Endpoints (FIPS, Non-FIPS) AWS GovCloud (US-East) Endpoints (FIPS, Non-FIPS) Protocol
Amazon API Gateway*

FIPS: apigateway-fips.us-gov-west-1.amazonaws.com

Non-FIPS: apigateway.us-gov-west-1.amazonaws.com

FIPS: apigateway-fips.us-gov-east-1.amazonaws.com

Non-FIPS: apigateway.us-gov-east-1.amazonaws.com

HTTPS
Amazon Athena

FIPS: athena-fips.us-gov-west-1.amazonaws.com

Non-FIPS: athena.us-gov-west-1.amazonaws.com

FIPS: athena-fips.us-gov-east-1.amazonaws.com

Non-FIPS: athena.us-gov-east-1.amazonaws.com

HTTPS
Amazon Aurora

FIPS: rds.us-gov-west-1.amazonaws.com

Non-FIPS: Not applicable

FIPS: rds.us-gov-east-1.amazonaws.com

Non-FIPS: Not applicable

HTTPS
AWS Auto Scaling*

FIPS: autoscaling.us-gov-west-1.amazonaws.com

Non-FIPS: Not applicable

FIPS: autoscaling.us-gov-east-1.amazonaws.com

Non-FIPS: Not applicable

HTTP and HTTPS
Amazon EC2 Auto Scaling

FIPS: autoscaling.us-gov-west-1.amazonaws.com

Non-FIPS: Not applicable

FIPS: autoscaling.us-gov-east-1.amazonaws.com

Non-FIPS: Not applicable

HTTP and HTTPS
AWS Certificate Manager

FIPS: Not applicable

Non-FIPS: acm.us-gov-west-1.amazonaws.com

FIPS: Not applicable

Non-FIPS: acm.us-gov-east-1.amazonaws.com

HTTPS
AWS Certificate Manager Private Certificate Authority

FIPS: acm-pca.us-gov-west-1.amazonaws.com

Non-FIPS:Not Applicable

FIPS: acm-pca.us-gov-east-1.amazonaws.com

Non-FIPS: Not Applicable

HTTPS
Amazon Cloud Directory

FIPS: clouddirectory.us-gov-west-1.amazonaws.com

Non-FIPS: Not applicable

Not applicable

HTTPS
AWS CloudFormation

FIPS: cloudformation.us-gov-west-1.amazonaws.com

Non-FIPS: Not applicable

FIPS: cloudformation.us-gov-east-1.amazonaws.com

Non-FIPS: Not applicable

HTTPS
AWS CloudHSM

FIPS: cloudhsmv2.us-gov-west-1.amazonaws.com

Non-FIPS: Not applicable

FIPS: cloudhsmv2.us-gov-east-1.amazonaws.com

Non-FIPS: Not applicable

HTTPS
AWS CloudHSM Classic

FIPS: cloudhsm.us-gov-west-1.amazonaws.com

Non-FIPS: Not applicable

Not applicable

HTTPS
AWS CloudTrail

FIPS: cloudtrail.us-gov-west-1.amazonaws.com

Non-FIPS: Not applicable

FIPS: cloudtrail.us-gov-east-1.amazonaws.com

Non-FIPS: Not applicable

HTTPS
Amazon CloudWatch

FIPS: monitoring.us-gov-west-1.amazonaws.com

Non-FIPS: Not applicable

FIPS: monitoring.us-gov-east-1.amazonaws.com

Non-FIPS: Not applicable

HTTPS

Amazon CloudWatch Events

FIPS: events.us-gov-west-1.amazonaws.com

Non-FIPS: Not applicable

FIPS: events.us-gov-east-1.amazonaws.com

Non-FIPS: Not applicable

HTTPS

Amazon CloudWatch Logs

FIPS: logs.us-gov-west-1.amazonaws.com

Non-FIPS: Not applicable

FIPS: logs.us-gov-east-1.amazonaws.com

Non-FIPS: Not applicable

HTTPS

AWS CodeBuild

FIPS: codebuild-fips.us-gov-west-1.amazonaws.com

Non-FIPS: codebuild.us-gov-west-1.amazonaws.com

FIPS: codebuild-fips.us-gov-east-1.amazonaws.com

Non-FIPS: codebuild.us-gov-east-1.amazonaws.com

HTTPS
AWS CodeCommit

FIPS: codecommit-fips.us-gov-west-1.amazonaws.com

FIPS: git-codecommit-fips.us-gov-west-1.amazonaws.com

Non-FIPS: codecommit.us-gov-west-1.amazonaws.com

FIPS: codecommit-fips.us-gov-east-1.amazonaws.com

FIPS: codecommit.us-gov-east-1.amazonaws.com

Non-FIPS: codecommit.us-gov-east-1.amazonaws.com

HTTPS
AWS CodeDeploy

FIPS: codedeploy-fips.us-gov-west-1.amazonaws.com

Non-FIPS: codedeploy.us-gov-west-1.amazonaws.com

FIPS: codedeploy-fips.us-gov-east-1.amazonaws.com

Non-FIPS: codedeploy.us-gov-east-1.amazonaws.com

HTTPS

Amazon Comprehend

FIPS: comprehend-fips.us-gov-west-1.amazonaws.com

Non-FIPS: comprehend.us-gov-west-1.amazonaws.com

Not applicable

HTTPS

AWS Config

FIPS: config.us-gov-west-1.amazonaws.com

Non-FIPS: Not applicable

FIPS: config.us-gov-east-1.amazonaws.com

Non-FIPS: Not applicable

HTTPS

AWS Config Rules

FIPS: config.us-gov-west-1.amazonaws.com

Non-FIPS: Not applicable

FIPS: config.us-gov-east-1.amazonaws.com

Non-FIPS: Not applicable

HTTPS

Amazon Comprehend

FIPS: comprehend-fips.us-gov-west-1.amazonaws.com

Non-FIPS: comprehend.us-gov-west-1.amazonaws.com

FIPS: Not applicable

Non-FIPS: Not applicable

HTTPS
AWS DataSync

FIPS: Not applicable

Non-FIPS: datasync.us-gov-west-1.amazonaws.com

FIPS: Not applicable

Non-FIPS: Not applicable

HTTPS
AWS Database Migration Service (DMS)

FIPS: dms.us-gov-west-1.amazonaws.com

Non-FIPS: Not applicable

FIPS: dms.us-gov-east-1.amazonaws.com

Non-FIPS: Not applicable

HTTPS
AWS Direct Connect

FIPS: Not applicable

Non-FIPS: directconnect.us-gov-west-1.amazonaws.com

FIPS: Not applicable

Non-FIPS: directconnect.us-gov-east-1.amazonaws.com

HTTPS
AWS Directory Service

FIPS: ds-fips.us-gov-west-1.amazonaws.com

Non-FIPS: Not applicable

FIPS: ds-fips.us-gov-east-1.amazonaws.com

Non-FIPS: Not applicable

HTTPS
Amazon DynamoDB

FIPS: dynamodb.us-gov-west-1.amazonaws.com

Non-FIPS: Not applicable

FIPS: dynamodb.us-gov-east-1.amazonaws.com

Non-FIPS: Not applicable

HTTP and HTTPS
Amazon DynamoDB Streams

FIPS: ds-fips.us-gov-west-1.amazonaws.com

Non-FIPS: ds.us-gov-west-1.

FIPS: ds-fips.us-gov-east-1..amazonaws.com

Non-FIPS: ds.us-gov-east-1.

HTTP and HTTPS
AWS Elastic Beanstalk

FIPS: elasticbeanstalk-fips.us-west-1.amazonaws.com

FIPS: elasticbeanstalk-fips.us-west-2.amazonaws.com

Non-FIPS: Not applicable

FIPS: elasticbeanstalk-fips.us-east-1.amazonaws.com

FIPS: elasticbeanstalk-fips.us-east-2.amazonaws.com

Non-FIPS: Not applicable

HTTPS
Amazon Elastic Block Store (Amazon EBS)

FIPS: ec2.us-gov-west-1.amazonaws.com

Non-FIPS: Not applicable

FIPS: ec2.us-gov-east-1.amazonaws.com

Non-FIPS: Not applicable

HTTPS
Amazon Elastic Compute Cloud (Amazon EC2)

FIPS: ec2.us-gov-west-1.amazonaws.com

Non-FIPS: Not applicable

FIPS: ec2.us-gov-east-1.amazonaws.com

Non-FIPS: Not applicable

HTTPS
Amazon Elastic Container Registry (Amazon ECR)

FIPS: ecr-fips.us-gov-west-1.amazonaws.com

Non-FIPS: ecr.us-gov-west-1.amazonaws.com

FIPS: ecr-fips.us-gov-east-1.amazonaws.com

Non-FIPS: ecr.us-gov-east-1.amazonaws.com

HTTPS
Amazon Elastic Container Service (Amazon ECS)

FIPS: ecs-fips.us-gov-west-1.amazonaws.com

Non-FIPS: ecs.us-gov-west-1.amazonaws.com

FIPS: ecs-fips.us-gov-east-1.amazonaws.com

Non-FIPS: ecs.us-gov-east-1.amazonaws.com

HTTP and HTTPS
Amazon Elastic File System

FIPS: elasticfilesystem-fips.us-gov-west-1.amazonaws.com

Non-FIPS: elasticfilesystem.us-gov-west-1.amazonaws.com

Not applicable

HTTPS
Amazon ElastiCache

FIPS: elasticache.us-gov-west-1.amazonaws.com

Non-FIPS: Not applicable

FIPS: elasticache.us-gov-east-1.amazonaws.com

Non-FIPS: Not applicable

HTTPS
Elastic Load Balancing

FIPS: elasticloadbalancing.us-gov-west-1.amazonaws.com

Non-FIPS: Not applicable

FIPS: elasticloadbalancing.us-gov-west-1.amazonaws.com

Non-FIPS: Not applicable

HTTP and HTTPS
Amazon Elasticsearch Service

FIPS: es-fips.us-gov-west-1.amazonaws.com

Non-FIPS: es.us-gov-west-1.amazonaws.com

FIPS: es-fips.us-gov-east-1.amazonaws.com

Non-FIPS: es.us-gov-east-1.amazonaws.com

HTTP and HTTPS
AWS Elemental MediaConvert

FIPS: mediaconvert.us-gov-west-1.amazonaws.com

Non-FIPS: mediaconvert.us-gov-west-1.amazonaws.com

Not applicable

HTTPS
Amazon EMR

FIPS: elasticmapreduce.us-gov-west-1.amazonaws.com

Non-FIPS: Not applicable

FIPS: elasticmapreduce.us-gov-east-1.amazonaws.com

Non-FIPS: Not applicable

HTTPS
Amazon S3 Glacier

FIPS: glacier.us-gov-west-1.amazonaws.com

Non-FIPS: Not applicable

FIPS: glacier.us-gov-east-1.amazonaws.com

Non-FIPS: Not applicable

HTTPS
AWS Glue

FIPS: glue-fips.us-gov-west-1.amazonaws.com

Non-FIPS: glue.us-gov-west-1.amazonaws.com

FIPS: glue-fips.us-gov-east-1.amazonaws.com

Non-FIPS: glue.us-gov-east-1.amazonaws.com

HTTP and HTTPS
Amazon GuardDuty

FIPS: Not applicable

Non-FIPS: guardduty.us-gov-west-1.amazonaws.com

Not applicable

HTTPS
AWS Identity and Access Management (IAM)

FIPS: iam.us-gov.amazonaws.com

Non-FIPS: Not applicable

FIPS: iam.us-gov.amazonaws.com

Non-FIPS: Not applicable

HTTPS
Amazon Inspector

FIPS: inspector-fips.us-gov-west-1.amazonaws.com

Non-FIPS: inspector.us-gov-west-1.amazonaws.com

FIPS: inspector-fips.us-gov-east-1.amazonaws.com

Non-FIPS: inspector.us-gov-east-1.amazonaws.com

HTTP and HTTPS
AWS IoT Core

FIPS: Not applicable

Non-FIPS: iot.us-gov-west-1.amazonaws.com

Not applicable

HTTPS

AWS IoT Device Management

FIPS: Not applicable

Non-FIPS: iot.us-gov-west-1.amazonaws.com

Not applicable

HTTPS
AWS Key Management Service (AWS KMS)

FIPS: kms-fips.us-gov-west-1.amazonaws.com

Non-FIPS: kms.us-gov-west-1.amazonaws.com **

FIPS: kms-fips.us-gov-east-1.amazonaws.com

Non-FIPS: kms.us-gov-east-1.amazonaws.com **

HTTPS

Amazon Kinesis Data Firehose

FIPS: firehose-fips.us-gov-west-1.amazonaws.com

Non-FIPS: firehose.us-gov-west-1.amazonaws.com

Not applicable

HTTPS
Amazon Kinesis Data Streams

FIPS: kinesis.us-gov-west-1.amazonaws.com

Non-FIPS: Not applicable

FIPS: kinesis.us-gov-east-1.amazonaws.com

Non-FIPS: Not applicable

HTTPS
AWS Lambda

FIPS: lambda-fips.us-gov-west-1.amazonaws.com

Non-FIPS: lambda.us-gov-west-1.amazonaws.com

FIPS: lambda-fips.us-gov-east-1.amazonaws.com

Non-FIPS: lambda.us-gov-east-1.amazonaws.com

HTTP and HTTPS
AWS License Manager

FIPS: license-manager-fips.us-gov-west-1.amazonaws.com

Non-FIPS: license-manager.us-gov-west-1.amazonaws.com

FIPS: license-manager-fips.us-gov-east-1.amazonaws.com

Non-FIPS: license-manager.us-gov-east-1.amazonaws.com

HTTP and HTTPS
AWS Elemental MediaConvert

mediaconvert.us-gov-west-1.amazonaws.com

mediaconvert.us-gov-west-1.amazonaws.com

HTTPS
AWS Organizations

FIPS: organizations.us-gov-west-1.amazonaws.com

Non-FIPS: Not Applicable

FIPS: Not Applicable

Non-FIPS: Not applicable

HTTPS
Amazon Polly

FIPS: polly-fips.us-gov-west-1.amazonaws.com

Non-FIPS: polly.us-gov-west-1.amazonaws.com

Not applicable

HTTPS
AWS Resource Access Manager

ram.us-gov-west-1.amazonaws.com

n/a

HTTPS
Amazon Redshift

FIPS: redshift.us-gov-west-1.amazonaws.com

Non-FIPS: Not applicable

FIPS: redshift.us-gov-east-1.amazonaws.com

Non-FIPS: Not applicable

HTTPS
Amazon Rekognition

FIPS: rekognition-fips.us-gov-west-1.amazonaws.com

Non-FIPS: rekognition.us-gov-west-1.amazonaws.com

Not applicable

HTTPS
Amazon Relational Database Service (Amazon RDS)

FIPS: rds.us-gov-west-1.amazonaws.com

Non-FIPS: Not applicable

FIPS: rds.us-gov-east-1.amazonaws.com

Non-FIPS: Not applicable

HTTPS
AWS Service Catalog (AWS Service Catalog)

FIPS: servicecatalog-fips.us-gov-west-1.amazonaws.com

Non-FIPS: servicecatalog.us-gov-west-1.amazonaws.com

FIPS: Not Applicable

Non-FIPS: Not applicable

HTTPS
Amazon SageMaker

FIPS: api.sagemaker.us-gov-west-1.amazonaws.com

Non-FIPS: runtime.sagemaker.us-gov-west-1.amazonaws.com

Not applicable

HTTPS
Secrets Manager

FIPS: secretsmanager-fips.us-gov-west-1.amazonaws.com

Non-FIPS: secretsmanager.us-gov-west-1.amazonaws.com

FIPS: Not Applicable

Non-FIPS: Not applicable

HTTPS
AWS Serverless Application Repository

FIPS: serverlessrepo.us-gov-west-1.amazonaws.com

Non-FIPS: Not applicable

Not applicable

HTTPS
AWS Service Catalog

FIPS: servicecatalog-fips.us-gov-west-1.amazonaws.com

Non-FIPS: servicecatalog.us-gov-west-1.amazonaws.com

Not applicable

HTTPS
AWS Server Migration Service (AWS SMS)

FIPS: sms-fips.us-gov-west-1.amazonaws.com

Non-FIPS: sms.us-gov-west-1.amazonaws.com

FIPS: sms-fips.us-gov-east-1.amazonaws.com

Non-FIPS: sms.us-gov-east-1.amazonaws.com

HTTP and HTTPS
Amazon Simple Storage Service (Amazon S3)

FIPS: s3-fips.us-gov-west-1.amazonaws.com, s3.dualstack.us-gov-west-1.amazonaws.com ***

Non-FIPS: s3.us-gov-west-1.amazonaws.com

FIPS: s3-fips.us-gov-east-1.amazonaws.com, s3.dualstack.us-gov-east-1.amazonaws.com ***

Non-FIPS: s3.us-gov-east-1.amazonaws.com

HTTP and HTTPS
Amazon Simple Storage Service (Amazon S3) (website)

FIPS: Not applicable

Non-FIPS: s3-website-us-gov-west-1.amazonaws.com

FIPS: Not applicable

Non-FIPS: s3-website-us-gov-east-1.amazonaws.com

HTTP
Amazon Simple Notification Service (Amazon SNS)

FIPS: Not applicable

Non-FIPS: sns.us-gov-west-1.amazonaws.com

FIPS: Not applicable

Non-FIPS: sns.us-gov-east-1.amazonaws.com

HTTP and HTTPS
Amazon Simple Queue Service (Amazon SQS)

FIPS: sqs.us-gov-west-1.amazonaws.com

Non-FIPS: Not applicable

FIPS: sqs.us-gov-east-1.amazonaws.com

Non-FIPS: Not applicable

HTTP and HTTPS
Amazon Simple Workflow Service (Amazon SWF)

FIPS: swf.us-gov-west-1.amazonaws.com

Non-FIPS: Not applicable

FIPS: swf.us-gov-east-1.amazonaws.com

Non-FIPS: Not applicable

HTTPS
AWS Security Token Service (AWS STS)

FIPS: sts.us-gov-west-1.amazonaws.com

Non-FIPS: Not applicable

FIPS: sts.us-gov-east-1.amazonaws.com

Non-FIPS: Not applicable

HTTPS
AWS Snowball FIPS: FIPS is not needed. Non-FIPS: snowball.us-gov-west-1.amazonaws.com HTTPS
AWS Step Functions

FIPS: Not applicable

Non-FIPS: states.us-gov-west-1.amazonaws.com

FIPS: Not applicable

Non-FIPS: states.us-gov-east-1.amazonaws.com

HTTPS
AWS Storage Gateway (AWS Storage Gateway)

FIPS: Not applicable

Non-FIPS: storagegateway.us-gov-west-1.amazonaws.com

Not applicable

HTTPS
AWS Systems Manager

FIPS:ssm.us-gov-west-1.amazonaws.com

Non-FIPS:Not applicable

FIPS: ssm.us-gov-east-1.amazonaws.com

Non-FIPS:Not applicable

HTTPS
Amazon Transcribe

FIPS: fips-transcribe.us-gov-west-1.amazonaws.com

Non-FIPS: transcribe.us-gov-west-1.amazonaws.com

HTTPS
Amazon Translate

FIPS: translate-fips.us-gov-west-1.amazonaws.com

Non-FIPS: translate.us-gov-west-1.amazonaws.com

Not applicable

HTTPS
Amazon Virtual Private Cloud (Amazon VPC)

FIPS: ec2.us-gov-west-1.amazonaws.com

Non-FIPS: Not applicable

FIPS: ec2.us-gov-east-1.amazonaws.com

Non-FIPS: Not applicable

HTTPS
AWS Management Console for the AWS GovCloud (US) Region

FIPS: console.amazonaws-us-gov.com

Non-FIPS: signin.amazonaws-us-gov.com

FIPS: Not applicable

Non-FIPS: console.amazonaws-us-gov.com

signin.amazonaws-us-gov.com

HTTP and HTTPS
AWS Management Console with Federation

FIPS: Not applicable

Non-FIPS: signin.amazonaws-us-gov.com/federation

FIPS: Not applicable

Non-FIPS: signin.amazonaws-us-gov.com/federation

HTTPS
AWS Management Console with SAML

FIPS: Not applicable

Non-FIPS: signin.amazonaws-us-gov.com/saml

FIPS: Not applicable

Non-FIPS: signin.amazonaws-us-gov.com/saml

HTTPS
AWS WAF

FIPS: waf-regional-fips.us-gov-west-1.amazonaws.com

Non-FIPS: waf-regional.us-gov-west-1.amazonaws.com

Not applicable

HTTPS

Amazon WorkSpaces

FIPS: workspaces-fips.us-gov-west-1.amazonaws.com

Non-FIPS: workspaces.us-gov-west-1.amazonaws.com

Not applicable

HTTPS

For information about giving federated users single sign-on access to the AWS Management Console, see Giving Federated Users Direct Access to the AWS Management Console.

Note

* Amazon API Gateway edge-optimized API and edge-optimized custom domain name are not supported.

* Application Auto Scaling Scaling API and CLI are available. The AWS Auto Scaling console is not available. The AWS Auto Scaling API and command line interface (CLI) are not available.

* Amazon Route 53 hosted Zone ID for the regional endpoint in the AWS GovCloud (US) region is Z1K6XKP9SAGWDV.

** The AWS Key Management Service endpoint kms.us-gov-west-1.amazonaws.com is active, but does not support FIPS 140-2 for TLS connections.

*** Amazon S3 dual-stack endpoints support requests to S3 buckets over IPv6 and IPv4. For more information, see Using Dual-Stack Endpoints.