Service Endpoints
If you access AWS GovCloud (US-West) or AWS GovCloud (US-East) by using the command line interface (CLI) or programmatically by using the APIs, you need the AWS GovCloud (US-West) or AWS GovCloud (US-East) region endpoints. These HTTPS endpoints are referred to as the control plane used to configure AWS services.
If you require FIPS 140-2 compliance you should use the FIPS Endpoints linked below. Any TLS Termination performed on the data plane such as Application Load Balancer HTTPS Listeners and RDS SSL do not use FIPS 140-2 validated modules, unless otherwise noted. For more information about FIPS 140-2, see "Cryptographic Module Validation Program" on the NIST Computer Security Resource Center website.
When using the endpoints, note the following:
-
Amazon S3 has the following website endpoint:
Website Endpoint Route 53 Hosted Zone ID s3-website.us-gov-west-1.amazonaws.com
s3-website.us-gov-east-1.amazonaws.com
Z31GFT0UA1I2HV
Z2NIFVYYW2VKV1
Regions and Endpoints for AWS Services
For a list of all AWS endpoints, see Regions and Endpoints in the AWS General Reference.
FIPS Endpoints for the AWS GovCloud (US) Regions
For a list of all GovCloud AWS FIPS endpoints, see AWS GovCloud (US)
Non-FIPS Endpoints for the AWS GovCloud (US) Regions
The following table lists each AWS service available in the AWS GovCloud (US) Regions and the corresponding Non-FIPS endpoints.
| AWS Service | AWS GovCloud (US-West) Non-FIPs Endpoints | AWS GovCloud (US-East) Non-FIPs Endpoints | Protocol |
|---|---|---|---|
| AWS AppConfig |
Non-FIPS: appconfig.us-gov-west-1.amazonaws.com |
Non-FIPS: appconfig.us-gov-east-1.amazonaws.com |
|
| Amazon AppStream 2.0 |
Non-FIPS: appstream2.us-gov-west-1.amazonaws.com |
Non-FIPS: Not Applicable |
|
| Amazon API Gateway* |
Non-FIPS: apigateway.us-gov-west-1.amazonaws.com |
Non-FIPS: apigateway.us-gov-east-1.amazonaws.com |
|
| AWS Artifact |
Not applicable |
Not applicable |
|
| Amazon Athena |
Non-FIPS: athena.us-gov-west-1.amazonaws.com |
Non-FIPS: athena.us-gov-east-1.amazonaws.com |
|
| Amazon Aurora |
Non-FIPS: Not applicable |
Non-FIPS: Not applicable |
|
| AWS Auto Scaling |
Non-FIPS: Not applicable |
Non-FIPS: Not applicable |
|
| Application Auto Scaling |
Non-FIPS: Not applicable |
Non-FIPS: Not applicable |
|
| Amazon EC2 Auto Scaling |
Non-FIPS: Not applicable |
Non-FIPS: Not applicable |
|
| AWS Batch |
Non-FIPS: Not applicable |
Non-FIPS: Not applicable |
|
| AWS Backup |
Non-FIPS: backup.us-gov-west-1.amazonaws.com |
Non-FIPS: backup.us-gov-east-1.amazonaws.com |
|
| AWS Certificate Manager |
Non-FIPS: Not applicable |
Non-FIPS: Not applicable |
|
| AWS Certificate Manager Private Certificate Authority |
Non-FIPS:Not Applicable |
Non-FIPS: Not Applicable |
|
| Amazon Cloud Directory |
Non-FIPS: Not applicable |
Not applicable |
|
| AWS CloudFormation |
Non-FIPS: Not applicable |
Non-FIPS: Not applicable |
|
| AWS CloudHSM |
Non-FIPS: cloudhsmv2.us-gov-west-1.amazonaws.com |
Non-FIPS: cloudhsmv2.us-gov-east-1.amazonaws.com |
|
| AWS CloudHSM Classic |
Non-FIPS: cloudhsm.us-gov-west-1.amazonaws.com |
Not applicable |
|
| AWS CloudTrail |
Non-FIPS: Not applicable |
Non-FIPS: Not applicable |
|
| Amazon CloudWatch |
Non-FIPS: Not applicable |
Non-FIPS: Not applicable |
|
| Amazon CloudWatch Events |
Non-FIPS: Not applicable |
Non-FIPS: Not applicable |
|
| Amazon CloudWatch Logs |
Non-FIPS: Not applicable |
Non-FIPS: Not applicable |
|
| Amazon Comprehend Medical |
Non-FIPS: comprehendmedical.us-gov-west-1.amazonaws.com |
Non-FIPS: Not applicable |
|
| AWS CodeBuild |
Non-FIPS: codebuild.us-gov-west-1.amazonaws.com |
Non-FIPS: codebuild.us-gov-east-1.amazonaws.com |
|
| AWS CodeCommit |
Non-FIPS: codecommit.us-gov-west-1.amazonaws.com |
Non-FIPS: codecommit.us-gov-east-1.amazonaws.com |
|
| AWS CodeDeploy |
Non-FIPS: codedeploy.us-gov-west-1.amazonaws.com |
Non-FIPS: codedeploy.us-gov-east-1.amazonaws.com |
|
| AWS CodePipeline |
Non-FIPS: codepipeline.us-gov-west-1.amazonaws.com |
Non-FIPS: Not applicable |
|
|
Amazon Cognito |
User Pools: Non-FIPS: cognito-idp.us-gov-west-1.amazonaws.com Identity Pools: Non-FIPS: Not applicable |
Not applicable |
|
|
Amazon Comprehend |
Non-FIPS: comprehend.us-gov-west-1.amazonaws.com |
Not applicable |
|
|
Amazon Connect |
Non-FIPS: Not applicable |
Non-FIPS: Not applicable |
|
|
AWS Config |
Non-FIPS: Not applicable |
Non-FIPS: Not applicable |
|
|
AWS Config Rules |
Non-FIPS: Not applicable |
Non-FIPS: Not applicable |
|
| AWS DataSync |
Non-FIPS: datasync.us-gov-west-1.amazonaws.com |
Non-FIPS: datasync.us-gov-east-1.amazonaws.com |
|
| AWS Database Migration Service (DMS) |
Non-FIPS: Not applicable |
Non-FIPS: Not applicable |
|
| Amazon Detective |
Non-FIPS: api.detective.us-gov-west-1.amazonaws.com |
Non-FIPS: api.detective.us-gov-east-1.amazonaws.com |
|
| Amazon DocumentDB (with MongoDB compatibility) |
Non-FIPS: Not applicable |
Non-FIPS: Not applicable |
|
| AWS Direct Connect |
Non-FIPS: directconnect.us-gov-west-1.amazonaws.com |
Non-FIPS: directconnect.us-gov-east-1.amazonaws.com |
|
| AWS Directory Service |
Non-FIPS: ds.us-gov-west-1.amazonaws.com |
Non-FIPS: ds.us-gov-east-1.amazonaws.com |
|
| Amazon DynamoDB |
Non-FIPS: Not applicable |
Non-FIPS: Not applicable |
|
| Amazon DynamoDB Streams |
Non-FIPS: Not applicable |
Non-FIPS: Not applicable |
|
| AWS Elastic Beanstalk |
Non-FIPS: Not applicable |
Non-FIPS: Not applicable |
|
| Amazon Elastic Block Store (Amazon EBS) |
Non-FIPS: Not applicable |
Non-FIPS: Not applicable |
|
| EBS direct APIs |
Non-FIPS: Not applicable |
Non-FIPS: Not applicable |
|
| Amazon Elastic Compute Cloud (Amazon EC2) |
Non-FIPS: Not applicable |
Non-FIPS: Not applicable |
|
| Amazon Elastic Compute Cloud Image Builder |
Non-FIPS: Not applicable |
Non-FIPS: Not applicable |
|
| Amazon Elastic Container Registry (Amazon ECR) |
Non-FIPS: ecr.us-gov-west-1.amazonaws.com |
Non-FIPS: ecr.us-gov-east-1.amazonaws.com |
|
| Amazon Elastic Container Service (Amazon ECS) |
Non-FIPS: ecs.us-gov-west-1.amazonaws.com |
Non-FIPS: ecs.us-gov-east-1.amazonaws.com |
|
| Amazon Elastic File System |
Non-FIPS: elasticfilesystem.us-gov-west-1.amazonaws.com |
Non-FIPS: elasticfilesystem.us-gov-east-1.amazonaws.com |
|
| Amazon EKS |
Non-FIPS: Not applicable |
Non-FIPS: Not applicable |
|
| Amazon ElastiCache |
Non-FIPS: Not applicable |
Non-FIPS: Not applicable |
|
| Elastic Load Balancing |
Non-FIPS: Not applicable |
Non-FIPS: Not applicable |
|
| Amazon Elasticsearch Service |
Non-FIPS: es.us-gov-west-1.amazonaws.com |
Non-FIPS: es.us-gov-east-1.amazonaws.com |
|
| AWS Elemental MediaConvert |
Non-FIPS: Not applicable |
Not applicable |
|
| Amazon EMR |
Non-FIPS: Not applicable |
Non-FIPS: Not applicable |
|
| Amazon EventBridge |
Non-FIPS: Not applicable |
Non-FIPS: Not applicable |
|
| AWS Firewall Manager |
Non-FIPS: fms.us-gov-west-1.amazonaws.com |
Non-FIPS: fms.us-gov-east-1.amazonaws.com |
|
| Amazon FSx |
Non-FIPS: fsx.us-gov-west-1.amazonaws.com |
Non-FIPS: fsx.us-gov-east-1.amazonaws.com |
|
| Amazon S3 Glacier |
Non-FIPS: Not applicable |
Non-FIPS: Not applicable |
|
| AWS Glue |
Non-FIPS: glue.us-gov-west-1.amazonaws.com |
Non-FIPS: glue.us-gov-east-1.amazonaws.com |
|
| Amazon GuardDuty |
Non-FIPS: Not applicable |
Not applicable |
|
| AWS Health* |
Non-FIPS: Not applicable |
Not applicable |
|
| AWS Identity and Access Management (IAM) |
Non-FIPS: Not applicable |
Non-FIPS: Not applicable |
|
| Amazon Inspector |
Non-FIPS: inspector.us-gov-west-1.amazonaws.com |
Non-FIPS: inspector.us-gov-east-1.amazonaws.com |
|
| AWS IoT Core |
Non-FIPS: iot.us-gov-west-1.amazonaws.com |
Non-FIPS: iot.us-gov-east-1.amazonaws.com |
|
| AWS IoT Greengrass V1 |
Non-FIPS:
|
Non-FIPS:
|
|
| AWS IoT Greengrass V2 |
Non-FIPS:
|
Non-FIPS:
|
|
| AWS IoT Device Management |
Non-FIPS: iot.us-gov-west-1.amazonaws.com |
Non-FIPS: iot.us-gov-east-1.amazonaws.com |
|
| AWS IoT Device Defender |
Non-FIPS: iot.us-gov-west-1.amazonaws.com |
Non-FIPS: iot.us-gov-east-1.amazonaws.com |
|
| AWS Key Management Service (AWS KMS) |
Non-FIPS: kms.us-gov-west-1.amazonaws.com |
Non-FIPS: kms.us-gov-east-1.amazonaws.com |
|
| Amazon Kinesis Data Analytics |
Non-FIPS: Not applicable |
Non-FIPS: Not applicable |
|
| Amazon Kinesis Data Firehose |
Non-FIPS: firehose.us-gov-west-1.amazonaws.com |
Non-FIPS: firehose.us-gov-east-1.amazonaws.com |
|
| Amazon Kinesis Data Streams |
Non-FIPS: Not applicable |
Non-FIPS: Not applicable |
|
| AWS Lake Formation |
Non-FIPS: lakeformation.us-gov-west-1.amazonaws.com |
||
| AWS Lambda |
Non-FIPS: lambda.us-gov-west-1.amazonaws.com |
Non-FIPS: lambda.us-gov-east-1.amazonaws.com |
|
| Amazon Lex |
Non-FIPS:
|
Non-FIPS: Not applicable |
|
| AWS License Manager |
Non-FIPS: license-manager.us-gov-west-1.amazonaws.com |
Non-FIPS: license-manager.us-gov-east-1.amazonaws.com |
|
| Amazon Managed Streaming for Apache Kafka (MSK) |
Non-FIPS: kafka.us-gov-west-1.amazonaws.com |
Non-FIPS: kafka.us-gov-east-1.amazonaws.com |
|
| AWS Marketplace Metering |
Non-FIPS: metering.marketplace.us-gov-west-1.amazonaws.com |
Non-FIPS: metering.marketplace.us-gov-east-1.amazonaws.com |
|
| Amazon MQ |
Non-FIPS: mq.us-gov-west-1.amazonaws.com |
Non-FIPS: mq.us-gov-east-1.amazonaws.com |
|
| Amazon Neptune |
Non-FIPS: Not applicable |
Non-FIPS: Not applicable |
|
| AWS Organizations |
Non-FIPS: Not Applicable |
Non-FIPS: Not applicable |
|
| AWS Outposts |
Non-FIPS: Not Applicable |
Non-FIPS: Not Applicable |
|
| AWS Personal Health Dashboard |
Non-FIPS: phd.amazonaws-us-gov.com |
Non-FIPS: phd.amazonaws-us-gov.com |
|
| Amazon Pinpoint |
Non-FIPS: pinpoint.us-gov-west-1.amazonaws.com |
Not applicable |
|
| Amazon Polly |
Non-FIPS: polly.us-gov-west-1.amazonaws.com |
Not applicable |
|
| Amazon QuickSight |
Non-FIPS:
|
Not applicable |
|
| AWS Resource Access Manager |
Non-FIPS: ram.us-gov-west-1.amazonaws.com |
Non-FIPS: ram.us-gov-east-1.amazonaws.com |
|
| AWS Resource Groups |
Non-FIPS: resource-groups.us-gov-west-1.amazonaws.com |
Non-FIPS: resource-groups.us-gov-east-1.amazonaws.com |
|
| Amazon Redshift |
Non-FIPS: Not applicable |
Non-FIPS: Not applicable |
|
| Amazon Rekognition |
Non-FIPS: rekognition.us-gov-west-1.amazonaws.com |
Not applicable |
|
| Amazon Relational Database Service (Amazon RDS) |
Non-FIPS: Not applicable |
Non-FIPS: Not applicable |
|
| Amazon Route 53 |
Non-FIPS: Not applicable |
Non-FIPS: Not applicable |
|
| Amazon SageMaker |
Non-FIPS: runtime.sagemaker.us-gov-west-1.amazonaws.com |
Not applicable |
|
| AWS Security Hub |
Non-FIPS:securityhub.us-gov-west-1.amazonaws.com |
Non-FIPS:securityhub.us-gov-east-1.amazonaws.com |
|
| Secrets Manager |
Non-FIPS: secretsmanager.us-gov-west-1.amazonaws.com |
Non-FIPS: secretsmanager.us-gov-east-1.amazonaws.com |
|
| AWS Serverless Application Repository |
Non-FIPS: Not applicable |
Non-FIPS: Not applicable |
|
| AWS Service Catalog |
Non-FIPS: servicecatalog.us-gov-west-1.amazonaws.com |
Non-FIPS: servicecatalog.us-gov-east-1.amazonaws.com |
|
| Amazon SES |
Non-FIPS: email.us-gov-west-1.amazonaws.com Non-FIPS SMTP:email-smtp.us-gov-west-1.amazonaws.com |
Not applicable |
|
| AWS Server Migration Service (AWS SMS) |
Non-FIPS: sms.us-gov-west-1.amazonaws.com |
Non-FIPS: sms.us-gov-east-1.amazonaws.com |
|
| Amazon Simple Storage Service (Amazon S3) |
Non-FIPS: s3.us-gov-west-1.amazonaws.com |
Non-FIPS: s3.us-gov-east-1.amazonaws.com |
|
| Amazon Simple Storage Service (Amazon S3) (website) |
Non-FIPS: s3-website.us-gov-west-1.amazonaws.com |
Non-FIPS: s3-website.us-gov-east-1.amazonaws.com |
|
| Amazon Simple Storage Service (Amazon S3) Access Points |
Non-FIPS:s3-accesspoint.us-gov-west-1.amazonaws.com |
Non-FIPS: s3-accesspoint.us-gov-east-1.amazonaws.com |
|
| Amazon Simple Notification Service (Amazon SNS) |
Non-FIPS:Not applicable |
Non-FIPS:Not applicable |
|
| Amazon Simple Queue Service (Amazon SQS) |
Non-FIPS: Not applicable |
Non-FIPS: Not applicable |
|
| Amazon Simple Workflow Service (Amazon SWF) |
Non-FIPS: Not applicable |
Non-FIPS: Not applicable |
|
| AWS Security Token Service (AWS STS) |
Non-FIPS: Not applicable |
Non-FIPS: Not applicable |
|
| AWS Snow Family |
Non-FIPS: snowball.us-gov-west-1.amazonaws.com |
Non-FIPS: snowball.us-gov-east-1.amazonaws.com |
|
| AWS Step Functions |
Non-FIPS:Not applicable |
Non-FIPS: states.us-gov-east-1.amazonaws.com |
|
| AWS Storage Gateway |
Non-FIPS: storagegateway.us-gov-west-1.amazonaws.com |
Non-FIPS: storagegateway.us-gov-east-1.amazonaws.com |
|
| AWS Support |
Non-FIPS: Not applicable |
Non-FIPS: Not applicable |
|
| AWS Systems Manager |
Non-FIPS:Not applicable |
Non-FIPS:Not applicable |
|
| Amazon Textract |
Non-FIPS:textract.us-gov-west-1.amazonaws.com |
Non-FIPS:textract.us-gov-east-1.amazonaws.com |
|
| AWS Transfer Family |
Non-FIPS: transfer.us-gov-west-1.amazonaws.com |
Non-FIPS: transfer.us-gov-east-1.amazonaws.com |
|
| Amazon Transcribe |
Non-FIPS: transcribe.us-gov-west-1.amazonaws.com |
Non-FIPS: transcribe.us-gov-east-1.amazonaws.com |
|
| Amazon Translate |
Non-FIPS: translate.us-gov-west-1.amazonaws.com |
Not applicable |
|
| Amazon Virtual Private Cloud (Amazon VPC) |
Non-FIPS: Not applicable |
Non-FIPS: Not applicable |
|
| AWS Management Console for the AWS GovCloud (US) Region |
Non-FIPS: signin.amazonaws-us-gov.com |
Non-FIPS: us-gov-east-1.signin.amazonaws-us-gov.com |
|
| AWS Management Console with Federation |
Non-FIPS: signin.amazonaws-us-gov.com/federation |
Non-FIPS: signin.amazonaws-us-gov.com/federation |
|
| AWS Management Console with SAML |
Non-FIPS: signin.amazonaws-us-gov.com/saml |
Non-FIPS: signin.amazonaws-us-gov.com/saml |
|
| Amazon VPC Console |
Non-FIPS: Not applicable |
Non-FIPS: Not applicable |
|
| AWS WAF Classic |
Non-FIPS: waf-regional.us-gov-west-1.amazonaws.com |
Non-FIPS: waf-regional.us-gov-east-1.amazonaws.com |
|
| AWS WAF v2 |
Non-FIPS: wafv2.us-gov-west-1.amazonaws.com |
Non-FIPS: wafv2.us-gov-east-1.amazonaws.com |
|
| Amazon WorkSpaces |
Non-FIPS: workspaces.us-gov-west-1.amazonaws.com |
Not applicable |
|
| AWS X-Ray |
Non-FIPS: xray.us-gov-west-1.amazonaws.com |
Non-FIPS: xray.us-gov-east-1.amazonaws.com |
For information about giving federated users single sign-on access to the AWS Management Console, see Giving Federated Users Direct Access to the AWS Management Console.
* AWS Health is a non-fips endpoint (https://aws.amazon.com/compliance/fips/). We were cleared to not use fips because we do not share customer data (Health events are considered AWS data). FIPS endpoints have mandated encryptions applied to them.
* Amazon API Gateway edge-optimized API and edge-optimized custom domain name are not supported.
* Amazon Route 53 hosted Zone ID for the regional endpoint in the AWS GovCloud (US) region is Z1K6XKP9SAGWDV.
*** Amazon S3 dual-stack endpoints support requests to S3 buckets over IPv6 and IPv4. For more information, see Using Dual-Stack Endpoints.
