Receive guidance and best practices on all security relating to networking, data encryption, role-based access control, authentication, and more. 

Information System Security Management and Assessment Program (ISMAP) is a compliance program mandated by the Japanese authorities to work with the public sector agencies in Japan.

Customers can use IPv6 for their VMware Cloud on AWS workload VMs to communicate within and outside the SDDC.

Users will be able to choose which notifications they receive and through which supported channels. This functionality, while also provided as an API, will be present in the VMC Console. These preferences are controlled at a user level, giving you the power to control which notifications you receive, reducing the noise often caused by different events that take place within one environment.

IPv6 for workload communication.

Support for DFW IPFIX that enables the vRNI solution within VMware Cloud on AWS. The vRNI solution provides support for operationalizing DFW interms in planning the day to day monitoring and troubleshooting.

SDDC save and restore capability that reduces configuration time by allowing customers to save their VMware Cloud on AWS SDDC configurations upon deletion and re-deploy an SDDC using these saved configurations if they need to at a later date.

Enabling customers to see a particular day and time of the week for VMware Cloud on AWS SDDC maintenance.

Enabling download of VMware Cloud on AWS bill in a csv format consistent with AWS bills via RESTful API.

The 3 Guidelines from 3 Ministries is a collection of security and compliance guidelines published by the three ministries in Japan - Ministry of Health, Labor and Welfare, the Ministry of Internal Affairs and Communications, and the Ministry of Economy, Trade and Industry. In Japan, medical institutions that store medical data such as patient records and medical images in an external facility such as a public cloud should align with the requirements specified in these guidelines.

DHCP Relay can be configured within VMware Cloud on AWS so DHCP requests can be forwarded to an external/3rd party DHCP server. Customers can use the native NSX DHCP capabilities in VMware Cloud on AWS or use DHCP Relay to leverage an advanced external/3rd party DHCP server.

Enables customers to migrate their workloads from non-VMware to VMware environments

VMware Cloud on AWS allows cloud-side VMs on the extended network to route traffic optimally through the cloud-side first-hop gateway instead of being routed through the source environment router. Hence, organizations can avoid traffic tromboning via policy based forwarding on the cloud router.

Enables customers to move workloads between clouds seamlessly

VMware Cloud on AWS service availability in AWS Asia Pacific (Melbourne), enabling the provisioning of VMware SDDCs in that region.

VMware Cloud on AWS service availability in AWS Asia Pacific (Hyderabad), enabling the provisioning of VMware SDDCs in that region.

VMware Cloud on AWS service availability in AWS Europe (Madrid), enabling the provisioning of VMware SDDCs in that region.

VMware Cloud on AWS service availability in AWS Europe (Zurich), enabling the provisioning of VMware SDDCs in that region.

VMware Cloud on AWS service availability in AWS Middle East (UAE), enabling the provisioning of VMware SDDCs in that region.

Protect vSphere workloads running on Google Cloud VMware Engine. Workloads will continue to be recovered to VMware Cloud on AWS.

Confidently protect your most critical virtual machines running on VMware Cloud on AWS with VMware Cloud Disaster Recovery by configuring protection schedules with Recovery Point Objectives (RPOs) for as low as 15 minutes so that the data loss from unforeseen DR events is minimized.

Protect vSphere workloads running on VMware Cloud on AWS Outposts. Workloads will continue to be recovered to VMware Cloud on AWS.

Use Transit Connect to carry replication, failback, and management traffic between your on-premises protected site and VMware Cloud Disaster Recovery.

Scale-up and protect your workloads across multiple VMware Cloud organizations. 

The existing legacy view is deprecating. The new dashboard view provides a summary of your networking status with improved performance.

Protect vSphere workloads running on VMware Cloud on Dell EMC. Workloads will continue to be recovered to VMware Cloud on AWS

VMware Cloud on AWS service level costs at SDDC level are distributed to resource level, so that users can perform showback to consumer entities, leveraging the perspective construct in CloudHealth. This granular costing methodology should also factor in amortized subscription cost of committed hosts.

Protect vSphere workloads running on Azure VMware solution. Workloads will continue to be recovered to VMware Cloud on AWS.

Use public RESTFUL APIs to set up protection, recover workloads, and manage the lifecycle of VMware Cloud DR instances.

Enabling deployment of scalable applications requiring a load balancer powered by VMware NSX.

It helps manage user teams more efficiently with Property Groups. Property groups let users templatize their VMware Cloud on AWS environment properties and reuse them for new catalog requests within a VMware Cloud Template

It reduces the exposure of sensitive data by keeping them encrypted in the database. vRealize Automation Cloud helps users create and encrypt secret variables for VMware Cloud on AWS and consume them as part of VMware Cloud Templates or extensibility workflows (e.g., with ABX or vRealize Orchestrator).

Supports authentication with external identity providers for the vCenter Server on VMware Cloud on AWS. This will also enable Single Sign-On across the VMWare Cloud console and the vCenter Server running on VMWare Cloud on AWS.

Reducing configuration time by persisting VMware SDDC networking configuration as a template that can be used to deploy a new VMware SDDC.

Protect and recover your vSphere virtual machines using VMware Cloud DR in additional regions.

Dynamic SDDC scale up to large SDDC.

Deliver in-service guided walk-throughs for on-boarding and common configuration tasks to accelerate time to value.

Customers can provision and scale file shares alongside block volumes on vSAN datastore on VMware Cloud on AWS.

Using Active Directory as a federated authentication provider for VMware Cloud on AWS Console login (console.cloud.vmware.com).

Simplifying the creation of the required firewall rules in VMware Cloud on AWS Console, to allow communication across on-premises networks and VMware Cloud on AWS SDDC components. For example, automated configuration of the firewall rules allow necessary ports for vCenter, SRM, and other service communication for Hybrid Linked Mode and VMware Site Recovery use cases.

vSphere Client plugins can be enabled on VMware Cloud on AWS, allowing VMware Cloud Admin customers to register VMware Cloud-certified vSphere Client plugins securely to the VMware Cloud SDDC(s) they manage.

Integrated data protection for your VMware Cloud on AWS workloads with VM-level protection policies.

The Plugin Marketplace and the integration with Cloud Marketplace is available in the vSphere Client interface, showing available plugins, lifecycle management, notification on available updates.

Achieve faster failover times and failback sooner by recovering your virtual machines directly onthe Scale Out Cloud File System and skipping the storage migration to VMware Cloud on AWS.The virtual machine storage continues to be served from the cloud filesystem.

A new consumption model for VMware Cloud on AWS with which VMware will partition the hosts and provide smaller consumable slices, lowering the price and removing the complexity of the SDDC. A slice is a resource pool comprising of compute, memory, network and storage. You will be able to purchase and consume multiple slices per your requirements.

Provide the option for select VMware Cloud on AWS customers to 'Activate' vRealize Operations Cloud from within VMware Cloud console within the 'Add-Ons' section in the VMware Cloud console UI. When customer 'activates' vRealize Operations Cloud, all the integration tasks needed will be programmatically performed for the user in the background such as: 

• Automatically provision a vRealize Operations Cloud instances 
• Automatically map the vRealize Operations Cloud instance to the correct org 
• Automatically configuring to the VMware Cloud on AWS account 
• Launch the vRealize Operations Cloud UI showing a custom-built dashboard to show the value of vRealize Operations Cloud-VMware Cloud on AWS integration 

Allows you to manage VMware Cloud on AWS users, roles, and permissions via RESTful API.

Enabling customers to select a particular day and time of the week for VMware Cloud on AWS SDDC maintenance.

Automates monitoring and reporting of VMware SDDC activity using the VMware Cloud on AWS Tasks API.

Automates configuration of your VMware SDDC using Datacenter CLI scripts.

VMware SDDCs can be consumed on-demand or via a 1 or 3-year term commitment. Now we offer the option to pay for the 1 or 3-year commitment also via monthly installments. Continue to enjoy the savings of the 1 or 3-year term commitments without upfront payment. Please note that the monthly billing option is only available to qualified pay by invoice transactions directly through VMware or purchases from a Managed Service Provider (MSP) partner under the VMware Cloud Provider Program. Please contact your VMware sales or MSP partner representative for eligibility.

VMware Site Recovery can be consumed on-demand or via a 1 or 3-year term commitment. Now we offer the option to pay for the 1 or 3-year commitment via monthly installments. Continue to enjoy the savings of the 1 or 3-year term commitments without upfront payment. Please note that the monthly billing option is only available to qualified pay by invoice transactions directly through VMware or purchases from a Managed Service Provider (MSP) partner under the VMware Cloud Provider Program. Please contact your VMware sales or MSP partner representative for eligibility.

VMware Cloud on AWS now provides automated space reclamation support with TRIM and SCSI UNMAP to reclaim previously allocated storage as free space.

Enabling live migration (vMotion) to VMware Cloud on AWS by accelerating migration with vSphere replication.

This feature supports the forwarding of VMware Cloud on AWS SDDC vRLIC logs to forward to either Europe (Frankfurt) or Asia Pacific (Sydney) AWS regions if those SDDCs are deployed to those regions.

Get even more flexibility in purchasing VMware Cloud Disaster Recovery with VM term subscriptions. VM subscriptions can be purchased anytime using the Global DR Console for 1- or 3-year durations.

Add cyber resiliency to your business continuity plan by leveraging VMware Ransomware Recovery for predictable and secure recovery from ransomware attacks.  This new VMware Cloud DR add-on builds on existing ransomware recovery capabilities by adding a dedicated ransomware recovery workflow, restore point selection assistance, pre-defined and custom VM isolation levels, and embedded NextGen AV with behavioral analysis, and vulnerability scanning.

Telco Cloud Platform Public Cloud is a new Public Cloud platform that caters directly to Telecommunications Service Providers. This platform builds on top of existing Telco-class platforms VMware Cloud on AWS, Telco Cloud Platform and Telco Cloud Infrastructure, catering to Telco Requirements. VMware Telco Cloud Platform – Public Cloud is a cloud-smart solution, tightly integrated with VMware Cloud. The joint solution allows our customers to extend their on-premises telco clouds built with VMware Telco Cloud Platform. This first release is available on VMware Cloud on AWS SDDC Version 16.2.

VMware Transit Connect now supports Intra-Region Peering with AWS Transit Gateway. This simplifies network connectivity between SDDCs and AWS VPCs in the same region.

This feature enables VMware Cloud on AWS SDDC Groups to peer their native Transit Gateways (TGW) with VMware Transit Connect, simplifying access between VMware Cloud on AWS and AWS resources across accounts and across regions, while retaining control over connectivity in the respective environments. 

VMware Cloud on AWS customers can utilize NSX Traceflow to inspect the path of a packet from source to destination in the SDDC. Traceflow also provides visibility for external communication over VMware Transit Connect.

Customers can now protect up to 4000 VMs per SDDC using VMware Site Recovery.

VMware Cloud's Tanzu services is a full-managed and integrated offering containing Tanzu Kubernetes Grid and Tanzu Mission Control Essentials where Customers are responsible for providing and maintaining a basic collection of networks, which are used for deploying both Tanzu infrastructure as well as workloads. VMware is responsible for the management of the Tanzu infrastructure in addition to SDDC software components and the IaaS infrastructure resources. As part of this managed service, VMware also provides tighter integrations in the VMC Console as well as Tanzu Mission Control Essentials.

Activate recovery regions by deploying orchestrator instances and manage subscriptions through a simple global DR Console.

Recover a specific set of files or folders in a VM from a replicated snapshot and download it locally. Use this recovered copy to manually restore it on the source VM on your protected site.

VMware Cloud on AWS has successfully completed the IRAP cloud security assessment. The IRAP Cloud Security Assessment demonstrates our compliance against the Australian Information Security Manual (ISM) and Protective Security Policy Framework (PSPF) and shows VMware Cloud on AWS’s suitability to handle Australian Government data

VMware Cloud on AWS service availability in AWS Asia Pacific (Osaka), enabling the provisioning of VMware SDDCs in that region.

With VMware Carbon Black Workload support for VMware Cloud on AWS, customers can protect the workloads including VMs, containers, and apps running on VMware Cloud on AWS

The seed checkpoint feature provides recoverable migration progress with checkpoint seed data. With this capability, users have the option to retain replica disks at the target datastore if a migration is failed or canceled. Seed checkpoints enable VMware HCX to reuse the disks on the target for seeding replication data, avoiding the need to transfer all the data again.

Maximize your investment in VMware Cloud on AWS by using an existing SDDC created from VMware Cloud console, for recovery with VMware Cloud DR. Clusters and hosts added to VMware Cloud DR from VMware Cloud console are automatically recognized by VMware Cloud DR.

With enterprise federation, enterprises can use their corporate identities and credentials and link their VMware ID (My VMware) accounts to both log in to VMware Cloud Services and manage access to services/organizations/features within VMware Cloud services. With the new enhancement, customers will get self-service experience to setup enterprise federation so that any customer can setup federation without the need of engagement with VMware.

Get additional payment flexibility with a new option to pay for 1-year or 3-year committed term subscriptions in monthly installment rather than paying for it all upfront.

Use AWS Direct Connect with public virtual interfaces (Public VIF) to carry replication, failback,and management traffic between your on-premises protected site and VMware Cloud Disaster Recovery over a high-bandwidth, low-latency network connection.

Expand your DR strategy to include protection of your virtual machines running in VMware Cloud on AWS in addition to those running in your on-premises data center. Confidently migrate your most critical virtual machines to VMware Cloud on AWS with the knowledge that they can be easily protected to another AWS Availability Zone in the same region using VMware Cloud Disaster Recovery.

VMware Cloud on AWS service availability in AWS Middle East (Bahrain), enabling the provisioning of VMware SDDCs in that region.

Cost-effectively recover virtual machines using i4i.metal clusters as the recovery target.

VMware Cloud on AWS service availability in AWS Africa (Cape Town), enabling the provisioning of VMware SDDCs in that region.

VMware SDDCs are deployed with dedicated, single-tenant i4i bare-metal hosts. Each host has 3rd generation Intel® Xeon® Ice Lake processors with up to 128 vCPUs and 1,024 GiB of memory, and Up to 30TB of local AWS Nitro SSD storage. It offers high I/O performance, low latency, minimal latency variability, and better security with always-on encryption.

Enable customers to provide real-time ratings and comments on workflows and features so that valuable feedback can influence the future direction of the product

Visibility into overall health of DR environment to be able to maintain DR posture

Get additional REST APIs to monitor DR operations, set up protection and recover your workloads and automate the capabilities to configure and manage DR at scale.

Expand storage capacity without adding hosts and streamline operations with VMware Cloud Flex Storage. Delivered with simple cloud economics, our cloud storage service offers an elastic and natively integrated solution for VMware Cloud on AWS that is fully managed by VMware. And it allows you to pay for only the resources you need with a straightforward, consumption-based pricing model.

A fully managed, low cost, high performance external NFS datastore that can be attached to VMware Cloud on AWS host. It is built on NetApp’s ONTAP file system that provides VMware Cloud on AWS customers up to 192TiB Flash Capacity and 2PiB of data storage depending on storage efficiency savings depending on storage efficiency.

VMware Cloud on AWS enables customers to add a Virtual Trusted Platform Module (vTPM) device to virtual machines running Windows Server 2008 and later, Windows desktop 7 and later, or Linux. SDDCs created using version 1.19 and later automatically include the provisioning of vSphere Native Key Provider in vCenter to support new vTPM devices.

Microsoft introduced new minimum virtual hardware requirements with the Windows 11 operating system.  Microsoft requires a Virtual Trusted Platform Module (vTPM) device to be present during Windows 11 virtual machine installation and upgrades. SDDCs created using version 1.19 and later automatically include the provisioning of vSphere Native Key Provider in vCenter to support new vTPM devices.

VMware Cloud on AWS SKU-based transaction allows distributors to purchase on behalf of a designated reseller and end customer. This 2-tier partner commerce motion for VMware Cloud on AWS enables distributors to streamline the purchase of VMware Cloud on AWS hosts by SKU without purchasing upfront SPP credits or signing a contract. The purchased subscription is activated immediately upon the delivery of the email invitation to onboard the service. Please Note: End customers do NOT have self-service commerce capabilities and must request further VMware Cloud on AWS subscriptions from the reseller/distributor when they want to purchase them.

Protect larger environments by replicating more than 6000 virtual machines to a single AWS region in a VMware Cloud organization.

Have a better pulse on your DR SLAs by receiving email notifications for any SLA violations, including RTO and RPO violations.

Customers can now enable Tanzu services on existing VMware Cloud on AWS SDDCs upgraded to version 1.16 and above. There is no longer a need to create new SDDCs or new Clusters, allowing customers to leverage their existing environments.

Customers can now access Application Transformer for VMware Tanzu through the VMC Console, where they can download and self-deploy the Application Transformer appliance into their VMware Cloud SDDC. Once deployed and configured, Administrators can now use Application Transformer to focus and accelerate their application modernization journey, enabling key workflows that remove the need to manually discover and analyze every workload, automatically building application topologies with all included application dependencies, and ultimately shortening the time needed for planning and execution. After discovering and analyzing the applications within the environment, Application Transformer also offers the ability to containerize a variety of processes and applications, generating OCI-compliance images and deployable Kubernetes YAML manifests, providing administrators the required tools to help their organization begin executing on re-platforming traditional applications.

VMware Site Recovery received the highest level of PCI certification (PCI DSS Level 1 provider status). By being certified as PCI DSS compliant level 1 service provider, VMware Site Recovery service operates in compliance with PCI DSS compliant security measures and controls, thereby potentially addressing the needs of a broad range of customers and workloads that need to store, process, or transmit cardholder or sensitive authentication data

Introduces the VMware NSX Manager user interface with a streamlined layout and separate tabs for Networking, Security and Troubleshooting.

CloudHealth add-on provides summarized dashboard of VMware Cloud on AWS spend and inventory with ability to slice-and-dice VMware Cloud on AWS spend for past 13 months using various parameters and intervals. Usage reports provide granular visibility into service level usage for host, elastic IP and data transfer. 

Continuous export of log of user actions, replication/recovery events, and site health to various log analysis and monitoring solutions via vRealize Log Insight Cloud.

The OSPAR report demonstrates VMware Cloud on AWS compliance against the outsourcing guidelines prescribed for by the Association of Banks in Singapore.

Use VMware Transit Connect to get high-speed and resilient connections between VMware Cloud on AWS SDDCs across different AWS regions for DR replication traffic.

VMware Cloud DR is a Cloud Security Alliance (CSA) Trusted Cloud Provider and registered as a Security, Trust, Assurance and Risk (STAR) Level One service. CSA is an organization dedicated to defining best practices to help ensure a secure cloud computing environment. STAR Registry is a publicly accessibly registry that documents the security and privacy controls.

Extend on-premises Horizon Pods to directly manage virtual desktop capacity in VMware Cloud on AWS by leveraging the Horizon Remote Agent feature.  No need to create a separate Horizon Pod on VMware Cloud on AWS.

Protection groups now support quiesced snapshots, which ensure that a snapshot represents a consistent state of the guest file systems of VMs in the group. From a quiesced snapshots, you can restore the VM and its application to the same state as before when a snapshot was taken. VMware Tools are required. Not supported with high-frequency snapshots.

Purchase VMware Cloud Disaster Recovery instantaneously with a credit card.

The VMware Cloud service will automatically scale up any stretched cluster on AZ failure. This capability is added free of charge and will attempt to maintain the Compute resources in the event of an AZ failure by adding non-billable hosts to the surviving AZ until the cluster has returned to its original host count. Upon AZ recovery the cluster will automatically Scale-In as soon as the burst capacity is no longer needed. This functionality is dependent on free capacity and therefore carries no guarantee.
This protection extends to partial failures as well. Should an instance fail on a Stretched Cluster and Auto-Remediation is unable to recover or replace the host. The service will add the instance to the other AZ until a new host can be recovered in the original AZ. This capability is added free of charge and will attempt to maintain the Compute resources in the event of a partial AZ failure by adding non-billable hosts to the surviving AZ until the cluster has returned to its original host count.

You can now take advantage of updated content, which provides an overview of the VMware Tanzu services you can use with VMware Cloud today. These services include vSphere 7 with Tanzu (in Preview), Tanzu Kubernetes Grid, and Tanzu Mission Control. Customers who are part of the vSphere 7 with Tanzu preview on VMware Cloud, can enable a managed Kubernetes service through Launchpad. Customers with Application Modernization initiatives can take advantage of the VMware App Navigator content under Resources.

Discover and learn about the virtual desktops solution via VMware Cloud Launchpad. The overview, journey, and resource pages will get you the information you need to start your journey with VMware Horizon.

Start your vRealize Cloud Management journey from VMware Cloud launchpad. Leverage launchpad to discover and learn more about vRealize Cloud Management services.

Stretch cluster is now supporting a 2 host configuration across multi-AZ. A customer who wants a 2-host configuration can choose to deploy it across AZs. 

Confidently protect your most critical virtual machines running on VMware Cloud on AWS with VMware Cloud Disaster Recovery by configuring protection schedules with Recovery Point Objectives (RPOs) as low as 30 minutes so that the risk of data loss from unforeseen DR events is minimized.

This capability helps with migration of non-VMware workloads (KVM and Hyper-V) to VMware Cloud on AWS

Accelerate your Disaster Recovery implementation with step-by-step guidance, relevant tools and a rich set of resources using VMware Cloud Launchpad. Click on "Learn More" under "Disaster Recovery" to navigate to launch your DR journey. This experience is available to everyone without requiring login to VMware Cloud.

Protect larger environments by replicating up to 2500 virtual machines to a single AWS region in a VMware Cloud organization. You might need to split 2500 VMs across multiple VMware Cloud DR file systems for larger protected capacity scale. See VMware Configuration Maximum tool for operational scale limits of VMware Cloud DR.

Flexible Subscription is a new subscription type for VMware Cloud on AWS now available. It is available for redemption in the VMware Cloud Console as part of the subscription purchasing flow. The benefit of flexible subscription is that it allows for customers to exchange their VMware Cloud on AWS flexible subscription for any new VMware Cloud on AWS term subscription. When requesting an exchange, the leftover value of the VMware Cloud on AWS flexible subscription will be used towards purchasing a new VMware Cloud on AWS full term subscription. Flexible subscription is available for i3en.metal instance type in all regions. Customers can exchange an instance type, region, or duration of their Flexible Subscription. Flexible subscriptions allow customers to commit to VMware Cloud on AWS but maintain flexibility when their business needs change.

Provides capabilities such as networking limit-based alerts and intents, alert categories, alert types, setting max limits, current usage, criticality, description, fix recommendations, and "VMware Cloud on AWS Limit" alert types. 

These alerts will allow the VMware Cloud on AWS users in their VMware Cloud on AWS SDDC planning and troubleshooting efforts. 

Users will be able to create VMware Cloud on AWS networking intents in vRealize Network Insight for properly designing and managing their VMware Cloud on AWS network. 

Deploy the Cloud File System for replication and recovery using a self-service wizard in the VMware Cloud Disaster Recovery UI.

Cyber Essentials is a UK Government-backed, industry-supported scheme to help organizations protect themselves against common online threats. Certification of Cyber Essentials will demonstrate our commitment to preventing and protecting against the vast majority of common cyber attacks.

Try out VMware Cloud Disaster Recovery as a "pilot" before committing to a term subscription. Pilot deployments are charged at a fixed hourly rate and include 5 TiB of protected capacity and 25 protected virtual machines. Any usage beyond these limits will incur charges at the applicable per-TiB overage and per-VM on-demand rates. Once you are done with your evaluation, create a 1-year or 3-year committed term subscription to seamlessly convert this to a standard deployment and continue using the service.

VMware Transit Connect supports SDDC Group connectivity to Transit VPC. Customers can manually configure routes pointing to a VPC attachment in the same region.

Replication performance has been optimized such that replication throughput is up to 3X higher when using high bandwidth and low latency connectivity between the protected and recovery sites. This capability requires at least vSphere 7.0 Update 2 and vSphere Replication 8.4 at the recovery site.

Re-protect your virtual machines significantly faster after a planned recovery. The re-protection operation is especially quick when run shortly after the planned recovery such that the delta between the data on the source and recovery sites is not large. VMware Site Recovery now automatically starts tracking changes on the recovered virtual machine after failover. Only those changes are then replicated to the original protected site when re-protect is run and checksum comparisons can be completely avoided. This capability requires at least vSphere 7.0 Update 2 and vSphere Replication 8.4 in both sites.

System & Organization Control (SOC) Reports are independent third-party examination reports that demonstrate how VMware Cloud on AWS achieves key compliance controls and objectives to meet SOC 2, Type 2 requirements. The purpose of these reports is to demonstrate the design and testing of SOC 2 controls over a period of time.

VMware Transit Connect now provides network connectivity among SDDC Group members in multiple AWS regions. 

VMware Cloud on AWS dashboards allow you to track the capacity, cost, and inventory overviews of the VMware SDDCs. You can also track the monitoring of virtual machines and the utilization and performance of these SDDCs. This functionality is available in vRealize Operations as well..

Each host comes with self-encrypting NVMe disk-attached storage.

System & Organization Control (SOC) Reports are independent, third-party examination reports that demonstrate how VMware Cloud DR achieves key compliance controls and objectives to meet SOC 2, Type 1 requirements. The purpose of these reports is to help you and your auditors understand the controls established to support operations and compliance.

System & Organization Control (SOC) Reports are independent, third-party examination reports that demonstrate how VMware Cloud DR achieves key compliance controls and objectives to meet SOC 2, Type 2 requirements. The purpose of these reports is to demonstrate the design and testing of SOC 2 controls over a period of time.

NSX Advanced Firewall introduces NSX Distributed IDS/IPS for VMware Cloud on AWS SDDCs. NSX Distributed IDS/IPS aids in detecting attempts at exploiting vulnerabilities in applications. 

ISO 27017 provides guidance on the information security aspects of cloud computing, recommending the implementation of cloud-specific information security controls that supplement the guidance of the ISO 27002 and ISO 27001 standards.

Enabling Managed Service Providers to manage their customers.

The Migration Solution experience delivers a prescriptive, intuitive and integrated workflow that expedites large-scale, data center-wide migrations to VMware Cloud on AWS. Customers are led through the steps of assessing, building and migrating workloads to VMware Cloud on AWS, with relevant tools such as VMware vRealize Network Insight Cloud and VMware HCX and associated documentation such as on-boarding handbooks.

VMware SDDCs can be deployed and resized hourly for on-demand granularity. Longer-term reservation of hosts gives you up to 50% cost saving compared to on-demand hosts consumed over equivalent period. Host Reservations are available in 1 or 3 year terms. You pay upfront, but maximize your savings.

Enabling Managed Service Providers to download bills in an AWS consistent csv format for their managed SDDCs via API.

Layer 2 VPN - Improve throughput using new transport protocol.

ISO/IEC 27001:2013 specifies the requirements for establishing, implementing, maintaining and continually improving an information security management system within the context of the organization.

ISO 27018 is a code of practice that focuses on protection of personal data in the cloud. It is based on ISO information security standard 27002 and provides implementation guidance on ISO 27002 controls applicable to public cloud Personally Identifiable Information (PII). It also provides a set of additional controls and associated guidance intended to address public cloud PII protection requirements not addressed by the existing ISO 27002 control set.

VMware Tanzu Mission Control simplifies deployment and operation of Kubernetes, centralizing management and governance for many clusters and teams across multiple environments. With Tanzu Kubernetes Grid integrated with Tanzu Mission Control on VMware Cloud on AWS, customers can easily deploy and run Kubernetes on VMware Cloud on AWS with consistent operations and management across clusters and applications to support their infrastructure and app modernization.

End-to-End VM to VM MPLS path visibility for VMware Cloud on AWS Direct Connect using vRealize Network Insight

NSX Identify Firewall with Active Directory enables the protection for VDI/Horizon workloads.

Tool to estimate VMware Cloud on AWS environment size and total cost of ownership (TCO), based on user inputs.

Support for DNS Zones within VMware Cloud on AWS. Allows customer to map different on-premises, AWS and Public domains to different DNS servers.

Enabling Managed Service Providers to download utilization metrics for their managed VMware SDDCs.

Granular networking metrics, data, and telemetry for VMware Cloud on AWS.

Kickstart the VMware Cloud on AWS hybrid cloud experience with a time-bound, single-host configuration, at less than ½ the price of 2-host VMware Cloud on AWS offering. This new consumption option is designed for customers who want to prove the value of VMware Cloud on AWS in their environments before scaling to the production environment. Purchase hourly on-demand payable via US based credit cards or via VMware credit funds. Seamlessly scale-up at any time: At the completion of your 60 days time-bound offering, your single host SDDC will reset. However, you can easily scale-up to the minimum 2-host purchase and continue your cloud expansion without losing any of your data before the time period ends. Take advantage of capabilities that do not require multiple hosts within your VMware Cloud on AWS SDDC, such as cloud migration, evaluating disaster recovery as a service add-on, and hybrid linked mode.

As part of the developer center, users can now browse NSX-T APIs through API Explorer.

Flow Based Application Discovery with Machine Learning with improved scale for number of VMs and application scale supported

Attach external storage to a SDDC managed by the Managed Service Provider (MSP). The SDDC has three NFS datastores that are backed by the Managed Service Provider (MSP) cloud storage. This capability is currently offered through Faction as the Managed Service Provider (MSP).

Cloud Zone Insights helps maintain visibility of VMware Cloud on AWS consumption and capacity for the cloud zones that users have defined. Combining the power of vRealize Operations Cloud with vRealize Automation Cloud, Cloud Zone Insights bring users the information they need and the actions they need to take on the same platform to tighten up hybrid cloud operations.

The Cloud Management Assessment (CMA) is the next generation assessment offered by vRealize Operations Cloud.  CMA aligns with VMware Cloud on AWS and helps customers prepare for a move to VMware Cloud on AWS as well as guides them to how to best manage VMware Cloud on AWS, including assessing capacity needed, performance optimization and ROI.

Supporting SQL Clusters in Active Passive with shared disk configuration via SCSI 3 PR. This enables customers to cut down on the SQL Server licensing costs, by paying only for active SQL nodes.

With vRealize Operations Cloud and vRealize Operations, VMware Cloud on AWS customers can now measure, alert and report on the key configuration maximums for more predictable costing of their SDDC environments. vRealize Operations Cloud provides a rich set of configuration maximum metrics with limits (both hard limits and soft limits), calculates the provisioned resources and alerts if some of these key configuration limits are being breached. Keys areas of configuration maximums covered with this feature are: - Organization Maximums - SDDC Maximums - vCenter Maximums - vSAN Maximums.

VMware Cloud Partner Navigator support for vRealize Network Insight Cloud so MSPs can utilize a multi-tenant version for network visibility of VMware Cloud on AWS VMware vRealize Network Insight Cloud, now available through VMware Cloud Partner Navigator, takes a flexible and modular SaaS approach to delivering network visibility and analytics. This enables partners to help optimize and secure their tenant’s network infrastructure across hybrid and multi-cloud environments. The cloud-based solution provides a rapid path to monetizing new professional service offerings at scale—like security, network and application assessments—and new ongoing services, like quarterly security assessments or self-service assessments, reducing the time to market.

vCenter Cloud Gateway is a new on-premises virtual appliance that delivers a single logical view and hybrid management of both on-premises and VMware Cloud on AWS resources. It enables customers to manage VMware Cloud on AWS resources as extension of a on-premises data center. Customers can manage both on-premises and VMware Cloud on AWS resources from on-premises using vCenter Cloud Gateway. Simplifed set up for improved user experience with integrated configuration of vCenter Hybrid Linked Mode as part of the Cloud Gateway installation. With Cloud Gateway, customers do not need to configure Active Directory (AD/LDAP) in the cloud vCenter server instance or enter their on-premises vCenter admin credentials.

Simplifies hybrid resource management with a single inventory view between on-premises and VMware Cloud on AWS using vCenter Hybrid Linked Mode. Enhanced single logical view and hybrid management of resources by extending Hybrid Linked Mode to connect a VMware Cloud on AWS environment with multiple linked on-premises vCenter Server instances (external PSC topology).

Customers can use existing VMware purchasing vehicles -- Subscription Purchasing Program (SPP) and Hybrid Purchasing Program (HPP) credits to pay for VMware Cloud on AWS.

Stretch cluster is now supporting a 4-host configuration across multi-AZ. A customer who wants a 4-host configuration can choose to deploy it across AZs.

Expanding Hybrid Linked Mode support for on-premises vCenter Server versions: 6.0u3 or above.

Traditional Horizon Instant Clone maintains internal VMs, called parentVMs, for ease of operation. These parentVMs take up previous memory on each host, which adds to the cost of deployment. With smart provisioning, Horizon can now intelligently choose to provision instant clones with or without parentVMs, depending on the situation. Administrators also have the freedom to choose to provision all instant clones without parentVMs.

Improving application availability and performance by live migrating virtual machines between clusters in the same VMware Cloud on AWS SDDC.

AppVolumes makes it easy to deliver, update, manage and monitor applications and users across virtual desktop infrastructure (VDI) and published application environments.

Efficiently and easily deploy and manage multiple instances of VMware Cloud DR within thesame VMware Cloud organization and cloud region while continuing to use a single SaaS-simple cloud-based management console to administer and configure all these instances. Recover to multiple VMware Cloud on AWS SDDCs within the organization for increased scale and performance benefits.

Enabling live migration (vMotion) of virtual machines between SDDCs deployed in different regions using VMware HCX.

Further lower DR costs by using a two host SDDC cluster as a "pilot light" with VMware Cloud DR. Recover smaller sets of virtual machines cost-effectively by only creating a two host SDDC.

Purchase VMware Cloud DR through your preferred VMware Cloud on AWS Managed Services Provider (MSP) to benefit from your existing relationship with the MSP and leverage their unique value-added managed services in conjunction with VMware Cloud DR and VMware Cloud on AWS.

Allows provisioning of an SDDC in VMware Cloud on AWS via RESTful API.

Meet your PCI DSS compliance obligations for virtual machines protected by using VMware Cloud DR, under a shared responsibility model to maximize flexibility and control. Benefit from enhancements in security controls and operational processes undertaken by VMware to make VMware Cloud DR a PCI DSS 3.2.1 Level 1 Service Provider, the highest level of assessment available. Further reinforce your compliance status with VMware Cloud DR's end-to-end and daily data integrity checks, continuous DR health checks, and audit-ready, detailed DR reports. In the event of a DR incident, the protected virtual machines can be recovered to a PCI compliant environment in VMware Cloud on AWS.

Benefit from various enhancements and optimizations of VMware Cloud DR's scale-out cloud file system and achieve production-grade performance on your most critical virtual machines recovered on the VMware Cloud DR live mount datastore.

Virtual machine workloads can also access Amazon Elastic File System (EFS) for fully managed file service to scale the file-based storage automatically to petabyte scale with high availability and durability across multiple availability zones.

Cloud Native Storage is now utilized on VMware Cloud on AWS with Tanzu Kubernetes Grid Plus.

Users can deploy a large SDDC at deployment time with large size instances of NSX edge and vCenter.

VMware Horizon support for VMware Cloud on AWS enables customers to: - Easily add and extend on-premises desktop services without buying additional hardware - Co-locate virtual desktops or published application (remote desktop session) hosts near latency-sensitive applications in the cloud - Leverage elastic capacity as a cost-effective way to protect on-premises Horizon deployments or temporary needs.

Elastic DRS enables SDDC to scale out a cluster faster by adding hosts in parallel when CPU or memory thresholds are reached. Latest enhancement enables the cluster scale out faster by adding 12 hosts in parallel compared to 4 hosts previously supported.

Horizon Instant Clone Support is available for VMware Cloud on AWS. Customers can create clones from a base image in seconds to rapidly scale virtual desktop and app deployments.

VMware Horizon now offers full clone support for VMware Cloud on AWS. Customers can now rapidly scale Horizon desktops and apps to VMware Cloud on AWS. VMware Horizon for VMware Cloud on AWS delivers a seamlessly integrated hybrid cloud for virtual desktops and applications. It combines the enterprise capabilities of VMware Cloud on AWS, with the market-leading capabilities of VMware Horizon - for a simple, secure and scalable solution. Now, customers can easily extend desktop services to address on-demand capacity, protection of desktop workloads and AWS cloud co-location for latency-sensitive applications without buying additional data center resources.

Customers can now see all the historical notification and activity events in their vRealize Log Insight Cloud instance. In other words, all the historical events that you see in the Activity Log tab would also be available via vRealize Log Insight Cloud.

VMware Site Recovery now supports seamless resizing of virtual disks of protected virtual machines without disrupting the ongoing replications.

VMware Cloud Director service is a cloud-based service that makes VMware Cloud on AWS more accessible to a wider set of customers. VMware Cloud Director service enables cloud providers and MSPs to deliver proven multi-tenancy to VMware Cloud on AWS, enabling them to provision custom-sized slices of VMware Cloud on AWS for customers. This cloud-based solution helps cloud providers grow their customer base, accelerate business expansion, and increase business agility. VMware Cloud Director service instances are deployed in US West, Frankfurt and Tokyo, and are available to any SDDC within 150ms of latency.

Monitor heath, availability, capacity, and cost of Kubernetes clusters on VMC with vRealize Operations Cloud. With enhanced dashboards, reports, and alerts content, gain full-stack visibility on VMware Cloud, upstream Kubernetes to SDDC and Orgs.

VMware Cloud on AWS has expanded the custom CPU core capability to allow customers to choose a different number of physical cores per host depending on the host instance type. Specifically, a customer can enable more cores on a host instance type with a larger number of physical cores.

New out-of-the-box dashboards to cover seven key operational use cases: availability, performance, compliance, capacity, cost, configuration and inventory.

Import and/or export configuration data of the replications created in vSphere Replication for use cases such as migrating vSphere Replication configuration to a different host.

Application performance monitoring (APM) tool integration with AppDynamics, Datadog, Dynatrace, and NewRelic to observe the performance, availability, security, and user experience of software applications.

Customers can now run their business-critical operations on VMware Cloud on AWS. This means high-value technical support is very critical for delivering operational efficiency, risk reduction, and business continuity. VMware's new In-Product Support gives customers a truly unique and effortless support experience to meet the dynamic needs of their digital business. VMware's In-Product Support provides access to support channels and resources, including: **Intelligent Search:** Surfaces popular content based on the user's location and contextual usage in the product. Powerful search relevant content across VMware Knowledge Base Articles, Product Docs & Community Posts to answer questions without contacting support. **Chat with VMware Support:** Quickly address questions or issues with highly skilled VMware Support Engineers and Customer Support Representatives. Continue to search and interact with the product interface while chatting with the support. **Support Requests (SRs):** For situations that go beyond chat, customers can create and manage SRs or our Support Engineers can create SRs on their behalf via chat without leaving the product. **Ask the Community:** Engage and pose questions to actively moderated communities backed by passionate VMware Support Engineers and VMware Experts around the globe. **Service Health:** Review live status of VMware Cloud Services and receive important service notifications.

With 1-click, enable near real-time monitoring at a 20 second granularity for better observability of metrics and events in vRealize Operations Cloud. Persist data for up to 3-days to ensure historical evidence and observe data through dashboards and charts in near real-time.

Avoid integration overhead and ensure operational consistency with third-party tools. VMware Cloud on AWS has a broadening ISV technology ecosystem support with support for categories across data protection, DevOps, cloud migration, security and more. Technology partners validate that their solutions work with VMware Cloud on AWS. For a complete list of technology partners who have validated that their solution works with VMware Cloud on AWS, please visit [VMware Solution Exchange](https://marketplace.vmware.com/vsx/solutions/featured?product=3450,3429)

VMware Cloud on AWS service availability in AWS Asia Pacific (Hong Kong), enabling provisioning of VMware SDDCs in that region.

Monitor the health and performance of Horizon virtual desktops running on VMware Cloud on AWS.

Improved visibility of network relationships and metrics to monitor the health of network components to better correlate with potential infrastructure issues.

VMware Cloud on AWS service is now available in AWS Europe (Stockholm), enabling provisioning of VMware SDDCs in that region.

Take advantage of significantly discounted pricing for the VMware Site Recovery add-on by committing to 1-year or 3-year subscription terms.

VMware Cloud on AWS service availability in AWS Asia Pacific (Seoul), enabling provisioning of VMware SDDCs in that region.

VMware Cloud on AWS service availability in AWS Asia Pacific (Mumbai), enabling provisioning of VMware SDDCs in that region.

VMware Cloud on AWS service availability in AWS Europe (Ireland), enabling provisioning of VMware SDDCs in that region.

VMware Cloud on AWS service availability in AWS Europe (London). Enables provisioning of VMware SDDCs in that region.

VMware Cloud on AWS service availability in AWS Asia Pacific (Sydney), enabling provisioning of VMware SDDCs in that region.

VMware Cloud on AWS service availability in AWS Europe (Frankfurt), enabling provisioning of VMware SDDCs in that region.

VMware Cloud on AWS service availability in AWS Asia Pacific (Tokyo), enabling provisioning of VMware SDDCs in that region.

Enabling automated deployment of VMware SDDCs in VMware Cloud on AWS using AWS CloudFormation templates

VMware Cloud on AWS service availability in AWS Canada (Central), enabling provisioning of VMware SDDCs in that region.

VMware Cloud on AWS service availability in AWS Asia Pacific (Singapore), enabling provisioning of VMware SDDCs in that region.

Pricing API’s for integration with vRealize Automation Cloud to enable showback and chargeback use cases.

VMware Cloud on AWS service availability in AWS South America (Sao Paulo), enabling provisioning of VMware SDDCs in that region.

G-Cloud is a framework agreement published by the UK Crown Commercial Service. VMware Cloud on AWS is listed on the G-Cloud digital marketplace. Check out the digital marketplace portal below for a detailed overview of our service, support, relevant pricing documents, terms and conditions, and sales contacts.

VMware Cloud on AWS service availability in AWS US East (Ohio), enables provisioning of VMware SDDCs in that region.

VMware Cloud on AWS service availability in AWS Europe (Paris), enabling provisioning of VMware SDDCs in that region.

Cyber Essentials is a UK Government-backed, industry-supported scheme to help organizations protect themselves against common online threats. Certification of Cyber Essentials demonstrates our commitment to preventing and protecting against the vast majority of common cyber attacks.

VMware Cloud on AWS service availability in AWS US East (N. Virginia), enables provisioning of VMware SDDCs in that region.

VMware Cloud on AWS service availability in AWS US West (N. California), enables provisioning of VMware SDDCs in that region.

VMware Cloud on AWS service availability in AWS US West (Oregon), enables provisioning of VMware SDDCs in that region.

As a native solution to vRealize Operations Cloud, the management pack for AWS utilizes AWS Cloudwatch to collect operations data for AWS services including EC2, EBS, ASG, EMG, and others to provide pre-configured dashboards, alerts, and reports. This functionality is available in vRealize Operations as well.

Now you can configure the retention of replicas from multiple points in time.

FISC (The Center for Financial Industry Information Systems) is an organization under the Japanese Minister of Finance. FISC issued security guidelines that prescribe security measures for financial institutions in Japan. VMware Cloud on AWS aligns with FISC guidelines.

Manage your VMware Cloud on AWS instances in vRealize Operations Cloud using the CSP API token for authorization and communication. This functionality is available in vRealize Operations as well.

Enables customers to get fast responses to any question, product help, log defects, or get use case help.

European Banking Authority (EBA) outsourcing guidelines prescribe the governance framework and guidelines for financial institutions within the scope of the EBA's mandate when outsourcing internal functions to service providers (including cloud outsourcing).

The Fourteen Cloud Security Principles are a set of cloud security guidelines prescribed by the UK National Cyber Security Center (NCSC). VMware Cloud on AWS aligns with Cloud Security Principles and the objectives of these principles as part of NCSC Cloud Security Guidance.

Generate VMware Cloud on AWS assessment reports and compliance using the vSphere Security hardening guidelines, PCI, HIPPA, FISMA, ISO (and more) benchmarks to ensure compliance of VMware on cloud infrastructure from applications to objects that need to be compliant as per the cloud infrastructure rules for virtual machines. This functionality is available in vRealize Operations as well.

VMware Cloud Assembly is a multi-cloud, declarative blueprint orchestration and automation solution that enables infrastructure code for expedited infrastructure consumption and application delivery, while reducing manual effort and the need for cloud specific knowledge. The ability to share content and deployments among project teams also increases collaboration and agility.

VMware Code Stream Add-on Service provides release automation and continuous delivery to enable frequent, reliable releases of application and IT code for development and operations teams.

With vRealize Operations Cloud, you can determine how many hosts will be needed and the potential cost of a new VMware Cloud on AWS environment based on existing VMs in your environment, or for net new VMs that will be provisioned for the first time in VMware Cloud on AWS. This functionality is available in vRealize Operations as well.

Workload optimization provides support for moving virtual compute resources and their file systems dynamically across datastore clusters. Using workload optimization, you can rebalance virtual machines and storage across clusters, relieving demand on an overloaded individual cluster, and maintaining or improving cluster performance. This functionality is available in vRealize Operations as well.

VMware Service Broker Add-on Service is an aggregator of services across multiple cloud platforms, as well as, a single access point for consumption (catalog) with guardrails for a range of services, including Cloud Assembly, Kubernetes Helm charts, AWS Cloud Formation and vRealize Orchestrator workflows.

Completing Cloud Security Alliance (CSA) Consensus Assessments Initiative Questionnaire (CAIQ). CAIQ provides industry-accepted ways to document what security controls exist in IaaS, PaaS and SaaS offerings.

This enables the customer to utilize one Direct Connect link with VPN as Standby. To use this, Direct Connect Private VIF can be configured with IPSEC VPN as Standby for non-ESXi and non-vMotion traffic.

With support for Tanzu Kubernetes Grid, customers can monitor Kubernetes clusters on VMware vRealize Operations Cloud using the VMware vRealize Operations management pack for container monitoring. This functionality is available in vRealize Operations as well where customers need to go to marketplace and download and configure the management pack from marketplace

Deferred AWS account connection for Single-Host SDDCs, enabling provisioning of Single-Host SDDCs without connecting to an AWS account for up to 14 days.

Pay for VMware Cloud on AWS usage with a Credit Card.

Contextual Help delivers in-service page sensitive help menu, with searchable list of questions.

Delivers simple automation script that discovers your on-premises VM templates and uploads them into your SDDC.

Using two factor authentication systems to login to the VMware Cloud on AWS Console (console.cloud.vmware.com).

Customers can now leverage a more flexible permissions model with vCenter Server in VMware Cloud on AWS. This capability enables cloud administrators to create custom roles and assign more granular permissions to users and groups. These permissions can be assigned to users and groups globally or for specific vCenter objects.

The ability to select the number of physical cores per host during the time of provisioning, enables customers to optimize their environments for applications that are licensed per physical core.

Enables customers to run development and test and non-business critical workloads on VMware Cloud on AWS.

Enabling customers to delay AWS account linking for Single Host SDDC.

Equal Cost Multi Pathing (ECMP) enables customers to scale the bandwidth across multiple links. With this release, multiple route-based IPSEC VPN tunnels can be used with ECMP to provide additional bandwidth and connectivity resiliency to on-premises, AWS VPCs and to AWS TGW.

The developer center is integrated into the VMware Cloud on AWS service console giving automation experts, DevOps engineers and developers a central portal to gain access to detailed API information, software development kits, code samples and command line interfaces. It is now easy to learn and execute the VMware Cloud on AWS Service RESTful APIs with the Interactive API Explorer. Customers can quickly integrate their workflows and partner solutions with VMware and community code samples for common development languages - The Open Source software development kits (SDK's) and links to getting started guides and documentation will offer a better developer experience to VMware Cloud features - Automation experts and DevOps engineers can seamlessly tie their business workflows into VMware Cloud with a selection of command line interfaces.

Improves set-up speed and consistency with usability improvements for Layer 3 IPSec VPN set-up through an easy to use configuration template.

VMware Cloud on AWS now enables customers to select another host instance type, i.e. the i3EN.metal instance.

VMware vRealize Network Insight Cloud is a SaaS service that can help you fast-track application security and networking across private, hybrid and public clouds. It accelerates micro-segmentation deployment, minimizes business risk during application migration, enables visibility across virtual and physical networks and provides operational views to manage and scale VMware NSX deployments. It is also available as an on-premises perpetual product, VMware vRealize Network Insight. Customers use vRealize Network Insight Cloud to map app dependencies for micro-segmentation planning or application migration planning. Customers can troubleshoot app connectivity issues across virtual, physical and multi-cloud network infrastructure. Support for VMware Cloud on AWS, provides visibility into configuration and flows, including all IPFIX flows. Paths can now be traced between VMs running in VMware Cloud on AWS, on premises in vSphere, or with EC2 instances running in AWS. In addition, it provides complete overlay-underlay visibility and supports Netflow and sFlow. It includes integration with leading firewall and networking vendors such as F5, Palo Alto Networks, Cisco ASA, Cisco ACI, and more. Customers can simplify NSX operations with intuitive UI and natural language search to quickly pinpoint issues, scale across multiple NSX managers, proactively detect misconfiguration errors and troubleshoot as well as get best practices recommendations.

Automating configuration of your VMware SDDC networking and security using RESTful APIs through public and private endpoints.

VMware HCX is a SaaS service that provides application migration and infrastructure hybridity, and it enables large-scale, seamless, bi-directional workload portability between on-premises and VMware Cloud on AWS with VMware HCX. Migrations can be done live and in bulk (warm and cold) between various vSphere versions on-premises and VMware Cloud on AWS. It creates multi-site, high-performance, secure, WAN-optimized interconnects that stretch networks, without having to change IP addresses and includes policy-based traffic engineering, intelligent routing and automated VPN set up. VMware HCX enables cloud onboarding without retrofitting source infrastructure supporting migration from vSphere 5.0+ to VMware Cloud on AWS.

VMware vRealize Log Insight Cloud Add-on Service provides unified visibility into infrastructure and application logs across VMware Cloud on AWS, AWS, and on-premises SDDC.

VMware User Environment Manager offers personalization and dynamic policy configuration across any virtual, physical and cloud-based Windows desktop environment.

Extend your existing on-premises DR strategy to the cloud by protecting some on-premises workloads to VMware Cloud on AWS using VMware Site Recovery while simultaneously protecting other workloads managed by the same on-premises vCenter server to a secondary on-premises DR site.

Reduce DR costs and operational complexity with support for fan-in and other multi-site topologies to pair a single VMware Cloud on AWS SDDC with multiple on-premises sites and/or other VMware Cloud on AWS SDDC(s) for disaster recovery purposes.

Business continuity for mission-critical workloads: Expand and simplify existing disaster recovery operations with on-demand site protection built on proven VMware orchestration, automation and replication technologies – delivered by VMware Site Recovery, an add-on service. Based on industry leading, enterprise-grade recovery plan automation (VMware Site Recovery Manager) and native hypervisor-based replication capabilities (VMware vSphere® Replication) that are trusted by thousands of customers. Support site protection between on-premises to VMware Cloud on AWS or between two VMware Cloud on AWS environments running in separate AWS availability zones or across regions with a flexible architecture. Reduce secondary site costs, accelerate time to protection and simplify DR operations: - Lower capital costs by eliminating need for a secondary DR site and adopting granular, on-demand protection - Increase business resiliency by protecting Tier 1 apps as well as cost-effectively expanding protection to Tier 2/3 applications, without application re-architecture - Accelerate time to protection by removing complexities with the same operating environment from on-premises to cloud - Support site protection between on-premises to VMware Cloud on AWS or between two VMware Cloud on AWS environments running in separate AWS -- availability zones, or regions, with a flexible architecture - Streamline operations with automated orchestration and simple failover and failback built into a familiar management tool enhanced with an HTML5 user interface - Increase confidence and disaster readiness with non-disruptive, on-demand testing available anytime - Available as an add-on service

Accelerate time to protection by leveraging previously replicated base disks of virtual machines as the seed for new replication.

Automates configuration of your VMware SDDC using PowerCLI scripts

Transport VMware Site Recovery replication traffic over AWS Direct Connect Private VIF.

Automates configuration of your VMware SDDC using PowerCLI 10 scripts

VMware Site Recovery is compatibile with multiple versions of vCenter Server, allowing you to protect sites running vCenter Server versions 6.7, 6.5, and 6.0U3.

Optimize resource management of your DR cluster, by automating cluster scaling with Elastic DRS after a DR test or failover.

vRealize Automation support for VMware Cloud on AWS provides automation of workload provisioning and deployment with unified control and management.

VMware vRealize Code Stream support is enabled on VMware Cloud on AWS.

VMware Cloud Marketplace enables customers to discover and deploy validated third-party solutions on VMware Cloud on AWS.

Ability to spread a specific group of virtual machines across multiple hosts to prevent simultaneous failure of those virtual machines in the event that a host fails.

Delivers live migration (VMware vSphere vMotion) of workloads between on-premises and VMware Cloud on AWS. This will require a customer to have vSphere 6.0U3 or above version on-premises, AWS Direct Connect (Private VIF) and NSX L2VPN. Customers can perform vMotion between on-premises and VMware Cloud on AWS using UI (which requires vCenter Hybrid Linked Mode to be connected) or using API and PowerCLI 2

vRealize Network Insight helps you fast-track application security and networking across private, hybrid and public clouds. It accelerates micro-segmentation deployment, minimizes business risk during application migration, enables visibility across virtual and physical networks and provides operational views to manage and scale VMware NSX deployments. This offer is also available as a SaaS Service, VMware vRealize Network Insight. Customers can use Network Insight to map app dependencies for micro-segmentation planning or application migration planning. Customers can also troubleshoot app connectivity issues across virtual, physical and multi-cloud network infrastructure. With support for VMware Cloud on AWS, customers gain visibility into configuration and flows, including all IPFIX flows. Paths can now be traced between VMs running in VMware Cloud on AWS, on-premises in vSphere, or with EC2 instances running in AWS. In addition, it provides complete overlay-underlay visibility and supports Netflow and sFlow. Customers can simplify NSX operations with intuitive UI and natural language search to quickly pinpoint issues, scale across multiple NSX managers, proactively detect misconfiguration errors and troubleshoot as well as get best practices recommendations.

vRealize Operations support for VMware Cloud on AWS allows organizations to plan, manage and scale VMware SDDC across private cloud and VMware Cloud on AWS with intelligent operations, from applications to infrastructure.

vRealize Orchestrator support for VMware Cloud on AWS simplifies the automation of complex IT tasks.

VMware SDDCs can be provisioned in a specific AWS Region and Availability Zone.

VMware Cloud on AWS customers can now migrate their existing RedHat OpenShift subscription to their VMware Cloud on AWS SDDCs version 1.12 or above. Starting with RedHat OpenShift 4.6, customers can enable their existing OpenShift subscriptions for VMware Cloud on AWS support and leverage the OpenShift on VMware Cloud on AWS deployment guide on bringing up an OpenShift 4.6 environment. Please see enabling subscription link and deployment guide link below under Resources.

vSphere virtual machines on a failed host are automatically restarted on another host within the VMware SDDC cluster.

VMware Tanzu Observability by VMware support for VMware Cloud on AWS allows you to visualize, alert upon, and troubleshoot applications running on VMware Cloud on AWS. It provides an open API platform supporting over 80 integrations and pre-packaged dashboards from all elements of your stack, spanning open-source, commercial, and custom data sources.

VMware Cloud on AWS service availability in AWS Europe (Milan), enabling the provisioning of VMware SDDCs in that region.

"Runtime SDDC Scale up" feature enables customers to up-size their SDDCs to Large sizes after deployment as part of day-2 operations.

This service dynamically adjusts the segment size during the TCP connection handshake between end points across the Network Extension, which optimizes the average packet size to reduce fragmentation and lower the overall packet rate.

This service creates multiple tunnel flows for both Interconnect and Network Extension traffic to follow multiple paths across the network infrastructure from the source to the destination data centers. The service then intelligently forwards the traffic over the optimal path and dynamically switches between tunnels depending on traffic conditions.

Enables customers to create more than one SDDC in an organization. Each SDDC must be connected to an AWS account.

Zero RPO high availability is now available for enterprise applications virtualized on vSphere across AWS Availability Zones (AZ), leveraging multi-AZ stretched clusters. This enables you to: - Significantly improve your application's availability without needing to architect it into your application. - Stretch an SDDC cluster across two AWS AZs within a region, which means if an AZ goes down, it is simply treated as a vSphere HA event and the virtual machine is restarted in the other AZ. - 99.99% infrastructure availability provided by stretched clusters.

You can enable the network encryption of the DR replication traffic data for new and existing replications to enhance data transfer security. When the network encryption is enabled for a replication, an agent on the source encrypts the replication data on the source ESXi host and sends it to the vSphere Replication appliance on the target site. The vSphere Replication server decrypts the data and sends it to the target datastore.

Enabling smaller configuration purchase option at a low, predictable price for fast and flexible consumption. Ability to purchase a three host configuration of VMware Cloud on AWS. Dedicated single-tenant infrastructure delivered on AWS EC2 elastic bare-metal infrastructure.

Mobility groups enable you to structure migration waves based on business requirements. You can assemble one or more VMs into logical sets to execute and monitor migrations as a group. When combined with the vRealize Network Insight integration (available as a separate license), mobility groups give you the flexibility to manage migrations for sets of VMs by application, network, pod, or other aspects of your environment.

Customers can scale capacity by adding additional stretched clusters to a stretched cluster SDDC deployed on i3.metal (On – Demand only) instances. All clusters in the SDDC must be stretched clusters.

Reliably and cost-effectively protect your vSphere virtual machines (VMs) to the cloud and recover them rapidly to VMware Cloud on AWS using VMware Cloud Disaster Recovery – an easy-to-use, on-demand disaster recovery (DR) solution, delivered as SaaS, with cloud economics. VMware Cloud Disaster Recovery helps lower the cost of DR by storing backups in cloud storage in a highly efficient manner and allowing you to pay for recovery host capacity only when you want to conduct a DR test or perform a failover. Rapid recovery is possible at scale because of the "live mount" capability which enables fast power-on of the recovered VMs in VMware Cloud on AWS without a time-consuming data rehydration process. A full-featured SaaS-simple DR orchestrator is built-in to minimize the need for manual effort during recovery. The service is tightly integrated with VMware Cloud on AWS for efficient recovery and a consistent operational experience without error-prone VM format conversions. End-to-end and daily data integrity checks of the backups and continuous DR health checks of the DR plans ensure a high level of reliability and minimize recovery risk. VMware Cloud Disaster Recovery also supports a deep history of immutable snapshots for effective recovery from ransomware attacks- a fast-emerging cause of DR incidents.

RAV uses a combination of VMware replication and vMotion technologies for large-scale, parallel migrations with no service interruption with the ability to specify a switchover window. It means you can now create a migration schedule during a large set of VMs (200 at this time), which can move live (without any downtime) to VMware Cloud on AWS at the scheduled migration window.

Cost-effectively recover virtual machines with large storage capacity requirements using i3en.metal clusters as the recovery target.

For VMs migrated using VMware HCX from a source location to VMware Cloud on AWS, this capability enables the cloud-side VMs on the HCX extended network to route traffic optimally through the cloud-side first-hop gateway instead of being routed through the source environment router. This helps you avoid a hairpin or trombone effect. Policy routes will allow control over which traffic is routed locally using the cloud gateway versus traffic through the source gateway.

vCenter servers within an SDDC Group can now be linked together to manage all the resources from a single vSphere client interface. VM operations and migrations can be performed on the resources managed across all the vCenter Servers. Additionally, tags that are created on any of the vCenters within the group are automatically synced across all the other vCenters in the group.

Multi-Edge SDDC capability enables customers to add network capacity for north-south network traffic. Customers can linearly scale bandwidth for migration and workload communication over VMware Transit Connect.

Users can file a service request for a defect or to get help with a specific use case.

VMware Cloud on AWS is now a RedHat Certified Cloud Service Provider for RedHat Enterprise Linux. This certification enables customers to bring their existing RHEL licenses to VMware Cloud on AWS with RedHat support. This certification only applies to RHEL and is not applicable to OpenShift. In order to enable your existing RHEL licenses for VMware Cloud on AWS, please follow the instructions in [here](https://access.redhat.com/public-cloud) and Enable Subscriptions under Bring Your Own Golden Image.

Customers can establish connectivity to on-premises/colo data centers via their AWS Direct Connect Gateway. VMware Transit Connect enables customers to centralize connectivity for SDDC Group to Direct Connect Gateway.

Partition placement groups increase the availability of applications by placing hosts in different logical partitions that do not share the same underlying hardware. Partition placement groups automatically deploy hosts across as many different partitions as there are available within an AZ. Each partition within a placement group has its own set of racks, and each rack has its own network and power source. No two partitions within a placement group share the same racks, which allows for isolating host failures within an SDDC cluster.

SDDC groups enable customers to organize SDDCs together and manage them as a single logical entity. This feature leverages VMware Transit Connect to connect SDDCs within a group.

Per Microsoft’s 10/1/2019 licensing changes, VMware supplies Windows Server and Microsoft SQL Server pre-packaged OVF instances for rapid deployment on VMware Cloud on AWS. VMware also supplies ISO binaries to allow a customer to create their own instances. Once licensed, customers can deploy an unlimited number of instances on the ESXi cluster by cluster basis.

VMware Transit Connect provides network-level connectivity among SDDC group members. It leverages the AWS Transit Gateway (TGW) to enable any-to-any connectivity between SDDC group members in a single AWS region. It also enables network connectivity to AWS VPCs and on-premises/colo data centers (via a Direct Connect Gateway).

VMware NSX Advanced Firewall ensures Layer 7 security for SDDCs. It introduces NSX Distributed Intrusion Detection System (IDS), Identity Firewall, and Distributed Firewall with Layer 7 application identity and FQDN filtering capabilities to VMware Cloud on AWS.

The new audit events for VMware Cloud Services dashboard and content pack in vRealize Log Insight Cloud enables VMware Cloud on AWS organization owners to monitor VMware Cloud Services audit events triggered by activity with user logins, user management, API Tokens, and OAuth applications.

Now you can automate VM storage policy settings for VMware Cloud on AWS clusters to meet VMware Cloud on AWS SLA requirements.

VMware vRealize Automation Cloud is a cloud-delivered service that enables self-service cloud environments. With vRealize Automation Cloud, customers can increase agility, productivity and efficiency through self-service automation, by reducing the complexity of their IT environment, streamlining IT processes and delivering a DevOps-ready automation platform. To enable frictionless onboarding to vRealize Automation Cloud, VMware Cloud on AWS customers are now able to activate a vRealize Automation Cloud trial directly through the VMware Cloud on AWS console. This trial can be activated from any VMware Cloud on AWS SDDC by navigating to the SDDC’s Add-Ons tab. From the Add-Ons tab, customers can click activate, which will begin a 45-day free trial of the vRealize Automation Cloud service. After activation, all vRA Cloud service features and operations will be enabled from the vRA Cloud console.

Now enterprises can take advantage of a smaller configuration purchase option at a low, predictable price for fast and flexible consumption for production environments. Organizations have the ability to purchase a two-host configuration of VMware Cloud on AWS and use dedicated single-tenant infrastructure delivered on AWS EC2 elastic bare-metal infrastructure.

VMware SD-WAN by VeloCloud enables customers to establish IPSec tunnel from VeloCloud SD-WAN Gateway to VMware Cloud on AWS SDDC.

There is now support for jumbo frames (9000 byte MTU) on AWS Direct Connect. This enables customers to utilize jumbo frames to improve end to end performance for their Direct Connect traffic.

VMware vRealize Operations Cloud is a cloud-delivered service that allows customer's infrastructure and operations teams to manage the enterprises' VMware Cloud environment, whether in the customer's own on-premises software-defined data center ("SDDC") or in the public cloud environment, such as VMware Cloud on AWS.

Enables scaling of capacity by adding and removing hosts in VMware SDDC clusters.

Automating VMware SDDC clusters scaling and resource optimization based on user requirements.

Ability to inhibit DRS initiated vMotion for load balancing purposes. Useful for vMotion sensitive applications such as, large transactional databases, real-time transaction processing applications, etc.

Minimum cluster size is 2 hosts. Customers can add capacity up to 16 hosts per cluster. Dedicated single-tenant infrastructure delivered on AWS i3 EC2 elastic bare-metal infrastructure.

VMware SDDCs are deployed with dedicated, single-tenant AWS EC2 I3.metal bare-metal hosts. Each host has 2 x Intel Xeon E5 2686 v4 @ 2.3GHz CPUs, 36 cores, 512GiB RAM and ~14 NVMe attached flash storage (3.6 TB cache plus 10.7 TB raw capacity tier). AWS infrastructure is based on the latest-generation Storage Optimized High I/O instances, featuring low-latency Non-Volatile Memory Express (NVMe)-based SSDs.

Customers can scale capacity by adding additional clusters to the SDDC.

Failed hosts in a VMware SDDC are automatically detected by VMware and replaced with healthy hosts.

Customers can now see all the historical notification events in their Activity Log tab. Example notification events include maintenance notifications, EDRS add host notifications, detailed SDDC upgrade notifications, DRaaS notifications, etc. This new feature would enable customers to audit historical notification events in the UI.

Starting with Horizon release 2103, you can use a low-cost PostgreSQL database to log all events. This open-source database option is useful for the customers in reducing their Virtual Desktop Infrastructure TCO

Expand your DR strategy to include protection of your virtual machines running in VMware Cloud on AWS in addition to those running in your on-premises data center. Confidently migrate your most critical virtual machines to VMware Cloud on AWS with the knowledge that they can be easily protected to another AWS region using VMware Cloud Disaster Recovery.

VMware integration with AWS Commerce Platform will enable multiple sellers of record within a single VMware Cloud on AWS defined organization (org). Customers who purchase from AWS can now have a VMware seller account that gives them the opportunity to purchase and run any cloud service within VMware that is compatible with VMware Cloud on AWS in a single org. The same is applicable when they have VMware as the seller and they want to add AWS as the new seller in the same org.

The new VMware Cloud on AWS PCI compliant environment will provide a standardized architecture based on the Payment Card Industry (PCI) Data Security Standard (DSS) v3.2.1. The VMware Cloud on AWS PCI DSS offering enabled customers to leverage this secure platform for storing, processing, and transmitting credit card information.

With Tanzu Application Service support on VMware Cloud on AWS, you can now seamlessly migrate your existing Tanzu Application Service deployments to VMware Cloud on AWS. You can use your existing on-premises Tanzu Application Service licenses when running Tanzu Application Service on VMware Cloud on AWS.

Virtual machine workloads can also access Amazon Elastic File System (EFS) for fully managed file service to scale the file-based storage automatically to petabyte scale with high availability and durability across multiple availability zones.

Enabling automated deployment of VMware SDDCs in VMware Cloud on AWS using AWS CloudFormation templates

Deferred AWS account connection for Single-Host SDDCs, enabling provisioning of Single-Host SDDCs without connecting to an AWS account for up to 14 days.

Enabling customers to delay AWS account linking for Single Host SDDC.

The seed checkpoint feature provides recoverable migration progress with checkpoint seed data. With this capability, users have the option to retain replica disks at the target datastore if a migration is failed or canceled. Seed checkpoints enable VMware HCX to reuse the disks on the target for seeding replication data, avoiding the need to transfer all the data again.

Customers can now access Application Transformer for VMware Tanzu through the VMC Console, where they can download and self-deploy the Application Transformer appliance into their VMware Cloud SDDC. Once deployed and configured, Administrators can now use Application Transformer to focus and accelerate their application modernization journey, enabling key workflows that remove the need to manually discover and analyze every workload, automatically building application topologies with all included application dependencies, and ultimately shortening the time needed for planning and execution. After discovering and analyzing the applications within the environment, Application Transformer also offers the ability to containerize a variety of processes and applications, generating OCI-compliance images and deployable Kubernetes YAML manifests, providing administrators the required tools to help their organization begin executing on re-platforming traditional applications.

This capability helps with migration of non-VMware workloads (KVM and Hyper-V) to VMware Cloud on AWS

The Migration Solution experience delivers a prescriptive, intuitive and integrated workflow that expedites large-scale, data center-wide migrations to VMware Cloud on AWS. Customers are led through the steps of assessing, building and migrating workloads to VMware Cloud on AWS, with relevant tools such as VMware vRealize Network Insight Cloud and VMware HCX and associated documentation such as on-boarding handbooks.