Promo Center

50% off for new user

Direct Mail-46% off

Learn More

Service Notices

Stay informed of the latest notifications and changes to Alibaba Cloud services.

RSS Feed
Notice about Alibaba Cloud enabling RAM user MFA for accounts by defaultOthers

Change description: Alibaba Cloud is committed to improving the security of cloud services and spares no effort in safeguarding user accounts and assets. Improper credential keeping can result in the leaks of logon passwords of Resource Access Management (RAM) users, which may in turn compromise resource security, incur unexpected fees, and even subject users to ransomware attacks. Multi-factor authentication (MFA) is used to prevent unauthorized logons by using leaked passwords. Starting from March 17, 2025, Alibaba Cloud RAM will gradually require all users to perform MFA multi-factor authentication when logging in with a password. Change method: When the change takes effect, if the configuration [MFA must be used during logon] for the RAM user's Security Preference in your account is set to [Apply User-specific Configuration] or [Required Only for Unusual Logon], it will be updated to [Enable for All Users]. As a result, all RAM users under the account must bind the MFA device for secondary authentication when using the password to log on to the console. For more information about configurations, see topics What is multi-factor authentication? and Manage the security settings of RAM users. Effective Scope: all Alibaba Cloud accounts except the following Alibaba Cloud accounts that use RAM for the first time at and after 10:00 a.m. July 15, 2024. Alibaba Cloud accounts whose MFA for RAM User Security setting is already [Enable for All Users] (The change applies but these accounts are not affected because their setting is already Enable for All Users.) Alibaba Cloud accounts that have enabled user single sign-on (SSO) for their RAM users (The change applies but these accounts are not affected because SSO does not require MFA.) Release method: The change will be released in batches by account from March 17, 2025. You will be reminded of the specific time of change by email and prompts on the logon page two weeks in advance. New rules for associated configuration: After the change takes effect, you may change the [MFA for RAM User Logons] setting after a thorough evaluation of security risks. At the same time, the following new rules will be issued at 10:00 a.m. March 17, 2025: If the [MFA must be used when logging in] configuration item is selected [Required Only for Unusual Logon], all RAM users must bind an MFA device at the next logon to ensure that MFA can be performed during unusual logons. If the [MFA must be used when logging in] configuration item is selected [Apply User-specific Configuration], all RAM users with AdministratorAccess system policy must bind an MFA device and pass an MFA during logons. The MFA setting in the logon configurations of these RAM users becomes invalid. Enabled by default to allow email as a method of multi-factor authentication. Before this change is released, you are encouraged to change the setting to [Enable for All Users] and notify your RAM users to bind an MFA device for higher security. Virtual MFA devices, Passkeys(include security keys), and Emails are supported as MFA devices. RAM users are now supported to use Passkey to log in, but it is still recommended that users bind other multi-factor authentication method as backup. If you have any questions or need further assistance, feel free to submit a ticket or call our hotline for technical support. Thank you for your understanding and trust.
OSS Update Notice: Policy Change in Calling Data API Operations via the Default Public Domain NameService Upgrade

To continuously improve the security and compliance management of Alibaba Cloud Object Storage Service (OSS), the following adjustment will be implemented starting from 00:00:00 (UTC+8) on March 20, 2025. Read the following details carefully and modify your application configurations to ensure business continuity. Details: ● For users who activate OSS after 00:00:00 (UTC+8) on March 20, 2025, the request to call data API operations using default public domain names (Example: bucketname.oss-cn-region.aliyuncs.com) for resources stored within buckets located in regions inside the Chinese mainland will be blocked. The error code "PublicEndpointForbidden", HTTP status code 400, and EC code 0048-00000401 will be returned. ● Users who have activated OSS before 00:00:00 (UTC+8) on March 20, 2025 are not affected. ● Internal domain names are not subject to this restriction. The following table describes the list of existing data API operations. This policy change also applies to new data API operations. ListObjects, ListObjectsV2, ListObjectVersions, PutObject, GetObject, CopyObject, AppendObject, DeleteObject, DeleteMultipleObjects, HeadObject, GetObjectMeta, PostObject, RestoreObject, CleanRestoredObject, SelectObject, CreateSelectObjectMeta, InitiateMultipartUpload, UploadPart, UploadPartCopy, CompleteMultipartUpload, AbortMultipartUpload, ListParts, PutSymlink, GetSymlink, PutObjectAcl, GetObjectAcl, PutObjectTagging, GetObjectTagging, DeleteObjectTagging, PutLiveChannel, GetLiveChannelInfo, ListLiveChannel, DeleteLiveChannel, GetLiveChannelStat, GetLiveChannelHistory, GetVodPlaylist, PostVodPlaylist, PostDataLakeStorageFileOperation, DoMetaQuery, WriteGetObjectResponse, ProcessImm, PostProcessTask, get_image_info, get_image_infoexif, get_image_exif, OptionObject Recommendation: ● If you want to call the preceding data API operations over the Internet, please use a custom domain name. For more information, visit https://www.alibabacloud.com/help/en/oss/user-guide/map-custom-domain-names-5. The preceding changes may affect your workflow. If you have questions or need technical assistance or further instructions, contact us by submitting a ticket or calling the customer hotline. Thank you for your understanding and cooperation!
Announcement of Price Reduction for Selected Alibaba Cloud ECS(Elastic Compute Service )InstancesService Upgrade

【Content】 Alibaba Cloud will reduce the monthly and one-year official website discount prices for its Elastic Compute Service (ECS) products deployed in Mainland China regions. Please note that this price adjustment applies only to eligible orders initiated after the Effective Date for the above-mentioned monthly and one-year terms, including new purchases, renewals, and adjustments of configurations (upgrades or downgrades). Alibaba Cloud reserves the right of final interpretation for this price adjustment. The official website discount prices for the ECS instance families ecs.c7, ecs.g7, ecs.r7, ecs.c7a, ecs.g7a, ecs.r7a, ecs.u1, and ecs.e available in Mainland China regions will be adjusted. After the adjustment takes effect, new purchases and renewals based on the official website discount prices will be billed according to the new prices. Scope of Adjustment: Monthly and one-year discount prices for Mainland China regions (International Site), with discounts reaching up to a maximum of 62%. The products involved in the adjustment of the official website discount prices (in the form of discounts) are detailed in the table below. The final effective price shall be based on the product pricing displayed on the official website. Note: The term "official website discount price" in the text refers to the price at which the product is sold on the official website, which is the catalog price with an additional discount applied.
Products Categories
phone Contact Us

Chat now with Alibaba Cloud Customer Service to assist you in finding the right products and services to meet your needs.

alicare alicarealicarealicare