Managed Services¶
Game Warden provides three types of managed services to simplify your deployment and reduce operational overhead:
These include commonly used tools such as:
- HashiCorp Vault
- Istio
Game Warden may pull container images from Iron Bank, a container image repository approved by the Department of War (DoW), and run them within your Kubernetes environment.
As a customer, you are not responsible for supplying container images or remediating Common Vulnerabilities and Exposures (CVEs) for managed services. Game Warden handles this responsibility through internal policies, manual updates, and automated CI/CD pipelines.
AWS services¶
Game Warden is hosted on AWS GovCloud (US-East) and supports all AWS services authorized for DoW Impact Level environments (IL2-IL6) and FedRAMP.
Source: https://aws.amazon.com/compliance/services-in-scope/DoD_CC_SRG/ — last synced 2026-04-27
| Service | IL2 | IL2 GovCloud |
|---|---|---|
| Amazon AppFlow | ✅ | |
| Amazon API Gateway | ✅ | ✅ |
| Amazon Athena | ✅ | ✅ |
| Amazon Aurora MySQL | ✅ | ✅ |
| Amazon Aurora PostgreSQL | ✅ | ✅ |
| Amazon Bedrock | ✅ | ✅ |
| Amazon Chime SDK | ✅ | ✅ |
| Amazon Cloud Directory | ✅ | ✅ |
| Amazon CloudFront [excludes content delivery through Amazon CloudFront Embedded Point of Presences] | ✅ | |
| Amazon CloudWatch | ✅ | ✅ |
| Amazon CloudWatch Logs | ✅ | ✅ |
| Amazon Cognito | ✅ | ✅ |
| Amazon Comprehend | ✅ | ✅ |
| Amazon Comprehend Medical | ✅ | ✅ |
| Amazon Connect | ✅ | ✅ |
| Amazon Data Firehose | ✅ | ✅ |
| Amazon DataZone | ✅ | |
| Amazon Detective | ✅ | ✅ |
| Amazon DevOps Guru | ✅ | |
| Amazon DocumentDB (with MongoDB compatibility) | ✅ | ✅ |
| Amazon DynamoDB | ✅ | ✅ |
| Amazon EC2 Image Builder | ✅ | ✅ |
| Amazon Elastic Block Store (EBS) | ✅ | ✅ |
| Amazon Elastic Compute Cloud (EC2) | ✅ | ✅ |
| Amazon Elastic Container Registry (ECR) | ✅ | ✅ |
| Amazon Elastic Container Service (ECS) | ✅ | ✅ |
| Amazon Elastic File System (EFS) | ✅ | ✅ |
| Amazon Elastic Kubernetes Service (EKS) | ✅ | ✅ |
| Amazon ElastiCache | ✅ | ✅ |
| Amazon Elastic MapReduce (EMR) | ✅ | ✅ |
| Amazon EventBridge | ✅ | ✅ |
| Amazon FinSpace | ✅ | |
| Amazon Forecast | ✅ | |
| Amazon FSx | ✅ | ✅ |
| Amazon GuardDuty | ✅ | ✅ |
| Amazon Inspector | ✅ | ✅ |
| Amazon Inspector Classic | ✅ | ✅ |
| Amazon Kendra | ✅ | ✅ |
| Amazon Keyspaces (for Apache Cassandra) | ✅ | ✅ |
| Amazon Kinesis Data Streams | ✅ | ✅ |
| Amazon Kinesis Video Streams | ✅ | |
| Amazon Lex | ✅ | ✅ |
| Amazon Location Service | ✅ | |
| Amazon Macie | ✅ | |
| Amazon Managed Service for Apache Flink | ✅ | ✅ |
| Amazon Managed Streaming for Apache Kafka (Amazon MSK) | ✅ | ✅ |
| Amazon Managed Service for Prometheus | 3PAO Assessment | |
| Amazon MemoryDB | ✅ | ✅ |
| Amazon MQ | ✅ | ✅ |
| Amazon Neptune | ✅ | ✅ |
| Amazon OpenSearch Service | ✅ | ✅ |
| Amazon Pinpoint and End User Messaging | ✅ | ✅ |
| Amazon Polly | ✅ | ✅ |
| Amazon Q Business | ✅ | |
| Amazon Q Developer in chat applications [formerly AWS Chatbot] | ✅ | |
| Amazon Quick Suite [formerly Amazon QuickSight] | ✅ | ✅ |
| Amazon RDS for Db2 | ✅ | |
| Amazon RDS for MariaDB | ✅ | ✅ |
| Amazon RDS for MySQL | ✅ | ✅ |
| Amazon RDS for Oracle | ✅ | ✅ |
| Amazon RDS for Postgres | ✅ | ✅ |
| Amazon RDS for SQL Server | ✅ | ✅ |
| Amazon Redshift | ✅ | ✅ |
| Amazon Rekognition | ✅ | ✅ |
| Amazon Route 53 | ✅ | ✅ |
| Amazon S3 Glacier | ✅ | ✅ |
| Amazon SageMaker AI | ✅ | ✅ |
| Amazon Security Lake | ✅ | ✅ |
| Amazon Simple Email Service (SES) | ✅ | ✅ |
| Amazon Simple Notification Service (SNS) | ✅ | ✅ |
| Amazon Simple Queue Service (SQS) | ✅ | ✅ |
| Amazon Simple Storage Service (S3) | ✅ | ✅ |
| Amazon Simple Workflow Service (SWF) | ✅ | ✅ |
| Amazon Textract | ✅ | ✅ |
| Amazon Timestream for LiveAnalytics | ✅ | ✅ |
| Amazon Transcribe | ✅ | ✅ |
| Amazon Translate | ✅ | ✅ |
| Amazon Verified Permissions | ✅ | ✅ |
| Amazon Virtual Private Cloud (VPC) | ✅ | ✅ |
| Amazon WorkSpaces | ✅ | ✅ |
| Amazon WorkSpaces Applications [formerly Amazon AppStream 2.0] | ✅ | ✅ |
| Amazon WorkSpaces Secure Browser | ✅ | |
| AWS Application Auto Scaling | ✅ | |
| AWS Application Migration Service (MGN) | ✅ | ✅ |
| AWS App Mesh | ✅ | |
| AWS Artifact | ✅ | ✅ |
| AWS Audit Manager | ✅ | |
| AWS Backup | ✅ | ✅ |
| AWS Batch | ✅ | ✅ |
| AWS Billing Conductor | ✅ | ✅ |
| AWS Budgets | ✅ | ✅ |
| AWS Certificate Manager (ACM) | ✅ | ✅ |
| AWS Clean Rooms | ✅ | |
| AWS Cloud9 | ✅ | |
| AWS Cloud Map | ✅ | ✅ |
| AWS CloudFormation | ✅ | ✅ |
| AWS CloudHSM | ✅ | ✅ |
| AWS CloudShell | ✅ | ✅ |
| AWS CloudTrail | ✅ | ✅ |
| AWS CodeBuild | ✅ | ✅ |
| AWS CodeCommit | ✅ | ✅ |
| AWS CodeDeploy | ✅ | ✅ |
| AWS CodePipeline | ✅ | ✅ |
| AWS Compute Optimizer | ✅ | |
| AWS Config | ✅ | ✅ |
| AWS Control Tower | ✅ | ✅ |
| AWS Cost and Usage Reports | ✅ | ✅ |
| AWS Cost Explorer | ✅ | ✅ |
| AWS Database Migration Service (DMS) | ✅ | ✅ |
| AWS Data Exchange | ✅ | |
| AWS DataSync | ✅ | ✅ |
| AWS Diode | ||
| AWS Direct Connect | ✅ | ✅ |
| AWS Directory Service | ✅ | ✅ |
| AWS Edge Hub | ✅ | ✅ |
| AWS Elastic Beanstalk | ✅ | ✅ |
| AWS Elastic Disaster Recovery (AWS DRS) | ✅ | ✅ |
| AWS Elemental MediaConvert | ✅ | ✅ |
| AWS Elemental MediaLive | ||
| AWS Elemental MediaPackage | ||
| AWS Entity Resolution | ✅ | |
| AWS Fault Injection Service | ✅ | ✅ |
| AWS Firewall Manager | ✅ | ✅ |
| AWS Global Accelerator | ✅ | |
| AWS Glue | ✅ | ✅ |
| AWS Glue DataBrew | ✅ | ✅ |
| AWS Ground Station | ✅ | |
| AWS Health Dashboard | ✅ | ✅ |
| AWS HealthImaging | ✅ | |
| AWS HealthLake | ✅ | |
| AWS HealthOmics | ✅ | |
| AWS Identity and Access Management (IAM) | ✅ | ✅ |
| AWS IAM Identity Center | ✅ | |
| AWS IoT Core | ✅ | ✅ |
| AWS IoT Device Defender | ✅ | ✅ |
| AWS IoT Device Management | ✅ | ✅ |
| AWS IoT Events | ✅ | ✅ |
| AWS IoT Greengrass | ✅ | ✅ |
| AWS IoT SiteWise | ✅ | |
| AWS IoT TwinMaker | ✅ | |
| AWS Key Management Service (KMS) | ✅ | ✅ |
| AWS Lake Formation | ||
| AWS Lambda | ✅ | ✅ |
| AWS License Manager | ✅ | ✅ |
| AWS Mainframe Modernization | ✅ | |
| AWS Managed Services (AMS) | ✅ | ✅ |
| AWS Management Console | ✅ | ✅ |
| AWS Marketplace | ✅ | ✅ |
| AWS Network Firewall | ✅ | ✅ |
| AWS Network Manager | ✅ | ✅ |
| AWS Outposts (Software) | ✅ | ✅ |
| AWS Organizations | ✅ | ✅ |
| AWS Private Certificate Authority | ✅ | ✅ |
| AWS Resource Access Manager (AWS RAM) | ✅ | ✅ |
| AWS Resilience Hub | ✅ | |
| AWS Resource Groups | ✅ | ✅ |
| AWS Security Incident Response | 3PAO Assessment | |
| AWS Secrets Manager | ✅ | ✅ |
| AWS Security Hub CSPM | ✅ | ✅ |
| AWS Serverless Application Repository | ✅ | ✅ |
| AWS Service Catalog | ✅ | ✅ |
| AWS Service Quotas | ✅ | ✅ |
| AWS Shield (Standard and Advanced) | ✅ | |
| AWS Signer | ✅ | ✅ |
| AWS Snowball Edge | ✅ | ✅ |
| AWS Step Functions | ✅ | ✅ |
| AWS Storage Gateway | ✅ | ✅ |
| AWS Systems Manager | ✅ | ✅ |
| AWS Transfer Family | ✅ | ✅ |
| AWS Trusted Advisor | ✅ | ✅ |
| AWS Verified Access (AVA) | ✅ | ✅ |
| AWS Web Application Firewall (WAF) | ✅ | ✅ |
| AWS Web Application Firewall Classic (WAF Classic) | ✅ | ✅ |
| AWS Well-Architected Tool | ✅ | ✅ |
| AWS Wickr | ✅ | ✅ |
| AWS X-Ray | ✅ | ✅ |
Source: https://aws.amazon.com/compliance/services-in-scope/DoD_CC_SRG/ — last synced 2026-04-27
| Service | IL4 | IL5 | IL6 |
|---|---|---|---|
| Amazon AppFlow | |||
| Amazon API Gateway | ✅ | ✅ | ✅ |
| Amazon Athena | ✅ | ✅ | ✅ |
| Amazon Aurora MySQL | ✅ | ✅ | ✅ |
| Amazon Aurora PostgreSQL | ✅ | ✅ | ✅ |
| Amazon Bedrock | ✅ | ✅ | ✅ |
| Amazon Chime SDK | ✅ | ✅ | |
| Amazon Cloud Directory | ✅ | ✅ | |
| Amazon CloudFront [excludes content delivery through Amazon CloudFront Embedded Point of Presences] | |||
| Amazon CloudWatch | ✅ | ✅ | ✅ |
| Amazon CloudWatch Logs | ✅ | ✅ | ✅ |
| Amazon Cognito | ✅ | ✅ | |
| Amazon Comprehend | ✅ | ✅ | |
| Amazon Comprehend Medical | ✅ | ✅ | |
| Amazon Connect | ✅ | ✅ | |
| Amazon Data Firehose | ✅ | ✅ | ✅ |
| Amazon DataZone | |||
| Amazon Detective | ✅ | ✅ | |
| Amazon DevOps Guru | |||
| Amazon DocumentDB (with MongoDB compatibility) | ✅ | ✅ | |
| Amazon DynamoDB | ✅ | ✅ | ✅ |
| Amazon EC2 Image Builder | ✅ | ✅ | ✅ |
| Amazon Elastic Block Store (EBS) | ✅ | ✅ | ✅ |
| Amazon Elastic Compute Cloud (EC2) | ✅ | ✅ | ✅ |
| Amazon Elastic Container Registry (ECR) | ✅ | ✅ | ✅ |
| Amazon Elastic Container Service (ECS) | ✅ | ✅ | ✅ |
| Amazon Elastic File System (EFS) | ✅ | ✅ | ✅ |
| Amazon Elastic Kubernetes Service (EKS) | ✅ | ✅ | ✅ |
| Amazon ElastiCache | ✅ | ✅ | ✅ |
| Amazon Elastic MapReduce (EMR) | ✅ | ✅ | ✅ |
| Amazon EventBridge | ✅ | ✅ | ✅ |
| Amazon FinSpace | |||
| Amazon Forecast | |||
| Amazon FSx | ✅ | ✅ | ✅ |
| Amazon GuardDuty | ✅ | ✅ | ✅ |
| Amazon Inspector | ✅ | ✅ | |
| Amazon Inspector Classic | ✅ | ✅ | |
| Amazon Kendra | ✅ | ✅ | |
| Amazon Keyspaces (for Apache Cassandra) | ✅ | ✅ | |
| Amazon Kinesis Data Streams | ✅ | ✅ | ✅ |
| Amazon Kinesis Video Streams | ✅ | ✅ | |
| Amazon Lex | ✅ | ✅ | |
| Amazon Location Service | ✅ | ✅ | |
| Amazon Macie | |||
| Amazon Managed Service for Apache Flink | ✅ | ✅ | ✅ |
| Amazon Managed Streaming for Apache Kafka (Amazon MSK) | ✅ | ✅ | |
| Amazon Managed Service for Prometheus | |||
| Amazon MemoryDB | ✅ | ✅ | |
| Amazon MQ | ✅ | ✅ | |
| Amazon Neptune | ✅ | ✅ | ✅ |
| Amazon OpenSearch Service | ✅ | ✅ | ✅ |
| Amazon Pinpoint and End User Messaging | ✅ | ✅ | |
| Amazon Polly | ✅ | ✅ | |
| Amazon Q Business | |||
| Amazon Q Developer in chat applications [formerly AWS Chatbot] | |||
| Amazon Quick Suite [formerly Amazon QuickSight] | ✅ | ✅ | |
| Amazon RDS for Db2 | |||
| Amazon RDS for MariaDB | ✅ | ✅ | ✅ |
| Amazon RDS for MySQL | ✅ | ✅ | ✅ |
| Amazon RDS for Oracle | ✅ | ✅ | ✅ |
| Amazon RDS for Postgres | ✅ | ✅ | ✅ |
| Amazon RDS for SQL Server | ✅ | ✅ | ✅ |
| Amazon Redshift | ✅ | ✅ | ✅ |
| Amazon Rekognition | ✅ | ✅ | |
| Amazon Route 53 | ✅ | ✅ | ✅ |
| Amazon S3 Glacier | ✅ | ✅ | ✅ |
| Amazon SageMaker AI | ✅ | ✅ | ✅ |
| Amazon Security Lake | ✅ | ✅ | |
| Amazon Simple Email Service (SES) | ✅ | ✅ | |
| Amazon Simple Notification Service (SNS) | ✅ | ✅ | ✅ |
| Amazon Simple Queue Service (SQS) | ✅ | ✅ | ✅ |
| Amazon Simple Storage Service (S3) | ✅ | ✅ | ✅ |
| Amazon Simple Workflow Service (SWF) | ✅ | ✅ | ✅ |
| Amazon Textract | ✅ | ✅ | |
| Amazon Timestream for LiveAnalytics | ✅ | ✅ | |
| Amazon Transcribe | ✅ | ✅ | |
| Amazon Translate | ✅ | ✅ | |
| Amazon Verified Permissions | ✅ | ✅ | |
| Amazon Virtual Private Cloud (VPC) | ✅ | ✅ | ✅ |
| Amazon WorkSpaces | ✅ | ✅ | ✅ |
| Amazon WorkSpaces Applications [formerly Amazon AppStream 2.0] | ✅ | ✅ | ✅ |
| Amazon WorkSpaces Secure Browser | |||
| AWS Application Auto Scaling | ✅ | ✅ | ✅ |
| AWS Application Migration Service (MGN) | ✅ | ✅ | |
| AWS App Mesh | |||
| AWS Artifact | ✅ | ✅ | |
| AWS Audit Manager | |||
| AWS Backup | ✅ | ✅ | ✅ |
| AWS Batch | ✅ | ✅ | ✅ |
| AWS Billing Conductor | ✅ | ✅ | |
| AWS Budgets | ✅ | ✅ | |
| AWS Certificate Manager (ACM) | ✅ | ✅ | |
| AWS Clean Rooms | |||
| AWS Cloud9 | |||
| AWS Cloud Map | ✅ | ✅ | ✅ |
| AWS CloudFormation | ✅ | ✅ | ✅ |
| AWS CloudHSM | ✅ | ✅ | |
| AWS CloudShell | ✅ | ✅ | |
| AWS CloudTrail | ✅ | ✅ | ✅ |
| AWS CodeBuild | ✅ | ✅ | ✅ |
| AWS CodeCommit | ✅ | ✅ | |
| AWS CodeDeploy | ✅ | ✅ | ✅ |
| AWS CodePipeline | ✅ | ✅ | |
| AWS Compute Optimizer | ✅ | ✅ | |
| AWS Config | ✅ | ✅ | ✅ |
| AWS Control Tower | ✅ | ✅ | |
| AWS Cost and Usage Reports | ✅ | ✅ | |
| AWS Cost Explorer | ✅ | ✅ | |
| AWS Database Migration Service (DMS) | ✅ | ✅ | ✅ |
| AWS Data Exchange | |||
| AWS DataSync | ✅ | ✅ | ✅ |
| AWS Diode | ✅ | ✅ | ✅ |
| AWS Direct Connect | ✅ | ✅ | ✅ |
| AWS Directory Service | ✅ | ✅ | ✅ |
| AWS Edge Hub | ✅ | ✅ | |
| AWS Elastic Beanstalk | ✅ | ✅ | |
| AWS Elastic Disaster Recovery (AWS DRS) | ✅ | ✅ | |
| AWS Elemental MediaConvert | ✅ | ✅ | |
| AWS Elemental MediaLive | ✅ | ||
| AWS Elemental MediaPackage | ✅ | ||
| AWS Entity Resolution | |||
| AWS Fault Injection Service | ✅ | ✅ | |
| AWS Firewall Manager | ✅ | ✅ | |
| AWS Global Accelerator | |||
| AWS Glue | ✅ | ✅ | ✅ |
| AWS Glue DataBrew | ✅ | ✅ | |
| AWS Ground Station | |||
| AWS Health Dashboard | ✅ | ✅ | ✅ |
| AWS HealthImaging | |||
| AWS HealthLake | |||
| AWS HealthOmics | |||
| AWS Identity and Access Management (IAM) | ✅ | ✅ | ✅ |
| AWS IAM Identity Center | ✅ | ✅ | |
| AWS IoT Core | ✅ | ✅ | |
| AWS IoT Device Defender | ✅ | ✅ | |
| AWS IoT Device Management | ✅ | ✅ | |
| AWS IoT Events | ✅ | ✅ | |
| AWS IoT Greengrass | ✅ | ✅ | |
| AWS IoT SiteWise | ✅ | ✅ | |
| AWS IoT TwinMaker | ✅ | ✅ | |
| AWS Key Management Service (KMS) | ✅ | ✅ | ✅ |
| AWS Lake Formation | ✅ | ||
| AWS Lambda | ✅ | ✅ | ✅ |
| AWS License Manager | ✅ | ✅ | ✅ |
| AWS Mainframe Modernization | |||
| AWS Managed Services (AMS) | ✅ | ✅ | |
| AWS Management Console | ✅ | ✅ | |
| AWS Marketplace | ✅ | ✅ | ✅ |
| AWS Network Firewall | ✅ | ✅ | ✅ |
| AWS Network Manager | ✅ | ✅ | |
| AWS Outposts (Software) | ✅ | ✅ | ✅ |
| AWS Organizations | ✅ | ✅ | ✅ |
| AWS Private Certificate Authority | ✅ | ✅ | |
| AWS Resource Access Manager (AWS RAM) | ✅ | ✅ | ✅ |
| AWS Resilience Hub | ✅ | ✅ | |
| AWS Resource Groups | ✅ | ✅ | |
| AWS Security Incident Response | |||
| AWS Secrets Manager | ✅ | ✅ | ✅ |
| AWS Security Hub CSPM | ✅ | ✅ | ✅ |
| AWS Serverless Application Repository | ✅ | ✅ | |
| AWS Service Catalog | ✅ | ✅ | |
| AWS Service Quotas | ✅ | ✅ | ✅ |
| AWS Shield (Standard and Advanced) | |||
| AWS Signer | ✅ | ✅ | |
| AWS Snowball Edge | ✅ | ✅ | ✅ |
| AWS Step Functions | ✅ | ✅ | ✅ |
| AWS Storage Gateway | ✅ | ✅ | ✅ |
| AWS Systems Manager | ✅ | ✅ | ✅ |
| AWS Transfer Family | ✅ | ✅ | |
| AWS Trusted Advisor | ✅ | ✅ | ✅ |
| AWS Verified Access (AVA) | ✅ | ✅ | |
| AWS Web Application Firewall (WAF) | ✅ | ✅ | ✅ |
| AWS Web Application Firewall Classic (WAF Classic) | ✅ | ✅ | |
| AWS Well-Architected Tool | ✅ | ✅ | |
| AWS Wickr | ✅ | ✅ | |
| AWS X-Ray | ✅ | ✅ | ✅ |
Source: https://aws.amazon.com/compliance/services-in-scope/FedRAMP/ — last synced 2026-05-12
| SERVICES / PROGRAMS | FedRAMP Moderate (East/West) | FedRAMP High (GovCloud) |
|---|---|---|
| Amazon API Gateway | ✅ | ✅ |
| Amazon AppFlow | ✅ | |
| Amazon Athena | ✅ | ✅ |
| Amazon Aurora DSQL | 3PAO Assessment | |
| Amazon Aurora MySQL | ✅ | ✅ |
| Amazon Aurora PostgreSQL | ✅ | ✅ |
| Amazon Bedrock | ✅ | ✅ |
| Amazon Chime SDK | ✅ | ✅ |
| Amazon Cloud Directory | ✅ | ✅ |
| Amazon CloudFront [excludes content delivery through Amazon CloudFront Embedded Point of Presences] | ✅ | |
| Amazon CloudWatch | ✅ | ✅ |
| Amazon CloudWatch Logs | ✅ | ✅ |
| Amazon Cognito | ✅ | ✅ |
| Amazon Comprehend | ✅ | ✅ |
| Amazon Comprehend Medical | ✅ | ✅ |
| Amazon Connect | ✅ | ✅ |
| Amazon Data Firehose | ✅ | ✅ |
| Amazon DataZone | ✅ | |
| Amazon Detective | ✅ | ✅ |
| Amazon DevOps Guru | ✅ | |
| Amazon DocumentDB (with MongoDB compatibility) | ✅ | ✅ |
| Amazon DynamoDB | ✅ | ✅ |
| Amazon Elastic Block Store (EBS) | ✅ | ✅ |
| Amazon Elastic Compute Cloud (EC2) | ✅ | ✅ |
| Amazon EC2 Image Builder | ✅ | ✅ |
| Amazon Elastic Container Registry (ECR) | ✅ | ✅ |
| Amazon Elastic Container Service (ECS) | ✅ | ✅ |
| Amazon Elastic File System (EFS) | ✅ | ✅ |
| Amazon Elastic Kubernetes Service (EKS) | ✅ | ✅ |
| Amazon ElastiCache | ✅ | ✅ |
| Amazon Elastic MapReduce (EMR) | ✅ | ✅ |
| Amazon EventBridge | ✅ | ✅ |
| Amazon FinSpace | ✅ | |
| Amazon Forecast | ✅ | |
| Amazon FSx | ✅ | ✅ |
| Amazon GuardDuty | ✅ | ✅ |
| Amazon Inspector | ✅ | ✅ |
| Amazon Inspector Classic | ✅ | ✅ |
| Amazon Kendra | ✅ | ✅ |
| Amazon Keyspaces (for Apache Cassandra) | ✅ | ✅ |
| Amazon Kinesis Data Streams | ✅ | ✅ |
| Amazon Kinesis Video Streams | ✅ | |
| Amazon Lex | ✅ | ✅ |
| Amazon Location Service | ✅ | |
| Amazon Macie | ✅ | |
| Amazon Managed Grafana | 3PAO Assessment | |
| Amazon Managed Service for Apache Flink | ✅ | ✅ |
| Amazon Managed Streaming for Apache Kafka (Amazon MSK) | ✅ | ✅ |
| Amazon Managed Service for Prometheus | 3PAO Assessment | 3PAO Assessment |
| Amazon MemoryDB | ✅ | ✅ |
| Amazon MQ | ✅ | ✅ |
| Amazon Neptune | ✅ | ✅ |
| Amazon OpenSearch Service | ✅ | ✅ |
| Amazon Pinpoint and End User Messaging | ✅ | ✅ |
| Amazon Polly | ✅ | ✅ |
| Amazon Q Business | ✅ | |
| Amazon Q Developer in chat applications [formerly AWS Chatbot] | ✅ | |
| Amazon Quick Suite [formerly Amazon QuickSight] | ✅ | ✅ |
| Amazon RDS for Db2 | ✅ | |
| Amazon RDS for MariaDB | ✅ | ✅ |
| Amazon RDS for MySQL | ✅ | ✅ |
| Amazon RDS for Oracle | ✅ | ✅ |
| Amazon RDS for Postgres | ✅ | ✅ |
| Amazon RDS for SQL Server | ✅ | ✅ |
| Amazon Redshift | ✅ | ✅ |
| Amazon Rekognition | ✅ | ✅ |
| Amazon Route 53 | ✅ | ✅ |
| Amazon S3 Glacier | ✅ | ✅ |
| Amazon SageMaker AI | ✅ | ✅ |
| Amazon Security Lake | ✅ | ✅ |
| Amazon Simple Email Service (SES) | ✅ | ✅ |
| Amazon Simple Notification Service (SNS) | ✅ | ✅ |
| Amazon Simple Queue Service (SQS) | ✅ | ✅ |
| Amazon Simple Storage Service (S3) | ✅ | ✅ |
| Amazon Simple Workflow Service (SWF) | ✅ | ✅ |
| Amazon Textract | ✅ | ✅ |
| Amazon Timestream for LiveAnalytics | ✅ | ✅ |
| Amazon Transcribe | ✅ | ✅ |
| Amazon Translate | ✅ | ✅ |
| Amazon Verified Permissions | ✅ | ✅ |
| Amazon Virtual Private Cloud (VPC) | ✅ | ✅ |
| Amazon WorkSpaces | ✅ | ✅ |
| Amazon WorkSpaces Applications [formerly Amazon AppStream 2.0] | ✅ | ✅ |
| Amazon WorkSpaces Secure Browser | ✅ | |
| AWS Application Auto Scaling | ✅ | |
| AWS Application Migration Service (MGN) | ✅ | ✅ |
| AWS App Mesh | ✅ | |
| AWS Artifact | ||
| AWS Audit Manager | ✅ | |
| AWS Backup | ✅ | ✅ |
| AWS Batch | ✅ | ✅ |
| AWS Billing Conductor | ||
| AWS Budgets | ||
| AWS Certificate Manager (ACM) | ✅ | ✅ |
| AWS Clean Rooms | ✅ | |
| AWS Cloud9 | ✅ | |
| AWS CloudFormation | ✅ | ✅ |
| AWS CloudHSM | ✅ | ✅ |
| AWS Cloud Map | ✅ | ✅ |
| AWS CloudShell | ✅ | ✅ |
| AWS CloudTrail | ✅ | ✅ |
| AWS CodeBuild | ✅ | ✅ |
| AWS CodeCommit | ✅ | ✅ |
| AWS CodeDeploy | ✅ | ✅ |
| AWS CodePipeline | ✅ | ✅ |
| AWS Compute Optimizer | ✅ | |
| AWS Config | ✅ | ✅ |
| AWS Control Tower | ✅ | ✅ |
| AWS Cost and Usage Reports | ||
| AWS Cost Explorer | ||
| AWS Database Migration Service (DMS) | ✅ | ✅ |
| AWS Data Exchange | ||
| AWS DataSync | ✅ | ✅ |
| AWS Direct Connect | ✅ | ✅ |
| AWS Directory Service | ✅ | ✅ |
| AWS Edge Hub | ||
| AWS Elastic Beanstalk | ✅ | ✅ |
| AWS Elastic Disaster Recovery (AWS DRS) | ✅ | ✅ |
| AWS Elemental MediaConvert | ✅ | ✅ |
| AWS Entity Resolution | ✅ | |
| AWS Fault Injection Service | ✅ | ✅ |
| AWS Firewall Manager | ✅ | ✅ |
| AWS Global Accelerator | ✅ | |
| AWS Glue | ✅ | ✅ |
| AWS Glue DataBrew | ✅ | ✅ |
| AWS Ground Station | ✅ | |
| AWS Health Dashboard | ✅ | ✅ |
| AWS HealthImaging | ✅ | |
| AWS HealthLake | ✅ | |
| AWS HealthOmics | ✅ | |
| AWS Identity and Access Management (IAM) | ✅ | ✅ |
| AWS IAM Identity Center | 3PAO Assessment | ✅ |
| AWS IoT Core | ✅ | ✅ |
| AWS IoT Device Defender | ✅ | ✅ |
| AWS IoT Device Management | ✅ | ✅ |
| AWS IoT Events | ✅ | ✅ |
| AWS IoT Greengrass | ✅ | ✅ |
| AWS IoT SiteWise | ✅ | |
| AWS IoT TwinMaker | ✅ | |
| AWS Key Management Service (KMS) | ✅ | ✅ |
| AWS Lambda | ✅ | ✅ |
| AWS License Manager | ✅ | ✅ |
| AWS Mainframe Modernization | ✅ | |
| AWS Managed Services (AMS) | ✅ | ✅ |
| AWS Management Console | ||
| AWS Marketplace | ||
| AWS Network Firewall | ✅ | ✅ |
| AWS Network Manager | ✅ | ✅ |
| AWS Organizations | ✅ | ✅ |
| AWS Outposts (Software) | ✅ | ✅ |
| AWS Parallel Computing Service | 3PAO Assessment | 3PAO Assessment |
| AWS Private Certificate Authority | ✅ | ✅ |
| AWS Resilience Hub | ✅ | |
| AWS Resource Access Manager (AWS RAM) | ✅ | ✅ |
| AWS Resource Groups | ✅ | ✅ |
| AWS Secrets Manager | ✅ | ✅ |
| AWS Security Hub CSPM | ✅ | ✅ |
| AWS Security Incident Response | 3PAO Assessment | |
| AWS Serverless Application Repository | ✅ | ✅ |
| AWS Service Catalog | ✅ | ✅ |
| AWS Service Quotas | ||
| AWS Shield (Standard and Advanced) | ✅ | |
| AWS Signer | ✅ | ✅ |
| AWS Snowball Edge | ✅ | ✅ |
| AWS Step Functions | ✅ | ✅ |
| AWS Systems Manager | ✅ | ✅ |
| AWS Storage Gateway | ✅ | ✅ |
| AWS Transfer Family | ✅ | ✅ |
| AWS Trusted Advisor | ✅ | ✅ |
| AWS Verified Access (AVA) | ✅ | ✅ |
| AWS Web Application Firewall (WAF) | ✅ | ✅ |
| AWS Web Application Firewall Classic (WAF Classic) | ✅ | ✅ |
| AWS Well-Architected Tool | ✅ | ✅ |
| AWS Wickr | ✅ | ✅ |
| AWS X-RAY | ✅ | ✅ |
Applications should run inside your Kubernetes cluster as containerized workloads. Game Warden can support certain in-cluster services-such as service mesh or secrets management-while AWS-managed services such as RDS or S3 are hosted externally and accessed over the network.
Note
To ensure compatibility with our Kubernetes-based platform, we recommend containerizing the required functionality as part of your application deployment.
If you're exploring serverless architecture, Knative offers a Kubernetes-native alternative that supports event-driven workloads and may serve as a suitable substitute. Our platform supports running Knative within your Kubernetes cluster as part of a containerized solution.
FAQs¶
Does Second Front support S3 bucket event notifications to SQS on Game Warden?
Yes. S3 bucket event notifications to SQS are supported on Game Warden. You can configure your S3 buckets to publish event notifications to an SQS queue as part of your application workflow.
GCP services¶
Game Warden supports all GCP services authorized for DoW Impact Level environments (IL2-IL6) and FedRAMP.
Source: https://docs.cloud.google.com/architecture/security/fedramp-dod-compliance-scope — last synced 2026-05-12
| Service | IL2 | IL4 | IL5 |
|---|---|---|---|
| Access Approval | ✅ | ||
| Access Context Manager | ✅ | ✅ | ✅ |
| Access Transparency | ✅ | DISA review | DISA review |
| Agent Assist | ✅ | ||
| Agent Search on Gemini Enterprise Agent Platform (formerly Vertex AI Search) | ✅ | ✅ | |
| AlloyDB | ✅ | ✅ | ✅ |
| API keys Apigee | ✅ | DISA review | DISA review |
| App Engine standard environment (excluding bundled services) | ✅ | ||
| App Hub | ✅ | DISA review | DISA review |
| Application Integration | ✅ | ||
| Artifact Analysis | ✅ | ||
| Artifact Registry (replaced Container Registry ) | ✅ | ✅ | ✅ |
| Assured Open Source Software (Assured OSS) | ✅ | ||
| Backup and DR Service | ✅ | ||
| Batch | ✅ | ||
| BigQuery (excluding BigLake and BigQuery sharing ) | ✅ | ✅ | ✅ |
| BigQuery Data Transfer Service | ✅ | DISA review | DISA review |
| Bigtable | ✅ | DISA review | DISA review |
| Binary Authorization | ✅ | DISA review | DISA review |
| Certificate Authority Service | ✅ | ✅ | ✅ |
| Certificate Manager | ✅ | DISA review | DISA review |
| Cloud Asset Inventory | ✅ | DISA review | DISA review |
| Cloud Billing | ✅ | ||
| Cloud Build | ✅ | ✅ | ✅ |
| Cloud CDN | ✅ | ||
| Cloud Data Fusion | ✅ | ✅ | ✅ |
| Cloud Deploy | ✅ | ||
| Cloud Deployment Manager (replaced by Infrastructure Manager ) | ✅ | ||
| Cloud DNS | ✅ | ✅ | ✅ |
| Cloud Endpoints | ✅ | ||
| Cloud External Key Manager (Cloud EKM) | ✅ | ✅ | ✅ |
| Cloud Functions for Firebase | ✅ | ||
| Cloud Healthcare API | ✅ | ||
| Cloud HSM | ✅ | ✅ | ✅ |
| Cloud Identity | ✅ | ✅ | ✅ |
| Cloud Interconnect | ✅ | ✅ | ✅ |
| Cloud Intrusion Detection System (Cloud IDS) | ✅ | ||
| Cloud Key Management Service (Cloud KMS) | ✅ | ✅ | ✅ |
| Cloud Life Sciences (formerly Google Genomics) | ✅ | ||
| Cloud Load Balancing: Application Load Balancer | ✅ | ✅ | ✅ |
| External Application Load Balancer (regional) | ✅ | ✅ | ✅ |
| Internal Application Load Balancer (regional) | ✅ | ✅ | ✅ |
| Cloud Load Balancing: Passthrough Network Load Balancer | ✅ | ✅ | ✅ |
| External passthrough Network Load Balancer | ✅ | ✅ | ✅ |
| Internal passthrough Network Load Balancer | ✅ | ✅ | ✅ |
| Cloud Load Balancing: Proxy Network Load Balancer | ✅ | ✅ | ✅ |
| External proxy Network Load Balancer (regional) | ✅ | ✅ | ✅ |
| Internal proxy Network Load Balancer (regional) | ✅ | ✅ | ✅ |
| Cloud Logging | ✅ | ✅ | ✅ |
| Cloud Monitoring | ✅ | ✅ | ✅ |
| Cloud NAT | ✅ | ✅ | ✅ |
| Cloud Natural Language API | ✅ | ||
| Cloud Next Generation Firewall (Cloud NGFW) (excluding Enterprise ) | ✅ | ||
| Cloud Next Generation Firewall Essentials | ✅ | ||
| Cloud Next Generation Firewall Standard | ✅ | ||
| Cloud Profiler | ✅ | ||
| Cloud Quotas Cloud Router | ✅ | ✅ | ✅ |
| Cloud Run | ✅ | ✅ | ✅ |
| Cloud Run functions (formerly Cloud Functions) | ✅ | ✅ | ✅ |
| Knative serving (formerly Cloud Run for Anthos) | ✅ | ||
| Direct VPC egress (replaced Serverless VPC Access ) | ✅ | ✅ | ✅ |
| Cloud Scheduler | ✅ | ||
| Cloud Service Mesh (formerly Anthos Service Mesh) | ✅ | ✅ | ✅ |
| Traffic Director API | ✅ | ✅ | ✅ |
| Cloud Shell | ✅ | ||
| Cloud SQL | ✅ | ✅ | ✅ |
| Cloud SQL for MySQL | ✅ | ✅ | ✅ |
| Cloud SQL for PostgreSQL | ✅ | ✅ | ✅ |
| Cloud SQL for SQL Server | ✅ | ✅ | ✅ |
| Cloud Storage | ✅ | ✅ | ✅ |
| Cloud Storage for Firebase | ✅ | ||
| Cloud Tasks | ✅ | ✅ | ✅ |
| Cloud Trace | ✅ | ||
| Cloud Translation API | ✅ | ||
| Cloud Vision API | ✅ | ✅ | ✅ |
| Cloud VPN | ✅ | ✅ | ✅ |
| Cloud Workstations | ✅ | ✅ | ✅ |
| Compute Engine | ✅ | ✅ | ✅ |
| Compute Engine: OS Login | ✅ | DISA review | DISA review |
| Compute Engine: VM Manager | ✅ | DISA review | DISA review |
| Customer Experience Insights (formerly CCAI Insights) | ✅ | ||
| Database Center | ✅ | DISA review | DISA review |
| Database Migration Service | ✅ | ||
| Dataflow | ✅ | ✅ | ✅ |
| Dataform | ✅ | DISA review | DISA review |
| Datastream | ✅ | ||
| Data Studio (formerly Google Data Studio) | ✅ | ||
| Data Studio Pro | ✅ | ||
| Dialogflow CX | ✅ | ||
| Dialogflow ES | ✅ | ||
| Document AI | ✅ | ✅ | ✅ |
| Error Reporting | ✅ | ||
| Eventarc (excluding Advanced ) | ✅ | ✅ | ✅ |
| Eventarc Standard | ✅ | ✅ | ✅ |
| Filestore | ✅ | ✅ | ✅ |
| Filestore Basic HDD tier | ✅ | ✅ | ✅ |
| Filestore Basic SSD tier | ✅ | ✅ | ✅ |
| Firebase Authentication | ✅ | ||
| Firebase Security Rules | ✅ | DISA review | DISA review |
| Firestore (replaced Datastore ; excluding Firestore with MongoDB compatibility) | ✅ | DISA review | DISA review |
| Gemini Enterprise (formerly Google Agentspace; excluding NotebookLM Enterprise; for a full list of exclusions, see Deployment guidance for Gemini for Government ) | ✅ | ✅ | |
| Gemini Enterprise Agent Platform Inference: Batch and Online (formerly Vertex AI Inference) | ✅ | ✅ | ✅ |
| Gemini Enterprise Agent Platform Managed Training (formerly Vertex AI Training) | ✅ | ✅ | ✅ |
| Gemini Enterprise Agent Platform Pipelines (formerly Vertex AI Pipelines) | ✅ | ✅ | ✅ |
| Gemini Enterprise Agent Platform Workbench (formerly Vertex AI Workbench) | ✅ | ||
| Generative AI on Gemini Enterprise Agent Platform (formerly Generative AI on Vertex AI) | ✅ | ✅ | ✅ |
| Gemini Enterprise Agent Platform Tuning (formerly Vertex AI Tuning) | ✅ | DISA review | DISA review |
| Google Admin console | ✅ | ✅ | ✅ |
| Google Admin console: Admin SDK | ✅ | ✅ | ✅ |
| Google Admin console: Directory Sync | ✅ | ✅ | ✅ |
| Google Cloud app | ✅ | ||
| Google Cloud Armor | ✅ | ✅ | ✅ |
| Google Cloud Managed Service for Apache Kafka (excluding Kafka Connect and Kafka Schema registry ) | DISA review | DISA review | |
| Google Cloud Marketplace | ✅ | ✅ | ✅ |
| Google Cloud Migration Center | ✅ | ||
| Google Cloud SDK | ✅ | ||
| Google Earth Engine | ✅ | ||
| Google Kubernetes Engine (GKE) | ✅ | ✅ | ✅ |
| Backup for GKE | ✅ | ||
| GKE Config Sync | ✅ | ✅ | ✅ |
| GKE Connect Agent | ✅ | ✅ | ✅ |
| GKE Hub | ✅ | ✅ | ✅ |
| GKE Identity Service (formerly Anthos Identity Service) | ✅ | ✅ | ✅ |
| Google Security Operations SIEM (Google SecOps SIEM) | ✅ | ✅ | ✅ |
| Google Security Operations SOAR (Google SecOps SOAR) | ✅ | ✅ | ✅ |
| Identity and Access Management (IAM) | ✅ | ✅ | ✅ |
| Workforce Identity Federation | ✅ | ✅ | ✅ |
| Identity Platform | ✅ | ||
| Identity-Aware Proxy (IAP) (excluding IAP for TCP ) | ✅ | ✅ | ✅ |
| Infrastructure Manager | ✅ | DISA review | DISA review |
| Integration Connectors | ✅ | ||
| Key Access Justifications | ✅ | DISA review | DISA review |
| Knowledge Catalog (formerly Dataplex Universal Catalog; replaced Data Catalog ) | ✅ | ✅ | ✅ |
| Looker (Google Cloud core) | ✅ | DISA review | DISA review |
| Managed Service for Apache Airflow (formerly Cloud Composer) | ✅ | ✅ | ✅ |
| Managed Service for Apache Spark | ✅ | ✅ | ✅ |
| Memorystore (excluding Memorystore for Redis Cluster ) | ✅ | ✅ | ✅ |
| Memorystore for Memcached | ✅ | ||
| Memorystore for Redis | ✅ | ✅ | ✅ |
| Memorystore for Redis cluster Metadata on Gemini Enterprise Agent Platform (formerly Vertex ML Metadata) | ✅ | ||
| Migrate to Virtual Machines Model Armor | ✅ | ||
| Model Registry on Gemini Enterprise Agent Platform (formerly Vertex AI Model Registry) | ✅ | ✅ | ✅ |
| Neural Architecture Search on Gemini Enterprise Agent Platform (formerly Vertex AI Neural Architecture Search) | ✅ | ||
| Network Connectivity Center | ✅ | ✅ | ✅ |
| Network Intelligence Center | ✅ | ||
| Firewall Insights Network Service Tiers | ✅ | ||
| Organization Policy Service | ✅ | DISA review | DISA review |
| Persistent Disk | ✅ | ✅ | ✅ |
| Pub/Sub | ✅ | ✅ | ✅ |
| reCAPTCHA Enterprise | ✅ | ||
| Resource Manager | ✅ | DISA review | DISA review |
| Secret Manager (excluding Global secrets ) | ✅ | ✅ | ✅ |
| Secret Manager: Regional secrets | ✅ | ✅ | ✅ |
| Secure Source Manager (replaced Cloud Source Repositories ) | ✅ | DISA review | DISA review |
| Secure Web Proxy | ✅ | ||
| Security Command Center (excluding Enterprise) | ✅ | DISA review | DISA review |
| Security Command Center Premium (excluding Compliance Manager , Data Security Posture Management , AI Protection , and Issues ) | ✅ | DISA review | DISA review |
| Sensitive Data Protection (formerly Cloud DLP) | ✅ | ✅ | ✅ |
| Cloud Data Loss Prevention API | ✅ | ✅ | ✅ |
| Service Directory | ✅ | ||
| Spanner | ✅ | ✅ | ✅ |
| Speech-to-Text | ✅ | ✅ | ✅ |
| Storage Transfer Service | ✅ | DISA review | DISA review |
| Tabular Workflows on Gemini Enterprise Agent Platform (formerly Vertex AI Tabular Workflows) | ✅ | ||
| Talent Solution | ✅ | ||
| Text-to-Speech | ✅ | ||
| Vector Search on Gemini Enterprise Agent Platform (formerly Vertex AI Vector Search) | ✅ | ||
| Video Intelligence API | ✅ | ||
| Virtual Private Cloud (VPC) | ✅ | ✅ | ✅ |
| Private Google Access | ✅ | ✅ | ✅ |
| Private Service Connect | ✅ | ✅ | ✅ |
| Private services access | ✅ | ✅ | ✅ |
| VPC Flow Logs | ✅ | ✅ | ✅ |
| VPC Service Controls | ✅ | ✅ | ✅ |
| Web Risk API | ✅ | ||
| Workflows | ✅ | ||
| Workload Manager |
Important
-
For IL6, Google does not offer a commercial cloud option. IL6 is supported only through Google Distributed Cloud air-gapped, which is a physically separate, on-premise deployment. Contact DISA directly for information about IL6 services.
-
Customers must use Data Boundary via Assured Workloads and Enhanced or Premium Support for all IL2, IL4, and IL5 environments.
Source: https://docs.cloud.google.com/architecture/security/fedramp-dod-compliance-scope — last synced 2026-05-12
| Service | FedRAMP High |
|---|---|
| Access Approval | ✅ |
| Access Context Manager | ✅ |
| Access Transparency | ✅ |
| Agent Assist | ✅ |
| Agent Search on Gemini Enterprise Agent Platform (formerly Vertex AI Search) | ✅ |
| AlloyDB | ✅ |
| API keys | GSA review |
| Apigee | ✅ |
| App Engine standard environment (excluding bundled services) | ✅ |
| App Hub | ✅ |
| Application Integration | ✅ |
| Artifact Analysis | ✅ |
| Artifact Registry (replaced Container Registry ) | ✅ |
| Assured Open Source Software (Assured OSS) | ✅ |
| Backup and DR Service | ✅ |
| Batch | ✅ |
| BigQuery (excluding BigLake and BigQuery sharing ) | ✅ |
| BigQuery Data Transfer Service | ✅ |
| Bigtable | ✅ |
| Binary Authorization | ✅ |
| Certificate Authority Service | ✅ |
| Certificate Manager | ✅ |
| Cloud Asset Inventory | ✅ |
| Cloud Billing | ✅ |
| Cloud Build | ✅ |
| Cloud CDN | ✅ |
| Cloud Data Fusion | ✅ |
| Cloud Deploy | ✅ |
| Cloud Deployment Manager (replaced by Infrastructure Manager ) | ✅ |
| Cloud DNS | ✅ |
| Cloud Endpoints | ✅ |
| Cloud External Key Manager (Cloud EKM) | ✅ |
| Cloud Functions for Firebase | ✅ |
| Cloud Healthcare API | ✅ |
| Cloud HSM | ✅ |
| Cloud Identity | ✅ |
| Cloud Interconnect | ✅ |
| Cloud Intrusion Detection System (Cloud IDS) | ✅ |
| Cloud Key Management Service (Cloud KMS) | ✅ |
| Cloud Life Sciences (formerly Google Genomics) | ✅ |
| Cloud Load Balancing: Application Load Balancer | ✅ |
| External Application Load Balancer (regional) | ✅ |
| Internal Application Load Balancer (regional) | ✅ |
| Cloud Load Balancing: Passthrough Network Load Balancer | ✅ |
| External passthrough Network Load Balancer | ✅ |
| Internal passthrough Network Load Balancer | ✅ |
| Cloud Load Balancing: Proxy Network Load Balancer | ✅ |
| External proxy Network Load Balancer (regional) | ✅ |
| Internal proxy Network Load Balancer (regional) | ✅ |
| Cloud Logging | ✅ |
| Cloud Monitoring | ✅ |
| Cloud NAT | ✅ |
| Cloud Natural Language API | ✅ |
| Cloud Next Generation Firewall (Cloud NGFW) (excluding Enterprise ) | ✅ |
| Cloud Next Generation Firewall Essentials | ✅ |
| Cloud Next Generation Firewall Standard | ✅ |
| Cloud Profiler | ✅ |
| Cloud Quotas | GSA review |
| Cloud Router | ✅ |
| Cloud Run | ✅ |
| Cloud Run functions (formerly Cloud Functions) | ✅ |
| Knative serving (formerly Cloud Run for Anthos) | ✅ |
| Direct VPC egress (replaced Serverless VPC Access ) | ✅ |
| Cloud Scheduler | ✅ |
| Cloud Service Mesh (formerly Anthos Service Mesh) | ✅ |
| Traffic Director API | ✅ |
| Cloud Shell | ✅ |
| Cloud SQL | ✅ |
| Cloud SQL for MySQL | ✅ |
| Cloud SQL for PostgreSQL | ✅ |
| Cloud SQL for SQL Server | ✅ |
| Cloud Storage | ✅ |
| Cloud Storage for Firebase | ✅ |
| Cloud Tasks | ✅ |
| Cloud Trace | ✅ |
| Cloud Translation API | ✅ |
| Cloud Vision API | ✅ |
| Cloud VPN | ✅ |
| Cloud Workstations | ✅ |
| Compute Engine | ✅ |
| Compute Engine: OS Login | ✅ |
| Compute Engine: VM Manager | ✅ |
| Customer Experience Insights (formerly CCAI Insights) | ✅ |
| Database Center | ✅ |
| Database Migration Service | ✅ |
| Dataflow | ✅ |
| Dataform | ✅ |
| Datastream | ✅ |
| Data Studio (formerly Google Data Studio) | ✅ |
| Data Studio Pro | ✅ |
| Dialogflow CX | ✅ |
| Dialogflow ES | ✅ |
| Document AI | ✅ |
| Error Reporting | ✅ |
| Eventarc (excluding Advanced ) | ✅ |
| Eventarc Standard | ✅ |
| Filestore | ✅ |
| Filestore Basic HDD tier | ✅ |
| Filestore Basic SSD tier | ✅ |
| Firebase Authentication | ✅ |
| Firebase Security Rules | ✅ |
| Firestore (replaced Datastore ; excluding Firestore with MongoDB compatibility) | ✅ |
| Gemini Enterprise (formerly Google Agentspace; excluding NotebookLM Enterprise; for a full list of exclusions, see Deployment guidance for Gemini for Government ) | ✅ |
| Gemini Enterprise Agent Platform Inference: Batch and Online (formerly Vertex AI Inference) | ✅ |
| Gemini Enterprise Agent Platform Managed Training (formerly Vertex AI Training) | ✅ |
| Gemini Enterprise Agent Platform Pipelines (formerly Vertex AI Pipelines) | ✅ |
| Gemini Enterprise Agent Platform Workbench (formerly Vertex AI Workbench) | ✅ |
| Generative AI on Gemini Enterprise Agent Platform (formerly Generative AI on Vertex AI) | ✅ |
| Gemini Enterprise Agent Platform Tuning (formerly Vertex AI Tuning) | ✅ |
| Google Admin console | ✅ |
| Google Admin console: Admin SDK | ✅ |
| Google Admin console: Directory Sync | ✅ |
| Google Cloud app | ✅ |
| Google Cloud Armor | ✅ |
| Google Cloud Managed Service for Apache Kafka (excluding Kafka Connect and Kafka Schema registry ) | GSA review |
| Google Cloud Marketplace | ✅ |
| Google Cloud Migration Center | ✅ |
| Google Cloud SDK | ✅ |
| Google Earth Engine | ✅ |
| Google Kubernetes Engine (GKE) | ✅ |
| Backup for GKE | ✅ |
| GKE Config Sync | ✅ |
| GKE Connect Agent | ✅ |
| GKE Hub | ✅ |
| GKE Identity Service (formerly Anthos Identity Service) | ✅ |
| Google Security Operations SIEM (Google SecOps SIEM) | ✅ |
| Google Security Operations SOAR (Google SecOps SOAR) | ✅ |
| Identity and Access Management (IAM) | ✅ |
| Workforce Identity Federation | ✅ |
| Identity Platform | ✅ |
| Identity-Aware Proxy (IAP) (excluding IAP for TCP ) | ✅ |
| Infrastructure Manager | ✅ |
| Integration Connectors | ✅ |
| Key Access Justifications | ✅ |
| Knowledge Catalog (formerly Dataplex Universal Catalog; replaced Data Catalog ) | ✅ |
| Looker (Google Cloud core) | ✅ |
| Managed Service for Apache Airflow (formerly Cloud Composer) | ✅ |
| Managed Service for Apache Spark | ✅ |
| Memorystore (excluding Memorystore for Redis Cluster ) | ✅ |
| Memorystore for Memcached | ✅ |
| Memorystore for Redis | ✅ |
| Memorystore for Redis cluster | GSA review |
| Metadata on Gemini Enterprise Agent Platform (formerly Vertex ML Metadata) | ✅ |
| Migrate to Virtual Machines | GSA review |
| Model Armor | ✅ |
| Model Registry on Gemini Enterprise Agent Platform (formerly Vertex AI Model Registry) | ✅ |
| Neural Architecture Search on Gemini Enterprise Agent Platform (formerly Vertex AI Neural Architecture Search) | ✅ |
| Network Connectivity Center | ✅ |
| Network Intelligence Center | ✅ |
| Firewall Insights | GSA review |
| Network Service Tiers | ✅ |
| Organization Policy Service | ✅ |
| Persistent Disk | ✅ |
| Pub/Sub | ✅ |
| reCAPTCHA Enterprise | ✅ |
| Resource Manager | ✅ |
| Secret Manager (excluding Global secrets ) | ✅ |
| Secret Manager: Regional secrets | ✅ |
| Secure Source Manager (replaced Cloud Source Repositories ) | ✅ |
| Secure Web Proxy | ✅ |
| Security Command Center (excluding Enterprise) | ✅ |
| Security Command Center Premium (excluding Compliance Manager , Data Security Posture Management , AI Protection , and Issues ) | ✅ |
| Sensitive Data Protection (formerly Cloud DLP) | ✅ |
| Cloud Data Loss Prevention API | ✅ |
| Service Directory | ✅ |
| Spanner | ✅ |
| Speech-to-Text | ✅ |
| Storage Transfer Service | ✅ |
| Tabular Workflows on Gemini Enterprise Agent Platform (formerly Vertex AI Tabular Workflows) | ✅ |
| Talent Solution | ✅ |
| Text-to-Speech | ✅ |
| Vector Search on Gemini Enterprise Agent Platform (formerly Vertex AI Vector Search) | ✅ |
| Video Intelligence API | ✅ |
| Virtual Private Cloud (VPC) | ✅ |
| Private Google Access | ✅ |
| Private Service Connect | ✅ |
| Private services access | ✅ |
| VPC Flow Logs | ✅ |
| VPC Service Controls | ✅ |
| Web Risk API | ✅ |
| Workflows | ✅ |
| Workload Manager | GSA review |
Azure services¶
Game Warden supports all Azure services authorized for DoW Impact Level environments (IL2-IL6) and FedRAMP.
Source: https://learn.microsoft.com/en-us/azure/azure-government/compliance/azure-services-in-fedramp-auditscope — last synced 2026-05-12
| Service | IL2 | IL4 | IL5 | IL6 |
|---|---|---|---|---|
| Advisor | ✅ | ✅ | ✅ | ✅ |
| AI Builder | ✅ | ✅ | ✅ | |
| Analysis Services | ✅ | ✅ | ✅ | |
| API Management | ✅ | ✅ | ✅ | ✅ |
| App Configuration | ✅ | ✅ | ✅ | ✅ |
| App Service | ✅ | ✅ | ✅ | ✅ |
| Application Gateway | ✅ | ✅ | ✅ | ✅ |
| Automation | ✅ | ✅ | ✅ | ✅ |
| Microsoft Entra ID (Free) | ✅ | ✅ | ✅ | ✅ |
| Microsoft Entra ID (P1 + P2) | ✅ | ✅ | ✅ | ✅ |
| Microsoft Entra Domain Services | ✅ | ✅ | ✅ | |
| Microsoft Entra ID Governance | ✅ | |||
| Microsoft Entra multifactor authentication | ✅ | ✅ | ✅ | ✅ |
| Azure API for FHIR | ✅ | ✅ | ✅ | |
| Azure Arc-enabled Kubernetes | ✅ | ✅ | ✅ | |
| Azure Arc-enabled servers | ✅ | ✅ | ✅ | |
| Azure Arc-enabled SQL Server | ✅ | |||
| Azure Cache for Redis | ✅ | ✅ | ✅ | ✅ |
| Azure Container Apps | ✅ | |||
| Azure Cosmos DB (Including DocumentDB) | ✅ | ✅ | ✅ | ✅ |
| Azure CXP Nomination Portal | ✅ | ✅ | ✅ | |
| Azure Database for MySQL | ✅ | ✅ | ✅ | ✅ |
| Azure Database for PostgreSQL | ✅ | ✅ | ✅ | |
| Azure Databricks | ✅ | ✅ | ✅ | |
| Azure Information Protection | ✅ | ✅ | ✅ | ✅ |
| Azure Kubernetes Service (AKS) | ✅ | ✅ | ✅ | ✅ |
| Azure Fluid Relay | ✅ | |||
| Azure Load Testing | ✅ | |||
| Azure Managed Grafana | ✅ | |||
| Azure Maps | ✅ | ✅ | ✅ | |
| Azure Monitor (incl. Application Insights and Log Analytics ) | ✅ | ✅ | ✅ | ✅ |
| Azure NetApp Files | ✅ | ✅ | ✅ | |
| Azure OpenAI | ✅ | ✅ | ✅ | ✅ |
| Azure Policy | ✅ | ✅ | ✅ | ✅ |
| Azure Policy's guest configuration | ✅ | ✅ | ✅ | |
| Azure Red Hat OpenShift | ✅ | ✅ | ||
| Azure Resource Manager | ✅ | ✅ | ✅ | ✅ |
| Azure Service Manager (RDFE) | ✅ | ✅ | ✅ | ✅ |
| SQL Server on Azure VM | ✅ | |||
| Azure Sign-up portal | ✅ | ✅ | ✅ | |
| Azure Stack | ✅ | ✅ | ✅ | ✅ |
| Azure Stack Edge (formerly Data Box Edge) | ✅ | ✅ | ✅ | ✅ |
| Azure Local | ✅ | ✅ | ✅ | |
| Azure Update Manager | ✅ | |||
| Azure Video Indexer | ✅ | ✅ | ||
| Azure Virtual Desktop (formerly Windows Virtual Desktop) | ✅ | ✅ | ✅ | ✅ |
| Azure VMware Solution | ✅ | ✅ | ✅ | |
| Azure Web PubSub | ✅ | |||
| Backup | ✅ | ✅ | ✅ | ✅ |
| Bastion | ✅ | ✅ | ✅ | ✅ |
| Batch | ✅ | ✅ | ✅ | ✅ |
| Blueprints | ✅ | ✅ | ✅ | |
| Bot Service | ✅ | ✅ | ✅ | |
| Cloud Services | ✅ | ✅ | ✅ | ✅ |
| Cloud Services Extended Support | ✅ | |||
| Cloud Shell | ✅ | ✅ | ✅ | ✅ |
| Foundry: Azure AI Search (formerly Azure Cognitive Search) | ✅ | ✅ | ✅ | ✅ |
| Foundry: Azure AI Computer Vision | ✅ | ✅ | ✅ | |
| Foundry: Azure AI Content Moderator | ✅ | ✅ | ✅ | |
| Azure AI containers | ✅ | ✅ | ✅ | |
| Foundry: Azure AI Custom Vision | ✅ | ✅ | ✅ | |
| Foundry: Azure AI Face | ✅ | ✅ | ✅ | |
| Foundry: LUIS (part of Language ) | ✅ | ✅ | ✅ | ✅ |
| Foundry: Azure AI Personalizer | ✅ | ✅ | ✅ | |
| Foundry: Azure AI QnA Maker (part of Language ) | ✅ | ✅ | ✅ | |
| Foundry: Speech | ✅ | ✅ | ✅ | |
| Foundry Tools: Text Analytics (part of Language ) | ✅ | ✅ | ✅ | |
| Foundry: Translator | ✅ | ✅ | ✅ | |
| Foundry: Azure AI Content Safety | ✅ | |||
| Container Instances | ✅ | ✅ | ✅ | ✅ |
| Container Registry | ✅ | ✅ | ✅ | ✅ |
| Content Delivery Network (CDN) | ✅ | ✅ | ✅ | ✅ |
| Cost Management and Billing | ✅ | ✅ | ✅ | |
| Customer Lockbox | ✅ | ✅ | ✅ | |
| Data Box | ✅ | ✅ | ✅ | ✅ |
| Data Explorer | ✅ | ✅ | ✅ | ✅ |
| Data Factory | ✅ | ✅ | ✅ | ✅ |
| Data Share | ✅ | ✅ | ✅ | |
| Database Migration Service | ✅ | ✅ | ✅ | |
| Dataverse (formerly Common Data Service) | ✅ | ✅ | ✅ | |
| DDoS Protection | ✅ | ✅ | ✅ | |
| Dedicated HSM | ✅ | ✅ | ✅ | |
| DevTest Labs | ✅ | ✅ | ✅ | |
| DNS | ✅ | ✅ | ✅ | ✅ |
| Dynamics 365 Chat (Omnichannel Engagement Hub) | ✅ | ✅ | ✅ | |
| Dynamics 365 Contact Center | ✅ | |||
| Dynamics 365 Customer Insights | ✅ | ✅ | ✅ | |
| Dynamics 365 Customer Service | ✅ | ✅ | ✅ | |
| Dynamics 365 Customer Voice (formerly Forms Pro) | ✅ | ✅ | ✅ | |
| Dynamics 365 Field Service | ✅ | ✅ | ✅ | |
| Dynamics 365 Finance | ✅ | ✅ | ||
| Dynamics 365 Project Service Automation | ✅ | ✅ | ✅ | |
| Dynamics 365 Project Operations | ✅ | |||
| Dynamics 365 Sales | ✅ | ✅ | ✅ | |
| Dynamics 365 Supply Chain Management | ✅ | ✅ | ||
| Event Grid | ✅ | ✅ | ✅ | ✅ |
| Event Hubs | ✅ | ✅ | ✅ | ✅ |
| ExpressRoute | ✅ | ✅ | ✅ | ✅ |
| File Sync | ✅ | ✅ | ✅ | |
| Firewall | ✅ | ✅ | ✅ | ✅ |
| Firewall Manager | ✅ | ✅ | ✅ | |
| Document Intelligence | ✅ | ✅ | ✅ | |
| Front Door | ✅ | ✅ | ✅ | ✅ |
| Functions | ✅ | ✅ | ✅ | ✅ |
| HDInsight | ✅ | ✅ | ✅ | ✅ |
| HPC Cache | ✅ | ✅ | ✅ | |
| Import/Export | ✅ | ✅ | ✅ | |
| IoT Hub | ✅ | ✅ | ✅ | ✅ |
| Key Vault | ✅ | ✅ | ✅ | ✅ |
| Lab Services | ✅ | ✅ | ✅ | |
| Lighthouse | ✅ | ✅ | ✅ | |
| Load Balancer | ✅ | ✅ | ✅ | ✅ |
| Logic Apps | ✅ | ✅ | ✅ | ✅ |
| Machine Learning | ✅ | ✅ | ✅ | ✅ |
| Managed Applications | ✅ | ✅ | ✅ | |
| Media Services | ✅ | ✅ | ✅ | ✅ |
| Microsoft Azure portal | ✅ | ✅ | ✅ | ✅ |
| Microsoft Foundry portal | ✅ | |||
| Microsoft Azure Attestation | ✅ | |||
| Microsoft Azure Government portal | ✅ | ✅ | ✅ | |
| Microsoft Defender for Cloud (formerly Azure Security Center) | ✅ | ✅ | ✅ | ✅ |
| Microsoft Defender for Cloud Apps (formerly Microsoft Cloud App Security) | ✅ | ✅ | ✅ | |
| Microsoft Defender for Endpoint (formerly Microsoft Defender Advanced Threat Protection) | ✅ | ✅ | ✅ | ✅ |
| Microsoft Defender for Identity (formerly Azure Advanced Threat Protection) | ✅ | ✅ | ✅ | ✅ |
| Microsoft Defender for IoT (formerly Azure Security for IoT) | ✅ | ✅ | ✅ | |
| Microsoft Defender Vulnerability Management | ✅ | ✅ | ||
| Microsoft Graph | ✅ | ✅ | ✅ | ✅ |
| Microsoft Intune | ✅ | ✅ | ✅ | |
| Microsoft Purview (incl. Data Map, Data Estate Insights, and governance portal) | ✅ | ✅ | ||
| Microsoft Secure Score | ✅ | ✅ | ||
| Microsoft Sentinel (formerly Azure Sentinel) | ✅ | ✅ | ✅ | ✅ |
| Microsoft Stream | ✅ | ✅ | ✅ | |
| Migrate | ✅ | ✅ | ✅ | |
| Network Watcher (incl. Traffic Analytics ) | ✅ | ✅ | ✅ | ✅ |
| Notification Hubs | ✅ | ✅ | ✅ | |
| Peering Service | ✅ | ✅ | ✅ | |
| Planned Maintenance for VMs | ✅ | ✅ | ✅ | |
| Power Apps | ✅ | ✅ | ✅ | |
| Power Pages (formerly PowerApps Portal) | ✅ | ✅ | ✅ | |
| Power Automate (formerly Microsoft Flow) | ✅ | ✅ | ✅ | |
| Power BI | ✅ | ✅ | ✅ | ✅ |
| Power BI Embedded | ✅ | ✅ | ✅ | |
| Power Data Integrator for Dataverse (formerly Dynamics 365 Integrator App) | ✅ | ✅ | ✅ | |
| Microsoft Copilot Studio | ✅ | ✅ | ||
| Private Link | ✅ | ✅ | ✅ | ✅ |
| Public IP | ✅ | ✅ | ✅ | |
| Resource Graph | ✅ | ✅ | ✅ | ✅ |
| Resource Mover | ✅ | ✅ | ✅ | |
| Route Server | ✅ | ✅ | ✅ | |
| Scheduler (replaced by Logic Apps ) | ✅ | ✅ | ✅ | |
| Service Bus | ✅ | ✅ | ✅ | ✅ |
| Service Fabric | ✅ | ✅ | ✅ | ✅ |
| Service Health | ✅ | ✅ | ✅ | |
| SignalR Service | ✅ | ✅ | ✅ | ✅ |
| Site Recovery | ✅ | ✅ | ✅ | |
| SQL Database | ✅ | ✅ | ✅ | ✅ |
| SQL Managed Instance | ✅ | ✅ | ✅ | |
| SQL Server Stretch Database | ✅ | ✅ | ✅ | |
| Storage: Archive | ✅ | ✅ | ✅ | |
| Storage: Blobs (incl. Azure Data Lake Storage Gen2 ) | ✅ | ✅ | ✅ | ✅ |
| Storage: Disks (incl. managed disks) | ✅ | ✅ | ✅ | ✅ |
| Storage: Files | ✅ | ✅ | ✅ | |
| Storage: Queues | ✅ | ✅ | ✅ | ✅ |
| Storage: Tables | ✅ | ✅ | ✅ | ✅ |
| StorSimple | ✅ | ✅ | ✅ | |
| Stream Analytics | ✅ | ✅ | ✅ | |
| Synapse Analytics | ✅ | ✅ | ✅ | ✅ |
| Synapse Link for Dataverse | ✅ | ✅ | ✅ | |
| Traffic Manager | ✅ | ✅ | ✅ | ✅ |
| Virtual Machine Scale Sets | ✅ | ✅ | ✅ | ✅ |
| Virtual Machines | ✅ | ✅ | ✅ | ✅ |
| Virtual Network | ✅ | ✅ | ✅ | ✅ |
| Virtual Network NAT | ✅ | ✅ | ✅ | |
| Virtual WAN | ✅ | ✅ | ✅ | ✅ |
| VM Image Builder | ✅ | ✅ | ||
| VPN Gateway | ✅ | ✅ | ✅ | ✅ |
| Web Application Firewall | ✅ | ✅ | ✅ |
Source: https://learn.microsoft.com/en-us/azure/azure-government/compliance/azure-services-in-fedramp-auditscope — last synced 2026-05-12
| Service | FedRAMP High |
|---|---|
| Advisor | ✅ |
| AI Builder | ✅ |
| Analysis Services | ✅ |
| API Management | ✅ |
| App Configuration | ✅ |
| App Service | ✅ |
| Application Gateway | ✅ |
| Automation | ✅ |
| Microsoft Entra ID (Free) | ✅ |
| Microsoft Entra ID (P1 + P2) | ✅ |
| Microsoft Entra Domain Services | ✅ |
| Microsoft Entra ID Governance | ✅ |
| Microsoft Entra multifactor authentication | ✅ |
| Azure API for FHIR | ✅ |
| Azure Arc-enabled Kubernetes | ✅ |
| Azure Arc-enabled servers | ✅ |
| Azure Arc-enabled SQL Server | ✅ |
| Azure Cache for Redis | ✅ |
| Azure Container Apps | ✅ |
| Azure Cosmos DB (Including DocumentDB) | ✅ |
| Azure CXP Nomination Portal | ✅ |
| Azure Database for MySQL | ✅ |
| Azure Database for PostgreSQL | ✅ |
| Azure Databricks | ✅ |
| Azure Information Protection | ✅ |
| Azure Kubernetes Service (AKS) | ✅ |
| Azure Fluid Relay | ✅ |
| Azure Load Testing | ✅ |
| Azure Managed Grafana | ✅ |
| Azure Maps | ✅ |
| Azure Monitor (incl. Application Insights and Log Analytics ) | ✅ |
| Azure NetApp Files | ✅ |
| Azure OpenAI | ✅ |
| Azure Policy | ✅ |
| Azure Policy's guest configuration | ✅ |
| Azure Red Hat OpenShift | ✅ |
| Azure Resource Manager | ✅ |
| Azure Service Manager (RDFE) | ✅ |
| SQL Server on Azure VM | ✅ |
| Azure Sign-up portal | ✅ |
| Azure Stack | ✅ |
| Azure Stack Edge (formerly Data Box Edge) | ✅ |
| Azure Local | ✅ |
| Azure Update Manager | ✅ |
| Azure Video Indexer | ✅ |
| Azure Virtual Desktop (formerly Windows Virtual Desktop) | ✅ |
| Azure VMware Solution | ✅ |
| Azure Web PubSub | ✅ |
| Backup | ✅ |
| Bastion | ✅ |
| Batch | ✅ |
| Blueprints | ✅ |
| Bot Service | ✅ |
| Cloud Services | ✅ |
| Cloud Services Extended Support | ✅ |
| Cloud Shell | ✅ |
| Foundry: Azure AI Search (formerly Azure Cognitive Search) | ✅ |
| Foundry: Azure AI Computer Vision | ✅ |
| Foundry: Azure AI Content Moderator | ✅ |
| Azure AI containers | ✅ |
| Foundry: Azure AI Custom Vision | ✅ |
| Foundry: Azure AI Face | ✅ |
| Foundry: LUIS (part of Language ) | ✅ |
| Foundry: Azure AI Personalizer | ✅ |
| Foundry: Azure AI QnA Maker (part of Language ) | ✅ |
| Foundry: Speech | ✅ |
| Foundry Tools: Text Analytics (part of Language ) | ✅ |
| Foundry: Translator | ✅ |
| Foundry: Azure AI Content Safety | ✅ |
| Container Instances | ✅ |
| Container Registry | ✅ |
| Content Delivery Network (CDN) | ✅ |
| Cost Management and Billing | ✅ |
| Customer Lockbox | ✅ |
| Data Box | ✅ |
| Data Explorer | ✅ |
| Data Factory | ✅ |
| Data Share | ✅ |
| Database Migration Service | ✅ |
| Dataverse (formerly Common Data Service) | ✅ |
| DDoS Protection | ✅ |
| Dedicated HSM | ✅ |
| DevTest Labs | ✅ |
| DNS | ✅ |
| Dynamics 365 Chat (Omnichannel Engagement Hub) | ✅ |
| Dynamics 365 Contact Center | ✅ |
| Dynamics 365 Customer Insights | ✅ |
| Dynamics 365 Customer Service | ✅ |
| Dynamics 365 Customer Voice (formerly Forms Pro) | ✅ |
| Dynamics 365 Field Service | ✅ |
| Dynamics 365 Finance | ✅ |
| Dynamics 365 Project Service Automation | ✅ |
| Dynamics 365 Project Operations | ✅ |
| Dynamics 365 Sales | ✅ |
| Dynamics 365 Supply Chain Management | ✅ |
| Event Grid | ✅ |
| Event Hubs | ✅ |
| ExpressRoute | ✅ |
| File Sync | ✅ |
| Firewall | ✅ |
| Firewall Manager | ✅ |
| Document Intelligence | ✅ |
| Front Door | ✅ |
| Functions | ✅ |
| HDInsight | ✅ |
| HPC Cache | ✅ |
| Import/Export | ✅ |
| IoT Hub | ✅ |
| Key Vault | ✅ |
| Lab Services | ✅ |
| Lighthouse | ✅ |
| Load Balancer | ✅ |
| Logic Apps | ✅ |
| Machine Learning | ✅ |
| Managed Applications | ✅ |
| Media Services | ✅ |
| Microsoft Azure portal | ✅ |
| Microsoft Foundry portal | ✅ |
| Microsoft Azure Attestation | ✅ |
| Microsoft Azure Government portal | ✅ |
| Microsoft Defender for Cloud (formerly Azure Security Center) | ✅ |
| Microsoft Defender for Cloud Apps (formerly Microsoft Cloud App Security) | ✅ |
| Microsoft Defender for Endpoint (formerly Microsoft Defender Advanced Threat Protection) | ✅ |
| Microsoft Defender for Identity (formerly Azure Advanced Threat Protection) | ✅ |
| Microsoft Defender for IoT (formerly Azure Security for IoT) | ✅ |
| Microsoft Defender Vulnerability Management | ✅ |
| Microsoft Graph | ✅ |
| Microsoft Intune | ✅ |
| Microsoft Purview (incl. Data Map, Data Estate Insights, and governance portal) | ✅ |
| Microsoft Secure Score | ✅ |
| Microsoft Sentinel (formerly Azure Sentinel) | ✅ |
| Microsoft Stream | ✅ |
| Migrate | ✅ |
| Network Watcher (incl. Traffic Analytics ) | ✅ |
| Notification Hubs | ✅ |
| Peering Service | ✅ |
| Planned Maintenance for VMs | ✅ |
| Power Apps | ✅ |
| Power Pages (formerly PowerApps Portal) | ✅ |
| Power Automate (formerly Microsoft Flow) | ✅ |
| Power BI | ✅ |
| Power BI Embedded | ✅ |
| Power Data Integrator for Dataverse (formerly Dynamics 365 Integrator App) | ✅ |
| Microsoft Copilot Studio | ✅ |
| Private Link | ✅ |
| Public IP | ✅ |
| Resource Graph | ✅ |
| Resource Mover | ✅ |
| Route Server | ✅ |
| Scheduler (replaced by Logic Apps ) | ✅ |
| Service Bus | ✅ |
| Service Fabric | ✅ |
| Service Health | ✅ |
| SignalR Service | ✅ |
| Site Recovery | ✅ |
| SQL Database | ✅ |
| SQL Managed Instance | ✅ |
| SQL Server Stretch Database | ✅ |
| Storage: Archive | ✅ |
| Storage: Blobs (incl. Azure Data Lake Storage Gen2 ) | ✅ |
| Storage: Disks (incl. managed disks) | ✅ |
| Storage: Files | ✅ |
| Storage: Queues | ✅ |
| Storage: Tables | ✅ |
| StorSimple | ✅ |
| Stream Analytics | ✅ |
| Synapse Analytics | ✅ |
| Synapse Link for Dataverse | ✅ |
| Traffic Manager | ✅ |
| Virtual Machine Scale Sets | ✅ |
| Virtual Machines | ✅ |
| Virtual Network | ✅ |
| Virtual Network NAT | ✅ |
| Virtual WAN | ✅ |
| VM Image Builder | ✅ |
| VPN Gateway | ✅ |
| Web Application Firewall | ✅ |
Big Bang¶
Big Bang is the underlying architecture that powers the Game Warden platform. Built on a DoW-approved framework, it provides a standardized set of services that run within the Kubernetes cluster provisioned via AWS—where your application is deployed.
Big Bang–managed services can be configured to run inside your Kubernetes cluster and may include tools such as HashiCorp Vault for secrets management and Istio for service mesh functionality. These services are deployed and maintained by the Game Warden team in accordance with security and operational requirements.
Iron Bank¶
Iron Bank is a DoW-approved container image repository that hosts hardened, continuously monitored images for use in secure environments. Game Warden can source container images from Iron Bank to support managed services within your Kubernetes cluster.
For example, if your application requires a caching service such as Redis (Remote Dictionary Server), Game Warden can deploy a Redis container image from Iron Bank—provided it meets our Acceptance Baseline Criteria. Only approved images are pulled and deployed to ensure compliance with DoW security standards.
Support and deployment¶
Game Warden provisions managed services upon request to ensure alignment with your application’s needs and deployment context. These services are not automatically included and should be identified early in your engagement with the Game Warden team.
If you require managed services, we recommend communicating this need as early as possible—ideally in your Authorization Boundary Diagram, during onboarding, or in pre-sales discussions. The Game Warden team should be aware of your request prior to application deployment. If a managed service need arises later, you can still submit a request via the Support Ticket system.