<- Back

Auditing and hardening AWS European Sovereign Cloud with Prowler in just a minute

Pedro Martín
Pedro Martín
January 16, 2026
Auditing and hardening AWS European Sovereign Cloud with Prowler in just a minute
This is some text inside of a div block.

TL;DR: AWS European Sovereign Cloud is now GA. Prowler supports it out-of-the-box. Just run prowler aws --region eusc-de-east-1 and you're good to go.

AWS just launched its European Sovereign Cloud (aws-eusc) and, as you'd expect, Prowler is ready to audit your infrastructure in this brand new partition.

What's the AWS European Sovereign Cloud?

AWS splits its infrastructure into partitions - isolated environments in specific locations (regions) with their own IAM, billing, and API endpoints. You're probably already familiar with the standard aws partition seen in any ARN (Amazon Resource Name - arn:partition:service:region:account-id:resource) like aws, aws-cn, aws-us-gov, aws-iso, aws-iso-b, aws-iso-e, aws-iso-f which contains regions like eu-west-1, eu-central-1, or us-east-1.

The AWS European Sovereign Cloud introduces a brand new partition called aws-eusc specifically designed to meet European digital sovereignty requirements. Here's what you need to know:

  • Partition: aws-eusc
  • Initial region: eusc-de-east-1 (Brandenburg, Germany)
  • Domain for endpoints: *.amazonaws.eu (separate from the classic *.amazonaws.com)
  • ARN format: arn:aws-eusc:service:region:account-id:resource

The key takeaway: IAM, billing, and all metadata operate in complete isolation. It's essentially a brand new AWS entirely within the EU.

Running Prowler on AWS EU Sovereign Cloud

The good news? You don't need to do anything special. Prowler automatically detects the partition when you connect. Just make sure to:

  1. Configure your credentials for the aws-eusc partition with the required permissions
  2. Specify the region eusc-de-east-1

# Full scan of your AWS EU Sovereign Cloud account

prowler aws --region eusc-de-east-1

Prowler will automatically resolve the correct endpoints (*.amazonaws.eu) and run all compatible checks across the ~90 services available there at launch.

Why does this matter?

If your organization operates in regulated sectors (government, healthcare, financial services) or simply needs to meet EU data residency requirements, the AWS EU Sovereign Cloud is your new home. And with Prowler, you can validate your security posture from day one, applying the same compliance frameworks (NIS2, CIS, ENS High, GDPR, ISO 27001, etc.) you already know and love.

For more details on how Prowler handles different AWS partitions, check out our Regions and Partitions documentation.

Related articles

AWS
·
June 2, 2025

Secure your entire cloud footprint in minutes with Prowler on AWS

Prowler Team
Read All Posts
Read All Posts

Secure Your Cloud for Free

Free Trial
Free Trial
Book a Live Demo
Book a Live Demo

Join thousands of organizations who trust Prowler to protect their cloud environments. Start your security assessment today

Providers
Platform
Company
Use Cases
© 2025 Prowler. All rights reserved.
Slack
Youtube
X
LinkedIn
Trust Center
Terms of Service
Privacy Policy