Supported AWS resource types

  • Release version: Washingtondc
  • Updated January 30, 2025
  • 3 minutes to read

    • Several AWS resource types are imported as CMDB data by the Service Graph Connector for AWS.

    AWS Config resources

    When the AWS Config aggregator is enabled, the following APIs are invoked:
    When the AWS Config aggregator is disabled, the following APIs are invoked:
    Note:
    For a list of AWS resource types supported by AWS Config, see Supported Resource Types on the AWS documentation site.
    Table 1. CMDB CI classes and AWS Config resources
    CMDB CI classes AWS resource type AWS Config resource identifier
    Cloud Network [cmdb_ci_network]

    Amazon VPC

    AWS::EC2::VPC

    Cloud Subnet [cmdb_ci_cloud_subnet]

    Amazon subnet

    AWS::EC2::Subnet

    Cloud Mgmt Network Interface [cmdb_ci_nic]

    Amazon Elastic network interface

    		 AWS::EC2::NetworkInterface
    Compute Security Group [cmdb_ci_compute_security_group]

    Amazon EC2 security group

    AWS::EC2::SecurityGroup
    Storage Volume [cmdb_ci_storage_volume]

    Amazon EBS volume

    AWS::EC2::Volume

    Cloud Load Balancer [cmdb_ci_cloud_load_balancer]

    Classic load balancer

    AWS::ElasticLoadBalancing::LoadBalancer

    Cloud Load Balancer [cmdb_ci_cloud_load_balancer]

    Application load balancer, network load balancer, or gateway load balancer

    AWS::ElasticLoadBalancingV2::LoadBalancer

    Cloud Gateway [cmdb_ci_cloud_gateway]

    API gateway with WebSocket APIs or HTTP APIs

    AWS::ApiGatewayV2::Api
    Virtual Machine Instance [cmdb_ci_vm_instance]

    Amazon EC2 instance

    AWS::EC2::Instance

    Server [cmdb_ci_server]

    Amazon EC2 instance

    AWS::EC2::Instance
    Cloud DataBase [cmdb_ci_cloud_database]

    Amazon RDS DB instance

    AWS::RDS::DBInstance

    Cloud Function [cmdb_ci_cloud_function]

    Lambda function

    AWS::Lambda::Function

    Cloud Object Storage [cmdb_ci_cloud_object_storage]

    Amazon S3 bucket

    AWS::S3::Bucket

    DynamoDB Table [cmdb_ci_dynamodb_table]

    DynamoDB table

    AWS::DynamoDB::Table

    Software [cmdb_ci_spkg]

    Software configuration for managed instances

    AWS::SSM::ManagedInstanceInventory

    Kubernetes Cluster [cmdb_ci_kubernetes_cluster]

    Amazon EKS cluster

    AWS::EKS::Cluster

    Amazon Redshift [cmdb_ci_aws_redshift]

    Amazon Redshift

    AWS::Redshift::Cluster

    Amazon EC2 resources

    Table 2. CMDB CI classes and Amazon EC2 resources
    CMDB CI classes AWS resource type AWS API action
    Availability Zone [cmdb_ci_availability_zone] AWS availability zone None
    Hardware Type [cmdb_ci_compute_template]

    Amazon EC2 instance types

    		 DescribeInstanceTypes

    Image [cmdb_ci_os_template]

    Amazon Machine Image (AMI)

    		 DescribeImages

    Cloud Image [cmdb_ci_cloud_os_image]

    Amazon Machine Image (AMI)

    		 DescribeImages

    Cloud Hardware Type [cmdb_ci_cloud_hardware_type]

    Amazon EC2 instance types

    		 DescribeInstanceTypes

    AWS Systems Manager resources

    All AWS Systems Manager resources invoke the SendCommand API action.

    Table 3. CMDB CI classes and AWS Systems Manager resources
    CMDB CI classes AWS resource type AWS API action

    Running Process [cmdb_running_process]

    Running process in EC2 instances

    		 SendCommand

    TCP Connections [cmdb_tcp]

    TCP connections in EC2 instances

    Kubernetes Node [cmdb_ci_kubernetes_node]

    Amazon EKS node

    Kubernetes Pod [cmdb_ci_kubernetes_pod]

    Amazon EKS pod

    Kubernetes Service [cmdb_ci_kubernetes_service]

    Amazon EKS service

    Kubernetes DaemonSet [cmdb_ci_kubernetes_daemonset]

    Kubernetes DaemonSet

    Kubernetes Namespace [cmdb_ci_kubernetes_namespace]

    Kubernetes namespace

    Kubernetes Deployment [cmdb_ci_kubernetes_deployment]

    Kubernetes deployment

    Docker Container [cmdb_ci_docker_container]

    Docker container

    Kubernetes Volume [cmdb_ci_kubernetes_volume]

    Kubernetes Volume

    Organizations resources

    Table 4. CMDB CI classes and organizations
    CMDB CI classes AWS resource type AWS API action
    Cloud Organizations [cmdb_ci_cloud_org] AWS Organizations DescribeOrganization
    Cloud Service Account [cmdb_ci_cloud_service_account] AWS accounts ListAccounts

    AWS Datacenter [cmdb_ci_aws_datacenter]

    		 AWS regions DescribeRegions

    Resource Group Tagging resources

    Table 5. CMDB CI class and resource group tagging
    CMDB classes AWS resource type AWS API action

    Key Value [cmdb_key_value]

    Tags for AWS Lambda, Amazon DynamoDB, ELBv1, and ELBv2

    		 GetResources

    Generic resources

    Generic resources are stored in the Cloud Resource [cmdb_ci_cmp_resource] CMDB CI class.

    Table 6. CMDB CI classes and generic resources
    CMDB CI class AWS resource type AWS API action
    Cloud Resource [cmdb_ci_cmp_resource]

    State Manager association compliance

    AWS::SSM::AssociationCompliance

    Database subnet group

    AWS::RDS::DBSubnetGroup

    AWS WAF rate based rule

    AWS::WAF::RateBasedRule

    AWS WAF regional rule group

    AWS::WAFRegional::RuleGroup

    AWS WAF regional rate based rule

    AWS::WAFRegional::RateBasedRule

    Managed policies and inline policies

    AWS::IAM::Policy

    AWS WAF Web ACL rule

    AWS::WAF::WebACL

    AWS WAF Regional Web ACL rule

    AWS::WAFRegional::WebACL

    AWS Certificate Manager (ACM) certificate

    AWS::ACM::Certificate

    Amazon EC2 Auto Scaling group

    AWS::AutoScaling::AutoScalingGroup

    IAM user for AWS account

    AWS::IAM::User

    Amazon Redshift event subscription

    AWS::Redshift::EventSubscription

    Amazon RDS DB snapshot

    AWS::RDS::DBSnapshot

    Amazon Redshift cluster parameter group

    AWS::Redshift::ClusterParameterGroup

    Amazon EC2 Auto Scaling group launch configuration

    AWS::AutoScaling::LaunchConfiguration

    Amazon Redshift cluster snapshot

    AWS::Redshift::ClusterSnapshot

    AWS CloudFormation stack

    AWS::CloudFormation::Stack

    AWS CodeBuild project

    AWS::CodeBuild::Project

    AWS Elastic Beanstalk application version

    AWS::ElasticBeanstalk::ApplicationVersion

    AWS CodePipeline pipeline

    AWS::CodePipeline::Pipeline

    Amazon Redshift security group

    AWS::Redshift::ClusterSecurityGroup

    Amazon CloudFront distribution

    AWS::CloudFront::Distribution

    AWS CloudTrail trail

    AWS::CloudTrail::Trail

    Amazon CloudFront streaming distribution

    AWS::CloudFront::StreamingDistribution

    AWS WAF rule group

    AWS::WAF::RuleGroup

    Amazon RDS DB security group

    AWS::RDS::DBSecurityGroup

    Amazon RDS event subscription

    AWS::RDS::EventSubscription

    AWS WAF regional rule

    AWS::WAFRegional::Rule

    AWS WAF rule

    AWS::WAF::Rule

    IAM role for AWS account

    AWS::IAM::Role

    Amazon EC2 Auto Scaling scheduled action

    AWS::AutoScaling::ScheduledAction

    AWS Elastic Beanstalk environment

    AWS::ElasticBeanstalk::Environment

    AWS Redshift cluster

    AWS::Redshift::Cluster

    Amazon EC2 Auto Scaling group scaling policy

    AWS::AutoScaling::ScalingPolicy

    AWS Shield protected AWS resource

    AWS::Shield::Protection

    Amazon CloudWatch alarm

    AWS::CloudWatch::Alarm

    EncryptionConfig - AWS X-Ray

    AWS::XRay::EncryptionConfig

    AWS Shield protected AWS region

    AWS::ShieldRegional::Protection

    Amazon Redshift subnet group

    AWS::Redshift::ClusterSubnetGroup

    AWS Elastic Beanstalk application

    AWS::ElasticBeanstalk::Application

    IAM group for AWS account

    AWS::IAM::Group