Get Started

Getting Started

Deploy

Onboard and Manage Accounts

Amazon Web Services (AWS)

Google Cloud Platform (GCP)

Microsoft Azure

Oracle Cloud Infrastructure (OCI)

Additional Providers

Collect and Integrate Data

Harvesting & Event-Driven Harvesting

Integrations

Understand Data

Visibility & Reporting

Inventory

Query Filters & Insights

Manage and Act on Data

Bots & Automation

Infrastructure as Code (IaC) Security

Cloud IAM Governance

Vulnerability Management

Workload Security

Manage System Settings

InsightCloudSec System Configuration

Developer Resources

APIs

Support

EDH - Supported Resources (AWS)

This page includes a complete list of the AWS supported resources for Event-Drive Harvesting (EDH) as an alphabetized list of the AWS resource names.

Refer to Resource Terminology and our Resource Matrix for details or cross-references on the InsightCloudSec normalized resource terminology.
Refer to AWS' documentation for details on the differences between the AWS GovCloud (US) Regions and the standard AWS Regions.

Supported Resources

EDH Supported Resources for AWS
Amazon Macie
API Gateway
API Gateway Key
API Gateway Stage
App Stream Fleet
AppSync API
Athena Workgroup
AutoScaling Groups
AutoScaling Launch Config
AWS Glue (Crawler, Job)
Backup Vault
Broker MQ Instances
Cloud Account
CloudFront
CloudTrail
CloudWatch/Event Bridge Event Bus/Log Groups
CFT
CodeBuild Project
Cognito User Pool
Database Migration Service
Directory Service
DynamoDB
DynamoDB Accelerator (DAX)
EBS Snapshots
EBS Volumes
EC2/VPC Instances
ECR
EKS/ECS/Fargate Cluster
Elastic IP Address
ElasticSearch
Encryption Keys (KMS)
Glue Data Catalog
Glue Security Configuration
GuardDuty (Detector)
HyperVisor
IAM Groups
IAM Password Policy
IAM Policies
IAM Roles
IAM Users
Identity Provider
Internet Gateways
Kinesis
Lambda
Lambda Layer
Load Balancer
Managed Airflow Environment
Memcache/Redis
MSK Instance
NAT Gateways
Network Interface
Placement Group
Private Image
RDS Cluster
RDS Snapshot
RDS
Region
RedShift
Route53
Route Tables
S3
S3 Access Point
Secret
Serverless Application Repository
SFTP Server
SNS Subscription
SNS Topic
SSH Keypairs
SSM Document
Security Groups and Network ACLs
Service Access Key
Simple Email Service (SES)
Subnets
SQS
Systems Manager (SSM)
Transcription Job
VPC Endpoints
VPC Flow Logs
VPC Network Peers
VPCs
VPC Traffic Mirror Target
Workspace Instances

Supported Events

The following events are currently configured to publish to Consumers.


text
1
Resource Type:
2
    SupportedEvent
3
    
4
API Gateway:
5
    CreateAuthorizer
6
    CreateRestApi
7
    DeleteAuthorizer
8
    DeleteRestApi
9
    ImportRestApi
10
    UpdateAuthorizer
11
    UpdateRestApi
12
    
13
API Gateway Key:
14
    CreateApiKey
15
    DeleteApiKey
16
    UpdateApiKey
17

18
API Gateway Stage:
19
    CreateStage
20
    DeleteStage
21
    UpdateStage
22

23
App Stream Fleet:
24
    CreateFleet
25
    DeleteFleet
26
    UpdateFleet
27
    StartFleet
28
    StopFleet
29

30
AppSync API:
31
    CreateGraphqlApi
32
    DeleteGraphqlApi
33
    UpdateGraphqlApi
34
    
35
Athena Workgroup:
36
    CreateWorkGroup
37
    DeleteWorkGroup
38
    UpdateWorkGroup
39

40
AutoScaling Groups:
41
    AttachInstances
42
    CreateAutoScalingGroup
43
    CreateOrUpdateTags
44
    DeleteAutoScalingGroup
45
    DetachInstances
46
    PutScalingPolicy
47
    SetDesiredCapacity
48
    SetInstanceProtection
49
    UpdateAutoScalingGroup
50
    
51
AutoScaling Launch Config:
52
    CreateLaunchConfiguration
53
    DeleteLaunchConfiguration
54
    
55
Backup Vault:
56
    CreateBackupVault
57
    DeleteBackupVault
58
    PutBackupVaultAccessPolicy
59

60
Broker MQ Instances:
61
    CreateBroker
62
    DeleteBroker
63
    UpdateBroker
64

65
Cloud Account:
66
    DeleteAccountPasswordPolicy
67
    DeleteAccountPublicAccessBlock
68
    PutAccountPublicAccessBlock
69
    UpdateAccountPasswordPolicy
70
    
71
CloudFront:
72
    CreateDistribution
73
    DeleteDistribution
74
    UpdateDistribution   
75
    
76
CloudTrail:
77
    BidEvictedEvent
78
    CreateTrail
79
    DeleteTrail
80
    UpdateTrail
81
    StopLogging
82
    StartLogging    
83

84
CloudWatch/Event Bridge Event Bus:
85
    CreateEventBus
86
    DeleteEventBus
87
    PutPermission
88
    RemovePermission
89
    
90
CloudWatch/Log Groups:
91
    CreateLogGroup
92
    DeleteLogGroup
93
    ServiceLogGroup
94

95
CFT:
96
    CancelUpdateStack
97
    CreateStack
98
    DeleteStack
99
    UpdateStack
100
    UpdateTerminationProtection
101

102
CodeBuild Project:
103
    CreateProject
104
    UpdateProject
105

106
Cognito User Pool:
107
    CreateUserPool
108
    DeleteUserPool
109
    SetUserPoolMfaConfig
110
    UpdateUserPool
111
    UpdateUserPoolClient
112

113
Database Migration Service:
114
    CreateReplicationInstance
115
    DeleteReplicationInstance
116
    ModifyReplicationInstance
117
    
118
Directory Service:
119
    CreateDirectory
120
    CreateMicrosoftAD
121
    DeleteDirectory
122

123
EBS Snapshots:
124
    CreateSnapshot
125
    CreateTags
126
    DeleteSnapshot
127
    DeleteTags
128
    ModifyDBClusterSnapshotAttribute
129
    ModifyDBSnapshotAttribute
130
    ModifyDocumentPermission
131
    ModifyImageAttribute
132
    ModifySnapshotAttribute
133
    ResetImageAttribute
134
    SharedSnapshotCopyInitiated
135
    SharedSnapshotVolumeCreated
136
    
137
EBS Volumes:
138
    AttachVolume
139
    CreateTags
140
    CreateVolume
141
    DeleteTags
142
    DeleteVolume
143
    DetachVolume
144
    ModifyVolume
145
    ModifyVolumeAttribute    
146
    
147
EC2/VPC Instances:
148
    AssociateIamInstanceProfile
149
    CreateTags
150
    DeleteTags
151
    DisassociateIamInstanceProfile
152
    ModifyInstanceAttribute
153
    MonitorInstances
154
    RebootInstances
155
    RunInstances
156
    StartInstances
157
    StartSession
158
    StopInstances
159
    TerminateInstances
160
    UnmonitorInstances
161

162
ECR:
163
    CreateRepository
164
    DeleteLifecyclePolicy
165
    DeleteRepository
166
    DeleteRepositoryPolicy
167
    PutLifecyclePolicy
168
    SetRepositoryPolicy
169
EKS/ECS/Fargate Cluster:
170
    CreateCluster
171
    DeleteCluster
172
    UpdateClusterConfig
173
    UpdateClusterVersion
174

175
ElastiCache
176
    AddTagsToResource
177
    CreateCacheCluster
178
    CreateReplicationGroup
179
    DeleteCacheCluster
180
    DeleteReplicationGroup
181
    ModifyCacheCluster
182
    ModifyReplicationGroup
183
    RebootCacheCluster
184
    RemoveTagsFromResource
185
    
186
Elastic IP Addresses:
187
    AllocateAddress
188
ElasticSearch:
189
    CreateDomain
190
    CreateElasticsearchDomain
191
    CreateFileSystem
192
    DeleteDomain
193
    DeleteElasticsearchDomain
194
    DeleteFileSystem
195
    PutFileSystemPolicy
196
    UpdateDomainConfig
197
    UpdateFileSystem
198
    UpgradeDomain
199
    UpgradeElasticsearchDomain
200
    UpdateElasticsearchDomainConfig
201
    
202
Encryption Keys (KMS):
203
    CreateKey
204
    DisableKey
205
    DisableKeyRotation
206
    EnableKey
207
    EnableKeyRotation
208
    PutKeyPolicy
209
    TagResource
210
    UntagResource
211
    UpdateKeyDescription
212
    
213
Glue Data Catalog:
214
    DeleteResourcePolicy
215
    PutResourcePolicy
216
    PutDataCatalogEncryptionSettings
217
    
218
Glue Security Configuration:
219
    CreateSecurityConfiguration
220
    DeleteSecurityConfiguration
221

222
HyperVisor:
223
    AllocateHosts
224
    ModifyHosts
225
    ReleaseHosts
226
    
227
IAM Groups:
228
    AttachGroupPolicy
229
    CreateGroup
230
    DeleteGroup
231
    DeleteGroupPolicy
232
    DetachGroupPolicy
233
    PutGroupPolicy
234
    
235
IAM Password Policy:
236
    DeleteAccountPasswordPolicy
237
    DeleteAccountPublicAccessBlock
238
    PutAccountPublicAccessBlock
239
    UpdateAccountPasswordPolicy    
240

241
IAM Policies:
242
    CreatePolicy
243
    CreatePolicyVersion
244
    CreateSAMLProvider
245
    DeleteAccountPasswordPolicy
246
    DeleteAccountPublicAccessBlock
247
    DeletePolicy
248
    DeletePolicyVersion
249
    DeleteSAMLProvider
250
    PutAccountPublicAccessBlock
251
    UpdateAccountPasswordPolicy
252

253
IAM Roles:
254
    AttachRolePolicy
255
    ConsoleLogin
256
    CreateRole
257
    DeleteRole
258
    DeleteRolePermissionsBoundary
259
    DeleteRolePolicy
260
    DetachRolePolicy
261
    PutRolePermissionsBoundary
262
    PutRolePolicy
263
    TagRole
264
    UntagRole
265
    UpdateAssumeRolePolicy
266
    UpdateRole
267
    
268
IAM Users:
269
    AddUserToGroup
270
    AttachUserPolicy
271
    ConsoleLogin
272
    CreateLoginProfile
273
    CreateUser
274
    CreateVirtualMFADevice
275
    DeactivateMFADevice
276
    DeleteLoginProfile
277
    DeleteUser
278
    DeleteUserPolicy
279
    DeleteVirtualMFADevice
280
    DetachUserPolicy
281
    EnableMFADevice
282
    PutUserPolicy
283
    RemoveUserFromGroup
284
    TagUser
285
    UntagUser
286
    UpdateUser
287
    
288
Identity Provider:
289
    CreateSAMLProvider
290
    DeleteSAMLProvider
291
    
292
Internet Gateways:
293
    AttachInternetGateway
294
    CreateInternetGateway
295
    DeleteInternetGateway
296
    DetachInternetGateway
297

298
Lambda:
299
    AddPermission
300
    CreateFunction
301
    DeleteFunction
302
    RemovePermission
303
    UpdateFunctionConfiguration
304

305
Lambda Layer:
306
    AddLayerVersionPermission
307
    AddLayerVersionPermission20181031
308
    DeleteLayerVersion
309
    DeleteLayerVersion20181031
310
    PublishLayerVersion
311
    PublishLayerVersion20181031
312
    RemoveLayerVersionPermission
313
    RemoveLayerVersionPermission20181031
314
    
315
Load Balancer:
316
    AddTags
317
    ApplySecurityGroupsToLoadBalancer
318
    AttachLoadBalancerToSubnets
319
    CreateLoadBalancer
320
    CreateLoadBalancerListeners
321
    DeleteLoadBalancer
322
    DeleteLoadBalancerListeners
323
    DeregisterInstancesFromLoadBalancer
324
    DetachLoadBalancerFromSubnets
325
    ModifyLoadBalancerAttributes
326
    RegisterInstancesWithLoadBalancer
327
    RemoveTags
328
    SetSecurityGroups
329
    SetSubnets
330
    
331
Managed Airflow Environment:
332
    CreateEnvironment
333
    DeleteEnvironment
334
    UpdateEnvironment
335

336
MSK Instance:
337
    CreateCluster
338
    DeleteCluster
339
    UpdateBrokerCount 
340
    UpdateBrokerStorage
341
    UpdateBrokerType 
342
    UpdateClusterKafkaVersion
343
    UpdateConnectivity 
344
    UpdateMonitoring  
345
    UpdateSecurity
346
   
347
NAT Gateways:
348
    CreateNatGateway
349
    DeleteNatGateway
350
    
351
Network Interface:
352
    CreateNetworkInterface
353
    DeleteNetworkInterface
354
    ModifyNetworkInterfaceAttribute
355
    
356
Placement Group:
357
    CreatePlacementGroup
358
    DeletePlacementGroup
359
    
360
Private Image:
361
    CreateImage
362
    DeregisterImage
363
    ImportImage
364
    RegisterImage
365
     
366
RDS Cluster:
367
    CreateDBCluster
368
    DeleteDBCluster
369
    ModifyDBCluster
370
    StartDBCluster
371
    StopDBCluster
372
    
373
RDS Snapshot:
374
    AddTagsToResource
375
    CreateDBClusterSnapshot
376
    CreateDBSnapshot
377
    DeleteDBClusterSnapshot
378
    DeleteDBSnapshot
379
    RemoveTagsFromResource
380
    
381
RDS:
382
    AddTagsToResource
383
    CreateDBInstance
384
    CreateDBInstanceReadReplica
385
    DeleteDBInstance
386
    ModifyDBInstance
387
    RebootDBInstance
388
    RemoveTagsFromResource
389
    StartDBInstance
390
    StopDBInstance
391
    
392
RedShift:
393
    AuthorizeSnapshotAccess
394
    BatchDeleteClusterSnapshots
395
    CreateCluster
396
    CreateClusterSnapshot
397
    CreateTags
398
    DeleteCluster
399
    DeleteClusterSnapshot
400
    DeleteTags
401
    DisableLogging
402
    EnableLogging
403
    ModifyCluster
404
    RebootCluster
405
    ResizeCluster
406
    RevokeSnapshotAccess
407

408
Region:
409
    ResetServiceSetting
410
    UpdateServiceSetting
411

412
Route53:
413
    CreateHostedZone
414
    DeleteHostedZone
415

416
Route Tables:
417
    AssociateRouteTable
418
    CreateRoute
419
    CreateRouteTable
420
    DeleteRoute
421
    DeleteRouteTable
422
    DisassociateRouteTable
423
    ReplaceRoute
424
    ReplaceRouteTableAssociation
425
    
426
S3:
427
    CreateBucket
428
    DeleteBucket
429
    DeleteBucketEncryption
430
    DeleteBucketOwnershipControls
431
    DeleteBucketPolicy
432
    DeleteBucketPublicAccessBlock
433
    DeleteBucketTagging
434
    DeleteBucketWebsite
435
    PutBucketAcl
436
    PutBucketEncryption
437
    PutBucketLogging
438
    PutBucketOwnershipControls
439
    PutBucketPolicy
440
    PutBucketPublicAccessBlock
441
    PutBucketTagging
442
    PutBucketVersioning
443
    PutBucketWebsite
444
    
445
S3 Access Point:
446
    CreateAccessPoint
447
    DeleteAccessPoint
448
    DeleteAccessPointPolicy
449
    PutAccessPointPolicy
450

451
Secret:
452
    CancelRotateSecret
453
    CreateSecret
454
    DeleteSecret
455
    PutSecretValue
456
    RotateSecret
457
    TagResource
458
    UntagResource
459
    UpdateSecret
460

461
Serverless Application Repository:
462
    CreateApplication
463
    DeleteApplication
464
    PutApplicationPolicy
465
    UpdateApplication
466
    
467
Simple Email Service (+ EmailServiceRules): 
468
    CreateConfigurationSe
469
    CreateCustomVerificationEmailTemplate
470
    CreateEmailIdentity
471
    CreateEmailIdentityPolicy
472
    CreateEmailTemplate
473
    CreateReceiptRule
474
    CreateReceiptRuleSet
475
    DeleteEmailIdentity
476
    DeleteConfigurationSet
477
    DeleteCustomVerificationEmailTemplate
478
    DeleteIdentity
479
    DeleteReceiptRule
480
    DeleteReceiptRuleSet
481
    DeleteTemplate
482
    SetActiveReceiptRuleSet
483
    UpdateEmailIdentityPolicy
484
    UpdateReceiptRule
485
    UpdateReceiptRuleSet
486

487
SFTP Server:
488
    CreateServer
489
    CreateUser
490
    DeleteServer
491
    DeleteUser
492
    StartServer
493
    StopServer
494
    UpdateServer
495
    UpdateUser
496

497
SNS Subscription:
498
    SetSubscriptionAttributes
499
    Unsubscribe   
500
    
501
SNS Topic:
502
    CreateTopic
503
    DeleteTopic
504
    SetTopicAttributes
505
    TagQueue
506
    UntagQueue
507
    
508
SSH Keypairs:
509
    CreateKeyPair
510
    DeleteKeyPair
511
    ImportKeyPair
512
    
513
SSM Document:
514
    AddTagsToResource
515
    CreateDocument
516
    DeleteDocument
517
    RemoveTagsFromResource
518
    UpdateDocument
519
    UpdateDocumentDefaultVersion
520
    
521
Security Groups and Network ACLs:
522
    AuthorizeSecurityGroupEgress
523
    AuthorizeSecurityGroupIngress
524
    CreateNetworkAcl
525
    CreateNetworkAclEntry
526
    CreateSecurityGroup
527
    CreateTags
528
    DeleteNetworkAcl
529
    DeleteNetworkAclEntry
530
    DeleteSecurityGroup
531
    DeleteTags
532
    ModifySecurityGroupRules
533
    ReplaceNetworkAclAssociation
534
    ReplaceNetworkAclEntry
535
    RevokeSecurityGroupEgress
536
    RevokeSecurityGroupIngress
537
    UpdateSecurityGroupRuleDescriptionsEgress
538
    UpdateSecurityGroupRuleDescriptionsIngress
539
    
540
Service Access Key:
541
    CreateAccessKey
542
    DeleteAccessKey
543
    UpdateAccessKey
544
    
545
SQS:
546
    AddPermission
547
    CreateQueue
548
    DeleteQueue
549
    RemovePermission
550
    SetQueueAttributes
551
    
552
Systems Manager (SSM) Agent:
553
    DeleteParameter
554
    DeleteParameters
555
    PutParameter
556
    StartSession
557
    
558
Transcription Job:
559
    DeleteMedicalTranscriptionJob
560
    DeleteTranscriptionJob
561
    StartMedicalTranscriptionJob
562
    StartTranscriptionJob
563
       
564
VPC Endpoints:
565
    AcceptVpcEndpointConnections
566
    CreateVpcEndpoint
567
    CreateVpcEndpointServiceConfiguration
568
    DeleteVpcEndpoint
569
    DeleteVpcEndpointServiceConfigurations
570
    ModifyVpcEndpoint
571
    ModifyVpcEndpointServiceConfiguration
572
    ModifyVpcEndpointServicePermissions
573
    RejectVpcEndpointConnections
574

575
VPC Flow Logs:
576
    CreateFlowLogs
577
    DeleteFlowLogs
578
    
579
VPC Network Peer:
580
    AcceptVpcPeeringConnection
581
    CreateVpcPeeringConnection
582
    DeleteVpcPeeringConnection            
583
    RejectVpcPeeringConnection    
584

585
VPCs:
586
    AssociateDhcpOptions
587
    AssociateVpcCidrBlock
588
    CreateTags
589
    CreateVpc
590
    DeleteTags
591
    DeleteVpc
592
    DisassociateVpcCidrBlock
593

594
VPC Subnets:
595
    CreateSubnet
596
    CreateTags
597
    DeleteSubnet
598
    DeleteTags
599
    
600
VPC Traffic Mirror Targets:
601
    CreateTrafficMirrorTarget
602
    DeleteTrafficMirrorTarget
603

604
Workspaces: 
605
    CreateWorkspaces
606
    ModifyWorkspaceProperties
607
    RebootWorkspaces
608
    StartWorkspaces
609
    StopWorkspaces
610
    TerminateWorkspaces

Did this page help you?

Harvesting & Event-Driven Harvesting

AWS Event-Driven Harvesting

Harvesting & Event-Driven Harvesting

EDH - Fully Automatic Setup Option (AWS)