Get Started

Getting Started

Deploy

Onboard and Manage Accounts

Amazon Web Services (AWS)

Google Cloud Platform (GCP)

Microsoft Azure

Oracle Cloud Infrastructure (OCI)

Additional Providers

Collect and Integrate Data

Harvesting & Event-Driven Harvesting

Integrations

Understand Data

Visibility & Reporting

Inventory

Query Filters & Insights

Manage and Act on Data

Bots & Automation

Infrastructure as Code (IaC) Security

Cloud IAM Governance

Vulnerability Management

Workload Security

Manage System Settings

InsightCloudSec System Configuration

Developer Resources

APIs

Support

EDH - Supported Resources (AWS)

This page includes a complete list of the AWS supported resources for Event-Drive Harvesting (EDH) as an alphabetized list of the AWS resource names.

Refer to Resource Terminology and our Resource Matrix for details or cross-references on the InsightCloudSec normalized resource terminology.
Refer to AWS' documentation for details on the differences between the AWS GovCloud (US) Regions and the standard AWS Regions.

Supported Resources

EDH Supported Resources for AWS
Amazon Macie
API Gateway
API Gateway Key
API Gateway Stage
App Stream Fleet
AppSync API
Athena Workgroup
AutoScaling Groups
AutoScaling Launch Config
Backup Vault
Broker MQ Instances
Cloud Account
CloudFront
CloudTrail
CloudWatch/Event Bridge Event Bus/Log Groups
CFT
CodeBuild Project
Cognito User Pool
Database Migration Service
Directory Service
DynamoDB
DynamoDB Accelerator (DAX)
EBS Snapshots
EBS Volumes
EC2/VPC Instances
ECR
EKS/ECS/Fargate Cluster
Elastic IP Address
ElasticSearch
Encryption Keys (KMS)
Glue Data Catalog
Glue Security Configuration
GuardDuty (Detector)
HyperVisor
IAM Groups
IAM Password Policy
IAM Policies
IAM Roles
IAM Users
Identity Provider
Internet Gateways
Lambda
Lambda Layer
Load Balancer
Managed Airflow Environment
Memcache/Redis
MSK Instance
NAT Gateways
Network Interface
Placement Group
Private Image
RDS Cluster
RDS Snapshot
RDS
Region
RedShift
Route53
Route Tables
S3
S3 Access Point
Secret
Serverless Application Repository
SFTP Server
SNS Subscription
SNS Topic
SSH Keypairs
SSM Document
Security Groups and Network ACLs
Service Access Key
Simple Email Service (SES)
Subnets
SQS
Systems Manager (SSM)
Transcription Job
VPC Endpoints
VPC Flow Logs
VPC Network Peers
VPCs
VPC Traffic Mirror Target
Workspace Instances

Supported Events

The following events are currently configured to publish to Consumers.


text
1
Resource Type:
2
    SupportedEvent
3
    
4
API Gateway:
5
    CreateAuthorizer
6
    DeleteAuthorizer
7
    UpdateAuthorizer
8
    
9
API Gateway Key:
10
    CreateApiKey
11
    DeleteApiKey
12
    UpdateApiKey
13

14
API Gateway Stage:
15
    CreateStage
16
    DeleteStage
17
    UpdateStage
18

19
App Stream Fleet:
20
    CreateFleet
21
    DeleteFleet
22
    UpdateFleet
23
    StartFleet
24
    StopFleet
25

26
AppSync API:
27
    CreateGraphqlApi
28
    DeleteGraphqlApi
29
    UpdateGraphqlApi
30
    
31
Athena Workgroup:
32
    CreateWorkGroup
33
    DeleteWorkGroup
34
    UpdateWorkGroup
35

36
AutoScaling Groups:
37
    AttachInstances
38
    CreateAutoScalingGroup
39
    CreateOrUpdateTags
40
    DeleteAutoScalingGroup
41
    DetachInstances
42
    PutScalingPolicy
43
    SetDesiredCapacity
44
    SetInstanceProtection
45
    UpdateAutoScalingGroup
46
    
47
AutoScaling Launch Config:
48
    CreateLaunchConfiguration
49
    DeleteLaunchConfiguration
50
    
51
Backup Vault:
52
    CreateBackupVault
53
    DeleteBackupVault
54
    PutBackupVaultAccessPolicy
55

56
Broker MQ Instances:
57
    CreateBroker
58
    DeleteBroker
59
    UpdateBroker
60

61
Cloud Account:
62
    DeleteAccountPasswordPolicy
63
    DeleteAccountPublicAccessBlock
64
    PutAccountPublicAccessBlock
65
    UpdateAccountPasswordPolicy
66
    
67
CloudFront:
68
    CreateDistribution
69
    DeleteDistribution
70
    UpdateDistribution   
71
    
72
CloudTrail:
73
    BidEvictedEvent
74
    CreateTrail
75
    DeleteTrail
76
    UpdateTrail
77
    StopLogging
78
    StartLogging    
79

80
CloudWatch/Event Bridge Event Bus:
81
    CreateEventBus
82
    DeleteEventBus
83
    PutPermission
84
    RemovePermission
85
    
86
CloudWatch/Log Groups:
87
    CreateLogGroup
88
    DeleteLogGroup
89
    ServiceLogGroup
90

91
CFT:
92
    CancelUpdateStack
93
    CreateStack
94
    DeleteStack
95
    UpdateStack
96
    UpdateTerminationProtection
97

98
CodeBuild Project:
99
    CreateProject
100
    UpdateProject
101

102
Cognito User Pool:
103
    CreateUserPool
104
    DeleteUserPool
105
    SetUserPoolMfaConfig
106
    UpdateUserPool
107
    UpdateUserPoolClient
108

109
Database Migration Service:
110
    CreateReplicationInstance
111
    DeleteReplicationInstance
112
    ModifyReplicationInstance
113
    
114
Directory Service:
115
    CreateDirectory
116
    CreateMicrosoftAD
117
    DeleteDirectory
118

119
EBS Snapshots:
120
    CreateSnapshot
121
    CreateTags
122
    DeleteSnapshot
123
    DeleteTags
124
    ModifyDBClusterSnapshotAttribute
125
    ModifyDBSnapshotAttribute
126
    ModifyDocumentPermission
127
    ModifyImageAttribute
128
    ModifySnapshotAttribute
129
    ResetImageAttribute
130
    SharedSnapshotCopyInitiated
131
    SharedSnapshotVolumeCreated
132
    
133
EBS Volumes:
134
    AttachVolume
135
    CreateTags
136
    CreateVolume
137
    DeleteTags
138
    DeleteVolume
139
    DetachVolume
140
    ModifyVolume
141
    ModifyVolumeAttribute    
142
    
143
EC2/VPC Instances:
144
    AssociateIamInstanceProfile
145
    CreateTags
146
    DeleteTags
147
    DisassociateIamInstanceProfile
148
    ModifyInstanceAttribute
149
    MonitorInstances
150
    RebootInstances
151
    RunInstances
152
    StartInstances
153
    StartSession
154
    StopInstances
155
    TerminateInstances
156
    UnmonitorInstances
157

158
ECR:
159
    CreateRepository
160
    DeleteLifecyclePolicy
161
    DeleteRepository
162
    DeleteRepositoryPolicy
163
    PutLifecyclePolicy
164
    SetRepositoryPolicy
165
EKS/ECS/Fargate Cluster:
166
    CreateCluster
167
    DeleteCluster
168
    UpdateClusterConfig
169
    UpdateClusterVersion
170

171
ElastiCache
172
    AddTagsToResource
173
    CreateCacheCluster
174
    CreateReplicationGroup
175
    DeleteCacheCluster
176
    DeleteReplicationGroup
177
    ModifyCacheCluster
178
    ModifyReplicationGroup
179
    RebootCacheCluster
180
    RemoveTagsFromResource
181
    
182
Elastic IP Addresses:
183
    AllocateAddress
184
ElasticSearch:
185
    CreateDomain
186
    CreateElasticsearchDomain
187
    CreateFileSystem
188
    DeleteDomain
189
    DeleteElasticsearchDomain
190
    DeleteFileSystem
191
    PutFileSystemPolicy
192
    UpdateDomainConfig
193
    UpdateFileSystem
194
    UpgradeDomain
195
    UpgradeElasticsearchDomain
196
    UpdateElasticsearchDomainConfig
197
    
198
Encryption Keys (KMS):
199
    CreateKey
200
    DisableKey
201
    DisableKeyRotation
202
    EnableKey
203
    EnableKeyRotation
204
    PutKeyPolicy
205
    TagResource
206
    UntagResource
207
    UpdateKeyDescription
208
    
209
Glue Data Catalog:
210
    DeleteResourcePolicy
211
    PutResourcePolicy
212
    PutDataCatalogEncryptionSettings
213
    
214
Glue Security Configuration:
215
    CreateSecurityConfiguration
216
    DeleteSecurityConfiguration
217

218
HyperVisor:
219
    AllocateHosts
220
    ModifyHosts
221
    ReleaseHosts
222
    
223
IAM Groups:
224
    AttachGroupPolicy
225
    CreateGroup
226
    DeleteGroup
227
    DeleteGroupPolicy
228
    DetachGroupPolicy
229
    PutGroupPolicy
230
    
231
IAM Password Policy:
232
    DeleteAccountPasswordPolicy
233
    DeleteAccountPublicAccessBlock
234
    PutAccountPublicAccessBlock
235
    UpdateAccountPasswordPolicy    
236

237
IAM Policies:
238
    CreatePolicy
239
    CreatePolicyVersion
240
    CreateSAMLProvider
241
    DeleteAccountPasswordPolicy
242
    DeleteAccountPublicAccessBlock
243
    DeletePolicy
244
    DeletePolicyVersion
245
    DeleteSAMLProvider
246
    PutAccountPublicAccessBlock
247
    UpdateAccountPasswordPolicy
248

249
IAM Roles:
250
    AttachRolePolicy
251
    ConsoleLogin
252
    CreateRole
253
    DeleteRole
254
    DeleteRolePermissionsBoundary
255
    DeleteRolePolicy
256
    DetachRolePolicy
257
    PutRolePermissionsBoundary
258
    PutRolePolicy
259
    TagRole
260
    UntagRole
261
    UpdateAssumeRolePolicy
262
    UpdateRole
263
    
264
IAM Users:
265
    AddUserToGroup
266
    AttachUserPolicy
267
    ConsoleLogin
268
    CreateLoginProfile
269
    CreateUser
270
    CreateVirtualMFADevice
271
    DeactivateMFADevice
272
    DeleteLoginProfile
273
    DeleteUser
274
    DeleteUserPolicy
275
    DeleteVirtualMFADevice
276
    DetachUserPolicy
277
    EnableMFADevice
278
    PutUserPolicy
279
    RemoveUserFromGroup
280
    TagUser
281
    UntagUser
282
    UpdateUser
283
    
284
Identity Provider:
285
    CreateSAMLProvider
286
    DeleteSAMLProvider
287
    
288
Internet Gateways:
289
    AttachInternetGateway
290
    CreateInternetGateway
291
    DeleteInternetGateway
292
    DetachInternetGateway
293

294
Lambda:
295
    AddPermission
296
    CreateFunction
297
    DeleteFunction
298
    RemovePermission
299
    UpdateFunctionConfiguration
300

301
Lambda Layer:
302
    AddLayerVersionPermission
303
    AddLayerVersionPermission20181031
304
    DeleteLayerVersion
305
    DeleteLayerVersion20181031
306
    PublishLayerVersion
307
    PublishLayerVersion20181031
308
    RemoveLayerVersionPermission
309
    RemoveLayerVersionPermission20181031
310
    
311
Load Balancer:
312
    AddTags
313
    ApplySecurityGroupsToLoadBalancer
314
    AttachLoadBalancerToSubnets
315
    CreateLoadBalancer
316
    CreateLoadBalancerListeners
317
    DeleteLoadBalancer
318
    DeleteLoadBalancerListeners
319
    DeregisterInstancesFromLoadBalancer
320
    DetachLoadBalancerFromSubnets
321
    ModifyLoadBalancerAttributes
322
    RegisterInstancesWithLoadBalancer
323
    RemoveTags
324
    SetSecurityGroups
325
    SetSubnets
326
    
327
Managed Airflow Environment:
328
    CreateEnvironment
329
    DeleteEnvironment
330
    UpdateEnvironment
331

332
MSK Instance:
333
    CreateCluster
334
    DeleteCluster
335
    UpdateBrokerCount 
336
    UpdateBrokerStorage
337
    UpdateBrokerType 
338
    UpdateClusterKafkaVersion
339
    UpdateConnectivity 
340
    UpdateMonitoring  
341
    UpdateSecurity
342
   
343
NAT Gateways:
344
    CreateNatGateway
345
    DeleteNatGateway
346
    
347
Network Interface:
348
    CreateNetworkInterface
349
    DeleteNetworkInterface
350
    ModifyNetworkInterfaceAttribute
351
    
352
Placement Group:
353
    CreatePlacementGroup
354
    DeletePlacementGroup
355
    
356
Private Image:
357
    CreateImage
358
    DeregisterImage
359
    ImportImage
360
    RegisterImage
361
     
362
RDS Cluster:
363
    CreateDBCluster
364
    DeleteDBCluster
365
    ModifyDBCluster
366
    StartDBCluster
367
    StopDBCluster
368
    
369
RDS Snapshot:
370
    AddTagsToResource
371
    CreateDBClusterSnapshot
372
    CreateDBSnapshot
373
    DeleteDBClusterSnapshot
374
    DeleteDBSnapshot
375
    RemoveTagsFromResource
376
    
377
RDS:
378
    AddTagsToResource
379
    CreateDBInstance
380
    CreateDBInstanceReadReplica
381
    DeleteDBInstance
382
    ModifyDBInstance
383
    RebootDBInstance
384
    RemoveTagsFromResource
385
    StartDBInstance
386
    StopDBInstance
387
    
388
RedShift:
389
    AuthorizeSnapshotAccess
390
    BatchDeleteClusterSnapshots
391
    CreateCluster
392
    CreateClusterSnapshot
393
    CreateTags
394
    DeleteCluster
395
    DeleteClusterSnapshot
396
    DeleteTags
397
    DisableLogging
398
    EnableLogging
399
    ModifyCluster
400
    RebootCluster
401
    ResizeCluster
402
    RevokeSnapshotAccess
403

404
Region:
405
    ResetServiceSetting
406
    UpdateServiceSetting
407

408
Route53:
409
    CreateHostedZone
410
    DeleteHostedZone
411

412
Route Tables:
413
    AssociateRouteTable
414
    CreateRoute
415
    CreateRouteTable
416
    DeleteRoute
417
    DeleteRouteTable
418
    DisassociateRouteTable
419
    ReplaceRoute
420
    ReplaceRouteTableAssociation
421
    
422
S3:
423
    CreateBucket
424
    DeleteBucket
425
    DeleteBucketEncryption
426
    DeleteBucketOwnershipControls
427
    DeleteBucketPolicy
428
    DeleteBucketPublicAccessBlock
429
    DeleteBucketTagging
430
    DeleteBucketWebsite
431
    PutBucketAcl
432
    PutBucketEncryption
433
    PutBucketLogging
434
    PutBucketOwnershipControls
435
    PutBucketPolicy
436
    PutBucketPublicAccessBlock
437
    PutBucketTagging
438
    PutBucketVersioning
439
    PutBucketWebsite
440
    
441
S3 Access Point:
442
    CreateAccessPoint
443
    DeleteAccessPoint
444
    DeleteAccessPointPolicy
445
    PutAccessPointPolicy
446

447
Secret:
448
    CancelRotateSecret
449
    CreateSecret
450
    DeleteSecret
451
    PutSecretValue
452
    RotateSecret
453
    TagResource
454
    UntagResource
455
    UpdateSecret
456

457
Serverless Application Repository:
458
    CreateApplication
459
    DeleteApplication
460
    PutApplicationPolicy
461
    UpdateApplication
462
    
463
Simple Email Service (+ EmailServiceRules): 
464
    CreateConfigurationSe
465
    CreateCustomVerificationEmailTemplate
466
    CreateEmailIdentity
467
    CreateEmailIdentityPolicy
468
    CreateEmailTemplate
469
    CreateReceiptRule
470
    CreateReceiptRuleSet
471
    DeleteEmailIdentity
472
    DeleteConfigurationSet
473
    DeleteCustomVerificationEmailTemplate
474
    DeleteIdentity
475
    DeleteReceiptRule
476
    DeleteReceiptRuleSet
477
    DeleteTemplate
478
    SetActiveReceiptRuleSet
479
    UpdateEmailIdentityPolicy
480
    UpdateReceiptRule
481
    UpdateReceiptRuleSet
482

483
SFTP Server:
484
    CreateServer
485
    CreateUser
486
    DeleteServer
487
    DeleteUser
488
    StartServer
489
    StopServer
490
    UpdateServer
491
    UpdateUser
492

493
SNS Subscription:
494
    SetSubscriptionAttributes
495
    Unsubscribe   
496
    
497
SNS Topic:
498
    CreateTopic
499
    DeleteTopic
500
    SetTopicAttributes
501
    TagQueue
502
    UntagQueue
503
    
504
SSH Keypairs:
505
    CreateKeyPair
506
    DeleteKeyPair
507
    ImportKeyPair
508
    
509
SSM Document:
510
    AddTagsToResource
511
    CreateDocument
512
    DeleteDocument
513
    RemoveTagsFromResource
514
    UpdateDocument
515
    UpdateDocumentDefaultVersion
516
    
517
Security Groups and Network ACLs:
518
    AuthorizeSecurityGroupEgress
519
    AuthorizeSecurityGroupIngress
520
    CreateNetworkAcl
521
    CreateNetworkAclEntry
522
    CreateSecurityGroup
523
    CreateTags
524
    DeleteNetworkAcl
525
    DeleteNetworkAclEntry
526
    DeleteSecurityGroup
527
    DeleteTags
528
    ModifySecurityGroupRules
529
    ReplaceNetworkAclAssociation
530
    ReplaceNetworkAclEntry
531
    RevokeSecurityGroupEgress
532
    RevokeSecurityGroupIngress
533
    UpdateSecurityGroupRuleDescriptionsEgress
534
    UpdateSecurityGroupRuleDescriptionsIngress
535
    
536
Service Access Key:
537
    CreateAccessKey
538
    DeleteAccessKey
539
    UpdateAccessKey
540
    
541
SQS:
542
    AddPermission
543
    CreateQueue
544
    DeleteQueue
545
    RemovePermission
546
    SetQueueAttributes
547
    
548
Systems Manager (SSM) Agent:
549
    DeleteParameter
550
    DeleteParameters
551
    PutParameter
552
    StartSession
553
    
554
Transcription Job:
555
    DeleteMedicalTranscriptionJob
556
    DeleteTranscriptionJob
557
    StartMedicalTranscriptionJob
558
    StartTranscriptionJob
559
       
560
VPC Endpoints:
561
    AcceptVpcEndpointConnections
562
    CreateVpcEndpoint
563
    CreateVpcEndpointServiceConfiguration
564
    DeleteVpcEndpoint
565
    DeleteVpcEndpointServiceConfigurations
566
    ModifyVpcEndpoint
567
    ModifyVpcEndpointServiceConfiguration
568
    ModifyVpcEndpointServicePermissions
569
    RejectVpcEndpointConnections
570

571
VPC Flow Logs:
572
    CreateFlowLogs
573
    DeleteFlowLogs
574
    
575
VPC Network Peer:
576
    AcceptVpcPeeringConnection
577
    CreateVpcPeeringConnection
578
    DeleteVpcPeeringConnection            
579
    RejectVpcPeeringConnection    
580

581
VPCs:
582
    AssociateDhcpOptions
583
    AssociateVpcCidrBlock
584
    CreateTags
585
    CreateVpc
586
    DeleteTags
587
    DeleteVpc
588
    DisassociateVpcCidrBlock
589

590
VPC Subnets:
591
    CreateSubnet
592
    CreateTags
593
    DeleteSubnet
594
    DeleteTags
595
    
596
VPC Traffic Mirror Targets:
597
    CreateTrafficMirrorTarget
598
    DeleteTrafficMirrorTarget
599

600
Workspaces: 
601
    CreateWorkspaces
602
    ModifyWorkspaceProperties
603
    RebootWorkspaces
604
    StartWorkspaces
605
    StopWorkspaces
606
    TerminateWorkspaces

Did this page help you?

Harvesting & Event-Driven Harvesting

AWS Event-Driven Harvesting

Harvesting & Event-Driven Harvesting

EDH - Fully Automatic Setup Option (AWS)