AWS Resources
Please note:
Amazon Web Services (AWS) GovCloud and China regions are not currently supported.
Kaytu currently discovers 400 different types of resources on AWS
Free tiers only do asset discovery on schedule, so data might lag anywhere from 8-24 hrs. If you need to near real-time discovery feature enabled or wish to lower the lag, please get in touch with our support team.
If the resource you want isn't supported or if there is an issue with the resources we support, please raise a support ticket from your workspace.
Discovered Resource Types
There are Resource Types that Kaytu Discovers. Where supported by Terraform, we included the terraform resource name.
Cloud Service | Resource Type | Terraform Name | Kaytu Table |
---|---|---|---|
Amazon VPC | Amazon VPC Local Gateway | aws_ec2_local_gateway | aws_ec2_localgateway |
Amazon VPC | Amazon VPC SSL Policy | aws_vpc_ssl_policy | aws_ec2_ssl_policy |
Amazon VPC | Amazon VPC Transit Gateway Route | aws_ec2_transit_gateway_route | aws_ec2_transit_gateway_route |
Amazon Elastic Container Registry | Amazon Elastic Container Registry (ECR) Public Registry | aws_ecrpublic_registry | aws_ecrpublic_registry |
Amazon Managed Service for Prometheus | Amazon Managed Service for Prometheus (AMP) Workspace | aws_amp_workspace | aws_amp_workspace |
Amazon CloudFront | Amazon CloudFront Resource | aws_cloudfront_distribution | aws_cloudfront_origin_access_control |
Amazon DynamoDB Accelerator (DAX) | Amazon DynamoDB Accelerator (DAX) Parameter Group | aws_dax_parameter_group | aws_dax_parameter |
Amazon Elastic Compute Cloud (EC2) | Amazon Machine Image (AMI) | aws_ami | aws_ec2_ami_shared |
Amazon Elastic Compute Cloud (EC2) | Amazon EC2 Key Pair | aws_key_pair | aws_ec2_key_pair |
AWS Identity and Access Management (IAM) | AWS Identity and Access Management (IAM) Policy (with Attachment) | aws_iam_policy_attachment | aws_iam_policy_attachment |
Amazon Elastic MapReduce (EMR) | Amazon EMR Instance | aws_emr_instance_group | aws_emr_instance |
AWS Health | AWS Health Event | aws_health_event | aws_health_event |
Amazon Elasticsearch Service | Amazon Elasticsearch Domain | aws_elasticsearch_domain | aws_elasticsearch_domain |
Amazon OpenSearch Service | Amazon OpenSearch Domain | aws_opensearch_domain | aws_opensearch_domain |
Amazon Simple Email Service (SES) | Amazon SES Identity (Email Address) | aws_ses_identity | aws_ses_identity |
Amazon Simple Email Service (SES) | Amazon SESv2 Email Identity | aws_sesv2_identity | aws_sesv2_emailidentity |
AWS Security Hub | AWS Security Hub Finding | aws_securityhub_finding | aws_securityhub_finding |
Application Auto Scaling | Application Auto Scaling Policy | aws_appautoscaling_target | |
AWS Batch | AWS Batch Job | aws_batch_job_queue | aws_batch_job |
AWS Config | AWS Config Rule | aws_config_rule | aws_config_rule |
AWS Identity and Access Management (IAM) | IAM Policy | aws_iam_policy | aws_iam_policy |
AWS Identity and Access Management (IAM) | IAM User Access Key | aws_iam_access_key | aws_iam_access_key |
AWS Identity and Access Management (IAM) | IAM User Service-Specific Credential | aws_iam_service_specific_credential | aws_iam_service_specific_credential |
Amazon Managed Streaming for Kafka (MSK) | Amazon MSK Cluster | aws_msk_cluster | aws_kafka_cluster |
Amazon Managed Streaming for Apache Kafka (MSK) | Amazon MSK Cluster | aws_msk_cluster | aws_msk_cluster |
Amazon Neptune | Amazon Neptune DB Cluster | aws_db_instance | aws_neptune_db_cluster |
Amazon Relational Database Service (RDS) | Amazon RDS DB Cluster | aws_db_instance | aws_docdb_cluster |
Amazon Neptune | Amazon Neptune Database | aws_db_instance | aws_neptune_database |
Amazon Simple Storage Service (S3) | S3 Access Point | aws_s3_access_point | aws_s3_multi_region_access_point |
Amazon Simple Storage Service (S3) | S3 Access Point (with region) | aws_s3_access_point | |
AWS WAF | WAFv2 Web ACL | aws_wafv2_web_acl | aws_wafv2_web_acl |
AWS Certificate Manager Private Certificate Authority (ACM PCA) | AWS Certificate Manager Private Certificate Authority (ACM PCA) - Certificate Authority | aws_acmpca_certificate_authority | aws_acmpca_certificate_authority |
AWS Certificate Manager (ACM) | AWS Certificate Manager (ACM) - Certificate | aws_acm_certificate | aws_acm_certificate |
Amazon Managed Workflows for Apache Airflow (MWAA) | Amazon Managed Workflows for Apache Airflow (MWAA) - Environment | aws_managed_airflow_environment | aws_mwaa_environment |
AWS Amplify | AWS Amplify - App | aws_amplify_app | aws_amplify_app |
Amazon API Gateway | Amazon API Gateway - API Key | aws_api_gateway_api_key | aws_api_gateway_api_key |
Amazon API Gateway | Amazon API Gateway - REST API | aws_api_gateway_rest_api | aws_api_gateway_rest_api |
Amazon API Gateway | Amazon API Gateway - API Authorizer | aws_api_gateway_authorizer | aws_api_gateway_authorizer |
Amazon API Gateway | Amazon API Gateway - API Stage | aws_api_gateway_stage | aws_api_gateway_stage |
Amazon API Gateway | Amazon API Gateway - Usage Plan | aws_api_gateway_usage_plan | aws_api_gateway_usage_plan |
Amazon API Gateway | Amazon API Gateway - API Integration | aws_api_gateway_integration | aws_api_gatewayv2_integration |
Amazon API Gateway | Amazon API Gateway - REST API Stage | aws_api_gatewayv2_stage | |
Amazon API Gateway | Amazon API Gateway - Custom Domain Name | aws_api_gateway_domain_name | aws_api_gatewayv2_domain_name |
Amazon API Gateway | Amazon API Gateway - HTTP API | aws_apigatewayv2_api | aws_api_gatewayv2_api |
AWS AppConfig | AWS AppConfig - Application | aws_appstream_fleet | aws_appconfig_application |
Amazon AppStream 2.0 | Amazon AppStream 2.0 - Application | aws_appstream_fleet | aws_appstream_application |
Amazon AppStream 2.0 | Amazon AppStream 2.0 - Fleet | aws_appstream_stack | aws_appstream_fleet |
Amazon AppStream 2.0 | Amazon AppStream 2.0 - Stack | aws_ram_resource_share | aws_appstream_stack |
Amazon EC2 Auto Scaling | Amazon EC2 Auto Scaling - Auto Scaling Group | aws_autoscaling_group | aws_ec2_autoscaling_group |
Amazon EC2 Auto Scaling | Amazon EC2 Auto Scaling - Launch Configuration | aws_launch_configuration | aws_ec2_launch_configuration |
AWS Backup | AWS Backup - Backup Plan | aws_backup_plan | aws_backup_plan |
AWS Backup | AWS Backup - Backup Plan Selection | aws_backup_plan_selection | aws_backup_selection |
AWS Backup | AWS Backup - Backup Vault | aws_backup_vault | aws_backup_vault |
AWS Backup | AWS Backup - Backup Framework | Not a specific Terraform resource | aws_backup_framework |
AWS Backup | AWS Backup - Protected Resource | Not a specific Terraform resource | aws_backup_protected_resource |
AWS Backup | AWS Backup - Recovery Point | Not a specific Terraform resource | aws_backup_recovery_point |
AWS Backup | AWS Backup - Legal Hold for Recovery Point | Not a specific Terraform resource | aws_backup_legal_hold |
AWS Backup | AWS Backup - Report Plan | aws_backup_report_plan | aws_backup_report_plan |
AWS Batch | AWS Batch - Compute Environment | aws_batch_compute_environment | aws_batch_compute_environment |
AWS Batch | AWS Batch - Job Queue | aws_batch_job_queue | aws_batch_job_queue |
AWS CloudFormation | CloudFormation Stack | aws_cloudformation_stack | aws_cloudformation_stack |
AWS CloudFormation | CloudFormation StackSet | aws_cloudformation_stack_set | aws_cloudformation_stack_set |
Amazon CloudFront | CloudFront Cache Policy | aws_cloudfront_cache_policy | aws_cloudfront_cache_policy |
Amazon CloudFront | CloudFront Distribution | aws_cloudfront_distribution | aws_cloudfront_distribution |
Amazon CloudFront | CloudFront Function | Not a specific Terraform resource | aws_cloudfront_function |
Amazon CloudFront | CloudFront Origin Access Identity | aws_cloudfront_origin_access_identity | aws_cloudfront_origin_access_identity |
Amazon CloudFront | CloudFront Origin Request Policy | aws_cloudfront_origin_request_policy | aws_cloudfront_origin_request_policy |
Amazon CloudFront | CloudFront Response Headers Policy | aws_cloudfront_response_headers_policy | aws_cloudfront_response_headers_policy |
Amazon CloudFront | CloudFront Streaming Distribution | aws_cloudfront_distribution (similar to standard distribution) | aws_cloudfront_streaming_distribution |
Amazon CloudSearch | CloudSearch Domain | aws_cloudsearch_domain | aws_cloudsearch_domain |
AWS CloudTrail | CloudTrail Data Store | aws_cloudtrail | aws_cloudtrail_event_data_store |
AWS CloudTrail | CloudTrail Trail | aws_cloudtrail | aws_cloudtrail_trail |
Amazon CloudWatch | CloudWatch Alarm | aws_cloudwatch_metric_alarm | aws_cloudwatch_alarm |
AWS CodeArtifact | CodeArtifact Domain | aws_codeartifact_domain | aws_codeartifact_domain |
AWS CodeArtifact | CodeArtifact Repository | aws_codeartifact_repository | aws_codeartifact_repository |
AWS CodeBuild | CodeBuild Project | aws_codebuild_project | aws_codebuild_project |
AWS CodeBuild | CodeBuild Source Credential | Not a specific Terraform resource | aws_codebuild_source_credential |
AWS CodeCommit | CodeCommit Repository | aws_codecommit_repository | aws_codecommit_repository |
AWS CodeDeploy | CodeDeploy Application | aws_codedeploy_app | aws_codedeploy_app |
AWS CodeDeploy | CodeDeploy Deployment Group | aws_codedeploy_deployment_group | aws_codedeploy_deployment_group |
AWS CodePipeline | CodePipeline | aws_codepipeline | aws_codepipeline_pipeline |
AWS CodeStar | CodeStar Project | aws_codestar_project | aws_codestar_project |
AWS Config | Config Aggregation Authorization | aws_config_aggregate_authorization | aws_config_aggregate_authorization |
AWS Config | Config Recorder | aws_config_configuration_recorder | aws_config_configuration_recorder |
AWS Config | AWS Config Conformance Pack | aws_config_conformance_pack | aws_config_conformance_pack |
Amazon DynamoDB Accelerator (DAX) | DAX Cache Cluster | aws_dax_cluster | aws_dax_cluster |
Amazon DynamoDB Accelerator (DAX) | DAX Parameter Group | aws_dax_parameter_group | aws_dax_parameter_group |
Amazon DynamoDB Accelerator (DAX) | DAX Subnet Group | aws_dax_subnet_group | aws_dax_subnet_group |
AWS Direct Connect | Direct Connect Connection | aws_dx_connection | aws_directconnect_connection |
AWS Direct Connect | Direct Connect Gateway | aws_dx_gateway | aws_directconnect_gateway |
AWS Backup | Data Lifecycle Manager Policy | aws_dlm_lifecycle_policy | aws_dlm_lifecycle_policy |
AWS Database Migration Service (DMS) | Database Migration Service Replication Instance | aws_dms_replication_instance | aws_dms_replication_instance |
AWS Directory Service | Directory Service Directory | aws_directory_service_directory | aws_directory_service_directory |
Amazon DynamoDB | DynamoDB Global Table | aws_dynamodb_global_table | aws_dynamodb_global_table |
Amazon DynamoDB | DynamoDB Table | aws_dynamodb_table | aws_dynamodb_table |
Amazon DynamoDB | DynamoDB Table Backup | Not a specific Terraform resource | aws_dynamodb_backup |
Amazon DynamoDB | DynamoDB Table Export | Not a specific Terraform resource | aws_dynamodb_table_export |
Amazon DynamoDB | DynamoDB Table Stream | Not a specific Terraform resource | aws_dynamodbstreams_stream |
Amazon Elastic Compute Cloud (EC2) | EC2 Image | aws_ami | aws_ec2_ami |
Amazon Elastic Compute Cloud (EC2) | EC2 Capacity Reservation Fleet | aws_ec2_capacity_reservation_fleet | aws_ec2_capacity_reservation_fleet |
Amazon Elastic Compute Cloud (EC2) | EC2 Capacity Reservation | aws_ec2_capacity_reservation | aws_ec2_capacity_reservation |
Amazon Elastic Compute Cloud (EC2) | EC2 Customer Gateway | aws_customer_gateway | aws_vpc_customer_gateway |
Amazon Elastic Compute Cloud (EC2) | EC2 Dedicated Host | aws_instance (Dedicated Host is associated with EC2 Instances) | aws_ec2_host |
Amazon Elastic Compute Cloud (EC2) | EC2 DHCP Options | aws_vpc_dhcp_options | aws_vpc_dhcp_options |
Amazon Elastic Compute Cloud (EC2) | EC2 Egress-Only Internet Gateway | aws_egress_only_internet_gateway | aws_vpc_egress_only_internet_gateway |
Amazon Elastic Compute Cloud (EC2) | EC2 Elastic IP Allocation | aws_network_interface | aws_ec2_elasticip |
Amazon Elastic Compute Cloud (EC2) | EC2 Elastic IP Address | aws_eip | aws_vpc_eip |
Amazon Elastic Compute Cloud (EC2) | EC2 Fleet | aws_ec2_fleet | aws_ec2_fleet |
Amazon Elastic Compute Cloud (EC2) | EC2 Flow Log | aws_flow_log | aws_vpc_flow_log |
Amazon Elastic Compute Cloud (EC2) | EC2 Instance | aws_instance | aws_ec2_instance |
Amazon Elastic Compute Cloud (EC2) | EC2 Internet Gateway | aws_internet_gateway | aws_vpc_internet_gateway |
Amazon Elastic Compute Cloud (EC2) | EC2 IPAM Pool | Not directly represented in Terraform (Custom resource may be used) | aws_ec2_ipam_pool |
Amazon Elastic Compute Cloud (EC2) | EC2 IPAM | Not directly represented in Terraform (Custom resource may be used) | aws_ec2_ipam |
Amazon Elastic Compute Cloud (EC2) | EC2 Launch Template | aws_launch_template | aws_ec2_launch_template |
Amazon Elastic Compute Cloud (EC2) | EC2 NAT Gateway | aws_nat_gateway | aws_vpc_nat_gateway |
Amazon Elastic Compute Cloud (EC2) | EC2 Network ACL | aws_network_acl | aws_vpc_network_acl |
Amazon Elastic Compute Cloud (EC2) | EC2 Network Interface | aws_network_interface | aws_ec2_network_interface |
Amazon Elastic Compute Cloud (EC2) | EC2 Placement Group | aws_placement_group | aws_ec2_placement_group |
Amazon Elastic Compute Cloud (EC2) | EC2 Prefix List | aws_prefix_list | aws_ec2_managed_prefix_list |
Amazon Elastic Compute Cloud (EC2) | EC2 Reserved Instances | aws_instance (Reserved Instances are associated with EC2 Instances) | aws_ec2_reserved_instance |
Amazon Elastic Compute Cloud (EC2) | EC2 Route Table | aws_route_table | aws_vpc_route_table |
Amazon Elastic Compute Cloud (EC2) | EC2 Security Group | aws_security_group | aws_vpc_security_group |
Amazon Elastic Compute Cloud (EC2) | EC2 Snapshot | aws_ebs_snapshot | aws_ebs_snapshot |
Amazon Elastic Compute Cloud (EC2) | EC2 Subnet | aws_subnet | aws_vpc_subnet |
Amazon Elastic Compute Cloud (EC2) | EC2 Transit Gateway Attachment | aws_ec2_transit_gateway_vpc_attachment | aws_ec2_transit_gateway_vpc_attachment |
Amazon Elastic Compute Cloud (EC2) | EC2 Transit Gateway Route Table | aws_ec2_transit_gateway_route_table | aws_ec2_transit_gateway_route_table |
Amazon Elastic Compute Cloud (EC2) | EC2 Transit Gateway | aws_ec2_transit_gateway | aws_ec2_transit_gateway |
Amazon Elastic Compute Cloud (EC2) | EC2 Volume | aws_ebs_volume | aws_ebs_volume |
Amazon Elastic Compute Cloud (EC2) | EC2 VPC Endpoint Service | aws_vpc_endpoint_service | aws_vpc_endpoint_service |
Amazon Elastic Compute Cloud (EC2) | EC2 VPC Endpoint | aws_vpc_endpoint | aws_vpc_endpoint |
Amazon Elastic Compute Cloud (EC2) | EC2 VPC Peering Connection | aws_vpc_peering_connection | aws_vpc_peering_connection |
Amazon Elastic Compute Cloud (EC2) | EC2 VPC | aws_vpc | aws_vpc |
Amazon Elastic Compute Cloud (EC2) | EC2 VPN Connection | aws_vpn_connection | aws_vpc_vpn_connection |
Amazon Elastic Compute Cloud (EC2) | EC2 VPN Gateway | aws_vpn_gateway | aws_vpc_vpn_gateway |
Amazon Elastic Container Registry (ECR) | Elastic Container Registry Public Repository | aws_ecrpublic_repository | aws_ecrpublic_repository |
Amazon Elastic Container Registry (ECR) | Elastic Container Registry Repository | aws_ecr_repository | aws_ecr_repository |
Amazon Elastic Container Registry (ECR) | Elastic Container Registry Image | Not directly represented in Terraform (Custom resource may be used) | aws_ecr_image |
Amazon Elastic Container Service (ECS) | Elastic Container Service Cluster | aws_ecs_cluster | aws_ecs_cluster |
Amazon Elastic Container Service (ECS) | ECS Container Instance | aws_ecs_container_instance | aws_ecs_container_instance |
Amazon Elastic Container Service (ECS) | ECS Service | aws_ecs_service | aws_ecs_service |
Amazon Elastic Container Service (ECS) | ECS Task Definition | aws_ecs_task_definition | aws_ecs_task_definition |
Amazon Elastic Container Service (ECS) | ECS Task | aws_ecs_task | aws_ecs_task |
Amazon Elastic Kubernetes Service (EKS) | EKS Addon | aws_eks_addon | aws_eks_addon |
Amazon Elastic Kubernetes Service (EKS) | EKS Cluster | aws_eks_cluster | aws_eks_cluster |
Amazon Elastic Kubernetes Service (EKS) | EKS Fargate Profile | aws_eks_fargate_profile | aws_eks_fargate_profile |
Amazon ElastiCache | ElastiCache Cluster | aws_elasticache_cluster | aws_elasticache_cluster |
Amazon ElastiCache | ElastiCache Parameter Group | aws_elasticache_parameter_group | aws_elasticache_parameter_group |
Amazon ElastiCache | ElastiCache Replication Group | aws_elasticache_replication_group | aws_elasticache_replication_group |
Amazon ElastiCache | ElastiCache Subnet Group | aws_elasticache_subnet_group | aws_elasticache_subnet_group |
AWS Elastic Beanstalk | Elastic Beanstalk Application | aws_elastic_beanstalk_application | aws_elastic_beanstalk_application |
AWS Elastic Beanstalk | Elastic Beanstalk Environment | aws_elastic_beanstalk_environment | aws_elastic_beanstalk_environment |
Amazon Elastic File System (EFS) | EFS Access Point | aws_efs_access_point | aws_efs_access_point |
Amazon Elastic File System (EFS) | EFS File System | aws_efs_file_system | aws_efs_file_system |
Amazon Elastic File System (EFS) | EFS Mount Target | aws_efs_mount_target | aws_efs_mount_target |
Elastic Load Balancing (ELB) | ELB Listener Rule | aws_lb_listener_rule | aws_ec2_load_balancer_listener_rule |
Elastic Load Balancing (ELB) | ELB Listener | aws_lb_listener | aws_ec2_load_balancer_listener |
Elastic Load Balancing (ELB) | Elastic Load Balancer (ELB) | aws_elb | aws_ec2_classic_load_balancer |
Elastic Load Balancing (ELB) | Application Load Balancer (ALB) | aws_lb | aws_ec2_application_load_balancer |
Elastic Load Balancing (ELB) | Gateway Load Balancer (GWLB) | aws_lb | aws_ec2_gateway_load_balancer |
Elastic Load Balancing (ELB) | Network Load Balancer (NLB) | aws_lb | aws_ec2_network_load_balancer |
Amazon Elastic MapReduce (EMR) | EMR Cluster | aws_emr_cluster | aws_emr_cluster |
Amazon Elastic MapReduce (EMR) | EMR Instance Fleet | aws_emr_instance_fleet | aws_emr_instance_fleet |
Amazon Elastic MapReduce (EMR) | EMR Instance Group | aws_emr_instance_group | aws_emr_instance_group |
Amazon Elasticsearch | Elasticsearch Service Domain | aws_elasticsearch_domain | aws_opensearchserverless_collection |
Amazon EventBridge | EventBridge Event Bus | aws_cloudwatch_event_bus | aws_eventbridge_bus |
Amazon EventBridge | EventBridge Rule | aws_cloudwatch_event_rule | aws_eventbridge_rule |
Amazon Kinesis Firehose | Kinesis Firehose Delivery Stream | aws_kinesis_firehose_delivery_stream | aws_kinesis_firehose_delivery_stream |
Amazon FSx | FSx File System | aws_fsx_file_system | aws_fsx_file_system |
Amazon FSx for NetApp ONTAP | FSx for NetApp ONTAP Storage Virtual Machine | aws_fsx_lustre_file_system | aws_fsx_storage_virtual_machine |
Amazon FSx for NetApp ONTAP | FSx for NetApp ONTAP Volume | aws_fsx_windows_file_system | aws_fsx_volume |
Amazon Glacier | Glacier Vault | aws_glacier_vault | aws_glacier_vault |
AWS Global Accelerator | Global Accelerator | aws_globalaccelerator_accelerator | aws_globalaccelerator_accelerator |
AWS Global Accelerator | Global Accelerator Endpoint Group | aws_globalaccelerator_endpoint_group | aws_globalaccelerator_endpoint_group |
AWS Global Accelerator | Global Accelerator Listener | aws_globalaccelerator_listener | aws_globalaccelerator_listener |
AWS Glue | Glue Connection | aws_glue_connection | aws_glue_connection |
AWS Glue | Glue Crawler | aws_glue_crawler | aws_glue_crawler |
AWS Glue | Glue Database | aws_glue_catalog_database | aws_glue_catalog_database |
AWS Glue | Glue Development Endpoint | aws_glue_dev_endpoint | aws_glue_dev_endpoint |
AWS Glue | AWS Glue Job | aws_glue_job | aws_glue_job |
AWS Glue | AWS Glue Security Configuration | aws_glue_security_configuration | aws_glue_security_configuration |
AWS Glue | AWS Glue Table | aws_glue_catalog_table | aws_glue_catalog_table |
Amazon Managed Grafana | Amazon Managed Grafana Workspace | aws_managed_grafana_workspace | aws_grafana_workspace |
Amazon GuardDuty | Amazon GuardDuty Detector | aws_guardduty_detector | aws_guardduty_detector |
Amazon GuardDuty | Amazon GuardDuty Filter | aws_guardduty_filter | aws_guardduty_filter |
Amazon GuardDuty | Amazon GuardDuty IP Set | aws_guardduty_ipset | aws_guardduty_ipset |
Amazon GuardDuty | Amazon GuardDuty Member | aws_guardduty_member | aws_guardduty_member |
Amazon GuardDuty | Amazon GuardDuty Publishing Destination | aws_guardduty_publishing_destination | aws_guardduty_publishing_destination |
Amazon GuardDuty | Amazon GuardDuty Threat Intel Set | aws_guardduty_threatintelset | aws_guardduty_threat_intel_set |
AWS Identity and Access Management (IAM) | IAM Group | aws_iam_group | aws_iam_group |
AWS Identity and Access Management (IAM) | IAM Multi-Factor Authentication (MFA) Device | aws_iam_mfa_device | aws_iam_virtual_mfa_device |
AWS Identity and Access Management (IAM) | IAM OIDC Identity Provider | aws_iam_openid_connect_provider | aws_iam_open_id_connect_provider |
AWS Identity and Access Management (IAM) | IAM SAML Identity Provider | aws_iam_saml_provider | aws_iam_saml_provider |
AWS Identity and Access Management (IAM) | IAM Role | aws_iam_role | aws_iam_role |
AWS Identity and Access Management (IAM) | IAM Server Certificate | aws_iam_server_certificate | aws_iam_server_certificate |
AWS Identity and Access Management (IAM) | IAM User | aws_iam_user | aws_iam_user |
EC2 Image Builder | EC2 Image Builder Image | aws_imagebuilder_image | aws_imagebuilder_image |
Amazon Inspector | Amazon Inspector Finding | aws_inspector_findings | aws_inspector_finding |
Amazon Inspector | Amazon Inspector Target | aws_inspector_assessment_target | aws_inspector_assessment_target |
Amazon Inspector | Amazon Inspector Assessment Run | aws_inspector_assessment_template | aws_inspector_assessment_run |
Amazon Inspector | Amazon Inspector Assessment Template | aws_inspector_assessment_target | aws_inspector_assessment_template |
Amazon Managed Streaming for Apache Kafka (MSK) | Amazon MSK Serverless Cluster | aws_msk_cluster | aws_msk_serverless_cluster |
Amazon Keyspaces (for Apache Cassandra) | Amazon Keyspaces (for Apache Cassandra) Keyspace | aws_keyspaces_keyspace | aws_keyspaces_keyspace |
Amazon Keyspaces (for Apache Cassandra) | Amazon Keyspaces (for Apache Cassandra) Table | aws_keyspaces_table | aws_keyspaces_table |
Amazon Kinesis | Amazon Kinesis Stream | aws_kinesis_stream | aws_kinesis_stream |
Amazon Kinesis | Amazon Kinesis Stream Consumer | aws_kinesis_stream_consumer | aws_kinesis_consumer |
Amazon Kinesis | Amazon Kinesis Analytics Application | aws_kinesis_analytics_application | aws_kinesisanalyticsv2_application |
Amazon Kinesis Video Streams | Amazon Kinesis Video Stream | aws_kinesis_video_stream | aws_kinesis_video_stream |
AWS Key Management Service (KMS) | AWS KMS Alias | aws_kms_alias | aws_kms_alias |
AWS Key Management Service (KMS) | AWS KMS Key | aws_kms_key | aws_kms_key |
AWS Lambda | AWS Lambda Function | aws_lambda_function | aws_lambda_function |
AWS Lambda | AWS Lambda Function Alias | aws_lambda_alias | aws_lambda_alias |
AWS Lambda | AWS Lambda Function Version | aws_lambda_function (version attribute) | aws_lambda_version |
AWS Lambda | AWS Lambda Layer | aws_lambda_layer_version | aws_lambda_layer |
AWS Lambda | AWS Lambda Layer Version | aws_lambda_layer_version (version attribute) | aws_lambda_layer_version |
Amazon Lightsail | Amazon Lightsail Instance | aws_lightsail_instance | aws_lightsail_instance |
Amazon CloudWatch Logs | AWS CloudWatch Logs Log Group | aws_cloudwatch_log_group | aws_cloudwatch_log_group |
Amazon CloudWatch Logs | AWS CloudWatch Logs Resource Policy | aws_cloudwatch_log_resource_policy | aws_cloudwatch_log_resource_policy |
Amazon CloudWatch Logs | AWS CloudWatch Logs Subscription Filter | aws_cloudwatch_log_subscription_filter | aws_cloudwatch_log_subscription_filter |
Amazon Macie | Amazon Macie Classification Job | aws_macie_classification_job | aws_macie2_classification_job |
AWS Elemental MediaStore | AWS Elemental MediaStore Container | aws_media_store_container | aws_media_store_container |
Amazon MemoryDB | Amazon MemoryDB Cluster | aws_memorydb_cluster | aws_memorydb_cluster |
AWS Application Migration Service | AWS Application Migration Service Application | aws_mgn_connector | aws_mgn_application |
Amazon Pinpoint | Amazon Pinpoint Application | aws_pinpoint_app | aws_pinpoint_app |
Amazon MQ | Amazon MQ Broker | aws_mq_broker | aws_mq_broker |
AWS Network Firewall | AWS Network Firewall Policy | aws_networkfirewall_policy | aws_networkfirewall_firewall_policy |
AWS Network Firewall | AWS Network Firewall | aws_networkfirewall_firewall | aws_networkfirewall_firewall |
AWS Network Firewall | AWS Network Firewall Rule Group | aws_networkfirewall_rule_group | aws_networkfirewall_rule_group |
AWS OpsWorks | AWS OpsWorks for Chef Automate Server | aws_opsworks_stack | aws_opsworkscm_server |
AWS Organizations | AWS Organizations Account | aws_organizations_account | aws_organizations_account |
AWS Organizations | AWS Organizations Organization | aws_organizations_organization | aws_organizations_organization |
AWS Organizations | AWS Organizations Policy | aws_organizations_policy | aws_organizations_policy |
Amazon RDS | Amazon RDS Cluster Parameter Group | aws_db_cluster_parameter_group | aws_rds_db_cluster_parameter_group |
Amazon RDS | Amazon RDS Cluster Snapshot | aws_db_cluster_snapshot | aws_rds_db_cluster_snapshot |
Amazon RDS | Amazon RDS DB Cluster | aws_db_cluster | aws_rds_db_cluster |
Amazon RDS | Amazon RDS Proxy | aws_db_proxy | aws_rds_db_proxy |
Amazon RDS | Amazon RDS DB Instance | aws_db_instance | aws_rds_db_instance |
Amazon RDS | RDS Event Subscription | aws_db_event_subscription | aws_rds_db_event_subscription |
Amazon RDS | RDS Global Cluster | aws_db_global_cluster | aws_rds_global_cluster |
Amazon RDS | RDS Option Group | aws_db_option_group | aws_rds_db_option_group |
Amazon RDS | RDS Parameter Group | aws_db_parameter_group | aws_rds_db_parameter_group |
Amazon RDS | RDS Reserved DB Instance | aws_db_instance (reserved attribute) | aws_rds_reserved_db_instance |
Amazon RDS | RDS DB Snapshot | aws_db_snapshot | aws_rds_db_snapshot |
Amazon RDS | RDS Subnet Group | aws_db_subnet_group | aws_rds_db_subnet_group |
Amazon Redshift Serverless | Redshift Serverless Namespace | aws_redshift_serverless_namespace | aws_redshiftserverless_namespace |
Amazon Redshift Serverless | Redshift Serverless Snapshot | aws_redshift_serverless_snapshot | aws_redshiftserverless_snapshot |
Amazon Redshift Serverless | Redshift Serverless Workgroup | aws_redshift_serverless_workgroup | aws_redshiftserverless_workgroup |
Amazon Redshift | Redshift Cluster | aws_redshift_cluster | aws_redshift_cluster |
Amazon Redshift | Redshift Event Subscription | aws_redshift_event_subscription | aws_redshift_event_subscription |
Amazon Redshift | Redshift Parameter Group | aws_redshift_parameter_group | aws_redshift_parameter_group |
Amazon Redshift | Redshift Snapshot | aws_redshift_snapshot | aws_redshift_snapshot |
Amazon Redshift | Redshift Subnet Group | aws_redshift_subnet_group | aws_redshift_subnet_group |
AWS Resource Groups | AWS Resource Groups | aws_resourcegroups_group | aws_resourcegroups_group |
Amazon Route 53 | Route 53 Domain | aws_route53_domain | aws_route53_domain |
Amazon Route 53 | Route 53 Health Check | aws_route53_health_check | aws_route53_health_check |
Amazon Route 53 | Route 53 Hosted Zone | aws_route53_zone | aws_route53_zone |
Amazon Route 53 | Route 53 Traffic Policy | aws_route53_traffic_policy | aws_route53_traffic_policy |
Amazon Route 53 | Route 53 Traffic Policy Instance | aws_route53_traffic_policy_instance | aws_route53_traffic_policy_instance |
Amazon Route 53 | Route 53 Resolver Endpoint | aws_route53_resolver_endpoint | aws_route53_resolver_endpoint |
Amazon Route 53 | Route 53 Resolver Rule | aws_route53_resolver_rule | aws_route53_resolver_rule |
Amazon S3 | S3 Bucket | aws_s3_bucket | aws_s3_bucket |
Amazon SageMaker | SageMaker App | aws_sagemaker_app | aws_sagemaker_app |
Amazon SageMaker | SageMaker Domain | aws_sagemaker_domain | aws_sagemaker_domain |
Amazon SageMaker | SageMaker Endpoint Config | aws_sagemaker_endpoint_configuration | aws_sagemaker_endpoint_configuration |
Amazon SageMaker | SageMaker Model | aws_sagemaker_model | aws_sagemaker_model |
Amazon SageMaker | SageMaker Notebook Instance | aws_sagemaker_notebook_instance | aws_sagemaker_notebook_instance |
Amazon SageMaker | SageMaker Training Job | aws_sagemaker_training_job | aws_sagemaker_training_job |
AWS Secrets Manager | Secrets Manager Secret | aws_secretsmanager_secret | aws_secretsmanager_secret |
AWS Security Hub | Security Hub Action Target | aws_securityhub_action_target | aws_securityhub_action_target |
AWS Security Hub | Security Hub Control | aws_securityhub_control | aws_securityhub_standards_control |
AWS Security Hub | Security Hub Finding Aggregator | aws_securityhub_finding_aggregator | aws_securityhub_finding_aggregator |
AWS Security Hub | Security Hub | aws_securityhub_account | aws_securityhub_hub |
AWS Security Hub | Security Hub Insight | aws_securityhub_insight | aws_securityhub_insight |
AWS Security Hub | Security Hub Member | aws_securityhub_member | aws_securityhub_member |
AWS Security Hub | Security Hub Product | aws_securityhub_product_subscription | aws_securityhub_product |
AWS Security Hub | Security Hub Standards Subscription | aws_securityhub_standards_subscription | aws_securityhub_standards_subscription |
AWS Security Hub (Integrated with Lake Formation) | Security Lake | aws_securityhub_security_standard | aws_securitylake_data_lake |
AWS Security Hub | Security Lake Subscriber | aws_securityhub_security_standard_subscription | aws_securitylake_subscriber |
AWS Serverless Application Repository | Serverless Application Repository | aws_sar_application | aws_serverlessapplicationrepository_application |
Amazon Simple Email Service (SES) | SES Configuration Set | aws_ses_configuration_set | aws_ses_configuration_set |
Amazon Simple Email Service (SES) | SES Identity (Domain) | aws_ses_domain_identity | aws_ses_domain_identity |
Amazon Simple Email Service (SES) | SES Identity (Email Address) | aws_ses_email_identity | aws_ses_email_identity |
AWS Shield | AWS Shield Protection Group | aws_shield_protection | aws_shield_protection_group |
SimSpace | SimSpace Weaver Simulation | aws_simspace_weaver_simulation | aws_simspaceweaver_simulation |
Amazon Simple Notification Service (SNS) | SNS Topic | aws_sns_topic | aws_sns_topic |
Amazon Simple Notification Service (SNS) | SNS Subscription | aws_sns_topic_subscription | aws_sns_topic_subscription |
Amazon Simple Queue Service (SQS) | SQS Queue | aws_sqs_queue | aws_sqs_queue |
AWS Systems Manager (SSM) | SSM Association | aws_ssm_association | aws_ssm_association |
AWS Systems Manager (SSM) | SSM Document | aws_ssm_document | aws_ssm_document |
AWS Systems Manager (SSM) | SSM Maintenance Window | aws_ssm_maintenance_window | aws_ssm_maintenance_window |
AWS Systems Manager (SSM) | SSM Managed Instance | aws_ssm_managed_instance | aws_ssm_managed_instance |
AWS Systems Manager (SSM) | SSM Parameter | aws_ssm_parameter | aws_ssm_parameter |
AWS Systems Manager (SSM) | SSM Patch Baseline | aws_ssm_patch_baseline | aws_ssm_patch_baseline |
AWS Single Sign-On (SSO) | SSO Assignment | aws_sso_assignment | aws_ssoadmin_account_assignment |
AWS Single Sign-On (SSO) | SSO Instance | aws_sso_instance | aws_ssoadmin_instance |
AWS Single Sign-On (SSO) | SSO Permission Set | aws_sso_permission_set | aws_ssoadmin_permission_set |
AWS Step Functions | Step Functions Execution | aws_sfn_activity | aws_sfn_state_machine_execution |
AWS Step Functions | Step Functions State Machine | aws_sfn_state_machine | aws_sfn_state_machine |
AWS Storage Gateway | Storage Gateway | aws_storagegateway_gateway | aws_storagegateway_storage_gateway |
Amazon Timestream | Timestream Database | aws_timestream_database | aws_timestream_database |
AWS WAF Regional | WAF Regional Rule | aws_wafregional_rule | aws_wafregional_rule |
AWS WAF Regional | WAF Regional Rule Group | aws_wafregional_rule_group | aws_wafregional_rule_group |
AWS WAF Regional | WAF Regional Web ACL | aws_wafregional_web_acl | aws_wafregional_web_acl |
AWS WAF Regional | WAF Rate-based Rule | aws_wafregional_web_acl_rule | aws_waf_rate_based_rule |
AWS WAF Classic | WAF Rule | aws_waf_rule | aws_waf_rule |
AWS WAF Classic | WAF Rule Group | aws_waf_rule_group | aws_waf_rule_group |
AWS WAF Classic | WAF Web ACL | aws_waf_web_acl | aws_waf_web_acl |
AWS Well-Architected Tool | Well-Architected Lens | aws_well_architected_lens | aws_wellarchitected_lens |
AWS Well-Architected Tool | Well-Architected Workload | aws_well_architected_workload | aws_wellarchitected_workload |
AWS Well-Architected Tool | Well-Architected Lens Review | aws_well_architected_lens_review | aws_wellarchitected_lens_review |
AWS Well-Architected Tool | Well-Architected Milestone | aws_well_architected_milestone | aws_wellarchitected_milestone |
Amazon WorkSpaces | WorkSpaces Bundle | aws_workspaces_bundle | aws_workspaces_bundle |
Amazon WorkSpaces | WorkSpaces Workspace | aws_workspaces_workspace | aws_workspaces_workspace |
AWS Identity and Access Management (IAM) | Identity Access Analyzer | aws_accessanalyzer_analyzer | aws_accessanalyzer_analyzer |
Amazon FSx | AWS FSx Snapshot | aws_fsx_backup | aws_fsx_snapshot |
Amazon FSx | AWS FSx Data Repository Tasks | aws_fsx_data_repository_task | aws_fsx_task |
Last updated