Resources that support import and drift detection operations
AWS CloudFormation supports resource import and drift detection operations for the following public (AWS) resource types.
In addition, CloudFormation supports import and drift detection operations for private
resource types that are provisionable; that is, whose provisioning type
is either FULLY_MUTABLE
or IMMUTABLE
. To import or perform drift
detection on a resource of a private resource type, the default version of the resource
type
that you have registered in your account must be provisionable. For
more information on resource provision type, see the ProvisioningType
parameter
of the DescribeType
action in the AWS CloudFormation API Reference and of the DescribeType command
in the AWS CLI Command Reference.
For more information on drift detection, see Detecting unmanaged configuration changes to stacks and resources.
Service | Resource |
---|---|
Amazon API Gateway | |
Amazon AppFlow | |
AWS App Mesh | |
Amazon Athena | |
AWS Audit Manager | |
AWS Billing and Cost Management | |
AWS Certificate Manager | |
AWS Chatbot | |
CloudFormation |
AWS::CloudFormation::ModuleDefaultVersion |
Amazon CloudFront | |
AWS CloudTrail | |
Amazon CloudWatch |
AWS::ApplicationInsights::Application |
AWS CodeArtifact | |
Amazon CodeGuru Profiler | |
Amazon CodeGuru Reviewer | |
AWS CodeStar | |
AWS Config | |
AWS DataSync |
AWS::DataSync::LocationFSxWindows |
Amazon Detective | |
Amazon DevOps Guru | |
Amazon DynamoDB | |
Amazon EC2 |
AWS::EC2::LocalGatewayRouteTableVPCAssociation |
Amazon EC2 Auto Scaling |
AWS::AutoScaling::AutoScalingGroup AWS::AutoScaling::LaunchConfiguration AWS::AutoScaling::LifecycleHook |
EC2 Image Builder |
AWS::ImageBuilder::DistributionConfiguration AWS::ImageBuilder::ImagePipeline |
Amazon ECS | |
Amazon EFS | |
Amazon EKS | |
Elastic Load Balancing |
AWS::ElasticLoadBalancing::LoadBalancer AWS::ElasticLoadBalancingV2::Listener |
Amazon EMR | |
Amazon EventBridge | |
AWS Firewall Manager | |
Amazon GameLift | |
AWS Global Accelerator |
AWS::GlobalAccelerator::Accelerator |
AWS Glue | |
AWS Glue DataBrew | |
AWS Ground Station | |
AWS Identity and Access Management | |
AWS IoT | |
AWS IoT Greengrass | |
AWS IoT SiteWise | |
AWS IoT Wireless |
AWS::IoTWireless::DeviceProfile AWS::IoTWireless::ServiceProfile |
Amazon Interactive Video Service | |
Amazon Kendra | |
Amazon Keyspaces (for Apache Cassandra) | |
Amazon Kinesis | |
AWS Key Management Service | |
AWS Lambda | |
Amazon Macie | |
AWS Elemental MediaConnect | |
AWS Elemental MediaPackage |
AWS::MediaPackage::OriginEndpoint |
Amazon Managed Workflows for Apache Airflow (Amazon MWAA) | |
AWS Network Firewall |
AWS::NetworkFirewall::Firewall AWS::NetworkFirewall::FirewallPolicy |
Transit Gateway Network Manager |
AWS::NetworkManager::CustomerGatewayAssociation AWS::NetworkManager::GlobalNetwork |
Amazon QLDB | |
Amazon QuickSight | |
AWS Resource Groups | |
Amazon Relational Database Service | |
Amazon Route 53 |
AWS::Route53Resolver::ResolverDNSSECConfig |
Amazon Simple Storage Service | |
Amazon SageMaker |
AWS::SageMaker::DataQualityJobDefinition AWS::SageMaker::ModelBiasJobDefinition AWS::SageMaker::ModelExplainabilityJobDefinition AWS::SageMaker::ModelQualityJobDefinition AWS::SageMaker::ModelPackageGroup |
AWS Secrets Manager | |
AWS Service Catalog |
AWS::ServiceCatalog::CloudFormationProvisionedProduct AWS::ServiceCatalogAppRegistry::Application AWS::ServiceCatalogAppRegistry::AttributeGroup |
AWS Signer | |
Amazon Simple Email Service | |
Amazon Simple Queue Service | |
Amazon Simple Notification Service | |
AWS Single Sign-On | |
AWS Step Functions | |
AWS Systems Manager | |
AWS WAF | |
Amazon WorkSpaces |