start-remediation-execution¶

Description¶

Runs an on-demand remediation for the specified Config rules against the last known remediation configuration. It runs an execution against the current state of your resources. Remediation execution is asynchronous.

You can specify up to 100 resource keys per request. An existing StartRemediationExecution call for the specified resource keys must complete before you can call the API again.

Synopsis¶

  start-remediation-execution
--config-rule-name <value>
--resource-keys <value>
[--cli-input-json | --cli-input-yaml]
[--generate-cli-skeleton <value>]
[--debug]
[--endpoint-url <value>]
[--no-verify-ssl]
[--no-paginate]
[--output <value>]
[--query <value>]
[--profile <value>]
[--region <value>]
[--version <value>]
[--color <value>]
[--no-sign-request]
[--ca-bundle <value>]
[--cli-read-timeout <value>]
[--cli-connect-timeout <value>]
[--cli-binary-format <value>]
[--no-cli-pager]
[--cli-auto-prompt]
[--no-cli-auto-prompt]

Options¶

--config-rule-name (string) [required]

The list of names of Config rules that you want to run remediation execution for.

Constraints:

min: 1

max: 128

pattern: .*\S.*

--resource-keys (list) [required]

A list of resource keys to be processed with the current request. Each element in the list consists of the resource type and resource ID.

Constraints:

min: 1

max: 100

(structure)

The details that identify a resource within Config, including the resource type and resource ID.

resourceType -> (string) [required]

The resource type.

Possible values:

AWS::EC2::CustomerGateway

AWS::EC2::EIP

AWS::EC2::Host

AWS::EC2::Instance

AWS::EC2::InternetGateway

AWS::EC2::NetworkAcl

AWS::EC2::NetworkInterface

AWS::EC2::RouteTable

AWS::EC2::SecurityGroup

AWS::EC2::Subnet

AWS::CloudTrail::Trail

AWS::EC2::Volume

AWS::EC2::VPC

AWS::EC2::VPNConnection

AWS::EC2::VPNGateway

AWS::EC2::RegisteredHAInstance

AWS::EC2::NatGateway

AWS::EC2::EgressOnlyInternetGateway

AWS::EC2::VPCEndpoint

AWS::EC2::VPCEndpointService

AWS::EC2::FlowLog

AWS::EC2::VPCPeeringConnection

AWS::Elasticsearch::Domain

AWS::IAM::Group

AWS::IAM::Policy

AWS::IAM::Role

AWS::IAM::User

AWS::ElasticLoadBalancingV2::LoadBalancer

AWS::ACM::Certificate

AWS::RDS::DBInstance

AWS::RDS::DBSubnetGroup

AWS::RDS::DBSecurityGroup

AWS::RDS::DBSnapshot

AWS::RDS::DBCluster

AWS::RDS::DBClusterSnapshot

AWS::RDS::EventSubscription

AWS::S3::Bucket

AWS::S3::AccountPublicAccessBlock

AWS::Redshift::Cluster

AWS::Redshift::ClusterSnapshot

AWS::Redshift::ClusterParameterGroup

AWS::Redshift::ClusterSecurityGroup

AWS::Redshift::ClusterSubnetGroup

AWS::Redshift::EventSubscription

AWS::SSM::ManagedInstanceInventory

AWS::CloudWatch::Alarm

AWS::CloudFormation::Stack

AWS::ElasticLoadBalancing::LoadBalancer

AWS::AutoScaling::AutoScalingGroup

AWS::AutoScaling::LaunchConfiguration

AWS::AutoScaling::ScalingPolicy

AWS::AutoScaling::ScheduledAction

AWS::DynamoDB::Table

AWS::CodeBuild::Project

AWS::WAF::RateBasedRule

AWS::WAF::Rule

AWS::WAF::RuleGroup

AWS::WAF::WebACL

AWS::WAFRegional::RateBasedRule

AWS::WAFRegional::Rule

AWS::WAFRegional::RuleGroup

AWS::WAFRegional::WebACL

AWS::CloudFront::Distribution

AWS::CloudFront::StreamingDistribution

AWS::Lambda::Function

AWS::NetworkFirewall::Firewall

AWS::NetworkFirewall::FirewallPolicy

AWS::NetworkFirewall::RuleGroup

AWS::ElasticBeanstalk::Application

AWS::ElasticBeanstalk::ApplicationVersion

AWS::ElasticBeanstalk::Environment

AWS::WAFv2::WebACL

AWS::WAFv2::RuleGroup

AWS::WAFv2::IPSet

AWS::WAFv2::RegexPatternSet

AWS::WAFv2::ManagedRuleSet

AWS::XRay::EncryptionConfig

AWS::SSM::AssociationCompliance

AWS::SSM::PatchCompliance

AWS::Shield::Protection

AWS::ShieldRegional::Protection

AWS::Config::ConformancePackCompliance

AWS::Config::ResourceCompliance

AWS::ApiGateway::Stage

AWS::ApiGateway::RestApi

AWS::ApiGatewayV2::Stage

AWS::ApiGatewayV2::Api

AWS::CodePipeline::Pipeline

AWS::ServiceCatalog::CloudFormationProvisionedProduct

AWS::ServiceCatalog::CloudFormationProduct

AWS::ServiceCatalog::Portfolio

AWS::SQS::Queue

AWS::KMS::Key

AWS::QLDB::Ledger

AWS::SecretsManager::Secret

AWS::SNS::Topic

AWS::SSM::FileData

AWS::Backup::BackupPlan

AWS::Backup::BackupSelection

AWS::Backup::BackupVault

AWS::Backup::RecoveryPoint

AWS::ECR::Repository

AWS::ECS::Cluster

AWS::ECS::Service

AWS::ECS::TaskDefinition

AWS::EFS::AccessPoint

AWS::EFS::FileSystem

AWS::EKS::Cluster

AWS::OpenSearch::Domain

AWS::EC2::TransitGateway

AWS::Kinesis::Stream

AWS::Kinesis::StreamConsumer

AWS::CodeDeploy::Application

AWS::CodeDeploy::DeploymentConfig

AWS::CodeDeploy::DeploymentGroup

AWS::EC2::LaunchTemplate

AWS::ECR::PublicRepository

AWS::GuardDuty::Detector

AWS::EMR::SecurityConfiguration

AWS::SageMaker::CodeRepository

AWS::Route53Resolver::ResolverEndpoint

AWS::Route53Resolver::ResolverRule

AWS::Route53Resolver::ResolverRuleAssociation

AWS::DMS::ReplicationSubnetGroup

AWS::DMS::EventSubscription

AWS::MSK::Cluster

AWS::StepFunctions::Activity

AWS::WorkSpaces::Workspace

AWS::WorkSpaces::ConnectionAlias

AWS::SageMaker::Model

AWS::ElasticLoadBalancingV2::Listener

AWS::StepFunctions::StateMachine

AWS::Batch::JobQueue

AWS::Batch::ComputeEnvironment

AWS::AccessAnalyzer::Analyzer

AWS::Athena::WorkGroup

AWS::Athena::DataCatalog

AWS::Detective::Graph

AWS::GlobalAccelerator::Accelerator

AWS::GlobalAccelerator::EndpointGroup

AWS::GlobalAccelerator::Listener

AWS::EC2::TransitGatewayAttachment

AWS::EC2::TransitGatewayRouteTable

AWS::DMS::Certificate

AWS::AppConfig::Application

AWS::AppSync::GraphQLApi

AWS::DataSync::LocationSMB

AWS::DataSync::LocationFSxLustre

AWS::DataSync::LocationS3

AWS::DataSync::LocationEFS

AWS::DataSync::Task

AWS::DataSync::LocationNFS

AWS::EC2::NetworkInsightsAccessScopeAnalysis

AWS::EKS::FargateProfile

AWS::Glue::Job

AWS::GuardDuty::ThreatIntelSet

AWS::GuardDuty::IPSet

AWS::SageMaker::Workteam

AWS::SageMaker::NotebookInstanceLifecycleConfig

AWS::ServiceDiscovery::Service

AWS::ServiceDiscovery::PublicDnsNamespace

AWS::SES::ContactList

AWS::SES::ConfigurationSet

AWS::Route53::HostedZone

AWS::IoTEvents::Input

AWS::IoTEvents::DetectorModel

AWS::IoTEvents::AlarmModel

AWS::ServiceDiscovery::HttpNamespace

AWS::Events::EventBus

AWS::ImageBuilder::ContainerRecipe

AWS::ImageBuilder::DistributionConfiguration

AWS::ImageBuilder::InfrastructureConfiguration

AWS::DataSync::LocationObjectStorage

AWS::DataSync::LocationHDFS

AWS::Glue::Classifier

AWS::Route53RecoveryReadiness::Cell

AWS::Route53RecoveryReadiness::ReadinessCheck

AWS::ECR::RegistryPolicy

AWS::Backup::ReportPlan

AWS::Lightsail::Certificate

AWS::RUM::AppMonitor

AWS::Events::Endpoint

AWS::SES::ReceiptRuleSet

AWS::Events::Archive

AWS::Events::ApiDestination

AWS::Lightsail::Disk

AWS::FIS::ExperimentTemplate

AWS::DataSync::LocationFSxWindows

AWS::SES::ReceiptFilter

AWS::GuardDuty::Filter

AWS::SES::Template

AWS::AmazonMQ::Broker

AWS::AppConfig::Environment

AWS::AppConfig::ConfigurationProfile

AWS::Cloud9::EnvironmentEC2

AWS::EventSchemas::Registry

AWS::EventSchemas::RegistryPolicy

AWS::EventSchemas::Discoverer

AWS::FraudDetector::Label

AWS::FraudDetector::EntityType

AWS::FraudDetector::Variable

AWS::FraudDetector::Outcome

AWS::IoT::Authorizer

AWS::IoT::SecurityProfile

AWS::IoT::RoleAlias

AWS::IoT::Dimension

AWS::IoTAnalytics::Datastore

AWS::Lightsail::Bucket

AWS::Lightsail::StaticIp

AWS::MediaPackage::PackagingGroup

AWS::Route53RecoveryReadiness::RecoveryGroup

AWS::ResilienceHub::ResiliencyPolicy

AWS::Transfer::Workflow

AWS::EKS::IdentityProviderConfig

AWS::EKS::Addon

AWS::Glue::MLTransform

AWS::IoT::Policy

AWS::IoT::MitigationAction

AWS::IoTTwinMaker::Workspace

AWS::IoTTwinMaker::Entity

AWS::IoTAnalytics::Dataset

AWS::IoTAnalytics::Pipeline

AWS::IoTAnalytics::Channel

AWS::IoTSiteWise::Dashboard

AWS::IoTSiteWise::Project

AWS::IoTSiteWise::Portal

AWS::IoTSiteWise::AssetModel

AWS::IVS::Channel

AWS::IVS::RecordingConfiguration

AWS::IVS::PlaybackKeyPair

AWS::KinesisAnalyticsV2::Application

AWS::RDS::GlobalCluster

AWS::S3::MultiRegionAccessPoint

AWS::DeviceFarm::TestGridProject

AWS::Budgets::BudgetsAction

AWS::Lex::Bot

AWS::CodeGuruReviewer::RepositoryAssociation

AWS::IoT::CustomMetric

AWS::Route53Resolver::FirewallDomainList

AWS::RoboMaker::RobotApplicationVersion

AWS::EC2::TrafficMirrorSession

AWS::IoTSiteWise::Gateway

AWS::Lex::BotAlias

AWS::LookoutMetrics::Alert

AWS::IoT::AccountAuditConfiguration

AWS::EC2::TrafficMirrorTarget

AWS::S3::StorageLens

AWS::IoT::ScheduledAudit

AWS::Events::Connection

AWS::EventSchemas::Schema

AWS::MediaPackage::PackagingConfiguration

AWS::KinesisVideo::SignalingChannel

AWS::AppStream::DirectoryConfig

AWS::LookoutVision::Project

AWS::Route53RecoveryControl::Cluster

AWS::Route53RecoveryControl::SafetyRule

AWS::Route53RecoveryControl::ControlPanel

AWS::Route53RecoveryControl::RoutingControl

AWS::Route53RecoveryReadiness::ResourceSet

AWS::RoboMaker::SimulationApplication

AWS::RoboMaker::RobotApplication

AWS::HealthLake::FHIRDatastore

AWS::Pinpoint::Segment

AWS::Pinpoint::ApplicationSettings

AWS::Events::Rule

AWS::EC2::DHCPOptions

AWS::EC2::NetworkInsightsPath

AWS::EC2::TrafficMirrorFilter

AWS::EC2::IPAM

AWS::IoTTwinMaker::Scene

AWS::NetworkManager::TransitGatewayRegistration

AWS::CustomerProfiles::Domain

AWS::AutoScaling::WarmPool

AWS::Connect::PhoneNumber

AWS::AppConfig::DeploymentStrategy

AWS::AppFlow::Flow

AWS::AuditManager::Assessment

AWS::CloudWatch::MetricStream

AWS::DeviceFarm::InstanceProfile

AWS::DeviceFarm::Project

AWS::EC2::EC2Fleet

AWS::EC2::SubnetRouteTableAssociation

AWS::ECR::PullThroughCacheRule

AWS::GroundStation::Config

AWS::ImageBuilder::ImagePipeline

AWS::IoT::FleetMetric

AWS::IoTWireless::ServiceProfile

AWS::NetworkManager::Device

AWS::NetworkManager::GlobalNetwork

AWS::NetworkManager::Link

AWS::NetworkManager::Site

AWS::Panorama::Package

AWS::Pinpoint::App

AWS::Redshift::ScheduledAction

AWS::Route53Resolver::FirewallRuleGroupAssociation

AWS::SageMaker::AppImageConfig

AWS::SageMaker::Image

AWS::ECS::TaskSet

AWS::Cassandra::Keyspace

AWS::Signer::SigningProfile

AWS::Amplify::App

AWS::AppMesh::VirtualNode

AWS::AppMesh::VirtualService

AWS::AppRunner::VpcConnector

AWS::AppStream::Application

AWS::CodeArtifact::Repository

AWS::EC2::PrefixList

AWS::EC2::SpotFleet

AWS::Evidently::Project

AWS::Forecast::Dataset

AWS::IAM::SAMLProvider

AWS::IAM::ServerCertificate

AWS::Pinpoint::Campaign

AWS::Pinpoint::InAppTemplate

AWS::SageMaker::Domain

AWS::Transfer::Agreement

AWS::Transfer::Connector

AWS::KinesisFirehose::DeliveryStream

AWS::Amplify::Branch

AWS::AppIntegrations::EventIntegration

AWS::AppMesh::Route

AWS::Athena::PreparedStatement

AWS::EC2::IPAMScope

AWS::Evidently::Launch

AWS::Forecast::DatasetGroup

AWS::GreengrassV2::ComponentVersion

AWS::GroundStation::MissionProfile

AWS::MediaConnect::FlowEntitlement

AWS::MediaConnect::FlowVpcInterface

AWS::MediaTailor::PlaybackConfiguration

AWS::MSK::Configuration

AWS::Personalize::Dataset

AWS::Personalize::Schema

AWS::Personalize::Solution

AWS::Pinpoint::EmailTemplate

AWS::Pinpoint::EventStream

AWS::ResilienceHub::App

AWS::ACMPCA::CertificateAuthority

AWS::AppConfig::HostedConfigurationVersion

AWS::AppMesh::VirtualGateway

AWS::AppMesh::VirtualRouter

AWS::AppRunner::Service

AWS::CustomerProfiles::ObjectType

AWS::DMS::Endpoint

AWS::EC2::CapacityReservation

AWS::EC2::ClientVpnEndpoint

AWS::Kendra::Index

AWS::KinesisVideo::Stream

AWS::Logs::Destination

AWS::Pinpoint::EmailChannel

AWS::S3::AccessPoint

AWS::NetworkManager::CustomerGatewayAssociation

AWS::NetworkManager::LinkAssociation

AWS::IoTWireless::MulticastGroup

AWS::Personalize::DatasetGroup

AWS::IoTTwinMaker::ComponentType

AWS::CodeBuild::ReportGroup

AWS::SageMaker::FeatureGroup

AWS::MSK::BatchScramSecret

AWS::AppStream::Stack

AWS::IoT::JobTemplate

AWS::IoTWireless::FuotaTask

AWS::IoT::ProvisioningTemplate

AWS::InspectorV2::Filter

AWS::Route53Resolver::ResolverQueryLoggingConfigAssociation

AWS::ServiceDiscovery::Instance

AWS::Transfer::Certificate

AWS::MediaConnect::FlowSource

AWS::APS::RuleGroupsNamespace

AWS::CodeGuruProfiler::ProfilingGroup

AWS::Route53Resolver::ResolverQueryLoggingConfig

AWS::Batch::SchedulingPolicy

AWS::ACMPCA::CertificateAuthorityActivation

AWS::AppMesh::GatewayRoute

AWS::AppMesh::Mesh

AWS::Connect::Instance

AWS::Connect::QuickConnect

AWS::EC2::CarrierGateway

AWS::EC2::IPAMPool

AWS::EC2::TransitGatewayConnect

AWS::EC2::TransitGatewayMulticastDomain

AWS::ECS::CapacityProvider

AWS::IAM::InstanceProfile

AWS::IoT::CACertificate

AWS::IoTTwinMaker::SyncJob

AWS::KafkaConnect::Connector

AWS::Lambda::CodeSigningConfig

AWS::NetworkManager::ConnectPeer

AWS::ResourceExplorer2::Index

AWS::AppStream::Fleet

AWS::Cognito::UserPool

AWS::Cognito::UserPoolClient

AWS::Cognito::UserPoolGroup

AWS::EC2::NetworkInsightsAccessScope

AWS::EC2::NetworkInsightsAnalysis

AWS::Grafana::Workspace

AWS::GroundStation::DataflowEndpointGroup

AWS::ImageBuilder::ImageRecipe

AWS::KMS::Alias

AWS::M2::Environment

AWS::QuickSight::DataSource

AWS::QuickSight::Template

AWS::QuickSight::Theme

AWS::RDS::OptionGroup

AWS::Redshift::EndpointAccess

AWS::Route53Resolver::FirewallRuleGroup

AWS::SSM::Document

AWS::AppConfig::ExtensionAssociation

AWS::AppIntegrations::Application

AWS::AppSync::ApiCache

AWS::Bedrock::Guardrail

AWS::Bedrock::KnowledgeBase

AWS::Cognito::IdentityPool

AWS::Connect::Rule

AWS::Connect::User

AWS::EC2::ClientVpnTargetNetworkAssociation

AWS::EC2::EIPAssociation

AWS::EC2::IPAMResourceDiscovery

AWS::EC2::IPAMResourceDiscoveryAssociation

AWS::EC2::InstanceConnectEndpoint

AWS::EC2::SnapshotBlockPublicAccess

AWS::EC2::VPCBlockPublicAccessExclusion

AWS::EC2::VPCBlockPublicAccessOptions

AWS::EC2::VPCEndpointConnectionNotification

AWS::EC2::VPNConnectionRoute

AWS::Evidently::Segment

AWS::IAM::OIDCProvider

AWS::InspectorV2::Activation

AWS::MSK::ClusterPolicy

AWS::MSK::VpcConnection

AWS::MediaConnect::Gateway

AWS::MemoryDB::SubnetGroup

AWS::OpenSearchServerless::Collection

AWS::OpenSearchServerless::VpcEndpoint

AWS::Redshift::EndpointAuthorization

AWS::Route53Profiles::Profile

AWS::S3::StorageLensGroup

AWS::S3Express::BucketPolicy

AWS::S3Express::DirectoryBucket

AWS::SageMaker::InferenceExperiment

AWS::SecurityHub::Standard

AWS::Transfer::Profile

resourceId -> (string) [required]

The ID of the resource (for example., sg-xxxxxx).

Constraints:

min: 1

max: 768

Shorthand Syntax:

resourceType=string,resourceId=string ...

JSON Syntax:

[
  {
    "resourceType": "AWS::EC2::CustomerGateway"|"AWS::EC2::EIP"|"AWS::EC2::Host"|"AWS::EC2::Instance"|"AWS::EC2::InternetGateway"|"AWS::EC2::NetworkAcl"|"AWS::EC2::NetworkInterface"|"AWS::EC2::RouteTable"|"AWS::EC2::SecurityGroup"|"AWS::EC2::Subnet"|"AWS::CloudTrail::Trail"|"AWS::EC2::Volume"|"AWS::EC2::VPC"|"AWS::EC2::VPNConnection"|"AWS::EC2::VPNGateway"|"AWS::EC2::RegisteredHAInstance"|"AWS::EC2::NatGateway"|"AWS::EC2::EgressOnlyInternetGateway"|"AWS::EC2::VPCEndpoint"|"AWS::EC2::VPCEndpointService"|"AWS::EC2::FlowLog"|"AWS::EC2::VPCPeeringConnection"|"AWS::Elasticsearch::Domain"|"AWS::IAM::Group"|"AWS::IAM::Policy"|"AWS::IAM::Role"|"AWS::IAM::User"|"AWS::ElasticLoadBalancingV2::LoadBalancer"|"AWS::ACM::Certificate"|"AWS::RDS::DBInstance"|"AWS::RDS::DBSubnetGroup"|"AWS::RDS::DBSecurityGroup"|"AWS::RDS::DBSnapshot"|"AWS::RDS::DBCluster"|"AWS::RDS::DBClusterSnapshot"|"AWS::RDS::EventSubscription"|"AWS::S3::Bucket"|"AWS::S3::AccountPublicAccessBlock"|"AWS::Redshift::Cluster"|"AWS::Redshift::ClusterSnapshot"|"AWS::Redshift::ClusterParameterGroup"|"AWS::Redshift::ClusterSecurityGroup"|"AWS::Redshift::ClusterSubnetGroup"|"AWS::Redshift::EventSubscription"|"AWS::SSM::ManagedInstanceInventory"|"AWS::CloudWatch::Alarm"|"AWS::CloudFormation::Stack"|"AWS::ElasticLoadBalancing::LoadBalancer"|"AWS::AutoScaling::AutoScalingGroup"|"AWS::AutoScaling::LaunchConfiguration"|"AWS::AutoScaling::ScalingPolicy"|"AWS::AutoScaling::ScheduledAction"|"AWS::DynamoDB::Table"|"AWS::CodeBuild::Project"|"AWS::WAF::RateBasedRule"|"AWS::WAF::Rule"|"AWS::WAF::RuleGroup"|"AWS::WAF::WebACL"|"AWS::WAFRegional::RateBasedRule"|"AWS::WAFRegional::Rule"|"AWS::WAFRegional::RuleGroup"|"AWS::WAFRegional::WebACL"|"AWS::CloudFront::Distribution"|"AWS::CloudFront::StreamingDistribution"|"AWS::Lambda::Function"|"AWS::NetworkFirewall::Firewall"|"AWS::NetworkFirewall::FirewallPolicy"|"AWS::NetworkFirewall::RuleGroup"|"AWS::ElasticBeanstalk::Application"|"AWS::ElasticBeanstalk::ApplicationVersion"|"AWS::ElasticBeanstalk::Environment"|"AWS::WAFv2::WebACL"|"AWS::WAFv2::RuleGroup"|"AWS::WAFv2::IPSet"|"AWS::WAFv2::RegexPatternSet"|"AWS::WAFv2::ManagedRuleSet"|"AWS::XRay::EncryptionConfig"|"AWS::SSM::AssociationCompliance"|"AWS::SSM::PatchCompliance"|"AWS::Shield::Protection"|"AWS::ShieldRegional::Protection"|"AWS::Config::ConformancePackCompliance"|"AWS::Config::ResourceCompliance"|"AWS::ApiGateway::Stage"|"AWS::ApiGateway::RestApi"|"AWS::ApiGatewayV2::Stage"|"AWS::ApiGatewayV2::Api"|"AWS::CodePipeline::Pipeline"|"AWS::ServiceCatalog::CloudFormationProvisionedProduct"|"AWS::ServiceCatalog::CloudFormationProduct"|"AWS::ServiceCatalog::Portfolio"|"AWS::SQS::Queue"|"AWS::KMS::Key"|"AWS::QLDB::Ledger"|"AWS::SecretsManager::Secret"|"AWS::SNS::Topic"|"AWS::SSM::FileData"|"AWS::Backup::BackupPlan"|"AWS::Backup::BackupSelection"|"AWS::Backup::BackupVault"|"AWS::Backup::RecoveryPoint"|"AWS::ECR::Repository"|"AWS::ECS::Cluster"|"AWS::ECS::Service"|"AWS::ECS::TaskDefinition"|"AWS::EFS::AccessPoint"|"AWS::EFS::FileSystem"|"AWS::EKS::Cluster"|"AWS::OpenSearch::Domain"|"AWS::EC2::TransitGateway"|"AWS::Kinesis::Stream"|"AWS::Kinesis::StreamConsumer"|"AWS::CodeDeploy::Application"|"AWS::CodeDeploy::DeploymentConfig"|"AWS::CodeDeploy::DeploymentGroup"|"AWS::EC2::LaunchTemplate"|"AWS::ECR::PublicRepository"|"AWS::GuardDuty::Detector"|"AWS::EMR::SecurityConfiguration"|"AWS::SageMaker::CodeRepository"|"AWS::Route53Resolver::ResolverEndpoint"|"AWS::Route53Resolver::ResolverRule"|"AWS::Route53Resolver::ResolverRuleAssociation"|"AWS::DMS::ReplicationSubnetGroup"|"AWS::DMS::EventSubscription"|"AWS::MSK::Cluster"|"AWS::StepFunctions::Activity"|"AWS::WorkSpaces::Workspace"|"AWS::WorkSpaces::ConnectionAlias"|"AWS::SageMaker::Model"|"AWS::ElasticLoadBalancingV2::Listener"|"AWS::StepFunctions::StateMachine"|"AWS::Batch::JobQueue"|"AWS::Batch::ComputeEnvironment"|"AWS::AccessAnalyzer::Analyzer"|"AWS::Athena::WorkGroup"|"AWS::Athena::DataCatalog"|"AWS::Detective::Graph"|"AWS::GlobalAccelerator::Accelerator"|"AWS::GlobalAccelerator::EndpointGroup"|"AWS::GlobalAccelerator::Listener"|"AWS::EC2::TransitGatewayAttachment"|"AWS::EC2::TransitGatewayRouteTable"|"AWS::DMS::Certificate"|"AWS::AppConfig::Application"|"AWS::AppSync::GraphQLApi"|"AWS::DataSync::LocationSMB"|"AWS::DataSync::LocationFSxLustre"|"AWS::DataSync::LocationS3"|"AWS::DataSync::LocationEFS"|"AWS::DataSync::Task"|"AWS::DataSync::LocationNFS"|"AWS::EC2::NetworkInsightsAccessScopeAnalysis"|"AWS::EKS::FargateProfile"|"AWS::Glue::Job"|"AWS::GuardDuty::ThreatIntelSet"|"AWS::GuardDuty::IPSet"|"AWS::SageMaker::Workteam"|"AWS::SageMaker::NotebookInstanceLifecycleConfig"|"AWS::ServiceDiscovery::Service"|"AWS::ServiceDiscovery::PublicDnsNamespace"|"AWS::SES::ContactList"|"AWS::SES::ConfigurationSet"|"AWS::Route53::HostedZone"|"AWS::IoTEvents::Input"|"AWS::IoTEvents::DetectorModel"|"AWS::IoTEvents::AlarmModel"|"AWS::ServiceDiscovery::HttpNamespace"|"AWS::Events::EventBus"|"AWS::ImageBuilder::ContainerRecipe"|"AWS::ImageBuilder::DistributionConfiguration"|"AWS::ImageBuilder::InfrastructureConfiguration"|"AWS::DataSync::LocationObjectStorage"|"AWS::DataSync::LocationHDFS"|"AWS::Glue::Classifier"|"AWS::Route53RecoveryReadiness::Cell"|"AWS::Route53RecoveryReadiness::ReadinessCheck"|"AWS::ECR::RegistryPolicy"|"AWS::Backup::ReportPlan"|"AWS::Lightsail::Certificate"|"AWS::RUM::AppMonitor"|"AWS::Events::Endpoint"|"AWS::SES::ReceiptRuleSet"|"AWS::Events::Archive"|"AWS::Events::ApiDestination"|"AWS::Lightsail::Disk"|"AWS::FIS::ExperimentTemplate"|"AWS::DataSync::LocationFSxWindows"|"AWS::SES::ReceiptFilter"|"AWS::GuardDuty::Filter"|"AWS::SES::Template"|"AWS::AmazonMQ::Broker"|"AWS::AppConfig::Environment"|"AWS::AppConfig::ConfigurationProfile"|"AWS::Cloud9::EnvironmentEC2"|"AWS::EventSchemas::Registry"|"AWS::EventSchemas::RegistryPolicy"|"AWS::EventSchemas::Discoverer"|"AWS::FraudDetector::Label"|"AWS::FraudDetector::EntityType"|"AWS::FraudDetector::Variable"|"AWS::FraudDetector::Outcome"|"AWS::IoT::Authorizer"|"AWS::IoT::SecurityProfile"|"AWS::IoT::RoleAlias"|"AWS::IoT::Dimension"|"AWS::IoTAnalytics::Datastore"|"AWS::Lightsail::Bucket"|"AWS::Lightsail::StaticIp"|"AWS::MediaPackage::PackagingGroup"|"AWS::Route53RecoveryReadiness::RecoveryGroup"|"AWS::ResilienceHub::ResiliencyPolicy"|"AWS::Transfer::Workflow"|"AWS::EKS::IdentityProviderConfig"|"AWS::EKS::Addon"|"AWS::Glue::MLTransform"|"AWS::IoT::Policy"|"AWS::IoT::MitigationAction"|"AWS::IoTTwinMaker::Workspace"|"AWS::IoTTwinMaker::Entity"|"AWS::IoTAnalytics::Dataset"|"AWS::IoTAnalytics::Pipeline"|"AWS::IoTAnalytics::Channel"|"AWS::IoTSiteWise::Dashboard"|"AWS::IoTSiteWise::Project"|"AWS::IoTSiteWise::Portal"|"AWS::IoTSiteWise::AssetModel"|"AWS::IVS::Channel"|"AWS::IVS::RecordingConfiguration"|"AWS::IVS::PlaybackKeyPair"|"AWS::KinesisAnalyticsV2::Application"|"AWS::RDS::GlobalCluster"|"AWS::S3::MultiRegionAccessPoint"|"AWS::DeviceFarm::TestGridProject"|"AWS::Budgets::BudgetsAction"|"AWS::Lex::Bot"|"AWS::CodeGuruReviewer::RepositoryAssociation"|"AWS::IoT::CustomMetric"|"AWS::Route53Resolver::FirewallDomainList"|"AWS::RoboMaker::RobotApplicationVersion"|"AWS::EC2::TrafficMirrorSession"|"AWS::IoTSiteWise::Gateway"|"AWS::Lex::BotAlias"|"AWS::LookoutMetrics::Alert"|"AWS::IoT::AccountAuditConfiguration"|"AWS::EC2::TrafficMirrorTarget"|"AWS::S3::StorageLens"|"AWS::IoT::ScheduledAudit"|"AWS::Events::Connection"|"AWS::EventSchemas::Schema"|"AWS::MediaPackage::PackagingConfiguration"|"AWS::KinesisVideo::SignalingChannel"|"AWS::AppStream::DirectoryConfig"|"AWS::LookoutVision::Project"|"AWS::Route53RecoveryControl::Cluster"|"AWS::Route53RecoveryControl::SafetyRule"|"AWS::Route53RecoveryControl::ControlPanel"|"AWS::Route53RecoveryControl::RoutingControl"|"AWS::Route53RecoveryReadiness::ResourceSet"|"AWS::RoboMaker::SimulationApplication"|"AWS::RoboMaker::RobotApplication"|"AWS::HealthLake::FHIRDatastore"|"AWS::Pinpoint::Segment"|"AWS::Pinpoint::ApplicationSettings"|"AWS::Events::Rule"|"AWS::EC2::DHCPOptions"|"AWS::EC2::NetworkInsightsPath"|"AWS::EC2::TrafficMirrorFilter"|"AWS::EC2::IPAM"|"AWS::IoTTwinMaker::Scene"|"AWS::NetworkManager::TransitGatewayRegistration"|"AWS::CustomerProfiles::Domain"|"AWS::AutoScaling::WarmPool"|"AWS::Connect::PhoneNumber"|"AWS::AppConfig::DeploymentStrategy"|"AWS::AppFlow::Flow"|"AWS::AuditManager::Assessment"|"AWS::CloudWatch::MetricStream"|"AWS::DeviceFarm::InstanceProfile"|"AWS::DeviceFarm::Project"|"AWS::EC2::EC2Fleet"|"AWS::EC2::SubnetRouteTableAssociation"|"AWS::ECR::PullThroughCacheRule"|"AWS::GroundStation::Config"|"AWS::ImageBuilder::ImagePipeline"|"AWS::IoT::FleetMetric"|"AWS::IoTWireless::ServiceProfile"|"AWS::NetworkManager::Device"|"AWS::NetworkManager::GlobalNetwork"|"AWS::NetworkManager::Link"|"AWS::NetworkManager::Site"|"AWS::Panorama::Package"|"AWS::Pinpoint::App"|"AWS::Redshift::ScheduledAction"|"AWS::Route53Resolver::FirewallRuleGroupAssociation"|"AWS::SageMaker::AppImageConfig"|"AWS::SageMaker::Image"|"AWS::ECS::TaskSet"|"AWS::Cassandra::Keyspace"|"AWS::Signer::SigningProfile"|"AWS::Amplify::App"|"AWS::AppMesh::VirtualNode"|"AWS::AppMesh::VirtualService"|"AWS::AppRunner::VpcConnector"|"AWS::AppStream::Application"|"AWS::CodeArtifact::Repository"|"AWS::EC2::PrefixList"|"AWS::EC2::SpotFleet"|"AWS::Evidently::Project"|"AWS::Forecast::Dataset"|"AWS::IAM::SAMLProvider"|"AWS::IAM::ServerCertificate"|"AWS::Pinpoint::Campaign"|"AWS::Pinpoint::InAppTemplate"|"AWS::SageMaker::Domain"|"AWS::Transfer::Agreement"|"AWS::Transfer::Connector"|"AWS::KinesisFirehose::DeliveryStream"|"AWS::Amplify::Branch"|"AWS::AppIntegrations::EventIntegration"|"AWS::AppMesh::Route"|"AWS::Athena::PreparedStatement"|"AWS::EC2::IPAMScope"|"AWS::Evidently::Launch"|"AWS::Forecast::DatasetGroup"|"AWS::GreengrassV2::ComponentVersion"|"AWS::GroundStation::MissionProfile"|"AWS::MediaConnect::FlowEntitlement"|"AWS::MediaConnect::FlowVpcInterface"|"AWS::MediaTailor::PlaybackConfiguration"|"AWS::MSK::Configuration"|"AWS::Personalize::Dataset"|"AWS::Personalize::Schema"|"AWS::Personalize::Solution"|"AWS::Pinpoint::EmailTemplate"|"AWS::Pinpoint::EventStream"|"AWS::ResilienceHub::App"|"AWS::ACMPCA::CertificateAuthority"|"AWS::AppConfig::HostedConfigurationVersion"|"AWS::AppMesh::VirtualGateway"|"AWS::AppMesh::VirtualRouter"|"AWS::AppRunner::Service"|"AWS::CustomerProfiles::ObjectType"|"AWS::DMS::Endpoint"|"AWS::EC2::CapacityReservation"|"AWS::EC2::ClientVpnEndpoint"|"AWS::Kendra::Index"|"AWS::KinesisVideo::Stream"|"AWS::Logs::Destination"|"AWS::Pinpoint::EmailChannel"|"AWS::S3::AccessPoint"|"AWS::NetworkManager::CustomerGatewayAssociation"|"AWS::NetworkManager::LinkAssociation"|"AWS::IoTWireless::MulticastGroup"|"AWS::Personalize::DatasetGroup"|"AWS::IoTTwinMaker::ComponentType"|"AWS::CodeBuild::ReportGroup"|"AWS::SageMaker::FeatureGroup"|"AWS::MSK::BatchScramSecret"|"AWS::AppStream::Stack"|"AWS::IoT::JobTemplate"|"AWS::IoTWireless::FuotaTask"|"AWS::IoT::ProvisioningTemplate"|"AWS::InspectorV2::Filter"|"AWS::Route53Resolver::ResolverQueryLoggingConfigAssociation"|"AWS::ServiceDiscovery::Instance"|"AWS::Transfer::Certificate"|"AWS::MediaConnect::FlowSource"|"AWS::APS::RuleGroupsNamespace"|"AWS::CodeGuruProfiler::ProfilingGroup"|"AWS::Route53Resolver::ResolverQueryLoggingConfig"|"AWS::Batch::SchedulingPolicy"|"AWS::ACMPCA::CertificateAuthorityActivation"|"AWS::AppMesh::GatewayRoute"|"AWS::AppMesh::Mesh"|"AWS::Connect::Instance"|"AWS::Connect::QuickConnect"|"AWS::EC2::CarrierGateway"|"AWS::EC2::IPAMPool"|"AWS::EC2::TransitGatewayConnect"|"AWS::EC2::TransitGatewayMulticastDomain"|"AWS::ECS::CapacityProvider"|"AWS::IAM::InstanceProfile"|"AWS::IoT::CACertificate"|"AWS::IoTTwinMaker::SyncJob"|"AWS::KafkaConnect::Connector"|"AWS::Lambda::CodeSigningConfig"|"AWS::NetworkManager::ConnectPeer"|"AWS::ResourceExplorer2::Index"|"AWS::AppStream::Fleet"|"AWS::Cognito::UserPool"|"AWS::Cognito::UserPoolClient"|"AWS::Cognito::UserPoolGroup"|"AWS::EC2::NetworkInsightsAccessScope"|"AWS::EC2::NetworkInsightsAnalysis"|"AWS::Grafana::Workspace"|"AWS::GroundStation::DataflowEndpointGroup"|"AWS::ImageBuilder::ImageRecipe"|"AWS::KMS::Alias"|"AWS::M2::Environment"|"AWS::QuickSight::DataSource"|"AWS::QuickSight::Template"|"AWS::QuickSight::Theme"|"AWS::RDS::OptionGroup"|"AWS::Redshift::EndpointAccess"|"AWS::Route53Resolver::FirewallRuleGroup"|"AWS::SSM::Document"|"AWS::AppConfig::ExtensionAssociation"|"AWS::AppIntegrations::Application"|"AWS::AppSync::ApiCache"|"AWS::Bedrock::Guardrail"|"AWS::Bedrock::KnowledgeBase"|"AWS::Cognito::IdentityPool"|"AWS::Connect::Rule"|"AWS::Connect::User"|"AWS::EC2::ClientVpnTargetNetworkAssociation"|"AWS::EC2::EIPAssociation"|"AWS::EC2::IPAMResourceDiscovery"|"AWS::EC2::IPAMResourceDiscoveryAssociation"|"AWS::EC2::InstanceConnectEndpoint"|"AWS::EC2::SnapshotBlockPublicAccess"|"AWS::EC2::VPCBlockPublicAccessExclusion"|"AWS::EC2::VPCBlockPublicAccessOptions"|"AWS::EC2::VPCEndpointConnectionNotification"|"AWS::EC2::VPNConnectionRoute"|"AWS::Evidently::Segment"|"AWS::IAM::OIDCProvider"|"AWS::InspectorV2::Activation"|"AWS::MSK::ClusterPolicy"|"AWS::MSK::VpcConnection"|"AWS::MediaConnect::Gateway"|"AWS::MemoryDB::SubnetGroup"|"AWS::OpenSearchServerless::Collection"|"AWS::OpenSearchServerless::VpcEndpoint"|"AWS::Redshift::EndpointAuthorization"|"AWS::Route53Profiles::Profile"|"AWS::S3::StorageLensGroup"|"AWS::S3Express::BucketPolicy"|"AWS::S3Express::DirectoryBucket"|"AWS::SageMaker::InferenceExperiment"|"AWS::SecurityHub::Standard"|"AWS::Transfer::Profile",
    "resourceId": "string"
  }
  ...
]

--cli-input-json | --cli-input-yaml (string) Reads arguments from the JSON string provided. The JSON string follows the format provided by --generate-cli-skeleton. If other arguments are provided on the command line, those values will override the JSON-provided values. It is not possible to pass arbitrary binary values using a JSON-provided value as the string will be taken literally. This may not be specified along with --cli-input-yaml.

--generate-cli-skeleton (string) Prints a JSON skeleton to standard output without sending an API request. If provided with no value or the value input, prints a sample input JSON that can be used as an argument for --cli-input-json. Similarly, if provided yaml-input it will print a sample input YAML that can be used with --cli-input-yaml. If provided with the value output, it validates the command inputs and returns a sample output JSON for that command. The generated JSON skeleton is not stable between versions of the AWS CLI and there are no backwards compatibility guarantees in the JSON skeleton generated.

Global Options¶

--debug (boolean)

Turn on debug logging.

--endpoint-url (string)

Override command’s default URL with the given URL.

--no-verify-ssl (boolean)

By default, the AWS CLI uses SSL when communicating with AWS services. For each SSL connection, the AWS CLI will verify SSL certificates. This option overrides the default behavior of verifying SSL certificates.

--no-paginate (boolean)

Disable automatic pagination. If automatic pagination is disabled, the AWS CLI will only make one call, for the first page of results.

--output (string)

The formatting style for command output.

json
text
table
yaml
yaml-stream

--query (string)

A JMESPath query to use in filtering the response data.

--profile (string)

Use a specific profile from your credential file.

--region (string)

The region to use. Overrides config/env settings.

--version (string)

Display the version of this tool.

--color (string)

Turn on/off color output.

on
off
auto

--no-sign-request (boolean)

Do not sign requests. Credentials will not be loaded if this argument is provided.

--ca-bundle (string)

The CA certificate bundle to use when verifying SSL certificates. Overrides config/env settings.

--cli-read-timeout (int)

The maximum socket read time in seconds. If the value is set to 0, the socket read will be blocking and not timeout. The default value is 60 seconds.

--cli-connect-timeout (int)

The maximum socket connect time in seconds. If the value is set to 0, the socket connect will be blocking and not timeout. The default value is 60 seconds.

--cli-binary-format (string)

The formatting style to be used for binary blobs. The default format is base64. The base64 format expects binary blobs to be provided as a base64 encoded string. The raw-in-base64-out format preserves compatibility with AWS CLI V1 behavior and binary values must be passed literally. When providing contents from a file that map to a binary blob fileb:// will always be treated as binary and use the file contents directly regardless of the cli-binary-format setting. When using file:// the file contents will need to properly formatted for the configured cli-binary-format.

base64
raw-in-base64-out

--no-cli-pager (boolean)

Disable cli pager for output.

--cli-auto-prompt (boolean)

Automatically prompt for CLI input parameters.

--no-cli-auto-prompt (boolean)

Disable automatically prompt for CLI input parameters.

Output¶

FailureMessage -> (string)

Returns a failure message. For example, the resource is already compliant.

FailedItems -> (list)

For resources that have failed to start execution, the API returns a resource key object.

Constraints:

min: 1

max: 100

(structure)

The details that identify a resource within Config, including the resource type and resource ID.

resourceType -> (string) [required]

The resource type.

Possible values:

AWS::EC2::CustomerGateway

AWS::EC2::EIP

AWS::EC2::Host

AWS::EC2::Instance

AWS::EC2::InternetGateway

AWS::EC2::NetworkAcl

AWS::EC2::NetworkInterface

AWS::EC2::RouteTable

AWS::EC2::SecurityGroup

AWS::EC2::Subnet

AWS::CloudTrail::Trail

AWS::EC2::Volume

AWS::EC2::VPC

AWS::EC2::VPNConnection

AWS::EC2::VPNGateway

AWS::EC2::RegisteredHAInstance

AWS::EC2::NatGateway

AWS::EC2::EgressOnlyInternetGateway

AWS::EC2::VPCEndpoint

AWS::EC2::VPCEndpointService

AWS::EC2::FlowLog

AWS::EC2::VPCPeeringConnection

AWS::Elasticsearch::Domain

AWS::IAM::Group

AWS::IAM::Policy

AWS::IAM::Role

AWS::IAM::User

AWS::ElasticLoadBalancingV2::LoadBalancer

AWS::ACM::Certificate

AWS::RDS::DBInstance

AWS::RDS::DBSubnetGroup

AWS::RDS::DBSecurityGroup

AWS::RDS::DBSnapshot

AWS::RDS::DBCluster

AWS::RDS::DBClusterSnapshot

AWS::RDS::EventSubscription

AWS::S3::Bucket

AWS::S3::AccountPublicAccessBlock

AWS::Redshift::Cluster

AWS::Redshift::ClusterSnapshot

AWS::Redshift::ClusterParameterGroup

AWS::Redshift::ClusterSecurityGroup

AWS::Redshift::ClusterSubnetGroup

AWS::Redshift::EventSubscription

AWS::SSM::ManagedInstanceInventory

AWS::CloudWatch::Alarm

AWS::CloudFormation::Stack

AWS::ElasticLoadBalancing::LoadBalancer

AWS::AutoScaling::AutoScalingGroup

AWS::AutoScaling::LaunchConfiguration

AWS::AutoScaling::ScalingPolicy

AWS::AutoScaling::ScheduledAction

AWS::DynamoDB::Table

AWS::CodeBuild::Project

AWS::WAF::RateBasedRule

AWS::WAF::Rule

AWS::WAF::RuleGroup

AWS::WAF::WebACL

AWS::WAFRegional::RateBasedRule

AWS::WAFRegional::Rule

AWS::WAFRegional::RuleGroup

AWS::WAFRegional::WebACL

AWS::CloudFront::Distribution

AWS::CloudFront::StreamingDistribution

AWS::Lambda::Function

AWS::NetworkFirewall::Firewall

AWS::NetworkFirewall::FirewallPolicy

AWS::NetworkFirewall::RuleGroup

AWS::ElasticBeanstalk::Application

AWS::ElasticBeanstalk::ApplicationVersion

AWS::ElasticBeanstalk::Environment

AWS::WAFv2::WebACL

AWS::WAFv2::RuleGroup

AWS::WAFv2::IPSet

AWS::WAFv2::RegexPatternSet

AWS::WAFv2::ManagedRuleSet

AWS::XRay::EncryptionConfig

AWS::SSM::AssociationCompliance

AWS::SSM::PatchCompliance

AWS::Shield::Protection

AWS::ShieldRegional::Protection

AWS::Config::ConformancePackCompliance

AWS::Config::ResourceCompliance

AWS::ApiGateway::Stage

AWS::ApiGateway::RestApi

AWS::ApiGatewayV2::Stage

AWS::ApiGatewayV2::Api

AWS::CodePipeline::Pipeline

AWS::ServiceCatalog::CloudFormationProvisionedProduct

AWS::ServiceCatalog::CloudFormationProduct

AWS::ServiceCatalog::Portfolio

AWS::SQS::Queue

AWS::KMS::Key

AWS::QLDB::Ledger

AWS::SecretsManager::Secret

AWS::SNS::Topic

AWS::SSM::FileData

AWS::Backup::BackupPlan

AWS::Backup::BackupSelection

AWS::Backup::BackupVault

AWS::Backup::RecoveryPoint

AWS::ECR::Repository

AWS::ECS::Cluster

AWS::ECS::Service

AWS::ECS::TaskDefinition

AWS::EFS::AccessPoint

AWS::EFS::FileSystem

AWS::EKS::Cluster

AWS::OpenSearch::Domain

AWS::EC2::TransitGateway

AWS::Kinesis::Stream

AWS::Kinesis::StreamConsumer

AWS::CodeDeploy::Application

AWS::CodeDeploy::DeploymentConfig

AWS::CodeDeploy::DeploymentGroup

AWS::EC2::LaunchTemplate

AWS::ECR::PublicRepository

AWS::GuardDuty::Detector

AWS::EMR::SecurityConfiguration

AWS::SageMaker::CodeRepository

AWS::Route53Resolver::ResolverEndpoint

AWS::Route53Resolver::ResolverRule

AWS::Route53Resolver::ResolverRuleAssociation

AWS::DMS::ReplicationSubnetGroup

AWS::DMS::EventSubscription

AWS::MSK::Cluster

AWS::StepFunctions::Activity

AWS::WorkSpaces::Workspace

AWS::WorkSpaces::ConnectionAlias

AWS::SageMaker::Model

AWS::ElasticLoadBalancingV2::Listener

AWS::StepFunctions::StateMachine

AWS::Batch::JobQueue

AWS::Batch::ComputeEnvironment

AWS::AccessAnalyzer::Analyzer

AWS::Athena::WorkGroup

AWS::Athena::DataCatalog

AWS::Detective::Graph

AWS::GlobalAccelerator::Accelerator

AWS::GlobalAccelerator::EndpointGroup

AWS::GlobalAccelerator::Listener

AWS::EC2::TransitGatewayAttachment

AWS::EC2::TransitGatewayRouteTable

AWS::DMS::Certificate

AWS::AppConfig::Application

AWS::AppSync::GraphQLApi

AWS::DataSync::LocationSMB

AWS::DataSync::LocationFSxLustre

AWS::DataSync::LocationS3

AWS::DataSync::LocationEFS

AWS::DataSync::Task

AWS::DataSync::LocationNFS

AWS::EC2::NetworkInsightsAccessScopeAnalysis

AWS::EKS::FargateProfile

AWS::Glue::Job

AWS::GuardDuty::ThreatIntelSet

AWS::GuardDuty::IPSet

AWS::SageMaker::Workteam

AWS::SageMaker::NotebookInstanceLifecycleConfig

AWS::ServiceDiscovery::Service

AWS::ServiceDiscovery::PublicDnsNamespace

AWS::SES::ContactList

AWS::SES::ConfigurationSet

AWS::Route53::HostedZone

AWS::IoTEvents::Input

AWS::IoTEvents::DetectorModel

AWS::IoTEvents::AlarmModel

AWS::ServiceDiscovery::HttpNamespace

AWS::Events::EventBus

AWS::ImageBuilder::ContainerRecipe

AWS::ImageBuilder::DistributionConfiguration

AWS::ImageBuilder::InfrastructureConfiguration

AWS::DataSync::LocationObjectStorage

AWS::DataSync::LocationHDFS

AWS::Glue::Classifier

AWS::Route53RecoveryReadiness::Cell

AWS::Route53RecoveryReadiness::ReadinessCheck

AWS::ECR::RegistryPolicy

AWS::Backup::ReportPlan

AWS::Lightsail::Certificate

AWS::RUM::AppMonitor

AWS::Events::Endpoint

AWS::SES::ReceiptRuleSet

AWS::Events::Archive

AWS::Events::ApiDestination

AWS::Lightsail::Disk

AWS::FIS::ExperimentTemplate

AWS::DataSync::LocationFSxWindows

AWS::SES::ReceiptFilter

AWS::GuardDuty::Filter

AWS::SES::Template

AWS::AmazonMQ::Broker

AWS::AppConfig::Environment

AWS::AppConfig::ConfigurationProfile

AWS::Cloud9::EnvironmentEC2

AWS::EventSchemas::Registry

AWS::EventSchemas::RegistryPolicy

AWS::EventSchemas::Discoverer

AWS::FraudDetector::Label

AWS::FraudDetector::EntityType

AWS::FraudDetector::Variable

AWS::FraudDetector::Outcome

AWS::IoT::Authorizer

AWS::IoT::SecurityProfile

AWS::IoT::RoleAlias

AWS::IoT::Dimension

AWS::IoTAnalytics::Datastore

AWS::Lightsail::Bucket

AWS::Lightsail::StaticIp

AWS::MediaPackage::PackagingGroup

AWS::Route53RecoveryReadiness::RecoveryGroup

AWS::ResilienceHub::ResiliencyPolicy

AWS::Transfer::Workflow

AWS::EKS::IdentityProviderConfig

AWS::EKS::Addon

AWS::Glue::MLTransform

AWS::IoT::Policy

AWS::IoT::MitigationAction

AWS::IoTTwinMaker::Workspace

AWS::IoTTwinMaker::Entity

AWS::IoTAnalytics::Dataset

AWS::IoTAnalytics::Pipeline

AWS::IoTAnalytics::Channel

AWS::IoTSiteWise::Dashboard

AWS::IoTSiteWise::Project

AWS::IoTSiteWise::Portal

AWS::IoTSiteWise::AssetModel

AWS::IVS::Channel

AWS::IVS::RecordingConfiguration

AWS::IVS::PlaybackKeyPair

AWS::KinesisAnalyticsV2::Application

AWS::RDS::GlobalCluster

AWS::S3::MultiRegionAccessPoint

AWS::DeviceFarm::TestGridProject

AWS::Budgets::BudgetsAction

AWS::Lex::Bot

AWS::CodeGuruReviewer::RepositoryAssociation

AWS::IoT::CustomMetric

AWS::Route53Resolver::FirewallDomainList

AWS::RoboMaker::RobotApplicationVersion

AWS::EC2::TrafficMirrorSession

AWS::IoTSiteWise::Gateway

AWS::Lex::BotAlias

AWS::LookoutMetrics::Alert

AWS::IoT::AccountAuditConfiguration

AWS::EC2::TrafficMirrorTarget

AWS::S3::StorageLens

AWS::IoT::ScheduledAudit

AWS::Events::Connection

AWS::EventSchemas::Schema

AWS::MediaPackage::PackagingConfiguration

AWS::KinesisVideo::SignalingChannel

AWS::AppStream::DirectoryConfig

AWS::LookoutVision::Project

AWS::Route53RecoveryControl::Cluster

AWS::Route53RecoveryControl::SafetyRule

AWS::Route53RecoveryControl::ControlPanel

AWS::Route53RecoveryControl::RoutingControl

AWS::Route53RecoveryReadiness::ResourceSet

AWS::RoboMaker::SimulationApplication

AWS::RoboMaker::RobotApplication

AWS::HealthLake::FHIRDatastore

AWS::Pinpoint::Segment

AWS::Pinpoint::ApplicationSettings

AWS::Events::Rule

AWS::EC2::DHCPOptions

AWS::EC2::NetworkInsightsPath

AWS::EC2::TrafficMirrorFilter

AWS::EC2::IPAM

AWS::IoTTwinMaker::Scene

AWS::NetworkManager::TransitGatewayRegistration

AWS::CustomerProfiles::Domain

AWS::AutoScaling::WarmPool

AWS::Connect::PhoneNumber

AWS::AppConfig::DeploymentStrategy

AWS::AppFlow::Flow

AWS::AuditManager::Assessment

AWS::CloudWatch::MetricStream

AWS::DeviceFarm::InstanceProfile

AWS::DeviceFarm::Project

AWS::EC2::EC2Fleet

AWS::EC2::SubnetRouteTableAssociation

AWS::ECR::PullThroughCacheRule

AWS::GroundStation::Config

AWS::ImageBuilder::ImagePipeline

AWS::IoT::FleetMetric

AWS::IoTWireless::ServiceProfile

AWS::NetworkManager::Device

AWS::NetworkManager::GlobalNetwork

AWS::NetworkManager::Link

AWS::NetworkManager::Site

AWS::Panorama::Package

AWS::Pinpoint::App

AWS::Redshift::ScheduledAction

AWS::Route53Resolver::FirewallRuleGroupAssociation

AWS::SageMaker::AppImageConfig

AWS::SageMaker::Image

AWS::ECS::TaskSet

AWS::Cassandra::Keyspace

AWS::Signer::SigningProfile

AWS::Amplify::App

AWS::AppMesh::VirtualNode

AWS::AppMesh::VirtualService

AWS::AppRunner::VpcConnector

AWS::AppStream::Application

AWS::CodeArtifact::Repository

AWS::EC2::PrefixList

AWS::EC2::SpotFleet

AWS::Evidently::Project

AWS::Forecast::Dataset

AWS::IAM::SAMLProvider

AWS::IAM::ServerCertificate

AWS::Pinpoint::Campaign

AWS::Pinpoint::InAppTemplate

AWS::SageMaker::Domain

AWS::Transfer::Agreement

AWS::Transfer::Connector

AWS::KinesisFirehose::DeliveryStream

AWS::Amplify::Branch

AWS::AppIntegrations::EventIntegration

AWS::AppMesh::Route

AWS::Athena::PreparedStatement

AWS::EC2::IPAMScope

AWS::Evidently::Launch

AWS::Forecast::DatasetGroup

AWS::GreengrassV2::ComponentVersion

AWS::GroundStation::MissionProfile

AWS::MediaConnect::FlowEntitlement

AWS::MediaConnect::FlowVpcInterface

AWS::MediaTailor::PlaybackConfiguration

AWS::MSK::Configuration

AWS::Personalize::Dataset

AWS::Personalize::Schema

AWS::Personalize::Solution

AWS::Pinpoint::EmailTemplate

AWS::Pinpoint::EventStream

AWS::ResilienceHub::App

AWS::ACMPCA::CertificateAuthority

AWS::AppConfig::HostedConfigurationVersion

AWS::AppMesh::VirtualGateway

AWS::AppMesh::VirtualRouter

AWS::AppRunner::Service

AWS::CustomerProfiles::ObjectType

AWS::DMS::Endpoint

AWS::EC2::CapacityReservation

AWS::EC2::ClientVpnEndpoint

AWS::Kendra::Index

AWS::KinesisVideo::Stream

AWS::Logs::Destination

AWS::Pinpoint::EmailChannel

AWS::S3::AccessPoint

AWS::NetworkManager::CustomerGatewayAssociation

AWS::NetworkManager::LinkAssociation

AWS::IoTWireless::MulticastGroup

AWS::Personalize::DatasetGroup

AWS::IoTTwinMaker::ComponentType

AWS::CodeBuild::ReportGroup

AWS::SageMaker::FeatureGroup

AWS::MSK::BatchScramSecret

AWS::AppStream::Stack

AWS::IoT::JobTemplate

AWS::IoTWireless::FuotaTask

AWS::IoT::ProvisioningTemplate

AWS::InspectorV2::Filter

AWS::Route53Resolver::ResolverQueryLoggingConfigAssociation

AWS::ServiceDiscovery::Instance

AWS::Transfer::Certificate

AWS::MediaConnect::FlowSource

AWS::APS::RuleGroupsNamespace

AWS::CodeGuruProfiler::ProfilingGroup

AWS::Route53Resolver::ResolverQueryLoggingConfig

AWS::Batch::SchedulingPolicy

AWS::ACMPCA::CertificateAuthorityActivation

AWS::AppMesh::GatewayRoute

AWS::AppMesh::Mesh

AWS::Connect::Instance

AWS::Connect::QuickConnect

AWS::EC2::CarrierGateway

AWS::EC2::IPAMPool

AWS::EC2::TransitGatewayConnect

AWS::EC2::TransitGatewayMulticastDomain

AWS::ECS::CapacityProvider

AWS::IAM::InstanceProfile

AWS::IoT::CACertificate

AWS::IoTTwinMaker::SyncJob

AWS::KafkaConnect::Connector

AWS::Lambda::CodeSigningConfig

AWS::NetworkManager::ConnectPeer

AWS::ResourceExplorer2::Index

AWS::AppStream::Fleet

AWS::Cognito::UserPool

AWS::Cognito::UserPoolClient

AWS::Cognito::UserPoolGroup

AWS::EC2::NetworkInsightsAccessScope

AWS::EC2::NetworkInsightsAnalysis

AWS::Grafana::Workspace

AWS::GroundStation::DataflowEndpointGroup

AWS::ImageBuilder::ImageRecipe

AWS::KMS::Alias

AWS::M2::Environment

AWS::QuickSight::DataSource

AWS::QuickSight::Template

AWS::QuickSight::Theme

AWS::RDS::OptionGroup

AWS::Redshift::EndpointAccess

AWS::Route53Resolver::FirewallRuleGroup

AWS::SSM::Document

AWS::AppConfig::ExtensionAssociation

AWS::AppIntegrations::Application

AWS::AppSync::ApiCache

AWS::Bedrock::Guardrail

AWS::Bedrock::KnowledgeBase

AWS::Cognito::IdentityPool

AWS::Connect::Rule

AWS::Connect::User

AWS::EC2::ClientVpnTargetNetworkAssociation

AWS::EC2::EIPAssociation

AWS::EC2::IPAMResourceDiscovery

AWS::EC2::IPAMResourceDiscoveryAssociation

AWS::EC2::InstanceConnectEndpoint

AWS::EC2::SnapshotBlockPublicAccess

AWS::EC2::VPCBlockPublicAccessExclusion

AWS::EC2::VPCBlockPublicAccessOptions

AWS::EC2::VPCEndpointConnectionNotification

AWS::EC2::VPNConnectionRoute

AWS::Evidently::Segment

AWS::IAM::OIDCProvider

AWS::InspectorV2::Activation

AWS::MSK::ClusterPolicy

AWS::MSK::VpcConnection

AWS::MediaConnect::Gateway

AWS::MemoryDB::SubnetGroup

AWS::OpenSearchServerless::Collection

AWS::OpenSearchServerless::VpcEndpoint

AWS::Redshift::EndpointAuthorization

AWS::Route53Profiles::Profile

AWS::S3::StorageLensGroup

AWS::S3Express::BucketPolicy

AWS::S3Express::DirectoryBucket

AWS::SageMaker::InferenceExperiment

AWS::SecurityHub::Standard

AWS::Transfer::Profile

resourceId -> (string) [required]

The ID of the resource (for example., sg-xxxxxx).

Constraints:

min: 1

max: 768

Table of Contents

Feedback

User Guide