# On-request reports
**Topics**
+ [AMS host management reports](ams-host-man.md)
+ [AMS Backup reports](reporting-backup.md)
+ [AWS Config Control Compliance report](acc-report-config-control-compliance.md)
+ [AMS Config Rules Response Configuration report](config-rules-response-configuration.md)
+ [Incidents Prevented and Monitoring Top Talkers reports](incidents-prevented-top-talkers.md)
+ [Billing Charges Details report](reporting-billing-details.md)
+ [Trusted Remediator reports](trusted-remediator-reports.md)
AMS collates data from various native AWS services to provide value added reports on major AMS offerings. For a copy of these reports, make a request to your Cloud Service Delivery Manager (CSDM).
# AMS host management reports
**Topics**
+ [SSM Agent Coverage report](#reportintg-ssm-coverage)
## SSM Agent Coverage report
AMS SSM Agent Coverage report informs you whether or not the EC2 instances in the account have the SSM Agent installed.
| **Field Name** | **Definition** |
| --- | --- |
| Customer Name | Customer name for situations where there are multiple sub-customers |
| Resource Region | AWS Region where the resource is located |
| Account name | The name of the account |
| AWS Account ID | The ID of the AWS account |
| Resource Id | ID of EC2 instance |
| Resource Name | Name of EC2 instance |
| Compliant flag | Indicates if the resource has the SSM Agent installed ("Compliant") or not ("NON\$1COMPLIANT") |
# AMS Backup reports
**Topics**
+ [Backup Job Success / Failure report](#reporting-backup-success-failure)
+ [Backup Summary report](#reporting-backup-summary)
+ [Backup Summary/Coverage report](#backup-summary-coverage)
## Backup Job Success / Failure report
The Backup Job Success/Failure report provides information about backups run in the last few weeks. To customize the report, specify the number of weeks that you want to retrieve data for. The default number of weeks is 12. The following table lists the data included in the report:
| **Field Name** | **Definition** |
| --- | --- |
| AWS Account ID | AWS Account ID to which the resource belongs |
| Account Name | AWS account name |
| Backup Job ID | The ID of the Backup job |
| Resource ID | The ID of the backed-up resource |
| Resource Type | The type of resource that is being backed up |
| Resource Region | The AWS Region of the backed up resource |
| Backup State | The state of the backup. For more information, see [Backup job statuses ](https://docs.aws.amazon.com/aws-backup/latest/devguide/creating-a-backup.html#backup-job-statuses) |
| Recovery Point ID | The unique identifier of the recovery point |
| Status message | Description of errors or warnings that occurred during the backup job |
| Backup Size | Size of the backup in GB |
| Recovery Point ARN | The ARN of the created backup |
| Recovery point age in days | Number of days that have passed since the recovery point was created |
| Less than 30 days old | Indicator of backups that are less than 30 days old |
## Backup Summary report
| **Field Name** | **Definition** |
| --- | --- |
| Customer Name | Customer name for situations where multiple sub-customers are |
| Backup Month | Month of the backup |
| Backup Year | Year of the backup |
| Resource Type | The type of resource that is being backed up |
| \$1 of Resources | The number of resources that were backed up |
| \$1 of Recovery points | Number of distinct snapshots |
| Backups less than 30 Days Old | The count of backups that are less than 30 days old |
| Max Recovery point age | The oldest recovery point age in days |
| Min Recovery point age | The most recent recovery point age in days |
## Backup Summary/Coverage report
The Backup Summary/Coverage report lists how many resources are not currently protected by any AWS Backup plan. Discuss with your CDSM an appropriate plan to increase coverage, where possible, and to reduce the risk of data loss.
| **Field Name** | **Definition** |
| --- | --- |
| Customer Name | Customer name for situations where multiple sub-customers are |
| Region | AWS region where the resource is located |
| Account name | The name of the account |
| AWS Account ID | The ID of the AWS account |
| Resource Type | Type of the resource. Resources are supported by AWS Backup (Aurora, DocumentDB, DynamoDB, EBS, EC2, EFS, FSx, RDS, and S3) |
| Resource ARN | ARN of the resource |
| Resource ID | ID of the resource |
| Coverage | Indicates if the resource is covered or not ("COVERED" or "NOT\$1COVERED") |
| \$1 of resources | Number of supported resources in the account |
| perc\$1coverage | Percentage of supported resources with a backup executed in the last 30 days. |
# AWS Config Control Compliance report
The AWS Config Control Compliance report provides an in-depth look at resource and AWS Config rule compliance of AMS accounts, You filter the report by Config Rule Severity to prioritize the most critical findings. The following table lists the data provided by this report:
| **Field ** | **Description ** |
| --- | --- |
| Date | Report date |
| Customer name | Customer name |
| AWS account ID | Associated AWS account ID for customer |
| Source identifier | AWS Config rule unique source identifier |
| Rule Description | AWS Config rule description |
| Rule Type | AWS Config rule type |
| Compliance Flag | AWS Config rule compliance state |
| Resource Type | AWS resource type |
| Resource Name | AWS resource name |
| Severity | Default recommended severity defined by AMS for the AWS Config rule |
| Remediation Category | Associated remediation response category for a AWS Config rule |
| Remediation Description | Remediation action explained to make AWS Config rule to be compliant |
| Customer action | Customer action required to make the AWS Config rule to be compliant |
| Delta metrics report | Changes for compliance of a rule between given 2 dates |
# AMS Config Rules Response Configuration report
The AMS Config Rules Response Configuration report provides an in-depth look at how you currently have Accelerate configured to respond to non-compliant AMS config rules. For more information on how to change the response for AMS config rules, see [AMS Accelerate Customized findings responses](https://docs.aws.amazon.com/managedservices/latest/accelerate-guide/custom-findings-responses.html).
This report only shows the configurations that you have changed, and excludes the AMS default configurations that are listed in the [AMS Config Rules Library](https://docs.aws.amazon.com/managedservices/latest/accelerate-guide/acc-sec-compliance.html). The report provides data on resource and AMS config rule response configuration of AMS accounts, including the following:
+ The list of AWS accounts for which you changed the default response for AMS config rules.
+ The list of tags for which you have associated a response for AMS config rules.
+ The list of response configurations for each rule, account, and tag.
+ The list of resources for which you have changed the default response for AMS config rules.
## Latest Response Configurations Report
| **Field ** | **Description ** |
| --- | --- |
| Date | Date in which the report was generated |
| Customer name | Customer name |
| AWS account ID | The AWS account ID associated with the configuration |
| Account Name | AWS account name of account level resource group |
| Finding Type | Type of finding identified. In this case, AWS Config |
| Source Identifier | AWS Config Rule Unique Source Identifier |
| Resource Group ID | The Resource Group ID associated with the response configuration |
| Response Action Configured | Action type triggered by AMS |
| SSM Runbook Associated | The Remediation Runbook that will be run, if any |
| Resource Group Type | This can be Account or Tag |
## Resources with Custom Default Response of Config Rules
| **Field Name** | **Definition** |
| --- | --- |
| Customer Name | Customer name |
| Date | Date in which the report was generated |
| AWS Account Name | AWS account name |
| Account ID | Associated AWS account ID |
| AMS Config Rule | AMS config rule that's targeting the resource and applying with a configuration |
| Resource ID | The resource ID in the customer account targeted by the AMS config rule |
| Resource Region | The AWS Region that the configuration is applied in |
| Resource Type | AWS resource type |
| Resource Group ID | The Resource group ID associated with the response configuration |
| Resource AMS Flag | If the AWS resource is deployed by AMS, then this field is set to True |
| Trigger Type | The type of response configured for the resource |
| Compliance Flag | AMS config rule compliance state |
# Incidents Prevented and Monitoring Top Talkers reports
**Topics**
+ [Incidents prevented report](#incidents-prevented)
+ [Monitoring Top Talkers report](#top-talkers)
## Incidents prevented report
The Incidents Prevented report lists the Amazon CloudWatch alarms that were automatically remediated, preventing a possible incident. To learn more, see [Auto remediation](https://docs.aws.amazon.com/managedservices/latest/accelerate-guide/auto-remediation.html). The following table lists the information included in this report:
| **Field Name** | **Definition** |
| --- | --- |
| execution\$1start\$1time\$1utc | Date in which the automation was executed |
| customer\$1name | Account customer name |
| account\$1name | The name of the account |
| AwsAccountId | The ID of the AWS account |
| document\$1name | The name of the SSM document or automation executed |
| duration\$1in\$1minutes | The length of the automation in minutes |
| Region | AWS Region where the resource is located |
| automation\$1execution\$1id | The ID of the execution |
| automation\$1execution\$1status | The status of the execution |
## Monitoring Top Talkers report
The Monitoring Top Talkers report presents the number of Amazon CloudWatch alerts generated during a specific time period and provides visualizations of the resources that generate the highest number of alerts. This report helps you identify resources that generate the highest number of alerts. These resources might be candidates for performing Root Cause Analysis to remediate the problem or to modify the alarm thresholds to prevent unnecessary triggers when there isn't an actual issue. The following table lists the information included in this report:
| **Field Name** | **Definition** |
| --- | --- |
| Customer name | Name of the customer |
| AccountId | The ID of the AWS account |
| Alert category | The type of alert triggered |
| Description | Description of the alert |
| Resource ID | ID of the resource that triggered the alert |
| Resource Name | Name of the resource that triggered the alert |
| Region | AWSRegion where the resource is located |
| Incident status | Latest status of the incident generated by the alarm |
| First occurrence | First time that the alert was triggered |
| Recent occurrence | The most recent time that the alert was triggered |
| Alert Count | Number of alerts generated between the first and recent occurrence |
# Billing Charges Details report
AWS Managed Services (AMS) Billing Charges Details report provides details about AMS billing charges with linked accounts and respective AWS services, including:
+ AMS service-level charges, uplift percentages, account-level AMS service tiers and AMS fees.
+ Linked accounts and AWS usage charges
| **Field Name** | **Definition** |
| --- | --- |
| Billing Month | The month and year of the service billed |
| Payer Account ID | The 12 digit ID identifying the account that will be responsible for paying the AMS charges |
| Linked Account ID | The 12 digit ID identifying the AMS account that consumes services that generates expenses |
| AWS Service Name | The AWS service that was used |
| AWS Charges | The AWS charges for the AWS service name listed in AWS Service Name |
| Pricing Plan | The name of the pricing plan associated with the linked account |
| Uplift Proportion | The uplift percentage (as a decimal V.WXYZ) based on pricing\$1plan, SLA, and AWS service |
| Adjusted AWS Charges | AWS usage adjusted for AMS |
| Uplifted AWS Charges | The percentage of AWS charges to be charged for AMS; adjusted\$1aws\$1charges \$1 uplift\$1percent |
| Instances EC2 RDS Spend | Spend on EC2 and RDS instances |
| AMS Charges | Total AMS charges for the product; uplifted\$1aws\$1charges \$1 instance\$1ec2\$1rds\$1spend \$1 uplifted\$1ris \$1 uplifted\$1sp |
| Prorated Minimum Fee | The amount we charge to meet the contractual minimum |
| Minimum Fee | AMS Minimum Fees (if applicable) |
| Linked Account Total AMS Charges | Sum of all charges for the linked\$1account |
| Payer Account Total AMS Charges | Sum of all charges for payer account |
# Trusted Remediator reports
**Topics**
+ [Trusted Remediator Remediation Summary report](#trusted-remediator-summary)
+ [Trusted Remediator Configuration Summary report](#trusted-remediator-config-summary)
+ [Trusted Advisor Check Summary report](#trusted-advisor-check-summary)
## Trusted Remediator Remediation Summary report
The Trusted Remediator Remediation Status report provides information about the remediations that occurred during previous remediation cycles. The default number of weeks is 1. To customize the report, specify the number of weeks based on your remediation schedule.
| **Field Name** | **Definition** |
| --- | --- |
| Date | The date that the data was collected on. |
| Account ID | The AWS account ID that the resource belongs to |
| Account Name | The AWS account name |
| Check Category | The AWS Trusted Advisor check category |
| Check Name | The name of the remediated Trusted Advisor check |
| Check ID | The ID of the remediated Trusted Advisor check |
| Execution Mode | The execution mode that was configured for the specific Trusted Advisor check |
| OpsItem ID | The ID of the OpsItem created by Trusted Advisor for remediation |
| OpsItem Status | The status of the OpsItem created by Trusted Advisor at the time of reporting |
| Resource ID | The ARN of the resource created for remediation |
## Trusted Remediator Configuration Summary report
The Trusted Remediator Configuration Summary report provides information about the current Trusted Remediator Remediation configurations for each Trusted Advisor check.
| **Field Name** | **Definition** |
| --- | --- |
| Date | The date that the data was collected on. |
| Account ID | The AWS account ID that the configuration applies to |
| Account Name | The AWS account name |
| Check Category | The AWS Trusted Advisor check category |
| Check Name | The name of the remediated Trusted Advisor check that the configuration applies to |
| Check ID | The ID of the remediated Trusted Advisor check that the configuration applies to |
| Execution Mode | The execution mode that was configured for the specific Trusted Advisor check |
| Override to Automated | The tag pattern, if configured, to override execution mode to Automated |
| Override to Manual | The tag pattern, if configured, to override execution mode to Manual |
## Trusted Advisor Check Summary report
The Trusted Advisor Check Summary report provides information about the current Trusted Advisor checks. This report collects data after each weekly remediation schedule. The default number of weeks is 1. To customize the report, specify the number of weeks based on your remediation cycle.
| **Field Name** | **Definition** |
| --- | --- |
| Date | The date that the data was collected on. |
| Account ID | The AWS account ID that the configuration applies to |
| Customer Name | The AWS account name |
| Check Category | The AWS Trusted Advisor check category |
| Check Name | The name of the remediated Trusted Advisor check that the configuration applies to |
| Check ID | The ID of the remediated Trusted Advisor check that the configuration applies to |
| Status | The alert status of the check. Possible statuses are ok (green), warning (yellow), error (red), or not\$1available |
| Resources Flagged | The number of AWS resources that were flagged (listed) by the Trusted Advisor check. |
| Resources Ignored | The number of AWS resources that were ignored by Trusted Advisor because you marked them as suppressed. |
| Resources in critical state | The number of resources in critical state |
| Resources in warning state | The number of resources in warning state |