Tagging capability

Tagging is the act of assigning metadata to the different resources in your AWS environment for a variety of purposes, such as Attribute Based Access Control (ABAC), Cloud Financial Management, and automation (such as patching for select tagged instances). Tagging can also be used to create new resource constructs for visibility or control (such as grouping together resources that make up a micro-service, application, or workload). Tagging is fundamental to providing enterprise-level visibility and control.

Stakeholders:

Central IT (Primary)
Finance
Security
Software Engineering

Personas:

Cloud Team - the team(s) who make cloud available to customers.
Security Team - the members of the cloud team responsible for security in AWS.
Finance Team - the members of the finance team responsible for reporting, allocating, and forecasting cloud costs.
Customer - entity within the company that consumes the logs stored within the log storage.

Supporting capabilities: Identity Management and Access Control capability

Scenarios:

CF23 - S1: Tag definition and assignment

CF23 - S2: Tag compliance

CF23 - S3: Tag usage

Topics

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

Log strategy

Overview