Supported Resource Types¶
This reference shows every AWS resource type TagOps can currently discover, scan, tag, and automate against. Each entry maps directly to the backend worker responsible for that resource. When new workers ship, this table automatically expands to include the new resource types.
| AWS Service | AWS Resource | AWS CloudFormation Resource Type | TagOps Resource Type |
|---|---|---|---|
| AWS Certificate Manager | Certificate | AWS::CertificateManager::Certificate | acm:certificate |
| AWS CloudTrail | Dashboard | AWS::CloudTrail::Dashboard | cloudtrail:dashboard |
| AWS CloudTrail | Event DataStore | AWS::CloudTrail::EventDataStore | cloudtrail:eventdatastore |
| AWS CloudTrail | Trail | AWS::CloudTrail::Trail | cloudtrail:trail |
| AWS CodeArtifact | Domain | AWS::CodeArtifact::Domain | codeartifact:domain |
| AWS CodeArtifact | Repository | AWS::CodeArtifact::Repository | codeartifact:repository |
| AWS CodeBuild | Project | AWS::CodeBuild::Project | codebuild:project |
| AWS CodeConnections | Connection | AWS::CodeConnections::Connection | codeconnections:connection |
| AWS CodeConnections | Host | AWS::CodeConnections::Host | codeconnections:host |
| AWS CodeDeploy | Application | AWS::CodeDeploy::Application | codedeploy:application |
| AWS CodeDeploy | Instance | AWS::CodeDeploy::Instance | codedeploy:instance |
| AWS CodePipeline | Pipeline | AWS::CodePipeline::Pipeline | codepipeline:pipeline |
| AWS CodePipeline | Webhook | AWS::CodePipeline::Webhook | codepipeline:webhook |
| AWS CodeCommit | Repository | AWS::CodeCommit::Repository | codecommit:repository |
| AWS Config | Config Rule | AWS::Config::ConfigRule | config:config-rule |
| AWS Glue | Blueprint | AWS::Glue::Blueprint | glue:blueprint |
| AWS Glue | Connection | AWS::Glue::Connection | glue:connection |
| AWS Glue | Crawler | AWS::Glue::Crawler | glue:crawler |
| AWS Glue | Data Quality Ruleset | AWS::Glue::DataQualityRuleset | glue:data-quality-ruleset |
| AWS Glue | Database | AWS::Glue::Database | glue:database |
| AWS Glue | Job | AWS::Glue::Job | glue:job |
| AWS Glue | Session | AWS::Glue::Session | glue:session |
| AWS Glue | Trigger | AWS::Glue::Trigger | glue:trigger |
| AWS Glue | UsageProfile | AWS::Glue::UsageProfile | glue:usage-profile |
| AWS Glue | Workflow | AWS::Glue::Workflow | glue:workflow |
| AWS Identity and Access Management (IAM) | Instance Profile | AWS::IAM::InstanceProfile | iam:instance-profile |
| AWS Identity and Access Management (IAM) | ManagedPolicy | AWS::IAM::ManagedPolicy | iam:policy |
| AWS Identity and Access Management (IAM) | Role | AWS::IAM::Role | iam:role |
| AWS Identity and Access Management (IAM) | User | AWS::IAM::User | iam:user |
| AWS Key Management Service (KMS) | Key | AWS::KMS::Key | kms:key |
| AWS Lambda | Function | AWS::Lambda::Function | lambda:function |
| Amazon Macie | Allow List | AWS::Macie::AllowList | macie2:allow-list |
| Amazon Macie | Classification Job | AWS::Macie::ClassificationJob | macie2:classification-job |
| Amazon Macie | Custom Data Identifier | AWS::Macie::CustomDataIdentifier | macie2:custom-data-identifier |
| Amazon Macie | Findings Filter | AWS::Macie::FindingsFilter | macie2:findings-filter |
| AWS Security Hub | AutomationRule | AWS::SecurityHub::AutomationRule | securityhub:automation-rule |
| AWS Security Hub | Hub | AWS::SecurityHub::Hub | securityhub:hub |
| AWS Security Hub | HubV2 | AWS::SecurityHub::HubV2 | securityhub:hubv2 |
| AWS Systems Manager | Document | AWS::SSM::Document | ssm:document |
| AWS Systems Manager | Maintenance Window | AWS::SSM::MaintenanceWindow | ssm:maintenancewindow |
| AWS Systems Manager | Parameter | AWS::SSM::Parameter | ssm:parameter |
| AWS Systems Manager | Patch Baseline | AWS::SSM::PatchBaseline | ssm:patchbaseline |
| Amazon API Gateway | Key | AWS::ApiGateway::ApiKey | apigateway:apikeys |
| Amazon API Gateway | Clientcertificate | AWS::ApiGateway::ClientCertificate | apigateway:clientcertificates |
| Amazon API Gateway | Domain Name | AWS::ApiGateway::DomainName, AWS::ApiGateway::DomainNameV2 | apigateway:domainnames |
| Amazon API Gateway | RestAPI | AWS::ApiGateway::RestApi | apigateway:restapis |
| Amazon API Gateway | Usage Plan | AWS::ApiGateway::UsagePlan | apigateway:usageplans |
| Amazon API Gateway | VPC Link | AWS::ApiGateway::VpcLink | apigateway:vpclinks |
| Amazon API Gateway V2 | API | AWS::ApiGatewayV2::Api | apigateway:apis |
| Amazon API Gateway V2 | Domain Name | AWS::ApiGatewayV2::DomainName | apigateway:domainnames |
| Amazon API Gateway V2 | VPC Link | AWS::ApiGatewayV2::VpcLink | apigateway:vpclinks |
| Amazon Athena | Data Catalog | AWS::Athena::DataCatalog | athena:datacatalog |
| Amazon Athena | Work Group | AWS::Athena::WorkGroup | athena:workgroup |
| Amazon Bedrock | Agent | AWS::Bedrock::Agent | bedrock:agent |
| Amazon Bedrock | Flow | AWS::Bedrock::Flow | bedrock:flow |
| Amazon Bedrock | Guardrail | AWS::Bedrock::Guardrail | bedrock:guardrail |
| Amazon Bedrock | KnowledgeBase | AWS::Bedrock::KnowledgeBase | bedrock:knowledge-base |
| Amazon Bedrock | Prompt | AWS::Bedrock::Prompt | bedrock:prompt |
| Amazon Bedrock AgentCore | Runtime | AWS::BedrockAgentCore::Runtime | bedrock-agentcore:runtime |
| Amazon Bedrock AgentCore | Runtime Endpoint | AWS::BedrockAgentCore::RuntimeEndpoint | bedrock-agentcore:runtime-endpoint |
| Amazon Bedrock AgentCore | Workload Identity | AWS::BedrockAgentCore::WorkloadIdentity | bedrock-agentcore:workload-identity |
| Amazon Bedrock AgentCore | Policy Engine | AWS::BedrockAgentCore::PolicyEngine | bedrock-agentcore:policy-engine |
| Amazon Bedrock AgentCore | Gateway | AWS::BedrockAgentCore::Gateway | bedrock-agentcore:gateway |
| Amazon Bedrock AgentCore | Harness | AWS::BedrockAgentCore::Harness | bedrock-agentcore:harness |
| Amazon Bedrock AgentCore | Memory | AWS::BedrockAgentCore::Memory | bedrock-agentcore:memory |
| Amazon Bedrock AgentCore | Browser Profile | AWS::BedrockAgentCore::BrowserProfile | bedrock-agentcore:browser-profile |
| Amazon CloudFront | Distribution | AWS::CloudFront::Distribution | cloudfront:distribution |
| Amazon CloudWatch Logs | LogGroup | AWS::Logs::LogGroup | logs:log-group |
| Amazon CloudWatch Synthetics | Canary | AWS::Synthetics::Canary | synthetics:canary |
| Amazon Cognito | Identity Pools | AWS::Cognito::IdentityPool | cognito-identity:identitypool |
| Amazon Cognito | User Pools | AWS::Cognito::UserPool | cognito-idp:userpool |
| Amazon DAX | Cache Cluster | AWS::DAX::Cluster | dax:cache |
| Amazon DynamoDB | Table | AWS::DynamoDB::Table | dynamodb:table |
| Amazon EC2 | EIP | AWS::EC2::EIP | ec2:address |
| Amazon EC2 | Carrier Gateway | AWS::EC2::CarrierGateway | ec2:carrier-gateway |
| Amazon EC2 | Customer Gateway | AWS::EC2::CustomerGateway | ec2:customer-gateway |
| Amazon EC2 | DHCP Options | AWS::EC2::DHCPOptions | ec2:dhcp-options |
| Amazon EC2 | Egress Only Internet Gateway | AWS::EC2::EgressOnlyInternetGateway | ec2:egress-only-internet-gateway |
| Amazon EC2 | EC2 Fleet | AWS::EC2::EC2Fleet | ec2:fleet |
| Amazon EC2 | FlowLog | AWS::EC2::FlowLog | ec2:flow-log |
| Amazon EC2 | Image | AWS::EC2::Image | ec2:image |
| Amazon EC2 | Instance | AWS::EC2::Instance | ec2:instance |
| Amazon EC2 | Internet Gateway | AWS::EC2::InternetGateway | ec2:internet-gateway |
| Amazon EC2 | IPAM | AWS::EC2::IPAM | ec2:ipam |
| Amazon EC2 | IPAM Pool | AWS::EC2::IPAMPool | ec2:ipam-pool |
| Amazon EC2 | KeyPair | AWS::EC2::KeyPair | ec2:key-pair |
| Amazon EC2 | Launch Template | AWS::EC2::LaunchTemplate | ec2:launch-template |
| Amazon EC2 | NAT Gateway | AWS::EC2::NatGateway | ec2:nat-gateway |
| Amazon EC2 | Network ACL | AWS::EC2::NetworkAcl | ec2:network-acl |
| Amazon EC2 | Network Interface (ENI) | AWS::EC2::NetworkInterface | ec2:network-interface |
| Amazon EC2 | Prefix List | AWS::EC2::PrefixList | ec2:prefix-list |
| Amazon EC2 | Route Table | AWS::EC2::RouteTable | ec2:route-table |
| Amazon EC2 | Security Group | AWS::EC2::SecurityGroup | ec2:security-group |
| Amazon EC2 | Snapshot | AWS::EC2::Snapshot | ec2:snapshot |
| Amazon EC2 | Spot Fleet | AWS::EC2::SpotFleet | ec2:spot-fleet |
| Amazon EC2 | Spot Instance Request | AWS::EC2::SpotInstanceRequest | ec2:spot-instances-request |
| Amazon EC2 | Subnet | AWS::EC2::Subnet | ec2:subnet |
| Amazon EC2 | Transit Gateway | AWS::EC2::TransitGateway | ec2:transit-gateway |
| Amazon EC2 | Transit Gateway Attachment | AWS::EC2::TransitGatewayAttachment | ec2:transit-gateway-attachment |
| Amazon EC2 | Transit Gateway Route Table | AWS::EC2::TransitGatewayRouteTable | ec2:transit-gateway-route-table |
| Amazon EC2 | Volume | AWS::EC2::Volume | ec2:volume |
| Amazon EC2 | VPC | AWS::EC2::VPC | ec2:vpc |
| Amazon EC2 | VPC Endpoint | AWS::EC2::VPCEndpoint | ec2:vpc-endpoint |
| Amazon EC2 | VPC Endpoint Service | AWS::EC2::VPCEndpointService | ec2:vpc-endpoint-service |
| Amazon EC2 | VPC Peering Connection | AWS::EC2::VPCPeeringConnection | ec2:vpc-peering-connection |
| Amazon EC2 | VPNGateway | AWS::EC2::VPNGateway | ec2:vpn-gateway |
| Amazon ECR | Repository | AWS::ECR::Repository | ecr:repository |
| Amazon ECS | Cluster | AWS::ECS::Cluster | ecs:cluster |
| Amazon ECS | Service | AWS::ECS::Service | ecs:service |
| Amazon ECS | Task | AWS::ECS::Task | ecs:task |
| Amazon ECS | TaskDefinition | AWS::ECS::TaskDefinition | ecs:task-definition |
| Amazon EFS | FileSystem | AWS::EFS::FileSystem | elasticfilesystem:file-system |
| Amazon ElastiCache | ParameterGroup | AWS::ElastiCache::ParameterGroup | elasticache:parametergroup |
| Amazon ElastiCache | ReplicationGroup | AWS::ElastiCache::ReplicationGroup | elasticache:replicationgroup |
| Amazon ElastiCache | ReservedInstance | AWS::ElastiCache::ReservedInstance | elasticache:reserved-instance |
| Amazon ElastiCache | Serverless Cache | AWS::ElastiCache::ServerlessCache | elasticache:serverlesscache |
| Amazon ElastiCache | Subnet Group | AWS::ElastiCache::SubnetGroup | elasticache:subnetgroup |
| Amazon ElastiCache | User | AWS::ElastiCache::User | elasticache:user |
| Amazon ElastiCache | UserGroup | AWS::ElastiCache::UserGroup | elasticache:usergroup |
| Amazon MemoryDB | User | AWS::MemoryDB::User | memorydb:user |
| Amazon MemoryDB | Subnet Group | AWS::MemoryDB::SubnetGroup | memorydb:subnetgroup |
| Amazon MemoryDB | Parameter Group | AWS::MemoryDB::ParameterGroup | memorydb:parametergroup |
| Amazon MemoryDB | Cluster | AWS::MemoryDB::Cluster | memorydb:cluster |
| Amazon MemoryDB | Multi-Region Cluster | AWS::MemoryDB::MultiRegionCluster | memorydb:multiregioncluster |
| Amazon MemoryDB | Snapshot | AWS::MemoryDB::Snapshot | memorydb:snapshot |
| Amazon EventBridge | Event Bus | AWS::Events::EventBus | events:event-bus |
| Amazon EventBridge | Rule | AWS::Events::Rule | events:rule |
| Amazon EventBridge | Pipe | AWS::Pipes::Pipe | pipes:pipe |
| Amazon EventBridge | Scheduler | AWS::Scheduler::ScheduleGroup | scheduler:schedule-group |
| Amazon EventBridge | Registry | AWS::EventSchemas::Registry | schemas:registry |
| Amazon EventBridge | Schema | AWS::EventSchemas::Schema | schemas:schema |
| Amazon Kinesis | Stream | AWS::Kinesis::Stream | kinesis:stream |
| Amazon Data Firehose | Delivery Stream | AWS::KinesisFirehose::DeliveryStream | firehose:deliverystream |
| Amazon Managed Service for Apache Flink | Application | AWS::KinesisAnalyticsV2::Application | kinesisanalytics:application |
| Amazon Kinesis Video Streams | Stream | AWS::KinesisVideo::Stream | kinesisvideo:stream |
| Amazon Kinesis Video Streams | Signaling Channel | AWS::KinesisVideo::SignalingChannel | kinesisvideo:channel |
| Amazon QuickSight | Analysis | AWS::QuickSight::Analysis | quicksight:analysis |
| Amazon QuickSight | Dashboard | AWS::QuickSight::Dashboard | quicksight:dashboard |
| Amazon QuickSight | Data Set | AWS::QuickSight::DataSet | quicksight:dataset |
| Amazon QuickSight | Data Source | AWS::QuickSight::DataSource | quicksight:datasource |
| Amazon QuickSight | Template | AWS::QuickSight::Template | quicksight:template |
| Amazon QuickSight | User | AWS::QuickSight::User | quicksight:user |
| Amazon QuickSight | VPC Connection | AWS::QuickSight::VPCConnection | quicksight:vpcConnection |
| Amazon RDS | DB Cluster | AWS::RDS::DBCluster | rds:cluster |
| Amazon RDS | DB Cluster Parameter Group | AWS::RDS::DBClusterParameterGroup | rds:cluster-pg |
| Amazon RDS | DB Cluster Snapshot | AWS::RDS::DBClusterSnapshot | rds:cluster-snapshot |
| Amazon RDS | DB Instance | AWS::RDS::DBInstance | rds:db |
| Amazon RDS | DB Proxy | AWS::RDS::DBProxy | rds:db-proxy |
| Amazon RDS | DB Option Group | AWS::RDS::OptionGroup | rds:og |
| Amazon RDS | DB Parameter Group | AWS::RDS::DBParameterGroup | rds:pg |
| Amazon RDS | DB Snapshot | AWS::RDS::DBSnapshot | rds:snapshot |
| Amazon RDS | DB Subnet Group | AWS::RDS::DBSubnetGroup | rds:subgrp |
| Amazon RDS | Global Cluster | AWS::RDS::GlobalCluster | rds:global-cluster |
| Amazon DocumentDB | DB Cluster | AWS::DocDB::DBCluster | rds:cluster |
| Amazon DocumentDB | DB Cluster Parameter Group | AWS::DocDB::DBClusterParameterGroup | rds:cluster-pg |
| Amazon DocumentDB | DB Cluster Snapshot | AWS::DocDB::DBClusterSnapshot | rds:cluster-snapshot |
| Amazon DocumentDB | DB Instance | AWS::DocDB::DBInstance | rds:db |
| Amazon DocumentDB | DB Subnet Group | AWS::DocDB::DBSubnetGroup | rds:subgrp |
| Amazon DocumentDB | Global Cluster | AWS::DocDB::GlobalCluster | rds:global-cluster |
| Amazon DocumentDB | Elastic Cluster | AWS::DocDBElastic::Cluster | docdb-elastic:cluster |
| Amazon DocumentDB | Elastic Cluster Snapshot | AWS::DocDBElastic::ClusterSnapshot | docdb-elastic:cluster-snapshot |
| Amazon Neptune | DB Cluster | AWS::Neptune::DBCluster | rds:cluster |
| Amazon Neptune | DB Instance | AWS::Neptune::DBInstance | rds:db |
| Amazon Neptune | DB Cluster Parameter Group | AWS::Neptune::DBClusterParameterGroup | rds:cluster-pg |
| Amazon Neptune | DB Subnet Group | AWS::Neptune::DBSubnetGroup | rds:subgrp |
| Amazon Neptune | DB Cluster Snapshot | AWS::Neptune::DBClusterSnapshot | rds:snapshot |
| Amazon Neptune | DB Parameter Group | AWS::Neptune::DBParameterGroup | rds:pg |
| Amazon Neptune Analytics | Graph | AWS::NeptuneGraph::Graph | neptune-graph:graph |
| Amazon Neptune Analytics | Graph Snapshot | AWS::NeptuneGraph::GraphSnapshot | neptune-graph:graph-snapshot |
| Amazon Rekognition | Collection | AWS::Rekognition::Collection | rekognition:collection |
| Amazon Rekognition | Stream Processor | AWS::Rekognition::StreamProcessor | rekognition:streamprocessor |
| Amazon Route 53 | Health Check | AWS::Route53::HealthCheck | route53:healthcheck |
| Amazon Route 53 | HostedZone | AWS::Route53::HostedZone | route53:hostedzone |
| Amazon S3 | Bucket | AWS::S3::Bucket | s3:bucket |
| Amazon S3 | Access Point | AWS::S3::AccessPoint | s3:accesspoint |
| Amazon S3 Express One Zone | Directory Bucket | AWS::S3Express::DirectoryBucket | s3express:bucket |
| Amazon S3 Express One Zone | Access Point | AWS::S3Express::AccessPoint | s3express:accesspoint |
| Amazon S3 | Vector Bucket | AWS::S3Vectors::VectorBucket | s3vectors:bucket |
| Amazon S3 | Table Bucket | AWS::S3Tables::TableBucket | s3tables:bucket |
| Amazon S3 | File System | AWS::S3Files::FileSystem | s3files:file-system |
| Amazon S3 | File System Access Point | AWS::S3Files::AccessPoint | s3files:access-point |
| Amazon S3 Control | Job | AWS::S3::Job | s3control:job |
| Amazon SNS | Topic | AWS::SNS::Topic | sns:topic |
| Amazon SQS | Queue | AWS::SQS::Queue | sqs:queue |
| Amazon SageMaker | App | AWS::SageMaker::App | sagemaker:app |
| Amazon SageMaker | Auto ML Job | AWS::SageMaker::AutoMLJob | sagemaker:automl-job |
| Amazon SageMaker | Data Quality Job Definition | AWS::SageMaker::DataQualityJobDefinition | sagemaker:data-quality-job-definition |
| Amazon SageMaker | Domain | AWS::SageMaker::Domain | sagemaker:domain |
| Amazon SageMaker | Endpoint | AWS::SageMaker::Endpoint | sagemaker:endpoint |
| Amazon SageMaker | EndpointConfig | AWS::SageMaker::EndpointConfig | sagemaker:endpoint-config |
| Amazon SageMaker | Feature Group | AWS::SageMaker::FeatureGroup | sagemaker:feature-group |
| Amazon SageMaker | HyperParameter Tuning Job | AWS::SageMaker::HyperParameterTuningJob | sagemaker:hyper-parameter-tuning-job |
| Amazon SageMaker | Model | AWS::SageMaker::Model | sagemaker:model |
| Amazon SageMaker | Monitoring Schedule | AWS::SageMaker::MonitoringSchedule | sagemaker:monitoring-schedule |
| Amazon SageMaker | Notebook Instance | AWS::SageMaker::NotebookInstance | sagemaker:notebook-instance |
| Amazon SageMaker | Pipeline | AWS::SageMaker::Pipeline | sagemaker:pipeline |
| Amazon SageMaker | Processing Job | AWS::SageMaker::ProcessingJob | sagemaker:processing-job |
| Amazon SageMaker | Space | AWS::SageMaker::Space | sagemaker:space |
| Amazon SageMaker | Training Job | AWS::SageMaker::TrainingJob | sagemaker:training-job |
| Amazon SageMaker | Transform Job | AWS::SageMaker::TransformJob | sagemaker:transform-job |
| Amazon SageMaker | User Profile | AWS::SageMaker::UserProfile | sagemaker:user-profile |
| Elastic Load Balancing | Listener | AWS::ElasticLoadBalancingV2::Listener | elasticloadbalancing:listener |
| Elastic Load Balancing | LoadBalancer | AWS::ElasticLoadBalancing::LoadBalancer | elasticloadbalancing:loadbalancer |
| Elastic Load Balancing | LoadBalancer | AWS::ElasticLoadBalancingV2::LoadBalancer | elasticloadbalancing:loadbalancer |
| Elastic Load Balancing | TargetGroup | AWS::ElasticLoadBalancingV2::TargetGroup | elasticloadbalancing:target-group |
| Route 53 Profiles | Profile | AWS::Route53Profiles::Profile | route53profiles:profile |
| Route 53 Resolver | Resolver Endpoint | AWS::Route53Resolver::ResolverEndpoint | route53resolver:resolver-endpoint |
| Route 53 Resolver | Resolver QueryLogging Config | AWS::Route53Resolver::ResolverQueryLoggingConfig | route53resolver:resolver-query-log-config |
| Route 53 Resolver | Resolver Rule | AWS::Route53Resolver::ResolverRule | route53resolver:resolver-rule |
| Amazon Elastic Kubernetes Service (EKS) | Add-on | AWS::EKS::Addon | eks:addon |
| Amazon Elastic Kubernetes Service (EKS) | Cluster | AWS::EKS::Cluster | eks:cluster |
| Amazon Elastic Kubernetes Service (EKS) | Fargate Profile | AWS::EKS::FargateProfile | eks:fargateprofile |
| Amazon Elastic Kubernetes Service (EKS) | Managed Node Group | AWS::EKS::Nodegroup | eks:nodegroup |
| AWS Secrets Manager | Secret | AWS::SecretsManager::Secret | secretsmanager:secret |
| Amazon EC2 Auto Scaling | Group | AWS::AutoScaling::AutoScalingGroup | autoscaling:autoScalingGroup |
| AWS App Runner | Connection | AWS::AppRunner::Connection | apprunner:connection |
| AWS App Runner | Service | AWS::AppRunner::Service | apprunner:service |
| AWS App Runner | VPC Connector | AWS::AppRunner::VpcConnector | apprunner:vpcconnector |
| AWS App Runner | Vpc Ingress Connection | AWS::AppRunner::VpcIngressConnection | apprunner:vpcingressconnection |
| AWS AppSync | GraphQL API | AWS::AppSync::GraphQLApi | appsync:apis |
| AWS AppSync | Event API | AWS::AppSync::Api | appsync:apis |
| AWS AppSync | Domain Name | AWS::AppSync::DomainName | appsync:domainnames |
| AWS Step Functions | State Machine | AWS::StepFunctions::StateMachine | stepfunctions:stateMachine |
| AWS Step Functions | Activity | AWS::StepFunctions::Activity | stepfunctions:activity |
| AWS Batch | Compute Environment | AWS::Batch::ComputeEnvironment | batch:compute-environment |
| AWS Batch | Job | AWS::Batch::Job | batch:job |
| AWS Batch | JobDefinition | AWS::Batch::JobDefinition | batch:job-definition |
| AWS Batch | JobQueue | AWS::Batch::JobQueue | batch:job-queue |
| AWS Batch | Scheduling Policy | AWS::Batch::SchedulingPolicy | batch:scheduling-policy |
| Amazon FSx | File System | AWS::FSx::FileSystem | fsx:file-system |
| Amazon FSx | Volume | AWS::FSx::Volume | fsx:volume |
| Amazon FSx | Backup | AWS::FSx::Backup | fsx:backup |
| Amazon FSx | Snapshot | AWS::FSx::Snapshot | fsx:snapshot |
| Amazon FSx | Storage Virtual Machine | AWS::FSx::StorageVirtualMachine | fsx:storage-virtual-machine |
| AWS Direct Connect | Direct Connect Gateway | AWS::DirectConnect::DirectConnectGateway | directconnect:dx-gateway |
| AWS Direct Connect | Direct Connect Connection | AWS::DirectConnect::Connection | directconnect:dxcon |
| AWS Direct Connect | Direct Connect Lag | AWS::DirectConnect::Lag | directconnect:dxlag |
| Amazon Redshift Serverless | Namespace | AWS::RedshiftServerless::Namespace | redshift-serverless:namespace |
| Amazon Redshift Serverless | WorkGroup | AWS::RedshiftServerless::Workgroup | redshift-serverless:workgroup |
| Amazon Redshift Serverless | Snapshot | AWS::RedshiftServerless::Snapshot | redshift-serverless:snapshot |
| Amazon Redshift | Cluster | AWS::Redshift::Cluster | redshift:cluster |
| Amazon Redshift | Cluster Subnet Group | AWS::Redshift::ClusterParameterGroup | redshift:subnetgroup |
| Amazon Redshift | Cluster Parameter Group | AWS::Redshift::Cluster | redshift:parametergroup |
| Amazon Redshift | Integration | AWS::Redshift::Integration | redshift:integration |
| Amazon Redshift | Snapshot | AWS::Redshift::Snapshot | redshift:snapshot |
| Amazon EMR | Studio | AWS::EMR::Studio | emr:studio |
| Amazon EMR | Cluster | AWS::EMR::Cluster | emr:cluster |
| Amazon EMR Serverless | Application | AWS::EMRServerless::Application | emr-serverless:applications |
| Amazon EMR Serverless | Job | AWS::EMRServerless::JobRun | emr-serverless:jobruns |
| Amazon EMR Containers | Virtual Cluster | AWS::EMRContainers::VirtualCluster | emr-containers:virtualclusters |
| Amazon EMR Containers | Managed Endpoint | AWS::EMRContainers::Endpoint | emr-containers:endpoints |
| Amazon EMR Containers | Job | AWS::EMRContainers::JobRun | emr-containers:jobruns |
| AWS Amplify | Application | AWS::Amplify::App | amplify:apps |
| AWS Amplify | Branch | AWS::Amplify::Branch | amplify:branches |
| Amazon SES | Email Identity | AWS::SES::EmailIdentity | ses:identity |
| Amazon SES | Configuration Set | AWS::SES::ConfigurationSet | ses:configuration-set |
| Amazon SES | Email Template | AWS::SES::Template | ses:template |
| Amazon SES | Multi-Region Endpoint | AWS::SES::MultiRegionEndpoint | ses:multi-region-endpoint |
| Amazon SES | Tenant | AWS::SES::Tenant | ses:tenant |
| Amazon SES | Mail Manager Rule Set | AWS::SES::MailManagerRuleSet | ses:mailmanager-rule-set |
| Amazon SES | Mail Manager Traffic Policy | AWS::SES::MailManagerTrafficPolicy | ses:mailmanager-traffic-policy |
| Amazon SES | Mail Manager Ingress Point | AWS::SES::MailManagerIngressPoint | ses:mailmanager-ingress-point |
| Amazon SES | Mail Manager Archive | AWS::SES::MailManagerArchive | ses:mailmanager-archive |
| Amazon SES | Mail Manager Addon Instance | AWS::SES::MailManagerAddonInstance | ses:addon-instance |
| Amazon SES | Mail Manager SMTP Relay | AWS::SES::MailManagerRelay | ses:mailmanager-smtp-relay |
| Amazon MQ | Broker | AWS::AmazonMQ::Broker | mq:broker |
| Amazon OpenSearch Serverless | Collection Group | AWS::OpenSearchServerless::CollectionGroup | opensearchserverless:collection-group |
| Amazon OpenSearch Serverless | Collection | AWS::OpenSearchServerless::Collection | opensearchserverless:collection |
| Amazon OpenSearch Service | Domain | AWS::OpenSearchService::Domain | opensearch:domain |
| Amazon OpenSearch Service | Application | AWS::OpenSearchService::Application | opensearch:application |
| Amazon OpenSearch Ingestion | Pipeline | AWS::OSIS::Pipeline | osis:pipeline |
| Amazon MSK | Serverless Cluster | AWS::MSK::ServerlessCluster | kafka:cluster |
| Amazon MSK | Cluster | AWS::MSK::Cluster | kafka:cluster |
| Amazon MSK | Replicator | AWS::MSK::Replicator | kafka:replicator |
| Amazon MSK | VPC Connection | AWS::MSK::VpcConnection | kafka:vpc-connection |
| Amazon MSK Connect | Custom Plugin | AWS::KafkaConnect::CustomPlugin | kafkaconnect:custom-plugin |
| Amazon MSK Connect | Connector | AWS::KafkaConnect::Connector | kafkaconnect:connector |
| Amazon Aurora DSQL | Cluster | AWS::DSQL::Cluster | dsql:cluster |
| AWS Backup | Backup Vault | AWS::Backup::BackupVault | backup:backup-vault |
| AWS Backup | Backup Plan | AWS::Backup::BackupPlan | backup:backup-plan |
| AWS Backup | Framework | AWS::Backup::Framework | backup:framework |
| AWS Backup | Restore Testing Plan | AWS::Backup::RestoreTestingPlan | backup:restore-testing-plan |
| AWS Database Migration Service | Replication Subnet Group | AWS::DMS::ReplicationSubnetGroup | dms:subgrp |
| AWS Database Migration Service | Instance Profile | AWS::DMS::InstanceProfile | dms:instance-profile |
| AWS Database Migration Service | Data Provider | AWS::DMS::DataProvider | dms:data-provider |
| AWS Database Migration Service | Migration Project | AWS::DMS::MigrationProject | dms:migration-project |
| AWS Database Migration Service | Replication Instance | AWS::DMS::ReplicationInstance | dms:rep |
| AWS Database Migration Service | Endpoint | AWS::DMS::Endpoint | dms:endpoint |
| AWS Database Migration Service | Replication Task | AWS::DMS::ReplicationTask | dms:task |
| AWS Database Migration Service | Replication Config | AWS::DMS::ReplicationConfig | dms:replication-config |
| AWS Database Migration Service | Data Migration | AWS::DMS::DataMigration | dms:data-migration |
| AWS Network Firewall | Firewall | AWS::NetworkFirewall::Firewall | network-firewall:firewall |
| AWS Network Firewall | Firewall Policy | AWS::NetworkFirewall::FirewallPolicy | network-firewall:firewall-policy |
| AWS Network Firewall | Rule Group | AWS::NetworkFirewall::RuleGroup | network-firewall:rulegroup |
| Amazon Timestream for InfluxDB | DB Instance | AWS::Timestream::InfluxDBInstance | timestream-influxdb:db-instance |
| Amazon Timestream for InfluxDB | DB Cluster | AWS::Timestream::InfluxDBCluster | timestream-influxdb:db-cluster |
| AWS Transfer Family | Server | AWS::Transfer::Server | transfer:server |
| AWS Transfer Family | User | AWS::Transfer::User | transfer:user |
| AWS Transfer Family | Connector | AWS::Transfer::Connector | transfer:connector |
| AWS Transfer Family | Workflow | AWS::Transfer::Workflow | transfer:workflow |
| Amazon Keyspaces | Keyspace | AWS::Cassandra::Keyspace | cassandra:keyspace |
| Amazon Keyspaces | Table | AWS::Cassandra::Table | cassandra:table |
| AWS DataSync | Location (Azure Blob) | AWS::DataSync::LocationAzureBlob | datasync:location |
| AWS DataSync | Location (EFS) | AWS::DataSync::LocationEFS | datasync:location |
| AWS DataSync | Location (FSx Lustre) | AWS::DataSync::LocationFSxLustre | datasync:location |
| AWS DataSync | Location (FSx ONTAP) | AWS::DataSync::LocationFSxONTAP | datasync:location |
| AWS DataSync | Location (FSx OpenZFS) | AWS::DataSync::LocationFSxOpenZFS | datasync:location |
| AWS DataSync | Location (FSx Windows) | AWS::DataSync::LocationFSxWindows | datasync:location |
| AWS DataSync | Location (HDFS) | AWS::DataSync::LocationHDFS | datasync:location |
| AWS DataSync | Location (NFS) | AWS::DataSync::LocationNFS | datasync:location |
| AWS DataSync | Location (Object Storage) | AWS::DataSync::LocationObjectStorage | datasync:location |
| AWS DataSync | Location (S3) | AWS::DataSync::LocationS3 | datasync:location |
| AWS DataSync | Location (SMB) | AWS::DataSync::LocationSMB | datasync:location |
| AWS DataSync | Task | AWS::DataSync::Task | datasync:task |
| AWS DataSync | Task Execution | — | datasync:execution |
Need coverage for something missing? Contact the TagOps team and let us know which AWS resource type to prioritize. (You can submit a request via 'Support & Feedback' page in the console)