AWS Config

E293784

AWS service cloud service configuration management service

AWS Config is a cloud service that continuously assesses, audits, and records the configurations of AWS resources to help with compliance, security, and operational troubleshooting.

Try in SPARQL Jump to: Surface forms Statements Referenced by

All labels observed (2)

Label	Occurrences
AWS Config canonical	6
AWS Config rules	1

Statements (78)

Predicate	Object
instanceOf	AWS service ⓘ cloud service ⓘ configuration management service ⓘ
accessMethod	AWS CLI ⓘ AWS Management Console ⓘ AWS SDKs ⓘ
category	compliance ⓘ governance ⓘ risk management ⓘ
chargesFor	active AWS Config rules ⓘ configuration items recorded ⓘ
customRulesImplementedWith	AWS Lambda ⓘ surface form: AWS Lambda functions
dataRetention	configurable via S3 lifecycle policies ⓘ
deliversNotificationsVia	Amazon SNS ⓘ Amazon SQS ⓘ
deploymentModel	cloud-based ⓘ
developer	Amazon Web Services ⓘ
feature	AWS Config self-linksurface differs ⓘ surface form: AWS Config rules advanced queries ⓘ aggregators ⓘ configuration history ⓘ configuration items ⓘ configuration recorder ⓘ configuration snapshots ⓘ conformance packs ⓘ integration with AWS Organizations ⓘ multi-account data aggregation ⓘ multi-region data aggregation ⓘ resource timeline ⓘ
integratesWith	AWS CloudFormation ⓘ AWS CloudTrail ⓘ AWS Lambda ⓘ AWS Organizations ⓘ AWS Security Hub ⓘ AWS Systems Manager ⓘ
logging	API calls recorded in AWS CloudTrail ⓘ
partOf	Amazon Web Services portfolio ⓘ
pricingModel	pay-as-you-go ⓘ
primaryFunction	evaluate resource configurations against rules ⓘ record configurations of AWS resources ⓘ track configuration changes over time ⓘ
provider	Amazon Web Services ⓘ
provides	configuration change notifications ⓘ point-in-time configuration view ⓘ resource relationship tracking ⓘ
regionAvailability	multiple AWS regions worldwide ⓘ
securityFeature	encryption of data at rest via Amazon S3 encryption options ⓘ encryption of data in transit via TLS ⓘ
storesDataIn	Amazon S3 ⓘ
supports	compliance monitoring ⓘ configuration auditing ⓘ configuration recording ⓘ continuous configuration assessment ⓘ operational troubleshooting ⓘ security monitoring ⓘ
supportsComplianceStandards	CIS benchmarks ⓘ HIPAA (via rules and conformance packs) ⓘ PCI DSS ⓘ surface form: PCI DSS (via rules and conformance packs) SOC (via rules and conformance packs) ⓘ internal corporate policies ⓘ
supportsQueryLanguage	SQL-like query for configuration data ⓘ
supportsResourceType	AWS CloudFormation ⓘ AWS CloudTrail ⓘ AWS Identity and Access Management ⓘ surface form: AWS IAM AWS Lambda ⓘ Amazon EBS ⓘ Amazon EC2 ⓘ Amazon RDS ⓘ Amazon S3 ⓘ Amazon VPC ⓘ AWS Elastic Load Balancing ⓘ surface form: Elastic Load Balancing
supportsRuleType	custom rules ⓘ managed rules ⓘ
useCase	audit support ⓘ change tracking ⓘ compliance reporting ⓘ security posture assessment ⓘ troubleshooting operational issues ⓘ

Referenced by (7)

Full triples — surface form annotated when it differs from this entity's canonical label.

Amazon Web Services → offersService → AWS Config ⓘ

AWS Lambda → supportsTrigger → AWS Config ⓘ

AWS CloudFormation → supportsIntegration → AWS Config ⓘ

AWS CloudTrail → integratesWith → AWS Config ⓘ

AWS Key Management Service → integratesWith → AWS Config ⓘ

AWS Config → feature → AWS Config self-linksurface differs ⓘ

this entity surface form: AWS Config rules

AWS Control Tower → integratesWith → AWS Config ⓘ