Amazon Config

AWS Config provides a detailed view of the configuration of AWS resources in your AWS account. This includes how the resources are related to one another and how they were configured in the past, enabling assessment, auditing, and evaluation of configurations for compliance and security governance. It records configuration changes continuously, evaluates compliance against rules, and supports automated remediation of noncompliant resources.

1 APIs 8 Features
AuditingComplianceConfiguration ManagementGovernanceSecurity

APIs

Amazon Config API

The AWS Config API provides 92 operations for managing configuration recording, evaluating resource compliance against rules, querying resource configurations, tracking configur...

MCP Servers

Features

Configuration Recording

Continuously record configuration changes to all supported AWS resources in your account with detailed configuration items.

Config Rules

Evaluate AWS resource configurations against desired settings using AWS-managed or custom Lambda-based rules.

Conformance Packs

Deploy collections of Config rules and remediation actions as a single unit across an AWS Organization.

Configuration History

View detailed configuration history for any AWS resource including who changed what and when.

Resource Inventory

Maintain a complete inventory of all AWS resources in your account with current and past configurations.

Automated Remediation

Automatically remediate noncompliant resources using SSM Automation documents triggered by Config rules.

Multi-Account Aggregation

Aggregate configuration and compliance data from multiple accounts and regions into a single view.

Advanced Query

Use SQL-like queries to search across resource configurations and compliance states.

Use Cases

Security and Compliance Auditing

Continuously audit AWS resource configurations against security benchmarks like CIS, PCI DSS, and HIPAA.

Change Management

Track who changed what configuration on which resource and when for change management and troubleshooting.

Resource Inventory

Maintain an always-current inventory of all AWS resources for asset management and CMDB purposes.

Drift Detection

Detect configuration drift from approved baselines and trigger alerts or automated remediation.

Incident Investigation

Reconstruct the configuration state of resources at any point in time to aid incident investigation.

Governance at Scale

Enforce organization-wide governance policies using conformance packs deployed across all accounts.

Integrations

AWS CloudTrail

Correlate Config configuration items with CloudTrail API activity to understand who made changes.

AWS Security Hub

Send Config compliance findings to Security Hub for centralized security posture management.

Amazon S3

Deliver configuration snapshots and history to S3 for long-term storage and analysis.

Amazon SNS

Send notifications for compliance changes and configuration changes via SNS topics.

AWS Systems Manager

Use SSM Automation documents as remediation targets for Config rules.

AWS Organizations

Deploy Config rules and conformance packs across entire AWS Organizations for governance at scale.

AWS Lambda

Create custom Config rules using Lambda functions for organization-specific compliance requirements.

Semantic Vocabularies

Amazon Config Context

227 classes · 326 properties

JSON-LD

API Governance Rules

Amazon Config API Rules

22 rules · 8 errors 10 warnings 4 info

SPECTRAL

JSON Structure

Amazon Config Rule Structure

9 properties

JSON STRUCTURE

Config Account Aggregation Source Structure

3 properties

JSON STRUCTURE

Config Account Id Structure

0 properties

JSON STRUCTURE

Config Aggregate Compliance Count Structure

2 properties

JSON STRUCTURE

Config Aggregate Evaluation Result Structure

7 properties

JSON STRUCTURE

Config Aggregated Source Status Structure

7 properties

JSON STRUCTURE

Config Aggregated Source Type Structure

0 properties

JSON STRUCTURE

Config Aggregation Authorization Structure

4 properties

JSON STRUCTURE

Config Aggregator Region List Structure

0 properties

JSON STRUCTURE

Config All Supported Structure

0 properties

JSON STRUCTURE

Config Amazon Resource Name Structure

0 properties

JSON STRUCTURE

Config Annotation Structure

0 properties

JSON STRUCTURE

Config Arn Structure

0 properties

JSON STRUCTURE

Config Auto Remediation Attempts Structure

0 properties

JSON STRUCTURE

Config Availability Zone Structure

0 properties

JSON STRUCTURE

Config Aws Region Structure

0 properties

JSON STRUCTURE

Config Base Configuration Item Structure

14 properties

JSON STRUCTURE

Config Base Configuration Items Structure

0 properties

JSON STRUCTURE

Config Base Resource Id Structure

0 properties

JSON STRUCTURE

Config Boolean Structure

0 properties

JSON STRUCTURE

Config Channel Name Structure

0 properties

JSON STRUCTURE

Config Chronological Order Structure

0 properties

JSON STRUCTURE

Config Client Token Structure

0 properties

JSON STRUCTURE

Config Compliance By Config Rule Structure

2 properties

JSON STRUCTURE

Config Compliance By Config Rules Structure

0 properties

JSON STRUCTURE

Config Compliance By Resource Structure

3 properties

JSON STRUCTURE

Config Compliance By Resources Structure

0 properties

JSON STRUCTURE

Config Compliance Contributor Count Structure

2 properties

JSON STRUCTURE

Config Compliance Resource Types Structure

0 properties

JSON STRUCTURE

Config Compliance Score Structure

0 properties

JSON STRUCTURE

Config Compliance Structure

2 properties

JSON STRUCTURE

Config Compliance Summary Structure

3 properties

JSON STRUCTURE

Config Compliance Type Structure

0 properties

JSON STRUCTURE

Config Compliance Types Structure

0 properties

JSON STRUCTURE

Config Config Export Delivery Info Structure

6 properties

JSON STRUCTURE

Config Config Rule Evaluation Status Structure

15 properties

JSON STRUCTURE

Config Config Rule Name Structure

0 properties

JSON STRUCTURE

Config Config Rule Names Structure

0 properties

JSON STRUCTURE

Config Config Rule State Structure

0 properties

JSON STRUCTURE

Config Config Rule Structure

11 properties

JSON STRUCTURE

Config Config Rules Structure

0 properties

JSON STRUCTURE

Config Config Stream Delivery Info Structure

4 properties

JSON STRUCTURE

Config Configuration Aggregator Arn Structure

0 properties

JSON STRUCTURE

Config Configuration Aggregator Structure

7 properties

JSON STRUCTURE

Config Configuration Item List Structure

0 properties

JSON STRUCTURE

Config Configuration Item Md5 Hash Structure

0 properties

JSON STRUCTURE

Config Configuration Item Status Structure

0 properties

JSON STRUCTURE

Config Configuration Item Structure

18 properties

JSON STRUCTURE

Config Configuration Recorder List Structure

0 properties

JSON STRUCTURE

Config Configuration Recorder Structure

3 properties

JSON STRUCTURE

Config Configuration State Id Structure

0 properties

JSON STRUCTURE

Config Configuration Structure

0 properties

JSON STRUCTURE

Config Conformance Pack Arn Structure

0 properties

JSON STRUCTURE

Config Conformance Pack Detail List Structure

0 properties

JSON STRUCTURE

Config Conformance Pack Detail Structure

9 properties

JSON STRUCTURE

Config Conformance Pack Id Structure

0 properties

JSON STRUCTURE

Config Conformance Pack Name Filter Structure

0 properties

JSON STRUCTURE

Config Conformance Pack Name Structure

0 properties

JSON STRUCTURE

Config Conformance Pack Names List Structure

0 properties

JSON STRUCTURE

Config Conformance Pack State Structure

0 properties

JSON STRUCTURE

Config Controls List Structure

0 properties

JSON STRUCTURE

Config Cosmos Page Limit Structure

0 properties

JSON STRUCTURE

Config Custom Policy Details Structure

3 properties

JSON STRUCTURE

Config Date Structure

0 properties

JSON STRUCTURE

Config Debug Log Delivery Accounts Structure

0 properties

JSON STRUCTURE

Config Delete Config Rule Request Structure

1 properties

JSON STRUCTURE

Config Delete Stored Query Request Structure

1 properties

JSON STRUCTURE

Config Delete Stored Query Response Structure

0 properties

JSON STRUCTURE

Config Delivery Channel List Structure

0 properties

JSON STRUCTURE

Config Delivery Channel Name List Structure

0 properties

JSON STRUCTURE

Config Delivery Channel Status List Structure

0 properties

JSON STRUCTURE

Config Delivery Channel Status Structure

4 properties

JSON STRUCTURE

Config Delivery Channel Structure

6 properties

JSON STRUCTURE

Config Delivery S3 Bucket Structure

0 properties

JSON STRUCTURE

Config Delivery S3 Key Prefix Structure

0 properties

JSON STRUCTURE

Config Delivery Status Structure

0 properties

JSON STRUCTURE

Config Earlier Time Structure

0 properties

JSON STRUCTURE

Config Evaluation Context Structure

1 properties

JSON STRUCTURE

Config Evaluation Mode Structure

0 properties

JSON STRUCTURE

Config Evaluation Modes Structure

0 properties

JSON STRUCTURE

Config Evaluation Result Identifier Structure

3 properties

JSON STRUCTURE

Config Evaluation Result Qualifier Structure

4 properties

JSON STRUCTURE

Config Evaluation Result Structure

6 properties

JSON STRUCTURE

Config Evaluation Results Structure

0 properties

JSON STRUCTURE

Config Evaluation Status Structure

2 properties

JSON STRUCTURE

Config Evaluation Structure

5 properties

JSON STRUCTURE

Config Evaluation Timeout Structure

0 properties

JSON STRUCTURE

Config Evaluations Structure

0 properties

JSON STRUCTURE

Config Event Source Structure

0 properties

JSON STRUCTURE

Config Excluded Accounts Structure

0 properties

JSON STRUCTURE

Config Exclusion By Resource Types Structure

1 properties

JSON STRUCTURE

Config Execution Controls Structure

1 properties

JSON STRUCTURE

Config Expression Structure

0 properties

JSON STRUCTURE

Config External Evaluation Structure

5 properties

JSON STRUCTURE

Config Failed Remediation Batch Structure

2 properties

JSON STRUCTURE

Config Failed Remediation Batches Structure

0 properties

JSON STRUCTURE

Config Field Info List Structure

0 properties

JSON STRUCTURE

Config Field Info Structure

1 properties

JSON STRUCTURE

Config Field Name Structure

0 properties

JSON STRUCTURE

Config Get Stored Query Request Structure

1 properties

JSON STRUCTURE

Config Get Stored Query Response Structure

1 properties

JSON STRUCTURE

Config Group By Api Limit Structure

0 properties

JSON STRUCTURE

Config Grouped Resource Count List Structure

0 properties

JSON STRUCTURE

Config Grouped Resource Count Structure

2 properties

JSON STRUCTURE

Config Integer Structure

0 properties

JSON STRUCTURE

Config Last Updated Time Structure

0 properties

JSON STRUCTURE

Config Later Time Structure

0 properties

JSON STRUCTURE

Config Limit Structure

0 properties

JSON STRUCTURE

Config List Stored Queries Request Structure

2 properties

JSON STRUCTURE

Config List Stored Queries Response Structure

2 properties

JSON STRUCTURE

Config Long Structure

0 properties

JSON STRUCTURE

Config Maximum Execution Frequency Structure

0 properties

JSON STRUCTURE

Config Member Account Rule Status Structure

0 properties

JSON STRUCTURE

Config Member Account Status Structure

6 properties

JSON STRUCTURE

Config Message Type Structure

0 properties

JSON STRUCTURE

Config Name Structure

0 properties

JSON STRUCTURE

Config Next Token Structure

0 properties

JSON STRUCTURE

Config Ordering Timestamp Structure

0 properties

JSON STRUCTURE

Config Organization Config Rule Structure

7 properties

JSON STRUCTURE

Config Organization Config Rules Structure

0 properties

JSON STRUCTURE

Config Organization Resource Status Structure

0 properties

JSON STRUCTURE

Config Organization Rule Status Structure

0 properties

JSON STRUCTURE

Config Owner Structure

0 properties

JSON STRUCTURE

Config Page Size Limit Structure

0 properties

JSON STRUCTURE

Config Parameter Name Structure

0 properties

JSON STRUCTURE

Config Parameter Value Structure

0 properties

JSON STRUCTURE

Config Pending Aggregation Request Structure

2 properties

JSON STRUCTURE

Config Percentage Structure

0 properties

JSON STRUCTURE

Config Policy Runtime Structure

0 properties

JSON STRUCTURE

Config Policy Text Structure

0 properties

JSON STRUCTURE

Config Put Config Rule Request Structure

2 properties

JSON STRUCTURE

Config Put Conformance Pack Request Structure

7 properties

JSON STRUCTURE

Config Put Delivery Channel Request Structure

1 properties

JSON STRUCTURE

Config Put Evaluations Request Structure

3 properties

JSON STRUCTURE

Config Put Evaluations Response Structure

1 properties

JSON STRUCTURE

Config Put Resource Config Request Structure

6 properties

JSON STRUCTURE

Config Put Stored Query Request Structure

2 properties

JSON STRUCTURE

Config Put Stored Query Response Structure

1 properties

JSON STRUCTURE

Config Query Arn Structure

0 properties

JSON STRUCTURE

Config Query Description Structure

0 properties

JSON STRUCTURE

Config Query Expression Structure

0 properties

JSON STRUCTURE

Config Query Id Structure

0 properties

JSON STRUCTURE

Config Query Info Structure

1 properties

JSON STRUCTURE

Config Query Name Structure

0 properties

JSON STRUCTURE

Config Recorder Name Structure

0 properties

JSON STRUCTURE

Config Recorder Status Structure

0 properties

JSON STRUCTURE

Config Recording Group Structure

5 properties

JSON STRUCTURE

Config Recording Strategy Structure

1 properties

JSON STRUCTURE

Config Recording Strategy Type Structure

0 properties

JSON STRUCTURE

Config Reevaluate Config Rule Names Structure

0 properties

JSON STRUCTURE

Config Related Event List Structure

0 properties

JSON STRUCTURE

Config Related Event Structure

0 properties

JSON STRUCTURE

Config Relationship List Structure

0 properties

JSON STRUCTURE

Config Relationship Name Structure

0 properties

JSON STRUCTURE

Config Relationship Structure

4 properties

JSON STRUCTURE

Config Remediation Configuration Structure

12 properties

JSON STRUCTURE

Config Remediation Configurations Structure

0 properties

JSON STRUCTURE

Config Remediation Execution State Structure

0 properties

JSON STRUCTURE

Config Remediation Execution Status Structure

5 properties

JSON STRUCTURE

Config Remediation Execution Step Structure

5 properties

JSON STRUCTURE

Config Remediation Execution Steps Structure

0 properties

JSON STRUCTURE

Config Remediation Parameter Value Structure

2 properties

JSON STRUCTURE

Config Remediation Parameters Structure

0 properties

JSON STRUCTURE

Config Remediation Target Type Structure

0 properties

JSON STRUCTURE

Config Resource Configuration Structure

0 properties

JSON STRUCTURE

Config Resource Count Filters Structure

3 properties

JSON STRUCTURE

Config Resource Count Group Key Structure

0 properties

JSON STRUCTURE

Config Resource Count Structure

2 properties

JSON STRUCTURE

Config Resource Counts Structure

0 properties

JSON STRUCTURE

Config Resource Creation Time Structure

0 properties

JSON STRUCTURE

Config Resource Deletion Time Structure

0 properties

JSON STRUCTURE

Config Resource Details Structure

4 properties

JSON STRUCTURE

Config Resource Evaluation Filters Structure

3 properties

JSON STRUCTURE

Config Resource Evaluation Id Structure

0 properties

JSON STRUCTURE

Config Resource Evaluation Status Structure

0 properties

JSON STRUCTURE

Config Resource Evaluation Structure

3 properties

JSON STRUCTURE

Config Resource Evaluations Structure

0 properties

JSON STRUCTURE

Config Resource Filters Structure

4 properties

JSON STRUCTURE

Config Resource Id List Structure

0 properties

JSON STRUCTURE

Config Resource Id Structure

0 properties

JSON STRUCTURE

Config Resource Identifier List Structure

0 properties

JSON STRUCTURE

Config Resource Identifier Structure

4 properties

JSON STRUCTURE

Config Resource Identifiers List Structure

0 properties

JSON STRUCTURE

Config Resource Key Structure

2 properties

JSON STRUCTURE

Config Resource Keys Structure

0 properties

JSON STRUCTURE

Config Resource Name Structure

0 properties

JSON STRUCTURE

Config Resource Type List Structure

0 properties

JSON STRUCTURE

Config Resource Type String Structure

0 properties

JSON STRUCTURE

Config Resource Type Structure

0 properties

JSON STRUCTURE

Config Resource Types Scope Structure

0 properties

JSON STRUCTURE

Config Resource Types Structure

0 properties

JSON STRUCTURE

Config Resource Value Structure

1 properties

JSON STRUCTURE

Config Resource Value Type Structure

0 properties

JSON STRUCTURE

Config Results Structure

0 properties

JSON STRUCTURE

Config Retention Configuration List Structure

0 properties

JSON STRUCTURE

Config Retention Configuration Name Structure

0 properties

JSON STRUCTURE

Config Retention Configuration Structure

2 properties

JSON STRUCTURE

Config Retention Period In Days Structure

0 properties

JSON STRUCTURE

Config Rule Limit Structure

0 properties

JSON STRUCTURE

Config Schema Version Id Structure

0 properties

JSON STRUCTURE

Config Scope Structure

4 properties

JSON STRUCTURE

Config Sort By Structure

0 properties

JSON STRUCTURE

Config Sort Order Structure

0 properties

JSON STRUCTURE

Config Source Detail Structure

3 properties

JSON STRUCTURE

Config Source Details Structure

0 properties

JSON STRUCTURE

Config Source Structure

4 properties

JSON STRUCTURE

Config Ssm Controls Structure

2 properties

JSON STRUCTURE

Config Ssm Document Name Structure

0 properties

JSON STRUCTURE

Config Ssm Document Version Structure

0 properties

JSON STRUCTURE

Config Stack Arn Structure

0 properties

JSON STRUCTURE

Config Static Parameter Values Structure

0 properties

JSON STRUCTURE

Config Static Value Structure

1 properties

JSON STRUCTURE

Config Status Detail Filters Structure

2 properties

JSON STRUCTURE

Config Stored Query Metadata List Structure

0 properties

JSON STRUCTURE

Config Stored Query Metadata Structure

4 properties

JSON STRUCTURE

Config Stored Query Structure

5 properties

JSON STRUCTURE

Config String Structure

0 properties

JSON STRUCTURE

Config String With Char Limit1024 Structure

0 properties

JSON STRUCTURE

Config String With Char Limit128 Structure

0 properties

JSON STRUCTURE

Config String With Char Limit2048 Structure

0 properties

JSON STRUCTURE

Config String With Char Limit256 Structure

0 properties

JSON STRUCTURE

Config String With Char Limit64 Structure

0 properties

JSON STRUCTURE

Config String With Char Limit768 Structure

0 properties

JSON STRUCTURE

Config Supplementary Configuration Structure

0 properties

JSON STRUCTURE

Config Tag Key List Structure

0 properties

JSON STRUCTURE

Config Tag Key Structure

0 properties

JSON STRUCTURE

Config Tag List Structure

0 properties

JSON STRUCTURE

Config Tag Resource Request Structure

2 properties

JSON STRUCTURE

Config Tag Structure

2 properties

JSON STRUCTURE

Config Tag Value Structure

0 properties

JSON STRUCTURE

Config Tags List Structure

0 properties

JSON STRUCTURE

Config Tags Structure

0 properties

JSON STRUCTURE

Config Template Body Structure

0 properties

JSON STRUCTURE

Config Template S3 Uri Structure

0 properties

JSON STRUCTURE

Config Time Window Structure

2 properties

JSON STRUCTURE

Config Untag Resource Request Structure

2 properties

JSON STRUCTURE

Config Value Structure

0 properties

JSON STRUCTURE

Config Version Structure

0 properties

JSON STRUCTURE

Example Payloads

Amazon Config Rule Example

9 fields

EXAMPLE

Config Compliance Example

2 fields

EXAMPLE

Config Config Rule Example

11 fields

EXAMPLE

Config Evaluation Example

5 fields

EXAMPLE

Config Field Info Example

1 fields

EXAMPLE

Config Query Info Example

1 fields

EXAMPLE

Config Relationship Example

4 fields

EXAMPLE

Config Resource Key Example

2 fields

EXAMPLE

Config Scope Example

4 fields

EXAMPLE

Config Source Detail Example

3 fields

EXAMPLE

Config Source Example

4 fields

EXAMPLE

Config Ssm Controls Example

2 fields

EXAMPLE

Config Static Value Example

1 fields

EXAMPLE

Config Stored Query Example

5 fields

EXAMPLE

Config Tag Example

2 fields

EXAMPLE

Config Time Window Example

2 fields

EXAMPLE

Resources

🔗
TrustCenter
TrustCenter
🔗
VulnerabilityDisclosure
VulnerabilityDisclosure
🔗
DomainSecurity
DomainSecurity
🔑
Authentication
Authentication
🌐
Portal
Portal
🔗
Website
Website
🔗
Documentation
Documentation
📜
TermsOfService
TermsOfService
📜
PrivacyPolicy
PrivacyPolicy
💬
Support
Support
📰
Blog
Blog
👥
GitHubOrganization
GitHubOrganization
🌐
Console
Console
📝
SignUp
SignUp
🔗
Login
Login
🟢
StatusPage
StatusPage
👥
YouTube
YouTube
👥
StackOverflow
StackOverflow
🔗
Contact
Contact
🔗
SpectralRules
SpectralRules
🔗
Vocabulary
Vocabulary
🔗
Packages
Packages
🔗
WellKnown
WellKnown
🔗
SecurityTxt
SecurityTxt
🔗
MCPServer
MCPServer
🔗
LLMsTxt
LLMsTxt
🔗
Conformance
Conformance
🔗
Lifecycle
Lifecycle

Sources

Raw ↑
aid: amazon-config
url: https://raw.githubusercontent.com/api-evangelist/amazon-config/refs/heads/main/apis.yml
name: Amazon Config
type: Index
image: https://kinlane-productions.s3.amazonaws.com/apis-json/apis-json-logo.jpg
specificationVersion: '0.19'
description: AWS Config provides a detailed view of the configuration of AWS resources in your AWS account. This includes
  how the resources are related to one another and how they were configured in the past, enabling assessment, auditing, and
  evaluation of configurations for compliance and security governance. It records configuration changes continuously, evaluates
  compliance against rules, and supports automated remediation of noncompliant resources.
created: '2024-01-15'
modified: '2026-06-20'
tags:
- Auditing
- AWS
- Compliance
- Configuration Management
- Governance
- Security
apis:
- name: Amazon Config API
  description: The AWS Config API provides 92 operations for managing configuration recording, evaluating resource compliance
    against rules, querying resource configurations, tracking configuration history, managing conformance packs, configuring
    remediation, and aggregating configuration data across accounts and regions for comprehensive governance.
  image: https://a0.awsstatic.com/libra-css/images/logos/aws_logo_smile_1200x630.png
  humanURL: https://aws.amazon.com/config/
  baseURL: https://config.amazonaws.com
  tags:
  - Auditing
  - AWS
  - Compliance
  - Configuration Management
  - Governance
  properties:
  - type: Documentation
    url: https://docs.aws.amazon.com/config/latest/developerguide/
  - type: OpenAPI
    url: openapi/amazon-config-openapi.yml
  - type: APIReference
    url: https://docs.aws.amazon.com/config/latest/APIReference/
  - type: Pricing
    url: https://aws.amazon.com/config/pricing/
  - type: GettingStarted
    url: https://aws.amazon.com/config/getting-started/
  - type: FAQ
    url: https://aws.amazon.com/config/faq/
  - type: JSONSchema
    url: json-schema/config-config-rule-schema.json
  - type: JSONStructure
    url: json-structure/config-config-rule-structure.json
  - type: JSON-LD
    url: json-ld/amazon-config-context.jsonld
  - type: Overlay
    url: overlays/amazon-config-openapi-overlay.yaml
  - type: ErrorCatalog
    url: errors/amazon-config-problem-types.yml
common:
- type: TrustCenter
  url: security/amazon-config-trust-center.yml
- type: VulnerabilityDisclosure
  url: security/amazon-config-vulnerability-disclosure.yml
- type: DomainSecurity
  url: security/amazon-config-domain-security.yml
- type: Authentication
  url: authentication/amazon-config-authentication.yml
- type: Portal
  url: https://aws.amazon.com/
- type: Website
  url: https://aws.amazon.com/config/
- type: Documentation
  url: https://docs.aws.amazon.com/config/
- type: TermsOfService
  url: https://aws.amazon.com/service-terms/
- type: PrivacyPolicy
  url: https://aws.amazon.com/privacy/
- type: Support
  url: https://aws.amazon.com/support/
- type: Blog
  url: https://aws.amazon.com/blogs/mt/
- type: GitHubOrganization
  url: https://github.com/aws
- type: Console
  url: https://console.aws.amazon.com/config/
- type: SignUp
  url: https://portal.aws.amazon.com/billing/signup
- type: Login
  url: https://signin.aws.amazon.com/
- type: StatusPage
  url: https://health.aws.amazon.com/health/status
- type: YouTube
  url: https://www.youtube.com/user/AmazonWebServices
- type: StackOverflow
  url: https://stackoverflow.com/questions/tagged/aws-config
- type: Contact
  url: https://aws.amazon.com/contact-us/
- type: SpectralRules
  url: rules/amazon-config-spectral-rules.yml
- type: Vocabulary
  url: vocabulary/amazon-config-vocabulary.yaml
- type: Packages
  url: packages/amazon-config-packages.yml
- type: WellKnown
  url: well-known/amazon-config-well-known.yml
- type: SecurityTxt
  url: well-known/amazon-config-security.txt
- type: MCPServer
  url: mcp/amazon-config-mcp.yml
- type: LLMsTxt
  url: llms/amazon-config-llms.txt
- type: Conformance
  url: conformance/amazon-config-conformance.yml
- type: Lifecycle
  url: lifecycle/amazon-config-lifecycle.yml
- type: Features
  data:
  - name: Configuration Recording
    description: Continuously record configuration changes to all supported AWS resources in your account with detailed configuration
      items.
  - name: Config Rules
    description: Evaluate AWS resource configurations against desired settings using AWS-managed or custom Lambda-based rules.
  - name: Conformance Packs
    description: Deploy collections of Config rules and remediation actions as a single unit across an AWS Organization.
  - name: Configuration History
    description: View detailed configuration history for any AWS resource including who changed what and when.
  - name: Resource Inventory
    description: Maintain a complete inventory of all AWS resources in your account with current and past configurations.
  - name: Automated Remediation
    description: Automatically remediate noncompliant resources using SSM Automation documents triggered by Config rules.
  - name: Multi-Account Aggregation
    description: Aggregate configuration and compliance data from multiple accounts and regions into a single view.
  - name: Advanced Query
    description: Use SQL-like queries to search across resource configurations and compliance states.
- type: UseCases
  data:
  - name: Security and Compliance Auditing
    description: Continuously audit AWS resource configurations against security benchmarks like CIS, PCI DSS, and HIPAA.
  - name: Change Management
    description: Track who changed what configuration on which resource and when for change management and troubleshooting.
  - name: Resource Inventory
    description: Maintain an always-current inventory of all AWS resources for asset management and CMDB purposes.
  - name: Drift Detection
    description: Detect configuration drift from approved baselines and trigger alerts or automated remediation.
  - name: Incident Investigation
    description: Reconstruct the configuration state of resources at any point in time to aid incident investigation.
  - name: Governance at Scale
    description: Enforce organization-wide governance policies using conformance packs deployed across all accounts.
- type: Integrations
  data:
  - name: AWS CloudTrail
    description: Correlate Config configuration items with CloudTrail API activity to understand who made changes.
  - name: AWS Security Hub
    description: Send Config compliance findings to Security Hub for centralized security posture management.
  - name: Amazon S3
    description: Deliver configuration snapshots and history to S3 for long-term storage and analysis.
  - name: Amazon SNS
    description: Send notifications for compliance changes and configuration changes via SNS topics.
  - name: AWS Systems Manager
    description: Use SSM Automation documents as remediation targets for Config rules.
  - name: AWS Organizations
    description: Deploy Config rules and conformance packs across entire AWS Organizations for governance at scale.
  - name: AWS Lambda
    description: Create custom Config rules using Lambda functions for organization-specific compliance requirements.
maintainers:
- FN: Kin Lane
  email: kin@apievangelist.com
  url: https://apievangelist.com