AWS Commercial Support Reference

Supported Services

Listed below are all of the AWS services (and their components) supported by InsightCloudSec. If you have questions related to AWS or specific services and their support, contact us through the Customer Support Portal.

Note: If you're interested in the AWS China or GovCloud support for InsightCloudSec, review the China Cloud Support Reference or Government Cloud Support Reference for details instead.

📘 AWS Supported Services & Regions

In general, InsightCloudSec provides support for the AWS services listed below for all regions in which they are available. In some scenarios, some services may not be available in certain regions (or for AWS GovCloud/China in general). This is typically the result of restrictions related to the region itself or otherwise imposed by AWS to comply with regional policies. We recommend that you refer to the AWS documentation on those specific regions for official details.

Also note that InsightCloudSec now recognizes the EC2 Serial Console as part of general EC2 service support.

text
1
Amazon API Gateway (Domain, Key, Stage, Usage Plans)
2
Amazon Connect
3
Amazon DocumentDB (Elastic)
4
Amazon Kendra (Index)
5
Amazon Keyspaces
6
Amazon Lookout for Equipment
7
Amazon Lookout for Metrics
8
Amazon Lookout for Vision
9
Amazon Macie
10
Amazon MemoryDB for Redis
11
Amazon MQ
12
Amazon OpenSearch Serverless
13
Amazon QuickSight
14
Amazon SageMaker (Notebook, Training job)
15
Amazon Simple Email Service (Configuration sets, Rules)
16
Amazon Redshift (Serverless Namespace, Serverless Workgroup, Snapshot)
17
Amazon Timestream
18
Amazon Transcription
19
AppStream 2.0
20
Athena (Workgroup)
21
AWS App Runner
22
AWS AppSync
23
AWS Auto Scaling (Group, Launch Configurations)
24
AWS Backup (gateway, Vault)
25
AWS Glue (Data Catalog, Database, Security Configuration)
26
AWS Health Dashboard
27
AWS Organizations (Consolidated Bill, Service Control Policy)
28
AWS Outposts
29
AWS Transfer Family (SFTP Server)
30
Batch (Compute Environment)
31
Certificate Manager (Private Certificate Authority)
32
CloudFormation (Templates)
33
CloudFront
34
CloudHSM
35
CloudSearch (Cluster)
36
CloudTrail
37
CloudWatch (Alarm, Log Group, Logs Destination, Rule, EventBridge event bus, Observability Access Manager)
38
CodeBuild (Project)
39
CodeCommit
40
Cognito (User Pool)
41
Database Migration Service (Endpoint, Replication Instance)
42
DataSync (Task)
43
Direct Connect
44
Directory Service
45
DynamoDB (Accelerator (DAX))
46
EC2 (Amazon EBS Snapshot, Amazon EBS Volume, Dedicated Instance, Instance, Launch Template, Reserved Instance, Resource/Service Limit/Quota, Savings Plans, SSH Key Pairs)
47
EFS
48
Elastic Beanstalk (Application, Environment)
49
Elastic Container Registry (Container Image, Container Registry)
50
Elastic Container Service/Fargate (Cluster, Container, Container Task, Task Definition)
51
Elastic Kubernetes Service (Cluster, Container Instance, Node Group)
52
Elastic Load Balancer (Application Load Balancer, Gateway Load Balancer, Network Load Balancer)
53
Elastic MapReduce
54
Elastic Transcoder (Pipeline)
55
ElastiCache (Snapshot)
56
FSx (Lustre, NetApp ONTAP)
57
Global Accelerator
58
GuardDuty (Detector)
59
IAM (Access Analyzer, Cloud Account, Group, Policy (Customer Managed), Role, IAM/ACM SSL Certificate, User, User Access Key)
60
Key Management Service
61
Kinesis (Data Firehose)
62
Kinesis Analytics (Streaming applications)
63
Kinesis Video Stream
64
Lambda (Layer)
65
Lightsail
66
Managed Apache Airflow (Environment)
67
MSK (Instance)
68
Neptune
69
OpenSearch Service
70
RDS (Aurora, Aurora global database, Cluster, Event Subscription, Instance, Proxy, Snapshot)
71
Recycle Bin
72
Region
73
Route 53 (DNS Zone, Domain, Resolver Configuration)
74
S3 (Access Point, Multi-Region Access Point)
75
S3 Glacier
76
SAML Identity Provider
77
Secrets Manager (Secret)
78
Serverless Application Repository
79
Simple Queue Service
80
Simple Notification Service (Subscription, Topic)
81
Step Function State Machine
82
Storage Gateway (NFS/SMB File Share)
83
Systems Manager (Parameter Store (Parameter), Document)
84
Trusted Advisor
85
VPC (Elastic IP, Elastic Network Interface (ENI), Endpoint Service, Endpoint/PrivateLink, Flow Log, Internet Gateway, Managed Prefix List, NACL/Security Group, NACL/Security Group Rules, NAT Gateway, Peer, Route, Route Table, Site-to-Site VPN, Subnet, Traffic Mirror Target, Transit Gateway, Virtual Private Gateway)
86
WAF & Shield
87
WorkSpaces (Instances)

Supported API Calls

Listed below are all of the API calls supported across AWS services based on the many policies that InsightCloudSec provides. This list is for administrators who may want to fine tune a policy with granular read/write operations.

text
1
EC2 Commands
2
============
3

4
AllocateAddress
5
AssociateAddress
6
AssociateRouteTable
7
AttachInternetGateway
8
AttachNetworkInterface
9
AttachVolume
10
AuthorizeSecurityGroupIngress
11
CopyImage
12
CopySnapshot
13
CreateDefaultVpc
14
CreateImage
15
CreateInstanceExportTask
16
CreateInternetGateway
17
CreateKeyPair
18
CreateNetworkAcl
19
CreateNetworkInterface
20
CreateRole
21
CreateRoute
22
CreateRouteTable
23
CreateSecurityGroup
24
CreateSnapshot
25
CreateSubnet
26
CreateTags
27
CreateVolume
28
CreateVpc
29
DeleteInternetGateway
30
DeleteKeyPair
31
DeleteNetworkAcl
32
DeleteNetworkAclEntry
33
DeleteNetworkInterface
34
DeleteRoute
35
DeleteRouteTable
36
DeleteSecurityGroup
37
DeleteSnapshot
38
DeleteSubnet SubnetId
39
DeleteTags
40
DeleteVolume
41
DeleteVpc VpcId
42
DeleteVpcPeeringConnection
43
DeregisterImage
44
DescribeAddresses
45
DescribeAddresses
46
DescribeAvailabilityZones
47
DescribeAvailabilityZones
48
DescribeFlowLogs
49
DescribeHosts
50
DescribeImageAttribute
51
DescribeImages
52
DescribeImportImageTasks
53
DescribeInstanceAttribute
54
DescribeInstanceStatus
55
DescribeInstanceTypes
56
DescribeInstances
57
DescribeInternetGateways
58
DescribeKeyPairs
59
DescribeKeyPairs
60
DescribeKeyPairs
61
DescribeNetworkAcls
62
DescribeNetworkInterfaceAttribute
63
DescribeNetworkInterfaces
64
DescribePlacementGroups
65
DescribeRegions
66
DescribeReservedInstances
67
DescribeRouteTables
68
DescribeSecurityGroups
69
DescribeSnapshots
70
DescribeSubnets
71
DescribeTags
72
DescribeVolumeStatus
73
DescribeVolumes
74
DescribeVpcAttribute
75
DescribeVpcPeeringConnections
76
DescribeVpcs
77
DetachInternetGateway
78
DetachNetworkInterface
79
DetachVolume
80
DisassociateAddress
81
DisassociateRouteTable
82
GetConsoleOutput
83
GetPasswordData
84
ImportImage
85
ImportInstance
86
ImportKeyPair
87
ModifyImageAttribute
88
ModifyImageAttribute
89
ModifyInstanceAttribute
90
ModifyNetworkInterfaceAttribute
91
ModifyVolume
92
ModifyVpcAttribute
93
RegisterImage
94
ReleaseAddress
95
ReplaceRouteTableAssociation
96
RunInstances
97
TerminateInstances
98

99
Redshift Commands
100
=================
101
CreateClusterSnapshot
102
CreateTags
103
DeleteClusterSnapshot
104
DeleteTags
105
DescribeClusterSnapshots
106
DescribeClusters
107
DescribeTags
108

109
IAM Commands
110
============
111
DeleteUser
112
DeletePolicy
113
GetAccessKeyLastUsed
114
GetAccountPasswordPolicy
115
GetAccountSummary
116
GetLoginProfile
117
GetUser
118
ListAccessKeys
119
ListAttachedRolePolicies
120
ListAttachedUserPolicies
121
ListMFADevices
122
ListPolicies
123
ListRolePolicies
124
ListRoles
125
ListServerCertificates
126
ListUsers
127
UpdateAccessKey
128
UpdateAssumeRolePolicy
129

130
Autoscale Commands
131
==================
132
AttachInstances
133
CreateAutoScalingGroup
134
CreateLaunchConfiguration
135
DeleteAutoScalingGroup
136
DeleteLaunchConfiguration
137
DetachInstances
138
PutScalingPolicy
139
PutScalingPolicy
140
SetDesiredCapacity
141

142
RDS Commands
143
============
144
AddTagsToResource
145
CreateDBSnapshot
146
DeleteDBInstance
147
DeleteDBSnapshot
148
DescribeDBEngineVersions
149
DescribeDBInstances
150
DescribeDBSnapshots
151
DescribeReservedDBInstances
152
ListTagsForResource
153
RebootDBInstance
154
RemoveTagsFromResource
155
StartDBInstance
156
StopDBInstance
157

158
Elasticache Commands
159
====================
160
AddTagsToResource
161
CreateSnapshot
162
DeleteCacheCluster
163
DeleteSnapshot
164
DescribeCacheClusters
165
DescribeSnapshots
166
ListTagsForResource
167
RebootCacheCluster
168
RemoveTagsFromResource
169

170
LoadBalancer Commands
171
============
172
AddTags
173
ApplySecurityGroupsToLoadBalancer
174
AttachLoadBalancerToSubnets
175
CreateLoadBalancer
176
CreateLoadBalancerListeners
177
CreateLoadBalancerPolicy
178
DeleteLoadBalancer
179
DeleteLoadBalancerListeners
180
DeleteLoadBalancerPolicy
181
DeregisterInstancesFromLoadBalancer
182
DeregisterInstancesFromLoadBalancer
183
DescribeLoadBalancerAttributes
184
DescribeLoadBalancerPolicies
185
DescribeLoadBalancerPolicyTypes
186
DescribeLoadBalancers
187
DescribeLoadBalancers
188
DescribeTags
189
DetachLoadBalancerFromSubnets
190
RegisterInstancesWithLoadBalancer
191
RegisterInstancesWithLoadBalancer
192
RemoveTags
193
SetLoadBalancerPoliciesForBackendServer
194
SetLoadBalancerPoliciesOfListener
195

196
CloudTrail Commands
197
===================
198
DeleteTrail
199
DescribeTrails
200
GetTrailStatus
201
StartLogging
202
StopLogging
203

204
Route53 Commands
205
================
206
ChangeResourceRecordSets
207
ChangeTagsForResource
208
CreateHostedZone
209
DeleteHostedZone
210
ListHostedZones
211
ListHostedZonesByName
212
ListGeoLocations
213
ListHealthChecks
214
ListResourceRecordSets
215
ListTagsForResource
216
ListTagsForResources
217
ListVPCAssociationAuthorizations
218

219
S3 Commands
220
===========
221
DELETE Bucket
222
DELETE Bucket CORS
223
DELETE Bucket Policy
224
DELETE Bucket Tagging
225
GET Bucket
226
GET Bucket ACL
227
GET Bucket CORS
228
GET Bucket Logging
229
GET Bucket Policy
230
GET Bucket Tagging
231
GET Bucket Versioning
232
GET Bucket Website
233
PUT Bucket ACL
234
PUT Bucket CORS
235
PUT Bucket Policy
236
PUT Bucket Tagging
237
PUT Bucket Logging
238

239
Cloudwatch Commands
240
===================
241
DescribeAlarms
242
GetMetricStatistics
243
ListMetrics
244

245
Organizations Commands
246
======================
247
ListAccounts
248
DescribeOrganization
249

250
Certificate Manager (ACM) Commands
251
==================================
252
ListCertificates
253
DescribeCertificate
254

255
Elastic File System (EFS) Commands
256
==================================
257
DescribeFileSystems
258
DescribeTags
259
CreateTags
260
DeleteTags
261
CreateFileSystem
262
DescribeMountTargetSecurityGroups
263
DescribeMountTargets
264
DeleteMountTarget
265
CreateMountTarget
266
ModifyMountTargetSecurityGroups
267

268
Lambda Commands
269
===============
270
ListFunctions
271
ListTags
272

273
Elasticsearch Commands
274
======================
275
ListDomainNames
276
ListTags
277
DescribeElasticsearchDomains
278

279
Config Commands
280
===============
281
DescribeConfigurationRecorders
282
DescribeConfigurationRecorderStatus
283
DescribeDeliveryChannels
284
DescribeDeliveryChannelStatus
285

286
STS Commands
287
============
288
AssumeRole
289
GetCallerIdentity
290

291
Stack Template Commands
292
=======================
293
DescribeStacks
294
ListStackResources
295
ListStacks
296
DescribeStackResource
297
DescribeStackResources
298
GetTemplate
299
DeleteStack
300

301
DynamoDB
302
========
303
DescribeTable
304
DescribeGlobalTable
305
ListBackups
306
ListTables
307
ListGlobalTables
308
ListTagsOfResource
309

310
DynamoDB DAX
311
============
312
DescribeClusters
313
DescribeTable
314
ListTables
315
ListTags
316

317
SQS
318
===
319
GetQueueAttributes
320
ListQueues
321
ListQueueTags
322

323
Workspaces
324
==========
325
DescribeTags
326
DescribeWorkspaces
327
DescribeWorkspaceBundles
328
DescribeWorkspacesConnectionStatus
329
DescribeWorkspaceDirectories
330

331
Kinesis
332
=======
333
ListStreams
334
DescribeStream
335
DeleteStream
336
ListShards
337
AddTagsToStream
338
ListTagsForStream
339
RemoveTagsFromStream
340

341
Firehose
342
========
343
ListDeliveryStreams
344
DescribeDeliveryStream
345
DeleteDeliveryStream
346
TagDeliveryStream
347
ListTagsForDeliveryStream
348
UntagDeliveryStream