Download PDF
Download page AWS Config.
AWS Config
AWS Config continually assesses, audits, and evaluates the configurations and relationships of your resources on AWS, on premises, and on other clouds.
You must configure cloud connections to monitor this entity. See Set up Cisco AppDynamics Cloud Collectors to Monitor AWS.
Cisco Cloud Observability displays AWS entities on the Observe page. Metrics are displayed for specific entity instances in the list and detail views.
This document contains references to third-party documentation. Splunk AppDynamics does not own any rights and assumes no responsibility for the accuracy or completeness of such third-party documentation.
Detail View
To display the detail view for an AWS Config instance:
- Navigate to the Observe page.
- Under Management & Dev Tools, click Configs.
The list view now displays. - From the list, click an instance Region to display the detail view.
The detail view displays the metrics, key performance indicators, and properties (attributes) related to the instance you selected.
Metrics and Key Performance Indicators
Cisco Cloud Observability displays the following metrics and key performance indicators (KPIs) for AWS Config. For more information, see Viewing the AWS Config Dashboard.
| Display Name | Source Metric Name | Description |
|---|---|---|
| Configuration Items Recorded (Count) | ConfigurationItemsRecorded | The number of configuration items recorded for each resource type or all resource types. A configuration item represents a point-in-time view of the various attributes of a supported AWS resource. |
| Configuration Recorder Insufficient Permission Failure (Count) | ConfigurationRecorderInsufficientPermissionsFailure | The number of failed permission access attempts due to the IAM role policy for the configuration recorder having insufficient permissions. The configuration recorder detects changes in your resource configurations and captures these changes as configuration items. |
Properties (Attributes)
Cisco Cloud Observability displays the following properties for AWS Config.
| Display Name | Property Name | Description |
|---|---|---|
| Cloud Account ID | cloud.account.id | The cloud account ID the resource is assigned to. |
| Cloud Region | cloud.region | The geographical region the resource is running. |
| Compliant Rule Count | aws.config.compliant_resource.by_config_rule.count | The number of Config rules or Amazon Web Services resources that are compliant, up to a maximum of 25 for rules and 100 for resources. |
| Compliant Rule Count Exceeded | aws.config.compliant_resource.by_config_rule.count_exceeded | Indicates whether the maximum count is reached. |
| Non Compliant Rule Count | aws.config.non_compliant_resource.by_config_rule.count | The number of Config rules or Amazon Web Services resources that are noncompliant, up to a maximum of 25 for rules and 100 for resources. |
| Non Compliant Rule Count Exceeded | aws.config.non_compliant_resource.by_config_rule.count_exceeded | Indicates if the maximum count is reached. |
| Compliant Resource Count | aws.config.compliant_resource.by_resource_type.count | The numbers that are returned for each resource type. The number of Config rules or Amazon Web Services resources that are compliant, up to a maximum of 25 for rules and 100 for resources. |
| Compliant Resource Count Exceeded | aws.config.compliant_resource.by_resource_type.count_exceeded | The numbers are returned for each resource type. Indicates whether the maximum count is reached. |
| Non Compliant Resource Count | aws.config.non_compliant_resource.by_resource_type.count | The numbers are returned for each resource type. The number of Config rules or Amazon Web Services resources that are non-compliant, up to a maximum of 25 for rules and 100 for resources. |
| Non Compliant Resource Count Exceeded | aws.config.non_compliant_resource.by_resource_type.count_exceeded | The numbers are returned for each resource type. Indicates whether the maximum count is reached. |
| Configuration Recorder ON | aws.config.configuration_recorder.status | Specifies if the recorder is currently recording. |
| Configuration Recorder Last Status | aws.config.configuration_recorder.last_status | The last status of the Configuration Recorder. |
| Delivery Channel Name | aws.config.delivery_channel.name | The name of the delivery channel. |
| Delivery Channel S3 Bucket Name | aws.config.delivery_channel.s3_bucket_name | The name of the Amazon S3 bucket to which Config delivers configuration snapshots and configuration history files. |
| Delivery Channel S3 Kms Key Arn | aws.config.delivery_channel.s3_kms_key_arn | The Amazon Resource Name (ARN) of the Key Management Service (KMS) key used to encrypt objects delivered by the Config. |
Delivery Channel Sns Topic Arn | aws.config.delivery_channel.sns_topic_arn | The ARN of the Amazon SNS topic where the Config sends notifications about configuration changes. |
| Delivery Channel Delivery Frequency | aws.config.delivery_channel.delivery_frequency | The frequency that the Config delivers configuration snapshots. |
| Total Discovered Resource Count | aws.config.total_discovered_resource_count | The total number of resources that the Config is recording in the region for your account. |
Retention and Purge Time-To-Live (TTL)
For all cloud and infrastructure entities, the retention TTL is 180 minutes (3 hours) and the purge TTL is 525,600 minutes (365 days).
Amazon Web Services, the AWS logo, AWS, and any other AWS Marks used in these materials are trademarks of Amazon.com, Inc. or its affiliates in the United States and/or other countries.