1. Home
    2. Prisma
    3. Prisma Cloud
    4. Prisma™ Cloud Administrator's Guide
    5. Connect Your Cloud Platform to Prisma Cloud
    6. Onboard Amazon Web Services
    7. AWS APIs Ingested by Prisma Cloud

    AWS APIs Ingested by Prisma Cloud

    List of all AWS APIs that Prisma Cloud supports to retrieve data about the resources in your AWS cloud environment.
    Service
    API Name in Prisma Cloud
    AWS Account Management
    aws-account-management-alternate-contact
    Amazon App Mesh
    aws-appmesh-mesh
    aws-appmesh-virtual-gateway
    Amazon AppFlow
    aws-appflow-flow
    Amazon AppRunner
    aws-apprunner-auto-scaling-configuration
    aws-apprunner-service
    Amazon AppStream 2.0
    aws-app-stream-usage-report-subscription
    Amazon Batch
    aws-batch-compute-environment
    Amazon CodePipeline
    aws-code-pipeline-pipeline
    Amazon Cloud9
    aws-cloud9-environment
    Amazon CloudFront
    aws-cloudfront-origin-access-control
    Amazon CloudSearch
    aws-cloudsearch-domain
    Amazon CloudWatch
    aws-cloudwatch-insight-rule
    Amazon Cognito
    aws-cognito-identity-pool
    aws-cognito-user-pool
    Amazon Connect
    aws-connect-instance
    Amazon Chine
    aws-chime-voice-connector
    Amazon DAX
    aws-dax-cluster
    Amazon DevOps Guru
    aws-devops-guru-service-integration
    Amazon DocumentDB
    aws-documentdb-db-cluster-parameter-group
    aws-docdb-db-cluster
    Amazon DynamoDB
    aws-dynamodb-describe-table
    Amazon EC2
    aws-describe-account-attributes
    aws-ec2-classic-instances
    aws-ec2-describe-instances
    aws-ec2-describe-images*
    aws-ec2-describe-snapshots
    aws-ec2-describe-network-interfaces
    aws-ec2-key-pair
    aws-ec2-describe-volumes
    aws-ec2-elastic-address
    aws-region
    Amazon EKS
    aws-eks-node-group
    Amazon Elastic Container Registry (ECR)
    aws-ecr-image
    aws-ecr-get-repository-policy
    *aws-ecr-public-repositories
    aws-ecr-registry-scanning-configuration
    aws-ecr-registry
    Amazon Elastic Container Service (ECS)
    aws-ecs-container-instance
    aws-ecs-describe-task-definition
    aws-ecs-service
    aws-ecs-cluster
    Amazon Elastic Container Service for Kubernetes (EKS)
    aws-eks-describe-cluster
    aws-eks-fargate-profile
    Amazon Elastic Load Balancing
    *aws-elb-describe-load-balancers
    aws-describe-ssl-policies
    *aws-elbv2-describe-load-balancers
    *aws-elbv2-target-group
    aws-elbv2-target-health
    Amazon Elastic MapReduce (EMR)
    aws-emr-describe-cluster
    aws-emr-public-access-block
    Amazon ElasticSearch Service
    aws-es-describe-elasticsearch-domain
    Amazon EventBridge
    aws-events-rule
    aws-events-eventbus
    Amazon Firewall Manager
    aws-fms-compliance-status
    aws-fms-admin-account
    aws-fms-policy
    AWS Network Firewall
    aws-network-firewall-firewall-policy
    aws-network-firewall-firewall
    Amazon Forecast
    aws-forecast-dataset
    aws-forecast-predictor
    Amazon FSx
    aws-fsx-file-system
    Amazon Grafana
    aws-grafana-workspace
    Amazon GuardDuty
    aws-guardduty-detector
    Amazon IoT
    aws-iot-account-audit-configuration
    aws-iot-domain-configuration
    Amazon Kendra
    aws-kendra-index
    Amazon Kinesis
    aws-kinesis-list-streams
    aws-kinesis-firehose-delivery-stream
    Amazon Kinesis Data Analytics
    aws-kinesisanalyticsv2-application
    Amazon Kinesis Video
    aws-kinesis-video-stream
    Amazon Lake Formation
    aws-lake-formation-setting
    Amazon Lex
    aws-lexv2-bot aws-lex-bot
    Amazon Lightsail
    aws-lightsail-instance
    Amazon Macie
    aws-macie2-session
    Amazon Managed Workflows for Apache Airflow
    aws-mwaa-environment
    Amazon MemoryDB
    aws-memorydb-parameter-group
    aws-memorydb-cluster
    Amazon MQ
    aws-mq-broker
    Amazon MSK
    aws-msk-cluster
    Amazon Neptune
    aws-neptune-db-cluster-parameter-group
    aws-neptune-db-instance
    aws-neptune-db-cluster
    Amazon Pinpoint
    aws-pinpoint-email-channel
    aws-pinpoint-sms-channel
    Amazon Prometheus
    aws-prometheus-workspace
    Amazon QLDB
    aws-qldb-ledger
    Amazon QuickSight
    aws-quicksight-account-setting
    aws-quicksight-dataset
    aws-quicksight-datasource
    Amazon RedShift
    aws-redshift-describe-clusters
    Amazon Relational Database Service (RDS)
    aws-rds-db-cluster-parameter-group
    *aws-rds-describe-db-instances
    aws-rds-describe-db-snapshots
    aws-rds-describe-event-subscriptions
    aws-rds-db-cluster-snapshots
    aws-rds-db-clusters
    *aws-rds-describe-db-parameter-groups
    aws-rds-option-group
    Amazon Route53
    aws-route53-domain
    aws-route53resolver-query-logging-config
    aws-route53resolver-query-logging-config-association
    aws-route53-query-logging-config
    Amazon S3
    aws-s3control-public-access-block
    *aws-s3api-get-bucket-acl
    aws-s3-access-point
    Amazon S3 Glacier
    aws-glacier-get-vault-access-policy
    aws-glacier-get-vault-lock
    aws-glacier-vault
    Amazon SageMaker
    aws-sagemaker-notebook-instance
    aws-sagemaker-endpoint
    aws-sagemaker-training-job
    aws-sagemaker-user-profile
    aws-sagemaker-endpoint-config
    aws-sagemaker-domain
    aws-api-gateway-authorizer
    aws-ec2-describe-images
    Amazon Simple Email Service (SES)
    aws-ses-identities
    Amazon Simple Notification Service (SNS)
    aws-sns-get-subscription-attributes
    aws-sns-get-topic-attributes
    aws-sns-platform-application
    Amazon Simple Queue Service (SQS)
    aws-sqs-get-queue-attributes
    Amazon Transcribe
    aws-transcribe-language-model
    Amazon Translate
    aws-translate-terminology
    Amazon VPC
    aws-ec2-describe-security-groups
    aws-ec2-describe-route-tables
    aws-ec2-describe-subnets
    aws-ec2-describe-vpcs
    aws-ec2-describe-vpc-peering-connections
    aws-describe-vpc-endpoints
    aws-ec2-client-vpn-endpoint
    aws-ec2-describe-vpn-connections
    aws-ec2-describe-vpn-gateways
    aws-ec2-describe-vpn-gateways-summary
    aws-ec2-vpc-stats
    aws-ec2-vpn-connections-summary
    aws-vpc-dhcp-options
    aws-vpc-nat-gateway
    aws-ec2-describe-flow-logs
    aws-ec2-describe-internet-gateways
    aws-ec2-describe-network-acls
    aws-ecr-get-repository-policy
    aws-vpc-managed-prefix-list
    aws-vpc-transit-gateway
    aws-vpc-transit-gateway-attachment
    Amazon WorkSpaces
    aws-describe-workspace-directories
    aws-workspaces-describe-workspaces
    aws-workspace-ip-group
    Amazon WorkSpaces Bundle
    aws-workspace-bundle
    API Gateway
    *aws-apigateway-get-rest-apis
    aws-apigateway-get-stages
    aws-apigateway-domain-name
    aws-apigateway-base-path-mapping
    aws-apigateway-method
    aws-apigateway-client-certificates
    AWS Account Management
    aws-account-management-alternate-contact
    AWS ACM Private Certificate Authority
    aws-acm-pca-certificate-authority
    aws-app-stream-stack
    aws-app-stream-fleet
    AWS Advance Shield
    aws-shield-protections
    AWS Amplify
    aws-amplify-app
    AWS AppSync
    aws-appsync-graphql-api
    AWS Athena
    aws-athena-workgroup
    AWS AutoScaling
    *aws-describe-auto-scaling-groups
    *aws-ec2-autoscaling-launch-configuration
    AWS Backup
    aws-backup-vault-access-policy
    AWS Certificate Manager
    aws-acm-describe-certificate
    AWS CloudFormation
    aws-cloudformation-describe-stacks
    AWS CloudFront
    aws-cloudfront-list-distributions
    AWS CloudTrail
    aws-cloudtrail-describe-trails
    aws-cloudtrail-get-event-selectors
    aws-cloudtrail-get-trail-status
    AWS CloudWatch
    aws-cloudwatch-describe-alarms
    aws-cloudwatch-log-group
    aws-logs-describe-metric-filters
    AWS CodeArtifact
    aws-code-artifact-repository
    aws-code-artifact-domain
    AWS CodeBuild
    aws-code-build-project
    AWS Config
    aws-configservice-compliance-details
    aws-configservice-config-rules
    aws-configservice-describe-configuration-recorders
    AWS Data Pipeline
    datapipeline:DescribePipelines
    datapipeline:GetPipelineDefinition
    datapipeline:ListPipelines
    AWS Database Migration Service
    aws-dms-certificate
    aws-dms-endpoint
    aws-dms-replication-instance
    AWS DataSync
    aws-datasync-location
    AWS Direct Connect
    aws-direct-connect-connection
    aws-directconnect-describe-gateway
    aws-direct-connect-interface
    AWS Directory Service
    aws-ds-directory
    AWS Elastic Beanstalk
    aws-elasticbeanstalk-environment
    aws-elasticbeanstalk-configuration-settings
    AWS Elastic File System (EFS)
    aws-describe-mount-targets
    AWS Global Accelerator
    aws-global-accelerator-accelerator
    AWS Glue
    aws-glue-security-configuration
    aws-glue-connection
    aws-glue-datacatalog
    aws-glue-database
    AWS Glue DataBrew
    aws-glue-data-brew-job
    AWS IAM
    aws-iam-oidc-provider
    AWS Identity and Access Management (IAM)
    aws-iam-list-access-keys
    aws-iam-get-account-summary
    aws-iam-list-server-certificates
    aws-iam-get-credential-report
    aws-iam-list-mfa-devices
    aws-iam-list-virtual-mfa-devices
    aws-iam-get-account-password-policy
    aws-iam-get-policy-version
    aws-iam-list-users
    aws-iam-list-user-policies
    aws-iam-list-roles
    aws-iam-list-groups
    aws-iam-list-attached-user-policies
    aws-iam-list-ssh-public-keys
    aws-iam-saml-provider
    aws-iam-service-last-accessed-details
    AWS IoT Analytics
    aws-iot-analytics-channel
    AWS Key Management Service (KMS)
    aws-kms-get-key-rotation-status
    AWS Lambda
    aws-lambda-list-functions
    aws-lambda-get-region-summary
    aws-lambda-code-signing-config
    AWS MediaStore
    aws-mediastore-container
    AWS Organization
    aws-organization-account aws-organization-ou aws-organization-root aws-organization-scp aws-organization-tag-policy
    AWS Resource Access Manager (RAM)
    aws-ram-principal
    aws-ram-list-resources
    aws-ram-resource
    aws-ram-resource-share
    AWS Route53
    aws-route53-list-hosted-zones
    aws-route53-domain
    AWS Secrets Manager
    aws-secretsmanager-describe-secret
    AWS Security Hub
    aws-securityhub-enabled-standards
    AWS Shield
    aws-shield-advanced-status
    aws-shield-protection-groups
    aws-shield-protections
    AWS Step Functions
    aws-step-functions-statemachine
    AWS Storage Gateway
    aws-storage-gateway-fileshare
    aws-storage-gateway-information
    aws-storage-gateway-cached-volume
    aws-storage-gateway-tape
    AWS Systems Manager
    aws-ssm-association
    aws-ssm-document
    aws-ssm-inventory-instance-information
    aws-ssm-parameter
    aws-ssm-resource-compliance-summary
    AWS Transfer Family
    aws-transfer-family-access
    aws-transfer-family-server
    AWS Web Application Firewall (WAF)
    aws-waf-web-acl-resources
    aws-waf-classic-web-acl-resource
    aws-waf-classic-global-web-acl-resource
    aws-waf-v2-global-web-acl-resource
    aws-waf-v2-web-acl-resource
    AWS XRAY
    aws-xray-encryption-config
    Delivery Channels
    aws-describe-delivery-channels
    ElastiCache
    aws-cache-engine-versions
    aws-elasticache-cache-clusters
    aws-elasticache-describe-replication-groups
    aws-elasticache-reserved-cache-nodes
    aws-elasticache-subnet-groups
    aws-elasticache-snapshots
    IAM Access Analyzer
    aws-access-analyzer
    When you configure Near Real Time Visibility, event attribution will not be supported for the APIs marked with *.

    Recommended For You

    Recommended Videos

    Recommended videos not found.

    © 2023 Palo Alto Networks, Inc. All rights reserved.

    Techdocs Logo