Resource Type: AWS > Region
The Region resource type is part of the AWS global infrastructure. Each Region resource represents a distinct geographic area where AWS operates multiple data centers, allowing users to deploy and manage resources closer to their end users, improving latency, fault tolerance, and regulatory compliance.
Controls
The primary controls for AWS > Region are:
It is also targeted by these controls:
- AWS > ACM > Certificate > Discovery
- AWS > ACM > Certificate > Usage
- AWS > Amazon MQ > Broker > Discovery
- AWS > Amazon MQ > Broker > Usage
- AWS > Amazon MQ > Configuration > Discovery
- AWS > Amplify > App > Discovery
- AWS > Amplify > App > Usage
- AWS > API Gateway > API > Discovery
- AWS > API Gateway > API > Usage
- AWS > API Gateway > API Key > Discovery
- AWS > API Gateway > API Key > Usage
- AWS > API Gateway > API V2 > Discovery
- AWS > API Gateway > API V2 > Usage
- AWS > API Gateway > Domain Name V2 > Discovery
- AWS > API Gateway > Domain Name V2 > Usage
- AWS > API Gateway > Integration V2 > Usage
- AWS > API Gateway > Resource > Usage
- AWS > API Gateway > Usage Plan > Discovery
- AWS > API Gateway > Usage Plan > Usage
- AWS > App Mesh > Mesh > Discovery
- AWS > AppStream > Fleet > Discovery
- AWS > AppStream > Image > Discovery
- AWS > AppStream > Image Builder > Discovery
- AWS > AppStream > Image Builder > Usage
- AWS > AppStream > User > Discovery
- AWS > AppStream > User > Usage
- AWS > Athena > Workgroup > Discovery
- AWS > Athena > Workgroup > Usage
- AWS > Backup > Backup Plan > Discovery
- AWS > Backup > Backup Vault > Discovery
- AWS > Backup > Protected Resource > Discovery
- AWS > Backup > Region Settings > Discovery
- AWS > Backup > Stack
- AWS > Batch > Compute Environment > Discovery
- AWS > Batch > Compute Environment > Usage
- AWS > Batch > Job Definition > Discovery
- AWS > Batch > Job Definition > Usage
- AWS > Batch > Job Queue > Discovery
- AWS > Batch > Job Queue > Usage
- AWS > CIS v1 > 2 Logging > 2.05 Ensure AWS Config is enabled in all regions (Scored)
- AWS > CIS v1.4 > 1 - Identity and Access Management > 1.20 - Ensure that IAM Access analyzer is enabled for all regions (Automated)
- AWS > CIS v1.4 > 2 - Storage > 2.02 - Elastic Compute Cloud (EC2) > 2.02.01 - Ensure EBS volume encryption is enabled (Manual)
- AWS > CIS v1.4 > 3 - Logging > 3.05 - Ensure AWS Config is enabled in all regions (Automated)
- AWS > CIS v2.0 > 1 - Identity and Access Management > 1.20 - Ensure that IAM Access analyzer is enabled for all regions
- AWS > CIS v2.0 > 2 - Storage > 2.02 - Elastic Compute Cloud (EC2) > 2.02.01 - Ensure EBS Volume Encryption is Enabled in all Regions
- AWS > CIS v2.0 > 3 - Logging > 3.05 - Ensure AWS Config is enabled in all regions
- AWS > CIS v2.0 > 4 - Monitoring > 4.16 - Ensure AWS Security Hub is enabled
- AWS > CIS v3.0 > 1 - Identity and Access Management > 1.20 - Ensure that IAM Access analyzer is enabled for all regions
- AWS > CIS v3.0 > 2 - Storage > 2.02 - Elastic Compute Cloud (EC2) > 2.02.01 - Ensure EBS Volume Encryption is Enabled in all Regions
- AWS > CIS v3.0 > 3 - Logging > 3.03 - Ensure AWS Config is enabled in all regions
- AWS > CIS v3.0 > 4 - Monitoring > 4.16 - Ensure AWS Security Hub is enabled
- AWS > CloudFormation > Stack > Discovery
- AWS > CloudFormation > StackSet > Discovery
- AWS > CloudSearch > Domain > Discovery
- AWS > CloudTrail > Shadow Trail > Discovery
- AWS > CloudTrail > Trail > Discovery
- AWS > CloudTrail > Trail > Usage
- AWS > CloudWatch > Alarm > Discovery
- AWS > CloudWatch > Alarm > Usage
- AWS > CloudWatch > Stack
- AWS > CodeBuild > Build > Discovery
- AWS > CodeBuild > Build > Usage
- AWS > CodeBuild > Project > Discovery
- AWS > CodeBuild > Project > Usage
- AWS > CodeBuild > Source Credential > Discovery
- AWS > CodeCommit > Repository > Discovery
- AWS > Config > Configuration Recorder > Discovery
- AWS > Config > Configuration Recording
- AWS > Config > Delivery Channel > Discovery
- AWS > Config > Rule > Discovery
- AWS > Config > Rule > Usage
- AWS > Data Pipeline > Pipeline > Discovery
- AWS > DAX > Cluster > Discovery
- AWS > DAX > Cluster > Usage
- AWS > Direct Connect > Connection > Discovery
- AWS > Direct Connect > Connection > Usage
- AWS > Direct Connect > Lag > Discovery
- AWS > Direct Connect > Lag > Usage
- AWS > Direct Connect > Virtual Interface > Usage
- AWS > Directory Service > Directory > Discovery
- AWS > Directory Service > Directory > Usage
- AWS > DMS > Endpoint > Discovery
- AWS > DMS > Endpoint > Usage
- AWS > DMS > Replication Instance > Discovery
- AWS > DMS > Replication Instance > Usage
- AWS > Doc DB > DB Cluster > Discovery
- AWS > Doc DB > DB Cluster > Usage
- AWS > Doc DB > DB Cluster Parameter Group > Discovery
- AWS > Doc DB > DB Cluster Parameter Group > Usage
- AWS > Doc DB > DB Instance > Discovery
- AWS > Doc DB > DB Instance > Usage
- AWS > DynamoDB > Backup > Discovery
- AWS > DynamoDB > Backup > Usage
- AWS > DynamoDB > Table > Discovery
- AWS > DynamoDB > Table > Usage
- AWS > EC2 > Account Attributes > Discovery
- AWS > EC2 > AMI > Discovery
- AWS > EC2 > AMI > Usage
- AWS > EC2 > Application Load Balancer > Discovery
- AWS > EC2 > Application Load Balancer > Usage
- AWS > EC2 > Auto Scaling Group > Discovery
- AWS > EC2 > Auto Scaling Group > Usage
- AWS > EC2 > Classic Load Balancer > Discovery
- AWS > EC2 > Classic Load Balancer > Usage
- AWS > EC2 > Gateway Load Balancer > Discovery
- AWS > EC2 > Gateway Load Balancer > Usage
- AWS > EC2 > Instance > Discovery
- AWS > EC2 > Instance > Usage
- AWS > EC2 > Key Pair > Discovery
- AWS > EC2 > Key Pair > Usage
- AWS > EC2 > Launch Configuration > Discovery
- AWS > EC2 > Launch Configuration > Usage
- AWS > EC2 > Launch Template > Discovery
- AWS > EC2 > Launch Template > Usage
- AWS > EC2 > Launch Template Version > Usage
- AWS > EC2 > Network Interface > Discovery
- AWS > EC2 > Network Interface > Usage
- AWS > EC2 > Network Load Balancer > Discovery
- AWS > EC2 > Network Load Balancer > Usage
- AWS > EC2 > Snapshot > Discovery
- AWS > EC2 > Snapshot > Usage
- AWS > EC2 > Target Group > Discovery
- AWS > EC2 > Target Group > Usage
- AWS > EC2 > Volume > Discovery
- AWS > EC2 > Volume > Usage
- AWS > ECR > Private Registry > Discovery
- AWS > ECR > Repository > Discovery
- AWS > ECS > Account Settings > Discovery
- AWS > ECS > Cluster > Discovery
- AWS > ECS > Cluster > Usage
- AWS > ECS > Task Definition > Discovery
- AWS > ECS > Task Definition > Usage
- AWS > EFS > FileSystem > Discovery
- AWS > EFS > FileSystem > Usage
- AWS > EFS > Mount Target > Usage
- AWS > EKS > Cluster > Discovery
- AWS > EKS > Cluster > Usage
- AWS > Elastic Beanstalk > Application > Discovery
- AWS > Elastic Beanstalk > Environment > Usage
- AWS > ElastiCache > Cache Cluster > Discovery
- AWS > ElastiCache > Cache Cluster > Usage
- AWS > ElastiCache > Cache Parameter Group > Discovery
- AWS > ElastiCache > Cache Parameter Group > Usage
- AWS > ElastiCache > Replication Group > Discovery
- AWS > ElastiCache > Snapshot > Discovery
- AWS > ElastiCache > Snapshot > Usage
- AWS > Elasticsearch > Domain > Discovery
- AWS > Elasticsearch > Domain > Usage
- AWS > EMR > Block Public Access Configuration > Discovery
- AWS > EMR > Cluster > Discovery
- AWS > EMR > Cluster > Usage
- AWS > EMR > Security Configuration > Discovery
- AWS > EMR > Security Configuration > Usage
- AWS > Events > Event Bus > Discovery
- AWS > Events > Event Bus > Usage
- AWS > Events > Rule > Discovery
- AWS > Events > Rule > Usage
- AWS > Events > Target > Usage
- AWS > FSx > Backup > Discovery
- AWS > FSx > Backup > Usage
- AWS > FSx > File System > Discovery
- AWS > FSx > File System > Usage
- AWS > Glacier > Vault > Discovery
- AWS > Glacier > Vault > Usage
- AWS > Glue > Crawler > Discovery
- AWS > Glue > Data Catalog > Discovery
- AWS > Glue > Database > Discovery
- AWS > Glue > Development Endpoint [Deprecated] > Discovery
- AWS > Glue > Job > Discovery
- AWS > Glue > ML Transform > Discovery
- AWS > Glue > Security Configuration > Discovery
- AWS > Glue > Security Configuration > Usage
- AWS > Glue > Trigger > Discovery
- AWS > Glue > Workflow > Discovery
- AWS > GuardDuty > Detector > Discovery
- AWS > GuardDuty > Detector > Usage
- AWS > GuardDuty > IPSet > Usage
- AWS > GuardDuty > ThreatIntelSet > Usage
- AWS > HIPAA > Region > At least one enabled trail should be present in a region
- AWS > HIPAA > Region > AWS Config should be enabled
- AWS > HIPAA > Region > AWS Security Hub should be enabled for an AWS Account
- AWS > HIPAA > Region > GuardDuty should be enabled
- AWS > IAM > Access Analyzer > Discovery
- AWS > Inspector > Assessment Target > Discovery
- AWS > Inspector > Assessment Target > Usage
- AWS > Inspector > Assessment Template > Usage
- AWS > Kinesis > Consumer > Usage
- AWS > Kinesis > Kinesis Video Stream > Discovery
- AWS > Kinesis > Stream > Discovery
- AWS > Kinesis > Stream > Usage
- AWS > KMS > Key > Discovery
- AWS > KMS > Key > Usage
- AWS > Lambda > Function > Discovery
- AWS > Lambda > Function > Usage
- AWS > Lambda > Layer > Discovery
- AWS > Lightsail > Instance > Discovery
- AWS > Lightsail > Instance > Usage
- AWS > Lightsail > Load Balancer > Discovery
- AWS > Lightsail > Load Balancer > Usage
- AWS > Lightsail > Relational Database > Discovery
- AWS > Lightsail > Relational Database > Usage
- AWS > Logs > Log Group > Discovery
- AWS > Logs > Log Group > Usage
- AWS > Logs > Log Stream > Usage
- AWS > Logs > Metric Filter > Discovery
- AWS > Logs > Metric Filter > Usage
- AWS > Logs > Resource Policy > Discovery
- AWS > Logs > Resource Policy > Usage
- AWS > MSK > Cluster > Discovery
- AWS > Neptune > DB Cluster > Discovery
- AWS > Neptune > DB Cluster > Usage
- AWS > Neptune > DB Instance > Discovery
- AWS > Neptune > DB Instance > Usage
- AWS > NIST 800-53 > Region > At least one enabled trail should be present in a region
- AWS > NIST 800-53 > Region > AWS Security Hub should be enabled for an AWS Account
- AWS > NIST 800-53 > Region > GuardDuty should be enabled
- AWS > Outposts > Outpost > Discovery
- AWS > PCI v3.2.1 > Config > 1 AWS Config should be enabled
- AWS > PCI v3.2.1 > GuardDuty > 1 GuardDuty should be enabled
- AWS > QLDB > Ledger > Discovery
- AWS > QLDB > Ledger > Usage
- AWS > RDS > DB Cluster > Discovery
- AWS > RDS > DB Cluster > Usage
- AWS > RDS > DB Cluster Parameter Group > Discovery
- AWS > RDS > DB Cluster Parameter Group > Usage
- AWS > RDS > DB Cluster Snapshot [Manual] > Discovery
- AWS > RDS > DB Cluster Snapshot [Manual] > Usage
- AWS > RDS > DB Instance > Discovery
- AWS > RDS > DB Instance > Usage
- AWS > RDS > DB Parameter Group > Discovery
- AWS > RDS > DB Parameter Group > Usage
- AWS > RDS > DB Snapshot [Manual] > Discovery
- AWS > RDS > DB Snapshot [Manual] > Usage
- AWS > RDS > Option Group > Discovery
- AWS > RDS > Option Group > Usage
- AWS > RDS > Stack
- AWS > RDS > Subnet Group > Discovery
- AWS > RDS > Subnet Group > Usage
- AWS > Redshift > Cluster > Discovery
- AWS > Redshift > Cluster > Usage
- AWS > Redshift > Cluster Parameter Group > Discovery
- AWS > Redshift > Cluster Parameter Group > Usage
- AWS > Redshift > Cluster Subnet Group > Discovery
- AWS > Redshift > Cluster Subnet Group > Usage
- AWS > Redshift > Manual Cluster Snapshot > Discovery
- AWS > Redshift > Manual Cluster Snapshot > Usage
- AWS > Resource Access Manager > Resource Share > Discovery
- AWS > Resource Access Manager > Resource Share > Usage
- AWS > RoboMaker > Fleet > Discovery
- AWS > RoboMaker > Fleet > Usage
- AWS > RoboMaker > Robot > Discovery
- AWS > RoboMaker > Robot > Usage
- AWS > RoboMaker > Robot Application > Discovery
- AWS > RoboMaker > Robot Application > Usage
- AWS > Route 53 Resolver > Resolver Endpoint > Discovery
- AWS > Route 53 Resolver > Resolver Rule > Discovery
- AWS > S3 > Bucket > Discovery
- AWS > SageMaker > Code Repository > Discovery
- AWS > SageMaker > Domain > Discovery
- AWS > SageMaker > Endpoint > Discovery
- AWS > SageMaker > Endpoint Configuration > Discovery
- AWS > SageMaker > Lifecycle Configuration > Discovery
- AWS > SageMaker > Model > Discovery
- AWS > SageMaker > Notebook Instance > Discovery
- AWS > SageMaker > Training Job > Discovery
- AWS > Secrets Manager > Secret > Discovery
- AWS > Security Hub > Hub > Discovery
- AWS > SES > Identity > Discovery
- AWS > SES > Identity > Usage
- AWS > SNS > Topic > Discovery
- AWS > SQS > Queue > Discovery
- AWS > SQS > Queue > Usage
- AWS > SQS > Stack
- AWS > SSM > Association > Discovery
- AWS > SSM > Association > Usage
- AWS > SSM > Document > Discovery
- AWS > SSM > Document > Usage
- AWS > SSM > Inventory Management
- AWS > SSM > Maintenance Window > Discovery
- AWS > SSM > Managed Instance > Discovery
- AWS > SSM > Parameter > Discovery
- AWS > SSM > Parameter > Usage
- AWS > SSM > Stack
- AWS > Step Functions > State Machine > Discovery
- AWS > Storage Gateway > Gateway > Discovery
- AWS > Storage Gateway > Tape Pool > Discovery
- AWS > SWF > Domain > Discovery
- AWS > Turbot > Audit Trail
- AWS > Turbot > Encryption > KMS
- AWS > Turbot > Event Handlers
- AWS > Turbot > Event Handlers [Global]
- AWS > Turbot > Event Poller
- AWS > Turbot > Logging > Bucket
- AWS > VPC > Customer Gateway > Discovery
- AWS > VPC > Customer Gateway > Usage
- AWS > VPC > Default VPC > Approved
- AWS > VPC > DHCP Options > Discovery
- AWS > VPC > DHCP Options > Usage
- AWS > VPC > Egress Only Internet Gateway > Usage
- AWS > VPC > Elastic IP > Discovery
- AWS > VPC > Elastic IP > Usage
- AWS > VPC > Endpoint > Usage
- AWS > VPC > Endpoint Service > Discovery
- AWS > VPC > Endpoint Service > Usage
- AWS > VPC > Flow Log > Usage
- AWS > VPC > Internet Gateway > Discovery
- AWS > VPC > Internet Gateway > Usage
- AWS > VPC > NAT Gateway > Usage
- AWS > VPC > Network ACL > Usage
- AWS > VPC > Peering Connection > Discovery
- AWS > VPC > Peering Connection > Usage
- AWS > VPC > Route Table > Usage
- AWS > VPC > Security Group > Usage
- AWS > VPC > Stack
- AWS > VPC > Subnet > Usage
- AWS > VPC > Transit Gateway > Discovery
- AWS > VPC > Transit Gateway > Usage
- AWS > VPC > Transit Gateway Attachment > Discovery
- AWS > VPC > Transit Gateway Route Table > Discovery
- AWS > VPC > Transit Gateway Route Table > Usage
- AWS > VPC > VPC > Discovery
- AWS > VPC > VPC > Usage
- AWS > VPC > VPN Connection > Discovery
- AWS > VPC > VPN Connection > Usage
- AWS > VPC > VPN Gateway > Discovery
- AWS > VPC > VPN Gateway > Usage
- AWS > WAF > IP Set v2 Regional > Discovery
- AWS > WAF > IP Set v2 Regional > Usage
- AWS > WAF > Regex Pattern Set v2 Regional > Discovery
- AWS > WAF > Rule Group v2 Regional > Discovery
- AWS > WAF > Web ACL v2 Regional > Discovery
- AWS > WAF > Web ACL v2 Regional > Usage
- AWS > WAF Regional > Rule > Discovery
- AWS > WAF Regional > Rule > Usage
- AWS > Well-Architected Tool > Workload > Discovery
- AWS > Well-Architected Tool > Workload > Usage
- AWS > WorkSpaces > WorkSpace > Discovery
- AWS > WorkSpaces > WorkSpace > Usage
- AWS > X-Ray > Encryption Config > Discovery
Category
In Your Workspace
- Controls by Resource Type report
- Policy Settings by Resource Type report
- Resources by Resource Type report
Developers
- tmod:@turbot/aws#/resource/types/region
- tmod:@turbot/turbot#/resource/categories/cloudLocation
- turbot graphql resource --id "tmod:@turbot/aws#/resource/types/region"
Get Resource- select * from guardrails_resource where resource_type_uri = 'tmod:@turbot/aws#/resource/types/region';
- select * from guardrails_policy_setting where filter = 'resourceTypeId:"tmod:@turbot/aws#/resource/types/region"';
- select * from guardrails_notification where resource_type_uri = 'tmod:@turbot/aws#/resource/types/region' and notification_type in ('resource_updated', 'resource_created');
Get ResourceGet Policy Settings (By Resource ID)Get Resource Notification
Resource Type URI
Category URI
GraphQL
CLI
Steampipe Query