Resources

AWS Resource Types

Background

A Resource is an entity within your AWS account, such as an EC2 Instance, S3 Bucket, IAM User, and more. When you connect your account to Panther, all resources are scanned for secure configurations based on the policies defined in an account..

The schemas for each resource are defined in the following sections, which outline the structure and common fields.

A Meta Resource provides context on a given service for an entire account, which is useful in understanding whether or not it is configured. For example, the CloudTrail Meta resource allows you to ensure at least one CloudTrail is setup in an account.

Common Fields

The below fields are common across all AWS resources.

Field Name

Description

AccountId

The ID of the AWS Account the resource resides in

Arn

The fully qualified Amazon Resource Name, if one exists

Id

The AWS unique identifier, if one exists

Name

The AWS name, if one exists

Region

The region the resource exists in, with a value of GLOBAL_REGION if the resource is not regional

ResourceId

The Panther unique identifier

ResourceType

The categorization of the resource, such as AWS.EC2.Instance

Tags

A map of key/value pair labels that may be assigned to an AWS resource, when any exist

TimeCreated

An RFC3339 timestamp of when the resource was created. This is not set if the information is not provided by the AWS API or if not applicable, such as in Meta resources