Skip to main content

Which resources does Vanta fetch from AWS?

S
Written by Shannon DeLange
Updated over a week ago

The following items are the resource types that Vanta supports fetching in from Amazon Web Services (AWS).

Supported Resources

  • AWS Access Analyzer

  • AWS Autoscaling Group

  • AWS Certificate

  • AWS CloudTrail

  • AWS CloudWatch Log Group

  • AWS CloudWatch Metric Alarm

  • AWS CodeCommit Repo

  • AWS Config Recorder

  • AWS Credential Report

  • AWS DocumentDB Cluster

  • AWS DynamoDB Table

  • AWS EBS Volume

  • AWS EC2 Instance

  • AWS ECR Container Repository

  • AWS ECR Container Vulnerability

  • AWS ECS Cluster

  • AWS ECS Service

  • AWS ECS Standalone Task

  • AWS EFS File System

  • AWS EKS Cluster

  • AWS EKS Node

  • AWS Flow Log

  • AWS Group

  • AWS Guard Duty Detector

  • AWS IAM Identity Center User

  • AWS IAM Policy

  • AWS IAM User

  • AWS Inspector Vulnerability

  • AWS KMS Key

  • AWS Lambda Function

  • AWS Load Balancer

  • AWS Network ACL

  • AWS Organization Account

  • AWS Password Policy

  • AWS RDS Instance

  • AWS Redshift Cluster

  • AWS Role

  • AWS Route Table

  • AWS S3 Bucket

  • AWS Security Group

  • AWS Security Hub

  • AWS SQS Queue

  • AWS Subnet

  • AWS VPC

Resources not listed above are not supported at the moment.

How do I track the resources Vanta does not support fetching?

Administrators have the option to add these unsupported resources custom inventory items. You can see Bulk Upload Custom Inventory Items and Tracking Inventory in Vanta for details on this. Once the items are admins can add a description and specify if the resource contains user data or not.

Administrators will also need to work with their auditor to collect manual evidence for these resources and store this evidence as a Custom Document in Vanta.