What is Tag Editor?

Tag Editor enables you to effectively manage tags. Tags are key and value pairs that act as metadata for organizing your Amazon resources. With most Amazon resources, you have the option of adding tags when you create the resource. Examples of resources include an Amazon Elastic Compute Cloud (Amazon EC2) instance, an Amazon Simple Storage Service (Amazon S3) bucket, or a secret in Amazon Secrets Manager.

Important

Do not store personally identifiable information (PII) or other confidential or sensitive information in tags. We use tags to provide you with billing and administration services. Tags are not intended to be used for private or sensitive data.

Tags can help you manage, identify, organize, search for, and filter resources. You can create tags to categorize resources by purpose, owner, environment, or other criteria.

Each tag has two parts:

A tag key (for example, CostCenter, Environment, or Project). Tag keys are case sensitive.
A tag value (for example, 111122223333 or Production). Like tag keys, tag values are case sensitive.

Note

Although tag keys are case sensitive, IAM has additional validations for IAM resources to prevent the application of tag keys that only differ in casing. We recommend not using keys that only differ in casing. Instead, you can use Service Control Policies (SPCs), which provide central control over the maximum available permissions for the IAM users and IAM roles in your organization.

Resource tagging methods

There are three ways to add tags to your Amazon resources:

Amazon Web Service API operation – The tagging API operations supported directly an Amazon Web Service. To discover what tagging functionality each Amazon Web Service provides, see the service's documentation in the Amazon documentation index.
Tag Editor console – Some services support tagging with the Tag Editor console.
Resource Groups Tagging API – Most services also support tagging using the Amazon Resource Groups Tagging API.

Note

You can also use Amazon Service Catalog TagOptions Library to easily manage tags on provisioned products. A TagOption is a key-value pair managed in Service Catalog. It is not an Amazon tag, but serves as a template for creating an Amazon tag based on the TagOption.

You can tag resources for all cost-accruing services in Amazon. For the following services, Amazon recommends newer alternative Amazon Web Services that support tagging to better meet customer use cases.

Amazon Cloud Directory	Amazon CloudSearch	Amazon Cognito Sync
Amazon Data Pipeline	Amazon Elastic Transcoder	Amazon Machine Learning
Amazon OpsWorks Stacks	Amazon S3 Glacier Direct	Amazon SimpleDB
Amazon WorkSpaces Application Manager

Learn more

This page provides general information on tagging Amazon resources. For more information about tagging resources in a particular Amazon service, see its documentation. The following are also good sources of information about tagging:

For information about the Amazon Resource Groups Tagging API, see the Resource Groups Tagging API Reference Guide.
For information about the tagging functionality each Amazon Web Service provides, see the service's documentation in the Amazon documentation index.
For information about using tags in IAM policies to help control who can view and interact with your Amazon resources, see Controlling access to and for IAM users and roles using tags in the IAM User Guide.

Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Best practices and strategies