Amazon Systems Manager Inventory - Amazon Systems Manager
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

Amazon Systems Manager Inventory

Amazon Systems Manager Inventory provides visibility into your Amazon computing environment. You can use Inventory to collect metadata from your managed nodes. You can store this metadata in a central Amazon Simple Storage Service (Amazon S3) bucket, and then use built-in tools to query the data and quickly determine which nodes are running the software and configurations required by your software policy, and which nodes need to be updated. You can configure Inventory on all of your managed nodes by using a one-click procedure. You can also configure and view inventory data from multiple Amazon Web Services Regions and Amazon Web Services accounts. To get started with Inventory, open the Systems Manager console. In the navigation pane, choose Inventory.

If the pre-configured metadata types collected by Systems Manager Inventory don't meet your needs, then you can create custom inventory. Custom inventory is simply a JSON file with information that you provide and add to the managed node in a specific directory. When Systems Manager Inventory collects data, it captures this custom inventory data. For example, if you run a large data center, you can specify the rack location of each of your servers as custom inventory. You can then view the rack space data when you view other inventory data.

Important

Systems Manager Inventory collects only metadata from your managed nodes. Inventory doesn't access proprietary information or data.

The following table describes the types of data you can collect with Systems Manager Inventory. The table also describes different offerings for targeting nodes and the collection intervals you can specify.

Configuration Details

Metadata types

You can configure Inventory to collect the following types of data:

  • Applications: Application names, publishers, versions, etc.

  • Amazon components: EC2 driver, agents, versions, etc.

  • Files: Name, size, version, installed date, modification and last accessed times, etc.

  • Network configuration: IP address, MAC address, DNS, gateway, subnet mask, etc.

  • Windows updates: Hotfix ID, installed by, installed date, etc.

  • Instance details: System name, operating systems (OS) name, OS version, DNS, domain, work group, OS architecture, etc.

  • Services: Name, display name, status, dependent services, service type, start type, etc.

  • Tags: Tags assigned to your nodes.

  • Windows Registry: Registry key path, value name, value type, and value.

  • Windows roles: Name, display name, path, feature type, installed state, etc.

  • Custom inventory: Metadata that was assigned to a managed node as described in Working with custom inventory.

Note

To view a list of all metadata collected by Inventory, see Metadata collected by inventory.

Nodes to target

You can choose to inventory all managed nodes in your Amazon Web Services account, individually select nodes, or target groups of nodes by using tags. For more information about collecting inventory data from all of your managed nodes, see Inventory all managed nodes in your Amazon Web Services account.

When to collect information

You can specify a collection interval in terms of minutes, hours, and days. The shortest collection interval is every 30 minutes.

Note

Depending on the amount of data collected, the system can take several minutes to report the data to the output you specified. After the information is collected, the data is sent over a secure HTTPS channel to a plain-text Amazon store that is accessible only from your Amazon Web Services account.

You can view the data in the Systems Manager console on the Inventory page, which includes several predefined cards to help you query the data.


            Systems Manager Inventory cards in the Systems Manager console.
Note

Inventory cards automatically filter out Amazon EC2 managed instances with a state of Terminated and Stopped. For on-premises and Amazon IoT Greengrass core device managed nodes, Inventory cards automatically filter out nodes with a state of Terminated.

If you create a resource data sync to synchronize and store all of your data in a single Amazon S3 bucket, then you can drill down into the data on the Inventory Detailed View page. For more information, see Querying inventory data from multiple Regions and accounts.

EventBridge support

This Systems Manager capability is supported as an event type in Amazon EventBridge rules. For information, see Monitoring Systems Manager events with Amazon EventBridge and Reference: Amazon EventBridge event patterns and types for Systems Manager.