Skip to content
By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post
About re:Post

How can I collect a list of AWS services currently being used in my account

0

Hi everyone,

I’m looking for guidance on the best way to collect a list of all AWS services that are currently being used in my AWS account.

Ideally, I’d like to know:

  1. Which AWS services have any resources deployed (e.g., EC2, S3, RDS, Lambda, etc.)
  2. Whether there is a native AWS tool, API, or script that can scan the account and generate this list
  3. Whether AWS provides a consolidated view across multiple Regions
  4. Any recommended approaches or best practices for getting this information accurately

I’m aware of tools like AWS Config, Cost Explorer, and the Resource Explorer, but I am not sure which one provides the most complete and reliable picture of “services in use.”

If anyone has done this before or can suggest the best method—CLI, API, or service—please share your approach. Thanks in advance!

Topics
Cloud Financial ManagementManagement & Governance
Tags
AWS Cost ExplorerAWS Resource ExplorerAWS Account ManagementAWS Config
Language
English
asked 13 days ago58 views
2 Answers
1

To collect a list of AWS services currently being used in your account, AWS IAM Service Access Reports provide the most comprehensive and authoritative solution. This native AWS feature delivers complete service usage data across your account by analyzing API authentication events.

Key capabilities of Service Access Reports:

  • Provides last access timestamps for each AWS service
  • Shows which entities accessed each service and when
  • Can be generated with a single API call
  • Offers cross-account visibility if you're using AWS Organizations, allowing you to see service usage across your entire organizational hierarchy

How it works: Service Access Reports answer the critical question: "For each service, view which account last accessed the service and when." The reports track actual service usage through API calls, giving you visibility into which services have been actively used rather than just which resources exist.

Implementation approach: You can automate this process by creating a solution that:

  • Uses the IAM API to generate Service Access Reports
  • Processes the reports to categorize services by usage patterns
  • Maintains a baseline of known services to detect new service adoption over time
  • Schedules regular scans (such as weekly) to monitor changes
  • Sends alerts when new services are detected

This approach provides the most complete picture of service usage across your AWS environment, including visibility across multiple regions and accounts if you're using AWS Organizations. The data comes directly from AWS's authentication and authorization layer, making it the definitive source for understanding which services are actually being used in your account.
Sources
How to Detect New AWS Service Usage In Your Organization | AWS re:Post

answered 13 days ago
AWS
EXPERT
reviewed 13 days ago
0

The AWS Cost Explorer and the Cost and Usage Report are also good ways to get a list of AWS services currently being used in an account. AWS Cost Explorer and the Cost and Usage Report (CUR) are core services for managing AWS spend. Cost Explorer provides a user-friendly, visual interface for real-time, high-level analysis, while the CUR is a CSV/Parquet file delivered to S3, offering granular, line-item, and resource-level data for in-depth audits and reporting.

answered 12 days ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Relevant content