AWS Config

AWS Config

About TrustRadius Scoring
Score 9.0 out of 100
AWS Config


Recent Reviews

Reviewer Pros & Cons

View all pros & cons

Video Reviews

Leaving a video review helps other professionals like you evaluate products. Be the first one in your network to record a review of AWS Config, and make your voice heard!


View all pricing

What is AWS Config?

Amazon Web Services offers AWS Config, a service that provides monitoring and assessment of AWS resource configurations to support compliance auditing, change management and troubleshooting, with resource histories and comparison of historical configurations against planned configurations.

Entry-level set up fee?

  • No setup fee
For the latest information on pricing, visit


  • Free Trial
  • Free/Freemium Version
  • Premium Consulting / Integration Services

Would you like us to let the vendor know that you want pricing?

Alternatives Pricing

What is Ansible?

The Red Hat Ansible Automation Platform (acquired by Red Hat in 2015) is a foundation for building and operating automation across an organization. The platform includes tools needed to implement enterprise-wide automation, and can automate resource provisioning, and IT environments and…

What is Terraform?

Terraform from HashiCorp is a cloud infrastructure automation tool that enables users to create, change, and improve production infrastructure, and it allows infrastructure to be expressed as code. It codifies APIs into declarative configuration files that can be shared amongst team members, treated…

Features Scorecard

No scorecards have been submitted for this product yet..

Product Details

What is AWS Config?

AWS Config is a service that enables users to assess, audit, and evaluate the configurations of AWS resources. Config continuously monitors and records AWS resource configurations and allows users to automate the evaluation of recorded configurations against desired configurations. With Config, users can review changes in configurations and relationships between AWS resources, dive into detailed resource configuration histories, and determine overall compliance against the configurations specified in internal guidelines. This enables users to simplify compliance auditing, security analysis, change management, and operational troubleshooting.

AWS Config Features

  • Supported: Configuration history of AWS resources
  • Supported: Configuration history of software
  • Supported: Resource relationships tracking
  • Supported: Configurable and customizable rules
  • Supported: Automatic remediation with Config rules
  • Supported: Conformance packs
  • Supported: Multi-account, multi-region data aggregation
  • Supported: Custom configuration
  • Supported: Configuration snapshots
  • Supported: Cloud governance dashboard
  • Supported: Partner solutions

AWS Config Videos

AWS Config: Assess, Audit and Evaluate your AWS Resources
Automated Compliance and Governance: AWS Config and AWS CloudTrail
Essentials: Introducing Config Rules

AWS Config Integrations

AWS Config Competitors

AWS Config Technical Details

Deployment TypesOn-premise
Operating SystemsWindows, Linux, Mac
Mobile ApplicationNo
Supported CountriesAmericas, Europe, Middle East, Africa, Asia Pacific


View all alternatives

Compare with

Frequently Asked Questions

What is AWS Config?

Amazon Web Services offers AWS Config, a service that provides monitoring and assessment of AWS resource configurations to support compliance auditing, change management and troubleshooting, with resource histories and comparison of historical configurations against planned configurations.

What is AWS Config's best feature?

Reviewers rate Performance highest, with a score of 9.6.

Who uses AWS Config?

The most common users of AWS Config are from Enterprises (1,001+ employees) and the Computer Software industry.

Reviews and Ratings




(1-6 of 6)
Companies can't remove reviews or game the system. Here's why
Score 9 out of 10
Vetted Review
Verified User
Review Source
We use AWS Config to keep track of all changes to our resources by invoking the Describe or API calls. It helps us to provide a detailed view of the resources associated with our AWS account.
  • A detailed view of the resources associated within the account
  • How resources are configured
  • Enables us to assess, audit, and evaluate the configurations of our AWS resources
  • Sometime the app is slow
  • Cost is factor when there are multiple accounts associated
AWS Config is easy to use and set up in the environment. AWS C onfig helps in scenario where you need to be compliant and by integrating with a ticketing system all users will be notified if they are non-compliant.
Score 9 out of 10
Vetted Review
Verified User
Review Source
Having migrated to the AWS cloud over the last year and a half, we started with AWS from the beginning. It is great to check if your implemented resources align with what you want and/or AWS best practices and to keep a history of all the configuration changes. Both are very helpful for any compliance question you might encounter.
  • Great to track config changes and helpful for troubleshooting.
  • Great for compliance questions you might get.
  • It's only AWS, no third party.
  • Not the most intuitive interface, but with a little getting used to it is OK.
To keep track of changes and to answer many compliance issues this is a life-saver. AWS does a good job providing tools like this. Any AWS workload should be monitored with AWS Config. It even is great for troubleshooting and seeing who changed what at what time.
Score 8 out of 10
Vetted Review
Verified User
Review Source
We use AWS Config to ensure our resources on AWS adhere to AWS best practices. It is used to assess and evaluate your AWS services and their configuration. There is also the option for automatic remediation when a service is found to be breaching a rule. AWS Config is a great tool for [the] governance of your AWS accounts.
  • The ability to track changes in AWS is paramount, AWS config allows you to do this
  • Allows the auditing of an AWS account
  • Can view history of an account that has AWS config enabled
  • Vendor [lock-in] as this is only available on AWS
  • [The] interface is dated and is [in] need of updating by AWS
  • Graphing is [...] not the easiest to configure
The specific situation we find it useful to use AWS Config is to apply config rules to enforce certain audit requirements, from ISO 9001/27001 for example. This means we know that no resources can be created that will breach these audit requirements. However, as the [number] of rules start to grow it can become cumbersome to manage.
Score 7 out of 10
Vetted Review
Verified User
Review Source
We use AWS config to set a ground rule of our AWS configuration and resources. Since we are using AWS S3 for a lot of our critical resources, AWS config makes it easy for us to evaluate the configuration of those resources as well as tracking the configuration history to see whenever any configuration changes cause an issue to our service.
  • Track many AWS server configuration
  • Faster and easier audit process of your AWS services configuration
  • Keeping history of changes means its easy to spot any issues that occur whenever any changes happened
  • The interface is not really user friendly and the configuration option is not easy to use either
  • Only available for resources within AWS
  • Some service can be quite costly, we need to prioritise which service that we would apply AWS config to and leave the less important service without AWS config monitoring
It's really good if your infrastructure services is all in AWS, that means everything could be audited and monitored using AWS config. You also can create alarms to notify you or your team about any changes on your AWS resources which is very useful to prevent abuse if you have a fairly large team. It's also very useful whenever some third party wants to audit your AWS resources, if you have a fairly comprehensive AWS config configured, the auditing process will be easy since they only need to look at your AWS config setup.
Score 7 out of 10
Vetted Review
Verified User
Review Source
AWS Config allows us to monitor our configuration of AWS resources, whether that be configuration history so we can view any changes which might have caused an issue; or if we want to be able to replicate workloads in a previous configuration.

This also allows us to save all our configurations within an S3 bucket.

We get alerts on some workloads via SNS when applicable.
  • We are able to use AWS config to track changes within our environments.
  • We use AWS Config across multiple accounts (environment segregation) whilst maintaining a central (fully backed up because stores in S3 managed repository.
  • Vendor lock-in, no easy migration path for example if you want to move some workloads to Azure, you'd not be able to lift and shift.
  • Only at an AWS resource perspective - cannot do desired state configuration at an OS level (which makes sense but be good if you could even as a separate feature within AWS Config).
Ideal for compliance monitoring - so providing easy visibility on what volumes aren't encrypted, S3 buckets requests only come from HTTPS sites, RDS is encrypted at rest by default.

There are lots of useful scenarios whereby we use this. Other examples [of how] we use AWS Config include Redshift cluster configuration check, cloud trial is enabled.
Score 8 out of 10
Vetted Review
Verified User
Review Source
AWS Config is used to assess, audit, and evaluate the configuration of your AWS resources. It is implemented in many applications that use AWS to deploy. It helps in assessment, operational auditing and general governance of AWS resources.
  • It can help you define rules for provisioning and configuring of your AWS. We use it for this purpose.
  • It maintains configuration history. So you can use the AWS Management Console, API, or CLI to obtain details of past configurations
  • It gives you a configuration snapshot of all of your AWS resources and you can store it in AWS S3.
  • You can integrate it with AWS CloudTrail to correlate configuration changes to particular events in your account.
  • Dashboarding and graphs should be better and more configurable.
  • Some time the Config Rules are difficult to understand and configure. They could be made easy or have GUI to configure them. I know it is difficult to build but that would be a good win.
If you have multiple resources in your AWS environment then AWS Config can provide you with audit, governance, and comparison of any changes to your resource configuration over time. You can create alerts to be notified via AWS SNS if any configuration changes, which is very useful for development teams. Governance in an organization, like “Who made the change?”, “From what IP address?” is a very useful audit and operational governance tool.