Posted On: Jul 24, 2023
Today, Amazon CloudFormation StackSets launches a new API ListStackInstanceResourceDrifts, and adds a new filter in ListStackInstances to improve access to resource and stack instance drift information. A resource or stack instance is considered drifted when it’s actual configuration differs from its expected configuration. You can now use ListStackInstanceResourceDrifts to list and filter resources in a stack instance according to drift status. Similarly, you can use the drift status filter in ListStackInstances to check for stack instance drift in a stack set. With this launch, you can access these aggregated drift information through your management or delegated administrator Amazon Web Services account.
Customers use CloudFormation StackSets to provision and manage stacks in multiple Amazon Web Services accounts and Regions in a single operation. However, resources might get modified or deleted which causes them to differ from their initial template configurations. Previously, customers had to individually sign in to target Amazon Web Services accounts to access this drift information. This launch reduces the number of clicks, and gives the same information in your management or delegated administrator Amazon Web Services account. For example, you can identify drifted stack instances for target accounts by Regions such as cn-north-1 and cn-northwest-1 with ListStackInstances. You can use ListStackInstanceResourceDrifts to list drifted resources for these Amazon Web Services accounts in cn-north-1 and cn-northwest-1 for planning next steps.
You can use these features via Amazon Web Services Management Console, Amazon Command Line Interface, and Amazon Software Development Kits (SDKs). These features are now available in the Amazon Web Services China (Beijing) Region, operated by Sinnet, and the Amazon Web Services China (Ningxia) Region, operated by NWCD. To learn more about these features, visit CloudFormation StackSets documentation.