There are a few ways to determine how your resources have been tagged:
- Using the Asset reports
- Creating a Perspective
- Utilizing Policies
Using Asset Reports
You are able to pull in specific tag fields within the Asset reports to get an idea of how your infrastructure has been tagged. Simply open any Asset report (i.e. AWS Instances), click "Edit Columns" towards the top of the page, and scroll down to the bottom of the Available Columns to pull in any tags you would like. Click "Update" and you'll now have specific tag information associated to the asset type selected displayed in the report. The new fields will show the value associated to the tag or be blank if no value has been assigned.
Creating a Perspective
Perspectives can be categorized by tag so they are a great way to get an idea of the resources that are tagged with specific key/value pairs. For instance, if you have a "Business Unit" tag that you would like to report on, all the various values and corresponding assets will be pulled in. NOTE: This will only include assets that were properly tagged. Be sure your organization has healthy tagging practices as you may be leaving out untagged infrastructure from your perspective if they were not properly tagged resulting in inaccurate reporting.
For more information on how to create a perspective, see: How to Build a Perspective
Policies can be used as a great resource to identify infrastructure that is untagged. The following example will identify all untagged resources but you have the ability to add in additional conditions for specific tags. This policy does not need to be saved as you can get a current list of untagged resources by clicking the "Test Rule" button:
This policy as well as other best practice policies can be found here: AWS Best Practice Policies