AWS Service Catalog のアイコン

AWS Service Catalog Specialized2015年〜

A catalog service for delivering approved IT services across your organization via self-service

About 3 min read

What It Does

AWS Service Catalog lets organizations create and manage a catalog of approved IT services, enabling end users to provision resources via self-service. Administrators define products based on CloudFormation templates or Terraform configurations, group them into portfolios, and publish them to specific users or teams. End users simply select a product from the catalog, and pre-approved resources are automatically provisioned.

Use Cases

Providing standardized development environments to dev teams, self-service deployment of analytics platforms for data science teams, automating initial environment setup for new hires, distributing compliance-ready infrastructure templates, standardizing common resources across multi-account environments, and resource provisioning with per-department cost controls.

Everyday Analogy

Think of an internal office supply catalog. If employees could freely choose any computer or equipment, management becomes chaotic. By selecting from an approved catalog and submitting a request, they're guaranteed to receive products that meet company standards. Service Catalog works the same way - IT publishes only approved resource configurations as a catalog, maintaining governance while enabling self-service.

What Is Service Catalog?

AWS Service Catalog bridges IT governance and self-service provisioning. In large organizations, letting developers freely create resources risks non-compliant configurations. But requiring IT approval for every resource slows development. Service Catalog solves this by publishing safe configuration templates as a catalog, balancing developer autonomy with organizational governance.

Managing Products and Portfolios

The core concepts in Service Catalog are Products and Portfolios. Products are defined from CloudFormation templates or Terraform configurations and support version control. Portfolios group multiple products and grant access to IAM users, groups, or roles. For example, a data analytics team portfolio might include Redshift clusters, Glue jobs, and S3 buckets, while a development team portfolio includes EC2 instances, RDS databases, and Lambda functions. For comprehensive best practices on managing products and portfolios, technical books on Amazon are recommended.

Constraints and Tag Management

Service Catalog lets you set constraints on product provisioning. Launch constraints allow resources to be created with a specified role regardless of the end user's IAM permissions. Template constraints restrict parameter choices - for example, limiting instance types to specific sizes. The TagOption feature automatically applies organization-standard tags to all provisioned resources, ensuring consistent cost allocation and management.

Things to Watch Out For

  • Product version updates are not automatically applied to already-provisioned products - plan user notifications and migration strategies in advance
  • Set portfolio sharing scope appropriately and apply constraints to prevent unintended users from provisioning high-cost resources
共有するXB!

Related Services

AWS CloudFormation iconAWS CloudFormationAn IaC service that defines and provisions AWS resources as code using templatesAWS Organizations iconAWS OrganizationsA service for centrally managing multiple AWS accountsAWS Config iconAWS ConfigA service that records and evaluates AWS resource configuration changes and continuously monitors compliance

Related Articles

IT Service Provisioning - Self-Service Infrastructure Delivery with AWS Service CatalogLearn how to catalog approved IT services with AWS Service Catalog and enable self-service infrastructure provisioning through CloudFormation integration. This article covers operational patterns that maintain governance while empowering development teams.Procuring Software on AWS Marketplace - SaaS Subscriptions and Private OffersProcure third-party software in three delivery models (AMI, container, SaaS) and consolidate billing with AWS. Learn about organization-wide governance with Private Marketplace and automating contract management.IT Governance with AWS Service Catalog - Standardizing Approved Products and Enabling Self-ServiceLearn how to catalog IT-approved CloudFormation templates and safely provide end-user self-service through launch constraints and template constraints.

More in This Category

AWS AppFabric iconAWS AppFabric NewA service that standardizes and aggregates audit logs from SaaS applicationsAWS AppConfig iconAWS AppConfig SpecializedA service for safely deploying and managing application configurationAWS Chatbot iconAWS Chatbot SpecializedAn interactive agent that delivers AWS notifications and enables resource operations through Slack and Microsoft TeamsAWS CloudFormation iconAWS CloudFormation EssentialAn IaC service that defines and provisions AWS resources as code using templatesAWS CloudTrail iconAWS CloudTrail EssentialA service that records and monitors API activity in your AWS accountAmazon CloudWatch iconAmazon CloudWatch EssentialA service that provides monitoring, log management, and alarms for AWS resources and applicationsAWS Config iconAWS Config PopularA service that records and evaluates AWS resource configuration changes and continuously monitors complianceAWS Control Tower iconAWS Control Tower PopularA service that automates multi-account environment setup and governance

Similar Articles and Services

IT Service Provisioning - Self-Service Infrastructure Delivery with AWS Service CatalogLearn how to catalog approved IT services with AWS Service Catalog and enable self-service infrastructure provisioning through CloudFormation integration. This article covers operational patterns that maintain governance while empowering development teams.IT Governance with AWS Service Catalog - Standardizing Approved Products and Enabling Self-ServiceLearn how to catalog IT-approved CloudFormation templates and safely provide end-user self-service through launch constraints and template constraints.AWS Service CatalogA governance service that manages organization-approved CloudFormation templates as a catalog and provides end users with self-service resource provisioningAWS MarketplaceA digital catalog for finding, purchasing, and deploying third-party softwareProcuring Software on AWS Marketplace - SaaS Subscriptions and Private OffersProcure third-party software in three delivery models (AMI, container, SaaS) and consolidate billing with AWS. Learn about organization-wide governance with Private Marketplace and automating contract management.