518 min read

AWS CLI Command Reference Guide L - Z

November 11, 2021

AWS CLI Reference Guide L - Z

This guide details all of the commands available starting with L- Z for each AWS service supported by the AWS command line interface application.

To view the CLI commands A - Z see this post : 

https://www.hava.io/blog/aws-cli-command-reference-guide-a-k

The format of an AWS CLI instruction is:

aws [options] <command/service> <subcommand> [parameters]

 Eg:   aws --output table  s3  ls s3://mybucket

In the above example :

[options] :  --output table   (tells aws to ignore the default output format and return a table)

<command/service> : s3

<subcommand> : ls  (list the buckets or contents of a nominated S3 bucket if one is included)

[parameters] : s3://mybucket  (tells aws to list the contents of an S3 bucket called “mybucket”

In this guide we’ll first detail the options that are available to each CLI command prior to the command/service and then look at the services and their subcommands.

The [options] available to all CLI commands are:

--ca-bundle - Specify CA certificate bundle to use when verifying SSL

--color - Support color output (on/off/auto)

--cli-binary-format - Formatting style for binary blobs (base64 / raw-in-base64)

--cli-connect-timeout - Maximum socket connect timeout in seconds (default is 60)

--cli-read-timeout - Maximum socket read time in seconds (default is 60)

--debug -  Turn on debug logging

--endpoint-url - Specify URL to override the command’s default endpoint

--no-cli-auto-prompt - Disables auto-prompt for single command

--no-cli-pager - Disables pager use for output

--no-paginate - Disable automatic pagination

--no-sign-request - Don’t load credentials for the command

--no-verify-ssl - Override the default usage of SSL when connecting to AWS

--output - Format in json / text / table / yaml / yaml-stream

--profile - Use a specific profile from your credentials file

--query - A JMESPath query to use in filtering the response data

--region - Specify a region to override your default region

--version - Display the version of the CLI

AWS CLI commands

lakeformation

Defines the public endpoint for the AWS Lake Formation service.

Commands : 

lambda

AWS Lambda is an event-driven, serverless computing platform provided by Amazon as a part of Amazon Web Services. It is a computing service that runs code in response to events and automatically manages the computing resources required by that code.

Commands : 

lex-models

Amazon Lex is an AWS service for building conversational voice and text interfaces. Use these actions to create, update, and delete conversational bots for new and existing client applications.

Commands : 

lex-runtime

Amazon Lex provides both build and runtime endpoints. Each endpoint provides a set of operations (API). Your conversational bot uses the runtime API to understand user utterances (user input text or voice).

Commands : 

lexv2-models

Lex models v2

Commands : 

lexv2-runtime

Lex Runtime V2

Commands :

license-manager

License Manager makes it easier to manage licenses from software vendors across multiple Amazon Web Services accounts and on-premises servers.

Commands : 

lightsail

Amazon Lightsail is the easiest way to get started with Amazon Web Services (AWS) for developers who need to build websites or web applications. It includes everything you need to launch your project quickly - instances (virtual private servers), container services, storage buckets, managed databases, SSD-based block storage, static IP addresses, load balancers, content delivery network (CDN) distributions, DNS management of registered domains, and resource snapshots (backups)

Commands : 

location

Suite of geospatial services including Maps, Places, Routes, Tracking, and Geofencing

Commands : 

logs

You can use Amazon CloudWatch Logs to monitor, store, and access your log files from EC2 instances, CloudTrail, and other sources.

Commands :

lookoutequipment

Amazon Lookout for Equipment is a machine learning service that uses advanced analytics to identify anomalies in machines from sensor data for use in predictive maintenance.

Commands :

lookoutmetrics

Manage and monitor metrics for Lookout devices.

Commands :

lookoutvision

Amazon Lookout for Vision enables you to find visual defects in industrial products, accurately and at scale.

Commands : 

machinelearning

Definition of the public APIs exposed by Amazon Machine Learning.

Commands :

macie

Amazon Macie Classic is a security service that uses machine learning to automatically discover, classify, and protect sensitive data in AWS. Macie Classic recognizes sensitive data such as personally identifiable information (PII) or intellectual property, and provides you with dashboards and alerts that give visibility into how this data is being accessed or moved.

Commands :

macie2

Amazon Macie 2 is a fully managed data security and data privacy service that uses machine learning and pattern matching to discover and protect your sensitive data in AWS.

Commands :

managedblockchain

Amazon Managed Blockchain is a fully managed service for creating and managing blockchain networks using open-source frameworks.

Commands :

marketplace-catalog

Catalog API actions allow you to manage your entities through list, describe, and update capabilities. An entity can be a product or an offer on AWS Marketplace.

Commands :

marketplace-entitlement

AWS Marketplace Entitlement Service is used to determine the entitlement of a customer to a given product.

Commands :

marketplacecommerceanalytics

Provides AWS Marketplace business intelligence data on-demand.

Commands :

mediaconnect

API for AWS Elemental MediaConnect

Commands :

mediaconvert

AWS Elemental MediaConvert

Commands :

medialive

API for AWS Elemental MediaLive

Commands :

mediapackage

AWS Elemental MediaPackage

Commands :

mediapackage-vod

AWS Elemental MediaPackage VOD

Commands:

mediastore

An AWS Elemental MediaStore container is a namespace that holds folders and objects. You use a container endpoint to create, read, and delete objects.

Commands :

mediastore-data

An AWS Elemental MediaStore asset is an object, similar to an object in the Amazon S3 service. Objects are the fundamental entities that are stored in AWS Elemental MediaStore.

Commands :

mediatailor

Use the AWS Elemental MediaTailor SDKs and CLI to configure scalable ad insertion and linear channels. With MediaTailor, you can assemble existing content into a linear stream and serve targeted ads to viewers while maintaining broadcast quality in over-the-top (OTT) video applications.

Commands :

memorydb

MemoryDB for Redis is a fully managed, Redis-compatible, in-memory database that delivers ultra-fast performance

Commands :

meteringmarketplace

This reference provides descriptions of the low-level AWS Marketplace Metering Service API.

AWS Marketplace sellers can use this API to submit usage data for custom usage dimensions.

Commands :

mgh

The AWS Migration Hub API helps to obtain server and application migration status and provides a programmatic interface to Migration Hub.

Commands :

mgn

The Application Migration Service

Commands :

migrationhub-config

The AWS Migration Hub home region APIs are available specifically for working with your Migration Hub home region. You can use these APIs to determine a home region, as well as to create and work with controls that describe the home region.

Commands :

mobile

AWS Mobile Service provides mobile app and website developers with capabilities required to configure AWS resources and bootstrap their developer desktop projects with the necessary SDKs, constants, tools and samples.

Commands :

mq

Amazon MQ is a managed message broker service for Apache ActiveMQ and RabbitMQ that makes it easy to set up and operate message brokers in the cloud.

Commands :

mturk

Amazon Mechanical Turk is a crowdsourcing website for businesses to hire remotely located "crowdworkers" to perform discrete on-demand tasks that computers are currently unable to do.

Commands :

mwaa

Amazon Managed Workflows for Apache Airflow

Commands :

neptune

Amazon Neptune is a fast, reliable, fully-managed graph database service that makes it easy to build and run applications that work with highly connected datasets.

Commands :

network-firewall

Network Firewall is a stateful, managed, network firewall and intrusion detection and prevention service for Amazon Virtual Private Cloud

Commands : 

networkmanager

Transit Gateway Network Manager (Network Manager) enables you to create a global network, in which you can monitor your Amazon Web Services and on-premises networks that are built around transit gateways.

Commands :

nimble

Nimble Studio is a virtual studio that empowers visual effects, animation, and interactive content teams to create content securely within a scalable, private cloud service.

Commands :

opensearch

The search service formerly know as ElasticSearch. Opensearch API allows you to create, configure and manage OpenSearch service domains.

Commands :

opsworks

AWS OpsWorks Stacks is an application management service that provides an integrated experience for overseeing the complete application lifecycle.

Commands :

opsworks-cm

You can use AWS OpsWorks CM to create and manage AWS OpsWorks for Chef Automate and AWS OpsWorks for Puppet Enterprise servers, and add or remove nodes for the servers to manage.

Commands :

organizations

AWS Organizations is a web service that enables you to consolidate your multiple AWS accounts into an organization and centrally manage your accounts and their resources.

Commands : 

outposts

AWS Outposts is a fully managed service that extends AWS infrastructure, APIs, and tools to customer premises.

Commands :

panorama

With AWS Panorama, you can build computer vision applications for your business or customers without purchasing special cameras. By using the AWS Panorama Appliance with your existing network cameras, you can run applications that use machine learning (ML) to collect data from video streams, output video with text and graphical overlays, and interact with other AWS services.

Commands : 

personalize

Amazon Personalize is a machine learning service that makes it easy to add individualized recommendations to customers.

Commands : 

personalize-events

Amazon Personalize can consume real-time user event data, such as stream or click data, and use it for model training either alone or combined with historical data.

Commands : 

personalize-runtime

The runtime API for Personalize.

Commands :

pi

Amazon RDS Performance Insights enables you to monitor and explore different dimensions of database load based on data captured from a running DB instance.

Commands : 

pinpoint

Amazon Pinpoint is a flexible and scalable outbound and inbound marketing communications service. You can connect with customers over channels like email, SMS, push, voice or in-app messaging.

Commands : 

pinpoint-email

The Amazon Pinpoint Email API provides programmatic access to options that are unique to the email channel and supplement the options provided by the Amazon Pinpoint API.

Commands : 

pinpoint-sms-voice

Pinpoint SMS and Voice Messaging public facing APIs

Commands : 

polly

Amazon Polly is a web service that makes it easy to synthesize speech from text.

Commands : 

pricing

Use the pricing CLI to programmatically query AWS for services, products, and pricing information.

Commands : 

proton

The AWS Proton service is a two-pronged automation framework. Administrators create service templates to provide standardized infrastructure and deployment tooling for serverless and container based applications. Developers, in turn, select from the available service templates to automate their application or service deployments.

Commands : 

qldb

Amazon Quantum Ledger Database (QLDB) is a fully managed ledger database that provides a transparent, immutable, and cryptographically verifiable transaction log.

Commands : 

qldb-session

The transactional data APIs for Amazon QLDB

Commands : 

quicksight

Amazon QuickSight is a fully managed, serverless business intelligence service for AWS.

Commands : 

ram

RAM is a service that helps you securely share your Amazon Web Services resources across Amazon Web Services accounts and within your organization or organizational units (OUs) in Organizations.

Commands : 

rds

Amazon Relational Database Service (Amazon RDS) is a web service that makes it easier to set up, operate, and scale a relational database in the cloud.

Commands : 

rds-data

Amazon RDS provides an HTTP endpoint to run SQL statements on an Amazon Aurora Serverless DB cluster.

Commands : 

redshift

Amazon Redshift manages all the work of setting up, operating, and scaling a data warehouse: provisioning capacity, monitoring and backing up the cluster, and applying patches and upgrades to the Amazon Redshift engine.

Commands : 

redshift-data

You can use the Amazon Redshift Data API to run queries on Amazon Redshift tables.

Commands : 

rekognition

Amazon Rekognition offers pre-trained and customizable computer vision (CV) capabilities to extract information and insights from your images and videos.

Commands : 

resource-groups

AWS Resource Groups lets you organize AWS resources such as Amazon EC2 instances, Amazon Relational Database Service databases, and Amazon S3 buckets into groups using criteria that you define as tags.

Commands : 

resourcegroupstaggingapi

Resource group tagging api

Commands : 

robomaker

AWS RoboMaker is a cloud-based simulation service that enables robotics developers to run, scale, and automate simulation without managing any infrastructure.

Commands : 

route53

Amazon Route 53 is a highly available and scalable Domain Name System (DNS) web service.

Commands : 

route53-recovery-cluster

Welcome to the Amazon Route 53 Application Recovery Controller API Reference Guide for Recovery Control Data Plane .

Commands : 

route53-recovery-control-config

Recovery Control Configuration API Reference for Amazon Route 53 Application Recovery Controller.

Commands : 

route53-recovery-readiness

AWS Route53 Recovery Readiness

Commands : 

route53domains

Amazon Route 53 API actions let you register domain names and perform related operations.

Commands : 

route53resolver

When you create a VPC using Amazon VPC, you automatically get DNS resolution within the VPC from Route 53 Resolver.

Commands : 

s3

Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services that provides object storage through a web service interface. Amazon S3 uses the same scalable storage infrastructure that Amazon.com uses to run its global e-commerce network.

Commands : 

s3api

S3 API to manage buckets, folders and content in S3

Commands : 

s3control

Amazon Web Services S3 Control provides access to Amazon S3 control plane actions.

Commands : 

s3outposts

Amazon S3 on Outposts provides access to S3 on Outposts operations.

Commands : 

sagemaker

Amazon SageMaker is a cloud machine-learning platform that was launched in November 2017. SageMaker enables developers to create, train, and deploy machine-learning models in the cloud.

Commands : 

sagemaker-a2i-runtime

Amazon Augmented AI (Amazon A2I) adds the benefit of human judgment to any machine learning application. When an AI application can’t evaluate data with a high degree of confidence, human reviewers can take over. 

Commands : 

sagemaker-edge

SageMaker Edge Manager dataplane service for communicating with active agents.

Commands : 

sagemaker-featurestore-runtime

Amazon SageMaker Feature Store is a fully managed, purpose-built repository to store, update, retrieve, and share machine learning (ML) features.

Commands : 

sagemaker-runtime

The Amazon SageMaker runtime API.

Commands : 

savingsplans

Savings Plans are a pricing model that offer significant savings on AWS usage (for example, on Amazon EC2 instances). You commit to a consistent amount of usage, in USD per hour, for a term of 1 or 3 years, and receive a lower price for that usage.

Commands : 

schemas

Amazon EventBridge Schema Registry

Commands : 

sdb

Amazon SimpleDB is a web service providing the core database functions of data indexing and querying in the cloud.

Commands : 

secretsmanager

Amazon Web Services Secrets Manager provides a service to enable you to store, manage, and retrieve, secrets.

Commands : 

securityhub

Security Hub provides you with a comprehensive view of the security state of your Amazon Web Services environment and resources. It also provides you with the readiness status of your environment based on controls from supported security standards.

Commands : 

serverlessrepo

The AWS Serverless Application Repository makes it easy for developers and enterprises to quickly find and deploy serverless applications in the AWS Cloud.

Commands : 

service-quotas

With Service Quotas, you can view and manage your quotas easily as your AWS workloads grow. Quotas, also referred to as limits, are the maximum number of resources that you can create in your AWS account.

Commands : 

servicecatalog

AWS Service Catalog enables organizations to create and manage catalogs of IT services that are approved for AWS.

Commands : 

servicecatalog-appregistry

Amazon Web Services Service Catalog AppRegistry enables organizations to understand the application context of their Amazon Web Services resources.

Commands : 

servicediscovery

With Cloud Map, you can configure public DNS, private DNS, or HTTP namespaces that your microservice applications run in. When an instance becomes available, you can call the Cloud Map API to register the instance with Cloud Map.

Commands : 

ses

Amazon Simple Email Service (SES) is a cost-effective, flexible, and scalable email service that enables developers to send mail from within any application.

Commands : 

sesv2

Amazon Simple Email Service (SES) Version 2

Commands : 

shield

AWS Shield is a managed Distributed Denial of Service (DDoS) protection service that safeguards applications running on AWS.

Commands : 

signer

AWS Signer is a fully managed code signing service to help you ensure the trust and integrity of your code.

Commands : 

sms

AWS Server Migration Service (AWS SMS) makes it easier and faster for you to migrate your on-premises workloads to AWS. 

Commands : 

snow-device-management

Amazon Web Services Snow Device Management documentation.

Commands : 

snowball

AWS Snow Family is a petabyte-scale data transport solution that uses secure devices to transfer large amounts of data between your on-premises data centers and Amazon Simple Storage Service (Amazon S3).

Commands : 

sns

Amazon Simple Notification Service (Amazon SNS) is a web service that enables you to build distributed web-enabled applications. Applications can use Amazon SNS to easily push real-time notification messages to interested subscribers over multiple delivery protocols.

Commands : 

sqs

Amazon SQS is a reliable, highly-scalable hosted queue for storing messages as they travel between applications or microservices. Amazon SQS moves data between distributed application components and helps you decouple these components.

Commands : 

ssm

Amazon Web Services Systems Manager is a collection of capabilities that helps you automate management tasks such as collecting system inventory, applying operating system (OS) patches, automating the creation of Amazon Machine Images (AMIs), and configuring operating systems (OSs) and applications at scale. 

Commands : 

ssm-contacts

Control the contacts who receive notifications from SSM incidents.

Commands : 

ssm-incidents

Systems Manager Incident Manager is an incident management console designed to help users mitigate and recover from incidents affecting their Amazon Web Services-hosted applications.

Commands : 

sso

AWS Single Sign-On Portal is a web service that makes it easy for you to assign user access to AWS SSO resources such as the user portal. Users can get AWS account applications and roles assigned to them and get federated into the application.

Commands : 

sso-admin

Manages SSO operations

Commands : 

sso-oidc

AWS Single Sign-On (SSO) OpenID Connect (OIDC) is a web service that enables a client (such as AWS CLI or a native application) to register with AWS SSO.

Commands : 

stepfunctions

AWS Step Functions is a service that lets you coordinate the components of distributed applications and microservices using visual workflows.

Commands : 

storagegateway

Storage Gateway is the service that connects an on-premises software appliance with cloud-based storage to provide seamless and secure integration between an organization’s on-premises IT environment and the Amazon Web Services storage infrastructure. 

Commands : 

sts

Security Token Service (STS) enables you to request temporary, limited-privilege credentials for Identity and Access Management (IAM) users or for users that you authenticate (federated users).

Commands : 

support

The AWS Support API Reference is intended for programmers who need detailed information about the AWS Support operations and data types. You can use the API to manage your support cases programmatically.

Commands : 

swf

The Amazon Simple Workflow Service (Amazon SWF) makes it easy to build applications that use Amazon’s cloud to coordinate work across distributed components. In Amazon SWF, a task represents a logical unit of work that is performed by a component of your workflow. Coordinating tasks in a workflow involves managing intertask dependencies, scheduling, and concurrency in accordance with the logical flow of the application.

Commands :

synthetics

You can use Amazon CloudWatch Synthetics to continually monitor your services. You can create and manage canaries , which are modular, lightweight scripts that monitor your endpoints and APIs from the outside-in.

Commands : 

textract

Amazon Textract detects and analyzes text in documents and converts it into machine-readable text.

Commands : 

timestream-query

Timestream's purpose-built, adaptive query engine allows you to access data across storage tiers using a single SQL statement.

Commands : 

timestream-write

Amazon Timestream is a fast, scalable, fully managed time series database service that makes it easy to store and analyze trillions of time series data points per day. With Timestream, you can easily store and analyze IoT sensor data to derive insights from your IoT applications

Commands : 

transcribe

Operations and objects for transcribing speech to text.

Commands : 

transfer

Amazon Web Services Transfer Family is a fully managed service that enables the transfer of files over the File Transfer Protocol (FTP), File Transfer Protocol over SSL (FTPS), or Secure Shell (SSH) File Transfer Protocol (SFTP) directly into and out of Amazon Simple Storage Service (Amazon S3).

Commands : 

translate

Provides translation between one source language and another.

Commands : 

voice-id

Amazon Connect Voice ID provides real-time caller authentication and fraud screening.

Commands : 

waf

AWS Web application firewall

Commands : 

waf-regional

WAF for application load balancers

Commands : 

wafv2

WAF is a web application firewall that lets you monitor the HTTP and HTTPS requests that are forwarded to Amazon CloudFront, an Amazon API Gateway REST API, an Application Load Balancer, or an AppSync GraphQL API.

Commands : 

wellarchitected

The AWS Well-Architected Tool API provides programmatic access to the AWS Well-Architected Tool 

Commands : 

wisdom

All Amazon Connect Wisdom functionality is accessible using the API. For example, you can create an assistant and a knowledge base.

Commands : 

workdocs

Amazon WorkDocs is a fully managed, secure content creation, storage, and collaboration service. With Amazon WorkDocs, you can easily create, edit, and share content, and because it’s stored centrally on AWS, access it from anywhere on any device.

Commands : 

worklink

Amazon WorkLink is a cloud-based service that provides secure access to internal websites and web apps from iOS and Android phones.

Commands : 

workmail

Amazon WorkMail is a secure, managed business email and calendaring service with support for existing desktop and mobile email clients. You can access your email, contacts, and calendars using Microsoft Outlook, your browser, or other native iOS and Android email applications.

Commands : 

workmailmessageflow

The WorkMail Message Flow API provides access to email messages as they are being sent and received by a WorkMail organization.

Commands : 

workspaces

Amazon WorkSpaces enables you to provision virtual, cloud-based Microsoft Windows and Amazon Linux desktops for your users.

Commands : 

xray

Amazon Web Services X-Ray provides APIs for managing debug traces and retrieving service maps and other data created by processing those traces.

Commands :