• The AWS Systems Manager CloudWatch Dashboard will no longer be available after April 30, 2026. Customers can continue to use Amazon CloudWatch console to view, create, and manage their Amazon CloudWatch dashboards, just as they do today. For more information, see [Amazon CloudWatch Dashboard documentation](https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/CloudWatch_Dashboards.html).
# Using Explorer
This section includes information about how to customize AWS Systems Manager Explorer by changing the widget layout and by changing the data that displays in the dashboard.
**Topics**
+ [
# Editing EventBridge rules created for Explorer
](Explorer-using-editing-default-rules.md)
+ [
# Editing Systems Manager Explorer data sources
](Explorer-using-editing-data-sources.md)
+ [
# Customizing the Explorer display
](Explorer-using-filters.md)
+ [
# Receiving findings from AWS Security Hub CSPM in Explorer
](explorer-securityhub-integration.md)
+ [
# Deleting a Systems Manager Explorer resource data sync
](Explorer-using-resource-data-sync-delete.md)
# Editing EventBridge rules created for Explorer
When you complete Integrated Setup, the system allows more than a dozen rules in Amazon EventBridge. These rules automatically create OpsItems in AWS Systems Manager OpsCenter. AWS Systems Manager Explorer then displays aggregated information about the OpsItems.
Each rule includes a preset **Category** and **Severity** value. When the system creates OpsItems from an event, it automatically assigns the preset **Category** and **Severity**.
**Important**
You can't edit the **Category** and **Severity** values for default rules but you can edit these values on OpsItems created from the default rules.
![\[Default rules for creating OpsItems in Systems Manager Explorer\]](http://docs.aws.amazon.com/systems-manager/latest/userguide/images/explorer-default-rules.png)
**To edit default rules for creating OpsItems**
1. Open the AWS Systems Manager console at [https://console.aws.amazon.com/systems-manager/](https://console.aws.amazon.com/systems-manager/).
1. In the navigation pane, choose **Explorer**.
1. Choose **Settings**.
1. In the **OpsItems rules** section, choose **Edit**.
1. Expand **CWE rules**.
1. Clear the check box beside those rules that you don't want to use.
1. Use the **Category** and **Severity** lists to change this information for a rule.
1. Choose **Save**.
Your changes take effect the next time the system creates an OpsItem.
# Editing Systems Manager Explorer data sources
For AWS Regions that are available [by default](https://docs.aws.amazon.com/global-infrastructure/latest/regions/aws-regions.html), AWS Systems Manager Explorer displays data from the following sources. You can edit Explorer settings to add or remove data sources:
+ Amazon Elastic Compute Cloud (Amazon EC2)
+ AWS Systems Manager Inventory
+ AWS Systems Manager OpsCenter OpsItems
+ AWS Systems Manager Patch Manager patch compliance
+ AWS Systems Manager State Manager association compliance
+ AWS Trusted Advisor
+ AWS Compute Optimizer
+ AWS Support Center cases
+ AWS Config rule and resource compliance
+ AWS Security Hub CSPM findings
**Note**
For the Asia Pacific (Osaka) Region, Explorer doesn't display data from AWS Compute Optimizer and AWS Security Hub CSPM findings.
For the [AWS opt-in Regions](https://docs.aws.amazon.com/global-infrastructure/latest/regions/aws-regions.html#regions-opt-in-status), Explorer displays data from the following sources:
+ Amazon Elastic Compute Cloud (Amazon EC2)
+ AWS Systems Manager Inventory
+ AWS Systems Manager OpsCenter OpsItems
+ AWS Systems Manager Patch Manager patch compliance
+ AWS Systems Manager State Manager association compliance
+ AWS Trusted Advisor
+ AWS Support Center cases
+ AWS Config rule and resource compliance
**Note**
To view Support Center cases in Explorer, you must have either an Enterprise or Business account set up with Support.
You can't configure Explorer to stop displaying OpsCenter OpsItem data.
**Before you begin**
Verify that you set up and configured services that populate Explorer widgets with data. For more information, see [Setting up related services for Explorer](Explorer-setup-related-services.md).
**To edit data sources**
1. Open the AWS Systems Manager console at [https://console.aws.amazon.com/systems-manager/](https://console.aws.amazon.com/systems-manager/).
1. In the navigation pane, choose **Explorer**.
1. Choose **Settings**, and then choose the **Configure Dashboard** tab.
1. In the **OpsData sources** section, in the **Status** column, turn on or turn off sources according to the data you want to view.
# Customizing the Explorer display
You can customize widget layout in AWS Systems Manager Explorer by using a drag-and-drop capability. You can also customize the OpsData and OpsItems displayed in Explorer by using filters, as described in this topic.
Before you customize widget layout, verify that the widgets you want to view are currently displayed in Explorer. To view some widgets in Explorer (such as the AWS Config compliance widget), you must enable them on the **Configure dashboard** page.
**To enable widgets to display in Explorer**
1. Open the AWS Systems Manager console at [https://console.aws.amazon.com/systems-manager/](https://console.aws.amazon.com/systems-manager/).
1. In the navigation pane, choose **Explorer**.
1. Choose **Dashboard actions**, **Configure dashboard**.
1. Choose the **Configure Dashboard** tab.
1. Either choose **Enable all** or turn on an individual widget or data source.
1. Choose **Explorer** to view your changes.
To customize widget layout in Explorer, choose a widget that you want to move. Click and hold the name of the widget and then drag it to its new location.
![\[Moving a widget in Systems Manager Explorer\]](http://docs.aws.amazon.com/systems-manager/latest/userguide/images/explorer-customize.png)
Repeat this process for each widget that you want to reposition.
If you decide that you don't like the new layout, choose **Reset layout** to move all widgets back to their original location.
## Using filters to the change the data displayed in Explorer
By default, Explorer displays data for the current AWS account and the current Region. If you create one or more resource data syncs, you can use filters to change which sync is active. You can then choose to display data for a specific Region or all Regions. You can also use the Search bar to filter on different OpsItem and key-tag criteria.
**To change the data displayed in Explorer by using filters**
1. Open the AWS Systems Manager console at [https://console.aws.amazon.com/systems-manager/](https://console.aws.amazon.com/systems-manager/).
1. In the navigation pane, choose **Explorer**.
1. In the **Filter** section, use the **Select a resource data sync** list to choose a sync.
1. Use the **Regions** list to choose either a specific AWS Region or choose **All Regions**.
1. Choose the Search bar, and then choose the criteria on which to filter the data.
![\[Using the filters Search bar in Systems Manager Explorer\]](http://docs.aws.amazon.com/systems-manager/latest/userguide/images/explorer-filters.png)
1. Press Enter.
Explorer retains the filter options you selected if you close and reopen the page.
# Receiving findings from AWS Security Hub CSPM in Explorer
[AWS Security Hub CSPM](https://docs.aws.amazon.com/securityhub/latest/userguide/what-is-securityhub.html) provides a comprehensive view of your security state in AWS. The service collects security data, called *findings*, from across AWS accounts, services, and supported third-party products. Security Hub CSPM findings can help you check your environment against security industry standards and best practices, analyze your security trends, and identify the highest priority security issues.
Security Hub CSPM sends findings to Amazon EventBridge, which uses an event rule to send the findings to Explorer. After you enable integration, as described here, you can view Security Hub CSPM findings in an Explorer widget and view finding details in OpsCenter OpsItems. The widget provides a summary of all Security Hub CSPM findings based on severity. New findings in Security Hub CSPM are usually visible in Explorer within seconds of being created.
**Warning**
Note the following important information:
Explorer is integrated with OpsCenter, a tool in Systems Manager. After you enable Explorer integration with Security Hub CSPM, OpsCenter automatically creates OpsItems for Security Hub CSPM findings. Depending on your AWS environment, enabling integration can result in large numbers of OpsItems, at a cost.
Before you continue, read about OpsCenter integration with Security Hub CSPM. The topic includes specific details about how changes and updates to findings and OpsItems are charged to your account. For more information, see [Understanding OpsCenter integration with AWS Security Hub CSPM](OpsCenter-applications-that-integrate.md#OpsCenter-integrate-with-security-hub). For OpsCenter pricing information, see [AWS Systems Manager Pricing](https://aws.amazon.com/systems-manager/pricing/).
If you create a resource data sync in Explorer while logged into the administrator account, Security Hub CSPM integration is automatically enabled for the administrator and all member accounts in the sync. Once enabled, OpsCenter automatically creates OpsItems for Security Hub CSPM findings, at a cost. For more information about creating a resource data sync, see [Setting up Systems Manager Explorer to display data from multiple accounts and Regions](Explorer-resource-data-sync.md).
## Types of findings that Explorer receives
Explorer receives [all findings](https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-cwe-integration-types.html#securityhub-cwe-integration-types-all-findings) from Security Hub CSPM. You can see all findings based on severity in the Explorer widget when you turn on the Security Hub CSPM default settings. By default, Explorer creates OpsItems for critical and high severity findings. You can manually configure Explorer to create OpsItems for medium and low severity findings.
Though Explorer doesn't create OpsItems for informational findings, you can view informational operations data (OpsData) in the Security Hub CSPM findings summary widget. Explorer creates OpsData for all findings regardless of severity. For more information about Security Hub CSPM severity levels, see [Severity](https://docs.aws.amazon.com//securityhub/1.0/APIReference/API_Severity.html) in the *AWS Security Hub API Reference*.
## Enabling integration
This section describes how to enable and configure Explorer to start receiving Security Hub CSPM findings.
**Before you begin**
Complete the following tasks before you configure Explorer to start receiving Security Hub CSPM findings.
+ Enable and configure Security Hub CSPM. For more information, see [Setting up Security Hub CSPM](https://docs.aws.amazon.com/securityhub/latest/userguide/securityhub-settingup.html) in the *AWS Security Hub User Guide*.
+ Log into the AWS Organizations management account. Systems Manager requires access to AWS Organizations to create OpsItems from Security Hub CSPM findings. After you log in to the management account, you're prompted to select the **Enable access** button on the Explorer **Configure dashboard** tab, as described in the following procedure. If you don't log in to the AWS Organizations management account, you can't allow access and Explorer can't create OpsItems from Security Hub CSPM findings.
**To start receiving Security Hub CSPM findings**
1. Open the AWS Systems Manager console at [https://console.aws.amazon.com/systems-manager/](https://console.aws.amazon.com/systems-manager/).
1. In the navigation pane, choose **Explorer**.
1. Select **Settings**.
1. Select the **Configure dashboard** tab.
1. Select **AWS Security Hub CSPM**.
1. Select the **Disabled** slider to turn on **AWS Security Hub CSPM**.
Critical and high severity findings are displayed by default. To display medium and low severity findings, select the **Disabled** slider next to **Medium,Low**.
1. In the **OpsItems created by Security Hub CSPM findings** section, choose **Enable access**. If you don't see this button, log in to the AWS Organizations management account and return to this page to select the button.
## How to view findings from Security Hub CSPM
The following procedure describes how to view Security Hub CSPM findings.
**To view Security Hub CSPM findings**
1. Open the AWS Systems Manager console at [https://console.aws.amazon.com/systems-manager/](https://console.aws.amazon.com/systems-manager/).
1. In the navigation pane, choose **Explorer**.
1. Find the **AWS Security Hub CSPM findings summary** widget. This displays your Security Hub CSPM findings. You can select a severity level to view a detailed description of the corresponding OpsItem.
## How to stop receiving findings
The following procedure describes how to stop receiving Security Hub CSPM findings.
**To stop receiving Security Hub CSPM findings**
1. Open the AWS Systems Manager console at [https://console.aws.amazon.com/systems-manager/](https://console.aws.amazon.com/systems-manager/).
1. In the navigation pane, choose **Explorer**.
1. Select **Settings**.
1. Select the **Configure dashboard** tab.
1. Select the **Enabled** slider to turn off **AWS Security Hub CSPM**.
**Important**
If the option to disable Security Hub CSPM findings is grayed out in the console, you can disable this setting by running the following command in the AWS CLI. You must run the command while logged into either the AWS Organizations management account or the Systems Manager delegated administrator account. For the `region` parameter, specify the AWS Region where you want to stop receiving Security Hub CSPM findings in Explorer.
```
aws ssm update-service-setting --setting-id /ssm/opsdata/SecurityHub --setting-value Disabled --region AWS Region
```
Here's an example.
```
aws ssm update-service-setting --setting-id /ssm/opsdata/SecurityHub --setting-value Disabled --region us-east-1
```
# Deleting a Systems Manager Explorer resource data sync
In AWS Systems Manager Explorer, you can aggregate OpsData and OpsItems from other accounts and Regions by creating a resource data sync.
You can't change the account options for a resource data sync. For example, if you created a sync in the us-east-2 (Ohio) Region and you chose the **Include only the current account** option, you can't edit that sync later and choose the **Include all accounts from my AWS Organizations configuration** option. Instead, you must delete the resource data sync, and create a new one, as described in the following procedure.
**To delete a resource data sync**
1. Open the AWS Systems Manager console at [https://console.aws.amazon.com/systems-manager/](https://console.aws.amazon.com/systems-manager/).
1. In the navigation pane, choose **Explorer**.
1. Choose **Settings**.
1. In the **Configure resource data sync** section, choose the resource data sync that you want to delete.
1. Choose **Delete**.