This product is not supported for your selected Datadog site. ().

aws_securityhub_configuration_policy

account_id

Type: STRING

arn

Type: STRING
Provider name: Arn
Description: The ARN of the configuration policy.

configuration_policy

Type: STRUCT
Provider name: ConfigurationPolicy
Description: An object that defines how Security Hub is configured. It includes whether Security Hub is enabled or disabled, a list of enabled security standards, a list of enabled or disabled security controls, and a list of custom parameter values for specified controls. If the policy includes a list of security controls that are enabled, Security Hub disables all other controls (including newly released controls). If the policy includes a list of security controls that are disabled, Security Hub enables all other controls (including newly released controls).

  • security_hub
    Type: STRUCT
    Provider name: SecurityHub
    Description: The Amazon Web Services service that the configuration policy applies to.
    • enabled_standard_identifiers
      Type: UNORDERED_LIST_STRING
      Provider name: EnabledStandardIdentifiers
      Description: A list that defines which security standards are enabled in the configuration policy.
    • security_controls_configuration
      Type: STRUCT
      Provider name: SecurityControlsConfiguration
      Description: An object that defines which security controls are enabled in the configuration policy. The enablement status of a control is aligned across all of the enabled standards in an account.
      • disabled_security_control_identifiers
        Type: UNORDERED_LIST_STRING
        Provider name: DisabledSecurityControlIdentifiers
        Description: A list of security controls that are disabled in the configuration policy. Security Hub enables all other controls (including newly released controls) other than the listed controls.
      • enabled_security_control_identifiers
        Type: UNORDERED_LIST_STRING
        Provider name: EnabledSecurityControlIdentifiers
        Description: A list of security controls that are enabled in the configuration policy. Security Hub disables all other controls (including newly released controls) other than the listed controls.
      • security_control_custom_parameters
        Type: UNORDERED_LIST_STRUCT
        Provider name: SecurityControlCustomParameters
        Description: A list of security controls and control parameter values that are included in a configuration policy.
        • parameters
          Type: STRING
          Provider name: Parameters
          Description: An object that specifies parameter values for a control in a configuration policy.
        • security_control_id
          Type: STRING
          Provider name: SecurityControlId
          Description: The ID of the security control.
    • service_enabled
      Type: BOOLEAN
      Provider name: ServiceEnabled
      Description: Indicates whether Security Hub is enabled in the policy.

created_at

Type: TIMESTAMP
Provider name: CreatedAt
Description: The date and time, in UTC and ISO 8601 format, that the configuration policy was created.

description

Type: STRING
Provider name: Description
Description: The description of the configuration policy.

id

Type: STRING
Provider name: Id
Description: The UUID of the configuration policy.

name

Type: STRING
Provider name: Name
Description: The name of the configuration policy.

tags

Type: UNORDERED_LIST_STRING

updated_at

Type: TIMESTAMP
Provider name: UpdatedAt
Description: The date and time, in UTC and ISO 8601 format, that the configuration policy was last updated.