aws-native.connect.SecurityProfile

AWS Cloud Control v1.40.0, Dec 11 25

We recommend new projects start with resources from the AWS provider.

AWS Cloud Control v1.40.0 published on Thursday, Dec 11, 2025 by Pulumi

Schema (JSON)

pulumi/pulumi-aws-native

We recommend new projects start with resources from the AWS provider.

AWS Cloud Control v1.40.0 published on Thursday, Dec 11, 2025 by Pulumi

Schema (JSON)

pulumi/pulumi-aws-native

Create SecurityProfile Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new SecurityProfile(name: string, args: SecurityProfileArgs, opts?: CustomResourceOptions);

@overload
def SecurityProfile(resource_name: str,
                    args: SecurityProfileArgs,
                    opts: Optional[ResourceOptions] = None)

@overload
def SecurityProfile(resource_name: str,
                    opts: Optional[ResourceOptions] = None,
                    instance_arn: Optional[str] = None,
                    allowed_access_control_hierarchy_group_id: Optional[str] = None,
                    allowed_access_control_tags: Optional[Sequence[SecurityProfileTagArgs]] = None,
                    applications: Optional[Sequence[SecurityProfileApplicationArgs]] = None,
                    description: Optional[str] = None,
                    granular_access_control_configuration: Optional[GranularAccessControlConfigurationPropertiesArgs] = None,
                    hierarchy_restricted_resources: Optional[Sequence[str]] = None,
                    permissions: Optional[Sequence[str]] = None,
                    security_profile_name: Optional[str] = None,
                    tag_restricted_resources: Optional[Sequence[str]] = None,
                    tags: Optional[Sequence[_root_inputs.TagArgs]] = None)

func NewSecurityProfile(ctx *Context, name string, args SecurityProfileArgs, opts ...ResourceOption) (*SecurityProfile, error)

public SecurityProfile(string name, SecurityProfileArgs args, CustomResourceOptions? opts = null)

public SecurityProfile(String name, SecurityProfileArgs args)
public SecurityProfile(String name, SecurityProfileArgs args, CustomResourceOptions options)

type: aws-native:connect:SecurityProfile
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name string: The unique name of the resource.
args SecurityProfileArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args SecurityProfileArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args SecurityProfileArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args SecurityProfileArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args SecurityProfileArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

SecurityProfile Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

The SecurityProfile resource accepts the following input properties:

InstanceArn string: The identifier of the Amazon Connect instance.
AllowedAccessControlHierarchyGroupId string: The identifier of the hierarchy group that a security profile uses to restrict access to resources in Amazon Connect.
AllowedAccessControlTags List<Pulumi.AwsNative.Connect.Inputs.SecurityProfileTag>: The list of tags that a security profile uses to restrict access to resources in Amazon Connect.
Applications List<Pulumi.AwsNative.Connect.Inputs.SecurityProfileApplication>: A list of third-party applications that the security profile will give access to.
Description string: The description of the security profile.
GranularAccessControlConfiguration Pulumi.AwsNative.Connect.Inputs.GranularAccessControlConfigurationProperties: The granular access control configuration for the security profile, including data table permissions.
HierarchyRestrictedResources List<string>: The list of resources that a security profile applies hierarchy restrictions to in Amazon Connect.
Permissions List<string>: Permissions assigned to the security profile.
SecurityProfileName string: The name of the security profile.
TagRestrictedResources List<string>: The list of resources that a security profile applies tag restrictions to in Amazon Connect.
Tags List<Pulumi.AwsNative.Inputs.Tag>: The tags used to organize, track, or control access for this resource.

InstanceArn string: The identifier of the Amazon Connect instance.
AllowedAccessControlHierarchyGroupId string: The identifier of the hierarchy group that a security profile uses to restrict access to resources in Amazon Connect.
AllowedAccessControlTags []SecurityProfileTagArgs: The list of tags that a security profile uses to restrict access to resources in Amazon Connect.
Applications []SecurityProfileApplicationArgs: A list of third-party applications that the security profile will give access to.
Description string: The description of the security profile.
GranularAccessControlConfiguration GranularAccessControlConfigurationPropertiesArgs: The granular access control configuration for the security profile, including data table permissions.
HierarchyRestrictedResources []string: The list of resources that a security profile applies hierarchy restrictions to in Amazon Connect.
Permissions []string: Permissions assigned to the security profile.
SecurityProfileName string: The name of the security profile.
TagRestrictedResources []string: The list of resources that a security profile applies tag restrictions to in Amazon Connect.
Tags TagArgs: The tags used to organize, track, or control access for this resource.

instanceArn String: The identifier of the Amazon Connect instance.
allowedAccessControlHierarchyGroupId String: The identifier of the hierarchy group that a security profile uses to restrict access to resources in Amazon Connect.
allowedAccessControlTags List<SecurityProfileTag>: The list of tags that a security profile uses to restrict access to resources in Amazon Connect.
applications List<SecurityProfileApplication>: A list of third-party applications that the security profile will give access to.
description String: The description of the security profile.
granularAccessControlConfiguration GranularAccessControlConfigurationProperties: The granular access control configuration for the security profile, including data table permissions.
hierarchyRestrictedResources List<String>: The list of resources that a security profile applies hierarchy restrictions to in Amazon Connect.
permissions List<String>: Permissions assigned to the security profile.
securityProfileName String: The name of the security profile.
tagRestrictedResources List<String>: The list of resources that a security profile applies tag restrictions to in Amazon Connect.
tags List<Tag>: The tags used to organize, track, or control access for this resource.

instanceArn string: The identifier of the Amazon Connect instance.
allowedAccessControlHierarchyGroupId string: The identifier of the hierarchy group that a security profile uses to restrict access to resources in Amazon Connect.
allowedAccessControlTags SecurityProfileTag[]: The list of tags that a security profile uses to restrict access to resources in Amazon Connect.
applications SecurityProfileApplication[]: A list of third-party applications that the security profile will give access to.
description string: The description of the security profile.
granularAccessControlConfiguration GranularAccessControlConfigurationProperties: The granular access control configuration for the security profile, including data table permissions.
hierarchyRestrictedResources string[]: The list of resources that a security profile applies hierarchy restrictions to in Amazon Connect.
permissions string[]: Permissions assigned to the security profile.
securityProfileName string: The name of the security profile.
tagRestrictedResources string[]: The list of resources that a security profile applies tag restrictions to in Amazon Connect.
tags Tag[]: The tags used to organize, track, or control access for this resource.

instance_arn str: The identifier of the Amazon Connect instance.
allowed_access_control_hierarchy_group_id str: The identifier of the hierarchy group that a security profile uses to restrict access to resources in Amazon Connect.
allowed_access_control_tags Sequence[SecurityProfileTagArgs]: The list of tags that a security profile uses to restrict access to resources in Amazon Connect.
applications Sequence[SecurityProfileApplicationArgs]: A list of third-party applications that the security profile will give access to.
description str: The description of the security profile.
granular_access_control_configuration GranularAccessControlConfigurationPropertiesArgs: The granular access control configuration for the security profile, including data table permissions.
hierarchy_restricted_resources Sequence[str]: The list of resources that a security profile applies hierarchy restrictions to in Amazon Connect.
permissions Sequence[str]: Permissions assigned to the security profile.
security_profile_name str: The name of the security profile.
tag_restricted_resources Sequence[str]: The list of resources that a security profile applies tag restrictions to in Amazon Connect.
tags Sequence[TagArgs]: The tags used to organize, track, or control access for this resource.

instanceArn String: The identifier of the Amazon Connect instance.
allowedAccessControlHierarchyGroupId String: The identifier of the hierarchy group that a security profile uses to restrict access to resources in Amazon Connect.
allowedAccessControlTags List<Property Map>: The list of tags that a security profile uses to restrict access to resources in Amazon Connect.
applications List<Property Map>: A list of third-party applications that the security profile will give access to.
description String: The description of the security profile.
granularAccessControlConfiguration Property Map: The granular access control configuration for the security profile, including data table permissions.
hierarchyRestrictedResources List<String>: The list of resources that a security profile applies hierarchy restrictions to in Amazon Connect.
permissions List<String>: Permissions assigned to the security profile.
securityProfileName String: The name of the security profile.
tagRestrictedResources List<String>: The list of resources that a security profile applies tag restrictions to in Amazon Connect.
tags List<Property Map>: The tags used to organize, track, or control access for this resource.

Outputs

All input properties are implicitly available as output properties. Additionally, the SecurityProfile resource produces the following output properties:

Id string: The provider-assigned unique ID for this managed resource.
LastModifiedRegion string: The AWS Region where this resource was last modified.
LastModifiedTime double: The timestamp when this resource was last modified.
SecurityProfileArn string: The Amazon Resource Name (ARN) for the security profile.

Id string: The provider-assigned unique ID for this managed resource.
LastModifiedRegion string: The AWS Region where this resource was last modified.
LastModifiedTime float64: The timestamp when this resource was last modified.
SecurityProfileArn string: The Amazon Resource Name (ARN) for the security profile.

id String: The provider-assigned unique ID for this managed resource.
lastModifiedRegion String: The AWS Region where this resource was last modified.
lastModifiedTime Double: The timestamp when this resource was last modified.
securityProfileArn String: The Amazon Resource Name (ARN) for the security profile.

id string: The provider-assigned unique ID for this managed resource.
lastModifiedRegion string: The AWS Region where this resource was last modified.
lastModifiedTime number: The timestamp when this resource was last modified.
securityProfileArn string: The Amazon Resource Name (ARN) for the security profile.

id str: The provider-assigned unique ID for this managed resource.
last_modified_region str: The AWS Region where this resource was last modified.
last_modified_time float: The timestamp when this resource was last modified.
security_profile_arn str: The Amazon Resource Name (ARN) for the security profile.

id String: The provider-assigned unique ID for this managed resource.
lastModifiedRegion String: The AWS Region where this resource was last modified.
lastModifiedTime Number: The timestamp when this resource was last modified.
securityProfileArn String: The Amazon Resource Name (ARN) for the security profile.

Supporting Types

GranularAccessControlConfigurationProperties, GranularAccessControlConfigurationPropertiesArgs

The granular access control configuration for the security profile, including data table permissions.

DataTableAccessControlConfiguration Pulumi.AwsNative.Connect.Inputs.SecurityProfileDataTableAccessControlConfiguration: The access control configuration for data tables.

DataTableAccessControlConfiguration SecurityProfileDataTableAccessControlConfiguration: The access control configuration for data tables.

dataTableAccessControlConfiguration SecurityProfileDataTableAccessControlConfiguration: The access control configuration for data tables.

dataTableAccessControlConfiguration SecurityProfileDataTableAccessControlConfiguration: The access control configuration for data tables.

data_table_access_control_configuration SecurityProfileDataTableAccessControlConfiguration: The access control configuration for data tables.

dataTableAccessControlConfiguration Property Map: The access control configuration for data tables.

SecurityProfileApplication, SecurityProfileApplicationArgs

A third-party application's metadata.

ApplicationPermissions List<string>: The permissions that the agent is granted on the application
Namespace string: Namespace of the application that you want to give access to.

ApplicationPermissions []string: The permissions that the agent is granted on the application
Namespace string: Namespace of the application that you want to give access to.

applicationPermissions List<String>: The permissions that the agent is granted on the application
namespace String: Namespace of the application that you want to give access to.

applicationPermissions string[]: The permissions that the agent is granted on the application
namespace string: Namespace of the application that you want to give access to.

application_permissions Sequence[str]: The permissions that the agent is granted on the application
namespace str: Namespace of the application that you want to give access to.

applicationPermissions List<String>: The permissions that the agent is granted on the application
namespace String: Namespace of the application that you want to give access to.

SecurityProfileDataTableAccessControlConfiguration, SecurityProfileDataTableAccessControlConfigurationArgs

Defines the access control configuration for data tables.

PrimaryAttributeAccessControlConfiguration Pulumi.AwsNative.Connect.Inputs.SecurityProfilePrimaryAttributeAccessControlConfigurationItem: The configuration's primary attribute access control configuration.

PrimaryAttributeAccessControlConfiguration SecurityProfilePrimaryAttributeAccessControlConfigurationItem: The configuration's primary attribute access control configuration.

primaryAttributeAccessControlConfiguration SecurityProfilePrimaryAttributeAccessControlConfigurationItem: The configuration's primary attribute access control configuration.

primaryAttributeAccessControlConfiguration SecurityProfilePrimaryAttributeAccessControlConfigurationItem: The configuration's primary attribute access control configuration.

primary_attribute_access_control_configuration SecurityProfilePrimaryAttributeAccessControlConfigurationItem: The configuration's primary attribute access control configuration.

primaryAttributeAccessControlConfiguration Property Map: The configuration's primary attribute access control configuration.

SecurityProfilePrimaryAttributeAccessControlConfigurationItem, SecurityProfilePrimaryAttributeAccessControlConfigurationItemArgs

Contains the configuration for record-based access control.

PrimaryAttributeValues List<Pulumi.AwsNative.Connect.Inputs.SecurityProfilePrimaryAttributeValue>: An array of PrimaryAttributeValue objects.

PrimaryAttributeValues []SecurityProfilePrimaryAttributeValue: An array of PrimaryAttributeValue objects.

primaryAttributeValues List<SecurityProfilePrimaryAttributeValue>: An array of PrimaryAttributeValue objects.

primaryAttributeValues SecurityProfilePrimaryAttributeValue[]: An array of PrimaryAttributeValue objects.

primary_attribute_values Sequence[SecurityProfilePrimaryAttributeValue]: An array of PrimaryAttributeValue objects.

primaryAttributeValues List<Property Map>: An array of PrimaryAttributeValue objects.

SecurityProfilePrimaryAttributeValue, SecurityProfilePrimaryAttributeValueArgs

An object defining the access control for a specific attribute and its values.

AccessType Pulumi.AwsNative.Connect.SecurityProfilePrimaryAttributeValueAccessType: Specifies the type of access granted. Currently, only "ALLOW" is supported
AttributeName string: The name of the primary attribute.
Values List<string>: An array of allowed primary values for the specified primary attribute.

AccessType SecurityProfilePrimaryAttributeValueAccessType: Specifies the type of access granted. Currently, only "ALLOW" is supported
AttributeName string: The name of the primary attribute.
Values []string: An array of allowed primary values for the specified primary attribute.

accessType SecurityProfilePrimaryAttributeValueAccessType: Specifies the type of access granted. Currently, only "ALLOW" is supported
attributeName String: The name of the primary attribute.
values List<String>: An array of allowed primary values for the specified primary attribute.

accessType SecurityProfilePrimaryAttributeValueAccessType: Specifies the type of access granted. Currently, only "ALLOW" is supported
attributeName string: The name of the primary attribute.
values string[]: An array of allowed primary values for the specified primary attribute.

access_type SecurityProfilePrimaryAttributeValueAccessType: Specifies the type of access granted. Currently, only "ALLOW" is supported
attribute_name str: The name of the primary attribute.
values Sequence[str]: An array of allowed primary values for the specified primary attribute.

accessType "ALLOW": Specifies the type of access granted. Currently, only "ALLOW" is supported
attributeName String: The name of the primary attribute.
values List<String>: An array of allowed primary values for the specified primary attribute.

SecurityProfilePrimaryAttributeValueAccessType, SecurityProfilePrimaryAttributeValueAccessTypeArgs

Allow: ALLOW

SecurityProfilePrimaryAttributeValueAccessTypeAllow: ALLOW

Allow: ALLOW

Allow: ALLOW

ALLOW: ALLOW

"ALLOW": ALLOW

SecurityProfileTag, SecurityProfileTagArgs

A key-value pair to associate with a resource.

Key string: The key name of the tag. You can specify a value that is 1 to 128 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.
Value string: The value for the tag. You can specify a value that is 0 to 256 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.

Key string: The key name of the tag. You can specify a value that is 1 to 128 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.
Value string: The value for the tag. You can specify a value that is 0 to 256 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.

key String: The key name of the tag. You can specify a value that is 1 to 128 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.
value String: The value for the tag. You can specify a value that is 0 to 256 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.

key string: The key name of the tag. You can specify a value that is 1 to 128 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.
value string: The value for the tag. You can specify a value that is 0 to 256 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.

key str: The key name of the tag. You can specify a value that is 1 to 128 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.
value str: The value for the tag. You can specify a value that is 0 to 256 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.

key String: The key name of the tag. You can specify a value that is 1 to 128 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.
value String: The value for the tag. You can specify a value that is 0 to 256 Unicode characters in length and cannot be prefixed with aws:. You can use any of the following characters: the set of Unicode letters, digits, whitespace, _, ., /, =, +, and -.

Tag, TagArgs

A set of tags to apply to the resource.

Key string: The key name of the tag
Value string: The value of the tag

Key string: The key name of the tag
Value string: The value of the tag

key String: The key name of the tag
value String: The value of the tag

key string: The key name of the tag
value string: The value of the tag

key str: The key name of the tag
value str: The value of the tag

key String: The key name of the tag
value String: The value of the tag

Package Details

Repository: AWS Native pulumi/pulumi-aws-native
License: Apache-2.0

We recommend new projects start with resources from the AWS provider.

AWS Cloud Control v1.40.0 published on Thursday, Dec 11, 2025 by Pulumi

Schema (JSON)

pulumi/pulumi-aws-native

aws-native.connect.SecurityProfile

On this page

On this page

Create SecurityProfile Resource

Constructor syntax

Parameters

SecurityProfile Resource Properties

Inputs

Outputs

Supporting Types

GranularAccessControlConfigurationProperties, GranularAccessControlConfigurationPropertiesArgs

SecurityProfileApplication, SecurityProfileApplicationArgs

SecurityProfileDataTableAccessControlConfiguration, SecurityProfileDataTableAccessControlConfigurationArgs

SecurityProfilePrimaryAttributeAccessControlConfigurationItem, SecurityProfilePrimaryAttributeAccessControlConfigurationItemArgs

SecurityProfilePrimaryAttributeValue, SecurityProfilePrimaryAttributeValueArgs

SecurityProfilePrimaryAttributeValueAccessType, SecurityProfilePrimaryAttributeValueAccessTypeArgs

SecurityProfileTag, SecurityProfileTagArgs

Tag, TagArgs

Package Details

On this page

On this page