AWS Native v0.49.0, Jan 26 23
AWS Native v0.49.0, Jan 26 23
aws-native.fms.Policy
Creates an AWS Firewall Manager policy.
Create Policy Resource
new Policy(name: string, args: PolicyArgs, opts?: CustomResourceOptions);
@overload
def Policy(resource_name: str,
opts: Optional[ResourceOptions] = None,
delete_all_policy_resources: Optional[bool] = None,
exclude_map: Optional[PolicyIEMapArgs] = None,
exclude_resource_tags: Optional[bool] = None,
include_map: Optional[PolicyIEMapArgs] = None,
policy_description: Optional[str] = None,
policy_name: Optional[str] = None,
remediation_enabled: Optional[bool] = None,
resource_set_ids: Optional[Sequence[str]] = None,
resource_tags: Optional[Sequence[PolicyResourceTagArgs]] = None,
resource_type: Optional[str] = None,
resource_type_list: Optional[Sequence[str]] = None,
resources_clean_up: Optional[bool] = None,
security_service_policy_data: Optional[PolicySecurityServicePolicyDataArgs] = None,
tags: Optional[Sequence[PolicyTagArgs]] = None)
@overload
def Policy(resource_name: str,
args: PolicyArgs,
opts: Optional[ResourceOptions] = None)
func NewPolicy(ctx *Context, name string, args PolicyArgs, opts ...ResourceOption) (*Policy, error)
public Policy(string name, PolicyArgs args, CustomResourceOptions? opts = null)
public Policy(String name, PolicyArgs args)
public Policy(String name, PolicyArgs args, CustomResourceOptions options)
type: aws-native:fms:Policy
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args PolicyArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args PolicyArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args PolicyArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args PolicyArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args PolicyArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Policy Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
The Policy resource accepts the following input properties:
- bool
- Remediation
Enabled bool - Security
Service Pulumi.Policy Data Aws Native. FMS. Inputs. Policy Security Service Policy Data Args - Delete
All boolPolicy Resources - Exclude
Map Pulumi.Aws Native. FMS. Inputs. Policy IEMap Args - Include
Map Pulumi.Aws Native. FMS. Inputs. Policy IEMap Args - Policy
Description string - Policy
Name string - Resource
Set List<string>Ids - List<Pulumi.
Aws Native. FMS. Inputs. Policy Resource Tag Args> - Resource
Type string - Resource
Type List<string>List - Resources
Clean boolUp - List<Pulumi.
Aws Native. FMS. Inputs. Policy Tag Args>
- bool
- Remediation
Enabled bool - Security
Service PolicyPolicy Data Security Service Policy Data Args - Delete
All boolPolicy Resources - Exclude
Map PolicyIEMap Args - Include
Map PolicyIEMap Args - Policy
Description string - Policy
Name string - Resource
Set []stringIds - []Policy
Resource Tag Args - Resource
Type string - Resource
Type []stringList - Resources
Clean boolUp - []Policy
Tag Args
- Boolean
- remediation
Enabled Boolean - security
Service PolicyPolicy Data Security Service Policy Data Args - delete
All BooleanPolicy Resources - exclude
Map PolicyIEMap Args - include
Map PolicyIEMap Args - policy
Description String - policy
Name String - resource
Set List<String>Ids - List<Policy
Resource Tag Args> - resource
Type String - resource
Type List<String>List - resources
Clean BooleanUp - List<Policy
Tag Args>
- boolean
- remediation
Enabled boolean - security
Service PolicyPolicy Data Security Service Policy Data Args - delete
All booleanPolicy Resources - exclude
Map PolicyIEMap Args - include
Map PolicyIEMap Args - policy
Description string - policy
Name string - resource
Set string[]Ids - Policy
Resource Tag Args[] - resource
Type string - resource
Type string[]List - resources
Clean booleanUp - Policy
Tag Args[]
- bool
- remediation_
enabled bool - security_
service_ Policypolicy_ data Security Service Policy Data Args - delete_
all_ boolpolicy_ resources - exclude_
map PolicyIEMap Args - include_
map PolicyIEMap Args - policy_
description str - policy_
name str - resource_
set_ Sequence[str]ids - Sequence[Policy
Resource Tag Args] - resource_
type str - resource_
type_ Sequence[str]list - resources_
clean_ boolup - Sequence[Policy
Tag Args]
- Boolean
- remediation
Enabled Boolean - security
Service Property MapPolicy Data - delete
All BooleanPolicy Resources - exclude
Map Property Map - include
Map Property Map - policy
Description String - policy
Name String - resource
Set List<String>Ids - List<Property Map>
- resource
Type String - resource
Type List<String>List - resources
Clean BooleanUp - List<Property Map>
Outputs
All input properties are implicitly available as output properties. Additionally, the Policy resource produces the following output properties:
Supporting Types
PolicyFirewallDeploymentModel
- Distributed
- DISTRIBUTED
- Centralized
- CENTRALIZED
- Policy
Firewall Deployment Model Distributed - DISTRIBUTED
- Policy
Firewall Deployment Model Centralized - CENTRALIZED
- Distributed
- DISTRIBUTED
- Centralized
- CENTRALIZED
- Distributed
- DISTRIBUTED
- Centralized
- CENTRALIZED
- DISTRIBUTED
- DISTRIBUTED
- CENTRALIZED
- CENTRALIZED
- "DISTRIBUTED"
- DISTRIBUTED
- "CENTRALIZED"
- CENTRALIZED
PolicyIEMap
PolicyNetworkFirewallPolicy
PolicyOption
PolicyResourceTag
PolicySecurityServicePolicyData
PolicyTag
PolicyThirdPartyFirewallPolicy
PolicyType
- Waf
- WAF
- Wafv2
- WAFV2
- Shield
Advanced - SHIELD_ADVANCED
- Security
Groups Common - SECURITY_GROUPS_COMMON
- Security
Groups Content Audit - SECURITY_GROUPS_CONTENT_AUDIT
- Security
Groups Usage Audit - SECURITY_GROUPS_USAGE_AUDIT
- Network
Firewall - NETWORK_FIREWALL
- Third
Party Firewall - THIRD_PARTY_FIREWALL
- Dns
Firewall - DNS_FIREWALL
- Import
Network Firewall - IMPORT_NETWORK_FIREWALL
- Policy
Type Waf - WAF
- Policy
Type Wafv2 - WAFV2
- Policy
Type Shield Advanced - SHIELD_ADVANCED
- Policy
Type Security Groups Common - SECURITY_GROUPS_COMMON
- Policy
Type Security Groups Content Audit - SECURITY_GROUPS_CONTENT_AUDIT
- Policy
Type Security Groups Usage Audit - SECURITY_GROUPS_USAGE_AUDIT
- Policy
Type Network Firewall - NETWORK_FIREWALL
- Policy
Type Third Party Firewall - THIRD_PARTY_FIREWALL
- Policy
Type Dns Firewall - DNS_FIREWALL
- Policy
Type Import Network Firewall - IMPORT_NETWORK_FIREWALL
- Waf
- WAF
- Wafv2
- WAFV2
- Shield
Advanced - SHIELD_ADVANCED
- Security
Groups Common - SECURITY_GROUPS_COMMON
- Security
Groups Content Audit - SECURITY_GROUPS_CONTENT_AUDIT
- Security
Groups Usage Audit - SECURITY_GROUPS_USAGE_AUDIT
- Network
Firewall - NETWORK_FIREWALL
- Third
Party Firewall - THIRD_PARTY_FIREWALL
- Dns
Firewall - DNS_FIREWALL
- Import
Network Firewall - IMPORT_NETWORK_FIREWALL
- Waf
- WAF
- Wafv2
- WAFV2
- Shield
Advanced - SHIELD_ADVANCED
- Security
Groups Common - SECURITY_GROUPS_COMMON
- Security
Groups Content Audit - SECURITY_GROUPS_CONTENT_AUDIT
- Security
Groups Usage Audit - SECURITY_GROUPS_USAGE_AUDIT
- Network
Firewall - NETWORK_FIREWALL
- Third
Party Firewall - THIRD_PARTY_FIREWALL
- Dns
Firewall - DNS_FIREWALL
- Import
Network Firewall - IMPORT_NETWORK_FIREWALL
- WAF
- WAF
- WAFV2
- WAFV2
- SHIELD_ADVANCED
- SHIELD_ADVANCED
- SECURITY_GROUPS_COMMON
- SECURITY_GROUPS_COMMON
- SECURITY_GROUPS_CONTENT_AUDIT
- SECURITY_GROUPS_CONTENT_AUDIT
- SECURITY_GROUPS_USAGE_AUDIT
- SECURITY_GROUPS_USAGE_AUDIT
- NETWORK_FIREWALL
- NETWORK_FIREWALL
- THIRD_PARTY_FIREWALL
- THIRD_PARTY_FIREWALL
- DNS_FIREWALL
- DNS_FIREWALL
- IMPORT_NETWORK_FIREWALL
- IMPORT_NETWORK_FIREWALL
- "WAF"
- WAF
- "WAFV2"
- WAFV2
- "SHIELD_ADVANCED"
- SHIELD_ADVANCED
- "SECURITY_GROUPS_COMMON"
- SECURITY_GROUPS_COMMON
- "SECURITY_GROUPS_CONTENT_AUDIT"
- SECURITY_GROUPS_CONTENT_AUDIT
- "SECURITY_GROUPS_USAGE_AUDIT"
- SECURITY_GROUPS_USAGE_AUDIT
- "NETWORK_FIREWALL"
- NETWORK_FIREWALL
- "THIRD_PARTY_FIREWALL"
- THIRD_PARTY_FIREWALL
- "DNS_FIREWALL"
- DNS_FIREWALL
- "IMPORT_NETWORK_FIREWALL"
- IMPORT_NETWORK_FIREWALL
Package Details
- Repository
- AWS Native pulumi/pulumi-aws-native
- License
- Apache-2.0