Policy
Creates an AWS Firewall Manager policy.
Create Policy Resource
new Policy(name: string, args: PolicyArgs, opts?: CustomResourceOptions);@overload
def Policy(resource_name: str,
opts: Optional[ResourceOptions] = None,
delete_all_policy_resources: Optional[bool] = None,
exclude_map: Optional[PolicyIEMapArgs] = None,
exclude_resource_tags: Optional[bool] = None,
include_map: Optional[PolicyIEMapArgs] = None,
policy_name: Optional[str] = None,
remediation_enabled: Optional[bool] = None,
resource_tags: Optional[Sequence[PolicyResourceTagArgs]] = None,
resource_type: Optional[str] = None,
resource_type_list: Optional[Sequence[str]] = None,
resources_clean_up: Optional[bool] = None,
security_service_policy_data: Optional[PolicySecurityServicePolicyDataArgs] = None,
tags: Optional[Sequence[PolicyTagArgs]] = None)
@overload
def Policy(resource_name: str,
args: PolicyArgs,
opts: Optional[ResourceOptions] = None)func NewPolicy(ctx *Context, name string, args PolicyArgs, opts ...ResourceOption) (*Policy, error)public Policy(string name, PolicyArgs args, CustomResourceOptions? opts = null)
public Policy(String name, PolicyArgs args)
public Policy(String name, PolicyArgs args, CustomResourceOptions options)
type: aws-native:fms:Policy
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args PolicyArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args PolicyArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args PolicyArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args PolicyArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args PolicyArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Policy Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
The Policy resource accepts the following input properties:
- bool
- Remediation
Enabled bool - Resource
Type string - Security
Service Pulumi.Policy Data Aws Native. FMS. Inputs. Policy Security Service Policy Data Args - Delete
All boolPolicy Resources - Exclude
Map Pulumi.Aws Native. FMS. Inputs. Policy IEMap Args - Include
Map Pulumi.Aws Native. FMS. Inputs. Policy IEMap Args - Policy
Name string -
List<Pulumi.
Aws Native. FMS. Inputs. Policy Resource Tag Args> - Resource
Type List<string>List - Resources
Clean boolUp -
List<Pulumi.
Aws Native. FMS. Inputs. Policy Tag Args>
- Boolean
- remediation
Enabled Boolean - resource
Type String - security
Service PolicyPolicy Data Security Service Policy Data Args - delete
All BooleanPolicy Resources - exclude
Map PolicyIEMap Args - include
Map PolicyIEMap Args - policy
Name String -
List<Policy
Resource Tag Args> - resource
Type List<String>List - resources
Clean BooleanUp -
List<Policy
Tag Args>
- boolean
- remediation
Enabled boolean - resource
Type string - security
Service PolicyPolicy Data Security Service Policy Data Args - delete
All booleanPolicy Resources - exclude
Map PolicyIEMap Args - include
Map PolicyIEMap Args - policy
Name string -
Policy
Resource Tag Args[] - resource
Type string[]List - resources
Clean booleanUp -
Policy
Tag Args[]
- bool
- remediation_
enabled bool - resource_
type str - security_
service_ Policypolicy_ data Security Service Policy Data Args - delete_
all_ boolpolicy_ resources - exclude_
map PolicyIEMap Args - include_
map PolicyIEMap Args - policy_
name str -
Sequence[Policy
Resource Tag Args] - resource_
type_ Sequence[str]list - resources_
clean_ boolup -
Sequence[Policy
Tag Args]
- Boolean
- remediation
Enabled Boolean - resource
Type String - security
Service Property MapPolicy Data - delete
All BooleanPolicy Resources - exclude
Map Property Map - include
Map Property Map - policy
Name String - List<Property Map>
- resource
Type List<String>List - resources
Clean BooleanUp - List<Property Map>
Outputs
All input properties are implicitly available as output properties. Additionally, the Policy resource produces the following output properties:
Supporting Types
PolicyFirewallDeploymentModel
- Distributed
- DISTRIBUTED
- Centralized
- CENTRALIZED
- Policy
Firewall Deployment Model Distributed - DISTRIBUTED
- Policy
Firewall Deployment Model Centralized - CENTRALIZED
- Distributed
- DISTRIBUTED
- Centralized
- CENTRALIZED
- Distributed
- DISTRIBUTED
- Centralized
- CENTRALIZED
- DISTRIBUTED
- DISTRIBUTED
- CENTRALIZED
- CENTRALIZED
- "DISTRIBUTED"
- DISTRIBUTED
- "CENTRALIZED"
- CENTRALIZED
PolicyIEMap
PolicyNetworkFirewallPolicy
PolicyOption
PolicyResourceTag
PolicySecurityServicePolicyData
PolicyTag
PolicyThirdPartyFirewallPolicy
PolicyType
- Waf
- WAF
- Wafv2
- WAFV2
- Shield
Advanced - SHIELD_ADVANCED
- Security
Groups Common - SECURITY_GROUPS_COMMON
- Security
Groups Content Audit - SECURITY_GROUPS_CONTENT_AUDIT
- Security
Groups Usage Audit - SECURITY_GROUPS_USAGE_AUDIT
- Network
Firewall - NETWORK_FIREWALL
- Third
Party Firewall - THIRD_PARTY_FIREWALL
- Dns
Firewall - DNS_FIREWALL
- Policy
Type Waf - WAF
- Policy
Type Wafv2 - WAFV2
- Policy
Type Shield Advanced - SHIELD_ADVANCED
- Policy
Type Security Groups Common - SECURITY_GROUPS_COMMON
- Policy
Type Security Groups Content Audit - SECURITY_GROUPS_CONTENT_AUDIT
- Policy
Type Security Groups Usage Audit - SECURITY_GROUPS_USAGE_AUDIT
- Policy
Type Network Firewall - NETWORK_FIREWALL
- Policy
Type Third Party Firewall - THIRD_PARTY_FIREWALL
- Policy
Type Dns Firewall - DNS_FIREWALL
- Waf
- WAF
- Wafv2
- WAFV2
- Shield
Advanced - SHIELD_ADVANCED
- Security
Groups Common - SECURITY_GROUPS_COMMON
- Security
Groups Content Audit - SECURITY_GROUPS_CONTENT_AUDIT
- Security
Groups Usage Audit - SECURITY_GROUPS_USAGE_AUDIT
- Network
Firewall - NETWORK_FIREWALL
- Third
Party Firewall - THIRD_PARTY_FIREWALL
- Dns
Firewall - DNS_FIREWALL
- Waf
- WAF
- Wafv2
- WAFV2
- Shield
Advanced - SHIELD_ADVANCED
- Security
Groups Common - SECURITY_GROUPS_COMMON
- Security
Groups Content Audit - SECURITY_GROUPS_CONTENT_AUDIT
- Security
Groups Usage Audit - SECURITY_GROUPS_USAGE_AUDIT
- Network
Firewall - NETWORK_FIREWALL
- Third
Party Firewall - THIRD_PARTY_FIREWALL
- Dns
Firewall - DNS_FIREWALL
- WAF
- WAF
- WAFV2
- WAFV2
- SHIELD_ADVANCED
- SHIELD_ADVANCED
- SECURITY_GROUPS_COMMON
- SECURITY_GROUPS_COMMON
- SECURITY_GROUPS_CONTENT_AUDIT
- SECURITY_GROUPS_CONTENT_AUDIT
- SECURITY_GROUPS_USAGE_AUDIT
- SECURITY_GROUPS_USAGE_AUDIT
- NETWORK_FIREWALL
- NETWORK_FIREWALL
- THIRD_PARTY_FIREWALL
- THIRD_PARTY_FIREWALL
- DNS_FIREWALL
- DNS_FIREWALL
- "WAF"
- WAF
- "WAFV2"
- WAFV2
- "SHIELD_ADVANCED"
- SHIELD_ADVANCED
- "SECURITY_GROUPS_COMMON"
- SECURITY_GROUPS_COMMON
- "SECURITY_GROUPS_CONTENT_AUDIT"
- SECURITY_GROUPS_CONTENT_AUDIT
- "SECURITY_GROUPS_USAGE_AUDIT"
- SECURITY_GROUPS_USAGE_AUDIT
- "NETWORK_FIREWALL"
- NETWORK_FIREWALL
- "THIRD_PARTY_FIREWALL"
- THIRD_PARTY_FIREWALL
- "DNS_FIREWALL"
- DNS_FIREWALL
Package Details
- Repository
- https://github.com/pulumi/pulumi-aws-native
- License
- Apache-2.0