aws-native logo
AWS Native v0.55.0, Mar 28 23

aws-native.iot.getAccountAuditConfiguration

Configures the Device Defender audit settings for this account. Settings include how audit notifications are sent and which audit checks are enabled or disabled.

Using getAccountAuditConfiguration

Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.

function getAccountAuditConfiguration(args: GetAccountAuditConfigurationArgs, opts?: InvokeOptions): Promise<GetAccountAuditConfigurationResult>
function getAccountAuditConfigurationOutput(args: GetAccountAuditConfigurationOutputArgs, opts?: InvokeOptions): Output<GetAccountAuditConfigurationResult>
def get_account_audit_configuration(account_id: Optional[str] = None,
                                    opts: Optional[InvokeOptions] = None) -> GetAccountAuditConfigurationResult
def get_account_audit_configuration_output(account_id: Optional[pulumi.Input[str]] = None,
                                    opts: Optional[InvokeOptions] = None) -> Output[GetAccountAuditConfigurationResult]
func LookupAccountAuditConfiguration(ctx *Context, args *LookupAccountAuditConfigurationArgs, opts ...InvokeOption) (*LookupAccountAuditConfigurationResult, error)
func LookupAccountAuditConfigurationOutput(ctx *Context, args *LookupAccountAuditConfigurationOutputArgs, opts ...InvokeOption) LookupAccountAuditConfigurationResultOutput

> Note: This function is named LookupAccountAuditConfiguration in the Go SDK.

public static class GetAccountAuditConfiguration 
{
    public static Task<GetAccountAuditConfigurationResult> InvokeAsync(GetAccountAuditConfigurationArgs args, InvokeOptions? opts = null)
    public static Output<GetAccountAuditConfigurationResult> Invoke(GetAccountAuditConfigurationInvokeArgs args, InvokeOptions? opts = null)
}
public static CompletableFuture<GetAccountAuditConfigurationResult> getAccountAuditConfiguration(GetAccountAuditConfigurationArgs args, InvokeOptions options)
// Output-based functions aren't available in Java yet
fn::invoke:
  function: aws-native:iot:getAccountAuditConfiguration
  arguments:
    # arguments dictionary

The following arguments are supported:

AccountId string

Your 12-digit account ID (used as the primary identifier for the CloudFormation resource).

AccountId string

Your 12-digit account ID (used as the primary identifier for the CloudFormation resource).

accountId String

Your 12-digit account ID (used as the primary identifier for the CloudFormation resource).

accountId string

Your 12-digit account ID (used as the primary identifier for the CloudFormation resource).

account_id str

Your 12-digit account ID (used as the primary identifier for the CloudFormation resource).

accountId String

Your 12-digit account ID (used as the primary identifier for the CloudFormation resource).

getAccountAuditConfiguration Result

The following output properties are available:

AuditCheckConfigurations Pulumi.AwsNative.IoT.Outputs.AccountAuditConfigurationAuditCheckConfigurations
AuditNotificationTargetConfigurations Pulumi.AwsNative.IoT.Outputs.AccountAuditConfigurationAuditNotificationTargetConfigurations
RoleArn string

The ARN of the role that grants permission to AWS IoT to access information about your devices, policies, certificates and other items as required when performing an audit.

AuditCheckConfigurations AccountAuditConfigurationAuditCheckConfigurations
AuditNotificationTargetConfigurations AccountAuditConfigurationAuditNotificationTargetConfigurations
RoleArn string

The ARN of the role that grants permission to AWS IoT to access information about your devices, policies, certificates and other items as required when performing an audit.

auditCheckConfigurations AccountAuditConfigurationAuditCheckConfigurations
auditNotificationTargetConfigurations AccountAuditConfigurationAuditNotificationTargetConfigurations
roleArn String

The ARN of the role that grants permission to AWS IoT to access information about your devices, policies, certificates and other items as required when performing an audit.

auditCheckConfigurations AccountAuditConfigurationAuditCheckConfigurations
auditNotificationTargetConfigurations AccountAuditConfigurationAuditNotificationTargetConfigurations
roleArn string

The ARN of the role that grants permission to AWS IoT to access information about your devices, policies, certificates and other items as required when performing an audit.

audit_check_configurations AccountAuditConfigurationAuditCheckConfigurations
audit_notification_target_configurations AccountAuditConfigurationAuditNotificationTargetConfigurations
role_arn str

The ARN of the role that grants permission to AWS IoT to access information about your devices, policies, certificates and other items as required when performing an audit.

auditCheckConfigurations Property Map
auditNotificationTargetConfigurations Property Map
roleArn String

The ARN of the role that grants permission to AWS IoT to access information about your devices, policies, certificates and other items as required when performing an audit.

Supporting Types

AccountAuditConfigurationAuditCheckConfiguration

Enabled bool

True if the check is enabled.

Enabled bool

True if the check is enabled.

enabled Boolean

True if the check is enabled.

enabled boolean

True if the check is enabled.

enabled bool

True if the check is enabled.

enabled Boolean

True if the check is enabled.

AccountAuditConfigurationAuditCheckConfigurations

AuthenticatedCognitoRoleOverlyPermissiveCheck Pulumi.AwsNative.IoT.Inputs.AccountAuditConfigurationAuditCheckConfiguration
CaCertificateExpiringCheck Pulumi.AwsNative.IoT.Inputs.AccountAuditConfigurationAuditCheckConfiguration
CaCertificateKeyQualityCheck Pulumi.AwsNative.IoT.Inputs.AccountAuditConfigurationAuditCheckConfiguration
ConflictingClientIdsCheck Pulumi.AwsNative.IoT.Inputs.AccountAuditConfigurationAuditCheckConfiguration
DeviceCertificateExpiringCheck Pulumi.AwsNative.IoT.Inputs.AccountAuditConfigurationAuditCheckConfiguration
DeviceCertificateKeyQualityCheck Pulumi.AwsNative.IoT.Inputs.AccountAuditConfigurationAuditCheckConfiguration
DeviceCertificateSharedCheck Pulumi.AwsNative.IoT.Inputs.AccountAuditConfigurationAuditCheckConfiguration
IntermediateCaRevokedForActiveDeviceCertificatesCheck Pulumi.AwsNative.IoT.Inputs.AccountAuditConfigurationAuditCheckConfiguration
IoTPolicyPotentialMisConfigurationCheck Pulumi.AwsNative.IoT.Inputs.AccountAuditConfigurationAuditCheckConfiguration
IotPolicyOverlyPermissiveCheck Pulumi.AwsNative.IoT.Inputs.AccountAuditConfigurationAuditCheckConfiguration
IotRoleAliasAllowsAccessToUnusedServicesCheck Pulumi.AwsNative.IoT.Inputs.AccountAuditConfigurationAuditCheckConfiguration
IotRoleAliasOverlyPermissiveCheck Pulumi.AwsNative.IoT.Inputs.AccountAuditConfigurationAuditCheckConfiguration
LoggingDisabledCheck Pulumi.AwsNative.IoT.Inputs.AccountAuditConfigurationAuditCheckConfiguration
RevokedCaCertificateStillActiveCheck Pulumi.AwsNative.IoT.Inputs.AccountAuditConfigurationAuditCheckConfiguration
RevokedDeviceCertificateStillActiveCheck Pulumi.AwsNative.IoT.Inputs.AccountAuditConfigurationAuditCheckConfiguration
UnauthenticatedCognitoRoleOverlyPermissiveCheck Pulumi.AwsNative.IoT.Inputs.AccountAuditConfigurationAuditCheckConfiguration
AuthenticatedCognitoRoleOverlyPermissiveCheck AccountAuditConfigurationAuditCheckConfiguration
CaCertificateExpiringCheck AccountAuditConfigurationAuditCheckConfiguration
CaCertificateKeyQualityCheck AccountAuditConfigurationAuditCheckConfiguration
ConflictingClientIdsCheck AccountAuditConfigurationAuditCheckConfiguration
DeviceCertificateExpiringCheck AccountAuditConfigurationAuditCheckConfiguration
DeviceCertificateKeyQualityCheck AccountAuditConfigurationAuditCheckConfiguration
DeviceCertificateSharedCheck AccountAuditConfigurationAuditCheckConfiguration
IntermediateCaRevokedForActiveDeviceCertificatesCheck AccountAuditConfigurationAuditCheckConfiguration
IoTPolicyPotentialMisConfigurationCheck AccountAuditConfigurationAuditCheckConfiguration
IotPolicyOverlyPermissiveCheck AccountAuditConfigurationAuditCheckConfiguration
IotRoleAliasAllowsAccessToUnusedServicesCheck AccountAuditConfigurationAuditCheckConfiguration
IotRoleAliasOverlyPermissiveCheck AccountAuditConfigurationAuditCheckConfiguration
LoggingDisabledCheck AccountAuditConfigurationAuditCheckConfiguration
RevokedCaCertificateStillActiveCheck AccountAuditConfigurationAuditCheckConfiguration
RevokedDeviceCertificateStillActiveCheck AccountAuditConfigurationAuditCheckConfiguration
UnauthenticatedCognitoRoleOverlyPermissiveCheck AccountAuditConfigurationAuditCheckConfiguration
authenticatedCognitoRoleOverlyPermissiveCheck AccountAuditConfigurationAuditCheckConfiguration
caCertificateExpiringCheck AccountAuditConfigurationAuditCheckConfiguration
caCertificateKeyQualityCheck AccountAuditConfigurationAuditCheckConfiguration
conflictingClientIdsCheck AccountAuditConfigurationAuditCheckConfiguration
deviceCertificateExpiringCheck AccountAuditConfigurationAuditCheckConfiguration
deviceCertificateKeyQualityCheck AccountAuditConfigurationAuditCheckConfiguration
deviceCertificateSharedCheck AccountAuditConfigurationAuditCheckConfiguration
intermediateCaRevokedForActiveDeviceCertificatesCheck AccountAuditConfigurationAuditCheckConfiguration
ioTPolicyPotentialMisConfigurationCheck AccountAuditConfigurationAuditCheckConfiguration
iotPolicyOverlyPermissiveCheck AccountAuditConfigurationAuditCheckConfiguration
iotRoleAliasAllowsAccessToUnusedServicesCheck AccountAuditConfigurationAuditCheckConfiguration
iotRoleAliasOverlyPermissiveCheck AccountAuditConfigurationAuditCheckConfiguration
loggingDisabledCheck AccountAuditConfigurationAuditCheckConfiguration
revokedCaCertificateStillActiveCheck AccountAuditConfigurationAuditCheckConfiguration
revokedDeviceCertificateStillActiveCheck AccountAuditConfigurationAuditCheckConfiguration
unauthenticatedCognitoRoleOverlyPermissiveCheck AccountAuditConfigurationAuditCheckConfiguration
authenticatedCognitoRoleOverlyPermissiveCheck AccountAuditConfigurationAuditCheckConfiguration
caCertificateExpiringCheck AccountAuditConfigurationAuditCheckConfiguration
caCertificateKeyQualityCheck AccountAuditConfigurationAuditCheckConfiguration
conflictingClientIdsCheck AccountAuditConfigurationAuditCheckConfiguration
deviceCertificateExpiringCheck AccountAuditConfigurationAuditCheckConfiguration
deviceCertificateKeyQualityCheck AccountAuditConfigurationAuditCheckConfiguration
deviceCertificateSharedCheck AccountAuditConfigurationAuditCheckConfiguration
intermediateCaRevokedForActiveDeviceCertificatesCheck AccountAuditConfigurationAuditCheckConfiguration
ioTPolicyPotentialMisConfigurationCheck AccountAuditConfigurationAuditCheckConfiguration
iotPolicyOverlyPermissiveCheck AccountAuditConfigurationAuditCheckConfiguration
iotRoleAliasAllowsAccessToUnusedServicesCheck AccountAuditConfigurationAuditCheckConfiguration
iotRoleAliasOverlyPermissiveCheck AccountAuditConfigurationAuditCheckConfiguration
loggingDisabledCheck AccountAuditConfigurationAuditCheckConfiguration
revokedCaCertificateStillActiveCheck AccountAuditConfigurationAuditCheckConfiguration
revokedDeviceCertificateStillActiveCheck AccountAuditConfigurationAuditCheckConfiguration
unauthenticatedCognitoRoleOverlyPermissiveCheck AccountAuditConfigurationAuditCheckConfiguration
authenticated_cognito_role_overly_permissive_check AccountAuditConfigurationAuditCheckConfiguration
ca_certificate_expiring_check AccountAuditConfigurationAuditCheckConfiguration
ca_certificate_key_quality_check AccountAuditConfigurationAuditCheckConfiguration
conflicting_client_ids_check AccountAuditConfigurationAuditCheckConfiguration
device_certificate_expiring_check AccountAuditConfigurationAuditCheckConfiguration
device_certificate_key_quality_check AccountAuditConfigurationAuditCheckConfiguration
device_certificate_shared_check AccountAuditConfigurationAuditCheckConfiguration
intermediate_ca_revoked_for_active_device_certificates_check AccountAuditConfigurationAuditCheckConfiguration
io_t_policy_potential_mis_configuration_check AccountAuditConfigurationAuditCheckConfiguration
iot_policy_overly_permissive_check AccountAuditConfigurationAuditCheckConfiguration
iot_role_alias_allows_access_to_unused_services_check AccountAuditConfigurationAuditCheckConfiguration
iot_role_alias_overly_permissive_check AccountAuditConfigurationAuditCheckConfiguration
logging_disabled_check AccountAuditConfigurationAuditCheckConfiguration
revoked_ca_certificate_still_active_check AccountAuditConfigurationAuditCheckConfiguration
revoked_device_certificate_still_active_check AccountAuditConfigurationAuditCheckConfiguration
unauthenticated_cognito_role_overly_permissive_check AccountAuditConfigurationAuditCheckConfiguration

AccountAuditConfigurationAuditNotificationTarget

Enabled bool

True if notifications to the target are enabled.

RoleArn string

The ARN of the role that grants permission to send notifications to the target.

TargetArn string

The ARN of the target (SNS topic) to which audit notifications are sent.

Enabled bool

True if notifications to the target are enabled.

RoleArn string

The ARN of the role that grants permission to send notifications to the target.

TargetArn string

The ARN of the target (SNS topic) to which audit notifications are sent.

enabled Boolean

True if notifications to the target are enabled.

roleArn String

The ARN of the role that grants permission to send notifications to the target.

targetArn String

The ARN of the target (SNS topic) to which audit notifications are sent.

enabled boolean

True if notifications to the target are enabled.

roleArn string

The ARN of the role that grants permission to send notifications to the target.

targetArn string

The ARN of the target (SNS topic) to which audit notifications are sent.

enabled bool

True if notifications to the target are enabled.

role_arn str

The ARN of the role that grants permission to send notifications to the target.

target_arn str

The ARN of the target (SNS topic) to which audit notifications are sent.

enabled Boolean

True if notifications to the target are enabled.

roleArn String

The ARN of the role that grants permission to send notifications to the target.

targetArn String

The ARN of the target (SNS topic) to which audit notifications are sent.

AccountAuditConfigurationAuditNotificationTargetConfigurations

Package Details

Repository
AWS Native pulumi/pulumi-aws-native
License
Apache-2.0