aws-native logo
AWS Native v0.63.0, May 25 23

aws-native.iot.MitigationAction

Explore with Pulumi AI

Mitigation actions can be used to take actions to mitigate issues that were found in an Audit finding or Detect violation.

Example Usage

Example

using System.Collections.Generic;
using Pulumi;
using AwsNative = Pulumi.AwsNative;

return await Deployment.RunAsync(() => 
{
    var publishToSnsMitigationAction = new AwsNative.IoT.MitigationAction("publishToSnsMitigationAction", new()
    {
        ActionName = "PublishToSns",
        RoleArn = "arn:aws:us-east-1:123456789012:iam:role/RoleForIoTMitigationActions",
        ActionParams = new AwsNative.IoT.Inputs.MitigationActionActionParamsArgs
        {
            PublishFindingToSnsParams = new AwsNative.IoT.Inputs.MitigationActionPublishFindingToSnsParamsArgs
            {
                TopicArn = "arn:aws:sns:us-east-1:123456789012:IoTFindingNotifications",
            },
        },
    });

});
package main

import (
	"github.com/pulumi/pulumi-aws-native/sdk/go/aws/iot"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := iot.NewMitigationAction(ctx, "publishToSnsMitigationAction", &iot.MitigationActionArgs{
			ActionName: pulumi.String("PublishToSns"),
			RoleArn:    pulumi.String("arn:aws:us-east-1:123456789012:iam:role/RoleForIoTMitigationActions"),
			ActionParams: &iot.MitigationActionActionParamsArgs{
				PublishFindingToSnsParams: &iot.MitigationActionPublishFindingToSnsParamsArgs{
					TopicArn: pulumi.String("arn:aws:sns:us-east-1:123456789012:IoTFindingNotifications"),
				},
			},
		})
		if err != nil {
			return err
		}
		return nil
	})
}

Coming soon!

import pulumi
import pulumi_aws_native as aws_native

publish_to_sns_mitigation_action = aws_native.iot.MitigationAction("publishToSnsMitigationAction",
    action_name="PublishToSns",
    role_arn="arn:aws:us-east-1:123456789012:iam:role/RoleForIoTMitigationActions",
    action_params=aws_native.iot.MitigationActionActionParamsArgs(
        publish_finding_to_sns_params=aws_native.iot.MitigationActionPublishFindingToSnsParamsArgs(
            topic_arn="arn:aws:sns:us-east-1:123456789012:IoTFindingNotifications",
        ),
    ))
import * as pulumi from "@pulumi/pulumi";
import * as aws_native from "@pulumi/aws-native";

const publishToSnsMitigationAction = new aws_native.iot.MitigationAction("publishToSnsMitigationAction", {
    actionName: "PublishToSns",
    roleArn: "arn:aws:us-east-1:123456789012:iam:role/RoleForIoTMitigationActions",
    actionParams: {
        publishFindingToSnsParams: {
            topicArn: "arn:aws:sns:us-east-1:123456789012:IoTFindingNotifications",
        },
    },
});

Coming soon!

Example

using System.Collections.Generic;
using Pulumi;
using AwsNative = Pulumi.AwsNative;

return await Deployment.RunAsync(() => 
{
    var publishToSnsMitigationAction = new AwsNative.IoT.MitigationAction("publishToSnsMitigationAction", new()
    {
        ActionName = "PublishToSns",
        RoleArn = "arn:aws:us-east-1:123456789012:iam:role/RoleForIoTMitigationActions",
        ActionParams = new AwsNative.IoT.Inputs.MitigationActionActionParamsArgs
        {
            PublishFindingToSnsParams = new AwsNative.IoT.Inputs.MitigationActionPublishFindingToSnsParamsArgs
            {
                TopicArn = "arn:aws:sns:us-east-1:123456789012:IoTFindingNotifications",
            },
        },
    });

});
package main

import (
	"github.com/pulumi/pulumi-aws-native/sdk/go/aws/iot"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := iot.NewMitigationAction(ctx, "publishToSnsMitigationAction", &iot.MitigationActionArgs{
			ActionName: pulumi.String("PublishToSns"),
			RoleArn:    pulumi.String("arn:aws:us-east-1:123456789012:iam:role/RoleForIoTMitigationActions"),
			ActionParams: &iot.MitigationActionActionParamsArgs{
				PublishFindingToSnsParams: &iot.MitigationActionPublishFindingToSnsParamsArgs{
					TopicArn: pulumi.String("arn:aws:sns:us-east-1:123456789012:IoTFindingNotifications"),
				},
			},
		})
		if err != nil {
			return err
		}
		return nil
	})
}

Coming soon!

import pulumi
import pulumi_aws_native as aws_native

publish_to_sns_mitigation_action = aws_native.iot.MitigationAction("publishToSnsMitigationAction",
    action_name="PublishToSns",
    role_arn="arn:aws:us-east-1:123456789012:iam:role/RoleForIoTMitigationActions",
    action_params=aws_native.iot.MitigationActionActionParamsArgs(
        publish_finding_to_sns_params=aws_native.iot.MitigationActionPublishFindingToSnsParamsArgs(
            topic_arn="arn:aws:sns:us-east-1:123456789012:IoTFindingNotifications",
        ),
    ))
import * as pulumi from "@pulumi/pulumi";
import * as aws_native from "@pulumi/aws-native";

const publishToSnsMitigationAction = new aws_native.iot.MitigationAction("publishToSnsMitigationAction", {
    actionName: "PublishToSns",
    roleArn: "arn:aws:us-east-1:123456789012:iam:role/RoleForIoTMitigationActions",
    actionParams: {
        publishFindingToSnsParams: {
            topicArn: "arn:aws:sns:us-east-1:123456789012:IoTFindingNotifications",
        },
    },
});

Coming soon!

Create MitigationAction Resource

new MitigationAction(name: string, args: MitigationActionArgs, opts?: CustomResourceOptions);
@overload
def MitigationAction(resource_name: str,
                     opts: Optional[ResourceOptions] = None,
                     action_name: Optional[str] = None,
                     action_params: Optional[MitigationActionActionParamsArgs] = None,
                     role_arn: Optional[str] = None,
                     tags: Optional[Sequence[MitigationActionTagArgs]] = None)
@overload
def MitigationAction(resource_name: str,
                     args: MitigationActionArgs,
                     opts: Optional[ResourceOptions] = None)
func NewMitigationAction(ctx *Context, name string, args MitigationActionArgs, opts ...ResourceOption) (*MitigationAction, error)
public MitigationAction(string name, MitigationActionArgs args, CustomResourceOptions? opts = null)
public MitigationAction(String name, MitigationActionArgs args)
public MitigationAction(String name, MitigationActionArgs args, CustomResourceOptions options)
type: aws-native:iot:MitigationAction
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

name string
The unique name of the resource.
args MitigationActionArgs
The arguments to resource properties.
opts CustomResourceOptions
Bag of options to control resource's behavior.
resource_name str
The unique name of the resource.
args MitigationActionArgs
The arguments to resource properties.
opts ResourceOptions
Bag of options to control resource's behavior.
ctx Context
Context object for the current deployment.
name string
The unique name of the resource.
args MitigationActionArgs
The arguments to resource properties.
opts ResourceOption
Bag of options to control resource's behavior.
name string
The unique name of the resource.
args MitigationActionArgs
The arguments to resource properties.
opts CustomResourceOptions
Bag of options to control resource's behavior.
name String
The unique name of the resource.
args MitigationActionArgs
The arguments to resource properties.
options CustomResourceOptions
Bag of options to control resource's behavior.

MitigationAction Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

The MitigationAction resource accepts the following input properties:

ActionParams Pulumi.AwsNative.IoT.Inputs.MitigationActionActionParamsArgs
RoleArn string
ActionName string

A unique identifier for the mitigation action.

Tags List<Pulumi.AwsNative.IoT.Inputs.MitigationActionTagArgs>

An array of key-value pairs to apply to this resource.

ActionParams MitigationActionActionParamsArgs
RoleArn string
ActionName string

A unique identifier for the mitigation action.

Tags []MitigationActionTagArgs

An array of key-value pairs to apply to this resource.

actionParams MitigationActionActionParamsArgs
roleArn String
actionName String

A unique identifier for the mitigation action.

tags List<MitigationActionTagArgs>

An array of key-value pairs to apply to this resource.

actionParams MitigationActionActionParamsArgs
roleArn string
actionName string

A unique identifier for the mitigation action.

tags MitigationActionTagArgs[]

An array of key-value pairs to apply to this resource.

action_params MitigationActionActionParamsArgs
role_arn str
action_name str

A unique identifier for the mitigation action.

tags Sequence[MitigationActionTagArgs]

An array of key-value pairs to apply to this resource.

actionParams Property Map
roleArn String
actionName String

A unique identifier for the mitigation action.

tags List<Property Map>

An array of key-value pairs to apply to this resource.

Outputs

All input properties are implicitly available as output properties. Additionally, the MitigationAction resource produces the following output properties:

Id string

The provider-assigned unique ID for this managed resource.

MitigationActionArn string
MitigationActionId string
Id string

The provider-assigned unique ID for this managed resource.

MitigationActionArn string
MitigationActionId string
id String

The provider-assigned unique ID for this managed resource.

mitigationActionArn String
mitigationActionId String
id string

The provider-assigned unique ID for this managed resource.

mitigationActionArn string
mitigationActionId string
id str

The provider-assigned unique ID for this managed resource.

mitigation_action_arn str
mitigation_action_id str
id String

The provider-assigned unique ID for this managed resource.

mitigationActionArn String
mitigationActionId String

Supporting Types

MitigationActionActionParams

MitigationActionAddThingsToThingGroupParams

ThingGroupNames List<string>

The list of groups to which you want to add the things that triggered the mitigation action.

OverrideDynamicGroups bool

Specifies if this mitigation action can move the things that triggered the mitigation action out of one or more dynamic thing groups.

ThingGroupNames []string

The list of groups to which you want to add the things that triggered the mitigation action.

OverrideDynamicGroups bool

Specifies if this mitigation action can move the things that triggered the mitigation action out of one or more dynamic thing groups.

thingGroupNames List<String>

The list of groups to which you want to add the things that triggered the mitigation action.

overrideDynamicGroups Boolean

Specifies if this mitigation action can move the things that triggered the mitigation action out of one or more dynamic thing groups.

thingGroupNames string[]

The list of groups to which you want to add the things that triggered the mitigation action.

overrideDynamicGroups boolean

Specifies if this mitigation action can move the things that triggered the mitigation action out of one or more dynamic thing groups.

thing_group_names Sequence[str]

The list of groups to which you want to add the things that triggered the mitigation action.

override_dynamic_groups bool

Specifies if this mitigation action can move the things that triggered the mitigation action out of one or more dynamic thing groups.

thingGroupNames List<String>

The list of groups to which you want to add the things that triggered the mitigation action.

overrideDynamicGroups Boolean

Specifies if this mitigation action can move the things that triggered the mitigation action out of one or more dynamic thing groups.

MitigationActionEnableIoTLoggingParams

LogLevel Pulumi.AwsNative.IoT.MitigationActionEnableIoTLoggingParamsLogLevel

Specifies which types of information are logged.

RoleArnForLogging string

The ARN of the IAM role used for logging.

LogLevel MitigationActionEnableIoTLoggingParamsLogLevel

Specifies which types of information are logged.

RoleArnForLogging string

The ARN of the IAM role used for logging.

logLevel MitigationActionEnableIoTLoggingParamsLogLevel

Specifies which types of information are logged.

roleArnForLogging String

The ARN of the IAM role used for logging.

logLevel MitigationActionEnableIoTLoggingParamsLogLevel

Specifies which types of information are logged.

roleArnForLogging string

The ARN of the IAM role used for logging.

log_level MitigationActionEnableIoTLoggingParamsLogLevel

Specifies which types of information are logged.

role_arn_for_logging str

The ARN of the IAM role used for logging.

logLevel "DEBUG" | "INFO" | "ERROR" | "WARN"

Specifies which types of information are logged.

roleArnForLogging String

The ARN of the IAM role used for logging.

MitigationActionEnableIoTLoggingParamsLogLevel

Debug
DEBUG
Info
INFO
Error
ERROR
Warn
WARN
MitigationActionEnableIoTLoggingParamsLogLevelDebug
DEBUG
MitigationActionEnableIoTLoggingParamsLogLevelInfo
INFO
MitigationActionEnableIoTLoggingParamsLogLevelError
ERROR
MitigationActionEnableIoTLoggingParamsLogLevelWarn
WARN
Debug
DEBUG
Info
INFO
Error
ERROR
Warn
WARN
Debug
DEBUG
Info
INFO
Error
ERROR
Warn
WARN
DEBUG
DEBUG
INFO
INFO
ERROR
ERROR
WARN
WARN
"DEBUG"
DEBUG
"INFO"
INFO
"ERROR"
ERROR
"WARN"
WARN

MitigationActionPublishFindingToSnsParams

TopicArn string

The ARN of the topic to which you want to publish the findings.

TopicArn string

The ARN of the topic to which you want to publish the findings.

topicArn String

The ARN of the topic to which you want to publish the findings.

topicArn string

The ARN of the topic to which you want to publish the findings.

topic_arn str

The ARN of the topic to which you want to publish the findings.

topicArn String

The ARN of the topic to which you want to publish the findings.

MitigationActionReplaceDefaultPolicyVersionParams

MitigationActionReplaceDefaultPolicyVersionParamsTemplateName

BlankPolicy
BLANK_POLICY
MitigationActionReplaceDefaultPolicyVersionParamsTemplateNameBlankPolicy
BLANK_POLICY
BlankPolicy
BLANK_POLICY
BlankPolicy
BLANK_POLICY
BLANK_POLICY
BLANK_POLICY
"BLANK_POLICY"
BLANK_POLICY

MitigationActionTag

Key string

The tag's key.

Value string

The tag's value.

Key string

The tag's key.

Value string

The tag's value.

key String

The tag's key.

value String

The tag's value.

key string

The tag's key.

value string

The tag's value.

key str

The tag's key.

value str

The tag's value.

key String

The tag's key.

value String

The tag's value.

MitigationActionUpdateCACertificateParams

MitigationActionUpdateCACertificateParamsAction

Deactivate
DEACTIVATE
MitigationActionUpdateCACertificateParamsActionDeactivate
DEACTIVATE
Deactivate
DEACTIVATE
Deactivate
DEACTIVATE
DEACTIVATE
DEACTIVATE
"DEACTIVATE"
DEACTIVATE

MitigationActionUpdateDeviceCertificateParams

MitigationActionUpdateDeviceCertificateParamsAction

Deactivate
DEACTIVATE
MitigationActionUpdateDeviceCertificateParamsActionDeactivate
DEACTIVATE
Deactivate
DEACTIVATE
Deactivate
DEACTIVATE
DEACTIVATE
DEACTIVATE
"DEACTIVATE"
DEACTIVATE

Package Details

Repository
AWS Native pulumi/pulumi-aws-native
License
Apache-2.0