Docs Home
lacework 2.0.6 published on Monday, Apr 14, 2025 by lacework
lacework.IntegrationAwsOrgAgentlessScanning
Explore with Pulumi AI
Use this resource to configure an AWS Organizations Agentless Scanning integration.
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as lacework from "@pulumi/lacework";
const accountAbc = new lacework.IntegrationAwsOrgAgentlessScanning("accountAbc", {
scanFrequency: 24,
queryText: _var.query_text,
scanContainers: true,
scanHostVulnerabilities: true,
accountId: "0123456789",
bucketArn: "arn:aws:s3:::bucket-arn",
scanningAccount: "0123456789",
managementAccount: "0123456789",
monitoredAccounts: ["r-1234"],
credentials: {
roleArn: "arn:aws:iam::0123456789:role/iam-123",
externalId: "0123456789",
},
});
import pulumi
import pulumi_lacework as lacework
account_abc = lacework.IntegrationAwsOrgAgentlessScanning("accountAbc",
scan_frequency=24,
query_text=var["query_text"],
scan_containers=True,
scan_host_vulnerabilities=True,
account_id="0123456789",
bucket_arn="arn:aws:s3:::bucket-arn",
scanning_account="0123456789",
management_account="0123456789",
monitored_accounts=["r-1234"],
credentials={
"role_arn": "arn:aws:iam::0123456789:role/iam-123",
"external_id": "0123456789",
})
package main
import (
"github.com/pulumi/pulumi-terraform-provider/sdks/go/lacework/v2/lacework"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := lacework.NewIntegrationAwsOrgAgentlessScanning(ctx, "accountAbc", &lacework.IntegrationAwsOrgAgentlessScanningArgs{
ScanFrequency: pulumi.Float64(24),
QueryText: pulumi.Any(_var.Query_text),
ScanContainers: pulumi.Bool(true),
ScanHostVulnerabilities: pulumi.Bool(true),
AccountId: pulumi.String("0123456789"),
BucketArn: pulumi.String("arn:aws:s3:::bucket-arn"),
ScanningAccount: pulumi.String("0123456789"),
ManagementAccount: pulumi.String("0123456789"),
MonitoredAccounts: pulumi.StringArray{
pulumi.String("r-1234"),
},
Credentials: &lacework.IntegrationAwsOrgAgentlessScanningCredentialsArgs{
RoleArn: pulumi.String("arn:aws:iam::0123456789:role/iam-123"),
ExternalId: pulumi.String("0123456789"),
},
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Lacework = Pulumi.Lacework;
return await Deployment.RunAsync(() =>
{
var accountAbc = new Lacework.IntegrationAwsOrgAgentlessScanning("accountAbc", new()
{
ScanFrequency = 24,
QueryText = @var.Query_text,
ScanContainers = true,
ScanHostVulnerabilities = true,
AccountId = "0123456789",
BucketArn = "arn:aws:s3:::bucket-arn",
ScanningAccount = "0123456789",
ManagementAccount = "0123456789",
MonitoredAccounts = new[]
{
"r-1234",
},
Credentials = new Lacework.Inputs.IntegrationAwsOrgAgentlessScanningCredentialsArgs
{
RoleArn = "arn:aws:iam::0123456789:role/iam-123",
ExternalId = "0123456789",
},
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.lacework.IntegrationAwsOrgAgentlessScanning;
import com.pulumi.lacework.IntegrationAwsOrgAgentlessScanningArgs;
import com.pulumi.lacework.inputs.IntegrationAwsOrgAgentlessScanningCredentialsArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var accountAbc = new IntegrationAwsOrgAgentlessScanning("accountAbc", IntegrationAwsOrgAgentlessScanningArgs.builder()
.scanFrequency(24)
.queryText(var_.query_text())
.scanContainers(true)
.scanHostVulnerabilities(true)
.accountId("0123456789")
.bucketArn("arn:aws:s3:::bucket-arn")
.scanningAccount("0123456789")
.managementAccount("0123456789")
.monitoredAccounts("r-1234")
.credentials(IntegrationAwsOrgAgentlessScanningCredentialsArgs.builder()
.roleArn("arn:aws:iam::0123456789:role/iam-123")
.externalId("0123456789")
.build())
.build());
}
}
resources:
accountAbc:
type: lacework:IntegrationAwsOrgAgentlessScanning
properties:
scanFrequency: 24
queryText: ${var.query_text}
scanContainers: true
scanHostVulnerabilities: true
accountId: '0123456789'
bucketArn: arn:aws:s3:::bucket-arn
scanningAccount: '0123456789'
managementAccount: '0123456789'
monitoredAccounts:
- r-1234
credentials:
roleArn: arn:aws:iam::0123456789:role/iam-123
externalId: '0123456789'
Create IntegrationAwsOrgAgentlessScanning Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new IntegrationAwsOrgAgentlessScanning(name: string, args: IntegrationAwsOrgAgentlessScanningArgs, opts?: CustomResourceOptions);@overload
def IntegrationAwsOrgAgentlessScanning(resource_name: str,
args: IntegrationAwsOrgAgentlessScanningArgs,
opts: Optional[ResourceOptions] = None)
@overload
def IntegrationAwsOrgAgentlessScanning(resource_name: str,
opts: Optional[ResourceOptions] = None,
monitored_accounts: Optional[Sequence[str]] = None,
scanning_account: Optional[str] = None,
scan_frequency: Optional[float] = None,
integration_aws_org_agentless_scanning_id: Optional[str] = None,
retries: Optional[float] = None,
management_account: Optional[str] = None,
enabled: Optional[bool] = None,
name: Optional[str] = None,
org_account_mappings: Optional[Sequence[IntegrationAwsOrgAgentlessScanningOrgAccountMappingArgs]] = None,
query_text: Optional[str] = None,
account_id: Optional[str] = None,
scan_containers: Optional[bool] = None,
credentials: Optional[IntegrationAwsOrgAgentlessScanningCredentialsArgs] = None,
scan_host_vulnerabilities: Optional[bool] = None,
scan_multi_volume: Optional[bool] = None,
scan_stopped_instances: Optional[bool] = None,
bucket_arn: Optional[str] = None)func NewIntegrationAwsOrgAgentlessScanning(ctx *Context, name string, args IntegrationAwsOrgAgentlessScanningArgs, opts ...ResourceOption) (*IntegrationAwsOrgAgentlessScanning, error)public IntegrationAwsOrgAgentlessScanning(string name, IntegrationAwsOrgAgentlessScanningArgs args, CustomResourceOptions? opts = null)
public IntegrationAwsOrgAgentlessScanning(String name, IntegrationAwsOrgAgentlessScanningArgs args)
public IntegrationAwsOrgAgentlessScanning(String name, IntegrationAwsOrgAgentlessScanningArgs args, CustomResourceOptions options)
type: lacework:IntegrationAwsOrgAgentlessScanning
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args IntegrationAwsOrgAgentlessScanningArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args IntegrationAwsOrgAgentlessScanningArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args IntegrationAwsOrgAgentlessScanningArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args IntegrationAwsOrgAgentlessScanningArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args IntegrationAwsOrgAgentlessScanningArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var integrationAwsOrgAgentlessScanningResource = new Lacework.IntegrationAwsOrgAgentlessScanning("integrationAwsOrgAgentlessScanningResource", new()
{
MonitoredAccounts = new[]
{
"string",
},
ScanningAccount = "string",
ScanFrequency = 0,
IntegrationAwsOrgAgentlessScanningId = "string",
Retries = 0,
ManagementAccount = "string",
Enabled = false,
Name = "string",
OrgAccountMappings = new[]
{
new Lacework.Inputs.IntegrationAwsOrgAgentlessScanningOrgAccountMappingArgs
{
DefaultLaceworkAccount = "string",
Mappings = new[]
{
new Lacework.Inputs.IntegrationAwsOrgAgentlessScanningOrgAccountMappingMappingArgs
{
AwsAccounts = new[]
{
"string",
},
LaceworkAccount = "string",
},
},
},
},
QueryText = "string",
AccountId = "string",
ScanContainers = false,
Credentials = new Lacework.Inputs.IntegrationAwsOrgAgentlessScanningCredentialsArgs
{
ExternalId = "string",
RoleArn = "string",
},
ScanHostVulnerabilities = false,
ScanMultiVolume = false,
ScanStoppedInstances = false,
BucketArn = "string",
});
example, err := lacework.NewIntegrationAwsOrgAgentlessScanning(ctx, "integrationAwsOrgAgentlessScanningResource", &lacework.IntegrationAwsOrgAgentlessScanningArgs{
MonitoredAccounts: pulumi.StringArray{
pulumi.String("string"),
},
ScanningAccount: pulumi.String("string"),
ScanFrequency: pulumi.Float64(0),
IntegrationAwsOrgAgentlessScanningId: pulumi.String("string"),
Retries: pulumi.Float64(0),
ManagementAccount: pulumi.String("string"),
Enabled: pulumi.Bool(false),
Name: pulumi.String("string"),
OrgAccountMappings: lacework.IntegrationAwsOrgAgentlessScanningOrgAccountMappingArray{
&lacework.IntegrationAwsOrgAgentlessScanningOrgAccountMappingArgs{
DefaultLaceworkAccount: pulumi.String("string"),
Mappings: lacework.IntegrationAwsOrgAgentlessScanningOrgAccountMappingMappingArray{
&lacework.IntegrationAwsOrgAgentlessScanningOrgAccountMappingMappingArgs{
AwsAccounts: pulumi.StringArray{
pulumi.String("string"),
},
LaceworkAccount: pulumi.String("string"),
},
},
},
},
QueryText: pulumi.String("string"),
AccountId: pulumi.String("string"),
ScanContainers: pulumi.Bool(false),
Credentials: &lacework.IntegrationAwsOrgAgentlessScanningCredentialsArgs{
ExternalId: pulumi.String("string"),
RoleArn: pulumi.String("string"),
},
ScanHostVulnerabilities: pulumi.Bool(false),
ScanMultiVolume: pulumi.Bool(false),
ScanStoppedInstances: pulumi.Bool(false),
BucketArn: pulumi.String("string"),
})
var integrationAwsOrgAgentlessScanningResource = new IntegrationAwsOrgAgentlessScanning("integrationAwsOrgAgentlessScanningResource", IntegrationAwsOrgAgentlessScanningArgs.builder()
.monitoredAccounts("string")
.scanningAccount("string")
.scanFrequency(0)
.integrationAwsOrgAgentlessScanningId("string")
.retries(0)
.managementAccount("string")
.enabled(false)
.name("string")
.orgAccountMappings(IntegrationAwsOrgAgentlessScanningOrgAccountMappingArgs.builder()
.defaultLaceworkAccount("string")
.mappings(IntegrationAwsOrgAgentlessScanningOrgAccountMappingMappingArgs.builder()
.awsAccounts("string")
.laceworkAccount("string")
.build())
.build())
.queryText("string")
.accountId("string")
.scanContainers(false)
.credentials(IntegrationAwsOrgAgentlessScanningCredentialsArgs.builder()
.externalId("string")
.roleArn("string")
.build())
.scanHostVulnerabilities(false)
.scanMultiVolume(false)
.scanStoppedInstances(false)
.bucketArn("string")
.build());
integration_aws_org_agentless_scanning_resource = lacework.IntegrationAwsOrgAgentlessScanning("integrationAwsOrgAgentlessScanningResource",
monitored_accounts=["string"],
scanning_account="string",
scan_frequency=0,
integration_aws_org_agentless_scanning_id="string",
retries=0,
management_account="string",
enabled=False,
name="string",
org_account_mappings=[{
"default_lacework_account": "string",
"mappings": [{
"aws_accounts": ["string"],
"lacework_account": "string",
}],
}],
query_text="string",
account_id="string",
scan_containers=False,
credentials={
"external_id": "string",
"role_arn": "string",
},
scan_host_vulnerabilities=False,
scan_multi_volume=False,
scan_stopped_instances=False,
bucket_arn="string")
const integrationAwsOrgAgentlessScanningResource = new lacework.IntegrationAwsOrgAgentlessScanning("integrationAwsOrgAgentlessScanningResource", {
monitoredAccounts: ["string"],
scanningAccount: "string",
scanFrequency: 0,
integrationAwsOrgAgentlessScanningId: "string",
retries: 0,
managementAccount: "string",
enabled: false,
name: "string",
orgAccountMappings: [{
defaultLaceworkAccount: "string",
mappings: [{
awsAccounts: ["string"],
laceworkAccount: "string",
}],
}],
queryText: "string",
accountId: "string",
scanContainers: false,
credentials: {
externalId: "string",
roleArn: "string",
},
scanHostVulnerabilities: false,
scanMultiVolume: false,
scanStoppedInstances: false,
bucketArn: "string",
});
type: lacework:IntegrationAwsOrgAgentlessScanning
properties:
accountId: string
bucketArn: string
credentials:
externalId: string
roleArn: string
enabled: false
integrationAwsOrgAgentlessScanningId: string
managementAccount: string
monitoredAccounts:
- string
name: string
orgAccountMappings:
- defaultLaceworkAccount: string
mappings:
- awsAccounts:
- string
laceworkAccount: string
queryText: string
retries: 0
scanContainers: false
scanFrequency: 0
scanHostVulnerabilities: false
scanMultiVolume: false
scanStoppedInstances: false
scanningAccount: string
IntegrationAwsOrgAgentlessScanning Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The IntegrationAwsOrgAgentlessScanning resource accepts the following input properties:
- Monitored
Accounts List<string> - The list of monitroed AWS account IDs or OUs.
- Scan
Frequency double - How often, in hours, the scan will run.
- Scanning
Account string - The scanning AWS account ID.
- Account
Id string - The AWS account ID.
- Bucket
Arn string - The bucket ARN.
- Credentials
Integration
Aws Org Agentless Scanning Credentials - The credentials needed by the integration. See Credentials below for details.
- Enabled bool
- The state of the external integration. Defaults to
true. - Integration
Aws stringOrg Agentless Scanning Id - Management
Account string - The management AWS account ID.
- Name string
- The AWS Organizations Agentless Scanning integration name.
- Org
Account List<IntegrationMappings Aws Org Agentless Scanning Org Account Mapping> - Mapping of AWS accounts to Lacework accounts within a Lacework organization.
- Query
Text string - The LQL query.
- Retries double
- The number of attempts to create the external integration. Defaults to
5. - Scan
Containers bool - Whether to includes scanning for containers.
- Scan
Host boolVulnerabilities - Whether to includes scanning for host vulnerabilities.
- Scan
Multi boolVolume - Whether to scan secondary volumes (
true) or only root volumes (false). Defaults tofalse - Scan
Stopped boolInstances - Whether to scan stopped instances (
true). Defaults totrue
- Monitored
Accounts []string - The list of monitroed AWS account IDs or OUs.
- Scan
Frequency float64 - How often, in hours, the scan will run.
- Scanning
Account string - The scanning AWS account ID.
- Account
Id string - The AWS account ID.
- Bucket
Arn string - The bucket ARN.
- Credentials
Integration
Aws Org Agentless Scanning Credentials Args - The credentials needed by the integration. See Credentials below for details.
- Enabled bool
- The state of the external integration. Defaults to
true. - Integration
Aws stringOrg Agentless Scanning Id - Management
Account string - The management AWS account ID.
- Name string
- The AWS Organizations Agentless Scanning integration name.
- Org
Account []IntegrationMappings Aws Org Agentless Scanning Org Account Mapping Args - Mapping of AWS accounts to Lacework accounts within a Lacework organization.
- Query
Text string - The LQL query.
- Retries float64
- The number of attempts to create the external integration. Defaults to
5. - Scan
Containers bool - Whether to includes scanning for containers.
- Scan
Host boolVulnerabilities - Whether to includes scanning for host vulnerabilities.
- Scan
Multi boolVolume - Whether to scan secondary volumes (
true) or only root volumes (false). Defaults tofalse - Scan
Stopped boolInstances - Whether to scan stopped instances (
true). Defaults totrue
- monitored
Accounts List<String> - The list of monitroed AWS account IDs or OUs.
- scan
Frequency Double - How often, in hours, the scan will run.
- scanning
Account String - The scanning AWS account ID.
- account
Id String - The AWS account ID.
- bucket
Arn String - The bucket ARN.
- credentials
Integration
Aws Org Agentless Scanning Credentials - The credentials needed by the integration. See Credentials below for details.
- enabled Boolean
- The state of the external integration. Defaults to
true. - integration
Aws StringOrg Agentless Scanning Id - management
Account String - The management AWS account ID.
- name String
- The AWS Organizations Agentless Scanning integration name.
- org
Account List<IntegrationMappings Aws Org Agentless Scanning Org Account Mapping> - Mapping of AWS accounts to Lacework accounts within a Lacework organization.
- query
Text String - The LQL query.
- retries Double
- The number of attempts to create the external integration. Defaults to
5. - scan
Containers Boolean - Whether to includes scanning for containers.
- scan
Host BooleanVulnerabilities - Whether to includes scanning for host vulnerabilities.
- scan
Multi BooleanVolume - Whether to scan secondary volumes (
true) or only root volumes (false). Defaults tofalse - scan
Stopped BooleanInstances - Whether to scan stopped instances (
true). Defaults totrue
- monitored
Accounts string[] - The list of monitroed AWS account IDs or OUs.
- scan
Frequency number - How often, in hours, the scan will run.
- scanning
Account string - The scanning AWS account ID.
- account
Id string - The AWS account ID.
- bucket
Arn string - The bucket ARN.
- credentials
Integration
Aws Org Agentless Scanning Credentials - The credentials needed by the integration. See Credentials below for details.
- enabled boolean
- The state of the external integration. Defaults to
true. - integration
Aws stringOrg Agentless Scanning Id - management
Account string - The management AWS account ID.
- name string
- The AWS Organizations Agentless Scanning integration name.
- org
Account IntegrationMappings Aws Org Agentless Scanning Org Account Mapping[] - Mapping of AWS accounts to Lacework accounts within a Lacework organization.
- query
Text string - The LQL query.
- retries number
- The number of attempts to create the external integration. Defaults to
5. - scan
Containers boolean - Whether to includes scanning for containers.
- scan
Host booleanVulnerabilities - Whether to includes scanning for host vulnerabilities.
- scan
Multi booleanVolume - Whether to scan secondary volumes (
true) or only root volumes (false). Defaults tofalse - scan
Stopped booleanInstances - Whether to scan stopped instances (
true). Defaults totrue
- monitored_
accounts Sequence[str] - The list of monitroed AWS account IDs or OUs.
- scan_
frequency float - How often, in hours, the scan will run.
- scanning_
account str - The scanning AWS account ID.
- account_
id str - The AWS account ID.
- bucket_
arn str - The bucket ARN.
- credentials
Integration
Aws Org Agentless Scanning Credentials Args - The credentials needed by the integration. See Credentials below for details.
- enabled bool
- The state of the external integration. Defaults to
true. - integration_
aws_ strorg_ agentless_ scanning_ id - management_
account str - The management AWS account ID.
- name str
- The AWS Organizations Agentless Scanning integration name.
- org_
account_ Sequence[Integrationmappings Aws Org Agentless Scanning Org Account Mapping Args] - Mapping of AWS accounts to Lacework accounts within a Lacework organization.
- query_
text str - The LQL query.
- retries float
- The number of attempts to create the external integration. Defaults to
5. - scan_
containers bool - Whether to includes scanning for containers.
- scan_
host_ boolvulnerabilities - Whether to includes scanning for host vulnerabilities.
- scan_
multi_ boolvolume - Whether to scan secondary volumes (
true) or only root volumes (false). Defaults tofalse - scan_
stopped_ boolinstances - Whether to scan stopped instances (
true). Defaults totrue
- monitored
Accounts List<String> - The list of monitroed AWS account IDs or OUs.
- scan
Frequency Number - How often, in hours, the scan will run.
- scanning
Account String - The scanning AWS account ID.
- account
Id String - The AWS account ID.
- bucket
Arn String - The bucket ARN.
- credentials Property Map
- The credentials needed by the integration. See Credentials below for details.
- enabled Boolean
- The state of the external integration. Defaults to
true. - integration
Aws StringOrg Agentless Scanning Id - management
Account String - The management AWS account ID.
- name String
- The AWS Organizations Agentless Scanning integration name.
- org
Account List<Property Map>Mappings - Mapping of AWS accounts to Lacework accounts within a Lacework organization.
- query
Text String - The LQL query.
- retries Number
- The number of attempts to create the external integration. Defaults to
5. - scan
Containers Boolean - Whether to includes scanning for containers.
- scan
Host BooleanVulnerabilities - Whether to includes scanning for host vulnerabilities.
- scan
Multi BooleanVolume - Whether to scan secondary volumes (
true) or only root volumes (false). Defaults tofalse - scan
Stopped BooleanInstances - Whether to scan stopped instances (
true). Defaults totrue
Outputs
All input properties are implicitly available as output properties. Additionally, the IntegrationAwsOrgAgentlessScanning resource produces the following output properties:
- Created
Or stringUpdated By - Created
Or stringUpdated Time - Id string
- The provider-assigned unique ID for this managed resource.
- Intg
Guid string - Org
Level bool - Server
Token string - Type
Name string - Uri string
- Created
Or stringUpdated By - Created
Or stringUpdated Time - Id string
- The provider-assigned unique ID for this managed resource.
- Intg
Guid string - Org
Level bool - Server
Token string - Type
Name string - Uri string
- created
Or StringUpdated By - created
Or StringUpdated Time - id String
- The provider-assigned unique ID for this managed resource.
- intg
Guid String - org
Level Boolean - server
Token String - type
Name String - uri String
- created
Or stringUpdated By - created
Or stringUpdated Time - id string
- The provider-assigned unique ID for this managed resource.
- intg
Guid string - org
Level boolean - server
Token string - type
Name string - uri string
- created_
or_ strupdated_ by - created_
or_ strupdated_ time - id str
- The provider-assigned unique ID for this managed resource.
- intg_
guid str - org_
level bool - server_
token str - type_
name str - uri str
- created
Or StringUpdated By - created
Or StringUpdated Time - id String
- The provider-assigned unique ID for this managed resource.
- intg
Guid String - org
Level Boolean - server
Token String - type
Name String - uri String
Look up Existing IntegrationAwsOrgAgentlessScanning Resource
Get an existing IntegrationAwsOrgAgentlessScanning resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: IntegrationAwsOrgAgentlessScanningState, opts?: CustomResourceOptions): IntegrationAwsOrgAgentlessScanning@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
account_id: Optional[str] = None,
bucket_arn: Optional[str] = None,
created_or_updated_by: Optional[str] = None,
created_or_updated_time: Optional[str] = None,
credentials: Optional[IntegrationAwsOrgAgentlessScanningCredentialsArgs] = None,
enabled: Optional[bool] = None,
integration_aws_org_agentless_scanning_id: Optional[str] = None,
intg_guid: Optional[str] = None,
management_account: Optional[str] = None,
monitored_accounts: Optional[Sequence[str]] = None,
name: Optional[str] = None,
org_account_mappings: Optional[Sequence[IntegrationAwsOrgAgentlessScanningOrgAccountMappingArgs]] = None,
org_level: Optional[bool] = None,
query_text: Optional[str] = None,
retries: Optional[float] = None,
scan_containers: Optional[bool] = None,
scan_frequency: Optional[float] = None,
scan_host_vulnerabilities: Optional[bool] = None,
scan_multi_volume: Optional[bool] = None,
scan_stopped_instances: Optional[bool] = None,
scanning_account: Optional[str] = None,
server_token: Optional[str] = None,
type_name: Optional[str] = None,
uri: Optional[str] = None) -> IntegrationAwsOrgAgentlessScanningfunc GetIntegrationAwsOrgAgentlessScanning(ctx *Context, name string, id IDInput, state *IntegrationAwsOrgAgentlessScanningState, opts ...ResourceOption) (*IntegrationAwsOrgAgentlessScanning, error)public static IntegrationAwsOrgAgentlessScanning Get(string name, Input<string> id, IntegrationAwsOrgAgentlessScanningState? state, CustomResourceOptions? opts = null)public static IntegrationAwsOrgAgentlessScanning get(String name, Output<String> id, IntegrationAwsOrgAgentlessScanningState state, CustomResourceOptions options)resources: _: type: lacework:IntegrationAwsOrgAgentlessScanning get: id: ${id}- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Account
Id string - The AWS account ID.
- Bucket
Arn string - The bucket ARN.
- Created
Or stringUpdated By - Created
Or stringUpdated Time - Credentials
Integration
Aws Org Agentless Scanning Credentials - The credentials needed by the integration. See Credentials below for details.
- Enabled bool
- The state of the external integration. Defaults to
true. - Integration
Aws stringOrg Agentless Scanning Id - Intg
Guid string - Management
Account string - The management AWS account ID.
- Monitored
Accounts List<string> - The list of monitroed AWS account IDs or OUs.
- Name string
- The AWS Organizations Agentless Scanning integration name.
- Org
Account List<IntegrationMappings Aws Org Agentless Scanning Org Account Mapping> - Mapping of AWS accounts to Lacework accounts within a Lacework organization.
- Org
Level bool - Query
Text string - The LQL query.
- Retries double
- The number of attempts to create the external integration. Defaults to
5. - Scan
Containers bool - Whether to includes scanning for containers.
- Scan
Frequency double - How often, in hours, the scan will run.
- Scan
Host boolVulnerabilities - Whether to includes scanning for host vulnerabilities.
- Scan
Multi boolVolume - Whether to scan secondary volumes (
true) or only root volumes (false). Defaults tofalse - Scan
Stopped boolInstances - Whether to scan stopped instances (
true). Defaults totrue - Scanning
Account string - The scanning AWS account ID.
- Server
Token string - Type
Name string - Uri string
- Account
Id string - The AWS account ID.
- Bucket
Arn string - The bucket ARN.
- Created
Or stringUpdated By - Created
Or stringUpdated Time - Credentials
Integration
Aws Org Agentless Scanning Credentials Args - The credentials needed by the integration. See Credentials below for details.
- Enabled bool
- The state of the external integration. Defaults to
true. - Integration
Aws stringOrg Agentless Scanning Id - Intg
Guid string - Management
Account string - The management AWS account ID.
- Monitored
Accounts []string - The list of monitroed AWS account IDs or OUs.
- Name string
- The AWS Organizations Agentless Scanning integration name.
- Org
Account []IntegrationMappings Aws Org Agentless Scanning Org Account Mapping Args - Mapping of AWS accounts to Lacework accounts within a Lacework organization.
- Org
Level bool - Query
Text string - The LQL query.
- Retries float64
- The number of attempts to create the external integration. Defaults to
5. - Scan
Containers bool - Whether to includes scanning for containers.
- Scan
Frequency float64 - How often, in hours, the scan will run.
- Scan
Host boolVulnerabilities - Whether to includes scanning for host vulnerabilities.
- Scan
Multi boolVolume - Whether to scan secondary volumes (
true) or only root volumes (false). Defaults tofalse - Scan
Stopped boolInstances - Whether to scan stopped instances (
true). Defaults totrue - Scanning
Account string - The scanning AWS account ID.
- Server
Token string - Type
Name string - Uri string
- account
Id String - The AWS account ID.
- bucket
Arn String - The bucket ARN.
- created
Or StringUpdated By - created
Or StringUpdated Time - credentials
Integration
Aws Org Agentless Scanning Credentials - The credentials needed by the integration. See Credentials below for details.
- enabled Boolean
- The state of the external integration. Defaults to
true. - integration
Aws StringOrg Agentless Scanning Id - intg
Guid String - management
Account String - The management AWS account ID.
- monitored
Accounts List<String> - The list of monitroed AWS account IDs or OUs.
- name String
- The AWS Organizations Agentless Scanning integration name.
- org
Account List<IntegrationMappings Aws Org Agentless Scanning Org Account Mapping> - Mapping of AWS accounts to Lacework accounts within a Lacework organization.
- org
Level Boolean - query
Text String - The LQL query.
- retries Double
- The number of attempts to create the external integration. Defaults to
5. - scan
Containers Boolean - Whether to includes scanning for containers.
- scan
Frequency Double - How often, in hours, the scan will run.
- scan
Host BooleanVulnerabilities - Whether to includes scanning for host vulnerabilities.
- scan
Multi BooleanVolume - Whether to scan secondary volumes (
true) or only root volumes (false). Defaults tofalse - scan
Stopped BooleanInstances - Whether to scan stopped instances (
true). Defaults totrue - scanning
Account String - The scanning AWS account ID.
- server
Token String - type
Name String - uri String
- account
Id string - The AWS account ID.
- bucket
Arn string - The bucket ARN.
- created
Or stringUpdated By - created
Or stringUpdated Time - credentials
Integration
Aws Org Agentless Scanning Credentials - The credentials needed by the integration. See Credentials below for details.
- enabled boolean
- The state of the external integration. Defaults to
true. - integration
Aws stringOrg Agentless Scanning Id - intg
Guid string - management
Account string - The management AWS account ID.
- monitored
Accounts string[] - The list of monitroed AWS account IDs or OUs.
- name string
- The AWS Organizations Agentless Scanning integration name.
- org
Account IntegrationMappings Aws Org Agentless Scanning Org Account Mapping[] - Mapping of AWS accounts to Lacework accounts within a Lacework organization.
- org
Level boolean - query
Text string - The LQL query.
- retries number
- The number of attempts to create the external integration. Defaults to
5. - scan
Containers boolean - Whether to includes scanning for containers.
- scan
Frequency number - How often, in hours, the scan will run.
- scan
Host booleanVulnerabilities - Whether to includes scanning for host vulnerabilities.
- scan
Multi booleanVolume - Whether to scan secondary volumes (
true) or only root volumes (false). Defaults tofalse - scan
Stopped booleanInstances - Whether to scan stopped instances (
true). Defaults totrue - scanning
Account string - The scanning AWS account ID.
- server
Token string - type
Name string - uri string
- account_
id str - The AWS account ID.
- bucket_
arn str - The bucket ARN.
- created_
or_ strupdated_ by - created_
or_ strupdated_ time - credentials
Integration
Aws Org Agentless Scanning Credentials Args - The credentials needed by the integration. See Credentials below for details.
- enabled bool
- The state of the external integration. Defaults to
true. - integration_
aws_ strorg_ agentless_ scanning_ id - intg_
guid str - management_
account str - The management AWS account ID.
- monitored_
accounts Sequence[str] - The list of monitroed AWS account IDs or OUs.
- name str
- The AWS Organizations Agentless Scanning integration name.
- org_
account_ Sequence[Integrationmappings Aws Org Agentless Scanning Org Account Mapping Args] - Mapping of AWS accounts to Lacework accounts within a Lacework organization.
- org_
level bool - query_
text str - The LQL query.
- retries float
- The number of attempts to create the external integration. Defaults to
5. - scan_
containers bool - Whether to includes scanning for containers.
- scan_
frequency float - How often, in hours, the scan will run.
- scan_
host_ boolvulnerabilities - Whether to includes scanning for host vulnerabilities.
- scan_
multi_ boolvolume - Whether to scan secondary volumes (
true) or only root volumes (false). Defaults tofalse - scan_
stopped_ boolinstances - Whether to scan stopped instances (
true). Defaults totrue - scanning_
account str - The scanning AWS account ID.
- server_
token str - type_
name str - uri str
- account
Id String - The AWS account ID.
- bucket
Arn String - The bucket ARN.
- created
Or StringUpdated By - created
Or StringUpdated Time - credentials Property Map
- The credentials needed by the integration. See Credentials below for details.
- enabled Boolean
- The state of the external integration. Defaults to
true. - integration
Aws StringOrg Agentless Scanning Id - intg
Guid String - management
Account String - The management AWS account ID.
- monitored
Accounts List<String> - The list of monitroed AWS account IDs or OUs.
- name String
- The AWS Organizations Agentless Scanning integration name.
- org
Account List<Property Map>Mappings - Mapping of AWS accounts to Lacework accounts within a Lacework organization.
- org
Level Boolean - query
Text String - The LQL query.
- retries Number
- The number of attempts to create the external integration. Defaults to
5. - scan
Containers Boolean - Whether to includes scanning for containers.
- scan
Frequency Number - How often, in hours, the scan will run.
- scan
Host BooleanVulnerabilities - Whether to includes scanning for host vulnerabilities.
- scan
Multi BooleanVolume - Whether to scan secondary volumes (
true) or only root volumes (false). Defaults tofalse - scan
Stopped BooleanInstances - Whether to scan stopped instances (
true). Defaults totrue - scanning
Account String - The scanning AWS account ID.
- server
Token String - type
Name String - uri String
Supporting Types
IntegrationAwsOrgAgentlessScanningCredentials, IntegrationAwsOrgAgentlessScanningCredentialsArgs
- External
Id string - The external id.
- Role
Arn string - The role arn.
- External
Id string - The external id.
- Role
Arn string - The role arn.
- external
Id String - The external id.
- role
Arn String - The role arn.
- external
Id string - The external id.
- role
Arn string - The role arn.
- external_
id str - The external id.
- role_
arn str - The role arn.
- external
Id String - The external id.
- role
Arn String - The role arn.
IntegrationAwsOrgAgentlessScanningOrgAccountMapping, IntegrationAwsOrgAgentlessScanningOrgAccountMappingArgs
- Default
Lacework stringAccount - The default Lacework account name where any non-mapped AWS account will appear
- Mappings
List<Integration
Aws Org Agentless Scanning Org Account Mapping Mapping> - A map of AWS accounts to Lacework account. This can be specified multiple times to map multiple Lacework accounts.
- Default
Lacework stringAccount - The default Lacework account name where any non-mapped AWS account will appear
- Mappings
[]Integration
Aws Org Agentless Scanning Org Account Mapping Mapping - A map of AWS accounts to Lacework account. This can be specified multiple times to map multiple Lacework accounts.
- default
Lacework StringAccount - The default Lacework account name where any non-mapped AWS account will appear
- mappings
List<Integration
Aws Org Agentless Scanning Org Account Mapping Mapping> - A map of AWS accounts to Lacework account. This can be specified multiple times to map multiple Lacework accounts.
- default
Lacework stringAccount - The default Lacework account name where any non-mapped AWS account will appear
- mappings
Integration
Aws Org Agentless Scanning Org Account Mapping Mapping[] - A map of AWS accounts to Lacework account. This can be specified multiple times to map multiple Lacework accounts.
- default_
lacework_ straccount - The default Lacework account name where any non-mapped AWS account will appear
- mappings
Sequence[Integration
Aws Org Agentless Scanning Org Account Mapping Mapping] - A map of AWS accounts to Lacework account. This can be specified multiple times to map multiple Lacework accounts.
- default
Lacework StringAccount - The default Lacework account name where any non-mapped AWS account will appear
- mappings List<Property Map>
- A map of AWS accounts to Lacework account. This can be specified multiple times to map multiple Lacework accounts.
IntegrationAwsOrgAgentlessScanningOrgAccountMappingMapping, IntegrationAwsOrgAgentlessScanningOrgAccountMappingMappingArgs
- Aws
Accounts List<string> - The list of AWS account IDs to map.
- Lacework
Account string - The Lacework account name where the CloudTrail activity from the selected AWS accounts will appear.
- Aws
Accounts []string - The list of AWS account IDs to map.
- Lacework
Account string - The Lacework account name where the CloudTrail activity from the selected AWS accounts will appear.
- aws
Accounts List<String> - The list of AWS account IDs to map.
- lacework
Account String - The Lacework account name where the CloudTrail activity from the selected AWS accounts will appear.
- aws
Accounts string[] - The list of AWS account IDs to map.
- lacework
Account string - The Lacework account name where the CloudTrail activity from the selected AWS accounts will appear.
- aws_
accounts Sequence[str] - The list of AWS account IDs to map.
- lacework_
account str - The Lacework account name where the CloudTrail activity from the selected AWS accounts will appear.
- aws
Accounts List<String> - The list of AWS account IDs to map.
- lacework
Account String - The Lacework account name where the CloudTrail activity from the selected AWS accounts will appear.
Import
A Lacework AWS Organizations Agentless Scanning integration can be imported using a INT_GUID, e.g.
$ pulumi import lacework:index/integrationAwsOrgAgentlessScanning:IntegrationAwsOrgAgentlessScanning account_abc EXAMPLE_1234BAE1E42182964D23973F44CFEA3C4AB63B99E9A1EC5
-> Note: To retrieve the INT_GUID from existing integrations in your account, use the
Lacework CLI command lacework cloud-accounts list. To install this tool follow
this documentation.
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- lacework lacework/terraform-provider-lacework
- License
- Notes
- This Pulumi package is based on the
laceworkTerraform Provider.