AWS::SecurityHub::ConfigurationPolicy Policy

An object that defines how AWS Security Hub CSPM is configured. It includes whether Security Hub CSPM is enabled or disabled, a list of enabled security standards, a list of enabled or disabled security controls, and a list of custom parameter values for specified controls. If you provide a list of security controls that are enabled in the configuration policy, Security Hub CSPM disables all other controls (including newly released controls). If you provide a list of security controls that are disabled in the configuration policy, Security Hub CSPM enables all other controls (including newly released controls).

Syntax

To declare this entity in your CloudFormation template, use the following syntax:

JSON


{
  "SecurityHub" : SecurityHubPolicy
}

YAML


  SecurityHub: 
    SecurityHubPolicy

Properties

SecurityHub

The AWS service that the configuration policy applies to.

Required: No

Type: SecurityHubPolicy

Update requires: No interruption

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

ParameterValue

SecurityControlCustomParameter