Request Syntax URI Request Parameters Request Body Response Syntax Response Elements Errors See Also

UpdateCentralizationRuleForOrganization

Updates an existing centralization rule that applies across an AWS Organization. This operation can only be called by the organization's management account or a delegated administrator account.

Request Syntax


POST /UpdateCentralizationRuleForOrganization HTTP/1.1
Content-type: application/json

{
   "Rule": { 
      "Destination": { 
         "Account": "string",
         "DestinationLogsConfiguration": { 
            "BackupConfiguration": { 
               "KmsKeyArn": "string",
               "Region": "string"
            },
            "LogsEncryptionConfiguration": { 
               "EncryptionConflictResolutionStrategy": "string",
               "EncryptionStrategy": "string",
               "KmsKeyArn": "string"
            }
         },
         "Region": "string"
      },
      "Source": { 
         "Regions": [ "string" ],
         "Scope": "string",
         "SourceLogsConfiguration": { 
            "EncryptedLogGroupStrategy": "string",
            "LogGroupSelectionCriteria": "string"
         }
      }
   },
   "RuleIdentifier": "string"
}

URI Request Parameters

The request does not use any URI parameters.

Request Body

The request accepts the following data in JSON format.

Rule

The configuration details for the organization-wide centralization rule, including the source configuration and the destination configuration to centralize telemetry data across the organization.

Type: CentralizationRule object

Required: Yes

RuleIdentifier

The identifier (name or ARN) of the organization centralization rule to update.

Type: String

Length Constraints: Minimum length of 1. Maximum length of 1011.

Required: Yes

Response Syntax


HTTP/1.1 200
Content-type: application/json

{
   "RuleArn": "string"
}

Response Elements

If the action is successful, the service sends back an HTTP 200 response.

The following data is returned in JSON format by the service.

RuleArn

The Amazon Resource Name (ARN) of the updated organization centralization rule.

Type: String

Length Constraints: Minimum length of 1. Maximum length of 1011.

Pattern: arn:aws([a-z0-9\-]+)?:([a-zA-Z0-9\-]+):([a-z0-9\-]+)?:([0-9]{12})?:(.+)

Errors

For information about the errors that are common to all actions, see Common Errors.

AccessDeniedException

Indicates you don't have permissions to perform the requested operation. The user or role that is making the request must have at least one IAM permissions policy attached that grants the required permissions. For more information, see Access management for AWS resources in the IAM user guide.

amznErrorType: The name of the exception.

HTTP Status Code: 400

InternalServerException

Indicates the request has failed to process because of an unknown server error, exception, or failure.

amznErrorType: The name of the exception.
retryAfterSeconds: The number of seconds to wait before retrying the request.

HTTP Status Code: 500

ResourceNotFoundException

The specified resource (such as a telemetry rule) could not be found.

ResourceId: The identifier of the resource which could not be found.
ResourceType: The type of the resource which could not be found.

HTTP Status Code: 404

ServiceQuotaExceededException

The requested operation would exceed the allowed quota for the specified resource type.

amznErrorType: The name of the exception.
QuotaCode: The code for the exceeded service quota.
ResourceId: The identifier of the resource which exceeds the service quota.
ResourceType: The type of the resource which exceeds the service quota.
ServiceCode: The code for the service of the exceeded quota.

HTTP Status Code: 402

TooManyRequestsException

The request throughput limit was exceeded.

HTTP Status Code: 429

ValidationException

Indicates input validation failed. Check your request parameters and retry the request.

Errors: The errors in the input which caused the exception.

HTTP Status Code: 400