AWS::SecurityHub::ConfigurationPolicy Policy
An object that defines how AWS Security Hub is configured. It includes whether Security Hub is enabled or disabled, a list of enabled security standards, a list of enabled or disabled security controls, and a list of custom parameter values for specified controls. If you provide a list of security controls that are enabled in the configuration policy, Security Hub disables all other controls (including newly released controls). If you provide a list of security controls that are disabled in the configuration policy, Security Hub enables all other controls (including newly released controls).
Syntax
To declare this entity in your AWS CloudFormation template, use the following syntax:
JSON
{ "SecurityHub" :
SecurityHubPolicy
}
YAML
SecurityHub:
SecurityHubPolicy
Properties
SecurityHub
-
The AWS service that the configuration policy applies to.
Required: No
Type: SecurityHubPolicy
Update requires: No interruption