CfnAccountAuditConfigurationProps

class aws_cdk.aws_iot.CfnAccountAuditConfigurationProps(*, account_id, audit_check_configurations, audit_notification_target_configurations=None, role_arn)

Bases: object

Properties for defining a AWS::IoT::AccountAuditConfiguration.

Parameters
Link

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-iot-accountauditconfiguration.html

Example:

# The code below shows an example of how to instantiate this type.
# The values are placeholders you should change.
import aws_cdk.aws_iot as iot

cfn_account_audit_configuration_props = iot.CfnAccountAuditConfigurationProps(
    account_id="accountId",
    audit_check_configurations=iot.CfnAccountAuditConfiguration.AuditCheckConfigurationsProperty(
        authenticated_cognito_role_overly_permissive_check=iot.CfnAccountAuditConfiguration.AuditCheckConfigurationProperty(
            enabled=False
        ),
        ca_certificate_expiring_check=iot.CfnAccountAuditConfiguration.AuditCheckConfigurationProperty(
            enabled=False
        ),
        ca_certificate_key_quality_check=iot.CfnAccountAuditConfiguration.AuditCheckConfigurationProperty(
            enabled=False
        ),
        conflicting_client_ids_check=iot.CfnAccountAuditConfiguration.AuditCheckConfigurationProperty(
            enabled=False
        ),
        device_certificate_expiring_check=iot.CfnAccountAuditConfiguration.AuditCheckConfigurationProperty(
            enabled=False
        ),
        device_certificate_key_quality_check=iot.CfnAccountAuditConfiguration.AuditCheckConfigurationProperty(
            enabled=False
        ),
        device_certificate_shared_check=iot.CfnAccountAuditConfiguration.AuditCheckConfigurationProperty(
            enabled=False
        ),
        iot_policy_overly_permissive_check=iot.CfnAccountAuditConfiguration.AuditCheckConfigurationProperty(
            enabled=False
        ),
        iot_role_alias_allows_access_to_unused_services_check=iot.CfnAccountAuditConfiguration.AuditCheckConfigurationProperty(
            enabled=False
        ),
        iot_role_alias_overly_permissive_check=iot.CfnAccountAuditConfiguration.AuditCheckConfigurationProperty(
            enabled=False
        ),
        logging_disabled_check=iot.CfnAccountAuditConfiguration.AuditCheckConfigurationProperty(
            enabled=False
        ),
        revoked_ca_certificate_still_active_check=iot.CfnAccountAuditConfiguration.AuditCheckConfigurationProperty(
            enabled=False
        ),
        revoked_device_certificate_still_active_check=iot.CfnAccountAuditConfiguration.AuditCheckConfigurationProperty(
            enabled=False
        ),
        unauthenticated_cognito_role_overly_permissive_check=iot.CfnAccountAuditConfiguration.AuditCheckConfigurationProperty(
            enabled=False
        )
    ),
    role_arn="roleArn",

    # the properties below are optional
    audit_notification_target_configurations=iot.CfnAccountAuditConfiguration.AuditNotificationTargetConfigurationsProperty(
        sns=iot.CfnAccountAuditConfiguration.AuditNotificationTargetProperty(
            enabled=False,
            role_arn="roleArn",
            target_arn="targetArn"
        )
    )
)

Attributes

account_id

AWS::IoT::AccountAuditConfiguration.AccountId.

Link

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-iot-accountauditconfiguration.html#cfn-iot-accountauditconfiguration-accountid

Return type

str

audit_check_configurations

AWS::IoT::AccountAuditConfiguration.AuditCheckConfigurations.

Link

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-iot-accountauditconfiguration.html#cfn-iot-accountauditconfiguration-auditcheckconfigurations

Return type

Union[IResolvable, AuditCheckConfigurationsProperty]

audit_notification_target_configurations

AWS::IoT::AccountAuditConfiguration.AuditNotificationTargetConfigurations.

Link

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-iot-accountauditconfiguration.html#cfn-iot-accountauditconfiguration-auditnotificationtargetconfigurations

Return type

Union[IResolvable, AuditNotificationTargetConfigurationsProperty, None]

role_arn

AWS::IoT::AccountAuditConfiguration.RoleArn.

Link

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-iot-accountauditconfiguration.html#cfn-iot-accountauditconfiguration-rolearn

Return type

str