Class CfnAccountAuditConfiguration
Use the AWS::IoT::AccountAuditConfiguration
resource to configure or reconfigure the Device Defender audit settings for your account.
Implements
Inherited Members
Namespace: Amazon.CDK.AWS.IoT
Assembly: Amazon.CDK.Lib.dll
Syntax (csharp)
public class CfnAccountAuditConfiguration : CfnResource, IInspectable
Syntax (vb)
Public Class CfnAccountAuditConfiguration
Inherits CfnResource
Implements IInspectable
Remarks
Settings include how audit notifications are sent and which audit checks are enabled or disabled. For API reference, see UpdateAccountAuditConfiguration and for detailed information on all available audit checks, see Audit checks .
CloudformationResource: AWS::IoT::AccountAuditConfiguration
ExampleMetadata: fixture=_generated
Examples
// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
using Amazon.CDK.AWS.IoT;
var cfnAccountAuditConfiguration = new CfnAccountAuditConfiguration(this, "MyCfnAccountAuditConfiguration", new CfnAccountAuditConfigurationProps {
AccountId = "accountId",
AuditCheckConfigurations = new AuditCheckConfigurationsProperty {
AuthenticatedCognitoRoleOverlyPermissiveCheck = new AuditCheckConfigurationProperty {
Enabled = false
},
CaCertificateExpiringCheck = new AuditCheckConfigurationProperty {
Enabled = false
},
CaCertificateKeyQualityCheck = new AuditCheckConfigurationProperty {
Enabled = false
},
ConflictingClientIdsCheck = new AuditCheckConfigurationProperty {
Enabled = false
},
DeviceCertificateExpiringCheck = new AuditCheckConfigurationProperty {
Enabled = false
},
DeviceCertificateKeyQualityCheck = new AuditCheckConfigurationProperty {
Enabled = false
},
DeviceCertificateSharedCheck = new AuditCheckConfigurationProperty {
Enabled = false
},
IntermediateCaRevokedForActiveDeviceCertificatesCheck = new AuditCheckConfigurationProperty {
Enabled = false
},
IotPolicyOverlyPermissiveCheck = new AuditCheckConfigurationProperty {
Enabled = false
},
IoTPolicyPotentialMisConfigurationCheck = new AuditCheckConfigurationProperty {
Enabled = false
},
IotRoleAliasAllowsAccessToUnusedServicesCheck = new AuditCheckConfigurationProperty {
Enabled = false
},
IotRoleAliasOverlyPermissiveCheck = new AuditCheckConfigurationProperty {
Enabled = false
},
LoggingDisabledCheck = new AuditCheckConfigurationProperty {
Enabled = false
},
RevokedCaCertificateStillActiveCheck = new AuditCheckConfigurationProperty {
Enabled = false
},
RevokedDeviceCertificateStillActiveCheck = new AuditCheckConfigurationProperty {
Enabled = false
},
UnauthenticatedCognitoRoleOverlyPermissiveCheck = new AuditCheckConfigurationProperty {
Enabled = false
}
},
RoleArn = "roleArn",
// the properties below are optional
AuditNotificationTargetConfigurations = new AuditNotificationTargetConfigurationsProperty {
Sns = new AuditNotificationTargetProperty {
Enabled = false,
RoleArn = "roleArn",
TargetArn = "targetArn"
}
}
});
Synopsis
Constructors
CfnAccountAuditConfiguration(ByRefValue) | Used by jsii to construct an instance of this class from a Javascript-owned object reference |
CfnAccountAuditConfiguration(DeputyBase.DeputyProps) | Used by jsii to construct an instance of this class from DeputyProps |
CfnAccountAuditConfiguration(Construct, String, ICfnAccountAuditConfigurationProps) |
Properties
AccountId | The ID of the account. |
AuditCheckConfigurations | Specifies which audit checks are enabled and disabled for this account. |
AuditNotificationTargetConfigurations | Information about the targets to which audit notifications are sent. |
CFN_RESOURCE_TYPE_NAME | The CloudFormation resource type name for this resource class. |
CfnProperties | |
RoleArn | The Amazon Resource Name (ARN) of the role that grants permission to AWS IoT to access information about your devices, policies, certificates, and other items as required when performing an audit. |
Methods
Inspect(TreeInspector) | Examines the CloudFormation resource and discloses attributes. |
RenderProperties(IDictionary<String, Object>) |
Constructors
CfnAccountAuditConfiguration(ByRefValue)
Used by jsii to construct an instance of this class from a Javascript-owned object reference
protected CfnAccountAuditConfiguration(ByRefValue reference)
Parameters
- reference Amazon.JSII.Runtime.Deputy.ByRefValue
The Javascript-owned object reference
CfnAccountAuditConfiguration(DeputyBase.DeputyProps)
Used by jsii to construct an instance of this class from DeputyProps
protected CfnAccountAuditConfiguration(DeputyBase.DeputyProps props)
Parameters
- props Amazon.JSII.Runtime.Deputy.DeputyBase.DeputyProps
The deputy props
CfnAccountAuditConfiguration(Construct, String, ICfnAccountAuditConfigurationProps)
public CfnAccountAuditConfiguration(Construct scope, string id, ICfnAccountAuditConfigurationProps props)
Parameters
- scope Constructs.Construct
Scope in which this resource is defined.
- id System.String
Construct identifier for this resource (unique in its scope).
- props ICfnAccountAuditConfigurationProps
Resource properties.
Properties
AccountId
The ID of the account.
public virtual string AccountId { get; set; }
Property Value
System.String
AuditCheckConfigurations
Specifies which audit checks are enabled and disabled for this account.
public virtual object AuditCheckConfigurations { get; set; }
Property Value
System.Object
AuditNotificationTargetConfigurations
Information about the targets to which audit notifications are sent.
public virtual object AuditNotificationTargetConfigurations { get; set; }
Property Value
System.Object
CFN_RESOURCE_TYPE_NAME
The CloudFormation resource type name for this resource class.
public static string CFN_RESOURCE_TYPE_NAME { get; }
Property Value
System.String
CfnProperties
protected override IDictionary<string, object> CfnProperties { get; }
Property Value
System.Collections.Generic.IDictionary<System.String, System.Object>
Overrides
RoleArn
The Amazon Resource Name (ARN) of the role that grants permission to AWS IoT to access information about your devices, policies, certificates, and other items as required when performing an audit.
public virtual string RoleArn { get; set; }
Property Value
System.String
Methods
Inspect(TreeInspector)
Examines the CloudFormation resource and discloses attributes.
public virtual void Inspect(TreeInspector inspector)
Parameters
- inspector TreeInspector
tree inspector to collect and process attributes.
RenderProperties(IDictionary<String, Object>)
protected override IDictionary<string, object> RenderProperties(IDictionary<string, object> props)
Parameters
- props System.Collections.Generic.IDictionary<System.String, System.Object>
Returns
System.Collections.Generic.IDictionary<System.String, System.Object>