Class CfnConfigurationPolicy.SecurityControlsConfigurationProperty
An object that defines which security controls are enabled in an AWS Security Hub configuration policy.
Inheritance
Namespace: Amazon.CDK.AWS.SecurityHub
Assembly: Amazon.CDK.Lib.dll
Syntax (csharp)
public class SecurityControlsConfigurationProperty : Object, CfnConfigurationPolicy.ISecurityControlsConfigurationProperty
Syntax (vb)
Public Class SecurityControlsConfigurationProperty
Inherits Object
Implements CfnConfigurationPolicy.ISecurityControlsConfigurationProperty
Remarks
The enablement status of a control is aligned across all of the enabled standards in an account.
This property is required only if ServiceEnabled
is set to true
in your configuration policy.
ExampleMetadata: fixture=_generated
Examples
// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
using Amazon.CDK.AWS.SecurityHub;
var securityControlsConfigurationProperty = new SecurityControlsConfigurationProperty {
DisabledSecurityControlIdentifiers = new [] { "disabledSecurityControlIdentifiers" },
EnabledSecurityControlIdentifiers = new [] { "enabledSecurityControlIdentifiers" },
SecurityControlCustomParameters = new [] { new SecurityControlCustomParameterProperty {
Parameters = new Dictionary<string, object> {
{ "parametersKey", new ParameterConfigurationProperty {
ValueType = "valueType",
// the properties below are optional
Value = new ParameterValueProperty {
Boolean = false,
Double = 123,
Enum = "enum",
EnumList = new [] { "enumList" },
Integer = 123,
IntegerList = new [] { 123 },
String = "string",
StringList = new [] { "stringList" }
}
} }
},
SecurityControlId = "securityControlId"
} }
};
Synopsis
Constructors
Security |
Properties
Disabled |
A list of security controls that are disabled in the configuration policy. |
Enabled |
A list of security controls that are enabled in the configuration policy. |
Security |
A list of security controls and control parameter values that are included in a configuration policy. |
Constructors
SecurityControlsConfigurationProperty()
public SecurityControlsConfigurationProperty()
Properties
DisabledSecurityControlIdentifiers
A list of security controls that are disabled in the configuration policy.
public string[] DisabledSecurityControlIdentifiers { get; set; }
Property Value
System.
Remarks
Provide only one of EnabledSecurityControlIdentifiers
or DisabledSecurityControlIdentifiers
.
If you provide DisabledSecurityControlIdentifiers
, Security Hub enables all other controls not in the list, and enables AutoEnableControls .
EnabledSecurityControlIdentifiers
A list of security controls that are enabled in the configuration policy.
public string[] EnabledSecurityControlIdentifiers { get; set; }
Property Value
System.
Remarks
Provide only one of EnabledSecurityControlIdentifiers
or DisabledSecurityControlIdentifiers
.
If you provide EnabledSecurityControlIdentifiers
, Security Hub disables all other controls not in the list, and disables AutoEnableControls .
SecurityControlCustomParameters
A list of security controls and control parameter values that are included in a configuration policy.
public object SecurityControlCustomParameters { get; set; }
Property Value
System.