Class CfnConfigurationPolicy.SecurityControlsConfigurationProperty
An object that defines which security controls are enabled in an AWS Security Hub configuration policy.
Inheritance
Namespace: Amazon.CDK.AWS.SecurityHub
Assembly: Amazon.CDK.Lib.dll
Syntax (csharp)
public class SecurityControlsConfigurationProperty : Object, CfnConfigurationPolicy.ISecurityControlsConfigurationPropertySyntax (vb)
Public Class SecurityControlsConfigurationProperty
Inherits Object
Implements CfnConfigurationPolicy.ISecurityControlsConfigurationPropertyRemarks
The enablement status of a control is aligned across all of the enabled standards in an account.
This property is required only if ServiceEnabled is set to true in your configuration policy.
ExampleMetadata: fixture=_generated
Examples
// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
using Amazon.CDK.AWS.SecurityHub;
var securityControlsConfigurationProperty = new SecurityControlsConfigurationProperty {
DisabledSecurityControlIdentifiers = new [] { "disabledSecurityControlIdentifiers" },
EnabledSecurityControlIdentifiers = new [] { "enabledSecurityControlIdentifiers" },
SecurityControlCustomParameters = new [] { new SecurityControlCustomParameterProperty {
Parameters = new Dictionary<string, object> {
{ "parametersKey", new ParameterConfigurationProperty {
ValueType = "valueType",
// the properties below are optional
Value = new ParameterValueProperty {
Boolean = false,
Double = 123,
Enum = "enum",
EnumList = new [] { "enumList" },
Integer = 123,
IntegerList = new [] { 123 },
String = "string",
StringList = new [] { "stringList" }
}
} }
},
SecurityControlId = "securityControlId"
} }
};Synopsis
Constructors
| Security |
Properties
| Disabled |
A list of security controls that are disabled in the configuration policy. |
| Enabled |
A list of security controls that are enabled in the configuration policy. |
| Security |
A list of security controls and control parameter values that are included in a configuration policy. |
Constructors
SecurityControlsConfigurationProperty()
public SecurityControlsConfigurationProperty()Properties
DisabledSecurityControlIdentifiers
A list of security controls that are disabled in the configuration policy.
public string[] DisabledSecurityControlIdentifiers { get; set; }Property Value
System.
Remarks
Provide only one of EnabledSecurityControlIdentifiers or DisabledSecurityControlIdentifiers .
If you provide DisabledSecurityControlIdentifiers , Security Hub enables all other controls not in the list, and enables AutoEnableControls .
EnabledSecurityControlIdentifiers
A list of security controls that are enabled in the configuration policy.
public string[] EnabledSecurityControlIdentifiers { get; set; }Property Value
System.
Remarks
Provide only one of EnabledSecurityControlIdentifiers or DisabledSecurityControlIdentifiers .
If you provide EnabledSecurityControlIdentifiers , Security Hub disables all other controls not in the list, and disables AutoEnableControls .
SecurityControlCustomParameters
A list of security controls and control parameter values that are included in a configuration policy.
public object SecurityControlCustomParameters { get; set; }Property Value
System.