Package software.amazon.awscdk.services.observabilityadmin

Interface CfnOrganizationCentralizationRule.LogsEncryptionConfigurationProperty

All Superinterfaces:

software.amazon.jsii.JsiiSerializable

All Known Implementing Classes:

CfnOrganizationCentralizationRule.LogsEncryptionConfigurationProperty.Jsii$Proxy

Enclosing class:

CfnOrganizationCentralizationRule

@Stability(Stable)
public static interface CfnOrganizationCentralizationRule.LogsEncryptionConfigurationProperty
extends software.amazon.jsii.JsiiSerializable

Configuration for encrypting centralized log groups.

This configuration is only applied to destination log groups for which the corresponding source log groups are encrypted using Customer Managed KMS Keys.

Example:

 // The code below shows an example of how to instantiate this type.
 // The values are placeholders you should change.
 import software.amazon.awscdk.services.observabilityadmin.*;
 LogsEncryptionConfigurationProperty logsEncryptionConfigurationProperty = LogsEncryptionConfigurationProperty.builder()
         .encryptionStrategy("encryptionStrategy")
         // the properties below are optional
         .encryptionConflictResolutionStrategy("encryptionConflictResolutionStrategy")
         .kmsKeyArn("kmsKeyArn")
         .build();
 

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-observabilityadmin-organizationcentralizationrule-logsencryptionconfiguration.html

Nested Class Summary

Nested Classes

Modifier and Type	Interface	Description
static final class	CfnOrganizationCentralizationRule.LogsEncryptionConfigurationProperty.Builder	A builder for CfnOrganizationCentralizationRule.LogsEncryptionConfigurationProperty
static final class	CfnOrganizationCentralizationRule.LogsEncryptionConfigurationProperty.Jsii$Proxy	An implementation for CfnOrganizationCentralizationRule.LogsEncryptionConfigurationProperty

Method Summary

Modifier and Type	Method	Description
static CfnOrganizationCentralizationRule.LogsEncryptionConfigurationProperty.Builder	builder()
default String	getEncryptionConflictResolutionStrategy()	Conflict resolution strategy for centralization if the encryption strategy is set to CUSTOMER_MANAGED and the destination log group is encrypted with an AWS_OWNED KMS Key.
String	getEncryptionStrategy()	Configuration that determines the encryption strategy of the destination log groups.
default String	getKmsKeyArn()	KMS Key ARN belonging to the primary destination account and region, to encrypt newly created central log groups in the primary destination.

Methods inherited from interface software.amazon.jsii.JsiiSerializable

$jsii$toJson

Method Details

getEncryptionStrategy

@Stability(Stable)
@NotNull
String getEncryptionStrategy()

Configuration that determines the encryption strategy of the destination log groups.

CUSTOMER_MANAGED uses the configured KmsKeyArn to encrypt newly created destination log groups.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-observabilityadmin-organizationcentralizationrule-logsencryptionconfiguration.html#cfn-observabilityadmin-organizationcentralizationrule-logsencryptionconfiguration-encryptionstrategy

getEncryptionConflictResolutionStrategy

@Stability(Stable)
@Nullable
default String getEncryptionConflictResolutionStrategy()

Conflict resolution strategy for centralization if the encryption strategy is set to CUSTOMER_MANAGED and the destination log group is encrypted with an AWS_OWNED KMS Key.

ALLOW lets centralization go through while SKIP prevents centralization into the destination log group.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-observabilityadmin-organizationcentralizationrule-logsencryptionconfiguration.html#cfn-observabilityadmin-organizationcentralizationrule-logsencryptionconfiguration-encryptionconflictresolutionstrategy

getKmsKeyArn

@Stability(Stable)
@Nullable
default String getKmsKeyArn()

KMS Key ARN belonging to the primary destination account and region, to encrypt newly created central log groups in the primary destination.

See Also:

• http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-observabilityadmin-organizationcentralizationrule-logsencryptionconfiguration.html#cfn-observabilityadmin-organizationcentralizationrule-logsencryptionconfiguration-kmskeyarn

builder

@Stability(Stable)
static CfnOrganizationCentralizationRule.LogsEncryptionConfigurationProperty.Builder builder()

Returns:

a CfnOrganizationCentralizationRule.LogsEncryptionConfigurationProperty.Builder of CfnOrganizationCentralizationRule.LogsEncryptionConfigurationProperty