Package software.amazon.awscdk.services.securityhub

Interface CfnConfigurationPolicy.PolicyProperty

All Superinterfaces:
software.amazon.jsii.JsiiSerializable
All Known Implementing Classes:
CfnConfigurationPolicy.PolicyProperty.Jsii$Proxy
Enclosing class:
CfnConfigurationPolicy
@Stability(Stable) public static interface CfnConfigurationPolicy.PolicyProperty extends software.amazon.jsii.JsiiSerializable
An object that defines how AWS Security Hub is configured.

It includes whether Security Hub is enabled or disabled, a list of enabled security standards, a list of enabled or disabled security controls, and a list of custom parameter values for specified controls. If you provide a list of security controls that are enabled in the configuration policy, Security Hub disables all other controls (including newly released controls). If you provide a list of security controls that are disabled in the configuration policy, Security Hub enables all other controls (including newly released controls).

Example: 

 // The code below shows an example of how to instantiate this type.
 // The values are placeholders you should change.
 import software.amazon.awscdk.services.securityhub.*;
 PolicyProperty policyProperty = PolicyProperty.builder()
         .securityHub(SecurityHubPolicyProperty.builder()
                 .enabledStandardIdentifiers(List.of("enabledStandardIdentifiers"))
                 .securityControlsConfiguration(SecurityControlsConfigurationProperty.builder()
                         .disabledSecurityControlIdentifiers(List.of("disabledSecurityControlIdentifiers"))
                         .enabledSecurityControlIdentifiers(List.of("enabledSecurityControlIdentifiers"))
                         .securityControlCustomParameters(List.of(SecurityControlCustomParameterProperty.builder()
                                 .parameters(Map.of(
                                         "parametersKey", ParameterConfigurationProperty.builder()
                                                 .valueType("valueType")
                                                 // the properties below are optional
                                                 .value(ParameterValueProperty.builder()
                                                         .boolean(false)
                                                         .double(123)
                                                         .enum("enum")
                                                         .enumList(List.of("enumList"))
                                                         .integer(123)
                                                         .integerList(List.of(123))
                                                         .string("string")
                                                         .stringList(List.of("stringList"))
                                                         .build())
                                                 .build()))
                                 .securityControlId("securityControlId")
                                 .build()))
                         .build())
                 .serviceEnabled(false)
                 .build())
         .build();

See Also: