- Navigation GuideYou are on a Command (operation) page with structural examples. Use the navigation breadcrumb if you would like to return to the Client landing page.
GetDataLakeOrganizationConfigurationCommand
Retrieves the configuration that will be automatically set up for accounts added to the organization after the organization has onboarded to Amazon Security Lake. This API does not take input parameters.
Example Syntax
Use a bare-bones client and the command you need to make an API call.
import { SecurityLakeClient, GetDataLakeOrganizationConfigurationCommand } from "@aws-sdk/client-securitylake"; // ES Modules import
// const { SecurityLakeClient, GetDataLakeOrganizationConfigurationCommand } = require("@aws-sdk/client-securitylake"); // CommonJS import
const client = new SecurityLakeClient(config);
const input = {};
const command = new GetDataLakeOrganizationConfigurationCommand(input);
const response = await client.send(command);
// { // GetDataLakeOrganizationConfigurationResponse
// autoEnableNewAccount: [ // DataLakeAutoEnableNewAccountConfigurationList
// { // DataLakeAutoEnableNewAccountConfiguration
// region: "STRING_VALUE", // required
// sources: [ // AwsLogSourceResourceList // required
// { // AwsLogSourceResource
// sourceName: "ROUTE53" || "VPC_FLOW" || "SH_FINDINGS" || "CLOUD_TRAIL_MGMT" || "LAMBDA_EXECUTION" || "S3_DATA" || "EKS_AUDIT" || "WAF",
// sourceVersion: "STRING_VALUE",
// },
// ],
// },
// ],
// };
GetDataLakeOrganizationConfigurationCommand Input
GetDataLakeOrganizationConfigurationCommandInput extends GetDataLakeOrganizationConfigurationRequest GetDataLakeOrganizationConfigurationCommand Output
Parameter | Type | Description |
|---|
Parameter | Type | Description |
|---|---|---|
$metadataRequired | ResponseMetadata | Metadata pertaining to this request. |
autoEnableNewAccount | DataLakeAutoEnableNewAccountConfiguration[] | undefined | The configuration used for new accounts in Security Lake. |
Throws
Name | Fault | Details |
|---|
Name | Fault | Details |
|---|---|---|
| AccessDeniedException | client | You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement. |
| BadRequestException | client | The request is malformed or contains an error such as an invalid parameter value or a missing required parameter. |
| ConflictException | client | Occurs when a conflict with a previous successful write is detected. This generally occurs when the previous write did not have time to propagate to the host serving the current request. A retry (with appropriate backoff logic) is the recommended response to this exception. |
| InternalServerException | server | Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again. |
| ResourceNotFoundException | client | The resource could not be found. |
| ThrottlingException | client | The limit on the number of requests per second was exceeded. |
| SecurityLakeServiceException | Base exception class for all service exceptions from SecurityLake service. |