Managed Data Identifiers - Amazon Macie

Managed Data Identifiers

The Managed Data Identifiers resource represents the repository of managed data identifiers that Amazon Macie currently provides. A managed data identifier is a set of built-in criteria and techniques that are designed to detect a specific type of sensitive data. The types include credit card numbers, AWS secret access keys, and passport numbers for particular countries and regions. Managed data identifiers can detect a large and growing list of sensitive data types for many countries and regions, including multiple types of personally identifiable information (PII), financial information, and credentials data. For information about the categories and types of sensitive data that they can detect, see Using managed data identifiers in the Amazon Macie User Guide.

To detect sensitive data with managed data identifiers, create and run classification jobs. If you're the Macie administrator for an organization or you have a standalone Macie account, you can also enable automated sensitive data discovery. Both options provide settings for specifying which managed data identifiers you want Macie to use when it analyzes objects in Amazon Simple Storage Service (Amazon S3) buckets. When you configure the settings, you specify the unique identifier (ID) for one or more managed data identifiers. You can use this resource to determine which IDs to specify.

You can use the Managed Data Identifiers resource to retrieve information about the managed data identifiers that Macie currently provides.

URI

/managed-data-identifiers/list

HTTP methods

POST

Operation ID: ListManagedDataIdentifiers

Retrieves information about all the managed data identifiers that Amazon Macie currently provides.

Responses
Status codeResponse modelDescription
200ListManagedDataIdentifiersResponse

The request succeeded.

Schemas

Request bodies

{ "nextToken": "string" }

Response bodies

{ "items": [ { "category": enum, "id": "string" } ], "nextToken": "string" }

Properties

ListManagedDataIdentifiersRequest

Specifies criteria for paginating the results of a request for information about managed data identifiers.

PropertyTypeRequiredDescription
nextToken

string

False

The nextToken string that specifies which page of results to return in a paginated response.

ListManagedDataIdentifiersResponse

Provides information about the managed data identifiers that Amazon Macie currently provides.

PropertyTypeRequiredDescription
items

Array of type ManagedDataIdentifierSummary

False

An array of objects, one for each managed data identifier.

nextToken

string

False

The string to use in a subsequent request to get the next page of results in a paginated response. This value is null if there are no additional pages.

ManagedDataIdentifierSummary

Provides information about a managed data identifier. For additional information, see Using managed data identifiers in the Amazon Macie User Guide.

PropertyTypeRequiredDescription
category

SensitiveDataItemCategory

False

The category of sensitive data that the managed data identifier detects: CREDENTIALS, for credentials data such as private keys or AWS secret access keys; FINANCIAL_INFORMATION, for financial data such as credit card numbers; or, PERSONAL_INFORMATION, for personal health information, such as health insurance identification numbers, or personally identifiable information, such as passport numbers.

id

string

False

The unique identifier for the managed data identifier. This is a string that describes the type of sensitive data that the managed data identifier detects. For example: OPENSSH_PRIVATE_KEY for OpenSSH private keys, CREDIT_CARD_NUMBER for credit card numbers, or USA_PASSPORT_NUMBER for US passport numbers.

SensitiveDataItemCategory

For a finding, the category of sensitive data that was detected and produced the finding. For a managed data identifier, the category of sensitive data that the managed data identifier detects. Possible values are:

  • FINANCIAL_INFORMATION

  • PERSONAL_INFORMATION

  • CREDENTIALS

  • CUSTOM_IDENTIFIER

See also

For more information about using this API in one of the language-specific AWS SDKs and references, see the following:

ListManagedDataIdentifiers