String account
The ID of the Security Lake account for which logs are collected.
String eventClass
Initializes a new instance of the Event class.
List<E> logsStatus
The log status for the Security Lake account.
String sourceType
The supported Amazon Web Services from which logs and events are collected. Amazon Security Lake supports log and event collection for natively supported Amazon Web Services.
Map<K,V> enableAllDimensions
Enables data collection from specific Amazon Web Services sources in all specific accounts and specific Regions.
List<E> enableSingleDimension
Enables data collection from all Amazon Web Services sources in specific accounts or Regions.
Map<K,V> enableTwoDimensions
Enables data collection from specific Amazon Web Services sources in specific accounts or Regions.
List<E> inputOrder
Specifies the input order to enable dimensions in Security Lake, namely Region, source type, and member account.
List<E> failed
Lists all accounts in which enabling a natively supported Amazon Web Service as a Security Lake source failed. The failure occurred as these accounts are not part of an organization.
List<E> processing
Lists the accounts that are in the process of enabling a natively supported Amazon Web Service as a Security Lake source.
String customSourceName
The name for a third-party custom source. This must be a Regionally unique value.
String eventClass
The Open Cybersecurity Schema Framework (OCSF) event class which describes the type of data that the custom source will send to Security Lake.
String glueInvocationRoleArn
The Amazon Resource Name (ARN) of the Identity and Access Management (IAM) role to be used by the Glue crawler. The recommended IAM policies are:
The managed policy AWSGlueServiceRole
A custom policy granting access to your Amazon S3 Data Lake
String logProviderAccountId
The Amazon Web Services account ID of the custom source that will write logs and events into the Amazon S3 Data Lake.
String customDataLocation
The location of the partition in the Amazon S3 bucket for Security Lake.
String glueCrawlerName
The name of the Glue crawler.
String glueDatabaseName
The Glue database where results are written, such as:
arn:aws:daylight:us-east-1::database/sometable/*.
String glueTableName
The table name of the Glue crawler.
String logProviderAccessRoleArn
The ARN of the IAM role to be used by the entity putting logs into your custom source partition. Security Lake
will apply the correct access policies to this role, but you must first manually create the trust policy for this
role. The IAM role name must start with the text 'Security Lake'. The IAM role must trust the
logProviderAccountId to assume the role.
String account
The Amazon Web Services account ID of the Security Lake delegated administrator.
Map<K,V> configurations
Specify the Region or Regions that will contribute data to the rollup region.
Boolean enableAll
Enable Security Lake in all Regions.
String metaStoreManagerRoleArn
The Amazon Resource Name (ARN) used to create and update the Glue table. This table contains partitions generated by the ingestion and normalization of Amazon Web Services log sources and custom sources.
List<E> regions
Enable Security Lake in the specified Regions. To enable Security Lake in specific Amazon Web Services Regions, such as us-east-1 or ap-northeast-3, provide the Region codes. For a list of Region codes, see Amazon Security Lake endpoints in the Amazon Web Services General Reference.
List<E> accessTypes
The Amazon S3 or Lake Formation access type.
String accountId
The Amazon Web Services account ID used to access your data.
String externalId
The external ID of the subscriber. This lets the user that is assuming the role assert the circumstances in which they are operating. It also provides a way for the account owner to permit the role to be assumed only under specific circumstances.
List<E> sourceTypes
The supported Amazon Web Services from which logs and events are collected. Security Lake supports log and event collection for natively supported Amazon Web Services.
String subscriberDescription
The description for your subscriber account in Security Lake.
String subscriberName
The name of your Security Lake subscriber account.
String roleArn
The Amazon Resource Name (ARN) created by you to provide to the subscriber. For more information about ARNs and how to use them in policies, see IAM identifiers in the Identity and Access Management (IAM) User Guide. .
String s3BucketArn
The ARN for the Amazon S3 bucket.
String snsArn
The ARN for the Amazon Simple Notification Service.
String subscriptionId
The subscriptionId created by the CreateSubscriber API call.
Boolean createSqs
Create an Amazon Simple Queue Service queue.
String httpsApiKeyName
The key name for the notification subscription.
String httpsApiKeyValue
The key value for the notification subscription.
String httpsMethod
The HTTPS method used for the notification subscription.
String roleArn
The Amazon Resource Name (ARN) of the EventBridge API destinations IAM role that you created.
String subscriptionEndpoint
The subscription endpoint in Security Lake. If you prefer notification with an HTTPs endpoint, populate this field.
String subscriptionId
The subscription ID for the notification subscription/
String queueArn
Returns the Amazon Resource Name (ARN) of the queue.
Map<K,V> disableAllDimensions
Removes the specific Amazon Web Services sources from specific accounts and specific Regions.
List<E> disableSingleDimension
Removes all Amazon Web Services sources from specific accounts or Regions.
Map<K,V> disableTwoDimensions
Remove a specific Amazon Web Services source from specific accounts or Regions.
List<E> inputOrder
This is a mandatory input. Specify the input order to disable dimensions in Security Lake, namely Region (Amazon Web Services Region code, source type, and member (account ID of a specific Amazon Web Services account).
String customSourceName
The custom source name for the custom log source.
String customDataLocation
The location of the partition in the Amazon S3 bucket for Security Lake.
String account
The account ID the Security Lake delegated administrator.
String status
Retrieves the status of the delete Security Lake operation for an account.
String id
A value created by Security Lake that uniquely identifies your DeleteSubscriber API request.
String subscriptionId
The ID of the Security Lake subscriber account.
String exceptionMessage
List of all exception messages.
String remediation
List of all remediation steps for failures.
Date timestamp
This error can occur if you configure the wrong timestamp format, or if the subset of entries used for validation had errors or missing values.
Long exceptionMessageExpiry
The expiration period and time-to-live (TTL).
ProtocolAndNotificationEndpoint protocolAndNotificationEndpoint
Retrieves the exception notification subscription information.
List<E> accountSet
The Amazon Web Services account ID for which a static snapshot of the current Amazon Web Services Region, including enabled accounts and log sources, is retrieved.
Integer maxAccountResults
The maximum limit of accounts for which the static snapshot of the current Region, including enabled accounts and log sources, is retrieved.
String nextToken
Lists if there are more results available. The value of nextToken is a unique pagination token for each page. Repeat the call using the returned token to retrieve the next page. Keep all other arguments unchanged.
Each pagination token expires after 24 hours. Using an expired pagination token will return an HTTP 400 InvalidToken error.
List<E> accountSourcesList
The list of enabled accounts and enabled sources.
String nextToken
Lists if there are more results available. The value of nextToken is a unique pagination token for each page. Repeat the call using the returned token to retrieve the next page. Keep all other arguments unchanged.
Each pagination token expires after 24 hours. Using an expired pagination token will return an HTTP 400 InvalidToken error.
String id
A value created by Amazon Security Lake that uniquely identifies your GetSubscriber API request.
SubscriberResource subscriber
The subscription information for the specified subscription ID.
Integer retryAfterSeconds
Retry the request after the specified time.
String encryptionKey
The type of encryption key used by Amazon Security Lake to encrypt the Security Lake configuration object.
List<E> replicationDestinationRegions
Replication enables automatic, asynchronous copying of objects across Amazon S3 buckets. Amazon S3 buckets that are configured for object replication can be owned by the same Amazon Web Services account or by different accounts. You can replicate objects to a single destination bucket or to multiple destination buckets. The destination buckets can be in different Amazon Web Services Regions or within the same Region as the source bucket.
Set up one or more rollup Regions by providing the Region or Regions that should contribute to the central rollup Region.
String replicationRoleArn
Replication settings for the Amazon S3 buckets. This parameter uses the Identity and Access Management (IAM) role you created that is managed by Security Lake, to ensure the replication setting is correct.
List<E> retentionSettings
Retention settings for the destination Amazon S3 buckets.
Map<K,V> tagsMap
A tag is a label that you assign to an Amazon Web Services resource. Each tag consists of a key and an optional value, both of which you define.
String encryptionKey
The type of encryption key used by secure the Security Lake configuration object.
List<E> replicationDestinationRegions
Replication enables automatic, asynchronous copying of objects across Amazon S3 buckets. Amazon S3 buckets that are configured for object replication can be owned by the same Amazon Web Services account or by different accounts. You can replicate objects to a single destination bucket or to multiple destination buckets. The destination buckets can be in different Amazon Web Services Regions or within the same Region as the source bucket.
Set up one or more rollup Regions by providing the Region or Regions that should contribute to the central rollup Region.
String replicationRoleArn
Replication settings for the Amazon S3 buckets. This parameter uses the IAM role you created that is managed by Security Lake, to ensure the replication setting is correct.
List<E> retentionSettings
Retention settings for the destination Amazon S3 buckets.
String s3BucketArn
Amazon Resource Names (ARNs) uniquely identify Amazon Web Services resources. Security Lake requires an ARN when you need to specify a resource unambiguously across all of Amazon Web Services, such as in IAM policies, Amazon Relational Database Service (Amazon RDS) tags, and API calls.
String status
Retrieves the status of the configuration operation for an account in Amazon Security Lake.
Map<K,V> tagsMap
A tag is a label that you assign to an Amazon Web Services resource. Each tag consists of a key and an optional value, both of which you define.
Integer maxFailures
List the maximum number of failures in Security Lake.
String nextToken
List if there are more results available. The value of nextToken is a unique pagination token for each page. Repeat the call using the returned token to retrieve the next page. Keep all other arguments unchanged.
Each pagination token expires after 24 hours. Using an expired pagination token will return an HTTP 400 InvalidToken error.
List<E> regionSet
List the Amazon Web Services Regions from which exceptions are retrieved.
String nextToken
List if there are more results available. The value of nextToken is a unique pagination token for each page. Repeat the call using the returned token to retrieve the next page. Keep all other arguments unchanged.
Each pagination token expires after 24 hours. Using an expired pagination token will return an HTTP 400 InvalidToken error.
List<E> nonRetryableFailures
Lists the failures that cannot be retried in the current Region.
List<E> inputOrder
Lists the log sources in input order, namely Region, source type, and member account.
Map<K,V> listAllDimensions
List the view of log sources for enabled Amazon Security Lake accounts for specific Amazon Web Services sources from specific accounts and specific Regions.
List<E> listSingleDimension
List the view of log sources for enabled Security Lake accounts for all Amazon Web Services sources from specific accounts or specific Regions.
Map<K,V> listTwoDimensions
Lists the view of log sources for enabled Security Lake accounts for specific Amazon Web Services sources from specific accounts or specific Regions.
Integer maxResults
The maximum number of accounts for which the log sources are displayed.
String nextToken
If nextToken is returned, there are more results available. You can repeat the call using the returned token to retrieve the next page.
Integer retentionPeriod
The retention period specifies a fixed period of time during which the Security Lake object remains locked. You can specify the retention period in days for one or more sources.
String storageClass
The range of storage classes that you can choose from based on the data access, resiliency, and cost requirements of your workloads.
String quotaCode
That the rate of requests to Security Lake is exceeding the request quotas for your Amazon Web Services account.
String resourceId
The ID of the resource that exceeds the service quota.
String resourceType
The type of the resource that exceeds the service quota.
String serviceCode
The code for the service in Service Quotas.
List<E> accessTypes
You can choose to notify subscribers of new objects with an Amazon Simple Queue Service (Amazon SQS) queue or through messaging to an HTTPS endpoint provided by the subscriber.
Subscribers can consume data by directly querying Lake Formation tables in your Amazon S3 bucket through services
like Amazon Athena. This subscription type is defined as LAKEFORMATION.
String accountId
The Amazon Web Services account ID you are using to create your Amazon Security Lake account.
Date createdAt
The date and time when the subscription was created.
String externalId
The external ID of the subscriber. The external ID lets the user that is assuming the role assert the circumstances in which they are operating. It also provides a way for the account owner to permit the role to be assumed only under specific circumstances.
String roleArn
The Amazon Resource Name (ARN) specifying the role of the subscriber.
String s3BucketArn
The ARN for the Amazon S3 bucket.
String snsArn
The ARN for the Amazon Simple Notification Service.
List<E> sourceTypes
Amazon Security Lake supports log and event collection for natively supported Amazon Web Services. For more information, see the Amazon Security Lake User Guide.
String subscriberDescription
The subscriber descriptions for a subscriber account. The description for a subscriber includes
subscriberName, accountID, externalID, and subscriptionId.
String subscriberName
The name of your Amazon Security Lake subscriber account.
String subscriptionEndpoint
The subscription endpoint to which exception messages are posted.
String subscriptionId
The subscription ID of the Amazon Security Lake subscriber account.
String subscriptionProtocol
The subscription protocol to which exception messages are posted.
String subscriptionStatus
The subscription status of the Amazon Security Lake subscriber account.
Date updatedAt
The date and time when the subscription was created.
String quotaCode
That the rate of requests to Security Lake is exceeding the request quotas for your Amazon Web Services account.
Integer retryAfterSeconds
Retry the request after the specified time.
String serviceCode
The code for the service in Service Quotas.
Long exceptionMessageExpiry
The time-to-live (TTL) for the exception message to remain.
String externalId
The external ID of the Security Lake account.
String id
A value created by Security Lake that uniquely identifies your subscription.
List<E> sourceTypes
The supported Amazon Web Services from which logs and events are collected. For the list of supported Amazon Web Services, see the Amazon Security Lake User Guide.
String subscriberDescription
The description of the Security Lake account subscriber.
String subscriberName
The name of the Security Lake account subscriber.
SubscriberResource subscriber
The account of the subscriber.
Boolean createSqs
Create a new subscription notification for the specified subscription ID in Amazon Security Lake.
String httpsApiKeyName
The key name for the subscription notification.
String httpsApiKeyValue
The key value for the subscription notification.
String httpsMethod
The HTTPS method used for the subscription notification.
String roleArn
The Amazon Resource Name (ARN) specifying the role of the subscriber.
String subscriptionEndpoint
The subscription endpoint in Security Lake.
String subscriptionId
The subscription ID for which the subscription notification is specified.
String queueArn
Returns the ARN of the queue.
Copyright © 2023. All rights reserved.