software.amazon.awssdk.services.securitylake

Interface SecurityLakeClient

All Superinterfaces:

AutoCloseable, SdkAutoCloseable, SdkClient

@Generated(value="software.amazon.awssdk:codegen")
 @ThreadSafe
public interface SecurityLakeClient
extends SdkClient

Service client for accessing Amazon Security Lake. This can be created using the static builder() method.

Amazon Security Lake is in preview release. Your use of the Security Lake preview is subject to Section 2 of the Amazon Web Services Service Terms("Betas and Previews").

Amazon Security Lake is a fully managed security data lake service. You can use Security Lake to automatically centralize security data from cloud, on-premises, and custom sources into a data lake that's stored in your Amazon Web Servicesaccount. Amazon Web Services Organizations is an account management service that lets you consolidate multiple Amazon Web Services accounts into an organization that you create and centrally manage. With Organizations, you can create member accounts and invite existing accounts to join your organization. Security Lake helps you analyze security data for a more complete understanding of your security posture across the entire organization. It can also help you improve the protection of your workloads, applications, and data.

The data lake is backed by Amazon Simple Storage Service (Amazon S3) buckets, and you retain ownership over your data.

Amazon Security Lake integrates with CloudTrail, a service that provides a record of actions taken by a user, role, or an Amazon Web Services service in Security Lake CloudTrail captures API calls for Security Lake as events. The calls captured include calls from the Security Lake console and code calls to the Security Lake API operations. If you create a trail, you can enable continuous delivery of CloudTrail events to an Amazon S3 bucket, including events for Security Lake. If you don't configure a trail, you can still view the most recent events in the CloudTrail console in Event history. Using the information collected by CloudTrail you can determine the request that was made to Security Lake, the IP address from which the request was made, who made the request, when it was made, and additional details. To learn more about Security Lake information in CloudTrail, see the Amazon Security Lake User Guide.

Security Lake automates the collection of security-related log and event data from integrated Amazon Web Services and third-party services. It also helps you manage the lifecycle of data with customizable retention and replication settings. Security Lake converts ingested data into Apache Parquet format and a standard open-source schema called the Open Cybersecurity Schema Framework (OCSF).

Other Amazon Web Services and third-party services can subscribe to the data that's stored in Security Lake for incident response and security data analytics.

Field Summary

Fields

Modifier and Type	Field and Description
static String	SERVICE_METADATA_ID Value for looking up the service's metadata from the ServiceMetadataProvider.
static String	SERVICE_NAME

Method Summary

Modifier and Type	Method and Description
static SecurityLakeClientBuilder	builder() Create a builder that can be used to configure and create a SecurityLakeClient.
static SecurityLakeClient	create() Create a SecurityLakeClient with the region loaded from the DefaultAwsRegionProviderChain and credentials loaded from the DefaultCredentialsProvider.
default CreateAwsLogSourceResponse	createAwsLogSource(Consumer<CreateAwsLogSourceRequest.Builder> createAwsLogSourceRequest) Adds a natively supported Amazon Web Service as an Amazon Security Lake source.
default CreateAwsLogSourceResponse	createAwsLogSource(CreateAwsLogSourceRequest createAwsLogSourceRequest) Adds a natively supported Amazon Web Service as an Amazon Security Lake source.
default CreateCustomLogSourceResponse	createCustomLogSource(Consumer<CreateCustomLogSourceRequest.Builder> createCustomLogSourceRequest) Adds a third-party custom source in Amazon Security Lake, from the Amazon Web Services Region where you want to create a custom source.
default CreateCustomLogSourceResponse	createCustomLogSource(CreateCustomLogSourceRequest createCustomLogSourceRequest) Adds a third-party custom source in Amazon Security Lake, from the Amazon Web Services Region where you want to create a custom source.
default CreateDatalakeResponse	createDatalake(Consumer<CreateDatalakeRequest.Builder> createDatalakeRequest) Initializes an Amazon Security Lake instance with the provided (or default) configuration.
default CreateDatalakeResponse	createDatalake(CreateDatalakeRequest createDatalakeRequest) Initializes an Amazon Security Lake instance with the provided (or default) configuration.
default CreateDatalakeAutoEnableResponse	createDatalakeAutoEnable(Consumer<CreateDatalakeAutoEnableRequest.Builder> createDatalakeAutoEnableRequest) Automatically enables Amazon Security Lake for new member accounts in your organization.
default CreateDatalakeAutoEnableResponse	createDatalakeAutoEnable(CreateDatalakeAutoEnableRequest createDatalakeAutoEnableRequest) Automatically enables Amazon Security Lake for new member accounts in your organization.
default CreateDatalakeDelegatedAdminResponse	createDatalakeDelegatedAdmin(Consumer<CreateDatalakeDelegatedAdminRequest.Builder> createDatalakeDelegatedAdminRequest) Designates the Amazon Security Lake delegated administrator account for the organization.
default CreateDatalakeDelegatedAdminResponse	createDatalakeDelegatedAdmin(CreateDatalakeDelegatedAdminRequest createDatalakeDelegatedAdminRequest) Designates the Amazon Security Lake delegated administrator account for the organization.
default CreateDatalakeExceptionsSubscriptionResponse	createDatalakeExceptionsSubscription(Consumer<CreateDatalakeExceptionsSubscriptionRequest.Builder> createDatalakeExceptionsSubscriptionRequest) Creates the specified notification subscription in Amazon Security Lake for the organization you specify.
default CreateDatalakeExceptionsSubscriptionResponse	createDatalakeExceptionsSubscription(CreateDatalakeExceptionsSubscriptionRequest createDatalakeExceptionsSubscriptionRequest) Creates the specified notification subscription in Amazon Security Lake for the organization you specify.
default CreateSubscriberResponse	createSubscriber(Consumer<CreateSubscriberRequest.Builder> createSubscriberRequest) Creates a subscription permission for accounts that are already enabled in Amazon Security Lake.
default CreateSubscriberResponse	createSubscriber(CreateSubscriberRequest createSubscriberRequest) Creates a subscription permission for accounts that are already enabled in Amazon Security Lake.
default CreateSubscriptionNotificationConfigurationResponse	createSubscriptionNotificationConfiguration(Consumer<CreateSubscriptionNotificationConfigurationRequest.Builder> createSubscriptionNotificationConfigurationRequest) Notifies the subscriber when new data is written to the data lake for the sources that the subscriber consumes in Security Lake.
default CreateSubscriptionNotificationConfigurationResponse	createSubscriptionNotificationConfiguration(CreateSubscriptionNotificationConfigurationRequest createSubscriptionNotificationConfigurationRequest) Notifies the subscriber when new data is written to the data lake for the sources that the subscriber consumes in Security Lake.
default DeleteAwsLogSourceResponse	deleteAwsLogSource(Consumer<DeleteAwsLogSourceRequest.Builder> deleteAwsLogSourceRequest) Removes a natively supported Amazon Web Service as an Amazon Security Lake source.
default DeleteAwsLogSourceResponse	deleteAwsLogSource(DeleteAwsLogSourceRequest deleteAwsLogSourceRequest) Removes a natively supported Amazon Web Service as an Amazon Security Lake source.
default DeleteCustomLogSourceResponse	deleteCustomLogSource(Consumer<DeleteCustomLogSourceRequest.Builder> deleteCustomLogSourceRequest) Removes a custom log source from Amazon Security Lake.
default DeleteCustomLogSourceResponse	deleteCustomLogSource(DeleteCustomLogSourceRequest deleteCustomLogSourceRequest) Removes a custom log source from Amazon Security Lake.
default DeleteDatalakeResponse	deleteDatalake(Consumer<DeleteDatalakeRequest.Builder> deleteDatalakeRequest) When you delete Amazon Security Lake from your account, Security Lake is disabled in all Amazon Web Services Regions.
default DeleteDatalakeResponse	deleteDatalake(DeleteDatalakeRequest deleteDatalakeRequest) When you delete Amazon Security Lake from your account, Security Lake is disabled in all Amazon Web Services Regions.
default DeleteDatalakeAutoEnableResponse	deleteDatalakeAutoEnable(Consumer<DeleteDatalakeAutoEnableRequest.Builder> deleteDatalakeAutoEnableRequest) Automatically deletes Amazon Security Lake to stop collecting security data.
default DeleteDatalakeAutoEnableResponse	deleteDatalakeAutoEnable(DeleteDatalakeAutoEnableRequest deleteDatalakeAutoEnableRequest) Automatically deletes Amazon Security Lake to stop collecting security data.
default DeleteDatalakeDelegatedAdminResponse	deleteDatalakeDelegatedAdmin(Consumer<DeleteDatalakeDelegatedAdminRequest.Builder> deleteDatalakeDelegatedAdminRequest) Deletes the Amazon Security Lake delegated administrator account for the organization.
default DeleteDatalakeDelegatedAdminResponse	deleteDatalakeDelegatedAdmin(DeleteDatalakeDelegatedAdminRequest deleteDatalakeDelegatedAdminRequest) Deletes the Amazon Security Lake delegated administrator account for the organization.
default DeleteDatalakeExceptionsSubscriptionResponse	deleteDatalakeExceptionsSubscription(Consumer<DeleteDatalakeExceptionsSubscriptionRequest.Builder> deleteDatalakeExceptionsSubscriptionRequest) Deletes the specified notification subscription in Amazon Security Lake for the organization you specify.
default DeleteDatalakeExceptionsSubscriptionResponse	deleteDatalakeExceptionsSubscription(DeleteDatalakeExceptionsSubscriptionRequest deleteDatalakeExceptionsSubscriptionRequest) Deletes the specified notification subscription in Amazon Security Lake for the organization you specify.
default DeleteSubscriberResponse	deleteSubscriber(Consumer<DeleteSubscriberRequest.Builder> deleteSubscriberRequest) Deletes the subscription permission for accounts that are already enabled in Amazon Security Lake.
default DeleteSubscriberResponse	deleteSubscriber(DeleteSubscriberRequest deleteSubscriberRequest) Deletes the subscription permission for accounts that are already enabled in Amazon Security Lake.
default DeleteSubscriptionNotificationConfigurationResponse	deleteSubscriptionNotificationConfiguration(Consumer<DeleteSubscriptionNotificationConfigurationRequest.Builder> deleteSubscriptionNotificationConfigurationRequest) Deletes the specified notification subscription in Amazon Security Lake for the organization you specify.
default DeleteSubscriptionNotificationConfigurationResponse	deleteSubscriptionNotificationConfiguration(DeleteSubscriptionNotificationConfigurationRequest deleteSubscriptionNotificationConfigurationRequest) Deletes the specified notification subscription in Amazon Security Lake for the organization you specify.
default GetDatalakeResponse	getDatalake(Consumer<GetDatalakeRequest.Builder> getDatalakeRequest) Retrieves the Amazon Security Lake configuration object for the specified Amazon Web Services account ID.
default GetDatalakeResponse	getDatalake(GetDatalakeRequest getDatalakeRequest) Retrieves the Amazon Security Lake configuration object for the specified Amazon Web Services account ID.
default GetDatalakeAutoEnableResponse	getDatalakeAutoEnable(Consumer<GetDatalakeAutoEnableRequest.Builder> getDatalakeAutoEnableRequest) Retrieves the configuration that will be automatically set up for accounts added to the organization after the organization has onboarded to Amazon Security Lake.
default GetDatalakeAutoEnableResponse	getDatalakeAutoEnable(GetDatalakeAutoEnableRequest getDatalakeAutoEnableRequest) Retrieves the configuration that will be automatically set up for accounts added to the organization after the organization has onboarded to Amazon Security Lake.
default GetDatalakeExceptionsExpiryResponse	getDatalakeExceptionsExpiry(Consumer<GetDatalakeExceptionsExpiryRequest.Builder> getDatalakeExceptionsExpiryRequest) Retrieves the expiration period and time-to-live (TTL) for which the exception message will remain.
default GetDatalakeExceptionsExpiryResponse	getDatalakeExceptionsExpiry(GetDatalakeExceptionsExpiryRequest getDatalakeExceptionsExpiryRequest) Retrieves the expiration period and time-to-live (TTL) for which the exception message will remain.
default GetDatalakeExceptionsSubscriptionResponse	getDatalakeExceptionsSubscription(Consumer<GetDatalakeExceptionsSubscriptionRequest.Builder> getDatalakeExceptionsSubscriptionRequest) Retrieves the details of exception notifications for the account in Amazon Security Lake.
default GetDatalakeExceptionsSubscriptionResponse	getDatalakeExceptionsSubscription(GetDatalakeExceptionsSubscriptionRequest getDatalakeExceptionsSubscriptionRequest) Retrieves the details of exception notifications for the account in Amazon Security Lake.
default GetDatalakeStatusResponse	getDatalakeStatus(Consumer<GetDatalakeStatusRequest.Builder> getDatalakeStatusRequest) Retrieves a snapshot of the current Region, including whether Amazon Security Lake is enabled for those accounts and which sources Security Lake is collecting data from.
default GetDatalakeStatusResponse	getDatalakeStatus(GetDatalakeStatusRequest getDatalakeStatusRequest) Retrieves a snapshot of the current Region, including whether Amazon Security Lake is enabled for those accounts and which sources Security Lake is collecting data from.
default GetDatalakeStatusIterable	getDatalakeStatusPaginator(Consumer<GetDatalakeStatusRequest.Builder> getDatalakeStatusRequest) Retrieves a snapshot of the current Region, including whether Amazon Security Lake is enabled for those accounts and which sources Security Lake is collecting data from.
default GetDatalakeStatusIterable	getDatalakeStatusPaginator(GetDatalakeStatusRequest getDatalakeStatusRequest) Retrieves a snapshot of the current Region, including whether Amazon Security Lake is enabled for those accounts and which sources Security Lake is collecting data from.
default GetSubscriberResponse	getSubscriber(Consumer<GetSubscriberRequest.Builder> getSubscriberRequest) Retrieves the subscription information for the specified subscription ID.
default GetSubscriberResponse	getSubscriber(GetSubscriberRequest getSubscriberRequest) Retrieves the subscription information for the specified subscription ID.
default ListDatalakeExceptionsResponse	listDatalakeExceptions(Consumer<ListDatalakeExceptionsRequest.Builder> listDatalakeExceptionsRequest) Lists the Amazon Security Lake exceptions that you can use to find the source of problems and fix them.
default ListDatalakeExceptionsResponse	listDatalakeExceptions(ListDatalakeExceptionsRequest listDatalakeExceptionsRequest) Lists the Amazon Security Lake exceptions that you can use to find the source of problems and fix them.
default ListDatalakeExceptionsIterable	listDatalakeExceptionsPaginator(Consumer<ListDatalakeExceptionsRequest.Builder> listDatalakeExceptionsRequest) Lists the Amazon Security Lake exceptions that you can use to find the source of problems and fix them.
default ListDatalakeExceptionsIterable	listDatalakeExceptionsPaginator(ListDatalakeExceptionsRequest listDatalakeExceptionsRequest) Lists the Amazon Security Lake exceptions that you can use to find the source of problems and fix them.
default ListLogSourcesResponse	listLogSources(Consumer<ListLogSourcesRequest.Builder> listLogSourcesRequest) Retrieves the log sources in the current Amazon Web Services Region.
default ListLogSourcesResponse	listLogSources(ListLogSourcesRequest listLogSourcesRequest) Retrieves the log sources in the current Amazon Web Services Region.
default ListLogSourcesIterable	listLogSourcesPaginator(Consumer<ListLogSourcesRequest.Builder> listLogSourcesRequest) Retrieves the log sources in the current Amazon Web Services Region.
default ListLogSourcesIterable	listLogSourcesPaginator(ListLogSourcesRequest listLogSourcesRequest) Retrieves the log sources in the current Amazon Web Services Region.
default ListSubscribersResponse	listSubscribers(Consumer<ListSubscribersRequest.Builder> listSubscribersRequest) List all subscribers for the specific Amazon Security Lake account ID.
default ListSubscribersResponse	listSubscribers(ListSubscribersRequest listSubscribersRequest) List all subscribers for the specific Amazon Security Lake account ID.
default ListSubscribersIterable	listSubscribersPaginator(Consumer<ListSubscribersRequest.Builder> listSubscribersRequest) List all subscribers for the specific Amazon Security Lake account ID.
default ListSubscribersIterable	listSubscribersPaginator(ListSubscribersRequest listSubscribersRequest) List all subscribers for the specific Amazon Security Lake account ID.
static ServiceMetadata	serviceMetadata()
default UpdateDatalakeResponse	updateDatalake(Consumer<UpdateDatalakeRequest.Builder> updateDatalakeRequest) Specifies where to store your security data and for how long.
default UpdateDatalakeResponse	updateDatalake(UpdateDatalakeRequest updateDatalakeRequest) Specifies where to store your security data and for how long.
default UpdateDatalakeExceptionsExpiryResponse	updateDatalakeExceptionsExpiry(Consumer<UpdateDatalakeExceptionsExpiryRequest.Builder> updateDatalakeExceptionsExpiryRequest) Update the expiration period for the exception message to your preferred time, and control the time-to-live (TTL) for the exception message to remain.
default UpdateDatalakeExceptionsExpiryResponse	updateDatalakeExceptionsExpiry(UpdateDatalakeExceptionsExpiryRequest updateDatalakeExceptionsExpiryRequest) Update the expiration period for the exception message to your preferred time, and control the time-to-live (TTL) for the exception message to remain.
default UpdateDatalakeExceptionsSubscriptionResponse	updateDatalakeExceptionsSubscription(Consumer<UpdateDatalakeExceptionsSubscriptionRequest.Builder> updateDatalakeExceptionsSubscriptionRequest) Updates the specified notification subscription in Amazon Security Lake for the organization you specify.
default UpdateDatalakeExceptionsSubscriptionResponse	updateDatalakeExceptionsSubscription(UpdateDatalakeExceptionsSubscriptionRequest updateDatalakeExceptionsSubscriptionRequest) Updates the specified notification subscription in Amazon Security Lake for the organization you specify.
default UpdateSubscriberResponse	updateSubscriber(Consumer<UpdateSubscriberRequest.Builder> updateSubscriberRequest) Updates an existing subscription for the given Amazon Security Lake account ID.
default UpdateSubscriberResponse	updateSubscriber(UpdateSubscriberRequest updateSubscriberRequest) Updates an existing subscription for the given Amazon Security Lake account ID.
default UpdateSubscriptionNotificationConfigurationResponse	updateSubscriptionNotificationConfiguration(Consumer<UpdateSubscriptionNotificationConfigurationRequest.Builder> updateSubscriptionNotificationConfigurationRequest) Creates a new subscription notification or adds the existing subscription notification setting for the specified subscription ID.
default UpdateSubscriptionNotificationConfigurationResponse	updateSubscriptionNotificationConfiguration(UpdateSubscriptionNotificationConfigurationRequest updateSubscriptionNotificationConfigurationRequest) Creates a new subscription notification or adds the existing subscription notification setting for the specified subscription ID.

Methods inherited from interface software.amazon.awssdk.core.SdkClient

serviceName

Methods inherited from interface software.amazon.awssdk.utils.SdkAutoCloseable

close

Field Detail

SERVICE_NAME

static final String SERVICE_NAME

See Also:

Constant Field Values

SERVICE_METADATA_ID

static final String SERVICE_METADATA_ID

Value for looking up the service's metadata from the ServiceMetadataProvider.

See Also:

Constant Field Values

Method Detail

createAwsLogSource

default CreateAwsLogSourceResponse createAwsLogSource(CreateAwsLogSourceRequest createAwsLogSourceRequest)
                                               throws InternalServerException,
                                                      ValidationException,
                                                      S3Exception,
                                                      AccessDeniedException,
                                                      ResourceNotFoundException,
                                                      AccountNotFoundException,
                                                      AwsServiceException,
                                                      SdkClientException,
                                                      SecurityLakeException

Adds a natively supported Amazon Web Service as an Amazon Security Lake source. Enables source types for member accounts in required Amazon Web Services Regions, based on the parameters you specify. You can choose any source type in any Region for either accounts that are part of a trusted organization or standalone accounts. At least one of the three dimensions is a mandatory input to this API. However, you can supply any combination of the three dimensions to this API.

By default, a dimension refers to the entire set. When you don't provide a dimension, Security Lake assumes that the missing dimension refers to the entire set. This is overridden when you supply any one of the inputs. For instance, when you do not specify members, the API enables all Security Lake member accounts for all sources. Similarly, when you do not specify Regions, Security Lake is enabled for all the Regions where Security Lake is available as a service.

You can use this API only to enable natively supported Amazon Web Services as a source. Use CreateCustomLogSource to enable data collection from a custom source.

Parameters:

createAwsLogSourceRequest -

Returns:

Result of the CreateAwsLogSource operation returned by the service.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

S3Exception - Provides an extension of the AmazonServiceException for errors reported by Amazon S3 while processing a request. In particular, this class provides access to the Amazon S3 extended request ID. If Amazon S3 is incorrectly handling a request and you need to contact Amazon, this extended request ID may provide useful debugging information.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

ResourceNotFoundException - The resource could not be found.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

createAwsLogSource

default CreateAwsLogSourceResponse createAwsLogSource(Consumer<CreateAwsLogSourceRequest.Builder> createAwsLogSourceRequest)
                                               throws InternalServerException,
                                                      ValidationException,
                                                      S3Exception,
                                                      AccessDeniedException,
                                                      ResourceNotFoundException,
                                                      AccountNotFoundException,
                                                      AwsServiceException,
                                                      SdkClientException,
                                                      SecurityLakeException

Adds a natively supported Amazon Web Service as an Amazon Security Lake source. Enables source types for member accounts in required Amazon Web Services Regions, based on the parameters you specify. You can choose any source type in any Region for either accounts that are part of a trusted organization or standalone accounts. At least one of the three dimensions is a mandatory input to this API. However, you can supply any combination of the three dimensions to this API.

By default, a dimension refers to the entire set. When you don't provide a dimension, Security Lake assumes that the missing dimension refers to the entire set. This is overridden when you supply any one of the inputs. For instance, when you do not specify members, the API enables all Security Lake member accounts for all sources. Similarly, when you do not specify Regions, Security Lake is enabled for all the Regions where Security Lake is available as a service.

You can use this API only to enable natively supported Amazon Web Services as a source. Use CreateCustomLogSource to enable data collection from a custom source.

This is a convenience which creates an instance of the CreateAwsLogSourceRequest.Builder avoiding the need to create one manually via CreateAwsLogSourceRequest.builder()

Parameters:

createAwsLogSourceRequest - A Consumer that will call methods on CreateAwsLogSourceRequest.Builder to create a request.

Returns:

Result of the CreateAwsLogSource operation returned by the service.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

S3Exception - Provides an extension of the AmazonServiceException for errors reported by Amazon S3 while processing a request. In particular, this class provides access to the Amazon S3 extended request ID. If Amazon S3 is incorrectly handling a request and you need to contact Amazon, this extended request ID may provide useful debugging information.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

ResourceNotFoundException - The resource could not be found.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

createCustomLogSource

default CreateCustomLogSourceResponse createCustomLogSource(CreateCustomLogSourceRequest createCustomLogSourceRequest)
                                                     throws InternalServerException,
                                                            ValidationException,
                                                            ConflictSourceNamesException,
                                                            AccessDeniedException,
                                                            BucketNotFoundException,
                                                            ResourceNotFoundException,
                                                            AccountNotFoundException,
                                                            AwsServiceException,
                                                            SdkClientException,
                                                            SecurityLakeException

Adds a third-party custom source in Amazon Security Lake, from the Amazon Web Services Region where you want to create a custom source. Security Lake can collect logs and events from third-party custom sources. After creating the appropriate IAM role to invoke Glue crawler, use this API to add a custom source name in Security Lake. This operation creates a partition in the Amazon S3 bucket for Security Lake as the target location for log files from the custom source in addition to an associated Glue table and an Glue crawler.

Parameters:

createCustomLogSourceRequest -

Returns:

Result of the CreateCustomLogSource operation returned by the service.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

ConflictSourceNamesException - There was a conflict when you attempted to modify a Security Lake source name.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

BucketNotFoundException - Amazon Security Lake generally returns 404 errors if the requested object is missing from the bucket.

ResourceNotFoundException - The resource could not be found.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

createCustomLogSource

default CreateCustomLogSourceResponse createCustomLogSource(Consumer<CreateCustomLogSourceRequest.Builder> createCustomLogSourceRequest)
                                                     throws InternalServerException,
                                                            ValidationException,
                                                            ConflictSourceNamesException,
                                                            AccessDeniedException,
                                                            BucketNotFoundException,
                                                            ResourceNotFoundException,
                                                            AccountNotFoundException,
                                                            AwsServiceException,
                                                            SdkClientException,
                                                            SecurityLakeException

Adds a third-party custom source in Amazon Security Lake, from the Amazon Web Services Region where you want to create a custom source. Security Lake can collect logs and events from third-party custom sources. After creating the appropriate IAM role to invoke Glue crawler, use this API to add a custom source name in Security Lake. This operation creates a partition in the Amazon S3 bucket for Security Lake as the target location for log files from the custom source in addition to an associated Glue table and an Glue crawler.

This is a convenience which creates an instance of the CreateCustomLogSourceRequest.Builder avoiding the need to create one manually via CreateCustomLogSourceRequest.builder()

Parameters:

createCustomLogSourceRequest - A Consumer that will call methods on CreateCustomLogSourceRequest.Builder to create a request.

Returns:

Result of the CreateCustomLogSource operation returned by the service.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

ConflictSourceNamesException - There was a conflict when you attempted to modify a Security Lake source name.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

BucketNotFoundException - Amazon Security Lake generally returns 404 errors if the requested object is missing from the bucket.

ResourceNotFoundException - The resource could not be found.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

createDatalake

default CreateDatalakeResponse createDatalake(CreateDatalakeRequest createDatalakeRequest)
                                       throws ServiceQuotaExceededException,
                                              ConflictException,
                                              InternalServerException,
                                              ValidationException,
                                              ThrottlingException,
                                              AccessDeniedException,
                                              ResourceNotFoundException,
                                              AwsServiceException,
                                              SdkClientException,
                                              SecurityLakeException

Initializes an Amazon Security Lake instance with the provided (or default) configuration. You can enable Security Lake in Amazon Web Services Regions with customized settings before enabling log collection in Regions. You can either use the enableAll parameter to specify all Regions or specify the Regions where you want to enable Security Lake. To specify particular Regions, use the Regions parameter and then configure these Regions using the configurations parameter. If you have already enabled Security Lake in a Region when you call this command, the command will update the Region if you provide new configuration parameters. If you have not already enabled Security Lake in the Region when you call this API, it will set up the data lake in the Region with the specified configurations.

When you enable Security Lake, it starts ingesting security data after the CreateAwsLogSource call. This includes ingesting security data from sources, storing data, and making data accessible to subscribers. Security Lake also enables all the existing settings and resources that it stores or maintains for your Amazon Web Services account in the current Region, including security log and event data. For more information, see the Amazon Security Lake User Guide.

Parameters:

createDatalakeRequest -

Returns:

Result of the CreateDatalake operation returned by the service.

Throws:

ServiceQuotaExceededException - You have exceeded your service quota. To perform the requested action, remove some of the relevant resources, or use Service Quotas to request a service quota increase.

ConflictException - Occurs when a conflict with a previous successful write is detected. This generally occurs when the previous write did not have time to propagate to the host serving the current request. A retry (with appropriate backoff logic) is the recommended response to this exception.

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

ThrottlingException - The limit on the number of requests per second was exceeded.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

ResourceNotFoundException - The resource could not be found.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

createDatalake

default CreateDatalakeResponse createDatalake(Consumer<CreateDatalakeRequest.Builder> createDatalakeRequest)
                                       throws ServiceQuotaExceededException,
                                              ConflictException,
                                              InternalServerException,
                                              ValidationException,
                                              ThrottlingException,
                                              AccessDeniedException,
                                              ResourceNotFoundException,
                                              AwsServiceException,
                                              SdkClientException,
                                              SecurityLakeException

Initializes an Amazon Security Lake instance with the provided (or default) configuration. You can enable Security Lake in Amazon Web Services Regions with customized settings before enabling log collection in Regions. You can either use the enableAll parameter to specify all Regions or specify the Regions where you want to enable Security Lake. To specify particular Regions, use the Regions parameter and then configure these Regions using the configurations parameter. If you have already enabled Security Lake in a Region when you call this command, the command will update the Region if you provide new configuration parameters. If you have not already enabled Security Lake in the Region when you call this API, it will set up the data lake in the Region with the specified configurations.

When you enable Security Lake, it starts ingesting security data after the CreateAwsLogSource call. This includes ingesting security data from sources, storing data, and making data accessible to subscribers. Security Lake also enables all the existing settings and resources that it stores or maintains for your Amazon Web Services account in the current Region, including security log and event data. For more information, see the Amazon Security Lake User Guide.

This is a convenience which creates an instance of the CreateDatalakeRequest.Builder avoiding the need to create one manually via CreateDatalakeRequest.builder()

Parameters:

createDatalakeRequest - A Consumer that will call methods on CreateDatalakeRequest.Builder to create a request.

Returns:

Result of the CreateDatalake operation returned by the service.

Throws:

ServiceQuotaExceededException - You have exceeded your service quota. To perform the requested action, remove some of the relevant resources, or use Service Quotas to request a service quota increase.

ConflictException - Occurs when a conflict with a previous successful write is detected. This generally occurs when the previous write did not have time to propagate to the host serving the current request. A retry (with appropriate backoff logic) is the recommended response to this exception.

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

ThrottlingException - The limit on the number of requests per second was exceeded.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

ResourceNotFoundException - The resource could not be found.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

createDatalakeAutoEnable

default CreateDatalakeAutoEnableResponse createDatalakeAutoEnable(CreateDatalakeAutoEnableRequest createDatalakeAutoEnableRequest)
                                                           throws InternalServerException,
                                                                  ValidationException,
                                                                  AccessDeniedException,
                                                                  AccountNotFoundException,
                                                                  AwsServiceException,
                                                                  SdkClientException,
                                                                  SecurityLakeException

Automatically enables Amazon Security Lake for new member accounts in your organization. Security Lake is not automatically enabled for any existing member accounts in your organization.

Parameters:

createDatalakeAutoEnableRequest -

Returns:

Result of the CreateDatalakeAutoEnable operation returned by the service.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

createDatalakeAutoEnable

default CreateDatalakeAutoEnableResponse createDatalakeAutoEnable(Consumer<CreateDatalakeAutoEnableRequest.Builder> createDatalakeAutoEnableRequest)
                                                           throws InternalServerException,
                                                                  ValidationException,
                                                                  AccessDeniedException,
                                                                  AccountNotFoundException,
                                                                  AwsServiceException,
                                                                  SdkClientException,
                                                                  SecurityLakeException

Automatically enables Amazon Security Lake for new member accounts in your organization. Security Lake is not automatically enabled for any existing member accounts in your organization.

This is a convenience which creates an instance of the CreateDatalakeAutoEnableRequest.Builder avoiding the need to create one manually via CreateDatalakeAutoEnableRequest.builder()

Parameters:

createDatalakeAutoEnableRequest - A Consumer that will call methods on CreateDatalakeAutoEnableRequest.Builder to create a request.

Returns:

Result of the CreateDatalakeAutoEnable operation returned by the service.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

createDatalakeDelegatedAdmin

default CreateDatalakeDelegatedAdminResponse createDatalakeDelegatedAdmin(CreateDatalakeDelegatedAdminRequest createDatalakeDelegatedAdminRequest)
                                                                   throws InternalServerException,
                                                                          ValidationException,
                                                                          ThrottlingException,
                                                                          AccessDeniedException,
                                                                          AwsServiceException,
                                                                          SdkClientException,
                                                                          SecurityLakeException

Designates the Amazon Security Lake delegated administrator account for the organization. This API can only be called by the organization management account. The organization management account cannot be the delegated administrator account.

Parameters:

createDatalakeDelegatedAdminRequest -

Returns:

Result of the CreateDatalakeDelegatedAdmin operation returned by the service.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

ThrottlingException - The limit on the number of requests per second was exceeded.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

createDatalakeDelegatedAdmin

default CreateDatalakeDelegatedAdminResponse createDatalakeDelegatedAdmin(Consumer<CreateDatalakeDelegatedAdminRequest.Builder> createDatalakeDelegatedAdminRequest)
                                                                   throws InternalServerException,
                                                                          ValidationException,
                                                                          ThrottlingException,
                                                                          AccessDeniedException,
                                                                          AwsServiceException,
                                                                          SdkClientException,
                                                                          SecurityLakeException

Designates the Amazon Security Lake delegated administrator account for the organization. This API can only be called by the organization management account. The organization management account cannot be the delegated administrator account.

This is a convenience which creates an instance of the CreateDatalakeDelegatedAdminRequest.Builder avoiding the need to create one manually via CreateDatalakeDelegatedAdminRequest.builder()

Parameters:

createDatalakeDelegatedAdminRequest - A Consumer that will call methods on CreateDatalakeDelegatedAdminRequest.Builder to create a request.

Returns:

Result of the CreateDatalakeDelegatedAdmin operation returned by the service.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

ThrottlingException - The limit on the number of requests per second was exceeded.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

createDatalakeExceptionsSubscription

default CreateDatalakeExceptionsSubscriptionResponse createDatalakeExceptionsSubscription(CreateDatalakeExceptionsSubscriptionRequest createDatalakeExceptionsSubscriptionRequest)
                                                                                   throws InternalServerException,
                                                                                          ValidationException,
                                                                                          AccessDeniedException,
                                                                                          AccountNotFoundException,
                                                                                          AwsServiceException,
                                                                                          SdkClientException,
                                                                                          SecurityLakeException

Creates the specified notification subscription in Amazon Security Lake for the organization you specify.

Parameters:

createDatalakeExceptionsSubscriptionRequest -

Returns:

Result of the CreateDatalakeExceptionsSubscription operation returned by the service.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

createDatalakeExceptionsSubscription

default CreateDatalakeExceptionsSubscriptionResponse createDatalakeExceptionsSubscription(Consumer<CreateDatalakeExceptionsSubscriptionRequest.Builder> createDatalakeExceptionsSubscriptionRequest)
                                                                                   throws InternalServerException,
                                                                                          ValidationException,
                                                                                          AccessDeniedException,
                                                                                          AccountNotFoundException,
                                                                                          AwsServiceException,
                                                                                          SdkClientException,
                                                                                          SecurityLakeException

Creates the specified notification subscription in Amazon Security Lake for the organization you specify.

This is a convenience which creates an instance of the CreateDatalakeExceptionsSubscriptionRequest.Builder avoiding the need to create one manually via CreateDatalakeExceptionsSubscriptionRequest.builder()

Parameters:

createDatalakeExceptionsSubscriptionRequest - A Consumer that will call methods on CreateDatalakeExceptionsSubscriptionRequest.Builder to create a request.

Returns:

Result of the CreateDatalakeExceptionsSubscription operation returned by the service.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

createSubscriber

default CreateSubscriberResponse createSubscriber(CreateSubscriberRequest createSubscriberRequest)
                                           throws ConflictSubscriptionException,
                                                  InternalServerException,
                                                  ValidationException,
                                                  AccessDeniedException,
                                                  BucketNotFoundException,
                                                  ResourceNotFoundException,
                                                  AccountNotFoundException,
                                                  InvalidInputException,
                                                  AwsServiceException,
                                                  SdkClientException,
                                                  SecurityLakeException

Creates a subscription permission for accounts that are already enabled in Amazon Security Lake. You can create a subscriber with access to data in the current Amazon Web Services Region.

Parameters:

createSubscriberRequest -

Returns:

Result of the CreateSubscriber operation returned by the service.

Throws:

ConflictSubscriptionException - A conflicting subscription exception operation is in progress.

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

BucketNotFoundException - Amazon Security Lake generally returns 404 errors if the requested object is missing from the bucket.

ResourceNotFoundException - The resource could not be found.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

InvalidInputException - The request was rejected because a value that's not valid or is out of range was supplied for an input parameter.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

createSubscriber

default CreateSubscriberResponse createSubscriber(Consumer<CreateSubscriberRequest.Builder> createSubscriberRequest)
                                           throws ConflictSubscriptionException,
                                                  InternalServerException,
                                                  ValidationException,
                                                  AccessDeniedException,
                                                  BucketNotFoundException,
                                                  ResourceNotFoundException,
                                                  AccountNotFoundException,
                                                  InvalidInputException,
                                                  AwsServiceException,
                                                  SdkClientException,
                                                  SecurityLakeException

Creates a subscription permission for accounts that are already enabled in Amazon Security Lake. You can create a subscriber with access to data in the current Amazon Web Services Region.

This is a convenience which creates an instance of the CreateSubscriberRequest.Builder avoiding the need to create one manually via CreateSubscriberRequest.builder()

Parameters:

createSubscriberRequest - A Consumer that will call methods on CreateSubscriberRequest.Builder to create a request.

Returns:

Result of the CreateSubscriber operation returned by the service.

Throws:

ConflictSubscriptionException - A conflicting subscription exception operation is in progress.

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

BucketNotFoundException - Amazon Security Lake generally returns 404 errors if the requested object is missing from the bucket.

ResourceNotFoundException - The resource could not be found.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

InvalidInputException - The request was rejected because a value that's not valid or is out of range was supplied for an input parameter.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

createSubscriptionNotificationConfiguration

default CreateSubscriptionNotificationConfigurationResponse createSubscriptionNotificationConfiguration(CreateSubscriptionNotificationConfigurationRequest createSubscriptionNotificationConfigurationRequest)
                                                                                                 throws ConcurrentModificationException,
                                                                                                        InternalServerException,
                                                                                                        ValidationException,
                                                                                                        AccessDeniedException,
                                                                                                        ResourceNotFoundException,
                                                                                                        AccountNotFoundException,
                                                                                                        InvalidInputException,
                                                                                                        AwsServiceException,
                                                                                                        SdkClientException,
                                                                                                        SecurityLakeException

Notifies the subscriber when new data is written to the data lake for the sources that the subscriber consumes in Security Lake.

Parameters:

createSubscriptionNotificationConfigurationRequest -

Returns:

Result of the CreateSubscriptionNotificationConfiguration operation returned by the service.

Throws:

ConcurrentModificationException - More than one process tried to modify a resource at the same time.

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

ResourceNotFoundException - The resource could not be found.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

InvalidInputException - The request was rejected because a value that's not valid or is out of range was supplied for an input parameter.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

createSubscriptionNotificationConfiguration

default CreateSubscriptionNotificationConfigurationResponse createSubscriptionNotificationConfiguration(Consumer<CreateSubscriptionNotificationConfigurationRequest.Builder> createSubscriptionNotificationConfigurationRequest)
                                                                                                 throws ConcurrentModificationException,
                                                                                                        InternalServerException,
                                                                                                        ValidationException,
                                                                                                        AccessDeniedException,
                                                                                                        ResourceNotFoundException,
                                                                                                        AccountNotFoundException,
                                                                                                        InvalidInputException,
                                                                                                        AwsServiceException,
                                                                                                        SdkClientException,
                                                                                                        SecurityLakeException

Notifies the subscriber when new data is written to the data lake for the sources that the subscriber consumes in Security Lake.

This is a convenience which creates an instance of the CreateSubscriptionNotificationConfigurationRequest.Builder avoiding the need to create one manually via CreateSubscriptionNotificationConfigurationRequest.builder()

Parameters:

createSubscriptionNotificationConfigurationRequest - A Consumer that will call methods on CreateSubscriptionNotificationConfigurationRequest.Builder to create a request.

Returns:

Result of the CreateSubscriptionNotificationConfiguration operation returned by the service.

Throws:

ConcurrentModificationException - More than one process tried to modify a resource at the same time.

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

ResourceNotFoundException - The resource could not be found.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

InvalidInputException - The request was rejected because a value that's not valid or is out of range was supplied for an input parameter.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

deleteAwsLogSource

default DeleteAwsLogSourceResponse deleteAwsLogSource(DeleteAwsLogSourceRequest deleteAwsLogSourceRequest)
                                               throws InternalServerException,
                                                      ValidationException,
                                                      AccessDeniedException,
                                                      AccountNotFoundException,
                                                      AwsServiceException,
                                                      SdkClientException,
                                                      SecurityLakeException

Removes a natively supported Amazon Web Service as an Amazon Security Lake source. When you remove the source, Security Lake stops collecting data from that source, and subscribers can no longer consume new data from the source. Subscribers can still consume data that Security Lake collected from the source before disablement.

You can choose any source type in any Amazon Web Services Region for either accounts that are part of a trusted organization or standalone accounts. At least one of the three dimensions is a mandatory input to this API. However, you can supply any combination of the three dimensions to this API.

By default, a dimension refers to the entire set. This is overridden when you supply any one of the inputs. For instance, when you do not specify members, the API disables all Security Lake member accounts for sources. Similarly, when you do not specify Regions, Security Lake is disabled for all the Regions where Security Lake is available as a service.

When you don't provide a dimension, Security Lake assumes that the missing dimension refers to the entire set. For example, if you don't provide specific accounts, the API applies to the entire set of accounts in your organization.

Parameters:

deleteAwsLogSourceRequest -

Returns:

Result of the DeleteAwsLogSource operation returned by the service.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

deleteAwsLogSource

default DeleteAwsLogSourceResponse deleteAwsLogSource(Consumer<DeleteAwsLogSourceRequest.Builder> deleteAwsLogSourceRequest)
                                               throws InternalServerException,
                                                      ValidationException,
                                                      AccessDeniedException,
                                                      AccountNotFoundException,
                                                      AwsServiceException,
                                                      SdkClientException,
                                                      SecurityLakeException

Removes a natively supported Amazon Web Service as an Amazon Security Lake source. When you remove the source, Security Lake stops collecting data from that source, and subscribers can no longer consume new data from the source. Subscribers can still consume data that Security Lake collected from the source before disablement.

You can choose any source type in any Amazon Web Services Region for either accounts that are part of a trusted organization or standalone accounts. At least one of the three dimensions is a mandatory input to this API. However, you can supply any combination of the three dimensions to this API.

By default, a dimension refers to the entire set. This is overridden when you supply any one of the inputs. For instance, when you do not specify members, the API disables all Security Lake member accounts for sources. Similarly, when you do not specify Regions, Security Lake is disabled for all the Regions where Security Lake is available as a service.

When you don't provide a dimension, Security Lake assumes that the missing dimension refers to the entire set. For example, if you don't provide specific accounts, the API applies to the entire set of accounts in your organization.

This is a convenience which creates an instance of the DeleteAwsLogSourceRequest.Builder avoiding the need to create one manually via DeleteAwsLogSourceRequest.builder()

Parameters:

deleteAwsLogSourceRequest - A Consumer that will call methods on DeleteAwsLogSourceRequest.Builder to create a request.

Returns:

Result of the DeleteAwsLogSource operation returned by the service.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

deleteCustomLogSource

default DeleteCustomLogSourceResponse deleteCustomLogSource(DeleteCustomLogSourceRequest deleteCustomLogSourceRequest)
                                                     throws InternalServerException,
                                                            ValidationException,
                                                            ConflictSourceNamesException,
                                                            AccessDeniedException,
                                                            BucketNotFoundException,
                                                            ResourceNotFoundException,
                                                            AccountNotFoundException,
                                                            AwsServiceException,
                                                            SdkClientException,
                                                            SecurityLakeException

Removes a custom log source from Amazon Security Lake.

Parameters:

deleteCustomLogSourceRequest -

Returns:

Result of the DeleteCustomLogSource operation returned by the service.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

ConflictSourceNamesException - There was a conflict when you attempted to modify a Security Lake source name.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

BucketNotFoundException - Amazon Security Lake generally returns 404 errors if the requested object is missing from the bucket.

ResourceNotFoundException - The resource could not be found.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

deleteCustomLogSource

default DeleteCustomLogSourceResponse deleteCustomLogSource(Consumer<DeleteCustomLogSourceRequest.Builder> deleteCustomLogSourceRequest)
                                                     throws InternalServerException,
                                                            ValidationException,
                                                            ConflictSourceNamesException,
                                                            AccessDeniedException,
                                                            BucketNotFoundException,
                                                            ResourceNotFoundException,
                                                            AccountNotFoundException,
                                                            AwsServiceException,
                                                            SdkClientException,
                                                            SecurityLakeException

Removes a custom log source from Amazon Security Lake.

This is a convenience which creates an instance of the DeleteCustomLogSourceRequest.Builder avoiding the need to create one manually via DeleteCustomLogSourceRequest.builder()

Parameters:

deleteCustomLogSourceRequest - A Consumer that will call methods on DeleteCustomLogSourceRequest.Builder to create a request.

Returns:

Result of the DeleteCustomLogSource operation returned by the service.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

ConflictSourceNamesException - There was a conflict when you attempted to modify a Security Lake source name.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

BucketNotFoundException - Amazon Security Lake generally returns 404 errors if the requested object is missing from the bucket.

ResourceNotFoundException - The resource could not be found.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

deleteDatalake

default DeleteDatalakeResponse deleteDatalake(DeleteDatalakeRequest deleteDatalakeRequest)
                                       throws ServiceQuotaExceededException,
                                              ConflictException,
                                              InternalServerException,
                                              ValidationException,
                                              ThrottlingException,
                                              AccessDeniedException,
                                              ResourceNotFoundException,
                                              AwsServiceException,
                                              SdkClientException,
                                              SecurityLakeException

When you delete Amazon Security Lake from your account, Security Lake is disabled in all Amazon Web Services Regions. Also, this API automatically takes steps to remove the account from Security Lake .

This operation disables security data collection from sources, deletes data stored, and stops making data accessible to subscribers. Security Lake also deletes all the existing settings and resources that it stores or maintains for your Amazon Web Services account in the current Region, including security log and event data. The DeleteDatalake operation does not delete the Amazon S3 bucket, which is owned by your Amazon Web Services account. For more information, see the Amazon Security Lake User Guide.

Parameters:

deleteDatalakeRequest -

Returns:

Result of the DeleteDatalake operation returned by the service.

Throws:

ServiceQuotaExceededException - You have exceeded your service quota. To perform the requested action, remove some of the relevant resources, or use Service Quotas to request a service quota increase.

ConflictException - Occurs when a conflict with a previous successful write is detected. This generally occurs when the previous write did not have time to propagate to the host serving the current request. A retry (with appropriate backoff logic) is the recommended response to this exception.

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

ThrottlingException - The limit on the number of requests per second was exceeded.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

ResourceNotFoundException - The resource could not be found.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

deleteDatalake

default DeleteDatalakeResponse deleteDatalake(Consumer<DeleteDatalakeRequest.Builder> deleteDatalakeRequest)
                                       throws ServiceQuotaExceededException,
                                              ConflictException,
                                              InternalServerException,
                                              ValidationException,
                                              ThrottlingException,
                                              AccessDeniedException,
                                              ResourceNotFoundException,
                                              AwsServiceException,
                                              SdkClientException,
                                              SecurityLakeException

When you delete Amazon Security Lake from your account, Security Lake is disabled in all Amazon Web Services Regions. Also, this API automatically takes steps to remove the account from Security Lake .

This operation disables security data collection from sources, deletes data stored, and stops making data accessible to subscribers. Security Lake also deletes all the existing settings and resources that it stores or maintains for your Amazon Web Services account in the current Region, including security log and event data. The DeleteDatalake operation does not delete the Amazon S3 bucket, which is owned by your Amazon Web Services account. For more information, see the Amazon Security Lake User Guide.

This is a convenience which creates an instance of the DeleteDatalakeRequest.Builder avoiding the need to create one manually via DeleteDatalakeRequest.builder()

Parameters:

deleteDatalakeRequest - A Consumer that will call methods on DeleteDatalakeRequest.Builder to create a request.

Returns:

Result of the DeleteDatalake operation returned by the service.

Throws:

ServiceQuotaExceededException - You have exceeded your service quota. To perform the requested action, remove some of the relevant resources, or use Service Quotas to request a service quota increase.

ConflictException - Occurs when a conflict with a previous successful write is detected. This generally occurs when the previous write did not have time to propagate to the host serving the current request. A retry (with appropriate backoff logic) is the recommended response to this exception.

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

ThrottlingException - The limit on the number of requests per second was exceeded.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

ResourceNotFoundException - The resource could not be found.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

deleteDatalakeAutoEnable

default DeleteDatalakeAutoEnableResponse deleteDatalakeAutoEnable(DeleteDatalakeAutoEnableRequest deleteDatalakeAutoEnableRequest)
                                                           throws InternalServerException,
                                                                  ValidationException,
                                                                  AccessDeniedException,
                                                                  AccountNotFoundException,
                                                                  AwsServiceException,
                                                                  SdkClientException,
                                                                  SecurityLakeException

Automatically deletes Amazon Security Lake to stop collecting security data. When you delete Amazon Security Lake from your account, Security Lake is disabled in all Regions. Also, this API automatically takes steps to remove the account from Security Lake .

This operation disables security data collection from sources, deletes data stored, and stops making data accessible to subscribers. Security Lake also deletes all the existing settings and resources that it stores or maintains for your Amazon Web Services account in the current Region, including security log and event data. The DeleteDatalake operation does not delete the Amazon S3 bucket, which is owned by your Amazon Web Services account. For more information, see the Amazon Security Lake User Guide.

Parameters:

deleteDatalakeAutoEnableRequest -

Returns:

Result of the DeleteDatalakeAutoEnable operation returned by the service.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

deleteDatalakeAutoEnable

default DeleteDatalakeAutoEnableResponse deleteDatalakeAutoEnable(Consumer<DeleteDatalakeAutoEnableRequest.Builder> deleteDatalakeAutoEnableRequest)
                                                           throws InternalServerException,
                                                                  ValidationException,
                                                                  AccessDeniedException,
                                                                  AccountNotFoundException,
                                                                  AwsServiceException,
                                                                  SdkClientException,
                                                                  SecurityLakeException

Automatically deletes Amazon Security Lake to stop collecting security data. When you delete Amazon Security Lake from your account, Security Lake is disabled in all Regions. Also, this API automatically takes steps to remove the account from Security Lake .

This operation disables security data collection from sources, deletes data stored, and stops making data accessible to subscribers. Security Lake also deletes all the existing settings and resources that it stores or maintains for your Amazon Web Services account in the current Region, including security log and event data. The DeleteDatalake operation does not delete the Amazon S3 bucket, which is owned by your Amazon Web Services account. For more information, see the Amazon Security Lake User Guide.

This is a convenience which creates an instance of the DeleteDatalakeAutoEnableRequest.Builder avoiding the need to create one manually via DeleteDatalakeAutoEnableRequest.builder()

Parameters:

deleteDatalakeAutoEnableRequest - A Consumer that will call methods on DeleteDatalakeAutoEnableRequest.Builder to create a request.

Returns:

Result of the DeleteDatalakeAutoEnable operation returned by the service.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

deleteDatalakeDelegatedAdmin

default DeleteDatalakeDelegatedAdminResponse deleteDatalakeDelegatedAdmin(DeleteDatalakeDelegatedAdminRequest deleteDatalakeDelegatedAdminRequest)
                                                                   throws InternalServerException,
                                                                          ValidationException,
                                                                          ThrottlingException,
                                                                          AccessDeniedException,
                                                                          AwsServiceException,
                                                                          SdkClientException,
                                                                          SecurityLakeException

Deletes the Amazon Security Lake delegated administrator account for the organization. This API can only be called by the organization management account. The organization management account cannot be the delegated administrator account.

Parameters:

deleteDatalakeDelegatedAdminRequest -

Returns:

Result of the DeleteDatalakeDelegatedAdmin operation returned by the service.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

ThrottlingException - The limit on the number of requests per second was exceeded.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

deleteDatalakeDelegatedAdmin

default DeleteDatalakeDelegatedAdminResponse deleteDatalakeDelegatedAdmin(Consumer<DeleteDatalakeDelegatedAdminRequest.Builder> deleteDatalakeDelegatedAdminRequest)
                                                                   throws InternalServerException,
                                                                          ValidationException,
                                                                          ThrottlingException,
                                                                          AccessDeniedException,
                                                                          AwsServiceException,
                                                                          SdkClientException,
                                                                          SecurityLakeException

Deletes the Amazon Security Lake delegated administrator account for the organization. This API can only be called by the organization management account. The organization management account cannot be the delegated administrator account.

This is a convenience which creates an instance of the DeleteDatalakeDelegatedAdminRequest.Builder avoiding the need to create one manually via DeleteDatalakeDelegatedAdminRequest.builder()

Parameters:

deleteDatalakeDelegatedAdminRequest - A Consumer that will call methods on DeleteDatalakeDelegatedAdminRequest.Builder to create a request.

Returns:

Result of the DeleteDatalakeDelegatedAdmin operation returned by the service.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

ThrottlingException - The limit on the number of requests per second was exceeded.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

deleteDatalakeExceptionsSubscription

default DeleteDatalakeExceptionsSubscriptionResponse deleteDatalakeExceptionsSubscription(DeleteDatalakeExceptionsSubscriptionRequest deleteDatalakeExceptionsSubscriptionRequest)
                                                                                   throws InternalServerException,
                                                                                          ValidationException,
                                                                                          AccessDeniedException,
                                                                                          AccountNotFoundException,
                                                                                          AwsServiceException,
                                                                                          SdkClientException,
                                                                                          SecurityLakeException

Deletes the specified notification subscription in Amazon Security Lake for the organization you specify.

Parameters:

deleteDatalakeExceptionsSubscriptionRequest -

Returns:

Result of the DeleteDatalakeExceptionsSubscription operation returned by the service.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

deleteDatalakeExceptionsSubscription

default DeleteDatalakeExceptionsSubscriptionResponse deleteDatalakeExceptionsSubscription(Consumer<DeleteDatalakeExceptionsSubscriptionRequest.Builder> deleteDatalakeExceptionsSubscriptionRequest)
                                                                                   throws InternalServerException,
                                                                                          ValidationException,
                                                                                          AccessDeniedException,
                                                                                          AccountNotFoundException,
                                                                                          AwsServiceException,
                                                                                          SdkClientException,
                                                                                          SecurityLakeException

Deletes the specified notification subscription in Amazon Security Lake for the organization you specify.

This is a convenience which creates an instance of the DeleteDatalakeExceptionsSubscriptionRequest.Builder avoiding the need to create one manually via DeleteDatalakeExceptionsSubscriptionRequest.builder()

Parameters:

deleteDatalakeExceptionsSubscriptionRequest - A Consumer that will call methods on DeleteDatalakeExceptionsSubscriptionRequest.Builder to create a request.

Returns:

Result of the DeleteDatalakeExceptionsSubscription operation returned by the service.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

deleteSubscriber

default DeleteSubscriberResponse deleteSubscriber(DeleteSubscriberRequest deleteSubscriberRequest)
                                           throws ConcurrentModificationException,
                                                  InternalServerException,
                                                  ValidationException,
                                                  AccessDeniedException,
                                                  BucketNotFoundException,
                                                  ResourceNotFoundException,
                                                  AccountNotFoundException,
                                                  InvalidInputException,
                                                  AwsServiceException,
                                                  SdkClientException,
                                                  SecurityLakeException

Deletes the subscription permission for accounts that are already enabled in Amazon Security Lake. You can delete a subscriber and remove access to data in the current Amazon Web Services Region.

Parameters:

deleteSubscriberRequest -

Returns:

Result of the DeleteSubscriber operation returned by the service.

Throws:

ConcurrentModificationException - More than one process tried to modify a resource at the same time.

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

BucketNotFoundException - Amazon Security Lake generally returns 404 errors if the requested object is missing from the bucket.

ResourceNotFoundException - The resource could not be found.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

InvalidInputException - The request was rejected because a value that's not valid or is out of range was supplied for an input parameter.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

deleteSubscriber

default DeleteSubscriberResponse deleteSubscriber(Consumer<DeleteSubscriberRequest.Builder> deleteSubscriberRequest)
                                           throws ConcurrentModificationException,
                                                  InternalServerException,
                                                  ValidationException,
                                                  AccessDeniedException,
                                                  BucketNotFoundException,
                                                  ResourceNotFoundException,
                                                  AccountNotFoundException,
                                                  InvalidInputException,
                                                  AwsServiceException,
                                                  SdkClientException,
                                                  SecurityLakeException

Deletes the subscription permission for accounts that are already enabled in Amazon Security Lake. You can delete a subscriber and remove access to data in the current Amazon Web Services Region.

This is a convenience which creates an instance of the DeleteSubscriberRequest.Builder avoiding the need to create one manually via DeleteSubscriberRequest.builder()

Parameters:

deleteSubscriberRequest - A Consumer that will call methods on DeleteSubscriberRequest.Builder to create a request.

Returns:

Result of the DeleteSubscriber operation returned by the service.

Throws:

ConcurrentModificationException - More than one process tried to modify a resource at the same time.

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

BucketNotFoundException - Amazon Security Lake generally returns 404 errors if the requested object is missing from the bucket.

ResourceNotFoundException - The resource could not be found.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

InvalidInputException - The request was rejected because a value that's not valid or is out of range was supplied for an input parameter.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

deleteSubscriptionNotificationConfiguration

default DeleteSubscriptionNotificationConfigurationResponse deleteSubscriptionNotificationConfiguration(DeleteSubscriptionNotificationConfigurationRequest deleteSubscriptionNotificationConfigurationRequest)
                                                                                                 throws ConcurrentModificationException,
                                                                                                        InternalServerException,
                                                                                                        ValidationException,
                                                                                                        AccessDeniedException,
                                                                                                        ResourceNotFoundException,
                                                                                                        AccountNotFoundException,
                                                                                                        InvalidInputException,
                                                                                                        AwsServiceException,
                                                                                                        SdkClientException,
                                                                                                        SecurityLakeException

Deletes the specified notification subscription in Amazon Security Lake for the organization you specify.

Parameters:

deleteSubscriptionNotificationConfigurationRequest -

Returns:

Result of the DeleteSubscriptionNotificationConfiguration operation returned by the service.

Throws:

ConcurrentModificationException - More than one process tried to modify a resource at the same time.

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

ResourceNotFoundException - The resource could not be found.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

InvalidInputException - The request was rejected because a value that's not valid or is out of range was supplied for an input parameter.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

deleteSubscriptionNotificationConfiguration

default DeleteSubscriptionNotificationConfigurationResponse deleteSubscriptionNotificationConfiguration(Consumer<DeleteSubscriptionNotificationConfigurationRequest.Builder> deleteSubscriptionNotificationConfigurationRequest)
                                                                                                 throws ConcurrentModificationException,
                                                                                                        InternalServerException,
                                                                                                        ValidationException,
                                                                                                        AccessDeniedException,
                                                                                                        ResourceNotFoundException,
                                                                                                        AccountNotFoundException,
                                                                                                        InvalidInputException,
                                                                                                        AwsServiceException,
                                                                                                        SdkClientException,
                                                                                                        SecurityLakeException

Deletes the specified notification subscription in Amazon Security Lake for the organization you specify.

This is a convenience which creates an instance of the DeleteSubscriptionNotificationConfigurationRequest.Builder avoiding the need to create one manually via DeleteSubscriptionNotificationConfigurationRequest.builder()

Parameters:

deleteSubscriptionNotificationConfigurationRequest - A Consumer that will call methods on DeleteSubscriptionNotificationConfigurationRequest.Builder to create a request.

Returns:

Result of the DeleteSubscriptionNotificationConfiguration operation returned by the service.

Throws:

ConcurrentModificationException - More than one process tried to modify a resource at the same time.

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

ResourceNotFoundException - The resource could not be found.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

InvalidInputException - The request was rejected because a value that's not valid or is out of range was supplied for an input parameter.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

getDatalake

default GetDatalakeResponse getDatalake(GetDatalakeRequest getDatalakeRequest)
                                 throws InternalServerException,
                                        ValidationException,
                                        AccessDeniedException,
                                        ResourceNotFoundException,
                                        AccountNotFoundException,
                                        AwsServiceException,
                                        SdkClientException,
                                        SecurityLakeException

Retrieves the Amazon Security Lake configuration object for the specified Amazon Web Services account ID. You can use the GetDatalake API to know whether Security Lake is enabled for the current Region. This API does not take input parameters.

Parameters:

getDatalakeRequest -

Returns:

Result of the GetDatalake operation returned by the service.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

ResourceNotFoundException - The resource could not be found.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

getDatalake

default GetDatalakeResponse getDatalake(Consumer<GetDatalakeRequest.Builder> getDatalakeRequest)
                                 throws InternalServerException,
                                        ValidationException,
                                        AccessDeniedException,
                                        ResourceNotFoundException,
                                        AccountNotFoundException,
                                        AwsServiceException,
                                        SdkClientException,
                                        SecurityLakeException

Retrieves the Amazon Security Lake configuration object for the specified Amazon Web Services account ID. You can use the GetDatalake API to know whether Security Lake is enabled for the current Region. This API does not take input parameters.

This is a convenience which creates an instance of the GetDatalakeRequest.Builder avoiding the need to create one manually via GetDatalakeRequest.builder()

Parameters:

getDatalakeRequest - A Consumer that will call methods on GetDatalakeRequest.Builder to create a request.

Returns:

Result of the GetDatalake operation returned by the service.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

ResourceNotFoundException - The resource could not be found.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

getDatalakeAutoEnable

default GetDatalakeAutoEnableResponse getDatalakeAutoEnable(GetDatalakeAutoEnableRequest getDatalakeAutoEnableRequest)
                                                     throws InternalServerException,
                                                            ValidationException,
                                                            AccessDeniedException,
                                                            AccountNotFoundException,
                                                            AwsServiceException,
                                                            SdkClientException,
                                                            SecurityLakeException

Retrieves the configuration that will be automatically set up for accounts added to the organization after the organization has onboarded to Amazon Security Lake. This API does not take input parameters.

Parameters:

getDatalakeAutoEnableRequest -

Returns:

Result of the GetDatalakeAutoEnable operation returned by the service.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

getDatalakeAutoEnable

default GetDatalakeAutoEnableResponse getDatalakeAutoEnable(Consumer<GetDatalakeAutoEnableRequest.Builder> getDatalakeAutoEnableRequest)
                                                     throws InternalServerException,
                                                            ValidationException,
                                                            AccessDeniedException,
                                                            AccountNotFoundException,
                                                            AwsServiceException,
                                                            SdkClientException,
                                                            SecurityLakeException

Retrieves the configuration that will be automatically set up for accounts added to the organization after the organization has onboarded to Amazon Security Lake. This API does not take input parameters.

This is a convenience which creates an instance of the GetDatalakeAutoEnableRequest.Builder avoiding the need to create one manually via GetDatalakeAutoEnableRequest.builder()

Parameters:

getDatalakeAutoEnableRequest - A Consumer that will call methods on GetDatalakeAutoEnableRequest.Builder to create a request.

Returns:

Result of the GetDatalakeAutoEnable operation returned by the service.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

getDatalakeExceptionsExpiry

default GetDatalakeExceptionsExpiryResponse getDatalakeExceptionsExpiry(GetDatalakeExceptionsExpiryRequest getDatalakeExceptionsExpiryRequest)
                                                                 throws InternalServerException,
                                                                        ValidationException,
                                                                        AccessDeniedException,
                                                                        AccountNotFoundException,
                                                                        AwsServiceException,
                                                                        SdkClientException,
                                                                        SecurityLakeException

Retrieves the expiration period and time-to-live (TTL) for which the exception message will remain. Exceptions are stored by default, for 2 weeks from when a record was created in Amazon Security Lake. This API does not take input parameters.

Parameters:

getDatalakeExceptionsExpiryRequest -

Returns:

Result of the GetDatalakeExceptionsExpiry operation returned by the service.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

getDatalakeExceptionsExpiry

default GetDatalakeExceptionsExpiryResponse getDatalakeExceptionsExpiry(Consumer<GetDatalakeExceptionsExpiryRequest.Builder> getDatalakeExceptionsExpiryRequest)
                                                                 throws InternalServerException,
                                                                        ValidationException,
                                                                        AccessDeniedException,
                                                                        AccountNotFoundException,
                                                                        AwsServiceException,
                                                                        SdkClientException,
                                                                        SecurityLakeException

Retrieves the expiration period and time-to-live (TTL) for which the exception message will remain. Exceptions are stored by default, for 2 weeks from when a record was created in Amazon Security Lake. This API does not take input parameters.

This is a convenience which creates an instance of the GetDatalakeExceptionsExpiryRequest.Builder avoiding the need to create one manually via GetDatalakeExceptionsExpiryRequest.builder()

Parameters:

getDatalakeExceptionsExpiryRequest - A Consumer that will call methods on GetDatalakeExceptionsExpiryRequest.Builder to create a request.

Returns:

Result of the GetDatalakeExceptionsExpiry operation returned by the service.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

getDatalakeExceptionsSubscription

default GetDatalakeExceptionsSubscriptionResponse getDatalakeExceptionsSubscription(GetDatalakeExceptionsSubscriptionRequest getDatalakeExceptionsSubscriptionRequest)
                                                                             throws InternalServerException,
                                                                                    ValidationException,
                                                                                    AccessDeniedException,
                                                                                    AccountNotFoundException,
                                                                                    AwsServiceException,
                                                                                    SdkClientException,
                                                                                    SecurityLakeException

Retrieves the details of exception notifications for the account in Amazon Security Lake.

Parameters:

getDatalakeExceptionsSubscriptionRequest -

Returns:

Result of the GetDatalakeExceptionsSubscription operation returned by the service.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

getDatalakeExceptionsSubscription

default GetDatalakeExceptionsSubscriptionResponse getDatalakeExceptionsSubscription(Consumer<GetDatalakeExceptionsSubscriptionRequest.Builder> getDatalakeExceptionsSubscriptionRequest)
                                                                             throws InternalServerException,
                                                                                    ValidationException,
                                                                                    AccessDeniedException,
                                                                                    AccountNotFoundException,
                                                                                    AwsServiceException,
                                                                                    SdkClientException,
                                                                                    SecurityLakeException

Retrieves the details of exception notifications for the account in Amazon Security Lake.

This is a convenience which creates an instance of the GetDatalakeExceptionsSubscriptionRequest.Builder avoiding the need to create one manually via GetDatalakeExceptionsSubscriptionRequest.builder()

Parameters:

getDatalakeExceptionsSubscriptionRequest - A Consumer that will call methods on GetDatalakeExceptionsSubscriptionRequest.Builder to create a request.

Returns:

Result of the GetDatalakeExceptionsSubscription operation returned by the service.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

getDatalakeStatus

default GetDatalakeStatusResponse getDatalakeStatus(GetDatalakeStatusRequest getDatalakeStatusRequest)
                                             throws InternalServerException,
                                                    ValidationException,
                                                    AccessDeniedException,
                                                    AccountNotFoundException,
                                                    AwsServiceException,
                                                    SdkClientException,
                                                    SecurityLakeException

Retrieves a snapshot of the current Region, including whether Amazon Security Lake is enabled for those accounts and which sources Security Lake is collecting data from.

Parameters:

getDatalakeStatusRequest -

Returns:

Result of the GetDatalakeStatus operation returned by the service.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

getDatalakeStatus

default GetDatalakeStatusResponse getDatalakeStatus(Consumer<GetDatalakeStatusRequest.Builder> getDatalakeStatusRequest)
                                             throws InternalServerException,
                                                    ValidationException,
                                                    AccessDeniedException,
                                                    AccountNotFoundException,
                                                    AwsServiceException,
                                                    SdkClientException,
                                                    SecurityLakeException

Retrieves a snapshot of the current Region, including whether Amazon Security Lake is enabled for those accounts and which sources Security Lake is collecting data from.

This is a convenience which creates an instance of the GetDatalakeStatusRequest.Builder avoiding the need to create one manually via GetDatalakeStatusRequest.builder()

Parameters:

getDatalakeStatusRequest - A Consumer that will call methods on GetDatalakeStatusRequest.Builder to create a request.

Returns:

Result of the GetDatalakeStatus operation returned by the service.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

getDatalakeStatusPaginator

default GetDatalakeStatusIterable getDatalakeStatusPaginator(GetDatalakeStatusRequest getDatalakeStatusRequest)
                                                      throws InternalServerException,
                                                             ValidationException,
                                                             AccessDeniedException,
                                                             AccountNotFoundException,
                                                             AwsServiceException,
                                                             SdkClientException,
                                                             SecurityLakeException

Retrieves a snapshot of the current Region, including whether Amazon Security Lake is enabled for those accounts and which sources Security Lake is collecting data from.

This is a variant of getDatalakeStatus(software.amazon.awssdk.services.securitylake.model.GetDatalakeStatusRequest) operation. The return type is a custom iterable that can be used to iterate through all the pages. SDK will internally handle making service calls for you.

When this operation is called, a custom iterable is returned but no service calls are made yet. So there is no guarantee that the request is valid. As you iterate through the iterable, SDK will start lazily loading response pages by making service calls until there are no pages left or your iteration stops. If there are errors in your request, you will see the failures only after you start iterating through the iterable.

The following are few ways to iterate through the response pages:

1) Using a Stream

 
 software.amazon.awssdk.services.securitylake.paginators.GetDatalakeStatusIterable responses = client.getDatalakeStatusPaginator(request);
 responses.stream().forEach(....);
 
 

2) Using For loop

 {
     @code
     software.amazon.awssdk.services.securitylake.paginators.GetDatalakeStatusIterable responses = client
             .getDatalakeStatusPaginator(request);
     for (software.amazon.awssdk.services.securitylake.model.GetDatalakeStatusResponse response : responses) {
         // do something;
     }
 }
 

3) Use iterator directly

 
 software.amazon.awssdk.services.securitylake.paginators.GetDatalakeStatusIterable responses = client.getDatalakeStatusPaginator(request);
 responses.iterator().forEachRemaining(....);
 
 

Please notice that the configuration of maxAccountResults won't limit the number of results you get with the paginator. It only limits the number of results in each page.

Note: If you prefer to have control on service calls, use the getDatalakeStatus(software.amazon.awssdk.services.securitylake.model.GetDatalakeStatusRequest) operation.

Parameters:

getDatalakeStatusRequest -

Returns:

A custom iterable that can be used to iterate through all the response pages.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

getDatalakeStatusPaginator

default GetDatalakeStatusIterable getDatalakeStatusPaginator(Consumer<GetDatalakeStatusRequest.Builder> getDatalakeStatusRequest)
                                                      throws InternalServerException,
                                                             ValidationException,
                                                             AccessDeniedException,
                                                             AccountNotFoundException,
                                                             AwsServiceException,
                                                             SdkClientException,
                                                             SecurityLakeException

Retrieves a snapshot of the current Region, including whether Amazon Security Lake is enabled for those accounts and which sources Security Lake is collecting data from.

This is a variant of getDatalakeStatus(software.amazon.awssdk.services.securitylake.model.GetDatalakeStatusRequest) operation. The return type is a custom iterable that can be used to iterate through all the pages. SDK will internally handle making service calls for you.

When this operation is called, a custom iterable is returned but no service calls are made yet. So there is no guarantee that the request is valid. As you iterate through the iterable, SDK will start lazily loading response pages by making service calls until there are no pages left or your iteration stops. If there are errors in your request, you will see the failures only after you start iterating through the iterable.

The following are few ways to iterate through the response pages:

1) Using a Stream

 
 software.amazon.awssdk.services.securitylake.paginators.GetDatalakeStatusIterable responses = client.getDatalakeStatusPaginator(request);
 responses.stream().forEach(....);
 
 

2) Using For loop

 {
     @code
     software.amazon.awssdk.services.securitylake.paginators.GetDatalakeStatusIterable responses = client
             .getDatalakeStatusPaginator(request);
     for (software.amazon.awssdk.services.securitylake.model.GetDatalakeStatusResponse response : responses) {
         // do something;
     }
 }
 

3) Use iterator directly

 
 software.amazon.awssdk.services.securitylake.paginators.GetDatalakeStatusIterable responses = client.getDatalakeStatusPaginator(request);
 responses.iterator().forEachRemaining(....);
 
 

Please notice that the configuration of maxAccountResults won't limit the number of results you get with the paginator. It only limits the number of results in each page.

Note: If you prefer to have control on service calls, use the getDatalakeStatus(software.amazon.awssdk.services.securitylake.model.GetDatalakeStatusRequest) operation.

This is a convenience which creates an instance of the GetDatalakeStatusRequest.Builder avoiding the need to create one manually via GetDatalakeStatusRequest.builder()

Parameters:

getDatalakeStatusRequest - A Consumer that will call methods on GetDatalakeStatusRequest.Builder to create a request.

Returns:

A custom iterable that can be used to iterate through all the response pages.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

getSubscriber

default GetSubscriberResponse getSubscriber(GetSubscriberRequest getSubscriberRequest)
                                     throws InternalServerException,
                                            AccessDeniedException,
                                            ResourceNotFoundException,
                                            AccountNotFoundException,
                                            InvalidInputException,
                                            AwsServiceException,
                                            SdkClientException,
                                            SecurityLakeException

Retrieves the subscription information for the specified subscription ID. You can get information about a specific subscriber.

Parameters:

getSubscriberRequest -

Returns:

Result of the GetSubscriber operation returned by the service.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

ResourceNotFoundException - The resource could not be found.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

InvalidInputException - The request was rejected because a value that's not valid or is out of range was supplied for an input parameter.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

getSubscriber

default GetSubscriberResponse getSubscriber(Consumer<GetSubscriberRequest.Builder> getSubscriberRequest)
                                     throws InternalServerException,
                                            AccessDeniedException,
                                            ResourceNotFoundException,
                                            AccountNotFoundException,
                                            InvalidInputException,
                                            AwsServiceException,
                                            SdkClientException,
                                            SecurityLakeException

Retrieves the subscription information for the specified subscription ID. You can get information about a specific subscriber.

This is a convenience which creates an instance of the GetSubscriberRequest.Builder avoiding the need to create one manually via GetSubscriberRequest.builder()

Parameters:

getSubscriberRequest - A Consumer that will call methods on GetSubscriberRequest.Builder to create a request.

Returns:

Result of the GetSubscriber operation returned by the service.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

ResourceNotFoundException - The resource could not be found.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

InvalidInputException - The request was rejected because a value that's not valid or is out of range was supplied for an input parameter.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

listDatalakeExceptions

default ListDatalakeExceptionsResponse listDatalakeExceptions(ListDatalakeExceptionsRequest listDatalakeExceptionsRequest)
                                                       throws InternalServerException,
                                                              ValidationException,
                                                              AccessDeniedException,
                                                              AccountNotFoundException,
                                                              AwsServiceException,
                                                              SdkClientException,
                                                              SecurityLakeException

Lists the Amazon Security Lake exceptions that you can use to find the source of problems and fix them.

Parameters:

listDatalakeExceptionsRequest -

Returns:

Result of the ListDatalakeExceptions operation returned by the service.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

listDatalakeExceptions

default ListDatalakeExceptionsResponse listDatalakeExceptions(Consumer<ListDatalakeExceptionsRequest.Builder> listDatalakeExceptionsRequest)
                                                       throws InternalServerException,
                                                              ValidationException,
                                                              AccessDeniedException,
                                                              AccountNotFoundException,
                                                              AwsServiceException,
                                                              SdkClientException,
                                                              SecurityLakeException

Lists the Amazon Security Lake exceptions that you can use to find the source of problems and fix them.

This is a convenience which creates an instance of the ListDatalakeExceptionsRequest.Builder avoiding the need to create one manually via ListDatalakeExceptionsRequest.builder()

Parameters:

listDatalakeExceptionsRequest - A Consumer that will call methods on ListDatalakeExceptionsRequest.Builder to create a request.

Returns:

Result of the ListDatalakeExceptions operation returned by the service.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

listDatalakeExceptionsPaginator

default ListDatalakeExceptionsIterable listDatalakeExceptionsPaginator(ListDatalakeExceptionsRequest listDatalakeExceptionsRequest)
                                                                throws InternalServerException,
                                                                       ValidationException,
                                                                       AccessDeniedException,
                                                                       AccountNotFoundException,
                                                                       AwsServiceException,
                                                                       SdkClientException,
                                                                       SecurityLakeException

Lists the Amazon Security Lake exceptions that you can use to find the source of problems and fix them.

This is a variant of listDatalakeExceptions(software.amazon.awssdk.services.securitylake.model.ListDatalakeExceptionsRequest) operation. The return type is a custom iterable that can be used to iterate through all the pages. SDK will internally handle making service calls for you.

When this operation is called, a custom iterable is returned but no service calls are made yet. So there is no guarantee that the request is valid. As you iterate through the iterable, SDK will start lazily loading response pages by making service calls until there are no pages left or your iteration stops. If there are errors in your request, you will see the failures only after you start iterating through the iterable.

The following are few ways to iterate through the response pages:

1) Using a Stream

 
 software.amazon.awssdk.services.securitylake.paginators.ListDatalakeExceptionsIterable responses = client.listDatalakeExceptionsPaginator(request);
 responses.stream().forEach(....);
 
 

2) Using For loop

 {
     @code
     software.amazon.awssdk.services.securitylake.paginators.ListDatalakeExceptionsIterable responses = client
             .listDatalakeExceptionsPaginator(request);
     for (software.amazon.awssdk.services.securitylake.model.ListDatalakeExceptionsResponse response : responses) {
         // do something;
     }
 }
 

3) Use iterator directly

 
 software.amazon.awssdk.services.securitylake.paginators.ListDatalakeExceptionsIterable responses = client.listDatalakeExceptionsPaginator(request);
 responses.iterator().forEachRemaining(....);
 
 

Please notice that the configuration of maxFailures won't limit the number of results you get with the paginator. It only limits the number of results in each page.

Note: If you prefer to have control on service calls, use the listDatalakeExceptions(software.amazon.awssdk.services.securitylake.model.ListDatalakeExceptionsRequest) operation.

Parameters:

listDatalakeExceptionsRequest -

Returns:

A custom iterable that can be used to iterate through all the response pages.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

listDatalakeExceptionsPaginator

default ListDatalakeExceptionsIterable listDatalakeExceptionsPaginator(Consumer<ListDatalakeExceptionsRequest.Builder> listDatalakeExceptionsRequest)
                                                                throws InternalServerException,
                                                                       ValidationException,
                                                                       AccessDeniedException,
                                                                       AccountNotFoundException,
                                                                       AwsServiceException,
                                                                       SdkClientException,
                                                                       SecurityLakeException

Lists the Amazon Security Lake exceptions that you can use to find the source of problems and fix them.

This is a variant of listDatalakeExceptions(software.amazon.awssdk.services.securitylake.model.ListDatalakeExceptionsRequest) operation. The return type is a custom iterable that can be used to iterate through all the pages. SDK will internally handle making service calls for you.

When this operation is called, a custom iterable is returned but no service calls are made yet. So there is no guarantee that the request is valid. As you iterate through the iterable, SDK will start lazily loading response pages by making service calls until there are no pages left or your iteration stops. If there are errors in your request, you will see the failures only after you start iterating through the iterable.

The following are few ways to iterate through the response pages:

1) Using a Stream

 
 software.amazon.awssdk.services.securitylake.paginators.ListDatalakeExceptionsIterable responses = client.listDatalakeExceptionsPaginator(request);
 responses.stream().forEach(....);
 
 

2) Using For loop

 {
     @code
     software.amazon.awssdk.services.securitylake.paginators.ListDatalakeExceptionsIterable responses = client
             .listDatalakeExceptionsPaginator(request);
     for (software.amazon.awssdk.services.securitylake.model.ListDatalakeExceptionsResponse response : responses) {
         // do something;
     }
 }
 

3) Use iterator directly

 
 software.amazon.awssdk.services.securitylake.paginators.ListDatalakeExceptionsIterable responses = client.listDatalakeExceptionsPaginator(request);
 responses.iterator().forEachRemaining(....);
 
 

Please notice that the configuration of maxFailures won't limit the number of results you get with the paginator. It only limits the number of results in each page.

Note: If you prefer to have control on service calls, use the listDatalakeExceptions(software.amazon.awssdk.services.securitylake.model.ListDatalakeExceptionsRequest) operation.

This is a convenience which creates an instance of the ListDatalakeExceptionsRequest.Builder avoiding the need to create one manually via ListDatalakeExceptionsRequest.builder()

Parameters:

listDatalakeExceptionsRequest - A Consumer that will call methods on ListDatalakeExceptionsRequest.Builder to create a request.

Returns:

A custom iterable that can be used to iterate through all the response pages.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

listLogSources

default ListLogSourcesResponse listLogSources(ListLogSourcesRequest listLogSourcesRequest)
                                       throws InternalServerException,
                                              ValidationException,
                                              AccessDeniedException,
                                              ResourceNotFoundException,
                                              AccountNotFoundException,
                                              AwsServiceException,
                                              SdkClientException,
                                              SecurityLakeException

Retrieves the log sources in the current Amazon Web Services Region.

Parameters:

listLogSourcesRequest -

Returns:

Result of the ListLogSources operation returned by the service.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

ResourceNotFoundException - The resource could not be found.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

listLogSources

default ListLogSourcesResponse listLogSources(Consumer<ListLogSourcesRequest.Builder> listLogSourcesRequest)
                                       throws InternalServerException,
                                              ValidationException,
                                              AccessDeniedException,
                                              ResourceNotFoundException,
                                              AccountNotFoundException,
                                              AwsServiceException,
                                              SdkClientException,
                                              SecurityLakeException

Retrieves the log sources in the current Amazon Web Services Region.

This is a convenience which creates an instance of the ListLogSourcesRequest.Builder avoiding the need to create one manually via ListLogSourcesRequest.builder()

Parameters:

listLogSourcesRequest - A Consumer that will call methods on ListLogSourcesRequest.Builder to create a request.

Returns:

Result of the ListLogSources operation returned by the service.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

ResourceNotFoundException - The resource could not be found.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

listLogSourcesPaginator

default ListLogSourcesIterable listLogSourcesPaginator(ListLogSourcesRequest listLogSourcesRequest)
                                                throws InternalServerException,
                                                       ValidationException,
                                                       AccessDeniedException,
                                                       ResourceNotFoundException,
                                                       AccountNotFoundException,
                                                       AwsServiceException,
                                                       SdkClientException,
                                                       SecurityLakeException

Retrieves the log sources in the current Amazon Web Services Region.

This is a variant of listLogSources(software.amazon.awssdk.services.securitylake.model.ListLogSourcesRequest) operation. The return type is a custom iterable that can be used to iterate through all the pages. SDK will internally handle making service calls for you.

When this operation is called, a custom iterable is returned but no service calls are made yet. So there is no guarantee that the request is valid. As you iterate through the iterable, SDK will start lazily loading response pages by making service calls until there are no pages left or your iteration stops. If there are errors in your request, you will see the failures only after you start iterating through the iterable.

The following are few ways to iterate through the response pages:

1) Using a Stream

 
 software.amazon.awssdk.services.securitylake.paginators.ListLogSourcesIterable responses = client.listLogSourcesPaginator(request);
 responses.stream().forEach(....);
 
 

2) Using For loop

 {
     @code
     software.amazon.awssdk.services.securitylake.paginators.ListLogSourcesIterable responses = client
             .listLogSourcesPaginator(request);
     for (software.amazon.awssdk.services.securitylake.model.ListLogSourcesResponse response : responses) {
         // do something;
     }
 }
 

3) Use iterator directly

 
 software.amazon.awssdk.services.securitylake.paginators.ListLogSourcesIterable responses = client.listLogSourcesPaginator(request);
 responses.iterator().forEachRemaining(....);
 
 

Please notice that the configuration of maxResults won't limit the number of results you get with the paginator. It only limits the number of results in each page.

Note: If you prefer to have control on service calls, use the listLogSources(software.amazon.awssdk.services.securitylake.model.ListLogSourcesRequest) operation.

Parameters:

listLogSourcesRequest -

Returns:

A custom iterable that can be used to iterate through all the response pages.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

ResourceNotFoundException - The resource could not be found.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

listLogSourcesPaginator

default ListLogSourcesIterable listLogSourcesPaginator(Consumer<ListLogSourcesRequest.Builder> listLogSourcesRequest)
                                                throws InternalServerException,
                                                       ValidationException,
                                                       AccessDeniedException,
                                                       ResourceNotFoundException,
                                                       AccountNotFoundException,
                                                       AwsServiceException,
                                                       SdkClientException,
                                                       SecurityLakeException

Retrieves the log sources in the current Amazon Web Services Region.

This is a variant of listLogSources(software.amazon.awssdk.services.securitylake.model.ListLogSourcesRequest) operation. The return type is a custom iterable that can be used to iterate through all the pages. SDK will internally handle making service calls for you.

When this operation is called, a custom iterable is returned but no service calls are made yet. So there is no guarantee that the request is valid. As you iterate through the iterable, SDK will start lazily loading response pages by making service calls until there are no pages left or your iteration stops. If there are errors in your request, you will see the failures only after you start iterating through the iterable.

The following are few ways to iterate through the response pages:

1) Using a Stream

 
 software.amazon.awssdk.services.securitylake.paginators.ListLogSourcesIterable responses = client.listLogSourcesPaginator(request);
 responses.stream().forEach(....);
 
 

2) Using For loop

 {
     @code
     software.amazon.awssdk.services.securitylake.paginators.ListLogSourcesIterable responses = client
             .listLogSourcesPaginator(request);
     for (software.amazon.awssdk.services.securitylake.model.ListLogSourcesResponse response : responses) {
         // do something;
     }
 }
 

3) Use iterator directly

 
 software.amazon.awssdk.services.securitylake.paginators.ListLogSourcesIterable responses = client.listLogSourcesPaginator(request);
 responses.iterator().forEachRemaining(....);
 
 

Please notice that the configuration of maxResults won't limit the number of results you get with the paginator. It only limits the number of results in each page.

Note: If you prefer to have control on service calls, use the listLogSources(software.amazon.awssdk.services.securitylake.model.ListLogSourcesRequest) operation.

This is a convenience which creates an instance of the ListLogSourcesRequest.Builder avoiding the need to create one manually via ListLogSourcesRequest.builder()

Parameters:

listLogSourcesRequest - A Consumer that will call methods on ListLogSourcesRequest.Builder to create a request.

Returns:

A custom iterable that can be used to iterate through all the response pages.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

ResourceNotFoundException - The resource could not be found.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

listSubscribers

default ListSubscribersResponse listSubscribers(ListSubscribersRequest listSubscribersRequest)
                                         throws InternalServerException,
                                                ValidationException,
                                                AccessDeniedException,
                                                ResourceNotFoundException,
                                                AccountNotFoundException,
                                                InvalidInputException,
                                                AwsServiceException,
                                                SdkClientException,
                                                SecurityLakeException

List all subscribers for the specific Amazon Security Lake account ID. You can retrieve a list of subscriptions associated with a specific organization or Amazon Web Services account.

Parameters:

listSubscribersRequest -

Returns:

Result of the ListSubscribers operation returned by the service.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

ResourceNotFoundException - The resource could not be found.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

InvalidInputException - The request was rejected because a value that's not valid or is out of range was supplied for an input parameter.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

listSubscribers

default ListSubscribersResponse listSubscribers(Consumer<ListSubscribersRequest.Builder> listSubscribersRequest)
                                         throws InternalServerException,
                                                ValidationException,
                                                AccessDeniedException,
                                                ResourceNotFoundException,
                                                AccountNotFoundException,
                                                InvalidInputException,
                                                AwsServiceException,
                                                SdkClientException,
                                                SecurityLakeException

List all subscribers for the specific Amazon Security Lake account ID. You can retrieve a list of subscriptions associated with a specific organization or Amazon Web Services account.

This is a convenience which creates an instance of the ListSubscribersRequest.Builder avoiding the need to create one manually via ListSubscribersRequest.builder()

Parameters:

listSubscribersRequest - A Consumer that will call methods on ListSubscribersRequest.Builder to create a request.

Returns:

Result of the ListSubscribers operation returned by the service.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

ResourceNotFoundException - The resource could not be found.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

InvalidInputException - The request was rejected because a value that's not valid or is out of range was supplied for an input parameter.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

listSubscribersPaginator

default ListSubscribersIterable listSubscribersPaginator(ListSubscribersRequest listSubscribersRequest)
                                                  throws InternalServerException,
                                                         ValidationException,
                                                         AccessDeniedException,
                                                         ResourceNotFoundException,
                                                         AccountNotFoundException,
                                                         InvalidInputException,
                                                         AwsServiceException,
                                                         SdkClientException,
                                                         SecurityLakeException

List all subscribers for the specific Amazon Security Lake account ID. You can retrieve a list of subscriptions associated with a specific organization or Amazon Web Services account.

This is a variant of listSubscribers(software.amazon.awssdk.services.securitylake.model.ListSubscribersRequest) operation. The return type is a custom iterable that can be used to iterate through all the pages. SDK will internally handle making service calls for you.

When this operation is called, a custom iterable is returned but no service calls are made yet. So there is no guarantee that the request is valid. As you iterate through the iterable, SDK will start lazily loading response pages by making service calls until there are no pages left or your iteration stops. If there are errors in your request, you will see the failures only after you start iterating through the iterable.

The following are few ways to iterate through the response pages:

1) Using a Stream

 
 software.amazon.awssdk.services.securitylake.paginators.ListSubscribersIterable responses = client.listSubscribersPaginator(request);
 responses.stream().forEach(....);
 
 

2) Using For loop

 {
     @code
     software.amazon.awssdk.services.securitylake.paginators.ListSubscribersIterable responses = client
             .listSubscribersPaginator(request);
     for (software.amazon.awssdk.services.securitylake.model.ListSubscribersResponse response : responses) {
         // do something;
     }
 }
 

3) Use iterator directly

 
 software.amazon.awssdk.services.securitylake.paginators.ListSubscribersIterable responses = client.listSubscribersPaginator(request);
 responses.iterator().forEachRemaining(....);
 
 

Please notice that the configuration of maxResults won't limit the number of results you get with the paginator. It only limits the number of results in each page.

Note: If you prefer to have control on service calls, use the listSubscribers(software.amazon.awssdk.services.securitylake.model.ListSubscribersRequest) operation.

Parameters:

listSubscribersRequest -

Returns:

A custom iterable that can be used to iterate through all the response pages.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

ResourceNotFoundException - The resource could not be found.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

InvalidInputException - The request was rejected because a value that's not valid or is out of range was supplied for an input parameter.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

listSubscribersPaginator

default ListSubscribersIterable listSubscribersPaginator(Consumer<ListSubscribersRequest.Builder> listSubscribersRequest)
                                                  throws InternalServerException,
                                                         ValidationException,
                                                         AccessDeniedException,
                                                         ResourceNotFoundException,
                                                         AccountNotFoundException,
                                                         InvalidInputException,
                                                         AwsServiceException,
                                                         SdkClientException,
                                                         SecurityLakeException

List all subscribers for the specific Amazon Security Lake account ID. You can retrieve a list of subscriptions associated with a specific organization or Amazon Web Services account.

This is a variant of listSubscribers(software.amazon.awssdk.services.securitylake.model.ListSubscribersRequest) operation. The return type is a custom iterable that can be used to iterate through all the pages. SDK will internally handle making service calls for you.

When this operation is called, a custom iterable is returned but no service calls are made yet. So there is no guarantee that the request is valid. As you iterate through the iterable, SDK will start lazily loading response pages by making service calls until there are no pages left or your iteration stops. If there are errors in your request, you will see the failures only after you start iterating through the iterable.

The following are few ways to iterate through the response pages:

1) Using a Stream

 
 software.amazon.awssdk.services.securitylake.paginators.ListSubscribersIterable responses = client.listSubscribersPaginator(request);
 responses.stream().forEach(....);
 
 

2) Using For loop

 {
     @code
     software.amazon.awssdk.services.securitylake.paginators.ListSubscribersIterable responses = client
             .listSubscribersPaginator(request);
     for (software.amazon.awssdk.services.securitylake.model.ListSubscribersResponse response : responses) {
         // do something;
     }
 }
 

3) Use iterator directly

 
 software.amazon.awssdk.services.securitylake.paginators.ListSubscribersIterable responses = client.listSubscribersPaginator(request);
 responses.iterator().forEachRemaining(....);
 
 

Please notice that the configuration of maxResults won't limit the number of results you get with the paginator. It only limits the number of results in each page.

Note: If you prefer to have control on service calls, use the listSubscribers(software.amazon.awssdk.services.securitylake.model.ListSubscribersRequest) operation.

This is a convenience which creates an instance of the ListSubscribersRequest.Builder avoiding the need to create one manually via ListSubscribersRequest.builder()

Parameters:

listSubscribersRequest - A Consumer that will call methods on ListSubscribersRequest.Builder to create a request.

Returns:

A custom iterable that can be used to iterate through all the response pages.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

ResourceNotFoundException - The resource could not be found.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

InvalidInputException - The request was rejected because a value that's not valid or is out of range was supplied for an input parameter.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

updateDatalake

default UpdateDatalakeResponse updateDatalake(UpdateDatalakeRequest updateDatalakeRequest)
                                       throws EventBridgeException,
                                              InternalServerException,
                                              ValidationException,
                                              AccessDeniedException,
                                              ResourceNotFoundException,
                                              AwsServiceException,
                                              SdkClientException,
                                              SecurityLakeException

Specifies where to store your security data and for how long. You can add a rollup Region to consolidate data from multiple Amazon Web Services Regions.

Parameters:

updateDatalakeRequest -

Returns:

Result of the UpdateDatalake operation returned by the service.

Throws:

EventBridgeException - Represents an error interacting with the Amazon EventBridge service.

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

ResourceNotFoundException - The resource could not be found.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

updateDatalake

default UpdateDatalakeResponse updateDatalake(Consumer<UpdateDatalakeRequest.Builder> updateDatalakeRequest)
                                       throws EventBridgeException,
                                              InternalServerException,
                                              ValidationException,
                                              AccessDeniedException,
                                              ResourceNotFoundException,
                                              AwsServiceException,
                                              SdkClientException,
                                              SecurityLakeException

Specifies where to store your security data and for how long. You can add a rollup Region to consolidate data from multiple Amazon Web Services Regions.

This is a convenience which creates an instance of the UpdateDatalakeRequest.Builder avoiding the need to create one manually via UpdateDatalakeRequest.builder()

Parameters:

updateDatalakeRequest - A Consumer that will call methods on UpdateDatalakeRequest.Builder to create a request.

Returns:

Result of the UpdateDatalake operation returned by the service.

Throws:

EventBridgeException - Represents an error interacting with the Amazon EventBridge service.

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

ResourceNotFoundException - The resource could not be found.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

updateDatalakeExceptionsExpiry

default UpdateDatalakeExceptionsExpiryResponse updateDatalakeExceptionsExpiry(UpdateDatalakeExceptionsExpiryRequest updateDatalakeExceptionsExpiryRequest)
                                                                       throws InternalServerException,
                                                                              ValidationException,
                                                                              AccessDeniedException,
                                                                              AccountNotFoundException,
                                                                              AwsServiceException,
                                                                              SdkClientException,
                                                                              SecurityLakeException

Update the expiration period for the exception message to your preferred time, and control the time-to-live (TTL) for the exception message to remain. Exceptions are stored by default for 2 weeks from when a record was created in Amazon Security Lake.

Parameters:

updateDatalakeExceptionsExpiryRequest -

Returns:

Result of the UpdateDatalakeExceptionsExpiry operation returned by the service.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

updateDatalakeExceptionsExpiry

default UpdateDatalakeExceptionsExpiryResponse updateDatalakeExceptionsExpiry(Consumer<UpdateDatalakeExceptionsExpiryRequest.Builder> updateDatalakeExceptionsExpiryRequest)
                                                                       throws InternalServerException,
                                                                              ValidationException,
                                                                              AccessDeniedException,
                                                                              AccountNotFoundException,
                                                                              AwsServiceException,
                                                                              SdkClientException,
                                                                              SecurityLakeException

Update the expiration period for the exception message to your preferred time, and control the time-to-live (TTL) for the exception message to remain. Exceptions are stored by default for 2 weeks from when a record was created in Amazon Security Lake.

This is a convenience which creates an instance of the UpdateDatalakeExceptionsExpiryRequest.Builder avoiding the need to create one manually via UpdateDatalakeExceptionsExpiryRequest.builder()

Parameters:

updateDatalakeExceptionsExpiryRequest - A Consumer that will call methods on UpdateDatalakeExceptionsExpiryRequest.Builder to create a request.

Returns:

Result of the UpdateDatalakeExceptionsExpiry operation returned by the service.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

updateDatalakeExceptionsSubscription

default UpdateDatalakeExceptionsSubscriptionResponse updateDatalakeExceptionsSubscription(UpdateDatalakeExceptionsSubscriptionRequest updateDatalakeExceptionsSubscriptionRequest)
                                                                                   throws InternalServerException,
                                                                                          ValidationException,
                                                                                          AccessDeniedException,
                                                                                          AccountNotFoundException,
                                                                                          AwsServiceException,
                                                                                          SdkClientException,
                                                                                          SecurityLakeException

Updates the specified notification subscription in Amazon Security Lake for the organization you specify.

Parameters:

updateDatalakeExceptionsSubscriptionRequest -

Returns:

Result of the UpdateDatalakeExceptionsSubscription operation returned by the service.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

updateDatalakeExceptionsSubscription

default UpdateDatalakeExceptionsSubscriptionResponse updateDatalakeExceptionsSubscription(Consumer<UpdateDatalakeExceptionsSubscriptionRequest.Builder> updateDatalakeExceptionsSubscriptionRequest)
                                                                                   throws InternalServerException,
                                                                                          ValidationException,
                                                                                          AccessDeniedException,
                                                                                          AccountNotFoundException,
                                                                                          AwsServiceException,
                                                                                          SdkClientException,
                                                                                          SecurityLakeException

Updates the specified notification subscription in Amazon Security Lake for the organization you specify.

This is a convenience which creates an instance of the UpdateDatalakeExceptionsSubscriptionRequest.Builder avoiding the need to create one manually via UpdateDatalakeExceptionsSubscriptionRequest.builder()

Parameters:

updateDatalakeExceptionsSubscriptionRequest - A Consumer that will call methods on UpdateDatalakeExceptionsSubscriptionRequest.Builder to create a request.

Returns:

Result of the UpdateDatalakeExceptionsSubscription operation returned by the service.

Throws:

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

updateSubscriber

default UpdateSubscriberResponse updateSubscriber(UpdateSubscriberRequest updateSubscriberRequest)
                                           throws ConflictSubscriptionException,
                                                  ConcurrentModificationException,
                                                  InternalServerException,
                                                  ValidationException,
                                                  AccessDeniedException,
                                                  AccountNotFoundException,
                                                  InvalidInputException,
                                                  AwsServiceException,
                                                  SdkClientException,
                                                  SecurityLakeException

Updates an existing subscription for the given Amazon Security Lake account ID. You can update a subscriber by changing the sources that the subscriber consumes data from.

Parameters:

updateSubscriberRequest -

Returns:

Result of the UpdateSubscriber operation returned by the service.

Throws:

ConflictSubscriptionException - A conflicting subscription exception operation is in progress.

ConcurrentModificationException - More than one process tried to modify a resource at the same time.

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

InvalidInputException - The request was rejected because a value that's not valid or is out of range was supplied for an input parameter.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

updateSubscriber

default UpdateSubscriberResponse updateSubscriber(Consumer<UpdateSubscriberRequest.Builder> updateSubscriberRequest)
                                           throws ConflictSubscriptionException,
                                                  ConcurrentModificationException,
                                                  InternalServerException,
                                                  ValidationException,
                                                  AccessDeniedException,
                                                  AccountNotFoundException,
                                                  InvalidInputException,
                                                  AwsServiceException,
                                                  SdkClientException,
                                                  SecurityLakeException

Updates an existing subscription for the given Amazon Security Lake account ID. You can update a subscriber by changing the sources that the subscriber consumes data from.

This is a convenience which creates an instance of the UpdateSubscriberRequest.Builder avoiding the need to create one manually via UpdateSubscriberRequest.builder()

Parameters:

updateSubscriberRequest - A Consumer that will call methods on UpdateSubscriberRequest.Builder to create a request.

Returns:

Result of the UpdateSubscriber operation returned by the service.

Throws:

ConflictSubscriptionException - A conflicting subscription exception operation is in progress.

ConcurrentModificationException - More than one process tried to modify a resource at the same time.

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

InvalidInputException - The request was rejected because a value that's not valid or is out of range was supplied for an input parameter.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

updateSubscriptionNotificationConfiguration

default UpdateSubscriptionNotificationConfigurationResponse updateSubscriptionNotificationConfiguration(UpdateSubscriptionNotificationConfigurationRequest updateSubscriptionNotificationConfigurationRequest)
                                                                                                 throws ConcurrentModificationException,
                                                                                                        InternalServerException,
                                                                                                        ValidationException,
                                                                                                        AccessDeniedException,
                                                                                                        ResourceNotFoundException,
                                                                                                        AccountNotFoundException,
                                                                                                        InvalidInputException,
                                                                                                        AwsServiceException,
                                                                                                        SdkClientException,
                                                                                                        SecurityLakeException

Creates a new subscription notification or adds the existing subscription notification setting for the specified subscription ID.

Parameters:

updateSubscriptionNotificationConfigurationRequest -

Returns:

Result of the UpdateSubscriptionNotificationConfiguration operation returned by the service.

Throws:

ConcurrentModificationException - More than one process tried to modify a resource at the same time.

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

ResourceNotFoundException - The resource could not be found.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

InvalidInputException - The request was rejected because a value that's not valid or is out of range was supplied for an input parameter.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

updateSubscriptionNotificationConfiguration

default UpdateSubscriptionNotificationConfigurationResponse updateSubscriptionNotificationConfiguration(Consumer<UpdateSubscriptionNotificationConfigurationRequest.Builder> updateSubscriptionNotificationConfigurationRequest)
                                                                                                 throws ConcurrentModificationException,
                                                                                                        InternalServerException,
                                                                                                        ValidationException,
                                                                                                        AccessDeniedException,
                                                                                                        ResourceNotFoundException,
                                                                                                        AccountNotFoundException,
                                                                                                        InvalidInputException,
                                                                                                        AwsServiceException,
                                                                                                        SdkClientException,
                                                                                                        SecurityLakeException

Creates a new subscription notification or adds the existing subscription notification setting for the specified subscription ID.

This is a convenience which creates an instance of the UpdateSubscriptionNotificationConfigurationRequest.Builder avoiding the need to create one manually via UpdateSubscriptionNotificationConfigurationRequest.builder()

Parameters:

updateSubscriptionNotificationConfigurationRequest - A Consumer that will call methods on UpdateSubscriptionNotificationConfigurationRequest.Builder to create a request.

Returns:

Result of the UpdateSubscriptionNotificationConfiguration operation returned by the service.

Throws:

ConcurrentModificationException - More than one process tried to modify a resource at the same time.

InternalServerException - Internal service exceptions are sometimes caused by transient issues. Before you start troubleshooting, perform the operation again.

ValidationException - Your signing certificate could not be validated.

AccessDeniedException - You do not have sufficient access to perform this action. Access denied errors appear when Amazon Security Lake explicitly or implicitly denies an authorization request. An explicit denial occurs when a policy contains a Deny statement for the specific Amazon Web Services action. An implicit denial occurs when there is no applicable Deny statement and also no applicable Allow statement.

ResourceNotFoundException - The resource could not be found.

AccountNotFoundException - Amazon Security Lake cannot find an Amazon Web Services account with the accountID that you specified, or the account whose credentials you used to make this request isn't a member of an organization.

InvalidInputException - The request was rejected because a value that's not valid or is out of range was supplied for an input parameter.

SdkException - Base class for all exceptions that can be thrown by the SDK (both service and client). Can be used for catch all scenarios.

SdkClientException - If any client side error occurs such as an IO related failure, failure to get credentials, etc.

SecurityLakeException - Base class for all service exceptions. Unknown exceptions will be thrown as an instance of this type.

AwsServiceException

See Also:

AWS API Documentation

create

static SecurityLakeClient create()

Create a SecurityLakeClient with the region loaded from the DefaultAwsRegionProviderChain and credentials loaded from the DefaultCredentialsProvider.

builder

static SecurityLakeClientBuilder builder()

Create a builder that can be used to configure and create a SecurityLakeClient.

serviceMetadata

static ServiceMetadata serviceMetadata()