Class CfnConfigurationPolicy.SecurityControlsConfigurationProperty
An object that defines which security controls are enabled in an AWS Security Hub configuration policy.
Inherited Members
Namespace: Amazon.CDK.AWS.SecurityHub
Assembly: Amazon.CDK.Lib.dll
Syntax (csharp)
public class CfnConfigurationPolicy.SecurityControlsConfigurationProperty : CfnConfigurationPolicy.ISecurityControlsConfigurationPropertySyntax (vb)
Public Class CfnConfigurationPolicy.SecurityControlsConfigurationProperty Implements CfnConfigurationPolicy.ISecurityControlsConfigurationPropertyRemarks
The enablement status of a control is aligned across all of the enabled standards in an account.
This property is required only if ServiceEnabled is set to true in your configuration policy.
ExampleMetadata: fixture=_generated
Examples
// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
using Amazon.CDK.AWS.SecurityHub;
var securityControlsConfigurationProperty = new SecurityControlsConfigurationProperty {
DisabledSecurityControlIdentifiers = new [] { "disabledSecurityControlIdentifiers" },
EnabledSecurityControlIdentifiers = new [] { "enabledSecurityControlIdentifiers" },
SecurityControlCustomParameters = new [] { new SecurityControlCustomParameterProperty {
Parameters = new Dictionary<string, object> {
{ "parametersKey", new ParameterConfigurationProperty {
ValueType = "valueType",
// the properties below are optional
Value = new ParameterValueProperty {
Boolean = false,
Double = 123,
Enum = "enum",
EnumList = new [] { "enumList" },
Integer = 123,
IntegerList = new [] { 123 },
String = "string",
StringList = new [] { "stringList" }
}
} }
},
SecurityControlId = "securityControlId"
} }
};Synopsis
Constructors
| SecurityControlsConfigurationProperty() | An object that defines which security controls are enabled in an AWS Security Hub configuration policy. |
Properties
| DisabledSecurityControlIdentifiers | A list of security controls that are disabled in the configuration policy. |
| EnabledSecurityControlIdentifiers | A list of security controls that are enabled in the configuration policy. |
| SecurityControlCustomParameters | A list of security controls and control parameter values that are included in a configuration policy. |
Constructors
SecurityControlsConfigurationProperty()
An object that defines which security controls are enabled in an AWS Security Hub configuration policy.
public SecurityControlsConfigurationProperty()Remarks
The enablement status of a control is aligned across all of the enabled standards in an account.
This property is required only if ServiceEnabled is set to true in your configuration policy.
ExampleMetadata: fixture=_generated
Examples
// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
using Amazon.CDK.AWS.SecurityHub;
var securityControlsConfigurationProperty = new SecurityControlsConfigurationProperty {
DisabledSecurityControlIdentifiers = new [] { "disabledSecurityControlIdentifiers" },
EnabledSecurityControlIdentifiers = new [] { "enabledSecurityControlIdentifiers" },
SecurityControlCustomParameters = new [] { new SecurityControlCustomParameterProperty {
Parameters = new Dictionary<string, object> {
{ "parametersKey", new ParameterConfigurationProperty {
ValueType = "valueType",
// the properties below are optional
Value = new ParameterValueProperty {
Boolean = false,
Double = 123,
Enum = "enum",
EnumList = new [] { "enumList" },
Integer = 123,
IntegerList = new [] { 123 },
String = "string",
StringList = new [] { "stringList" }
}
} }
},
SecurityControlId = "securityControlId"
} }
};Properties
DisabledSecurityControlIdentifiers
A list of security controls that are disabled in the configuration policy.
public string[]? DisabledSecurityControlIdentifiers { get; set; }Property Value
string[]
Remarks
Provide only one of EnabledSecurityControlIdentifiers or DisabledSecurityControlIdentifiers .
If you provide DisabledSecurityControlIdentifiers , Security Hub enables all other controls not in the list, and enables AutoEnableControls .
EnabledSecurityControlIdentifiers
A list of security controls that are enabled in the configuration policy.
public string[]? EnabledSecurityControlIdentifiers { get; set; }Property Value
string[]
Remarks
Provide only one of EnabledSecurityControlIdentifiers or DisabledSecurityControlIdentifiers .
If you provide EnabledSecurityControlIdentifiers , Security Hub disables all other controls not in the list, and disables AutoEnableControls .
SecurityControlCustomParameters
A list of security controls and control parameter values that are included in a configuration policy.
public object? SecurityControlCustomParameters { get; set; }