# UserAccount
<a name="API_UserAccount"></a>

 Provides AWS account information of the user involved in an Amazon GuardDuty Extended Threat Detection attack sequence. GuardDuty generates an attack sequence finding when multiple events align to a potentially suspicious activity. To receive GuardDuty attack sequence findings in AWS Security Hub CSPM, you must have GuardDuty enabled. For more information, see [GuardDuty Extended Threat Detection ](https://docs.aws.amazon.com/guardduty/latest/ug/guardduty-extended-threat-detection.html) in the *Amazon GuardDuty User Guide*. 

## Contents
<a name="API_UserAccount_Contents"></a>

 ** Name **   <a name="securityhub-Type-UserAccount-Name"></a>
 The name of the user account involved in the attack sequence.   
Type: String  
Pattern: `.*\S.*`   
Required: No

 ** Uid **   <a name="securityhub-Type-UserAccount-Uid"></a>
 The unique identifier of the user account involved in the attack sequence.   
Type: String  
Pattern: `.*\S.*`   
Required: No

## See Also
<a name="API_UserAccount_SeeAlso"></a>

For more information about using this API in one of the language-specific AWS SDKs, see the following:
+  [AWS SDK for C\$1\$1](https://docs.aws.amazon.com/goto/SdkForCpp/securityhub-2018-10-26/UserAccount) 
+  [AWS SDK for Java V2](https://docs.aws.amazon.com/goto/SdkForJavaV2/securityhub-2018-10-26/UserAccount) 
+  [AWS SDK for Ruby V3](https://docs.aws.amazon.com/goto/SdkForRubyV3/securityhub-2018-10-26/UserAccount)