Terjemahan disediakan oleh mesin penerjemah. Jika konten terjemahan yang diberikan bertentangan dengan versi bahasa Inggris aslinya, utamakan versi bahasa Inggris.
AwsIam sumber daya di ASFF
Berikut ini adalah contoh sintaks AWS Security Finding Format (ASFF) untuk AwsIam
sumber daya.
AWS Security Hub menormalkan temuan dari berbagai sumber ke dalamASFF. Untuk informasi latar belakangASFF, lihatAWS Format Pencarian Keamanan (ASFF).
AwsIamAccessKey
AwsIamAccessKey
Objek berisi rincian tentang kunci IAM akses yang terkait dengan temuan.
Contoh berikut menunjukkan AWS Security Finding Format (ASFF) untuk AwsIamAccessKey
objek. Untuk melihat deskripsi AwsIamAccessKey
atribut, lihat AwsIamAccessKeyDetailsdi AWS Security Hub APIReferensi.
Contoh
"AwsIamAccessKey": { "AccessKeyId": "string", "AccountId": "string", "CreatedAt": "string", "PrincipalId": "string", "PrincipalName": "string", "PrincipalType": "string", "SessionContext": { "Attributes": { "CreationDate": "string", "MfaAuthenticated": boolean }, "SessionIssuer": { "AccountId": "string", "Arn": "string", "PrincipalId": "string", "Type": "string", "UserName": "string" } }, "Status": "string" }
AwsIamGroup
AwsIamGroup
Objek berisi rincian tentang IAM grup.
Contoh berikut menunjukkan AWS Security Finding Format (ASFF) untuk AwsIamGroup
objek. Untuk melihat deskripsi AwsIamGroup
atribut, lihat AwsIamGroupDetailsdi AWS Security Hub APIReferensi.
Contoh
"AwsIamGroup": { "AttachedManagedPolicies": [ { "PolicyArn": "arn:aws:iam::aws:policy/ExampleManagedAccess", "PolicyName": "ExampleManagedAccess", } ], "CreateDate": "2020-04-28T14:08:37.000Z", "GroupId": "AGPA4TPS3VLP7QEXAMPLE", "GroupName": "Example_User_Group", "GroupPolicyList": [ { "PolicyName": "ExampleGroupPolicy" } ], "Path": "/" }
AwsIamPolicy
AwsIamPolicy
Objek mewakili kebijakan IAM izin.
Contoh berikut menunjukkan AWS Security Finding Format (ASFF) untuk AwsIamPolicy
objek. Untuk melihat deskripsi AwsIamPolicy
atribut, lihat AwsIamPolicyDetailsdi AWS Security Hub APIReferensi.
Contoh
"AwsIamPolicy": { "AttachmentCount": 1, "CreateDate": "2017-09-14T08:17:29.000Z", "DefaultVersionId": "v1", "Description": "Example IAM policy", "IsAttachable": true, "Path": "/", "PermissionsBoundaryUsageCount": 5, "PolicyId": "ANPAJ2UCCR6DPCEXAMPLE", "PolicyName": "EXAMPLE-MANAGED-POLICY", "PolicyVersionList": [ { "VersionId": "v1", "IsDefaultVersion": true, "CreateDate": "2017-09-14T08:17:29.000Z" } ], "UpdateDate": "2017-09-14T08:17:29.000Z" }
AwsIamRole
AwsIamRole
Objek berisi informasi tentang IAM peran, termasuk semua kebijakan peran.
Contoh berikut menunjukkan AWS Security Finding Format (ASFF) untuk AwsIamRole
objek. Untuk melihat deskripsi AwsIamRole
atribut, lihat AwsIamRoleDetailsdi AWS Security Hub APIReferensi.
Contoh
"AwsIamRole": { "AssumeRolePolicyDocument": "{'Version': '2012-10-17','Statement': [{'Effect': 'Allow','Action': 'sts:AssumeRole'}]}", "AttachedManagedPolicies": [ { "PolicyArn": "arn:aws:iam::aws:policy/ExamplePolicy1", "PolicyName": "Example policy 1" }, { "PolicyArn": "arn:aws:iam::444455556666:policy/ExamplePolicy2", "PolicyName": "Example policy 2" } ], "CreateDate": "2020-03-14T07:19:14.000Z", "InstanceProfileList": [ { "Arn": "arn:aws:iam::333333333333:ExampleProfile", "CreateDate": "2020-03-11T00:02:27Z", "InstanceProfileId": "AIPAIXEU4NUHUPEXAMPLE", "InstanceProfileName": "ExampleInstanceProfile", "Path": "/", "Roles": [ { "Arn": "arn:aws:iam::444455556666:role/example-role", "AssumeRolePolicyDocument": "", "CreateDate": "2020-03-11T00:02:27Z", "Path": "/", "RoleId": "AROAJ52OTH4H7LEXAMPLE", "RoleName": "example-role", } ] } ], "MaxSessionDuration": 3600, "Path": "/", "PermissionsBoundary": { "PermissionsBoundaryArn": "arn:aws:iam::aws:policy/AdministratorAccess", "PermissionsBoundaryType": "PermissionsBoundaryPolicy" }, "RoleId": "AROA4TPS3VLEXAMPLE", "RoleName": "BONESBootstrapHydra-OverbridgeOpsFunctionsLambda", "RolePolicyList": [ { "PolicyName": "Example role policy" } ] }
AwsIamUser
AwsIamUser
Objek memberikan informasi tentang pengguna.
Contoh berikut menunjukkan AWS Security Finding Format (ASFF) untuk AwsIamUser
objek. Untuk melihat deskripsi AwsIamUser
atribut, lihat AwsIamUserDetailsdi AWS Security Hub APIReferensi.
Contoh
"AwsIamUser": { "AttachedManagedPolicies": [ { "PolicyName": "ExamplePolicy", "PolicyArn": "arn:aws:iam::aws:policy/ExampleAccess" } ], "CreateDate": "2018-01-26T23:50:05.000Z", "GroupList": [], "Path": "/", "PermissionsBoundary" : { "PermissionsBoundaryArn" : "arn:aws:iam::aws:policy/AdministratorAccess", "PermissionsBoundaryType" : "PermissionsBoundaryPolicy" }, "UserId": "AIDACKCEVSQ6C2EXAMPLE", "UserName": "ExampleUser", "UserPolicyList": [ { "PolicyName": "InstancePolicy" } ] }