AWS::AuditManager::Assessment Delegation - AWS CloudFormation
SyntaxPropertiesSee also

AWS::AuditManager::Assessment Delegation

The Delegation property type specifies the assignment of a control set to a delegate for review.

Syntax

To declare this entity in your AWS CloudFormation template, use the following syntax:

JSON

{
  "AssessmentId" : String,
  "AssessmentName" : String,
  "Comment" : String,
  "ControlSetId" : String,
  "CreatedBy" : String,
  "CreationTime" : Number,
  "Id" : String,
  "LastUpdated" : Number,
  "RoleArn" : String,
  "RoleType" : String,
  "Status" : String
}

YAML

  AssessmentId: String
  AssessmentName: String
  Comment: String
  ControlSetId: String
  CreatedBy: String
  CreationTime: Number
  Id: String
  LastUpdated: Number
  RoleArn: String
  RoleType: String
  Status: String

Properties

AssessmentId

The identifier for the assessment that's associated with the delegation.

Required: No

Type: String

Pattern: ^[a-f0-9]{8}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{12}$

Minimum: 36

Maximum: 36

Update requires: No interruption

AssessmentName

The name of the assessment that's associated with the delegation.

Required: No

Type: String

Pattern: ^[a-zA-Z0-9-_\.]+$

Minimum: 1

Maximum: 127

Update requires: No interruption

Comment

The comment that's related to the delegation.

Required: No

Type: String

Pattern: ^[\w\W\s\S]*$

Maximum: 350

Update requires: No interruption

ControlSetId

The identifier for the control set that's associated with the delegation.

Required: No

Type: String

Pattern: ^[\w\W\s\S]*$

Minimum: 1

Maximum: 300

Update requires: No interruption

CreatedBy

The user or role that created the delegation.

Minimum: 1

Maximum: 100

Pattern: ^[a-zA-Z0-9-_()\\[\\]\\s]+$

Required: No

Type: String

Pattern: ^arn:.*:*:.*

Minimum: 20

Maximum: 2048

Update requires: No interruption

CreationTime

Specifies when the delegation was created.

Required: No

Type: Number

Update requires: No interruption

Id

The unique identifier for the delegation.

Required: No

Type: String

Pattern: ^[a-f0-9]{8}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{12}$

Minimum: 36

Maximum: 36

Update requires: No interruption

LastUpdated

Specifies when the delegation was last updated.

Required: No

Type: Number

Update requires: No interruption

RoleArn

The Amazon Resource Name (ARN) of the IAM role.

Required: No

Type: String

Pattern: ^arn:.*:iam:.*

Minimum: 20

Maximum: 2048

Update requires: No interruption

RoleType

The type of customer persona.

Note

In CreateAssessment, roleType can only be PROCESS_OWNER.

In UpdateSettings, roleType can only be PROCESS_OWNER.

In BatchCreateDelegationByAssessment, roleType can only be RESOURCE_OWNER.

Required: No

Type: String

Allowed values: PROCESS_OWNER | RESOURCE_OWNER

Update requires: No interruption

Status

The status of the delegation.

Required: No

Type: String

Allowed values: IN_PROGRESS | UNDER_REVIEW | COMPLETE

Update requires: No interruption

See also

  • Delegation in the AWS Audit Manager API Reference.