/AWS1/CL_SHB=>CREATECONFIGURATIONPOLICY()
¶
About CreateConfigurationPolicy¶
Creates a configuration policy with the defined configuration. Only the Security Hub delegated administrator can invoke this operation from the home Region.
Method Signature¶
IMPORTING¶
Required arguments:¶
IV_NAME
TYPE /AWS1/SHBNONEMPTYSTRING
/AWS1/SHBNONEMPTYSTRING
¶
The name of the configuration policy. Alphanumeric characters and the following ASCII characters are permitted:
-, ., !, *, /
.
IO_CONFIGURATIONPOLICY
TYPE REF TO /AWS1/CL_SHBPOLICY
/AWS1/CL_SHBPOLICY
¶
An object that defines how Security Hub is configured. It includes whether Security Hub is enabled or disabled, a list of enabled security standards, a list of enabled or disabled security controls, and a list of custom parameter values for specified controls. If you provide a list of security controls that are enabled in the configuration policy, Security Hub disables all other controls (including newly released controls). If you provide a list of security controls that are disabled in the configuration policy, Security Hub enables all other controls (including newly released controls).
Optional arguments:¶
IV_DESCRIPTION
TYPE /AWS1/SHBNONEMPTYSTRING
/AWS1/SHBNONEMPTYSTRING
¶
The description of the configuration policy.
IT_TAGS
TYPE /AWS1/CL_SHBTAGMAP_W=>TT_TAGMAP
TT_TAGMAP
¶
User-defined tags associated with a configuration policy. For more information, see Tagging Security Hub resources in the Security Hub user guide.