/AWS1/CL_SHB=>CREATECONFIGURATIONPOLICY()¶
About CreateConfigurationPolicy¶
Creates a configuration policy with the defined configuration. Only the Security Hub delegated administrator can invoke this operation from the home Region.
Method Signature¶
IMPORTING¶
Required arguments:¶
IV_NAME TYPE /AWS1/SHBNONEMPTYSTRING /AWS1/SHBNONEMPTYSTRING¶
The name of the configuration policy. Alphanumeric characters and the following ASCII characters are permitted:
-, ., !, *, /.
IO_CONFIGURATIONPOLICY TYPE REF TO /AWS1/CL_SHBPOLICY /AWS1/CL_SHBPOLICY¶
An object that defines how Security Hub is configured. It includes whether Security Hub is enabled or disabled, a list of enabled security standards, a list of enabled or disabled security controls, and a list of custom parameter values for specified controls. If you provide a list of security controls that are enabled in the configuration policy, Security Hub disables all other controls (including newly released controls). If you provide a list of security controls that are disabled in the configuration policy, Security Hub enables all other controls (including newly released controls).
Optional arguments:¶
IV_DESCRIPTION TYPE /AWS1/SHBNONEMPTYSTRING /AWS1/SHBNONEMPTYSTRING¶
The description of the configuration policy.
IT_TAGS TYPE /AWS1/CL_SHBTAGMAP_W=>TT_TAGMAP TT_TAGMAP¶
User-defined tags associated with a configuration policy. For more information, see Tagging Security Hub resources in the Security Hub user guide.