/ 
Paws-0.43
River stage two • 11 direct dependents • 13 total dependents
⭐ Starred 171 GitHub stars
/ Paws::FMS::Policy

NAME

Paws::FMS::Policy

USAGE

This class represents one of two things:

Arguments in a call to a service

Use the attributes of this class as arguments to methods. You shouldn't make instances of this class. Each attribute should be used as a named argument in the calls that expect this type of object.

As an example, if Att1 is expected to be a Paws::FMS::Policy object:

$service_obj->Method(Att1 => { ExcludeMap => $value, ..., SecurityServicePolicyData => $value  });

Results returned from an API call

Use accessors for each attribute. If Att1 is expected to be an Paws::FMS::Policy object:

$result = $service_obj->Method(...);
$result->Att1->ExcludeMap

DESCRIPTION

An AWS Firewall Manager policy.

ATTRIBUTES

ExcludeMap => Paws::FMS::CustomerPolicyScopeMap

Specifies the AWS account IDs to exclude from the policy. The IncludeMap values are evaluated first, with all the appropriate account IDs added to the policy. Then the accounts listed in ExcludeMap are removed, resulting in the final list of accounts to add to the policy.

The key to the map is ACCOUNT. For example, a valid ExcludeMap would be {“ACCOUNT” : [“accountID1”, “accountID2”]}.

REQUIRED ExcludeResourceTags => Bool

If set to True, resources with the tags that are specified in the ResourceTag array are not in scope of the policy. If set to False, and the ResourceTag array is not null, only resources with the specified tags are in scope of the policy.

IncludeMap => Paws::FMS::CustomerPolicyScopeMap

Specifies the AWS account IDs to include in the policy. If IncludeMap is null, all accounts in the organization in AWS Organizations are included in the policy. If IncludeMap is not null, only values listed in IncludeMap are included in the policy.

The key to the map is ACCOUNT. For example, a valid IncludeMap would be {“ACCOUNT” : [“accountID1”, “accountID2”]}.

PolicyId => Str

The ID of the AWS Firewall Manager policy.

REQUIRED PolicyName => Str

The friendly name of the AWS Firewall Manager policy.

PolicyUpdateToken => Str

A unique identifier for each update to the policy. When issuing a PutPolicy request, the PolicyUpdateToken in the request must match the PolicyUpdateToken of the current policy version. To get the PolicyUpdateToken of the current policy version, use a GetPolicy request.

REQUIRED RemediationEnabled => Bool

Indicates if the policy should be automatically applied to new resources.

ResourceTags => ArrayRef[Paws::FMS::ResourceTag]

An array of ResourceTag objects.

REQUIRED ResourceType => Str

The type of resource protected by or in scope of the policy. This is in the format shown in the AWS Resource Types Reference (https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-template-resource-type-ref.html). For AWS WAF and Shield Advanced, examples include AWS::ElasticLoadBalancingV2::LoadBalancer and AWS::CloudFront::Distribution. For a security group common policy, valid values are AWS::EC2::NetworkInterface and AWS::EC2::Instance. For a security group content audit policy, valid values are AWS::EC2::SecurityGroup, AWS::EC2::NetworkInterface, and AWS::EC2::Instance. For a security group usage audit policy, the value is AWS::EC2::SecurityGroup.

ResourceTypeList => ArrayRef[Str|Undef]

An array of ResourceType.

REQUIRED SecurityServicePolicyData => Paws::FMS::SecurityServicePolicyData

Details about the security service that is being used to protect the resources.

SEE ALSO

This class forms part of Paws, describing an object used in Paws::FMS

BUGS and CONTRIBUTIONS

The source code is located here: https://github.com/pplu/aws-sdk-perl

Please report bugs to: https://github.com/pplu/aws-sdk-perl/issues