hub
Gets an individual hub resource
Overview
| Name | hub |
| Type | Resource |
| Description | hub |
| Id | awscc.securityhub.hub |
Fields
| Name | Datatype | Description |
|---|---|---|
arn | string | An ARN is automatically created for the customer. |
enable_default_standards | boolean | Whether to enable the security standards that Security Hub has designated as automatically enabled. |
control_finding_generator | string | This field, used when enabling Security Hub, specifies whether the calling account has consolidated control findings turned on. If the value for this field is set to SECURITY_CONTROL, Security Hub generates a single finding for a control check even when the check applies to multiple enabled standards. If the value for this field is set to STANDARD_CONTROL, Security Hub generates separate findings for a control check when the check applies to multiple enabled standards. |
auto_enable_controls | boolean | Whether to automatically enable new controls when they are added to standards that are enabled |
tags | object | |
subscribed_at | string | The date and time when Security Hub was enabled in the account. |
region | string | AWS region. |
Methods
Currently only SELECT is supported for this resource resource.
Example
SELECT
region,
arn,
enable_default_standards,
control_finding_generator,
auto_enable_controls,
tags,
subscribed_at
FROM awscc.securityhub.hub
WHERE data__Identifier = '<ARN>';
Permissions
To operate on the hub resource, the following permissions are required:
Read
securityhub:DescribeHub,
securityhub:ListTagsForResource
Update
securityhub:DescribeHub,
securityhub:UpdateSecurityHubConfiguration,
securityhub:TagResource,
securityhub:UntagResource,
securityhub:ListTagsForResource
Delete
securityhub:DisableSecurityHub