awscc_iot_account_audit_configuration (Resource)

Configures the Device Defender audit settings for this account. Settings include how audit notifications are sent and which audit checks are enabled or disabled.

Schema

Required

Optional

Read-Only

Nested Schema for audit_check_configurations

Optional:

Nested Schema for audit_check_configurations.authenticated_cognito_role_overly_permissive_check

Optional:

Nested Schema for audit_check_configurations.ca_certificate_expiring_check

Optional:

Nested Schema for audit_check_configurations.ca_certificate_key_quality_check

Optional:

Nested Schema for audit_check_configurations.conflicting_client_ids_check

Optional:

Nested Schema for audit_check_configurations.device_certificate_expiring_check

Optional:

Nested Schema for audit_check_configurations.device_certificate_key_quality_check

Optional:

Nested Schema for audit_check_configurations.device_certificate_shared_check

Optional:

Nested Schema for audit_check_configurations.intermediate_ca_revoked_for_active_device_certificates_check

Optional:

Nested Schema for audit_check_configurations.io_t_policy_potential_mis_configuration_check

Optional:

Nested Schema for audit_check_configurations.iot_policy_overly_permissive_check

Optional:

Nested Schema for audit_check_configurations.iot_role_alias_allows_access_to_unused_services_check

Optional:

Nested Schema for audit_check_configurations.iot_role_alias_overly_permissive_check

Optional:

Nested Schema for audit_check_configurations.logging_disabled_check

Optional:

Nested Schema for audit_check_configurations.revoked_ca_certificate_still_active_check

Optional:

Nested Schema for audit_check_configurations.revoked_device_certificate_still_active_check

Optional:

Nested Schema for audit_check_configurations.unauthenticated_cognito_role_overly_permissive_check

Optional:

Nested Schema for audit_notification_target_configurations

Optional:

Nested Schema for audit_notification_target_configurations.sns

Optional:

Import

Import is supported using the following syntax:

$ terraform import awscc_iot_account_audit_configuration.example <resource ID>