Amazon Macie 2

2021/03/22 - Amazon Macie 2 - 2 new api methods

Changes  This release of the Amazon Macie API adds support for publishing sensitive data findings to AWS Security Hub and specifying which categories of findings to publish to Security Hub.

PutFindingsPublicationConfiguration (new) Link ¶

Updates the configuration settings for publishing findings to AWS Security Hub.

See also: AWS API Documentation

Request Syntax

client.put_findings_publication_configuration(
    clientToken='string',
    securityHubConfiguration={
        'publishClassificationFindings': True|False,
        'publishPolicyFindings': True|False
    }
)
type clientToken

string

param clientToken

A unique, case-sensitive token that you provide to ensure the idempotency of the request.

This field is autopopulated if not provided.

type securityHubConfiguration

dict

param securityHubConfiguration

The configuration settings that determine which findings to publish to AWS Security Hub.

  • publishClassificationFindings (boolean) -- [REQUIRED]

    Specifies whether to publish sensitive data findings to AWS Security Hub. If you set this value to true, Amazon Macie automatically publishes all sensitive data findings that weren't suppressed by a findings filter. The default value is false.

  • publishPolicyFindings (boolean) -- [REQUIRED]

    Specifies whether to publish policy findings to AWS Security Hub. If you set this value to true, Amazon Macie automatically publishes all new and updated policy findings that weren't suppressed by a findings filter. The default value is true.

rtype

dict

returns

Response Syntax

{}

Response Structure

  • (dict) --

    The request succeeded and there isn't any content to include in the body of the response (No Content).

GetFindingsPublicationConfiguration (new) Link ¶

Retrieves the configuration settings for publishing findings to AWS Security Hub.

See also: AWS API Documentation

Request Syntax

client.get_findings_publication_configuration()
rtype

dict

returns

Response Syntax

{
    'securityHubConfiguration': {
        'publishClassificationFindings': True|False,
        'publishPolicyFindings': True|False
    }
}

Response Structure

  • (dict) --

    The request succeeded.

    • securityHubConfiguration (dict) --

      The configuration settings that determine which findings are published to AWS Security Hub.

      • publishClassificationFindings (boolean) --

        Specifies whether to publish sensitive data findings to AWS Security Hub. If you set this value to true, Amazon Macie automatically publishes all sensitive data findings that weren't suppressed by a findings filter. The default value is false.

      • publishPolicyFindings (boolean) --

        Specifies whether to publish policy findings to AWS Security Hub. If you set this value to true, Amazon Macie automatically publishes all new and updated policy findings that weren't suppressed by a findings filter. The default value is true.