AWS::Connect::SecurityProfile

Creates a security profile.

Syntax

To declare this entity in your Amazon CloudFormation template, use the following syntax:

JSON


{
  "Type" : "AWS::Connect::SecurityProfile",
  "Properties" : {
      "AllowedAccessControlHierarchyGroupId" : String,
      "AllowedAccessControlTags" : [ Tag, ... ],
      "Applications" : [ Application, ... ],
      "Description" : String,
      "HierarchyRestrictedResources" : [ String, ... ],
      "InstanceArn" : String,
      "Permissions" : [ String, ... ],
      "SecurityProfileName" : String,
      "TagRestrictedResources" : [ String, ... ],
      "Tags" : [ Tag, ... ]
    }
}

YAML


Type: AWS::Connect::SecurityProfile
Properties:
  AllowedAccessControlHierarchyGroupId: String
  AllowedAccessControlTags: 
    - Tag
  Applications: 
    - Application
  Description: String
  HierarchyRestrictedResources: 
    - String
  InstanceArn: String
  Permissions: 
    - String
  SecurityProfileName: String
  TagRestrictedResources: 
    - String
  Tags: 
    - Tag

Properties

AllowedAccessControlHierarchyGroupId

The identifier of the hierarchy group that a security profile uses to restrict access to resources in Amazon Connect.

Required: No

Type: String

Pattern: ^[a-zA-Z0-9-]+$

Minimum: 0

Maximum: 127

Update requires: No interruption

AllowedAccessControlTags

The list of tags that a security profile uses to restrict access to resources in Amazon Connect.

Required: No

Type: Array of Tag

Maximum: 2

Update requires: No interruption

Applications

Property description not available.

Required: No

Type: Array of Application

Maximum: 10

Update requires: No interruption

Description

The description of the security profile.

Required: No

Type: String

Minimum: 0

Maximum: 250

Update requires: No interruption

HierarchyRestrictedResources

The list of resources that a security profile applies hierarchy restrictions to in Amazon Connect. Following are acceptable ResourceNames: User.

Required: No

Type: Array of String

Maximum: 10

Update requires: No interruption

InstanceArn

The identifier of the Amazon Connect instance.

Required: Yes

Type: String

Pattern: ^arn:aws[-a-z0-9]*:connect:[-a-z0-9]*:[0-9]{12}:instance/[-a-zA-Z0-9]*$

Update requires: Replacement

Permissions

Permissions assigned to the security profile. For a list of valid permissions, see List of security profile permissions.

Required: No

Type: Array of String

Maximum: 500

Update requires: No interruption

SecurityProfileName

The name for the security profile.

Required: Yes

Type: String

Pattern: ^[ a-zA-Z0-9_@-]+$

Minimum: 1

Maximum: 127

Update requires: Replacement

TagRestrictedResources

The list of resources that a security profile applies tag restrictions to in Amazon Connect.

Required: No

Type: Array of String

Maximum: 10

Update requires: No interruption

Tags

The tags used to organize, track, or control access for this resource. For example, { "Tags": {"key1":"value1", "key2":"value2"} }.

Required: No

Type: Array of Tag

Maximum: 50

Update requires: No interruption

Return values

Ref

When you pass the logical ID of this resource to the intrinsic Ref function, Ref returns the name of the security profile. For example:

{ "Ref": "mySecurityProfileName" }

For more information about using the Ref function, see Ref.

Fn::GetAtt

The Fn::GetAtt intrinsic function returns a value for a specified attribute of this type. The following are the available attributes and sample return values.

For more information about using the Fn::GetAtt intrinsic function, see Fn::GetAtt.

LastModifiedRegion: The Amazon Region where this resource was last modified.
LastModifiedTime: The timestamp when this resource was last modified.
SecurityProfileArn: The Amazon Resource Name (ARN) of the security profile.

Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

AWS::Connect::SecurityKey

Application