AWS::AccessAnalyzer::Analyzer UnusedAccessConfiguration - Amazon CloudFormation
SyntaxProperties
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

This is the new Amazon CloudFormation Template Reference Guide. Please update your bookmarks and links. For help getting started with CloudFormation, see the Amazon CloudFormation User Guide.

AWS::AccessAnalyzer::Analyzer UnusedAccessConfiguration

Contains information about an unused access analyzer.

Syntax

To declare this entity in your Amazon CloudFormation template, use the following syntax:

JSON

{
  "AnalysisRule" : AnalysisRule,
  "UnusedAccessAge" : Integer
}

Properties

AnalysisRule

Contains information about analysis rules for the analyzer. Analysis rules determine which entities will generate findings based on the criteria you define when you create the rule.

Required: No

Type: AnalysisRule

Update requires: Some interruptions

UnusedAccessAge

The specified access age in days for which to generate findings for unused access. For example, if you specify 90 days, the analyzer will generate findings for IAM entities within the accounts of the selected organization for any access that hasn't been used in 90 or more days since the analyzer's last scan. You can choose a value between 1 and 365 days.

Required: No

Type: Integer

Minimum: 1

Maximum: 365

Update requires: Some interruptions