AWS::AuditManager::Assessment Delegation - Amazon CloudFormation
SyntaxPropertiesSee also
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

AWS::AuditManager::Assessment Delegation

The Delegation property type specifies the assignment of a control set to a delegate for review.

Syntax

To declare this entity in your Amazon CloudFormation template, use the following syntax:

JSON

{
  "AssessmentId" : String,
  "AssessmentName" : String,
  "Comment" : String,
  "ControlSetId" : String,
  "CreatedBy" : String,
  "CreationTime" : Number,
  "Id" : String,
  "LastUpdated" : Number,
  "RoleArn" : String,
  "RoleType" : String,
  "Status" : String
}

YAML

  AssessmentId: String
  AssessmentName: String
  Comment: String
  ControlSetId: String
  CreatedBy: String
  CreationTime: Number
  Id: String
  LastUpdated: Number
  RoleArn: String
  RoleType: String
  Status: String

Properties

AssessmentId

The identifier for the assessment that's associated with the delegation.

Required: No

Type: String

Pattern: ^[a-f0-9]{8}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{12}$

Minimum: 36

Maximum: 36

Update requires: No interruption

AssessmentName

The name of the assessment that's associated with the delegation.

Required: No

Type: String

Pattern: ^[a-zA-Z0-9-_\.]+$

Minimum: 1

Maximum: 127

Update requires: No interruption

Comment

The comment that's related to the delegation.

Required: No

Type: String

Pattern: ^[\w\W\s\S]*$

Maximum: 350

Update requires: No interruption

ControlSetId

The identifier for the control set that's associated with the delegation.

Required: No

Type: String

Pattern: ^[\w\W\s\S]*$

Minimum: 1

Maximum: 300

Update requires: No interruption

CreatedBy

The user or role that created the delegation.

Minimum: 1

Maximum: 100

Pattern: ^[a-zA-Z0-9-_()\\[\\]\\s]+$

Required: No

Type: String

Pattern: ^arn:.*:*:.*

Minimum: 20

Maximum: 2048

Update requires: No interruption

CreationTime

Specifies when the delegation was created.

Required: No

Type: Number

Update requires: No interruption

Id

The unique identifier for the delegation.

Required: No

Type: String

Pattern: ^[a-f0-9]{8}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{12}$

Minimum: 36

Maximum: 36

Update requires: No interruption

LastUpdated

Specifies when the delegation was last updated.

Required: No

Type: Number

Update requires: No interruption

RoleArn

The Amazon Resource Name (ARN) of the IAM role.

Required: No

Type: String

Pattern: ^arn:.*:iam:.*

Minimum: 20

Maximum: 2048

Update requires: No interruption

RoleType

The type of customer persona.

Note

In CreateAssessment, roleType can only be PROCESS_OWNER.

In UpdateSettings, roleType can only be PROCESS_OWNER.

In BatchCreateDelegationByAssessment, roleType can only be RESOURCE_OWNER.

Required: No

Type: String

Allowed values: PROCESS_OWNER | RESOURCE_OWNER

Update requires: No interruption

Status

The status of the delegation.

Required: No

Type: String

Allowed values: IN_PROGRESS | UNDER_REVIEW | COMPLETE

Update requires: No interruption

See also

  • Delegation in the Amazon Audit Manager API Reference.