AccessDetail

The name of the service in which access was attempted.

Type: String

Required: Yes

The namespace of the service in which access was attempted.

To learn the service namespace of a service, see Actions, resources, and condition keys for Amazon services in the Service Authorization Reference. Choose the name of the service to view details for that service. In the first paragraph, find the service prefix. For example, (service prefix: a4b). For more information about service namespaces, see Amazon service namespaces in the  Amazon General Reference.

Type: String

Length Constraints: Minimum length of 1. Maximum length of 64.

Pattern: [\w-]*

Required: Yes

The path of the Organizations entity (root, organizational unit, or account) from which an authenticated principal last attempted to access the service. Amazon does not report unauthenticated requests.

This field is null if no principals (IAM users, IAM roles, or root user) in the reported Organizations entity attempted to access the service within the tracking period.

Type: String

Length Constraints: Minimum length of 19. Maximum length of 427.

Pattern: ^o-[0-9a-z]{10,32}\/r-[0-9a-z]{4,32}[0-9a-z-\/]*

Required: No

The date and time, in ISO 8601 date-time format, when an authenticated principal most recently attempted to access the service. Amazon does not report unauthenticated requests.

This field is null if no principals in the reported Organizations entity attempted to access the service within the tracking period.

Type: Timestamp

Required: No

The Region where the last service access attempt occurred.

This field is null if no principals in the reported Organizations entity attempted to access the service within the tracking period.

Type: String

Required: No

The number of accounts with authenticated principals (root user, IAM users, and IAM roles) that attempted to access the service in the tracking period.

Type: Integer

Required: No