PolicyComplianceDetail
Describes
the noncompliant resources in a member account for a specific Amazon Firewall Manager policy. A maximum of 100 entries are displayed. If more than 100 resources are
noncompliant, EvaluationLimitExceeded
is set to True
.
Contents
- EvaluationLimitExceeded
-
Indicates if over 100 resources are noncompliant with the Amazon Firewall Manager policy.
Type: Boolean
Required: No
- ExpiredAt
-
A timestamp that indicates when the returned information should be considered out of date.
Type: Timestamp
Required: No
- IssueInfoMap
-
Details about problems with dependent services, such as Amazon WAF or Amazon Config, and the error message received that indicates the problem with the service.
Type: String to string map
Valid Keys:
AWSCONFIG | AWSWAF | AWSSHIELD_ADVANCED | AWSVPC
Value Length Constraints: Minimum length of 1. Maximum length of 4096.
Value Pattern:
^([\p{L}\p{Z}\p{N}_.:/=,+\-@]*)$
Required: No
- MemberAccount
-
The Amazon account ID.
Type: String
Length Constraints: Minimum length of 1. Maximum length of 1024.
Pattern:
^[0-9]+$
Required: No
- PolicyId
-
The ID of the Amazon Firewall Manager policy.
Type: String
Length Constraints: Fixed length of 36.
Pattern:
^[a-z0-9A-Z-]{36}$
Required: No
- PolicyOwner
-
The Amazon account that created the Amazon Firewall Manager policy.
Type: String
Length Constraints: Minimum length of 1. Maximum length of 1024.
Pattern:
^[0-9]+$
Required: No
- Violators
-
An array of resources that aren't protected by the Amazon WAF or Shield Advanced policy or that aren't in compliance with the security group policy.
Type: Array of ComplianceViolator objects
Required: No
See Also
For more information about using this API in one of the language-specific Amazon SDKs, see the following: