Viewing automation rules

Using the credentials of the Security Hub CSPM administrator, open the Amazon Security Hub CSPM console at https://console.amazonaws.cn/securityhub/.

In the navigation pane, choose Automations.

Choose a rule name. Alternatively, select a rule.

Choose Actions and View.

To view the automation rules for your account, run ListAutomationRules from the Security Hub CSPM administrator account. This API returns the rule ARNs and other metadata for your rules. No input parameters are required for this API, but you can optionally provide MaxResults to limit the number of results and NextToken as a pagination parameter. The initial value of NextToken should be NULL.

For additional rule details, including the criteria and actions for a rule, run BatchGetAutomationRules from the Security Hub CSPM administrator account. Provide the ARNs of the automation rules that you want details for.

The following example retrieves details for the specified automation rules. This example is formatted for Linux, macOS, or Unix, and it uses the backslash (\) line-continuation character to improve readability.

$ aws securityhub batch-get-automation-rules \
--automation-rules-arns '["arn:aws-cn:securityhub:us-east-1:123456789012:automation-rule/a1b2c3d4-5678-90ab-cdef-EXAMPLE11111", "arn:aws-cn:securityhub:us-east-1:123456789012:automation-rule/a1b2c3d4-5678-90ab-cdef-EXAMPLE22222"]' \
--region us-east-1