Interface DataLakeSource.Builder
- All Superinterfaces:
Buildable
,CopyableBuilder<DataLakeSource.Builder,
,DataLakeSource> SdkBuilder<DataLakeSource.Builder,
,DataLakeSource> SdkPojo
- Enclosing class:
DataLakeSource
-
Method Summary
Modifier and TypeMethodDescriptionThe ID of the Security Lake account for which logs are collected.eventClasses
(String... eventClasses) The Open Cybersecurity Schema Framework (OCSF) event classes which describes the type of data that the custom source will send to Security Lake.eventClasses
(Collection<String> eventClasses) The Open Cybersecurity Schema Framework (OCSF) event classes which describes the type of data that the custom source will send to Security Lake.sourceName
(String sourceName) The supported Amazon Web Services from which logs and events are collected.sourceStatuses
(Collection<DataLakeSourceStatus> sourceStatuses) The log status for the Security Lake account.sourceStatuses
(Consumer<DataLakeSourceStatus.Builder>... sourceStatuses) The log status for the Security Lake account.sourceStatuses
(DataLakeSourceStatus... sourceStatuses) The log status for the Security Lake account.Methods inherited from interface software.amazon.awssdk.utils.builder.CopyableBuilder
copy
Methods inherited from interface software.amazon.awssdk.utils.builder.SdkBuilder
applyMutation, build
Methods inherited from interface software.amazon.awssdk.core.SdkPojo
equalsBySdkFields, sdkFields
-
Method Details
-
account
The ID of the Security Lake account for which logs are collected.
- Parameters:
account
- The ID of the Security Lake account for which logs are collected.- Returns:
- Returns a reference to this object so that method calls can be chained together.
-
eventClasses
The Open Cybersecurity Schema Framework (OCSF) event classes which describes the type of data that the custom source will send to Security Lake. The supported event classes are:
-
ACCESS_ACTIVITY
-
FILE_ACTIVITY
-
KERNEL_ACTIVITY
-
KERNEL_EXTENSION
-
MEMORY_ACTIVITY
-
MODULE_ACTIVITY
-
PROCESS_ACTIVITY
-
REGISTRY_KEY_ACTIVITY
-
REGISTRY_VALUE_ACTIVITY
-
RESOURCE_ACTIVITY
-
SCHEDULED_JOB_ACTIVITY
-
SECURITY_FINDING
-
ACCOUNT_CHANGE
-
AUTHENTICATION
-
AUTHORIZATION
-
ENTITY_MANAGEMENT_AUDIT
-
DHCP_ACTIVITY
-
NETWORK_ACTIVITY
-
DNS_ACTIVITY
-
FTP_ACTIVITY
-
HTTP_ACTIVITY
-
RDP_ACTIVITY
-
SMB_ACTIVITY
-
SSH_ACTIVITY
-
CONFIG_STATE
-
INVENTORY_INFO
-
EMAIL_ACTIVITY
-
API_ACTIVITY
-
CLOUD_API
- Parameters:
eventClasses
- The Open Cybersecurity Schema Framework (OCSF) event classes which describes the type of data that the custom source will send to Security Lake. The supported event classes are:-
ACCESS_ACTIVITY
-
FILE_ACTIVITY
-
KERNEL_ACTIVITY
-
KERNEL_EXTENSION
-
MEMORY_ACTIVITY
-
MODULE_ACTIVITY
-
PROCESS_ACTIVITY
-
REGISTRY_KEY_ACTIVITY
-
REGISTRY_VALUE_ACTIVITY
-
RESOURCE_ACTIVITY
-
SCHEDULED_JOB_ACTIVITY
-
SECURITY_FINDING
-
ACCOUNT_CHANGE
-
AUTHENTICATION
-
AUTHORIZATION
-
ENTITY_MANAGEMENT_AUDIT
-
DHCP_ACTIVITY
-
NETWORK_ACTIVITY
-
DNS_ACTIVITY
-
FTP_ACTIVITY
-
HTTP_ACTIVITY
-
RDP_ACTIVITY
-
SMB_ACTIVITY
-
SSH_ACTIVITY
-
CONFIG_STATE
-
INVENTORY_INFO
-
EMAIL_ACTIVITY
-
API_ACTIVITY
-
CLOUD_API
-
- Returns:
- Returns a reference to this object so that method calls can be chained together.
-
-
eventClasses
The Open Cybersecurity Schema Framework (OCSF) event classes which describes the type of data that the custom source will send to Security Lake. The supported event classes are:
-
ACCESS_ACTIVITY
-
FILE_ACTIVITY
-
KERNEL_ACTIVITY
-
KERNEL_EXTENSION
-
MEMORY_ACTIVITY
-
MODULE_ACTIVITY
-
PROCESS_ACTIVITY
-
REGISTRY_KEY_ACTIVITY
-
REGISTRY_VALUE_ACTIVITY
-
RESOURCE_ACTIVITY
-
SCHEDULED_JOB_ACTIVITY
-
SECURITY_FINDING
-
ACCOUNT_CHANGE
-
AUTHENTICATION
-
AUTHORIZATION
-
ENTITY_MANAGEMENT_AUDIT
-
DHCP_ACTIVITY
-
NETWORK_ACTIVITY
-
DNS_ACTIVITY
-
FTP_ACTIVITY
-
HTTP_ACTIVITY
-
RDP_ACTIVITY
-
SMB_ACTIVITY
-
SSH_ACTIVITY
-
CONFIG_STATE
-
INVENTORY_INFO
-
EMAIL_ACTIVITY
-
API_ACTIVITY
-
CLOUD_API
- Parameters:
eventClasses
- The Open Cybersecurity Schema Framework (OCSF) event classes which describes the type of data that the custom source will send to Security Lake. The supported event classes are:-
ACCESS_ACTIVITY
-
FILE_ACTIVITY
-
KERNEL_ACTIVITY
-
KERNEL_EXTENSION
-
MEMORY_ACTIVITY
-
MODULE_ACTIVITY
-
PROCESS_ACTIVITY
-
REGISTRY_KEY_ACTIVITY
-
REGISTRY_VALUE_ACTIVITY
-
RESOURCE_ACTIVITY
-
SCHEDULED_JOB_ACTIVITY
-
SECURITY_FINDING
-
ACCOUNT_CHANGE
-
AUTHENTICATION
-
AUTHORIZATION
-
ENTITY_MANAGEMENT_AUDIT
-
DHCP_ACTIVITY
-
NETWORK_ACTIVITY
-
DNS_ACTIVITY
-
FTP_ACTIVITY
-
HTTP_ACTIVITY
-
RDP_ACTIVITY
-
SMB_ACTIVITY
-
SSH_ACTIVITY
-
CONFIG_STATE
-
INVENTORY_INFO
-
EMAIL_ACTIVITY
-
API_ACTIVITY
-
CLOUD_API
-
- Returns:
- Returns a reference to this object so that method calls can be chained together.
-
-
sourceName
The supported Amazon Web Services from which logs and events are collected. Amazon Security Lake supports log and event collection for natively supported Amazon Web Services.
- Parameters:
sourceName
- The supported Amazon Web Services from which logs and events are collected. Amazon Security Lake supports log and event collection for natively supported Amazon Web Services.- Returns:
- Returns a reference to this object so that method calls can be chained together.
-
sourceStatuses
The log status for the Security Lake account.
- Parameters:
sourceStatuses
- The log status for the Security Lake account.- Returns:
- Returns a reference to this object so that method calls can be chained together.
-
sourceStatuses
The log status for the Security Lake account.
- Parameters:
sourceStatuses
- The log status for the Security Lake account.- Returns:
- Returns a reference to this object so that method calls can be chained together.
-
sourceStatuses
The log status for the Security Lake account.
This is a convenience method that creates an instance of theDataLakeSourceStatus.Builder
avoiding the need to create one manually viaDataLakeSourceStatus.builder()
.When the
Consumer
completes,SdkBuilder.build()
is called immediately and its result is passed tosourceStatuses(List<DataLakeSourceStatus>)
.- Parameters:
sourceStatuses
- a consumer that will call methods onDataLakeSourceStatus.Builder
- Returns:
- Returns a reference to this object so that method calls can be chained together.
- See Also:
-