AWS Native v0.126.0, Sep 30 24

We recommend new projects start with resources from the AWS provider.

AWS Native v0.126.0 published on Monday, Sep 30, 2024 by Pulumi

pulumi/pulumi-aws-native

aws-native.auditmanager.Assessment

Explore with Pulumi AI

We recommend new projects start with resources from the AWS provider.

AWS Native v0.126.0 published on Monday, Sep 30, 2024 by Pulumi

pulumi/pulumi-aws-native

Create Assessment Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new Assessment(name: string, args?: AssessmentArgs, opts?: CustomResourceOptions);

@overload
def Assessment(resource_name: str,
               args: Optional[AssessmentArgs] = None,
               opts: Optional[ResourceOptions] = None)

@overload
def Assessment(resource_name: str,
               opts: Optional[ResourceOptions] = None,
               assessment_reports_destination: Optional[AssessmentReportsDestinationArgs] = None,
               aws_account: Optional[AssessmentAwsAccountArgs] = None,
               delegations: Optional[Sequence[AssessmentDelegationArgs]] = None,
               description: Optional[str] = None,
               framework_id: Optional[str] = None,
               name: Optional[str] = None,
               roles: Optional[Sequence[AssessmentRoleArgs]] = None,
               scope: Optional[AssessmentScopeArgs] = None,
               status: Optional[AssessmentStatus] = None,
               tags: Optional[Sequence[_root_inputs.TagArgs]] = None)

func NewAssessment(ctx *Context, name string, args *AssessmentArgs, opts ...ResourceOption) (*Assessment, error)

public Assessment(string name, AssessmentArgs? args = null, CustomResourceOptions? opts = null)

public Assessment(String name, AssessmentArgs args)
public Assessment(String name, AssessmentArgs args, CustomResourceOptions options)

type: aws-native:auditmanager:Assessment
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name string: The unique name of the resource.
args AssessmentArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args AssessmentArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args AssessmentArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args AssessmentArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args AssessmentArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

Assessment Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

The Assessment resource accepts the following input properties:

AssessmentReportsDestination Pulumi.AwsNative.AuditManager.Inputs.AssessmentReportsDestination

The destination that evidence reports are stored in for the assessment.

AwsAccount Pulumi.AwsNative.AuditManager.Inputs.AssessmentAwsAccount

The AWS account that's associated with the assessment.

Delegations List<Pulumi.AwsNative.AuditManager.Inputs.AssessmentDelegation>

The list of delegations.

Description string

The description of the assessment.

FrameworkId string

The unique identifier for the framework.

Name string

The name of the assessment.

Roles List<Pulumi.AwsNative.AuditManager.Inputs.AssessmentRole>

The list of roles for the specified assessment.

Scope Pulumi.AwsNative.AuditManager.Inputs.AssessmentScope

The wrapper of AWS accounts and services that are in scope for the assessment.

Status Pulumi.AwsNative.AuditManager.AssessmentStatus

The overall status of the assessment.

When you create a new assessment, the initial Status value is always ACTIVE . When you create an assessment, even if you specify the value as INACTIVE , the value overrides to ACTIVE .

After you create an assessment, you can change the value of the Status property at any time. For example, when you want to stop collecting evidence for your assessment, you can change the assessment status to INACTIVE .

Tags List<Pulumi.AwsNative.Inputs.Tag>

The tags associated with the assessment.

AssessmentReportsDestination AssessmentReportsDestinationArgs

The destination that evidence reports are stored in for the assessment.

AwsAccount AssessmentAwsAccountArgs

The AWS account that's associated with the assessment.

Delegations []AssessmentDelegationArgs

The list of delegations.

Description string

The description of the assessment.

FrameworkId string

The unique identifier for the framework.

Name string

The name of the assessment.

Roles []AssessmentRoleArgs

The list of roles for the specified assessment.

Scope AssessmentScopeArgs

The wrapper of AWS accounts and services that are in scope for the assessment.

Status AssessmentStatus

The overall status of the assessment.

When you create a new assessment, the initial Status value is always ACTIVE . When you create an assessment, even if you specify the value as INACTIVE , the value overrides to ACTIVE .

Tags TagArgs

The tags associated with the assessment.

assessmentReportsDestination AssessmentReportsDestination

The destination that evidence reports are stored in for the assessment.

awsAccount AssessmentAwsAccount

The AWS account that's associated with the assessment.

delegations List<AssessmentDelegation>

The list of delegations.

description String

The description of the assessment.

frameworkId String

The unique identifier for the framework.

name String

The name of the assessment.

roles List<AssessmentRole>

The list of roles for the specified assessment.

scope AssessmentScope

The wrapper of AWS accounts and services that are in scope for the assessment.

status AssessmentStatus

The overall status of the assessment.

When you create a new assessment, the initial Status value is always ACTIVE . When you create an assessment, even if you specify the value as INACTIVE , the value overrides to ACTIVE .

tags List<Tag>

The tags associated with the assessment.

assessmentReportsDestination AssessmentReportsDestination

The destination that evidence reports are stored in for the assessment.

awsAccount AssessmentAwsAccount

The AWS account that's associated with the assessment.

delegations AssessmentDelegation[]

The list of delegations.

description string

The description of the assessment.

frameworkId string

The unique identifier for the framework.

name string

The name of the assessment.

roles AssessmentRole[]

The list of roles for the specified assessment.

scope AssessmentScope

The wrapper of AWS accounts and services that are in scope for the assessment.

status AssessmentStatus

The overall status of the assessment.

When you create a new assessment, the initial Status value is always ACTIVE . When you create an assessment, even if you specify the value as INACTIVE , the value overrides to ACTIVE .

tags Tag[]

The tags associated with the assessment.

assessment_reports_destination AssessmentReportsDestinationArgs

The destination that evidence reports are stored in for the assessment.

aws_account AssessmentAwsAccountArgs

The AWS account that's associated with the assessment.

delegations Sequence[AssessmentDelegationArgs]

The list of delegations.

description str

The description of the assessment.

framework_id str

The unique identifier for the framework.

name str

The name of the assessment.

roles Sequence[AssessmentRoleArgs]

The list of roles for the specified assessment.

scope AssessmentScopeArgs

The wrapper of AWS accounts and services that are in scope for the assessment.

status AssessmentStatus

The overall status of the assessment.

When you create a new assessment, the initial Status value is always ACTIVE . When you create an assessment, even if you specify the value as INACTIVE , the value overrides to ACTIVE .

tags Sequence[TagArgs]

The tags associated with the assessment.

assessmentReportsDestination Property Map

The destination that evidence reports are stored in for the assessment.

awsAccount Property Map

The AWS account that's associated with the assessment.

delegations List<Property Map>

The list of delegations.

description String

The description of the assessment.

frameworkId String

The unique identifier for the framework.

name String

The name of the assessment.

roles List<Property Map>

The list of roles for the specified assessment.

scope Property Map

The wrapper of AWS accounts and services that are in scope for the assessment.

status "ACTIVE" | "INACTIVE"

The overall status of the assessment.

When you create a new assessment, the initial Status value is always ACTIVE . When you create an assessment, even if you specify the value as INACTIVE , the value overrides to ACTIVE .

tags List<Property Map>

The tags associated with the assessment.

Outputs

All input properties are implicitly available as output properties. Additionally, the Assessment resource produces the following output properties:

Arn string: The Amazon Resource Name (ARN) of the assessment.
AssessmentId string: The unique identifier for the assessment.
CreationTime double: Specifies when the assessment was created.
Id string: The provider-assigned unique ID for this managed resource.

Arn string: The Amazon Resource Name (ARN) of the assessment.
AssessmentId string: The unique identifier for the assessment.
CreationTime float64: Specifies when the assessment was created.
Id string: The provider-assigned unique ID for this managed resource.

arn String: The Amazon Resource Name (ARN) of the assessment.
assessmentId String: The unique identifier for the assessment.
creationTime Double: Specifies when the assessment was created.
id String: The provider-assigned unique ID for this managed resource.

arn string: The Amazon Resource Name (ARN) of the assessment.
assessmentId string: The unique identifier for the assessment.
creationTime number: Specifies when the assessment was created.
id string: The provider-assigned unique ID for this managed resource.

arn str: The Amazon Resource Name (ARN) of the assessment.
assessment_id str: The unique identifier for the assessment.
creation_time float: Specifies when the assessment was created.
id str: The provider-assigned unique ID for this managed resource.

arn String: The Amazon Resource Name (ARN) of the assessment.
assessmentId String: The unique identifier for the assessment.
creationTime Number: Specifies when the assessment was created.
id String: The provider-assigned unique ID for this managed resource.

Supporting Types

AssessmentAwsAccount, AssessmentAwsAccountArgs

EmailAddress string: The email address that's associated with the AWS account .
Id string: The identifier for the AWS account .
Name string: The name of the AWS account .

EmailAddress string: The email address that's associated with the AWS account .
Id string: The identifier for the AWS account .
Name string: The name of the AWS account .

emailAddress String: The email address that's associated with the AWS account .
id String: The identifier for the AWS account .
name String: The name of the AWS account .

emailAddress string: The email address that's associated with the AWS account .
id string: The identifier for the AWS account .
name string: The name of the AWS account .

email_address str: The email address that's associated with the AWS account .
id str: The identifier for the AWS account .
name str: The name of the AWS account .

emailAddress String: The email address that's associated with the AWS account .
id String: The identifier for the AWS account .
name String: The name of the AWS account .

AssessmentAwsService, AssessmentAwsServiceArgs

ServiceName string: The name of the AWS service .

ServiceName string: The name of the AWS service .

serviceName String: The name of the AWS service .

serviceName string: The name of the AWS service .

service_name str: The name of the AWS service .

serviceName String: The name of the AWS service .

AssessmentDelegation, AssessmentDelegationArgs

AssessmentId string

The identifier for the assessment that's associated with the delegation.

AssessmentName string

The name of the assessment that's associated with the delegation.

Comment string

The comment that's related to the delegation.

ControlSetId string

The identifier for the control set that's associated with the delegation.

CreatedBy string

The user or role that created the delegation.

Minimum : 1

Maximum : 100

Pattern : ^[a-zA-Z0-9-_()\\[\\]\\s]+$

CreationTime double

Specifies when the delegation was created.

Id string

The unique identifier for the delegation.

LastUpdated double

Specifies when the delegation was last updated.

RoleArn string

The Amazon Resource Name (ARN) of the IAM role.

RoleType Pulumi.AwsNative.AuditManager.AssessmentRoleType

The type of customer persona.

In CreateAssessment , roleType can only be PROCESS_OWNER .
In UpdateSettings , roleType can only be PROCESS_OWNER .
In BatchCreateDelegationByAssessment , roleType can only be RESOURCE_OWNER .

Status Pulumi.AwsNative.AuditManager.AssessmentDelegationStatus

The status of the delegation.

AssessmentId string

The identifier for the assessment that's associated with the delegation.

AssessmentName string

The name of the assessment that's associated with the delegation.

Comment string

The comment that's related to the delegation.

ControlSetId string

The identifier for the control set that's associated with the delegation.

CreatedBy string

The user or role that created the delegation.

Minimum : 1

Maximum : 100

Pattern : ^[a-zA-Z0-9-_()\\[\\]\\s]+$

CreationTime float64

Specifies when the delegation was created.

Id string

The unique identifier for the delegation.

LastUpdated float64

Specifies when the delegation was last updated.

RoleArn string

The Amazon Resource Name (ARN) of the IAM role.

RoleType AssessmentRoleType

The type of customer persona.

In CreateAssessment , roleType can only be PROCESS_OWNER .
In UpdateSettings , roleType can only be PROCESS_OWNER .
In BatchCreateDelegationByAssessment , roleType can only be RESOURCE_OWNER .

Status AssessmentDelegationStatus

The status of the delegation.

assessmentId String

The identifier for the assessment that's associated with the delegation.

assessmentName String

The name of the assessment that's associated with the delegation.

comment String

The comment that's related to the delegation.

controlSetId String

The identifier for the control set that's associated with the delegation.

createdBy String

The user or role that created the delegation.

Minimum : 1

Maximum : 100

Pattern : ^[a-zA-Z0-9-_()\\[\\]\\s]+$

creationTime Double

Specifies when the delegation was created.

id String

The unique identifier for the delegation.

lastUpdated Double

Specifies when the delegation was last updated.

roleArn String

The Amazon Resource Name (ARN) of the IAM role.

roleType AssessmentRoleType

The type of customer persona.

In CreateAssessment , roleType can only be PROCESS_OWNER .
In UpdateSettings , roleType can only be PROCESS_OWNER .
In BatchCreateDelegationByAssessment , roleType can only be RESOURCE_OWNER .

status AssessmentDelegationStatus

The status of the delegation.

assessmentId string

The identifier for the assessment that's associated with the delegation.

assessmentName string

The name of the assessment that's associated with the delegation.

comment string

The comment that's related to the delegation.

controlSetId string

The identifier for the control set that's associated with the delegation.

createdBy string

The user or role that created the delegation.

Minimum : 1

Maximum : 100

Pattern : ^[a-zA-Z0-9-_()\\[\\]\\s]+$

creationTime number

Specifies when the delegation was created.

id string

The unique identifier for the delegation.

lastUpdated number

Specifies when the delegation was last updated.

roleArn string

The Amazon Resource Name (ARN) of the IAM role.

roleType AssessmentRoleType

The type of customer persona.

In CreateAssessment , roleType can only be PROCESS_OWNER .
In UpdateSettings , roleType can only be PROCESS_OWNER .
In BatchCreateDelegationByAssessment , roleType can only be RESOURCE_OWNER .

status AssessmentDelegationStatus

The status of the delegation.

assessment_id str

The identifier for the assessment that's associated with the delegation.

assessment_name str

The name of the assessment that's associated with the delegation.

comment str

The comment that's related to the delegation.

control_set_id str

The identifier for the control set that's associated with the delegation.

created_by str

The user or role that created the delegation.

Minimum : 1

Maximum : 100

Pattern : ^[a-zA-Z0-9-_()\\[\\]\\s]+$

creation_time float

Specifies when the delegation was created.

id str

The unique identifier for the delegation.

last_updated float

Specifies when the delegation was last updated.

role_arn str

The Amazon Resource Name (ARN) of the IAM role.

role_type AssessmentRoleType

The type of customer persona.

In CreateAssessment , roleType can only be PROCESS_OWNER .
In UpdateSettings , roleType can only be PROCESS_OWNER .
In BatchCreateDelegationByAssessment , roleType can only be RESOURCE_OWNER .

status AssessmentDelegationStatus

The status of the delegation.

assessmentId String

The identifier for the assessment that's associated with the delegation.

assessmentName String

The name of the assessment that's associated with the delegation.

comment String

The comment that's related to the delegation.

controlSetId String

The identifier for the control set that's associated with the delegation.

createdBy String

The user or role that created the delegation.

Minimum : 1

Maximum : 100

Pattern : ^[a-zA-Z0-9-_()\\[\\]\\s]+$

creationTime Number

Specifies when the delegation was created.

id String

The unique identifier for the delegation.

lastUpdated Number

Specifies when the delegation was last updated.

roleArn String

The Amazon Resource Name (ARN) of the IAM role.

roleType "PROCESS_OWNER" | "RESOURCE_OWNER"

The type of customer persona.

In CreateAssessment , roleType can only be PROCESS_OWNER .
In UpdateSettings , roleType can only be PROCESS_OWNER .
In BatchCreateDelegationByAssessment , roleType can only be RESOURCE_OWNER .

status "IN_PROGRESS" | "UNDER_REVIEW" | "COMPLETE"

The status of the delegation.

AssessmentDelegationStatus, AssessmentDelegationStatusArgs

InProgress: IN_PROGRESS
UnderReview: UNDER_REVIEW
Complete: COMPLETE

AssessmentDelegationStatusInProgress: IN_PROGRESS
AssessmentDelegationStatusUnderReview: UNDER_REVIEW
AssessmentDelegationStatusComplete: COMPLETE

InProgress: IN_PROGRESS
UnderReview: UNDER_REVIEW
Complete: COMPLETE

InProgress: IN_PROGRESS
UnderReview: UNDER_REVIEW
Complete: COMPLETE

IN_PROGRESS: IN_PROGRESS
UNDER_REVIEW: UNDER_REVIEW
COMPLETE: COMPLETE

"IN_PROGRESS": IN_PROGRESS
"UNDER_REVIEW": UNDER_REVIEW
"COMPLETE": COMPLETE

AssessmentReportDestinationType, AssessmentReportDestinationTypeArgs

S3: S3

AssessmentReportDestinationTypeS3: S3

S3: S3

S3: S3

S3: S3

"S3": S3

AssessmentReportsDestination, AssessmentReportsDestinationArgs

Destination string: The destination bucket where Audit Manager stores assessment reports.
DestinationType Pulumi.AwsNative.AuditManager.AssessmentReportDestinationType: The destination type, such as Amazon S3.

Destination string: The destination bucket where Audit Manager stores assessment reports.
DestinationType AssessmentReportDestinationType: The destination type, such as Amazon S3.

destination String: The destination bucket where Audit Manager stores assessment reports.
destinationType AssessmentReportDestinationType: The destination type, such as Amazon S3.

destination string: The destination bucket where Audit Manager stores assessment reports.
destinationType AssessmentReportDestinationType: The destination type, such as Amazon S3.

destination str: The destination bucket where Audit Manager stores assessment reports.
destination_type AssessmentReportDestinationType: The destination type, such as Amazon S3.

destination String: The destination bucket where Audit Manager stores assessment reports.
destinationType "S3": The destination type, such as Amazon S3.

AssessmentRole, AssessmentRoleArgs

RoleArn string: The Amazon Resource Name (ARN) of the IAM role.
RoleType Pulumi.AwsNative.AuditManager.AssessmentRoleType: The type of customer persona.
In CreateAssessment , roleType can only be PROCESS_OWNER .
In UpdateSettings , roleType can only be PROCESS_OWNER .
In BatchCreateDelegationByAssessment , roleType can only be RESOURCE_OWNER .

RoleArn string: The Amazon Resource Name (ARN) of the IAM role.
RoleType AssessmentRoleType: The type of customer persona.
In CreateAssessment , roleType can only be PROCESS_OWNER .
In UpdateSettings , roleType can only be PROCESS_OWNER .
In BatchCreateDelegationByAssessment , roleType can only be RESOURCE_OWNER .

roleArn String: The Amazon Resource Name (ARN) of the IAM role.
roleType AssessmentRoleType: The type of customer persona.
In CreateAssessment , roleType can only be PROCESS_OWNER .
In UpdateSettings , roleType can only be PROCESS_OWNER .
In BatchCreateDelegationByAssessment , roleType can only be RESOURCE_OWNER .

roleArn string: The Amazon Resource Name (ARN) of the IAM role.
roleType AssessmentRoleType: The type of customer persona.
In CreateAssessment , roleType can only be PROCESS_OWNER .
In UpdateSettings , roleType can only be PROCESS_OWNER .
In BatchCreateDelegationByAssessment , roleType can only be RESOURCE_OWNER .

role_arn str: The Amazon Resource Name (ARN) of the IAM role.
role_type AssessmentRoleType: The type of customer persona.
In CreateAssessment , roleType can only be PROCESS_OWNER .
In UpdateSettings , roleType can only be PROCESS_OWNER .
In BatchCreateDelegationByAssessment , roleType can only be RESOURCE_OWNER .

roleArn String: The Amazon Resource Name (ARN) of the IAM role.
roleType "PROCESS_OWNER" | "RESOURCE_OWNER": The type of customer persona.
In CreateAssessment , roleType can only be PROCESS_OWNER .
In UpdateSettings , roleType can only be PROCESS_OWNER .
In BatchCreateDelegationByAssessment , roleType can only be RESOURCE_OWNER .

AssessmentRoleType, AssessmentRoleTypeArgs

ProcessOwner: PROCESS_OWNER
ResourceOwner: RESOURCE_OWNER

AssessmentRoleTypeProcessOwner: PROCESS_OWNER
AssessmentRoleTypeResourceOwner: RESOURCE_OWNER

ProcessOwner: PROCESS_OWNER
ResourceOwner: RESOURCE_OWNER

ProcessOwner: PROCESS_OWNER
ResourceOwner: RESOURCE_OWNER

PROCESS_OWNER: PROCESS_OWNER
RESOURCE_OWNER: RESOURCE_OWNER

"PROCESS_OWNER": PROCESS_OWNER
"RESOURCE_OWNER": RESOURCE_OWNER

AssessmentScope, AssessmentScopeArgs

AwsAccounts List<Pulumi.AwsNative.AuditManager.Inputs.AssessmentAwsAccount>: The AWS accounts included in scope.
AwsServices List<Pulumi.AwsNative.AuditManager.Inputs.AssessmentAwsService>: The AWS services included in scope.

AwsAccounts []AssessmentAwsAccount: The AWS accounts included in scope.
AwsServices []AssessmentAwsService: The AWS services included in scope.

awsAccounts List<AssessmentAwsAccount>: The AWS accounts included in scope.
awsServices List<AssessmentAwsService>: The AWS services included in scope.

awsAccounts AssessmentAwsAccount[]: The AWS accounts included in scope.
awsServices AssessmentAwsService[]: The AWS services included in scope.

aws_accounts Sequence[AssessmentAwsAccount]: The AWS accounts included in scope.
aws_services Sequence[AssessmentAwsService]: The AWS services included in scope.

awsAccounts List<Property Map>: The AWS accounts included in scope.
awsServices List<Property Map>: The AWS services included in scope.

AssessmentStatus, AssessmentStatusArgs

Active: ACTIVE
Inactive: INACTIVE

AssessmentStatusActive: ACTIVE
AssessmentStatusInactive: INACTIVE

Active: ACTIVE
Inactive: INACTIVE

Active: ACTIVE
Inactive: INACTIVE

ACTIVE: ACTIVE
INACTIVE: INACTIVE

"ACTIVE": ACTIVE
"INACTIVE": INACTIVE

Tag, TagArgs

Key string: The key name of the tag
Value string: The value of the tag

Key string: The key name of the tag
Value string: The value of the tag

key String: The key name of the tag
value String: The value of the tag

key string: The key name of the tag
value string: The value of the tag

key str: The key name of the tag
value str: The value of the tag

key String: The key name of the tag
value String: The value of the tag

Package Details

Repository: AWS Native pulumi/pulumi-aws-native
License: Apache-2.0

We recommend new projects start with resources from the AWS provider.

AWS Native v0.126.0 published on Monday, Sep 30, 2024 by Pulumi

pulumi/pulumi-aws-native

aws-native.auditmanager.Assessment

On this page

On this page

Create Assessment Resource

Constructor syntax

Parameters

Assessment Resource Properties

Inputs

Outputs

Supporting Types

AssessmentAwsAccount, AssessmentAwsAccountArgs

AssessmentAwsService, AssessmentAwsServiceArgs

AssessmentDelegation, AssessmentDelegationArgs

AssessmentDelegationStatus, AssessmentDelegationStatusArgs

AssessmentReportDestinationType, AssessmentReportDestinationTypeArgs

AssessmentReportsDestination, AssessmentReportsDestinationArgs

AssessmentRole, AssessmentRoleArgs

AssessmentRoleType, AssessmentRoleTypeArgs

AssessmentScope, AssessmentScopeArgs

AssessmentStatus, AssessmentStatusArgs

Tag, TagArgs

Package Details

On this page

On this page