AWSSecurityHub (AWS SDK for Java

All Known Subinterfaces:

AWSSecurityHubAsync

All Known Implementing Classes:

AbstractAWSSecurityHub, AbstractAWSSecurityHubAsync, AWSSecurityHubAsyncClient, AWSSecurityHubClient
```
@Generated(value="com.amazonaws:aws-java-sdk-code-generator")
public interface AWSSecurityHub
```
Interface for accessing AWS SecurityHub.
Note: Do not directly implement this interface, new methods are added to it regularly. Extend from AbstractAWSSecurityHub instead.

Security Hub provides you with a comprehensive view of the security state of your AWS environment and resources. It also provides you with the compliance status of your environment based on controls from supported standards. Security Hub collects security data from AWS accounts, services, and integrated third-party products and helps you analyze security trends in your environment to identify the highest priority security issues. For more information about Security Hub, see the AWS Security Hub User Guide .

When you use operations in the Security Hub API, the requests are executed only in the AWS Region that is currently active or in the specific AWS Region that you specify in your request. Any configuration or settings change that results from the operation is applied only to that Region. To make the same change in other Regions, execute the same command for each Region to apply the change to.

For example, if your Region is set to us-west-2, when you use CreateMembers to add a member account to Security Hub, the association of the member account with the master account is created only in the us-west-2 Region. Security Hub must be enabled for the member account in the same Region that the invitation was sent from.

The following throttling limits apply to using Security Hub API operations.
- GetFindings - RateLimit of 3 requests per second. BurstLimit of 6 requests per second.
- UpdateFindings - RateLimit of 1 request per second. BurstLimit of 5 requests per second.
- All other operations - RateLimit of 10 requests per second. BurstLimit of 30 requests per second.

Field Summary

Fields
Modifier and Type Field and Description

static String ENDPOINT_PREFIX
The region metadata service name for computing region endpoints.

Fields
Modifier and Type	Field and Description
`static String`	`ENDPOINT_PREFIX` The region metadata service name for computing region endpoints.

Method Summary

All Methods Instance Methods Abstract Methods
Modifier and Type	Method and Description
`AcceptInvitationResult`	`acceptInvitation(AcceptInvitationRequest acceptInvitationRequest)` Accepts the invitation to be a member account and be monitored by the Security Hub master account that the invitation was sent from.
`BatchDisableStandardsResult`	`batchDisableStandards(BatchDisableStandardsRequest batchDisableStandardsRequest)` Disables the standards specified by the provided `StandardsSubscriptionArns`.
`BatchEnableStandardsResult`	`batchEnableStandards(BatchEnableStandardsRequest batchEnableStandardsRequest)` Enables the standards specified by the provided `StandardsArn`.
`BatchImportFindingsResult`	`batchImportFindings(BatchImportFindingsRequest batchImportFindingsRequest)` Imports security findings generated from an integrated third-party product into Security Hub.
`CreateActionTargetResult`	`createActionTarget(CreateActionTargetRequest createActionTargetRequest)` Creates a custom action target in Security Hub.
`CreateInsightResult`	`createInsight(CreateInsightRequest createInsightRequest)` Creates a custom insight in Security Hub.
`CreateMembersResult`	`createMembers(CreateMembersRequest createMembersRequest)` Creates a member association in Security Hub between the specified accounts and the account used to make the request, which is the master account.
`DeclineInvitationsResult`	`declineInvitations(DeclineInvitationsRequest declineInvitationsRequest)` Declines invitations to become a member account.
`DeleteActionTargetResult`	`deleteActionTarget(DeleteActionTargetRequest deleteActionTargetRequest)` Deletes a custom action target from Security Hub.
`DeleteInsightResult`	`deleteInsight(DeleteInsightRequest deleteInsightRequest)` Deletes the insight specified by the `InsightArn`.
`DeleteInvitationsResult`	`deleteInvitations(DeleteInvitationsRequest deleteInvitationsRequest)` Deletes invitations received by the AWS account to become a member account.
`DeleteMembersResult`	`deleteMembers(DeleteMembersRequest deleteMembersRequest)` Deletes the specified member accounts from Security Hub.
`DescribeActionTargetsResult`	`describeActionTargets(DescribeActionTargetsRequest describeActionTargetsRequest)` Returns a list of the custom action targets in Security Hub in your account.
`DescribeHubResult`	`describeHub(DescribeHubRequest describeHubRequest)` Returns details about the Hub resource in your account, including the `HubArn` and the time when you enabled Security Hub.
`DescribeProductsResult`	`describeProducts(DescribeProductsRequest describeProductsRequest)` Returns information about the available products that you can subscribe to and integrate with Security Hub in order to consolidate findings.
`DescribeStandardsResult`	`describeStandards(DescribeStandardsRequest describeStandardsRequest)` Returns a list of the available standards in Security Hub.
`DescribeStandardsControlsResult`	`describeStandardsControls(DescribeStandardsControlsRequest describeStandardsControlsRequest)` Returns a list of compliance standards controls.
`DisableImportFindingsForProductResult`	`disableImportFindingsForProduct(DisableImportFindingsForProductRequest disableImportFindingsForProductRequest)` Disables the integration of the specified product with Security Hub.
`DisableSecurityHubResult`	`disableSecurityHub(DisableSecurityHubRequest disableSecurityHubRequest)` Disables Security Hub in your account only in the current Region.
`DisassociateFromMasterAccountResult`	`disassociateFromMasterAccount(DisassociateFromMasterAccountRequest disassociateFromMasterAccountRequest)` Disassociates the current Security Hub member account from the associated master account.
`DisassociateMembersResult`	`disassociateMembers(DisassociateMembersRequest disassociateMembersRequest)` Disassociates the specified member accounts from the associated master account.
`EnableImportFindingsForProductResult`	`enableImportFindingsForProduct(EnableImportFindingsForProductRequest enableImportFindingsForProductRequest)` Enables the integration of a partner product with Security Hub.
`EnableSecurityHubResult`	`enableSecurityHub(EnableSecurityHubRequest enableSecurityHubRequest)` Enables Security Hub for your account in the current Region or the Region you specify in the request.
`ResponseMetadata`	`getCachedResponseMetadata(AmazonWebServiceRequest request)` Returns additional metadata for a previously executed successful request, typically used for debugging issues where a service isn't acting as expected.
`GetEnabledStandardsResult`	`getEnabledStandards(GetEnabledStandardsRequest getEnabledStandardsRequest)` Returns a list of the standards that are currently enabled.
`GetFindingsResult`	`getFindings(GetFindingsRequest getFindingsRequest)` Returns a list of findings that match the specified criteria.
`GetInsightResultsResult`	`getInsightResults(GetInsightResultsRequest getInsightResultsRequest)` Lists the results of the Security Hub insight specified by the insight ARN.
`GetInsightsResult`	`getInsights(GetInsightsRequest getInsightsRequest)` Lists and describes insights for the specified insight ARNs.
`GetInvitationsCountResult`	`getInvitationsCount(GetInvitationsCountRequest getInvitationsCountRequest)` Returns the count of all Security Hub membership invitations that were sent to the current member account, not including the currently accepted invitation.
`GetMasterAccountResult`	`getMasterAccount(GetMasterAccountRequest getMasterAccountRequest)` Provides the details for the Security Hub master account for the current member account.
`GetMembersResult`	`getMembers(GetMembersRequest getMembersRequest)` Returns the details for the Security Hub member accounts for the specified account IDs.
`InviteMembersResult`	`inviteMembers(InviteMembersRequest inviteMembersRequest)` Invites other AWS accounts to become member accounts for the Security Hub master account that the invitation is sent from.
`ListEnabledProductsForImportResult`	`listEnabledProductsForImport(ListEnabledProductsForImportRequest listEnabledProductsForImportRequest)` Lists all findings-generating solutions (products) that you are subscribed to receive findings from in Security Hub.
`ListInvitationsResult`	`listInvitations(ListInvitationsRequest listInvitationsRequest)` Lists all Security Hub membership invitations that were sent to the current AWS account.
`ListMembersResult`	`listMembers(ListMembersRequest listMembersRequest)` Lists details about all member accounts for the current Security Hub master account.
`ListTagsForResourceResult`	`listTagsForResource(ListTagsForResourceRequest listTagsForResourceRequest)` Returns a list of tags associated with a resource.
`void`	`shutdown()` Shuts down this client object, releasing any resources that might be held open.
`TagResourceResult`	`tagResource(TagResourceRequest tagResourceRequest)` Adds one or more tags to a resource.
`UntagResourceResult`	`untagResource(UntagResourceRequest untagResourceRequest)` Removes one or more tags from a resource.
`UpdateActionTargetResult`	`updateActionTarget(UpdateActionTargetRequest updateActionTargetRequest)` Updates the name and description of a custom action target in Security Hub.
`UpdateFindingsResult`	`updateFindings(UpdateFindingsRequest updateFindingsRequest)` Updates the `Note` and `RecordState` of the Security Hub-aggregated findings that the filter attributes specify.
`UpdateInsightResult`	`updateInsight(UpdateInsightRequest updateInsightRequest)` Updates the Security Hub insight identified by the specified insight ARN.
`UpdateStandardsControlResult`	`updateStandardsControl(UpdateStandardsControlRequest updateStandardsControlRequest)` Used to control whether an individual compliance standard control is enabled or disabled.

- Field Detail
  - ENDPOINT_PREFIX
```
static final String ENDPOINT_PREFIX
```
    The region metadata service name for computing region endpoints. You can use this value to retrieve metadata (such as supported regions) of the service.
    
    See Also:
    
    RegionUtils.getRegionsForService(String), Constant Field Values
- Method Detail
  - acceptInvitation
```
AcceptInvitationResult acceptInvitation(AcceptInvitationRequest acceptInvitationRequest)
```
    Accepts the invitation to be a member account and be monitored by the Security Hub master account that the invitation was sent from.
    
    When the member account accepts the invitation, permission is granted to the master account to view findings generated in the member account.
    
    Parameters:
    
    acceptInvitationRequest -
    
    Returns:
    
    Result of the AcceptInvitation operation returned by the service.
    
    Throws:
    
    InternalException - Internal server error.
    
    InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.
    
    LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.
    
    ResourceNotFoundException - The request was rejected because we can't find the specified resource.
    
    InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.
    
    See Also:
    
    AWS API Documentation
  - batchDisableStandards
```
BatchDisableStandardsResult batchDisableStandards(BatchDisableStandardsRequest batchDisableStandardsRequest)
```
    Disables the standards specified by the provided StandardsSubscriptionArns.
    
    For more information, see Compliance Standards section of the AWS Security Hub User Guide.
    
    Parameters:
    
    batchDisableStandardsRequest -
    
    Returns:
    
    Result of the BatchDisableStandards operation returned by the service.
    
    Throws:
    
    InternalException - Internal server error.
    
    InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.
    
    InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.
    
    LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.
    
    See Also:
    
    AWS API Documentation
  - batchEnableStandards
```
BatchEnableStandardsResult batchEnableStandards(BatchEnableStandardsRequest batchEnableStandardsRequest)
```
    Enables the standards specified by the provided StandardsArn. To obtain the ARN for a standard, use the DescribeStandards operation.
    
    For more information, see the Compliance Standards section of the AWS Security Hub User Guide.
    
    Parameters:
    
    batchEnableStandardsRequest -
    
    Returns:
    
    Result of the BatchEnableStandards operation returned by the service.
    
    Throws:
    
    InternalException - Internal server error.
    
    InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.
    
    InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.
    
    LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.
    
    See Also:
    
    AWS API Documentation
  - batchImportFindings
```
BatchImportFindingsResult batchImportFindings(BatchImportFindingsRequest batchImportFindingsRequest)
```
    Imports security findings generated from an integrated third-party product into Security Hub. This action is requested by the integrated product to import its findings into Security Hub.
    
    The maximum allowed size for a finding is 240 Kb. An error is returned for any finding larger than 240 Kb.
    
    Parameters:
    
    batchImportFindingsRequest -
    
    Returns:
    
    Result of the BatchImportFindings operation returned by the service.
    
    Throws:
    
    InternalException - Internal server error.
    
    InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.
    
    LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.
    
    InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.
    
    See Also:
    
    AWS API Documentation
  - createActionTarget
```
CreateActionTargetResult createActionTarget(CreateActionTargetRequest createActionTargetRequest)
```
    Creates a custom action target in Security Hub.
    
    You can use custom actions on findings and insights in Security Hub to trigger target actions in Amazon CloudWatch Events.
    
    Parameters:
    
    createActionTargetRequest -
    
    Returns:
    
    Result of the CreateActionTarget operation returned by the service.
    
    Throws:
    
    InternalException - Internal server error.
    
    InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.
    
    InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.
    
    LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.
    
    ResourceConflictException - The resource specified in the request conflicts with an existing resource.
    
    See Also:
    
    AWS API Documentation
  - createInsight
```
CreateInsightResult createInsight(CreateInsightRequest createInsightRequest)
```
    Creates a custom insight in Security Hub. An insight is a consolidation of findings that relate to a security issue that requires attention or remediation.
    
    To group the related findings in the insight, use the GroupByAttribute.
    
    Parameters:
    
    createInsightRequest -
    
    Returns:
    
    Result of the CreateInsight operation returned by the service.
    
    Throws:
    
    InternalException - Internal server error.
    
    InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.
    
    LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.
    
    InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.
    
    ResourceConflictException - The resource specified in the request conflicts with an existing resource.
    
    See Also:
    
    AWS API Documentation
  - createMembers
```
CreateMembersResult createMembers(CreateMembersRequest createMembersRequest)
```
    Creates a member association in Security Hub between the specified accounts and the account used to make the request, which is the master account. To successfully create a member, you must use this action from an account that already has Security Hub enabled. To enable Security Hub, you can use the EnableSecurityHub operation.
    
    After you use CreateMembers to create member account associations in Security Hub, you must use the InviteMembers operation to invite the accounts to enable Security Hub and become member accounts in Security Hub.
    
    If the account owner accepts the invitation, the account becomes a member account in Security Hub, and a permission policy is added that permits the master account to view the findings generated in the member account. When Security Hub is enabled in the invited account, findings start to be sent to both the member and master accounts.
    
    To remove the association between the master and member accounts, use the DisassociateFromMasterAccount or DisassociateMembers operation.
    
    Parameters:
    
    createMembersRequest -
    
    Returns:
    
    Result of the CreateMembers operation returned by the service.
    
    Throws:
    
    InternalException - Internal server error.
    
    InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.
    
    LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.
    
    InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.
    
    ResourceConflictException - The resource specified in the request conflicts with an existing resource.
    
    See Also:
    
    AWS API Documentation
  - declineInvitations
```
DeclineInvitationsResult declineInvitations(DeclineInvitationsRequest declineInvitationsRequest)
```
    Declines invitations to become a member account.
    
    Parameters:
    
    declineInvitationsRequest -
    
    Returns:
    
    Result of the DeclineInvitations operation returned by the service.
    
    Throws:
    
    InternalException - Internal server error.
    
    InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.
    
    InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.
    
    ResourceNotFoundException - The request was rejected because we can't find the specified resource.
    
    See Also:
    
    AWS API Documentation
  - deleteActionTarget
```
DeleteActionTargetResult deleteActionTarget(DeleteActionTargetRequest deleteActionTargetRequest)
```
    Deletes a custom action target from Security Hub.
    
    Deleting a custom action target does not affect any findings or insights that were already sent to Amazon CloudWatch Events using the custom action.
    
    Parameters:
    
    deleteActionTargetRequest -
    
    Returns:
    
    Result of the DeleteActionTarget operation returned by the service.
    
    Throws:
    
    InternalException - Internal server error.
    
    InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.
    
    InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.
    
    ResourceNotFoundException - The request was rejected because we can't find the specified resource.
    
    See Also:
    
    AWS API Documentation
  - deleteInsight
```
DeleteInsightResult deleteInsight(DeleteInsightRequest deleteInsightRequest)
```
    Deletes the insight specified by the InsightArn.
    
    Parameters:
    
    deleteInsightRequest -
    
    Returns:
    
    Result of the DeleteInsight operation returned by the service.
    
    Throws:
    
    InternalException - Internal server error.
    
    InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.
    
    InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.
    
    LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.
    
    ResourceNotFoundException - The request was rejected because we can't find the specified resource.
    
    See Also:
    
    AWS API Documentation
  - deleteInvitations
```
DeleteInvitationsResult deleteInvitations(DeleteInvitationsRequest deleteInvitationsRequest)
```
    Deletes invitations received by the AWS account to become a member account.
    
    Parameters:
    
    deleteInvitationsRequest -
    
    Returns:
    
    Result of the DeleteInvitations operation returned by the service.
    
    Throws:
    
    InternalException - Internal server error.
    
    InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.
    
    LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.
    
    ResourceNotFoundException - The request was rejected because we can't find the specified resource.
    
    InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.
    
    See Also:
    
    AWS API Documentation
  - deleteMembers
```
DeleteMembersResult deleteMembers(DeleteMembersRequest deleteMembersRequest)
```
    Deletes the specified member accounts from Security Hub.
    
    Parameters:
    
    deleteMembersRequest -
    
    Returns:
    
    Result of the DeleteMembers operation returned by the service.
    
    Throws:
    
    InternalException - Internal server error.
    
    InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.
    
    InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.
    
    LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.
    
    ResourceNotFoundException - The request was rejected because we can't find the specified resource.
    
    See Also:
    
    AWS API Documentation
  - describeActionTargets
```
DescribeActionTargetsResult describeActionTargets(DescribeActionTargetsRequest describeActionTargetsRequest)
```
    Returns a list of the custom action targets in Security Hub in your account.
    
    Parameters:
    
    describeActionTargetsRequest -
    
    Returns:
    
    Result of the DescribeActionTargets operation returned by the service.
    
    Throws:
    
    InternalException - Internal server error.
    
    InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.
    
    InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.
    
    ResourceNotFoundException - The request was rejected because we can't find the specified resource.
    
    See Also:
    
    AWS API Documentation
  - describeHub
```
DescribeHubResult describeHub(DescribeHubRequest describeHubRequest)
```
    Returns details about the Hub resource in your account, including the HubArn and the time when you enabled Security Hub.
    
    Parameters:
    
    describeHubRequest -
    
    Returns:
    
    Result of the DescribeHub operation returned by the service.
    
    Throws:
    
    InternalException - Internal server error.
    
    LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.
    
    InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.
    
    InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.
    
    ResourceNotFoundException - The request was rejected because we can't find the specified resource.
    
    See Also:
    
    AWS API Documentation
  - describeProducts
```
DescribeProductsResult describeProducts(DescribeProductsRequest describeProductsRequest)
```
    Returns information about the available products that you can subscribe to and integrate with Security Hub in order to consolidate findings.
    
    Parameters:
    
    describeProductsRequest -
    
    Returns:
    
    Result of the DescribeProducts operation returned by the service.
    
    Throws:
    
    InternalException - Internal server error.
    
    LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.
    
    InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.
    
    InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.
    
    See Also:
    
    AWS API Documentation
  - describeStandards
```
DescribeStandardsResult describeStandards(DescribeStandardsRequest describeStandardsRequest)
```
    Returns a list of the available standards in Security Hub.
    
    For each standard, the results include the standard ARN, the name, and a description.
    
    Parameters:
    
    describeStandardsRequest -
    
    Returns:
    
    Result of the DescribeStandards operation returned by the service.
    
    Throws:
    
    InternalException - Internal server error.
    
    InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.
    
    InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.
    
    See Also:
    
    AWS API Documentation
  - describeStandardsControls
```
DescribeStandardsControlsResult describeStandardsControls(DescribeStandardsControlsRequest describeStandardsControlsRequest)
```
    Returns a list of compliance standards controls.
    
    For each control, the results include information about whether it is currently enabled, the severity, and a link to remediation information.
    
    Parameters:
    
    describeStandardsControlsRequest -
    
    Returns:
    
    Result of the DescribeStandardsControls operation returned by the service.
    
    Throws:
    
    InternalException - Internal server error.
    
    InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.
    
    InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.
    
    ResourceNotFoundException - The request was rejected because we can't find the specified resource.
    
    See Also:
    
    AWS API Documentation
  - disableImportFindingsForProduct
```
DisableImportFindingsForProductResult disableImportFindingsForProduct(DisableImportFindingsForProductRequest disableImportFindingsForProductRequest)
```
    Disables the integration of the specified product with Security Hub. After the integration is disabled, findings from that product are no longer sent to Security Hub.
    
    Parameters:
    
    disableImportFindingsForProductRequest -
    
    Returns:
    
    Result of the DisableImportFindingsForProduct operation returned by the service.
    
    Throws:
    
    InternalException - Internal server error.
    
    InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.
    
    ResourceNotFoundException - The request was rejected because we can't find the specified resource.
    
    InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.
    
    LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.
    
    See Also:
    
    AWS API Documentation
  - disableSecurityHub
```
DisableSecurityHubResult disableSecurityHub(DisableSecurityHubRequest disableSecurityHubRequest)
```
    Disables Security Hub in your account only in the current Region. To disable Security Hub in all Regions, you must submit one request per Region where you have enabled Security Hub.
    
    When you disable Security Hub for a master account, it doesn't disable Security Hub for any associated member accounts.
    
    When you disable Security Hub, your existing findings and insights and any Security Hub configuration settings are deleted after 90 days and cannot be recovered. Any standards that were enabled are disabled, and your master and member account associations are removed.
    
    If you want to save your existing findings, you must export them before you disable Security Hub.
    
    Parameters:
    
    disableSecurityHubRequest -
    
    Returns:
    
    Result of the DisableSecurityHub operation returned by the service.
    
    Throws:
    
    InternalException - Internal server error.
    
    LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.
    
    InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.
    
    ResourceNotFoundException - The request was rejected because we can't find the specified resource.
    
    See Also:
    
    AWS API Documentation
  - disassociateFromMasterAccount
```
DisassociateFromMasterAccountResult disassociateFromMasterAccount(DisassociateFromMasterAccountRequest disassociateFromMasterAccountRequest)
```
    Disassociates the current Security Hub member account from the associated master account.
    
    Parameters:
    
    disassociateFromMasterAccountRequest -
    
    Returns:
    
    Result of the DisassociateFromMasterAccount operation returned by the service.
    
    Throws:
    
    InternalException - Internal server error.
    
    InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.
    
    InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.
    
    LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.
    
    ResourceNotFoundException - The request was rejected because we can't find the specified resource.
    
    See Also:
    
    AWS API Documentation
  - disassociateMembers
```
DisassociateMembersResult disassociateMembers(DisassociateMembersRequest disassociateMembersRequest)
```
    Disassociates the specified member accounts from the associated master account.
    
    Parameters:
    
    disassociateMembersRequest -
    
    Returns:
    
    Result of the DisassociateMembers operation returned by the service.
    
    Throws:
    
    InternalException - Internal server error.
    
    InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.
    
    InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.
    
    LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.
    
    ResourceNotFoundException - The request was rejected because we can't find the specified resource.
    
    See Also:
    
    AWS API Documentation
  - enableImportFindingsForProduct
```
EnableImportFindingsForProductResult enableImportFindingsForProduct(EnableImportFindingsForProductRequest enableImportFindingsForProductRequest)
```
    Enables the integration of a partner product with Security Hub. Integrated products send findings to Security Hub.
    
    When you enable a product integration, a permission policy that grants permission for the product to send findings to Security Hub is applied.
    
    Parameters:
    
    enableImportFindingsForProductRequest -
    
    Returns:
    
    Result of the EnableImportFindingsForProduct operation returned by the service.
    
    Throws:
    
    InternalException - Internal server error.
    
    InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.
    
    InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.
    
    ResourceConflictException - The resource specified in the request conflicts with an existing resource.
    
    LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.
    
    See Also:
    
    AWS API Documentation
  - enableSecurityHub
```
EnableSecurityHubResult enableSecurityHub(EnableSecurityHubRequest enableSecurityHubRequest)
```
    Enables Security Hub for your account in the current Region or the Region you specify in the request.
    
    When you enable Security Hub, you grant to Security Hub the permissions necessary to gather findings from AWS Config, Amazon GuardDuty, Amazon Inspector, and Amazon Macie.
    
    When you use the EnableSecurityHub operation to enable Security Hub, you also automatically enable the CIS AWS Foundations standard. You do not enable the Payment Card Industry Data Security Standard (PCI DSS) standard. To enable a standard, use the BatchEnableStandards operation. To disable a standard, use the BatchDisableStandards operation.
    
    To learn more, see Setting Up AWS Security Hub in the AWS Security Hub User Guide.
    
    Parameters:
    
    enableSecurityHubRequest -
    
    Returns:
    
    Result of the EnableSecurityHub operation returned by the service.
    
    Throws:
    
    InternalException - Internal server error.
    
    LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.
    
    InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.
    
    ResourceConflictException - The resource specified in the request conflicts with an existing resource.
    
    AccessDeniedException - You don't have permission to perform the action specified in the request.
    
    See Also:
    
    AWS API Documentation
  - getEnabledStandards
```
GetEnabledStandardsResult getEnabledStandards(GetEnabledStandardsRequest getEnabledStandardsRequest)
```
    Returns a list of the standards that are currently enabled.
    
    Parameters:
    
    getEnabledStandardsRequest -
    
    Returns:
    
    Result of the GetEnabledStandards operation returned by the service.
    
    Throws:
    
    InternalException - Internal server error.
    
    InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.
    
    InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.
    
    LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.
    
    See Also:
    
    AWS API Documentation
  - getFindings
```
GetFindingsResult getFindings(GetFindingsRequest getFindingsRequest)
```
    Returns a list of findings that match the specified criteria.
    
    Parameters:
    
    getFindingsRequest -
    
    Returns:
    
    Result of the GetFindings operation returned by the service.
    
    Throws:
    
    InternalException - Internal server error.
    
    InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.
    
    InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.
    
    LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.
    
    See Also:
    
    AWS API Documentation
  - getInsightResults
```
GetInsightResultsResult getInsightResults(GetInsightResultsRequest getInsightResultsRequest)
```
    Lists the results of the Security Hub insight specified by the insight ARN.
    
    Parameters:
    
    getInsightResultsRequest -
    
    Returns:
    
    Result of the GetInsightResults operation returned by the service.
    
    Throws:
    
    InternalException - Internal server error.
    
    InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.
    
    InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.
    
    LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.
    
    ResourceNotFoundException - The request was rejected because we can't find the specified resource.
    
    See Also:
    
    AWS API Documentation
  - getInsights
```
GetInsightsResult getInsights(GetInsightsRequest getInsightsRequest)
```
    Lists and describes insights for the specified insight ARNs.
    
    Parameters:
    
    getInsightsRequest -
    
    Returns:
    
    Result of the GetInsights operation returned by the service.
    
    Throws:
    
    InternalException - Internal server error.
    
    InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.
    
    InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.
    
    LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.
    
    ResourceNotFoundException - The request was rejected because we can't find the specified resource.
    
    See Also:
    
    AWS API Documentation
  - getInvitationsCount
```
GetInvitationsCountResult getInvitationsCount(GetInvitationsCountRequest getInvitationsCountRequest)
```
    Returns the count of all Security Hub membership invitations that were sent to the current member account, not including the currently accepted invitation.
    
    Parameters:
    
    getInvitationsCountRequest -
    
    Returns:
    
    Result of the GetInvitationsCount operation returned by the service.
    
    Throws:
    
    InternalException - Internal server error.
    
    InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.
    
    InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.
    
    LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.
    
    See Also:
    
    AWS API Documentation
  - getMasterAccount
```
GetMasterAccountResult getMasterAccount(GetMasterAccountRequest getMasterAccountRequest)
```
    Provides the details for the Security Hub master account for the current member account.
    
    Parameters:
    
    getMasterAccountRequest -
    
    Returns:
    
    Result of the GetMasterAccount operation returned by the service.
    
    Throws:
    
    InternalException - Internal server error.
    
    InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.
    
    InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.
    
    LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.
    
    ResourceNotFoundException - The request was rejected because we can't find the specified resource.
    
    See Also:
    
    AWS API Documentation
  - getMembers
```
GetMembersResult getMembers(GetMembersRequest getMembersRequest)
```
    Returns the details for the Security Hub member accounts for the specified account IDs.
    
    Parameters:
    
    getMembersRequest -
    
    Returns:
    
    Result of the GetMembers operation returned by the service.
    
    Throws:
    
    InternalException - Internal server error.
    
    InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.
    
    InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.
    
    LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.
    
    ResourceNotFoundException - The request was rejected because we can't find the specified resource.
    
    See Also:
    
    AWS API Documentation
  - inviteMembers
```
InviteMembersResult inviteMembers(InviteMembersRequest inviteMembersRequest)
```
    Invites other AWS accounts to become member accounts for the Security Hub master account that the invitation is sent from.
    
    Before you can use this action to invite a member, you must first use the CreateMembers action to create the member account in Security Hub.
    
    When the account owner accepts the invitation to become a member account and enables Security Hub, the master account can view the findings generated from the member account.
    
    Parameters:
    
    inviteMembersRequest -
    
    Returns:
    
    Result of the InviteMembers operation returned by the service.
    
    Throws:
    
    InternalException - Internal server error.
    
    InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.
    
    InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.
    
    LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.
    
    ResourceNotFoundException - The request was rejected because we can't find the specified resource.
    
    See Also:
    
    AWS API Documentation
  - listEnabledProductsForImport
```
ListEnabledProductsForImportResult listEnabledProductsForImport(ListEnabledProductsForImportRequest listEnabledProductsForImportRequest)
```
    Lists all findings-generating solutions (products) that you are subscribed to receive findings from in Security Hub.
    
    Parameters:
    
    listEnabledProductsForImportRequest -
    
    Returns:
    
    Result of the ListEnabledProductsForImport operation returned by the service.
    
    Throws:
    
    InternalException - Internal server error.
    
    LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.
    
    InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.
    
    See Also:
    
    AWS API Documentation
  - listInvitations
```
ListInvitationsResult listInvitations(ListInvitationsRequest listInvitationsRequest)
```
    Lists all Security Hub membership invitations that were sent to the current AWS account.
    
    Parameters:
    
    listInvitationsRequest -
    
    Returns:
    
    Result of the ListInvitations operation returned by the service.
    
    Throws:
    
    InternalException - Internal server error.
    
    InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.
    
    InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.
    
    LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.
    
    See Also:
    
    AWS API Documentation
  - listMembers
```
ListMembersResult listMembers(ListMembersRequest listMembersRequest)
```
    Lists details about all member accounts for the current Security Hub master account.
    
    Parameters:
    
    listMembersRequest -
    
    Returns:
    
    Result of the ListMembers operation returned by the service.
    
    Throws:
    
    InternalException - Internal server error.
    
    InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.
    
    InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.
    
    LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.
    
    See Also:
    
    AWS API Documentation
  - listTagsForResource
```
ListTagsForResourceResult listTagsForResource(ListTagsForResourceRequest listTagsForResourceRequest)
```
    Returns a list of tags associated with a resource.
    
    Parameters:
    
    listTagsForResourceRequest -
    
    Returns:
    
    Result of the ListTagsForResource operation returned by the service.
    
    Throws:
    
    InternalException - Internal server error.
    
    InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.
    
    ResourceNotFoundException - The request was rejected because we can't find the specified resource.
    
    See Also:
    
    AWS API Documentation
  - tagResource
```
TagResourceResult tagResource(TagResourceRequest tagResourceRequest)
```
    Adds one or more tags to a resource.
    
    Parameters:
    
    tagResourceRequest -
    
    Returns:
    
    Result of the TagResource operation returned by the service.
    
    Throws:
    
    InternalException - Internal server error.
    
    InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.
    
    ResourceNotFoundException - The request was rejected because we can't find the specified resource.
    
    See Also:
    
    AWS API Documentation
  - untagResource
```
UntagResourceResult untagResource(UntagResourceRequest untagResourceRequest)
```
    Removes one or more tags from a resource.
    
    Parameters:
    
    untagResourceRequest -
    
    Returns:
    
    Result of the UntagResource operation returned by the service.
    
    Throws:
    
    InternalException - Internal server error.
    
    InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.
    
    ResourceNotFoundException - The request was rejected because we can't find the specified resource.
    
    See Also:
    
    AWS API Documentation
  - updateActionTarget
```
UpdateActionTargetResult updateActionTarget(UpdateActionTargetRequest updateActionTargetRequest)
```
    Updates the name and description of a custom action target in Security Hub.
    
    Parameters:
    
    updateActionTargetRequest -
    
    Returns:
    
    Result of the UpdateActionTarget operation returned by the service.
    
    Throws:
    
    InternalException - Internal server error.
    
    InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.
    
    ResourceNotFoundException - The request was rejected because we can't find the specified resource.
    
    InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.
    
    ResourceNotFoundException - The request was rejected because we can't find the specified resource.
    
    See Also:
    
    AWS API Documentation
  - updateFindings
```
UpdateFindingsResult updateFindings(UpdateFindingsRequest updateFindingsRequest)
```
    Updates the Note and RecordState of the Security Hub-aggregated findings that the filter attributes specify. Any member account that can view the finding also sees the update to the finding.
    
    Parameters:
    
    updateFindingsRequest -
    
    Returns:
    
    Result of the UpdateFindings operation returned by the service.
    
    Throws:
    
    InternalException - Internal server error.
    
    InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.
    
    LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.
    
    InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.
    
    ResourceNotFoundException - The request was rejected because we can't find the specified resource.
    
    See Also:
    
    AWS API Documentation
  - updateInsight
```
UpdateInsightResult updateInsight(UpdateInsightRequest updateInsightRequest)
```
    Updates the Security Hub insight identified by the specified insight ARN.
    
    Parameters:
    
    updateInsightRequest -
    
    Returns:
    
    Result of the UpdateInsight operation returned by the service.
    
    Throws:
    
    InternalException - Internal server error.
    
    InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.
    
    InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.
    
    LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.
    
    ResourceNotFoundException - The request was rejected because we can't find the specified resource.
    
    See Also:
    
    AWS API Documentation
  - updateStandardsControl
```
UpdateStandardsControlResult updateStandardsControl(UpdateStandardsControlRequest updateStandardsControlRequest)
```
    Used to control whether an individual compliance standard control is enabled or disabled.
    
    Parameters:
    
    updateStandardsControlRequest -
    
    Returns:
    
    Result of the UpdateStandardsControl operation returned by the service.
    
    Throws:
    
    InternalException - Internal server error.
    
    InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.
    
    InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.
    
    ResourceNotFoundException - The request was rejected because we can't find the specified resource.
    
    See Also:
    
    AWS API Documentation
  - shutdown
```
void shutdown()
```
    Shuts down this client object, releasing any resources that might be held open. This is an optional method, and callers are not expected to call it, but can if they want to explicitly release any open resources. Once a client has been shutdown, it should not be used to make any more requests.
  - getCachedResponseMetadata
```
ResponseMetadata getCachedResponseMetadata(AmazonWebServiceRequest request)
```
    Returns additional metadata for a previously executed successful request, typically used for debugging issues where a service isn't acting as expected. This data isn't considered part of the result data returned by an operation, so it's available through this separate, diagnostic interface.
    Response metadata is only cached for a limited period of time, so if you need to access this extra diagnostic information for an executed request, you should use this method to retrieve it as soon as possible after executing a request.
    
    Parameters:
    
    request - The originally executed request.
    
    Returns:
    
    The response metadata for the specified request, or null if none is available.

Did this page help you?

Interface AWSSecurityHub

Field Summary

Method Summary

Field Detail

ENDPOINT_PREFIX

Method Detail

acceptInvitation

batchDisableStandards

batchEnableStandards

batchImportFindings

createActionTarget

createInsight

createMembers

declineInvitations

deleteActionTarget

deleteInsight

deleteInvitations

deleteMembers

describeActionTargets

describeHub

describeProducts

describeStandards

describeStandardsControls

disableImportFindingsForProduct

disableSecurityHub

disassociateFromMasterAccount

disassociateMembers

enableImportFindingsForProduct

enableSecurityHub

getEnabledStandards

getFindings

getInsightResults

getInsights

getInvitationsCount

getMasterAccount

getMembers

inviteMembers

listEnabledProductsForImport

listInvitations

listMembers

listTagsForResource

tagResource

untagResource

updateActionTarget

updateFindings

updateInsight

updateStandardsControl

shutdown

getCachedResponseMetadata