| AggregateAuthorization |
Manages an AWS Config Aggregate Authorization
## Example Usage
```java
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.aws.cfg.AggregateAuthorization;
import com.pulumi.aws.cfg.AggregateAuthorizationArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var example = new AggregateAuthorization("example", AggregateAuthorizationArgs.builder()
.accountId("123456789012")
.region("eu-west-2")
.build());
}
}
```
## Import
Using `pulumi import`, import Config aggregate authorizations using `account_id:region`.
|
| AggregateAuthorizationArgs |
|
| AggregateAuthorizationArgs.Builder |
|
| ConfigurationAggregator |
Manages an AWS Config Configuration Aggregator
## Example Usage
### Account Based Aggregation
```java
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.aws.cfg.ConfigurationAggregator;
import com.pulumi.aws.cfg.ConfigurationAggregatorArgs;
import com.pulumi.aws.cfg.inputs.ConfigurationAggregatorAccountAggregationSourceArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var account = new ConfigurationAggregator("account", ConfigurationAggregatorArgs.builder()
.accountAggregationSource(ConfigurationAggregatorAccountAggregationSourceArgs.builder()
.accountIds("123456789012")
.regions("us-west-2")
.build())
.build());
}
}
```
### Organization Based Aggregation
```java
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.aws.iam.IamFunctions;
import com.pulumi.aws.iam.inputs.GetPolicyDocumentArgs;
import com.pulumi.aws.iam.Role;
import com.pulumi.aws.iam.RoleArgs;
import com.pulumi.aws.iam.RolePolicyAttachment;
import com.pulumi.aws.iam.RolePolicyAttachmentArgs;
import com.pulumi.aws.cfg.ConfigurationAggregator;
import com.pulumi.aws.cfg.ConfigurationAggregatorArgs;
import com.pulumi.aws.cfg.inputs.ConfigurationAggregatorOrganizationAggregationSourceArgs;
import com.pulumi.resources.CustomResourceOptions;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
final var assumeRole = IamFunctions.getPolicyDocument(GetPolicyDocumentArgs.builder()
.statements(GetPolicyDocumentStatementArgs.builder()
.effect("Allow")
.principals(GetPolicyDocumentStatementPrincipalArgs.builder()
.type("Service")
.identifiers("config.amazonaws.com")
.build())
.actions("sts:AssumeRole")
.build())
.build());
var organizationRole = new Role("organizationRole", RoleArgs.builder()
.assumeRolePolicy(assumeRole.applyValue(getPolicyDocumentResult -> getPolicyDocumentResult.json()))
.build());
var organizationRolePolicyAttachment = new RolePolicyAttachment("organizationRolePolicyAttachment", RolePolicyAttachmentArgs.builder()
.role(organizationRole.name())
.policyArn("arn:aws:iam::aws:policy/service-role/AWSConfigRoleForOrganizations")
.build());
var organizationConfigurationAggregator = new ConfigurationAggregator("organizationConfigurationAggregator", ConfigurationAggregatorArgs.builder()
.organizationAggregationSource(ConfigurationAggregatorOrganizationAggregationSourceArgs.builder()
.allRegions(true)
.roleArn(organizationRole.arn())
.build())
.build(), CustomResourceOptions.builder()
.dependsOn(organizationRolePolicyAttachment)
.build());
}
}
```
## Import
Using `pulumi import`, import Configuration Aggregators using the name.
|
| ConfigurationAggregatorArgs |
|
| ConfigurationAggregatorArgs.Builder |
|
| ConformancePack |
Manages a Config Conformance Pack.
|
| ConformancePackArgs |
|
| ConformancePackArgs.Builder |
|
| DeliveryChannel |
Provides an AWS Config Delivery Channel.
|
| DeliveryChannelArgs |
|
| DeliveryChannelArgs.Builder |
|
| OrganizationConformancePack |
Manages a Config Organization Conformance Pack.
|
| OrganizationConformancePackArgs |
|
| OrganizationConformancePackArgs.Builder |
|
| OrganizationCustomPolicyRule |
Manages a Config Organization Custom Policy Rule.
|
| OrganizationCustomPolicyRuleArgs |
|
| OrganizationCustomPolicyRuleArgs.Builder |
|
| OrganizationCustomRule |
Manages a Config Organization Custom Rule.
|
| OrganizationCustomRuleArgs |
|
| OrganizationCustomRuleArgs.Builder |
|
| OrganizationManagedRule |
Manages a Config Organization Managed Rule.
|
| OrganizationManagedRuleArgs |
|
| OrganizationManagedRuleArgs.Builder |
|
| Recorder |
Provides an AWS Config Configuration Recorder.
|
| RecorderArgs |
|
| RecorderArgs.Builder |
|
| RecorderStatus |
Manages status (recording / stopped) of an AWS Config Configuration Recorder.
|
| RecorderStatusArgs |
|
| RecorderStatusArgs.Builder |
|
| RemediationConfiguration |
Provides an AWS Config Remediation Configuration.
|
| RemediationConfigurationArgs |
|
| RemediationConfigurationArgs.Builder |
|
| Rule |
Provides an AWS Config Rule.
|
| RuleArgs |
|
| RuleArgs.Builder |
|