Amazon Web Services - API AWS IoT

PATCH

/accept-certificate-transfer/{certificateId}

Accepts a pending certificate transfer. The default state of the certificate is INACTIVE.

To check for pending certificate transfers, call ListCertificates to enumerate your certificates.

Request

Path

Name	Data Type	Description
`certificateId`	string Pattern: `(0x)?[a-fA-F0-9]+` Minimum: 64 Maximum: 64	The ID of the certificate. (The last part of the certificate ARN contains the certificate ID.)

Query

Name	Data Type	Description
`setAsActive`	boolean	Specifies whether the certificate is active.

Header

Name	Data Type	Description
`X-Amz-SignedHeaders`	string
`X-Amz-Signature`	string
`X-Amz-Security-Token`	string
`X-Amz-Credential`	string
`X-Amz-Algorithm`	string
`X-Amz-Date`	string
`X-Amz-Content-Sha256`	string

Responses

200Success

480ResourceNotFoundException

Body

Name	Data Type	Description
`ResourceNotFoundException`

481TransferAlreadyCompletedException

Body

Name	Data Type	Description
`TransferAlreadyCompletedException`

482InvalidRequestException

Body

Name	Data Type	Description
`InvalidRequestException`

483ThrottlingException

Body

Name	Data Type	Description
`ThrottlingException`

484UnauthorizedException

Body

Name	Data Type	Description
`UnauthorizedException`

485ServiceUnavailableException

Body

Name	Data Type	Description
`ServiceUnavailableException`

486InternalFailureException

Body

Name	Data Type	Description
`InternalFailureException`

GET

/active-violations

Lists the active violations for a given Device Defender security profile.

Request

Query

Name	Data Type	Description
`maxResults`	integer Minimum: 1 Maximum: 250	The maximum number of results to return at one time.
`nextToken`	string	The token for the next set of results.
`securityProfileName`	string Pattern: `[a-zA-Z0-9:_-]+` Minimum: 1 Maximum: 128	The name of the Device Defender security profile for which violations are listed.
`thingName`	string Minimum: 1 Maximum: 128	The name of the thing whose active violations are listed.

Header

Name	Data Type	Description
`X-Amz-SignedHeaders`	string
`X-Amz-Signature`	string
`X-Amz-Security-Token`	string
`X-Amz-Credential`	string
`X-Amz-Algorithm`	string
`X-Amz-Date`	string
`X-Amz-Content-Sha256`	string

Responses

200Success

Body

Name	Data Type	Description
`ListActiveViolationsResponse`	object

Properties


                        nextToken

NextToken

A token that can be used to retrieve the next set of results, or null if there are no additional results.

NextToken string


                        activeViolations

ActiveViolations

The list of active violations.

ActiveViolations array [ActiveViolation]


                        ActiveViolation

object

Information about an active Device Defender security profile behavior violation.

Properties

`violationStartTime`	Timestamp	The time the violation started.
`lastViolationTime`	Timestamp	The time the most recent violation occurred.
`lastViolationValue`	MetricValue	The value of the metric (the measurement) which caused the most recent violation.
`behavior`	Behavior	The behavior which is being violated.
`securityProfileName`	SecurityProfileName	The security profile whose behavior is in violation.
`thingName`	DeviceDefenderThingName	The name of the thing responsible for the active violation.
`violationId`	ViolationId	The ID of the active violation.

480InvalidRequestException

Body

Name	Data Type	Description
`InvalidRequestException`

481ResourceNotFoundException

Body

Name	Data Type	Description
`ResourceNotFoundException`

482ThrottlingException

Body

Name	Data Type	Description
`ThrottlingException`

483InternalFailureException

Body

Name	Data Type	Description
`InternalFailureException`

POST

/attached-policies/{target}

Lists the policies attached to the specified thing group.

Request

Path

Name	Data Type	Description
`target`	string	The group or principal for which the policies will be listed.

Query

Name	Data Type	Description
`pageSize`	integer Minimum: 1 Maximum: 250	The maximum number of results to be returned per request.
`marker`	string Pattern: `[A-Za-z0-9+/]+={0,2}`	The token to retrieve the next set of results.
`recursive`	boolean	When true, recursively list attached policies.

Header

Name	Data Type	Description
`X-Amz-SignedHeaders`	string
`X-Amz-Signature`	string
`X-Amz-Security-Token`	string
`X-Amz-Credential`	string
`X-Amz-Algorithm`	string
`X-Amz-Date`	string
`X-Amz-Content-Sha256`	string

Responses

200Success

Body

Name	Data Type	Description
`ListAttachedPoliciesResponse`	object

Properties


                        nextMarker

Marker

The token to retrieve the next set of results, or null if there are no more results.

Marker string
Pattern: [A-Za-z0-9+/]+={0,2}


                        policies

Policies

The policies.

Policies array [Policy]


                        Policy

object

Describes an AWS IoT policy.

Properties

`policyArn`	PolicyArn	The policy ARN.
`policyName`	PolicyName	The policy name.

480ResourceNotFoundException

Body

Name	Data Type	Description
`ResourceNotFoundException`

481InvalidRequestException

Body

Name	Data Type	Description
`InvalidRequestException`

482ThrottlingException

Body

Name	Data Type	Description
`ThrottlingException`

483UnauthorizedException

Body

Name	Data Type	Description
`UnauthorizedException`

484ServiceUnavailableException

Body

Name	Data Type	Description
`ServiceUnavailableException`

485InternalFailureException

Body

Name	Data Type	Description
`InternalFailureException`

486LimitExceededException

Body

Name	Data Type	Description
`LimitExceededException`

DELETE

/audit/configuration

Restores the default settings for Device Defender audits for this account. Any configuration data you entered is deleted and all audit checks are reset to disabled.

Request

Query

Name	Data Type	Description
`deleteScheduledAudits`	boolean	If true, all scheduled audits are deleted.

Header

Name	Data Type	Description
`X-Amz-SignedHeaders`	string
`X-Amz-Signature`	string
`X-Amz-Security-Token`	string
`X-Amz-Credential`	string
`X-Amz-Algorithm`	string
`X-Amz-Date`	string
`X-Amz-Content-Sha256`	string

Responses

200Success

Body

Name	Data Type	Description
`DeleteAccountAuditConfigurationResponse`	object

480InvalidRequestException

Body

Name	Data Type	Description
`InvalidRequestException`

481ResourceNotFoundException

Body

Name	Data Type	Description
`ResourceNotFoundException`

482ThrottlingException

Body

Name	Data Type	Description
`ThrottlingException`

483InternalFailureException

Body

Name	Data Type	Description
`InternalFailureException`

GET

/audit/configuration

Gets information about the Device Defender audit settings for this account. Settings include how audit notifications are sent and which audit checks are enabled or disabled.

Request

Header

Name	Data Type	Description
`X-Amz-SignedHeaders`	string
`X-Amz-Signature`	string
`X-Amz-Security-Token`	string
`X-Amz-Credential`	string
`X-Amz-Algorithm`	string
`X-Amz-Date`	string
`X-Amz-Content-Sha256`	string

Responses

200Success

Body

Name	Data Type	Description
`DescribeAccountAuditConfigurationResponse`	object

Properties


                        auditCheckConfigurations

AuditCheckConfigurations

Which audit checks are enabled and disabled for this account.

AuditCheckConfigurations object

Properties


                        enabled

Enabled

True if this audit check is enabled for this account.

Enabled boolean

Extends

AuditCheckConfiguration

Which audit checks are enabled and disabled for this account.

Properties

Name Data Type Description


                        enabled

Enabled

True if this audit check is enabled for this account.

Enabled boolean


                        auditNotificationTargetConfigurations

AuditNotificationTargetConfigurations

Information about the targets to which audit notifications are sent for this account.

AuditNotificationTargetConfigurations object

Properties


                        enabled

Enabled

True if notifications to the target are enabled.

Enabled boolean


                        roleArn

RoleArn

The ARN of the role that grants permission to send notifications to the target.

RoleArn string
Minimum: 20
Maximum: 2048


                        targetArn

TargetArn

The ARN of the target (SNS topic) to which audit notifications are sent.

TargetArn string

Extends

AuditNotificationTarget

Information about the targets to which audit notifications are sent.

Properties

Name Data Type Description


                        enabled

Enabled

True if notifications to the target are enabled.

Enabled boolean


                        roleArn

RoleArn

The ARN of the role that grants permission to send notifications to the target.

RoleArn string
Minimum: 20
Maximum: 2048


                        targetArn

TargetArn

The ARN of the target (SNS topic) to which audit notifications are sent.

TargetArn string


                        roleArn

RoleArn

The ARN of the role that grants permission to AWS IoT to access information about your devices, policies, certificates, and other items as required when performing an audit.

On the first call to UpdateAccountAuditConfiguration, this parameter is required.

RoleArn string
Minimum: 20
Maximum: 2048

480ThrottlingException

Body

Name	Data Type	Description
`ThrottlingException`

481InternalFailureException

Body

Name	Data Type	Description
`InternalFailureException`

PATCH

/audit/configuration

Configures or reconfigures the Device Defender audit settings for this account. Settings include how audit notifications are sent and which audit checks are enabled or disabled.

Request

Header

Name	Data Type	Description
`X-Amz-SignedHeaders`	string
`X-Amz-Signature`	string
`X-Amz-Security-Token`	string
`X-Amz-Credential`	string
`X-Amz-Algorithm`	string
`X-Amz-Date`	string
`X-Amz-Content-Sha256`	string

Body

Name	Data Type	Description
`body`	object

Properties

`auditCheckConfigurations`	object	Specifies which audit checks are enabled and disabled for this account. Use `DescribeAccountAuditConfiguration` to see the list of all checks, including those that are currently enabled. Some data collection might start immediately when certain checks are enabled. When a check is disabled, any data collected so far in relation to the check is deleted. You cannot disable a check if it is used by any scheduled audit. You must first delete the check from the scheduled audit or delete the scheduled audit itself. On the first call to `UpdateAccountAuditConfiguration`, this parameter is required and must specify at least one enabled check.
`auditNotificationTargetConfigurations`	object	Information about the targets to which audit notifications are sent.
`roleArn`	string Minimum: 20 Maximum: 2048	The ARN of the role that grants permission to AWS IoT to access information about your devices, policies, certificates and other items as required when performing an audit.

Responses

200Success

Body

Name	Data Type	Description
`UpdateAccountAuditConfigurationResponse`	object

480InvalidRequestException

Body

Name	Data Type	Description
`InvalidRequestException`

481ThrottlingException

Body

Name	Data Type	Description
`ThrottlingException`

482InternalFailureException

Body

Name	Data Type	Description
`InternalFailureException`

GET

/audit/findings/{findingId}

Gets information about a single audit finding. Properties include the reason for noncompliance, the severity of the issue, and when the audit that returned the finding was started.

Request

Path

Name	Data Type	Description
`findingId`	string Pattern: `[a-zA-Z0-9_-]+` Minimum: 1 Maximum: 128	A unique identifier for a single audit finding. You can use this identifier to apply mitigation actions to the finding.

Header

Name	Data Type	Description
`X-Amz-SignedHeaders`	string
`X-Amz-Signature`	string
`X-Amz-Security-Token`	string
`X-Amz-Credential`	string
`X-Amz-Algorithm`	string
`X-Amz-Date`	string
`X-Amz-Content-Sha256`	string

Responses

200Success

Body

Name	Data Type	Description
`DescribeAuditFindingResponse`	object

Properties

finding AuditFinding


                        AuditFinding

object

The findings (results) of the audit.

Properties


                        reasonForNonComplianceCode

ReasonForNonComplianceCode

A code that indicates the reason that the resource was noncompliant.

ReasonForNonComplianceCode string


                        reasonForNonCompliance

ReasonForNonCompliance

The reason the resource was noncompliant.

ReasonForNonCompliance string


                        relatedResources

RelatedResources

The list of related resources.

RelatedResources array [RelatedResource]


                        nonCompliantResource

NonCompliantResource

The resource that was found to be noncompliant with the audit check.


                        NonCompliantResource

object

Information about the resource that was noncompliant with the audit check.

Properties

`additionalInfo`	StringMap	Other information about the noncompliant resource.
`resourceIdentifier`	ResourceIdentifier	Information that identifies the noncompliant resource.
`resourceType`	ResourceType	The type of the noncompliant resource.


                        severity

AuditFindingSeverity

The severity of the result (finding).

AuditFindingSeverity string
Allowed values:
- CRITICAL
- HIGH
- MEDIUM
- LOW


                        findingTime

Timestamp

The time the result (finding) was discovered.

Timestamp dateTime


                        taskStartTime

Timestamp

The time the audit started.

Timestamp dateTime


                        checkName

AuditCheckName

The audit check that generated this result.


                        AuditCheckName

string

An audit check name. Checks must be enabled for your account. (Use DescribeAccountAuditConfiguration to see the list of all checks, including those that are enabled or use UpdateAccountAuditConfiguration to select which checks are enabled.)


                        taskId

AuditTaskId

The ID of the audit that generated this result (finding).

AuditTaskId string
Pattern: [a-zA-Z0-9\-]+
Minimum: 1
Maximum: 40


                        findingId

FindingId

A unique identifier for this set of audit findings. This identifier is used to apply mitigation tasks to one or more sets of findings.

FindingId string
Pattern: [a-zA-Z0-9_-]+
Minimum: 1
Maximum: 128

480ResourceNotFoundException

Body

Name	Data Type	Description
`ResourceNotFoundException`

481InvalidRequestException

Body

Name	Data Type	Description
`InvalidRequestException`

482ThrottlingException

Body

Name	Data Type	Description
`ThrottlingException`

483InternalFailureException

Body

Name	Data Type	Description
`InternalFailureException`

POST

/audit/findings

Lists the findings (results) of a Device Defender audit or of the audits performed during a specified time period. (Findings are retained for 180 days.)

Request

Header

Name	Data Type	Description
`X-Amz-SignedHeaders`	string
`X-Amz-Signature`	string
`X-Amz-Security-Token`	string
`X-Amz-Credential`	string
`X-Amz-Algorithm`	string
`X-Amz-Date`	string
`X-Amz-Content-Sha256`	string

Body

Name	Data Type	Description
`body`	object

Properties

`endTime`	dateTime	A filter to limit results to those found before the specified time. You must specify either the startTime and endTime or the taskId, but not both.
`startTime`	dateTime	A filter to limit results to those found after the specified time. You must specify either the startTime and endTime or the taskId, but not both.
`nextToken`	string	The token for the next set of results.
`maxResults`	integer Minimum: 1 Maximum: 250	The maximum number of results to return at one time. The default is 25.
`resourceIdentifier`
`checkName`	string	An audit check name. Checks must be enabled for your account. (Use `DescribeAccountAuditConfiguration` to see the list of all checks, including those that are enabled or use `UpdateAccountAuditConfiguration` to select which checks are enabled.)
`taskId`	string Pattern: `[a-zA-Z0-9\-]+` Minimum: 1 Maximum: 40	A filter to limit results to the audit with the specified ID. You must specify either the taskId or the startTime and endTime, but not both.

Responses

200Success

Body

Name	Data Type	Description
`ListAuditFindingsResponse`	object

Properties


                        nextToken

NextToken

A token that can be used to retrieve the next set of results, or null if there are no additional results.

NextToken string


                        findings

AuditFindings

The findings (results) of the audit.

AuditFindings array [AuditFinding]


                        AuditFinding

object

The findings (results) of the audit.

Properties

`reasonForNonComplianceCode`	ReasonForNonComplianceCode	A code that indicates the reason that the resource was noncompliant.
`reasonForNonCompliance`	ReasonForNonCompliance	The reason the resource was noncompliant.
`relatedResources`	RelatedResources	The list of related resources.
`nonCompliantResource`	NonCompliantResource	The resource that was found to be noncompliant with the audit check.
`severity`	AuditFindingSeverity	The severity of the result (finding).
`findingTime`	Timestamp	The time the result (finding) was discovered.
`taskStartTime`	Timestamp	The time the audit started.
`checkName`	AuditCheckName	The audit check that generated this result.
`taskId`	AuditTaskId	The ID of the audit that generated this result (finding).
`findingId`	FindingId	A unique identifier for this set of audit findings. This identifier is used to apply mitigation tasks to one or more sets of findings.

480InvalidRequestException

Body

Name	Data Type	Description
`InvalidRequestException`

481ThrottlingException

Body

Name	Data Type	Description
`ThrottlingException`

482InternalFailureException

Body

Name	Data Type	Description
`InternalFailureException`

GET

/audit/mitigationactions/executions#taskId&findingId

Gets the status of audit mitigation action tasks that were executed.

Request

Query

Name	Data Type	Description
`nextToken`	string	The token for the next set of results.
`maxResults`	integer Minimum: 1 Maximum: 250	The maximum number of results to return at one time. The default is 25.
`findingId`	string Pattern: `[a-zA-Z0-9_-]+` Minimum: 1 Maximum: 128	Specify this filter to limit results to those that were applied to a specific audit finding.
`actionStatus`	string Allowed values: - `IN_PROGRESS` - `COMPLETED` - `FAILED` - `CANCELED` - `SKIPPED` - `PENDING`	Specify this filter to limit results to those with a specific status.
`taskId`	string Pattern: `[a-zA-Z0-9_-]+` Minimum: 1 Maximum: 128	Specify this filter to limit results to actions for a specific audit mitigation actions task.

Header

Name	Data Type	Description
`X-Amz-SignedHeaders`	string
`X-Amz-Signature`	string
`X-Amz-Security-Token`	string
`X-Amz-Credential`	string
`X-Amz-Algorithm`	string
`X-Amz-Date`	string
`X-Amz-Content-Sha256`	string

Responses

200Success

Body

Name	Data Type	Description
`ListAuditMitigationActionsExecutionsResponse`	object

Properties


                        nextToken

NextToken

The token for the next set of results.

NextToken string


                        actionsExecutions

AuditMitigationActionExecutionMetadataList

A set of task execution results based on the input parameters. Details include the mitigation action applied, start time, and task status.

AuditMitigationActionExecutionMetadataList array [AuditMitigationActionExecutionMetadata]


                        AuditMitigationActionExecutionMetadata

object

Returned by ListAuditMitigationActionsTask, this object contains information that describes a mitigation action that has been started.

Properties

`message`	ErrorMessage	If an error occurred, a message that describes the error.
`errorCode`	ErrorCode	If an error occurred, the code that indicates which type of error occurred.
`endTime`	Timestamp	The date and time when the task was completed or canceled. Blank if the task is still running.
`startTime`	Timestamp	The date and time when the task was started.
`status`	AuditMitigationActionsExecutionStatus	The current status of the task being executed.
`actionId`	MitigationActionId	The unique identifier for the mitigation action being applied by the task.
`actionName`	MitigationActionName	The friendly name of the mitigation action being applied by the task.
`findingId`	FindingId	The unique identifier for the findings to which the task and associated mitigation action are applied.
`taskId`	AuditMitigationActionsTaskId	The unique identifier for the task that applies the mitigation action.

480InvalidRequestException

Body

Name	Data Type	Description
`InvalidRequestException`

481ThrottlingException

Body

Name	Data Type	Description
`ThrottlingException`

482InternalFailureException

Body

Name	Data Type	Description
`InternalFailureException`

GET

/audit/mitigationactions/tasks#startTime&endTime

Gets a list of audit mitigation action tasks that match the specified filters.

Request

Query

Name	Data Type	Description
`endTime`	dateTime	Specify this filter to limit results to tasks that were completed or canceled on or before a specific date and time.
`startTime`	dateTime	Specify this filter to limit results to tasks that began on or after a specific date and time.
`nextToken`	string	The token for the next set of results.
`maxResults`	integer Minimum: 1 Maximum: 250	The maximum number of results to return at one time. The default is 25.
`taskStatus`	string Allowed values: - `IN_PROGRESS` - `COMPLETED` - `FAILED` - `CANCELED`	Specify this filter to limit results to tasks that are in a specific state.
`findingId`	string Pattern: `[a-zA-Z0-9_-]+` Minimum: 1 Maximum: 128	Specify this filter to limit results to tasks that were applied to a specific audit finding.
`auditTaskId`	string Pattern: `[a-zA-Z0-9\-]+` Minimum: 1 Maximum: 40	Specify this filter to limit results to tasks that were applied to results for a specific audit.

Header

Name	Data Type	Description
`X-Amz-SignedHeaders`	string
`X-Amz-Signature`	string
`X-Amz-Security-Token`	string
`X-Amz-Credential`	string
`X-Amz-Algorithm`	string
`X-Amz-Date`	string
`X-Amz-Content-Sha256`	string

Responses

200Success

Body

Name	Data Type	Description
`ListAuditMitigationActionsTasksResponse`	object

Properties


                        nextToken

NextToken

The token for the next set of results.

NextToken string


                        tasks

AuditMitigationActionsTaskMetadataList

The collection of audit mitigation tasks that matched the filter criteria.

AuditMitigationActionsTaskMetadataList array [AuditMitigationActionsTaskMetadata]


                        AuditMitigationActionsTaskMetadata

object

Information about an audit mitigation actions task that is returned by ListAuditMitigationActionsTasks.

Properties

`taskStatus`	AuditMitigationActionsTaskStatus	The current state of the audit mitigation actions task.
`startTime`	Timestamp	The time at which the audit mitigation actions task was started.
`taskId`	AuditMitigationActionsTaskId	The unique identifier for the task.

480InvalidRequestException

Body

Name	Data Type	Description
`InvalidRequestException`

481ThrottlingException

Body

Name	Data Type	Description
`ThrottlingException`

482InternalFailureException

Body

Name	Data Type	Description
`InternalFailureException`

PUT

/audit/mitigationactions/tasks/{taskId}/cancel

Cancels a mitigation action task that is in progress. If the task is not in progress, an InvalidRequestException occurs.

Request

Path

Name	Data Type	Description
`taskId`	string Pattern: `[a-zA-Z0-9_-]+` Minimum: 1 Maximum: 128	The unique identifier for the task that you want to cancel.

Header

Name	Data Type	Description
`X-Amz-SignedHeaders`	string
`X-Amz-Signature`	string
`X-Amz-Security-Token`	string
`X-Amz-Credential`	string
`X-Amz-Algorithm`	string
`X-Amz-Date`	string
`X-Amz-Content-Sha256`	string

Responses

200Success

Body

Name	Data Type	Description
`CancelAuditMitigationActionsTaskResponse`	object

480ResourceNotFoundException

Body

Name	Data Type	Description
`ResourceNotFoundException`

481InvalidRequestException

Body

Name	Data Type	Description
`InvalidRequestException`

482ThrottlingException

Body

Name	Data Type	Description
`ThrottlingException`

483InternalFailureException

Body

Name	Data Type	Description
`InternalFailureException`

GET

/audit/mitigationactions/tasks/{taskId}

Gets information about an audit mitigation task that is used to apply mitigation actions to a set of audit findings. Properties include the actions being applied, the audit checks to which they're being applied, the task status, and aggregated task statistics.

Request

Path

Name	Data Type	Description
`taskId`	string Pattern: `[a-zA-Z0-9_-]+` Minimum: 1 Maximum: 128	The unique identifier for the audit mitigation task.

Header

Name	Data Type	Description
`X-Amz-SignedHeaders`	string
`X-Amz-Signature`	string
`X-Amz-Security-Token`	string
`X-Amz-Credential`	string
`X-Amz-Algorithm`	string
`X-Amz-Date`	string
`X-Amz-Content-Sha256`	string

Responses

200Success

Body

Name	Data Type	Description
`DescribeAuditMitigationActionsTaskResponse`	object

Properties


                        actionsDefinition

MitigationActionList

Specifies the mitigation actions and their parameters that are applied as part of this task.

MitigationActionList array [MitigationAction]


                        MitigationAction

object

Describes which changes should be applied as part of a mitigation action.

Properties

`actionParams`	MitigationActionParams	The set of parameters for this mitigation action. The parameters vary, depending on the kind of action you apply.
`roleArn`	RoleArn	The IAM role ARN used to apply this mitigation action.
`id`	MitigationActionId	A unique identifier for the mitigation action.
`name`	MitigationActionName	A user-friendly name for the mitigation action.


                        auditCheckToActionsMapping

AuditCheckToActionsMapping

Specifies the mitigation actions that should be applied to specific audit checks.

AuditCheckToActionsMapping object

Extends

MitigationActionNameList

Name Data Type Description

MitigationActionNameList array [MitigationActionName]
Pattern: [a-zA-Z0-9_-]+
Maximum: 128

MitigationActionName string
Pattern: [a-zA-Z0-9_-]+
Maximum: 128


                        target

AuditMitigationActionsTaskTarget

Identifies the findings to which the mitigation actions are applied. This can be by audit checks, by audit task, or a set of findings.


                        AuditMitigationActionsTaskTarget

object

Used in MitigationActionParams, this information identifies the target findings to which the mitigation actions are applied. Only one entry appears.

Properties


                        auditCheckToReasonCodeFilter

AuditCheckToReasonCodeFilter

Specifies a filter in the form of an audit check and set of reason codes that identify the findings from the audit to which the audit mitigation actions task apply.

AuditCheckToReasonCodeFilter object

Extends

ReasonForNonComplianceCodes

Name Data Type Description

ReasonForNonComplianceCodes array [ReasonForNonComplianceCode]

ReasonForNonComplianceCode string


                        findingIds

FindingIds

If the task will apply a mitigation action to one or more listed findings, this value uniquely identifies those findings.

FindingIds array [FindingId]
Pattern: [a-zA-Z0-9_-]+
Minimum: 1
Maximum: 128


                        auditTaskId

AuditTaskId

If the task will apply a mitigation action to findings from a specific audit, this value uniquely identifies the audit.

AuditTaskId string
Pattern: [a-zA-Z0-9\-]+
Minimum: 1
Maximum: 40


                        taskStatistics

AuditMitigationActionsTaskStatistics

Aggregate counts of the results when the mitigation tasks were applied to the findings for this audit mitigation actions task.

AuditMitigationActionsTaskStatistics object

Properties


                        canceledFindingsCount

CanceledFindingsCount

The number of findings to which the mitigation action task was canceled when applied.

CanceledFindingsCount integer


                        skippedFindingsCount

SkippedFindingsCount

The number of findings skipped because of filter conditions provided in the parameters to the command.

SkippedFindingsCount integer


                        succeededFindingsCount

SucceededFindingsCount

The number of findings for which all mitigation actions succeeded when applied.

SucceededFindingsCount integer


                        failedFindingsCount

FailedFindingsCount

The number of findings for which at least one of the actions failed when applied.

FailedFindingsCount integer


                        totalFindingsCount

TotalFindingsCount

The total number of findings to which a task is being applied.

TotalFindingsCount integer

Extends

TaskStatisticsForAuditCheck

Provides summary counts of how many tasks for findings are in a particular state. This information is included in the response from DescribeAuditMitigationActionsTask.

Properties

Name Data Type Description


                        canceledFindingsCount

CanceledFindingsCount

The number of findings to which the mitigation action task was canceled when applied.

CanceledFindingsCount integer


                        skippedFindingsCount

SkippedFindingsCount

The number of findings skipped because of filter conditions provided in the parameters to the command.

SkippedFindingsCount integer


                        succeededFindingsCount

SucceededFindingsCount

The number of findings for which all mitigation actions succeeded when applied.

SucceededFindingsCount integer


                        failedFindingsCount

FailedFindingsCount

The number of findings for which at least one of the actions failed when applied.

FailedFindingsCount integer


                        totalFindingsCount

TotalFindingsCount

The total number of findings to which a task is being applied.

TotalFindingsCount integer


                        endTime

Timestamp

The date and time when the task was completed or canceled.

Timestamp dateTime


                        startTime

Timestamp

The date and time when the task was started.

Timestamp dateTime


                        taskStatus

AuditMitigationActionsTaskStatus

The current status of the task.

AuditMitigationActionsTaskStatus string
Allowed values:
- IN_PROGRESS
- COMPLETED
- FAILED
- CANCELED

480InvalidRequestException

Body

Name	Data Type	Description
`InvalidRequestException`

481ResourceNotFoundException

Body

Name	Data Type	Description
`ResourceNotFoundException`

482ThrottlingException

Body

Name	Data Type	Description
`ThrottlingException`

483InternalFailureException

Body

Name	Data Type	Description
`InternalFailureException`

POST

/audit/mitigationactions/tasks/{taskId}

Starts a task that applies a set of mitigation actions to the specified target.

Request

Path

Name	Data Type	Description
`taskId`	string Pattern: `[a-zA-Z0-9_-]+` Minimum: 1 Maximum: 128	A unique identifier for the task. You can use this identifier to check the status of the task or to cancel it.

Header

Name	Data Type	Description
`X-Amz-SignedHeaders`	string
`X-Amz-Signature`	string
`X-Amz-Security-Token`	string
`X-Amz-Credential`	string
`X-Amz-Algorithm`	string
`X-Amz-Date`	string
`X-Amz-Content-Sha256`	string

Body

Name	Data Type	Description
`body`	object

Properties

`clientRequestToken`	string Pattern: `^[a-zA-Z0-9-_]+$` Minimum: 1 Maximum: 64	Each audit mitigation task must have a unique client request token. If you try to start a new task with the same token as a task that already exists, an exception occurs. If you omit this value, a unique client request token is generated automatically.
`auditCheckToActionsMapping`	object	For an audit check, specifies which mitigation actions to apply. Those actions must be defined in your AWS account.
`target`

Responses

200Success

Body

Name	Data Type	Description
`StartAuditMitigationActionsTaskResponse`	object

Properties


                        taskId

AuditMitigationActionsTaskId

The unique identifier for the audit mitigation task. This matches the taskId that you specified in the request.

AuditMitigationActionsTaskId string
Pattern: [a-zA-Z0-9_-]+
Minimum: 1
Maximum: 128

480InvalidRequestException

Body

Name	Data Type	Description
`InvalidRequestException`

481TaskAlreadyExistsException

Body

Name	Data Type	Description
`TaskAlreadyExistsException`

482LimitExceededException

Body

Name	Data Type	Description
`LimitExceededException`

483ThrottlingException

Body

Name	Data Type	Description
`ThrottlingException`

484InternalFailureException

Body

Name	Data Type	Description
`InternalFailureException`

DELETE

/audit/scheduledaudits/{scheduledAuditName}

Deletes a scheduled audit.

Request

Path

Name	Data Type	Description
`scheduledAuditName`	string Pattern: `[a-zA-Z0-9_-]+` Minimum: 1 Maximum: 128	The name of the scheduled audit you want to delete.

Header

Name	Data Type	Description
`X-Amz-SignedHeaders`	string
`X-Amz-Signature`	string
`X-Amz-Security-Token`	string
`X-Amz-Credential`	string
`X-Amz-Algorithm`	string
`X-Amz-Date`	string
`X-Amz-Content-Sha256`	string

Responses

200Success

Body

Name	Data Type	Description
`DeleteScheduledAuditResponse`	object

480InvalidRequestException

Body

Name	Data Type	Description
`InvalidRequestException`

481ResourceNotFoundException

Body

Name	Data Type	Description
`ResourceNotFoundException`

482ThrottlingException

Body

Name	Data Type	Description
`ThrottlingException`

483InternalFailureException

Body

Name	Data Type	Description
`InternalFailureException`

GET

/audit/scheduledaudits/{scheduledAuditName}

Gets information about a scheduled audit.

Request

Path

Name	Data Type	Description
`scheduledAuditName`	string Pattern: `[a-zA-Z0-9_-]+` Minimum: 1 Maximum: 128	The name of the scheduled audit whose information you want to get.

Header

Name	Data Type	Description
`X-Amz-SignedHeaders`	string
`X-Amz-Signature`	string
`X-Amz-Security-Token`	string
`X-Amz-Credential`	string
`X-Amz-Algorithm`	string
`X-Amz-Date`	string
`X-Amz-Content-Sha256`	string

Responses

200Success

Body

Name	Data Type	Description
`DescribeScheduledAuditResponse`	object

Properties


                        scheduledAuditArn

ScheduledAuditArn

The ARN of the scheduled audit.

ScheduledAuditArn string


                        scheduledAuditName

ScheduledAuditName

The name of the scheduled audit.

ScheduledAuditName string
Pattern: [a-zA-Z0-9_-]+
Minimum: 1
Maximum: 128


                        targetCheckNames

TargetAuditCheckNames

Which checks are performed during the scheduled audit. Checks must be enabled for your account. (Use DescribeAccountAuditConfiguration to see the list of all checks, including those that are enabled or use UpdateAccountAuditConfiguration to select which checks are enabled.)

TargetAuditCheckNames array [AuditCheckName]


                        AuditCheckName

string

An audit check name. Checks must be enabled for your account. (Use DescribeAccountAuditConfiguration to see the list of all checks, including those that are enabled or use UpdateAccountAuditConfiguration to select which checks are enabled.)


                        dayOfWeek

DayOfWeek

The day of the week on which the scheduled audit takes place. One of "SUN", "MON", "TUE", "WED", "THU", "FRI", or "SAT".

DayOfWeek string
Allowed values:
- SUN
- MON
- TUE
- WED
- THU
- FRI
- SAT


                        dayOfMonth

DayOfMonth

The day of the month on which the scheduled audit takes place. Will be "1" through "31" or "LAST". If days 29-31 are specified, and the month does not have that many days, the audit takes place on the "LAST" day of the month.

DayOfMonth string
Pattern: ^([1-9]|[12][0-9]|3[01])$|^LAST$


                        frequency

AuditFrequency

How often the scheduled audit takes place. One of "DAILY", "WEEKLY", "BIWEEKLY", or "MONTHLY". The start time of each audit is determined by the system.

AuditFrequency string
Allowed values:
- DAILY
- WEEKLY
- BIWEEKLY
- MONTHLY

480InvalidRequestException

Body

Name	Data Type	Description
`InvalidRequestException`

481ResourceNotFoundException

Body

Name	Data Type	Description
`ResourceNotFoundException`

482ThrottlingException

Body

Name	Data Type	Description
`ThrottlingException`

483InternalFailureException

Body

Name	Data Type	Description
`InternalFailureException`

PATCH

/audit/scheduledaudits/{scheduledAuditName}

Updates a scheduled audit, including which checks are performed and how often the audit takes place.

Request

Path

Name	Data Type	Description
`scheduledAuditName`	string Pattern: `[a-zA-Z0-9_-]+` Minimum: 1 Maximum: 128	The name of the scheduled audit. (Max. 128 chars)

Header

Name	Data Type	Description
`X-Amz-SignedHeaders`	string
`X-Amz-Signature`	string
`X-Amz-Security-Token`	string
`X-Amz-Credential`	string
`X-Amz-Algorithm`	string
`X-Amz-Date`	string
`X-Amz-Content-Sha256`	string

Body

Name	Data Type	Description
`body`	object

Properties


                        targetCheckNames

array [AuditCheckName]

Which checks are performed during the scheduled audit. Checks must be enabled for your account. (Use DescribeAccountAuditConfiguration to see the list of all checks, including those that are enabled or use UpdateAccountAuditConfiguration to select which checks are enabled.)


                        AuditCheckName

string

An audit check name. Checks must be enabled for your account. (Use DescribeAccountAuditConfiguration to see the list of all checks, including those that are enabled or use UpdateAccountAuditConfiguration to select which checks are enabled.)


                        dayOfWeek

string
Allowed values:
- SUN
- MON
- TUE
- WED
- THU
- FRI
- SAT

The day of the week on which the scheduled audit takes place. Can be one of "SUN", "MON", "TUE", "WED", "THU", "FRI", or "SAT". This field is required if the "frequency" parameter is set to "WEEKLY" or "BIWEEKLY".


                        dayOfMonth

string
Pattern: ^([1-9]|[12][0-9]|3[01])$|^LAST$

The day of the month on which the scheduled audit takes place. Can be "1" through "31" or "LAST". This field is required if the "frequency" parameter is set to "MONTHLY". If days 29-31 are specified, and the month does not have that many days, the audit takes place on the "LAST" day of the month.


                        frequency

string
Allowed values:
- DAILY
- WEEKLY
- BIWEEKLY
- MONTHLY

How often the scheduled audit takes place. Can be one of "DAILY", "WEEKLY", "BIWEEKLY", or "MONTHLY". The start time of each audit is determined by the system.

Responses

200Success

Body

Name	Data Type	Description
`UpdateScheduledAuditResponse`	object

Properties


                        scheduledAuditArn

ScheduledAuditArn

The ARN of the scheduled audit.

ScheduledAuditArn string

480InvalidRequestException

Body

Name	Data Type	Description
`InvalidRequestException`

481ResourceNotFoundException

Body

Name	Data Type	Description
`ResourceNotFoundException`

482ThrottlingException

Body

Name	Data Type	Description
`ThrottlingException`

483InternalFailureException

Body

Name	Data Type	Description
`InternalFailureException`

POST

/audit/scheduledaudits/{scheduledAuditName}

Creates a scheduled audit that is run at a specified time interval.

Request

Path

Name	Data Type	Description
`scheduledAuditName`	string Pattern: `[a-zA-Z0-9_-]+` Minimum: 1 Maximum: 128	The name you want to give to the scheduled audit. (Max. 128 chars)

Header

Name	Data Type	Description
`X-Amz-SignedHeaders`	string
`X-Amz-Signature`	string
`X-Amz-Security-Token`	string
`X-Amz-Credential`	string
`X-Amz-Algorithm`	string
`X-Amz-Date`	string
`X-Amz-Content-Sha256`	string

Body

Name	Data Type	Description
`body`	object

Properties


                        tags

array [Tag]

Metadata that can be used to manage the scheduled audit.

Tag

object

A set of key/value pairs that are used to manage the resource.

Properties


                        Value

TagValue

The tag's value.

TagValue string

Key

TagKey

The tag's key.

TagKey string


                        targetCheckNames

array [AuditCheckName]

Which checks are performed during the scheduled audit. Checks must be enabled for your account. (Use DescribeAccountAuditConfiguration to see the list of all checks, including those that are enabled or use UpdateAccountAuditConfiguration to select which checks are enabled.)


                        AuditCheckName

string

An audit check name. Checks must be enabled for your account. (Use DescribeAccountAuditConfiguration to see the list of all checks, including those that are enabled or use UpdateAccountAuditConfiguration to select which checks are enabled.)


                        dayOfWeek

string
Allowed values:
- SUN
- MON
- TUE
- WED
- THU
- FRI
- SAT

The day of the week on which the scheduled audit takes place. Can be one of "SUN", "MON", "TUE", "WED", "THU", "FRI", or "SAT". This field is required if the "frequency" parameter is set to "WEEKLY" or "BIWEEKLY".


                        dayOfMonth

string
Pattern: ^([1-9]|[12][0-9]|3[01])$|^LAST$

The day of the month on which the scheduled audit takes place. Can be "1" through "31" or "LAST". This field is required if the "frequency" parameter is set to "MONTHLY". If days 29-31 are specified, and the month does not have that many days, the audit takes place on the "LAST" day of the month.


                        frequency

string
Allowed values:
- DAILY
- WEEKLY
- BIWEEKLY
- MONTHLY

How often the scheduled audit takes place. Can be one of "DAILY", "WEEKLY", "BIWEEKLY" or "MONTHLY". The start time of each audit is determined by the system.

Responses

200Success

Body

Name	Data Type	Description
`CreateScheduledAuditResponse`	object

Properties


                        scheduledAuditArn

ScheduledAuditArn

The ARN of the scheduled audit.

ScheduledAuditArn string

480InvalidRequestException

Body

Name	Data Type	Description
`InvalidRequestException`

481ResourceAlreadyExistsException

Body

Name	Data Type	Description
`ResourceAlreadyExistsException`

482ThrottlingException

Body

Name	Data Type	Description
`ThrottlingException`

483InternalFailureException

Body

Name	Data Type	Description
`InternalFailureException`

484LimitExceededException

Body

Name	Data Type	Description
`LimitExceededException`

GET

/audit/scheduledaudits

Lists all of your scheduled audits.

Request

Query

Name	Data Type	Description
`maxResults`	integer Minimum: 1 Maximum: 250	The maximum number of results to return at one time. The default is 25.
`nextToken`	string	The token for the next set of results.

Header

Name	Data Type	Description
`X-Amz-SignedHeaders`	string
`X-Amz-Signature`	string
`X-Amz-Security-Token`	string
`X-Amz-Credential`	string
`X-Amz-Algorithm`	string
`X-Amz-Date`	string
`X-Amz-Content-Sha256`	string

Responses

200Success

Body

Name	Data Type	Description
`ListScheduledAuditsResponse`	object

Properties


                        nextToken

NextToken

A token that can be used to retrieve the next set of results, or null if there are no additional results.

NextToken string


                        scheduledAudits

ScheduledAuditMetadataList

The list of scheduled audits.

ScheduledAuditMetadataList array [ScheduledAuditMetadata]


                        ScheduledAuditMetadata

object

Information about the scheduled audit.

Properties

`dayOfWeek`	DayOfWeek	The day of the week on which the scheduled audit is run (if the `frequency` is "WEEKLY" or "BIWEEKLY").
`dayOfMonth`	DayOfMonth	The day of the month on which the scheduled audit is run (if the `frequency` is "MONTHLY"). If days 29-31 are specified, and the month does not have that many days, the audit takes place on the "LAST" day of the month.
`frequency`	AuditFrequency	How often the scheduled audit occurs.
`scheduledAuditArn`	ScheduledAuditArn	The ARN of the scheduled audit.
`scheduledAuditName`	ScheduledAuditName	The name of the scheduled audit.

480InvalidRequestException

Body

Name	Data Type	Description
`InvalidRequestException`

481ThrottlingException

Body

Name	Data Type	Description
`ThrottlingException`

482InternalFailureException

Body

Name	Data Type	Description
`InternalFailureException`

GET

/audit/tasks#startTime&endTime

Lists the Device Defender audits that have been performed during a given time period.

Request

Query

Name	Data Type	Description
`maxResults`	integer Minimum: 1 Maximum: 250	The maximum number of results to return at one time. The default is 25.
`nextToken`	string	The token for the next set of results.
`taskStatus`	string Allowed values: - `IN_PROGRESS` - `COMPLETED` - `FAILED` - `CANCELED`	A filter to limit the output to audits with the specified completion status: can be one of "IN_PROGRESS", "COMPLETED", "FAILED", or "CANCELED".
`taskType`	string Allowed values: - `ON_DEMAND_AUDIT_TASK` - `SCHEDULED_AUDIT_TASK`	A filter to limit the output to the specified type of audit: can be one of "ON_DEMAND_AUDIT_TASK" or "SCHEDULED__AUDIT_TASK".
`endTime`	dateTime	The end of the time period.
`startTime`	dateTime	The beginning of the time period. Audit information is retained for a limited time (180 days). Requesting a start time prior to what is retained results in an "InvalidRequestException".

Header

Name	Data Type	Description
`X-Amz-SignedHeaders`	string
`X-Amz-Signature`	string
`X-Amz-Security-Token`	string
`X-Amz-Credential`	string
`X-Amz-Algorithm`	string
`X-Amz-Date`	string
`X-Amz-Content-Sha256`	string

Responses

200Success

Body

Name	Data Type	Description
`ListAuditTasksResponse`	object

Properties


                        nextToken

NextToken

A token that can be used to retrieve the next set of results, or null if there are no additional results.

NextToken string


                        tasks

AuditTaskMetadataList

The audits that were performed during the specified time period.

AuditTaskMetadataList array [AuditTaskMetadata]


                        AuditTaskMetadata

object

The audits that were performed.

Properties

`taskType`	AuditTaskType	The type of this audit. One of "ON_DEMAND_AUDIT_TASK" or "SCHEDULED_AUDIT_TASK".
`taskStatus`	AuditTaskStatus	The status of this audit. One of "IN_PROGRESS", "COMPLETED", "FAILED", or "CANCELED".
`taskId`	AuditTaskId	The ID of this audit.

480InvalidRequestException

Body

Name	Data Type	Description
`InvalidRequestException`

481ThrottlingException

Body

Name	Data Type	Description
`ThrottlingException`

482InternalFailureException

Body

Name	Data Type	Description
`InternalFailureException`

PUT

/audit/tasks/{taskId}/cancel

Cancels an audit that is in progress. The audit can be either scheduled or on-demand. If the audit is not in progress, an "InvalidRequestException" occurs.

Request

Path

Name	Data Type	Description
`taskId`	string Pattern: `[a-zA-Z0-9\-]+` Minimum: 1 Maximum: 40	The ID of the audit you want to cancel. You can only cancel an audit that is "IN_PROGRESS".

Header

Name	Data Type	Description
`X-Amz-SignedHeaders`	string
`X-Amz-Signature`	string
`X-Amz-Security-Token`	string
`X-Amz-Credential`	string
`X-Amz-Algorithm`	string
`X-Amz-Date`	string
`X-Amz-Content-Sha256`	string

Responses

200Success

Body

Name	Data Type	Description
`CancelAuditTaskResponse`	object

480ResourceNotFoundException

Body

Name	Data Type	Description
`ResourceNotFoundException`

481InvalidRequestException

Body

Name	Data Type	Description
`InvalidRequestException`

482ThrottlingException

Body

Name	Data Type	Description
`ThrottlingException`

483InternalFailureException

Body

Name	Data Type	Description
`InternalFailureException`

GET

/audit/tasks/{taskId}

Gets information about a Device Defender audit.

Request

Path

Name	Data Type	Description
`taskId`	string Pattern: `[a-zA-Z0-9\-]+` Minimum: 1 Maximum: 40	The ID of the audit whose information you want to get.

Header

Name	Data Type	Description
`X-Amz-SignedHeaders`	string
`X-Amz-Signature`	string
`X-Amz-Security-Token`	string
`X-Amz-Credential`	string
`X-Amz-Algorithm`	string
`X-Amz-Date`	string
`X-Amz-Content-Sha256`	string

Responses

200Success

Body

Name	Data Type	Description
`DescribeAuditTaskResponse`	object

Properties


                        auditDetails

AuditDetails

Detailed information about each check performed during this audit.

AuditDetails object

Properties


                        message

ErrorMessage

The message associated with any error encountered when this check is performed during this audit.

ErrorMessage string
Maximum: 2048


                        errorCode

ErrorCode

The code of any error encountered when this check is performed during this audit. One of "INSUFFICIENT_PERMISSIONS" or "AUDIT_CHECK_DISABLED".

ErrorCode string


                        nonCompliantResourcesCount

NonCompliantResourcesCount

The number of resources that were found noncompliant during the check.

NonCompliantResourcesCount integer


                        totalResourcesCount

TotalResourcesCount

The number of resources on which the check was performed.

TotalResourcesCount integer


                        checkCompliant

CheckCompliant

True if the check is complete and found all resources compliant.

CheckCompliant boolean


                        checkRunStatus

AuditCheckRunStatus

The completion status of this check. One of "IN_PROGRESS", "WAITING_FOR_DATA_COLLECTION", "CANCELED", "COMPLETED_COMPLIANT", "COMPLETED_NON_COMPLIANT", or "FAILED".

AuditCheckRunStatus string
Allowed values:
- IN_PROGRESS
- WAITING_FOR_DATA_COLLECTION
- CANCELED
- COMPLETED_COMPLIANT
- COMPLETED_NON_COMPLIANT
- FAILED

Extends

AuditCheckDetails

Information about the audit check.

Properties

Name Data Type Description


                        message

ErrorMessage

The message associated with any error encountered when this check is performed during this audit.

ErrorMessage string
Maximum: 2048


                        errorCode

ErrorCode

The code of any error encountered when this check is performed during this audit. One of "INSUFFICIENT_PERMISSIONS" or "AUDIT_CHECK_DISABLED".

ErrorCode string


                        nonCompliantResourcesCount

NonCompliantResourcesCount

The number of resources that were found noncompliant during the check.

NonCompliantResourcesCount integer


                        totalResourcesCount

TotalResourcesCount

The number of resources on which the check was performed.

TotalResourcesCount integer


                        checkCompliant

CheckCompliant

True if the check is complete and found all resources compliant.

CheckCompliant boolean


                        checkRunStatus

AuditCheckRunStatus

The completion status of this check. One of "IN_PROGRESS", "WAITING_FOR_DATA_COLLECTION", "CANCELED", "COMPLETED_COMPLIANT", "COMPLETED_NON_COMPLIANT", or "FAILED".

AuditCheckRunStatus string
Allowed values:
- IN_PROGRESS
- WAITING_FOR_DATA_COLLECTION
- CANCELED
- COMPLETED_COMPLIANT
- COMPLETED_NON_COMPLIANT
- FAILED


                        scheduledAuditName

ScheduledAuditName

The name of the scheduled audit (only if the audit was a scheduled audit).

ScheduledAuditName string
Pattern: [a-zA-Z0-9_-]+
Minimum: 1
Maximum: 128


                        taskStatistics

TaskStatistics

Statistical information about the audit.


                        TaskStatistics

object

Statistics for the checks performed during the audit.

Properties


                        canceledChecks

CanceledChecksCount

The number of checks that did not run because the audit was canceled.

CanceledChecksCount integer


                        failedChecks

FailedChecksCount

The number of checks.

FailedChecksCount integer


                        nonCompliantChecks

NonCompliantChecksCount

The number of checks that found noncompliant resources.

NonCompliantChecksCount integer


                        compliantChecks

CompliantChecksCount

The number of checks that found compliant resources.

CompliantChecksCount integer


                        waitingForDataCollectionChecks

WaitingForDataCollectionChecksCount

The number of checks waiting for data collection.

WaitingForDataCollectionChecksCount integer


                        inProgressChecks

InProgressChecksCount

The number of checks in progress.

InProgressChecksCount integer


                        totalChecks

TotalChecksCount

The number of checks in this audit.

TotalChecksCount integer


                        taskStartTime

Timestamp

The time the audit started.

Timestamp dateTime


                        taskType

AuditTaskType

The type of audit: "ON_DEMAND_AUDIT_TASK" or "SCHEDULED_AUDIT_TASK".

AuditTaskType string
Allowed values:
- ON_DEMAND_AUDIT_TASK
- SCHEDULED_AUDIT_TASK


                        taskStatus

AuditTaskStatus

The status of the audit: one of "IN_PROGRESS", "COMPLETED", "FAILED", or "CANCELED".

AuditTaskStatus string
Allowed values:
- IN_PROGRESS
- COMPLETED
- FAILED
- CANCELED

480InvalidRequestException

Body

Name	Data Type	Description
`InvalidRequestException`

481ResourceNotFoundException

Body

Name	Data Type	Description
`ResourceNotFoundException`

482ThrottlingException

Body

Name	Data Type	Description
`ThrottlingException`

483InternalFailureException

Body

Name	Data Type	Description
`InternalFailureException`

POST

/audit/tasks

Starts an on-demand Device Defender audit.

Request

Header

Name	Data Type	Description
`X-Amz-SignedHeaders`	string
`X-Amz-Signature`	string
`X-Amz-Security-Token`	string
`X-Amz-Credential`	string
`X-Amz-Algorithm`	string
`X-Amz-Date`	string
`X-Amz-Content-Sha256`	string

Body

Name	Data Type	Description
`body`	object

Properties


                        targetCheckNames

array [AuditCheckName]

Which checks are performed during the audit. The checks you specify must be enabled for your account or an exception occurs. Use DescribeAccountAuditConfiguration to see the list of all checks, including those that are enabled or UpdateAccountAuditConfiguration to select which checks are enabled.


                        AuditCheckName

string

An audit check name. Checks must be enabled for your account. (Use DescribeAccountAuditConfiguration to see the list of all checks, including those that are enabled or use UpdateAccountAuditConfiguration to select which checks are enabled.)

Responses

200Success

Body

Name	Data Type	Description
`StartOnDemandAuditTaskResponse`	object

Properties


                        taskId

AuditTaskId

The ID of the on-demand audit you started.

AuditTaskId string
Pattern: [a-zA-Z0-9\-]+
Minimum: 1
Maximum: 40

480InvalidRequestException

Body

Name	Data Type	Description
`InvalidRequestException`

481ThrottlingException

Body

Name	Data Type	Description
`ThrottlingException`

482InternalFailureException

Body

Name	Data Type	Description
`InternalFailureException`

483LimitExceededException

Body

Name	Data Type	Description
`LimitExceededException`

POST

/authorizer/{authorizerName}/test

Tests a custom authorization behavior by invoking a specified custom authorizer. Use this to test and debug the custom authorization behavior of devices that connect to the AWS IoT device gateway.

Request

Path

Name	Data Type	Description
`authorizerName`	string Pattern: `[\w=,@-]+` Minimum: 1 Maximum: 128	The custom authorizer name.

Header

Name	Data Type	Description
`X-Amz-SignedHeaders`	string
`X-Amz-Signature`	string
`X-Amz-Security-Token`	string
`X-Amz-Credential`	string
`X-Amz-Algorithm`	string
`X-Amz-Date`	string
`X-Amz-Content-Sha256`	string

Body

Name	Data Type	Description
`body`	object

Properties

`tokenSignature`	string Pattern: `[A-Za-z0-9+/]+={0,2}` Minimum: 1 Maximum: 2560	The signature made with the token and your custom authentication service's private key.
`token`	string Minimum: 1 Maximum: 6144	The token returned by your custom authentication service.

Responses

200Success

Body

Name	Data Type	Description
`TestInvokeAuthorizerResponse`	object

Properties


                        disconnectAfterInSeconds

Seconds

The number of seconds after which the connection is terminated.

Seconds integer


                        refreshAfterInSeconds

Seconds

The number of seconds after which the temporary credentials are refreshed.

Seconds integer


                        policyDocuments

PolicyDocuments

IAM policy documents.

PolicyDocuments array [PolicyDocument]

PolicyDocument string


                        principalId

PrincipalId

The principal ID.

PrincipalId string
Pattern: [a-zA-Z0-9]+
Minimum: 1
Maximum: 128


                        isAuthenticated

IsAuthenticated

True if the token is authenticated, otherwise false.

IsAuthenticated boolean

480ResourceNotFoundException

Body

Name	Data Type	Description
`ResourceNotFoundException`

481InvalidRequestException

Body

Name	Data Type	Description
`InvalidRequestException`

482ThrottlingException

Body

Name	Data Type	Description
`ThrottlingException`

483UnauthorizedException

Body

Name	Data Type	Description
`UnauthorizedException`

484ServiceUnavailableException

Body

Name	Data Type	Description
`ServiceUnavailableException`

485InternalFailureException

Body

Name	Data Type	Description
`InternalFailureException`

486InvalidResponseException

Body

Name	Data Type	Description
`InvalidResponseException`

DELETE

/authorizer/{authorizerName}

Deletes an authorizer.

Request

Path

Name	Data Type	Description
`authorizerName`	string Pattern: `[\w=,@-]+` Minimum: 1 Maximum: 128	The name of the authorizer to delete.

Header

Name	Data Type	Description
`X-Amz-SignedHeaders`	string
`X-Amz-Signature`	string
`X-Amz-Security-Token`	string
`X-Amz-Credential`	string
`X-Amz-Algorithm`	string
`X-Amz-Date`	string
`X-Amz-Content-Sha256`	string

Responses

200Success

Body

Name	Data Type	Description
`DeleteAuthorizerResponse`	object

480DeleteConflictException

Body

Name	Data Type	Description
`DeleteConflictException`

481ResourceNotFoundException

Body

Name	Data Type	Description
`ResourceNotFoundException`

482InvalidRequestException

Body

Name	Data Type	Description
`InvalidRequestException`

483ThrottlingException

Body

Name	Data Type	Description
`ThrottlingException`

484UnauthorizedException

Body

Name	Data Type	Description
`UnauthorizedException`

485ServiceUnavailableException

Body

Name	Data Type	Description
`ServiceUnavailableException`

486InternalFailureException

Body

Name	Data Type	Description
`InternalFailureException`

GET

/authorizer/{authorizerName}

Describes an authorizer.

Request

Path

Name	Data Type	Description
`authorizerName`	string Pattern: `[\w=,@-]+` Minimum: 1 Maximum: 128	The name of the authorizer to describe.

Header

Name	Data Type	Description
`X-Amz-SignedHeaders`	string
`X-Amz-Signature`	string
`X-Amz-Security-Token`	string
`X-Amz-Credential`	string
`X-Amz-Algorithm`	string
`X-Amz-Date`	string
`X-Amz-Content-Sha256`	string

Responses

200Success

Body

Name	Data Type	Description
`DescribeAuthorizerResponse`	object

Properties


                        authorizerDescription

AuthorizerDescription

The authorizer description.


                        AuthorizerDescription

object

The authorizer description.

Properties


                        lastModifiedDate

DateType

The UNIX timestamp of when the authorizer was last updated.

DateType dateTime


                        creationDate

DateType

The UNIX timestamp of when the authorizer was created.

DateType dateTime


                        status

AuthorizerStatus

The status of the authorizer.

AuthorizerStatus string
Allowed values:
- ACTIVE
- INACTIVE


                        tokenSigningPublicKeys

PublicKeyMap

The public keys used to validate the token signature returned by your custom authentication service.

PublicKeyMap object

Extends

KeyValue

Name	Data Type	Description
`KeyValue`	string Maximum: 5120


                        tokenKeyName

TokenKeyName

The key used to extract the token from the HTTP headers.

TokenKeyName string
Pattern: [a-zA-Z0-9_-]+
Minimum: 1
Maximum: 128


                        authorizerFunctionArn

AuthorizerFunctionArn

The authorizer's Lambda function ARN.

AuthorizerFunctionArn string


                        authorizerArn

AuthorizerArn

The authorizer ARN.

AuthorizerArn string


                        authorizerName

AuthorizerName

The authorizer name.

AuthorizerName string
Pattern: [\w=,@-]+
Minimum: 1
Maximum: 128

480ResourceNotFoundException

Body

Name	Data Type	Description
`ResourceNotFoundException`

481InvalidRequestException

Body

Name	Data Type	Description
`InvalidRequestException`

482ThrottlingException

Body

Name	Data Type	Description
`ThrottlingException`

483UnauthorizedException

Body

Name	Data Type	Description
`UnauthorizedException`

484ServiceUnavailableException

Body

Name	Data Type	Description
`ServiceUnavailableException`

485InternalFailureException

Body

Name	Data Type	Description
`InternalFailureException`

POST

/authorizer/{authorizerName}

Creates an authorizer.

Request

Path

Name	Data Type	Description
`authorizerName`	string Pattern: `[\w=,@-]+` Minimum: 1 Maximum: 128	The authorizer name.

Header

Name	Data Type	Description
`X-Amz-SignedHeaders`	string
`X-Amz-Signature`	string
`X-Amz-Security-Token`	string
`X-Amz-Credential`	string
`X-Amz-Algorithm`	string
`X-Amz-Date`	string
`X-Amz-Content-Sha256`	string

Body

Name	Data Type	Description
`body`	object

Properties

`status`	string Allowed values: - `ACTIVE` - `INACTIVE`	The status of the create authorizer request.
`tokenSigningPublicKeys`	object	The public keys used to verify the digital signature returned by your custom authentication service.
`tokenKeyName`	string Pattern: `[a-zA-Z0-9_-]+` Minimum: 1 Maximum: 128	The name of the token key used to extract the token from the HTTP headers.
`authorizerFunctionArn`	string	The ARN of the authorizer's Lambda function.

Responses

200Success

Body

Name	Data Type	Description
`CreateAuthorizerResponse`	object

Properties


                        authorizerArn

AuthorizerArn

The authorizer ARN.

AuthorizerArn string


                        authorizerName

AuthorizerName

The authorizer's name.

AuthorizerName string
Pattern: [\w=,@-]+
Minimum: 1
Maximum: 128

480ResourceAlreadyExistsException

Body

Name	Data Type	Description
`ResourceAlreadyExistsException`

481InvalidRequestException

Body

Name	Data Type	Description
`InvalidRequestException`

482LimitExceededException

Body

Name	Data Type	Description
`LimitExceededException`

483ThrottlingException

Body

Name	Data Type	Description
`ThrottlingException`

484UnauthorizedException

Body

Name	Data Type	Description
`UnauthorizedException`

485ServiceUnavailableException

Body

Name	Data Type	Description
`ServiceUnavailableException`

486InternalFailureException

Body

Name	Data Type	Description
`InternalFailureException`

PUT

/authorizer/{authorizerName}

Updates an authorizer.

Request

Path

Name	Data Type	Description
`authorizerName`	string Pattern: `[\w=,@-]+` Minimum: 1 Maximum: 128	The authorizer name.

Header

Name	Data Type	Description
`X-Amz-SignedHeaders`	string
`X-Amz-Signature`	string
`X-Amz-Security-Token`	string
`X-Amz-Credential`	string
`X-Amz-Algorithm`	string
`X-Amz-Date`	string
`X-Amz-Content-Sha256`	string

Body

Name	Data Type	Description
`body`	object

Properties

`status`	string Allowed values: - `ACTIVE` - `INACTIVE`	The status of the update authorizer request.
`tokenSigningPublicKeys`	object	The public keys used to verify the token signature.
`tokenKeyName`	string Pattern: `[a-zA-Z0-9_-]+` Minimum: 1 Maximum: 128	The key used to extract the token from the HTTP headers.
`authorizerFunctionArn`	string	The ARN of the authorizer's Lambda function.

Responses

200Success

Body

Name	Data Type	Description
`UpdateAuthorizerResponse`	object

Properties


                        authorizerArn

AuthorizerArn

The authorizer ARN.

AuthorizerArn string


                        authorizerName

AuthorizerName

The authorizer name.

AuthorizerName string
Pattern: [\w=,@-]+
Minimum: 1
Maximum: 128

480ResourceNotFoundException

Body

Name	Data Type	Description
`ResourceNotFoundException`

481InvalidRequestException

Body

Name	Data Type	Description
`InvalidRequestException`

482LimitExceededException

Body

Name	Data Type	Description
`LimitExceededException`

483ThrottlingException

Body

Name	Data Type	Description
`ThrottlingException`

484UnauthorizedException

Body

Name	Data Type	Description
`UnauthorizedException`

485ServiceUnavailableException

Body

Name	Data Type	Description
`ServiceUnavailableException`

486InternalFailureException

Body

Name	Data Type	Description
`InternalFailureException`

GET

/authorizers/

Lists the authorizers registered in your account.

Request

Query

Name	Data Type	Description
`status`	string Allowed values: - `ACTIVE` - `INACTIVE`	The status of the list authorizers request.
`isAscendingOrder`	boolean	Return the list of authorizers in ascending alphabetical order.
`marker`	string Pattern: `[A-Za-z0-9+/]+={0,2}`	A marker used to get the next set of results.
`pageSize`	integer Minimum: 1 Maximum: 250	The maximum number of results to return at one time.

Header

Name	Data Type	Description
`X-Amz-SignedHeaders`	string
`X-Amz-Signature`	string
`X-Amz-Security-Token`	string
`X-Amz-Credential`	string
`X-Amz-Algorithm`	string
`X-Amz-Date`	string
`X-Amz-Content-Sha256`	string

Responses

200Success

Body

Name	Data Type	Description
`ListAuthorizersResponse`	object

Properties


                        nextMarker

Marker

A marker used to get the next set of results.

Marker string
Pattern: [A-Za-z0-9+/]+={0,2}


                        authorizers

Authorizers

The authorizers.

Authorizers array [AuthorizerSummary]


                        AuthorizerSummary

object

The authorizer summary.

Properties

`authorizerArn`	AuthorizerArn	The authorizer ARN.
`authorizerName`	AuthorizerName	The authorizer name.

480InvalidRequestException

Body

Name	Data Type	Description
`InvalidRequestException`

481ThrottlingException

Body

Name	Data Type	Description
`ThrottlingException`

482UnauthorizedException

Body

Name	Data Type	Description
`UnauthorizedException`

483ServiceUnavailableException

Body

Name	Data Type	Description
`ServiceUnavailableException`

484InternalFailureException

Body

Name	Data Type	Description
`InternalFailureException`

PUT

/billing-groups/addThingToBillingGroup

Adds a thing to a billing group.

Request

Header

Name	Data Type	Description
`X-Amz-SignedHeaders`	string
`X-Amz-Signature`	string
`X-Amz-Security-Token`	string
`X-Amz-Credential`	string
`X-Amz-Algorithm`	string
`X-Amz-Date`	string
`X-Amz-Content-Sha256`	string

Body

Name	Data Type	Description
`body`	object

Properties

`thingArn`	string	The ARN of the thing to be added to the billing group.
`thingName`	string Pattern: `[a-zA-Z0-9:_-]+` Minimum: 1 Maximum: 128	The name of the thing to be added to the billing group.
`billingGroupArn`	string	The ARN of the billing group.
`billingGroupName`	string Pattern: `[a-zA-Z0-9:_-]+` Minimum: 1 Maximum: 128	The name of the billing group.

Responses

200Success

Body

Name	Data Type	Description
`AddThingToBillingGroupResponse`	object

480InvalidRequestException

Body

Name	Data Type	Description
`InvalidRequestException`

481ThrottlingException

Body

Name	Data Type	Description
`ThrottlingException`

482InternalFailureException

Body

Name	Data Type	Description
`InternalFailureException`

483ResourceNotFoundException

Body

Name	Data Type	Description
`ResourceNotFoundException`

PUT

/billing-groups/removeThingFromBillingGroup

Removes the given thing from the billing group.

Request

Header

Name	Data Type	Description
`X-Amz-SignedHeaders`	string
`X-Amz-Signature`	string
`X-Amz-Security-Token`	string
`X-Amz-Credential`	string
`X-Amz-Algorithm`	string
`X-Amz-Date`	string
`X-Amz-Content-Sha256`	string

Body

Name	Data Type	Description
`body`	object

Properties

`thingArn`	string	The ARN of the thing to be removed from the billing group.
`thingName`	string Pattern: `[a-zA-Z0-9:_-]+` Minimum: 1 Maximum: 128	The name of the thing to be removed from the billing group.
`billingGroupArn`	string	The ARN of the billing group.
`billingGroupName`	string Pattern: `[a-zA-Z0-9:_-]+` Minimum: 1 Maximum: 128	The name of the billing group.

Responses

200Success

Body

Name	Data Type	Description
`RemoveThingFromBillingGroupResponse`	object

480InvalidRequestException

Body

Name	Data Type	Description
`InvalidRequestException`

481ThrottlingException

Body

Name	Data Type	Description
`ThrottlingException`

482InternalFailureException

Body

Name	Data Type	Description
`InternalFailureException`

483ResourceNotFoundException

Body

Name	Data Type	Description
`ResourceNotFoundException`

GET

/billing-groups/{billingGroupName}/things

Lists the things you have added to the given billing group.

Request

Path

Name	Data Type	Description
`billingGroupName`	string Pattern: `[a-zA-Z0-9:_-]+` Minimum: 1 Maximum: 128	The name of the billing group.

Query

Name	Data Type	Description
`maxResults`	integer Minimum: 1 Maximum: 250	The maximum number of results to return per request.
`nextToken`	string	The token to retrieve the next set of results.

Header

Name	Data Type	Description
`X-Amz-SignedHeaders`	string
`X-Amz-Signature`	string
`X-Amz-Security-Token`	string
`X-Amz-Credential`	string
`X-Amz-Algorithm`	string
`X-Amz-Date`	string
`X-Amz-Content-Sha256`	string

Responses

200Success

Body

Name	Data Type	Description
`ListThingsInBillingGroupResponse`	object

Properties


                        nextToken

NextToken

The token used to get the next set of results, or null if there are no additional results.

NextToken string


                        things

ThingNameList

A list of things in the billing group.

ThingNameList array [ThingName]
Pattern: [a-zA-Z0-9:_-]+
Minimum: 1
Maximum: 128

ThingName string
Pattern: [a-zA-Z0-9:_-]+
Minimum: 1
Maximum: 128

480InvalidRequestException

Body

Name	Data Type	Description
`InvalidRequestException`

481InternalFailureException

Body

Name	Data Type	Description
`InternalFailureException`

482ResourceNotFoundException

Body

Name	Data Type	Description
`ResourceNotFoundException`

483ThrottlingException

Body

Name	Data Type	Description
`ThrottlingException`

DELETE

/billing-groups/{billingGroupName}

Deletes the billing group.

Request

Path

Name	Data Type	Description
`billingGroupName`	string Pattern: `[a-zA-Z0-9:_-]+` Minimum: 1 Maximum: 128	The name of the billing group.

Query

Name	Data Type	Description
`expectedVersion`	integer	The expected version of the billing group. If the version of the billing group does not match the expected version specified in the request, the `DeleteBillingGroup` request is rejected with a `VersionConflictException`.

Header

Name	Data Type	Description
`X-Amz-SignedHeaders`	string
`X-Amz-Signature`	string
`X-Amz-Security-Token`	string
`X-Amz-Credential`	string
`X-Amz-Algorithm`	string
`X-Amz-Date`	string
`X-Amz-Content-Sha256`	string

Responses

200Success

Body

Name	Data Type	Description
`DeleteBillingGroupResponse`	object

480InvalidRequestException

Body

Name	Data Type	Description
`InvalidRequestException`

481VersionConflictException

Body

Name	Data Type	Description
`VersionConflictException`

482ThrottlingException

Body

Name	Data Type	Description
`ThrottlingException`

483InternalFailureException

Body

Name	Data Type	Description
`InternalFailureException`

GET

/billing-groups/{billingGroupName}

Returns information about a billing group.

Request

Path

Name	Data Type	Description
`billingGroupName`	string Pattern: `[a-zA-Z0-9:_-]+` Minimum: 1 Maximum: 128	The name of the billing group.

Header

Name	Data Type	Description
`X-Amz-SignedHeaders`	string
`X-Amz-Signature`	string
`X-Amz-Security-Token`	string
`X-Amz-Credential`	string
`X-Amz-Algorithm`	string
`X-Amz-Date`	string
`X-Amz-Content-Sha256`	string

Responses

200Success

Body

Name	Data Type	Description
`DescribeBillingGroupResponse`	object

Properties


                        billingGroupMetadata

BillingGroupMetadata

Additional information about the billing group.


                        BillingGroupMetadata

object

Additional information about the billing group.

Properties


                        creationDate

CreationDate

The date the billing group was created.

CreationDate dateTime


                        billingGroupProperties

BillingGroupProperties

The properties of the billing group.


                        BillingGroupProperties

object

The properties of a billing group.

Properties


                        billingGroupDescription

BillingGroupDescription

The description of the billing group.

BillingGroupDescription string
Pattern: [\p{Graph}\x20]*
Maximum: 2028


                        version

Version

The version of the billing group.

Version integer


                        billingGroupArn

BillingGroupArn

The ARN of the billing group.

BillingGroupArn string


                        billingGroupId

BillingGroupId

The ID of the billing group.

BillingGroupId string
Pattern: [a-zA-Z0-9\-]+
Minimum: 1
Maximum: 128


                        billingGroupName

BillingGroupName

The name of the billing group.

BillingGroupName string
Pattern: [a-zA-Z0-9:_-]+
Minimum: 1
Maximum: 128

480InvalidRequestException

Body

Name	Data Type	Description
`InvalidRequestException`

481ThrottlingException

Body

Name	Data Type	Description
`ThrottlingException`

482InternalFailureException

Body

Name	Data Type	Description
`InternalFailureException`

483ResourceNotFoundException

Body

Name	Data Type	Description
`ResourceNotFoundException`

PATCH

/billing-groups/{billingGroupName}

Updates information about the billing group.

Request

Path

Name	Data Type	Description
`billingGroupName`	string Pattern: `[a-zA-Z0-9:_-]+` Minimum: 1 Maximum: 128	The name of the billing group.

Header

Name	Data Type	Description
`X-Amz-SignedHeaders`	string
`X-Amz-Signature`	string
`X-Amz-Security-Token`	string
`X-Amz-Credential`	string
`X-Amz-Algorithm`	string
`X-Amz-Date`	string
`X-Amz-Content-Sha256`	string

Body

Name	Data Type	Description
`body`	object

Properties

`expectedVersion`	integer	The expected version of the billing group. If the version of the billing group does not match the expected version specified in the request, the `UpdateBillingGroup` request is rejected with a `VersionConflictException`.
`billingGroupProperties`

Responses

200Success

Body

Name	Data Type	Description
`UpdateBillingGroupResponse`	object

Properties


                        version

Version

The latest version of the billing group.

Version integer

480InvalidRequestException

Body

Name	Data Type	Description
`InvalidRequestException`

481VersionConflictException

Body

Name	Data Type	Description
`VersionConflictException`

482ThrottlingException

Body

Name	Data Type	Description
`ThrottlingException`

483InternalFailureException

Body

Name	Data Type	Description
`InternalFailureException`

484ResourceNotFoundException

Body

Name	Data Type	Description
`ResourceNotFoundException`

POST

/billing-groups/{billingGroupName}

Creates a billing group.

Request

Path

Name	Data Type	Description
`billingGroupName`	string Pattern: `[a-zA-Z0-9:_-]+` Minimum: 1 Maximum: 128	The name you wish to give to the billing group.

Header

Name	Data Type	Description
`X-Amz-SignedHeaders`	string
`X-Amz-Signature`	string
`X-Amz-Security-Token`	string
`X-Amz-Credential`	string
`X-Amz-Algorithm`	string
`X-Amz-Date`	string
`X-Amz-Content-Sha256`	string

Body

Name	Data Type	Description
`body`	object

Properties


                        tags

array [Tag]

Metadata which can be used to manage the billing group.

Tag

object

A set of key/value pairs that are used to manage the resource.

Properties


                        Value

TagValue

The tag's value.

TagValue string

Key

TagKey

The tag's key.

TagKey string

billingGroupProperties

Responses

200Success

Body

Name	Data Type	Description
`CreateBillingGroupResponse`	object

Properties


                        billingGroupId

BillingGroupId

The ID of the billing group.

BillingGroupId string
Pattern: [a-zA-Z0-9\-]+
Minimum: 1
Maximum: 128


                        billingGroupArn

BillingGroupArn

The ARN of the billing group.

BillingGroupArn string


                        billingGroupName

BillingGroupName

The name you gave to the billing group.

BillingGroupName string
Pattern: [a-zA-Z0-9:_-]+
Minimum: 1
Maximum: 128

480InvalidRequestException

Body

Name	Data Type	Description
`InvalidRequestException`

481ResourceAlreadyExistsException

Body

Name	Data Type	Description
`ResourceAlreadyExistsException`

482ThrottlingException

Body

Name	Data Type	Description
`ThrottlingException`

483InternalFailureException

Body

Name	Data Type	Description
`InternalFailureException`

GET

/billing-groups

Lists the billing groups you have created.

Request

Query

Name	Data Type	Description
`namePrefixFilter`	string Pattern: `[a-zA-Z0-9:_-]+` Minimum: 1 Maximum: 128	Limit the results to billing groups whose names have the given prefix.
`maxResults`	integer Minimum: 1 Maximum: 250	The maximum number of results to return per request.
`nextToken`	string	The token to retrieve the next set of results.

Header

Name	Data Type	Description
`X-Amz-SignedHeaders`	string
`X-Amz-Signature`	string
`X-Amz-Security-Token`	string
`X-Amz-Credential`	string
`X-Amz-Algorithm`	string
`X-Amz-Date`	string
`X-Amz-Content-Sha256`	string

Responses

200Success

Body

Name	Data Type	Description
`ListBillingGroupsResponse`	object

Properties


                        nextToken

NextToken

The token used to get the next set of results, or null if there are no additional results.

NextToken string


                        billingGroups

BillingGroupNameAndArnList

The list of billing groups.

BillingGroupNameAndArnList array [GroupNameAndArn]


                        GroupNameAndArn

object

The name and ARN of a group.

Properties

`groupArn`	ThingGroupArn	The group ARN.
`groupName`	ThingGroupName	The group name.

480InvalidRequestException

Body

Name	Data Type	Description
`InvalidRequestException`

481InternalFailureException

Body

Name	Data Type	Description
`InternalFailureException`

482ResourceNotFoundException

Body

Name	Data Type	Description
`ResourceNotFoundException`

483ThrottlingException

Body

Name	Data Type	Description
`ThrottlingException`

DELETE

/cacertificate/{caCertificateId}

Deletes a registered CA certificate.

Request

Path

Name	Data Type	Description
`caCertificateId`	string Pattern: `(0x)?[a-fA-F0-9]+` Minimum: 64 Maximum: 64	The ID of the certificate to delete. (The last part of the certificate ARN contains the certificate ID.)

Header

Name	Data Type	Description
`X-Amz-SignedHeaders`	string
`X-Amz-Signature`	string
`X-Amz-Security-Token`	string
`X-Amz-Credential`	string
`X-Amz-Algorithm`	string
`X-Amz-Date`	string
`X-Amz-Content-Sha256`	string

Responses

200Success

Body

Name	Data Type	Description
`DeleteCACertificateResponse`	object	The output for the DeleteCACertificate operation.

480InvalidRequestException

Body

Name	Data Type	Description
`InvalidRequestException`

481CertificateStateException

Body

Name	Data Type	Description
`CertificateStateException`

482ThrottlingException

Body

Name	Data Type	Description
`ThrottlingException`

483UnauthorizedException

Body

Name	Data Type	Description
`UnauthorizedException`

484ServiceUnavailableException

Body

Name	Data Type	Description
`ServiceUnavailableException`

485InternalFailureException

Body

Name	Data Type	Description
`InternalFailureException`

486ResourceNotFoundException

Body

Name	Data Type	Description
`ResourceNotFoundException`

GET

/cacertificate/{caCertificateId}

Describes a registered CA certificate.

Request

Path

Name	Data Type	Description
`caCertificateId`	string Pattern: `(0x)?[a-fA-F0-9]+` Minimum: 64 Maximum: 64	The CA certificate identifier.

Header

Name	Data Type	Description
`X-Amz-SignedHeaders`	string
`X-Amz-Signature`	string
`X-Amz-Security-Token`	string
`X-Amz-Credential`	string
`X-Amz-Algorithm`	string
`X-Amz-Date`	string
`X-Amz-Content-Sha256`	string

Responses

200Success

Body

Name	Data Type	Description
`DescribeCACertificateResponse`	object	The output from the DescribeCACertificate operation.

Properties


                        registrationConfig

RegistrationConfig

Information about the registration configuration.


                        RegistrationConfig

object

The registration configuration.

Properties


                        roleArn

RoleArn

The ARN of the role.

RoleArn string
Minimum: 20
Maximum: 2048


                        templateBody

TemplateBody

The template body.

TemplateBody string


                        certificateDescription

CACertificateDescription

The CA certificate description.


                        CACertificateDescription

object

Describes a CA certificate.

Properties


                        validity

CertificateValidity

When the CA certificate is valid.


                        CertificateValidity

object

When the certificate is valid.

Properties

`notAfter`	DateType	The certificate is not valid after this date.
`notBefore`	DateType	The certificate is not valid before this date.


                        generationId

GenerationId

The generation ID of the CA certificate.

GenerationId string


                        customerVersion

CustomerVersion

The customer version of the CA certificate.

CustomerVersion integer
Minimum: 1


                        lastModifiedDate

DateType

The date the CA certificate was last modified.

DateType dateTime


                        autoRegistrationStatus

AutoRegistrationStatus

Whether the CA certificate configured for auto registration of device certificates. Valid values are "ENABLE" and "DISABLE"

AutoRegistrationStatus string
Allowed values:
- ENABLE
- DISABLE


                        creationDate

DateType

The date the CA certificate was created.

DateType dateTime


                        ownedBy

AwsAccountId

The owner of the CA certificate.

AwsAccountId string
Pattern: [0-9]+
Minimum: 12
Maximum: 12


                        certificatePem

CertificatePem

The CA certificate data, in PEM format.


                        CertificatePem

string
Minimum: 1
Maximum: 65536

The PEM of a certificate.


                        status

CACertificateStatus

The status of a CA certificate.

CACertificateStatus string
Allowed values:
- ACTIVE
- INACTIVE


                        certificateId

CertificateId

The CA certificate ID.

CertificateId string
Pattern: (0x)?[a-fA-F0-9]+
Minimum: 64
Maximum: 64


                        certificateArn

CertificateArn

The CA certificate ARN.

CertificateArn string

480InvalidRequestException

Body

Name	Data Type	Description
`InvalidRequestException`

481ThrottlingException

Body

Name	Data Type	Description
`ThrottlingException`

482UnauthorizedException

Body

Name	Data Type	Description
`UnauthorizedException`

483ServiceUnavailableException

Body

Name	Data Type	Description
`ServiceUnavailableException`

484InternalFailureException

Body

Name	Data Type	Description
`InternalFailureException`

485ResourceNotFoundException

Body

Name	Data Type	Description
`ResourceNotFoundException`

PUT

/cacertificate/{caCertificateId}

Updates a registered CA certificate.

Request

Path

Name	Data Type	Description
`caCertificateId`	string Pattern: `(0x)?[a-fA-F0-9]+` Minimum: 64 Maximum: 64	The CA certificate identifier.

Query

Name	Data Type	Description
`newAutoRegistrationStatus`	string Allowed values: - `ENABLE` - `DISABLE`	The new value for the auto registration status. Valid values are: "ENABLE" or "DISABLE".
`newStatus`	string Allowed values: - `ACTIVE` - `INACTIVE`	The updated status of the CA certificate. Note: The status value REGISTER_INACTIVE is deprecated and should not be used.

Header

Name	Data Type	Description
`X-Amz-SignedHeaders`	string
`X-Amz-Signature`	string
`X-Amz-Security-Token`	string
`X-Amz-Credential`	string
`X-Amz-Algorithm`	string
`X-Amz-Date`	string
`X-Amz-Content-Sha256`	string

Body

Name	Data Type	Description
`body`	object

Properties

`removeAutoRegistration`	boolean	If true, removes auto registration.
`registrationConfig`

Responses

200Success

480ResourceNotFoundException

Body

Name	Data Type	Description
`ResourceNotFoundException`

481InvalidRequestException

Body

Name	Data Type	Description
`InvalidRequestException`

482ThrottlingException

Body

Name	Data Type	Description
`ThrottlingException`

483UnauthorizedException

Body

Name	Data Type	Description
`UnauthorizedException`

484ServiceUnavailableException

Body

Name	Data Type	Description
`ServiceUnavailableException`

485InternalFailureException

Body

Name	Data Type	Description
`InternalFailureException`

POST

/cacertificate

Registers a CA certificate with AWS IoT. This CA certificate can then be used to sign device certificates, which can be then registered with AWS IoT. You can register up to 10 CA certificates per AWS account that have the same subject field. This enables you to have up to 10 certificate authorities sign your device certificates. If you have more than one CA certificate registered, make sure you pass the CA certificate when you register your device certificates with the RegisterCertificate API.

Request

Query

Name	Data Type	Description
`allowAutoRegistration`	boolean	Allows this CA certificate to be used for auto registration of device certificates.
`setAsActive`	boolean	A boolean value that specifies if the CA certificate is set to active.

Header

Name	Data Type	Description
`X-Amz-SignedHeaders`	string
`X-Amz-Signature`	string
`X-Amz-Security-Token`	string
`X-Amz-Credential`	string
`X-Amz-Algorithm`	string
`X-Amz-Date`	string
`X-Amz-Content-Sha256`	string

Body

Name	Data Type	Description
`body`	object

Properties

`registrationConfig`
`verificationCertificate`	string Minimum: 1 Maximum: 65536	The PEM of a certificate.
`caCertificate`	string Minimum: 1 Maximum: 65536	The PEM of a certificate.