policy_associations_list_only
Lists policy_associations in a region or regions, for all properties use policy_associations
Overview
| Name | policy_associations_list_only |
| Type | Resource |
| Description | The AWS::SecurityHub::PolicyAssociation resource represents the AWS Security Hub Central Configuration Policy associations in your Target. Only the AWS Security Hub delegated administrator can create the resouce from the home region. |
| Id | aws.securityhub.policy_associations_list_only |
Fields
| Name | Datatype | Description |
|---|---|---|
configuration_policy_id | string | The universally unique identifier (UUID) of the configuration policy or a value of SELF_MANAGED_SECURITY_HUB for a self-managed configuration |
association_status | string | The current status of the association between the specified target and the configuration |
association_type | string | Indicates whether the association between the specified target and the configuration was directly applied by the Security Hub delegated administrator or inherited from a parent |
association_status_message | string | An explanation for a FAILED value for AssociationStatus |
target_id | string | The identifier of the target account, organizational unit, or the root |
target_type | string | Indicates whether the target is an AWS account, organizational unit, or the organization root |
updated_at | string | The date and time, in UTC and ISO 8601 format, that the configuration policy association was last updated |
association_identifier | string | A unique identifier to indicates if the target has an association |
region | string | AWS region. |
Methods
| Name | Accessible by | Required Params |
|---|---|---|
list_resources | SELECT | region |
SELECT examples
Lists all policy_associations in a region.
SELECT
region,
association_identifier
FROM aws.securityhub.policy_associations_list_only
WHERE region = 'us-east-1';
Permissions
For permissions required to operate on the policy_associations_list_only resource, see policy_associations