Amazon Macie 2

2021/03/22 - Amazon Macie 2 - 2 new api methods

Changes  This release of the Amazon Macie API adds support for publishing sensitive data findings to AWS Security Hub and specifying which categories of findings to publish to Security Hub.

GetFindingsPublicationConfiguration (new) Link ¶

Retrieves the configuration settings for publishing findings to AWS Security Hub.

See also: AWS API Documentation

Request Syntax

client.get_findings_publication_configuration()
rtype:

dict

returns:

Response Syntax

{
    'securityHubConfiguration': {
        'publishClassificationFindings': True|False,
        'publishPolicyFindings': True|False
    }
}

Response Structure

  • (dict) --

    The request succeeded.

    • securityHubConfiguration (dict) --

      The configuration settings that determine which findings are published to AWS Security Hub.

      • publishClassificationFindings (boolean) --

        Specifies whether to publish sensitive data findings to AWS Security Hub. If you set this value to true, Amazon Macie automatically publishes all sensitive data findings that weren't suppressed by a findings filter. The default value is false.

      • publishPolicyFindings (boolean) --

        Specifies whether to publish policy findings to AWS Security Hub. If you set this value to true, Amazon Macie automatically publishes all new and updated policy findings that weren't suppressed by a findings filter. The default value is true.

PutFindingsPublicationConfiguration (new) Link ¶

Updates the configuration settings for publishing findings to AWS Security Hub.

See also: AWS API Documentation

Request Syntax

client.put_findings_publication_configuration(
    clientToken='string',
    securityHubConfiguration={
        'publishClassificationFindings': True|False,
        'publishPolicyFindings': True|False
    }
)
type clientToken:

string

param clientToken:

A unique, case-sensitive token that you provide to ensure the idempotency of the request.

This field is autopopulated if not provided.

type securityHubConfiguration:

dict

param securityHubConfiguration:

The configuration settings that determine which findings to publish to AWS Security Hub.

  • publishClassificationFindings (boolean) -- [REQUIRED]

    Specifies whether to publish sensitive data findings to AWS Security Hub. If you set this value to true, Amazon Macie automatically publishes all sensitive data findings that weren't suppressed by a findings filter. The default value is false.

  • publishPolicyFindings (boolean) -- [REQUIRED]

    Specifies whether to publish policy findings to AWS Security Hub. If you set this value to true, Amazon Macie automatically publishes all new and updated policy findings that weren't suppressed by a findings filter. The default value is true.

rtype:

dict

returns:

Response Syntax

{}

Response Structure

  • (dict) --

    The request succeeded and there isn't any content to include in the body of the response (No Content).