AWS Cloud Control v1.26.0, Mar 12 25

We recommend new projects start with resources from the AWS provider.

AWS Cloud Control v1.26.0 published on Wednesday, Mar 12, 2025 by Pulumi

pulumi/pulumi-aws-native

aws-native.securityhub.getFindingAggregator

Explore with Pulumi AI

We recommend new projects start with resources from the AWS provider.

AWS Cloud Control v1.26.0 published on Wednesday, Mar 12, 2025 by Pulumi

pulumi/pulumi-aws-native

The AWS::SecurityHub::FindingAggregator resource enables cross-Region aggregation. When cross-Region aggregation is enabled, you can aggregate findings, finding updates, insights, control compliance statuses, and security scores from one or more linked Regions to a single aggregation Region. You can then view and manage all of this data from the aggregation Region. For more details about cross-Region aggregation, see Cross-Region aggregation in the User Guide This resource must be created in the Region that you want to designate as your aggregation Region. Cross-Region aggregation is also a prerequisite for using central configuration in ASH.

Using getFindingAggregator

Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.

function getFindingAggregator(args: GetFindingAggregatorArgs, opts?: InvokeOptions): Promise<GetFindingAggregatorResult>
function getFindingAggregatorOutput(args: GetFindingAggregatorOutputArgs, opts?: InvokeOptions): Output<GetFindingAggregatorResult>

def get_finding_aggregator(finding_aggregator_arn: Optional[str] = None,
                           opts: Optional[InvokeOptions] = None) -> GetFindingAggregatorResult
def get_finding_aggregator_output(finding_aggregator_arn: Optional[pulumi.Input[str]] = None,
                           opts: Optional[InvokeOptions] = None) -> Output[GetFindingAggregatorResult]

func LookupFindingAggregator(ctx *Context, args *LookupFindingAggregatorArgs, opts ...InvokeOption) (*LookupFindingAggregatorResult, error)
func LookupFindingAggregatorOutput(ctx *Context, args *LookupFindingAggregatorOutputArgs, opts ...InvokeOption) LookupFindingAggregatorResultOutput

> Note: This function is named LookupFindingAggregator in the Go SDK.

public static class GetFindingAggregator 
{
    public static Task<GetFindingAggregatorResult> InvokeAsync(GetFindingAggregatorArgs args, InvokeOptions? opts = null)
    public static Output<GetFindingAggregatorResult> Invoke(GetFindingAggregatorInvokeArgs args, InvokeOptions? opts = null)
}

public static CompletableFuture<GetFindingAggregatorResult> getFindingAggregator(GetFindingAggregatorArgs args, InvokeOptions options)
public static Output<GetFindingAggregatorResult> getFindingAggregator(GetFindingAggregatorArgs args, InvokeOptions options)

fn::invoke:
  function: aws-native:securityhub:getFindingAggregator
  arguments:
    # arguments dictionary

The following arguments are supported:

FindingAggregatorArn string: The ARN of the finding aggregator. You use the finding aggregator ARN to retrieve details for, update, and delete the finding aggregator.

FindingAggregatorArn string: The ARN of the finding aggregator. You use the finding aggregator ARN to retrieve details for, update, and delete the finding aggregator.

findingAggregatorArn String: The ARN of the finding aggregator. You use the finding aggregator ARN to retrieve details for, update, and delete the finding aggregator.

findingAggregatorArn string: The ARN of the finding aggregator. You use the finding aggregator ARN to retrieve details for, update, and delete the finding aggregator.

finding_aggregator_arn str: The ARN of the finding aggregator. You use the finding aggregator ARN to retrieve details for, update, and delete the finding aggregator.

findingAggregatorArn String: The ARN of the finding aggregator. You use the finding aggregator ARN to retrieve details for, update, and delete the finding aggregator.

getFindingAggregator Result

The following output properties are available:

FindingAggregationRegion string

The home Region. Findings generated in linked Regions are replicated and sent to the home Region.

FindingAggregatorArn string

The ARN of the finding aggregator. You use the finding aggregator ARN to retrieve details for, update, and delete the finding aggregator.

RegionLinkingMode Pulumi.AwsNative.SecurityHub.FindingAggregatorRegionLinkingMode

Indicates whether to aggregate findings from all of the available Regions in the current partition. Also determines whether to automatically aggregate findings from new Regions as Security Hub supports them and you opt into them. The selected option also determines how to use the Regions provided in the Regions list. In CFN, the options for this property are as follows:

ALL_REGIONS - Indicates to aggregate findings from all of the Regions where Security Hub is enabled. When you choose this option, Security Hub also automatically aggregates findings from new Regions as Security Hub supports them and you opt into them.
ALL_REGIONS_EXCEPT_SPECIFIED - Indicates to aggregate findings from all of the Regions where Security Hub is enabled, except for the Regions listed in the Regions parameter. When you choose this option, Security Hub also automatically aggregates findings from new Regions as Security Hub supports them and you opt into them.
SPECIFIED_REGIONS - Indicates to aggregate findings only from the Regions listed in the Regions parameter. Security Hub does not automatically aggregate findings from new Regions.

Regions List<string>

If RegionLinkingMode is ALL_REGIONS_EXCEPT_SPECIFIED, then this is a space-separated list of Regions that do not aggregate findings to the aggregation Region. If RegionLinkingMode is SPECIFIED_REGIONS, then this is a space-separated list of Regions that do aggregate findings to the aggregation Region.

FindingAggregationRegion string

The home Region. Findings generated in linked Regions are replicated and sent to the home Region.

FindingAggregatorArn string

The ARN of the finding aggregator. You use the finding aggregator ARN to retrieve details for, update, and delete the finding aggregator.

RegionLinkingMode FindingAggregatorRegionLinkingMode

ALL_REGIONS - Indicates to aggregate findings from all of the Regions where Security Hub is enabled. When you choose this option, Security Hub also automatically aggregates findings from new Regions as Security Hub supports them and you opt into them.
ALL_REGIONS_EXCEPT_SPECIFIED - Indicates to aggregate findings from all of the Regions where Security Hub is enabled, except for the Regions listed in the Regions parameter. When you choose this option, Security Hub also automatically aggregates findings from new Regions as Security Hub supports them and you opt into them.
SPECIFIED_REGIONS - Indicates to aggregate findings only from the Regions listed in the Regions parameter. Security Hub does not automatically aggregate findings from new Regions.

Regions []string

findingAggregationRegion String

The home Region. Findings generated in linked Regions are replicated and sent to the home Region.

findingAggregatorArn String

The ARN of the finding aggregator. You use the finding aggregator ARN to retrieve details for, update, and delete the finding aggregator.

regionLinkingMode FindingAggregatorRegionLinkingMode

ALL_REGIONS - Indicates to aggregate findings from all of the Regions where Security Hub is enabled. When you choose this option, Security Hub also automatically aggregates findings from new Regions as Security Hub supports them and you opt into them.
ALL_REGIONS_EXCEPT_SPECIFIED - Indicates to aggregate findings from all of the Regions where Security Hub is enabled, except for the Regions listed in the Regions parameter. When you choose this option, Security Hub also automatically aggregates findings from new Regions as Security Hub supports them and you opt into them.
SPECIFIED_REGIONS - Indicates to aggregate findings only from the Regions listed in the Regions parameter. Security Hub does not automatically aggregate findings from new Regions.

regions List<String>

findingAggregationRegion string

The home Region. Findings generated in linked Regions are replicated and sent to the home Region.

findingAggregatorArn string

The ARN of the finding aggregator. You use the finding aggregator ARN to retrieve details for, update, and delete the finding aggregator.

regionLinkingMode FindingAggregatorRegionLinkingMode

ALL_REGIONS - Indicates to aggregate findings from all of the Regions where Security Hub is enabled. When you choose this option, Security Hub also automatically aggregates findings from new Regions as Security Hub supports them and you opt into them.
ALL_REGIONS_EXCEPT_SPECIFIED - Indicates to aggregate findings from all of the Regions where Security Hub is enabled, except for the Regions listed in the Regions parameter. When you choose this option, Security Hub also automatically aggregates findings from new Regions as Security Hub supports them and you opt into them.
SPECIFIED_REGIONS - Indicates to aggregate findings only from the Regions listed in the Regions parameter. Security Hub does not automatically aggregate findings from new Regions.

regions string[]

finding_aggregation_region str

The home Region. Findings generated in linked Regions are replicated and sent to the home Region.

finding_aggregator_arn str

The ARN of the finding aggregator. You use the finding aggregator ARN to retrieve details for, update, and delete the finding aggregator.

region_linking_mode FindingAggregatorRegionLinkingMode

ALL_REGIONS - Indicates to aggregate findings from all of the Regions where Security Hub is enabled. When you choose this option, Security Hub also automatically aggregates findings from new Regions as Security Hub supports them and you opt into them.
ALL_REGIONS_EXCEPT_SPECIFIED - Indicates to aggregate findings from all of the Regions where Security Hub is enabled, except for the Regions listed in the Regions parameter. When you choose this option, Security Hub also automatically aggregates findings from new Regions as Security Hub supports them and you opt into them.
SPECIFIED_REGIONS - Indicates to aggregate findings only from the Regions listed in the Regions parameter. Security Hub does not automatically aggregate findings from new Regions.

regions Sequence[str]

findingAggregationRegion String

The home Region. Findings generated in linked Regions are replicated and sent to the home Region.

findingAggregatorArn String

The ARN of the finding aggregator. You use the finding aggregator ARN to retrieve details for, update, and delete the finding aggregator.

regionLinkingMode "ALL_REGIONS" | "ALL_REGIONS_EXCEPT_SPECIFIED" | "SPECIFIED_REGIONS"

ALL_REGIONS - Indicates to aggregate findings from all of the Regions where Security Hub is enabled. When you choose this option, Security Hub also automatically aggregates findings from new Regions as Security Hub supports them and you opt into them.
ALL_REGIONS_EXCEPT_SPECIFIED - Indicates to aggregate findings from all of the Regions where Security Hub is enabled, except for the Regions listed in the Regions parameter. When you choose this option, Security Hub also automatically aggregates findings from new Regions as Security Hub supports them and you opt into them.
SPECIFIED_REGIONS - Indicates to aggregate findings only from the Regions listed in the Regions parameter. Security Hub does not automatically aggregate findings from new Regions.

regions List<String>

Supporting Types

FindingAggregatorRegionLinkingMode

Package Details

Repository: AWS Native pulumi/pulumi-aws-native
License: Apache-2.0

We recommend new projects start with resources from the AWS provider.

AWS Cloud Control v1.26.0 published on Wednesday, Mar 12, 2025 by Pulumi

pulumi/pulumi-aws-native

aws-native.securityhub.getFindingAggregator

On this page

On this page

Using getFindingAggregator

getFindingAggregator Result

Supporting Types

FindingAggregatorRegionLinkingMode

Package Details

On this page

On this page