lib/aws-sdk-guardduty/client.rb in aws-sdk-guardduty-1.65.0 vs lib/aws-sdk-guardduty/client.rb in aws-sdk-guardduty-1.66.0

- old
+ new

@@ -1186,10 +1186,14 @@ end # Deletes GuardDuty member accounts (to the current GuardDuty # administrator account) specified by the account IDs. # + # With `autoEnableOrganizationMembers` configuration for your + # organization set to `ALL`, you'll receive an error if you attempt to + # disable GuardDuty for a member account in your organization. + # # @option params [required, String] :detector_id # The unique ID of the detector of the GuardDuty account whose members # you want to delete. # # @option params [required, Array<String>] :account_ids @@ -1415,10 +1419,11 @@ # * {Types::DescribeOrganizationConfigurationResponse#auto_enable #auto_enable} => Boolean # * {Types::DescribeOrganizationConfigurationResponse#member_account_limit_reached #member_account_limit_reached} => Boolean # * {Types::DescribeOrganizationConfigurationResponse#data_sources #data_sources} => Types::OrganizationDataSourceConfigurationsResult # * {Types::DescribeOrganizationConfigurationResponse#features #features} => Array&lt;Types::OrganizationFeatureConfigurationResult&gt; # * {Types::DescribeOrganizationConfigurationResponse#next_token #next_token} => String + # * {Types::DescribeOrganizationConfigurationResponse#auto_enable_organization_members #auto_enable_organization_members} => String # # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}. # # @example Request syntax with placeholder values # @@ -1437,10 +1442,11 @@ # resp.data_sources.malware_protection.scan_ec2_instance_with_findings.ebs_volumes.auto_enable #=> Boolean # resp.features #=> Array # resp.features[0].name #=> String, one of "S3_DATA_EVENTS", "EKS_AUDIT_LOGS", "EBS_MALWARE_PROTECTION", "RDS_LOGIN_EVENTS" # resp.features[0].auto_enable #=> String, one of "NEW", "NONE" # resp.next_token #=> String + # resp.auto_enable_organization_members #=> String, one of "NEW", "ALL", "NONE" # # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/DescribeOrganizationConfiguration AWS API Documentation # # @overload describe_organization_configuration(params = {}) # @param [Hash] params ({}) @@ -1517,10 +1523,14 @@ end # Disassociates the current GuardDuty member account from its # administrator account. # + # With `autoEnableOrganizationMembers` configuration for your + # organization set to `ALL`, you'll receive an error if you attempt to + # disable GuardDuty in a member account. + # # @option params [required, String] :detector_id # The unique ID of the detector of the GuardDuty member account. # # @return [Struct] Returns an empty {Seahorse::Client::Response response}. # @@ -1563,10 +1573,15 @@ end # Disassociates GuardDuty member accounts (to the current administrator # account) specified by the account IDs. # + # With `autoEnableOrganizationMembers` configuration for your + # organization set to `ALL`, you'll receive an error if you attempt to + # disassociate a member account before removing them from your Amazon + # Web Services organization. + # # @option params [required, String] :detector_id # The unique ID of the detector of the GuardDuty account whose members # you want to disassociate from the administrator account. # # @option params [required, Array<String>] :account_ids @@ -3262,12 +3277,16 @@ req.send_request(options) end # Turns on GuardDuty monitoring of the specified member accounts. Use # this operation to restart monitoring of accounts that you stopped - # monitoring with the `StopMonitoringMembers` operation. + # monitoring with the [StopMonitoringMembers][1] operation. # + # + # + # [1]: https://docs.aws.amazon.com/guardduty/latest/APIReference/API_StopMonitoringMembers.html + # # @option params [required, String] :detector_id # The unique ID of the detector of the GuardDuty administrator account # associated with the member accounts to monitor. # # @option params [required, Array<String>] :account_ids @@ -3302,10 +3321,14 @@ # Stops GuardDuty monitoring for the specified member accounts. Use the # `StartMonitoringMembers` operation to restart monitoring for those # accounts. # + # With `autoEnableOrganizationMembers` configuration for your + # organization set to `ALL`, you'll receive an error if you attempt to + # stop monitoring the member accounts in your organization. + # # @option params [required, String] :detector_id # The unique ID of the detector associated with the GuardDuty # administrator account that is monitoring member accounts. # # @option params [required, Array<String>] :account_ids @@ -3774,11 +3797,13 @@ def update_member_detectors(params = {}, options = {}) req = build_request(:update_member_detectors, params) req.send_request(options) end - # Updates the delegated administrator account with the values provided. + # Configures the delegated administrator account with the provided + # values. You must provide the value for either + # `autoEnableOrganizationMembers` or `autoEnable`. # # There might be regional differences because some data sources might # not be available in all the Amazon Web Services Regions where # GuardDuty is presently supported. For more information, see [Regions # and endpoints][1]. @@ -3786,29 +3811,42 @@ # # # [1]: https://docs.aws.amazon.com/guardduty/latest/ug/guardduty_regions.html # # @option params [required, String] :detector_id - # The ID of the detector to update the delegated administrator for. + # The ID of the detector that configures the delegated administrator. # - # @option params [required, Boolean] :auto_enable + # @option params [Boolean] :auto_enable # Indicates whether to automatically enable member accounts in the # organization. # # @option params [Types::OrganizationDataSourceConfigurations] :data_sources # Describes which data sources will be updated. # # @option params [Array<Types::OrganizationFeatureConfiguration>] :features # A list of features that will be configured for the organization. # + # @option params [String] :auto_enable_organization_members + # Indicates the auto-enablement configuration of GuardDuty for the + # member accounts in the organization. + # + # * `NEW`: Indicates that new accounts joining the organization are + # configured to have GuardDuty enabled automatically. + # + # * `ALL`: Indicates that all accounts (new and existing members) in the + # organization are configured to have GuardDuty enabled automatically. + # + # * `NONE`: Indicates that no account in the organization will be + # configured to have GuardDuty enabled automatically. + # # @return [Struct] Returns an empty {Seahorse::Client::Response response}. # # @example Request syntax with placeholder values # # resp = client.update_organization_configuration({ # detector_id: "DetectorId", # required - # auto_enable: false, # required + # auto_enable: false, # data_sources: { # s3_logs: { # auto_enable: false, # required # }, # kubernetes: { @@ -3828,10 +3866,11 @@ # { # name: "S3_DATA_EVENTS", # accepts S3_DATA_EVENTS, EKS_AUDIT_LOGS, EBS_MALWARE_PROTECTION, RDS_LOGIN_EVENTS # auto_enable: "NEW", # accepts NEW, NONE # }, # ], + # auto_enable_organization_members: "NEW", # accepts NEW, ALL, NONE # }) # # @see http://docs.aws.amazon.com/goto/WebAPI/guardduty-2017-11-28/UpdateOrganizationConfiguration AWS API Documentation # # @overload update_organization_configuration(params = {}) @@ -3930,10 +3969,10 @@ operation: config.api.operation(operation_name), client: self, params: params, config: config) context[:gem_name] = 'aws-sdk-guardduty' - context[:gem_version] = '1.65.0' + context[:gem_version] = '1.66.0' Seahorse::Client::Request.new(handlers, context) end # @api private # @deprecated