/AWS1/CL_SAGAWSRESOURCES¶
AWS resource configurations associated with the agent space
CONSTRUCTOR¶
IMPORTING¶
Optional arguments:¶
it_vpcs TYPE /AWS1/CL_SAGVPCCONFIG=>TT_VPCCONFIGS TT_VPCCONFIGS¶
VPC configurations that the Security Agent accesses in the customer environment
it_loggroups TYPE /AWS1/CL_SAGLOGGROUPARNS_W=>TT_LOGGROUPARNS TT_LOGGROUPARNS¶
CloudWatch log group ARNs or names used to store Security Agent logs
it_s3buckets TYPE /AWS1/CL_SAGS3BUCKETARNS_W=>TT_S3BUCKETARNS TT_S3BUCKETARNS¶
S3 bucket ARNs or names used to store Security Agent artifacts
it_secretarns TYPE /AWS1/CL_SAGSECRETARNS_W=>TT_SECRETARNS TT_SECRETARNS¶
SecretsManager secret ARNs or names used to store tester credentials for pentests
it_lambdafunctionarns TYPE /AWS1/CL_SAGLAMBDAFUNCARNS_W=>TT_LAMBDAFUNCTIONARNS TT_LAMBDAFUNCTIONARNS¶
Lambda function ARNs or names used to retrieve tester credentials for pentests
it_iamroles TYPE /AWS1/CL_SAGIAMROLES_W=>TT_IAMROLES TT_IAMROLES¶
IAM role ARNs that the Security Agent can assume to access customer resources
Queryable Attributes¶
vpcs¶
VPC configurations that the Security Agent accesses in the customer environment
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_VPCS() |
Getter for VPCS, with configurable default |
ASK_VPCS() |
Getter for VPCS w/ exceptions if field has no value |
HAS_VPCS() |
Determine if VPCS has a value |
logGroups¶
CloudWatch log group ARNs or names used to store Security Agent logs
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_LOGGROUPS() |
Getter for LOGGROUPS, with configurable default |
ASK_LOGGROUPS() |
Getter for LOGGROUPS w/ exceptions if field has no value |
HAS_LOGGROUPS() |
Determine if LOGGROUPS has a value |
s3Buckets¶
S3 bucket ARNs or names used to store Security Agent artifacts
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_S3BUCKETS() |
Getter for S3BUCKETS, with configurable default |
ASK_S3BUCKETS() |
Getter for S3BUCKETS w/ exceptions if field has no value |
HAS_S3BUCKETS() |
Determine if S3BUCKETS has a value |
secretArns¶
SecretsManager secret ARNs or names used to store tester credentials for pentests
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_SECRETARNS() |
Getter for SECRETARNS, with configurable default |
ASK_SECRETARNS() |
Getter for SECRETARNS w/ exceptions if field has no value |
HAS_SECRETARNS() |
Determine if SECRETARNS has a value |
lambdaFunctionArns¶
Lambda function ARNs or names used to retrieve tester credentials for pentests
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_LAMBDAFUNCTIONARNS() |
Getter for LAMBDAFUNCTIONARNS, with configurable default |
ASK_LAMBDAFUNCTIONARNS() |
Getter for LAMBDAFUNCTIONARNS w/ exceptions if field has no |
HAS_LAMBDAFUNCTIONARNS() |
Determine if LAMBDAFUNCTIONARNS has a value |
iamRoles¶
IAM role ARNs that the Security Agent can assume to access customer resources
Accessible with the following methods¶
| Method | Description |
|---|---|
GET_IAMROLES() |
Getter for IAMROLES, with configurable default |
ASK_IAMROLES() |
Getter for IAMROLES w/ exceptions if field has no value |
HAS_IAMROLES() |
Determine if IAMROLES has a value |