Skip to content

/AWS1/CL_SHBAWSORGSCOPE

Specifies an Organizations scope. Data from the specified organization or organizational unit is included in the response.

To scope to a specific organizational unit, provide OrganizationalUnitId. You can optionally include OrganizationId. If you omit OrganizationId, Security Hub uses the caller's organization ID. To scope to the delegated administrator's entire organization, provide only OrganizationId.

The organization ID and organizational unit must belong to the delegated administrator's own organization. Each request must use one scoping approach: either scope to the entire organization by providing an AwsOrganizationScope entry with only OrganizationId, or scope to specific organizational units by providing AwsOrganizationScope entries with OrganizationalUnitId. You can't combine both approaches in the same request.

CONSTRUCTOR

IMPORTING

Optional arguments:

iv_organizationid TYPE /AWS1/SHBNONEMPTYSTRING /AWS1/SHBNONEMPTYSTRING

The unique identifier (ID) of the organization (for example, o-abcd1234567890). The organization must be the delegated administrator's own organization. If you omit this value and provide OrganizationalUnitId, Security Hub uses the caller's organization ID.

iv_organizationalunitid TYPE /AWS1/SHBNONEMPTYSTRING /AWS1/SHBNONEMPTYSTRING

The unique identifier (ID) of the organizational unit (OU) (for example, ou-ab12-cd345678). The OU must exist within the delegated administrator's own organization. When specified, the results include only data from accounts in this OU.

Queryable Attributes

OrganizationId

The unique identifier (ID) of the organization (for example, o-abcd1234567890). The organization must be the delegated administrator's own organization. If you omit this value and provide OrganizationalUnitId, Security Hub uses the caller's organization ID.

Accessible with the following methods

Method Description
GET_ORGANIZATIONID() Getter for ORGANIZATIONID, with configurable default
ASK_ORGANIZATIONID() Getter for ORGANIZATIONID w/ exceptions if field has no valu
HAS_ORGANIZATIONID() Determine if ORGANIZATIONID has a value

OrganizationalUnitId

The unique identifier (ID) of the organizational unit (OU) (for example, ou-ab12-cd345678). The OU must exist within the delegated administrator's own organization. When specified, the results include only data from accounts in this OU.

Accessible with the following methods

Method Description
GET_ORGANIZATIONALUNITID() Getter for ORGANIZATIONALUNITID, with configurable default
ASK_ORGANIZATIONALUNITID() Getter for ORGANIZATIONALUNITID w/ exceptions if field has n
HAS_ORGANIZATIONALUNITID() Determine if ORGANIZATIONALUNITID has a value

Public Local Types In This Class

Internal table types, representing arrays and maps of this class, are defined as local types:

TT_AWSORGANIZATIONSCOPELIST

TYPES TT_AWSORGANIZATIONSCOPELIST TYPE STANDARD TABLE OF REF TO /AWS1/CL_SHBAWSORGSCOPE WITH DEFAULT KEY
.