Skip to content

/AWS1/IF_SHB=>GENERATERECOMMENDEDPOLICYV2()

About GenerateRecommendedPolicyV2

Begins the recommended policy generation to remediate a Security Hub finding. GenerateRecommendedPolicyV2 only supports findings for unused permissions.

Method Signature

METHODS /AWS1/IF_SHB~GENERATERECOMMENDEDPOLICYV2
  IMPORTING
    !IV_METADATAUID TYPE /AWS1/SHBNONEMPTYSTRING OPTIONAL
  RETURNING
    VALUE(OO_OUTPUT) TYPE REF TO /aws1/cl_shbgenr8recdplyv2rsp
  RAISING
    /AWS1/CX_SHBACCESSDENIEDEX
    /AWS1/CX_SHBINTERNALSERVEREX
    /AWS1/CX_SHBINVALIDINPUTEX
    /AWS1/CX_SHBRESOURCENOTFOUNDEX
    /AWS1/CX_SHBTHROTTLINGEX
    /AWS1/CX_SHBVALIDATIONEX
    /AWS1/CX_SHBCLIENTEXC
    /AWS1/CX_SHBSERVEREXC
    /AWS1/CX_RT_TECHNICAL_GENERIC
    /AWS1/CX_RT_SERVICE_GENERIC.

IMPORTING

Required arguments:

iv_metadatauid TYPE /AWS1/SHBNONEMPTYSTRING /AWS1/SHBNONEMPTYSTRING

The unique identifier (ID) of Security Hub OCSF findings found under the metadata.uid field of the finding.

RETURNING

oo_output TYPE REF TO /aws1/cl_shbgenr8recdplyv2rsp /AWS1/CL_SHBGENR8RECDPLYV2RSP

Examples

Syntax Example

This is an example of the syntax for calling the method. It includes every possible argument and initializes every possible value. The data provided is not necessarily semantically accurate (for example the value "string" may be provided for something that is intended to be an instance ID, or in some cases two arguments may be mutually exclusive). The syntax shows the ABAP syntax for creating the various data structures.

DATA(lo_result) = lo_client->generaterecommendedpolicyv2( |string| ).

This is an example of reading all possible response values

lo_result = lo_result.
IF lo_result IS NOT INITIAL.
ENDIF.