Module Smaws_Client_FMS

FMS client library built on EIO.

Types

module Types : sig ... end

Builders

val make_web_acl_has_out_of_scope_resources_violation : ?out_of_scope_resource_list:Types.resource_arn_list -> ?web_acl_arn:Types.resource_arn -> unit -> Types.web_acl_has_out_of_scope_resources_violation
val make_web_acl_has_incompatible_configuration_violation : ?description:Types.length_bounded_string -> ?web_acl_arn:Types.resource_arn -> unit -> Types.web_acl_has_incompatible_configuration_violation
val make_partial_match : ?target_violation_reasons:Types.target_violation_reasons -> ?reference:Types.reference_rule -> unit -> Types.partial_match
val make_security_group_rule_description : ?to_port:Types.ip_port_number -> ?from_port:Types.ip_port_number -> ?protocol:Types.length_bounded_string -> ?prefix_list_id:Types.resource_id -> ?ipv6_range:Types.cid_r -> ?ipv4_range:Types.cid_r -> unit -> Types.security_group_rule_description
val make_security_group_remediation_action : ?is_default_action:Types.boolean_ -> ?remediation_result:Types.security_group_rule_description -> ?description:Types.remediation_action_description -> ?remediation_action_type:Types.remediation_action_type -> unit -> Types.security_group_remediation_action
val make_aws_vpc_security_group_violation : ?possible_security_group_remediation_actions: Types.security_group_remediation_actions -> ?partial_matches:Types.partial_matches -> ?violation_target_description:Types.length_bounded_string -> ?violation_target:Types.violation_target -> unit -> Types.aws_vpc_security_group_violation
val make_aws_ec2_network_interface_violation : ?violating_security_groups:Types.resource_id_list -> ?violation_target:Types.violation_target -> unit -> Types.aws_ec2_network_interface_violation
val make_aws_ec2_instance_violation : ?aws_ec2_network_interface_violations: Types.aws_ec2_network_interface_violations -> ?violation_target:Types.violation_target -> unit -> Types.aws_ec2_instance_violation
val make_network_firewall_missing_firewall_violation : ?target_violation_reason:Types.target_violation_reason -> ?availability_zone:Types.length_bounded_string -> ?vp_c:Types.resource_id -> ?violation_target:Types.violation_target -> unit -> Types.network_firewall_missing_firewall_violation
val make_network_firewall_missing_subnet_violation : ?target_violation_reason:Types.target_violation_reason -> ?availability_zone:Types.length_bounded_string -> ?vp_c:Types.resource_id -> ?violation_target:Types.violation_target -> unit -> Types.network_firewall_missing_subnet_violation
val make_network_firewall_missing_expected_rt_violation : ?expected_route_table:Types.resource_id -> ?current_route_table:Types.resource_id -> ?availability_zone:Types.length_bounded_string -> ?vp_c:Types.resource_id -> ?violation_target:Types.violation_target -> unit -> Types.network_firewall_missing_expected_rt_violation
val make_stateless_rule_group : ?priority:Types.stateless_rule_group_priority -> ?resource_id:Types.resource_id -> ?rule_group_name:Types.network_firewall_resource_name -> unit -> Types.stateless_rule_group
val make_network_firewall_stateful_rule_group_override : ?action:Types.network_firewall_override_action -> unit -> Types.network_firewall_stateful_rule_group_override
val make_stateful_rule_group : ?override:Types.network_firewall_stateful_rule_group_override -> ?priority:Types.priority_number -> ?resource_id:Types.resource_id -> ?rule_group_name:Types.network_firewall_resource_name -> unit -> Types.stateful_rule_group
val make_stateful_engine_options : ?stream_exception_policy:Types.stream_exception_policy -> ?rule_order:Types.rule_order -> unit -> Types.stateful_engine_options
val make_network_firewall_policy_description : ?stateful_engine_options:Types.stateful_engine_options -> ?stateful_default_actions:Types.network_firewall_action_list -> ?stateful_rule_groups:Types.stateful_rule_group_list -> ?stateless_custom_actions:Types.network_firewall_action_list -> ?stateless_fragment_default_actions:Types.network_firewall_action_list -> ?stateless_default_actions:Types.network_firewall_action_list -> ?stateless_rule_groups:Types.stateless_rule_group_list -> unit -> Types.network_firewall_policy_description
val make_network_firewall_policy_modified_violation : ?expected_policy_description:Types.network_firewall_policy_description -> ?current_policy_description:Types.network_firewall_policy_description -> ?violation_target:Types.violation_target -> unit -> Types.network_firewall_policy_modified_violation
val make_route : ?target:Types.length_bounded_string -> ?destination:Types.length_bounded_string -> ?target_type:Types.target_type -> ?destination_type:Types.destination_type -> unit -> Types.route
val make_expected_route : ?route_table_id:Types.resource_id -> ?allowed_targets:Types.length_bounded_string_list -> ?contributing_subnets:Types.resource_id_list -> ?ip_v6_cidr:Types.cid_r -> ?prefix_list_id:Types.cid_r -> ?ip_v4_cidr:Types.cid_r -> unit -> Types.expected_route
val make_network_firewall_internet_traffic_not_inspected_violation : ?vpc_id:Types.resource_id -> ?actual_internet_gateway_routes:Types.routes -> ?expected_internet_gateway_routes:Types.expected_routes -> ?current_internet_gateway_route_table:Types.resource_id -> ?internet_gateway_id:Types.resource_id -> ?actual_firewall_subnet_routes:Types.routes -> ?expected_firewall_subnet_routes:Types.expected_routes -> ?firewall_subnet_id:Types.resource_id -> ?expected_firewall_endpoint:Types.resource_id -> ?current_firewall_subnet_route_table:Types.resource_id -> ?is_route_table_used_in_different_a_z:Types.boolean_ -> ?violating_routes:Types.routes -> ?route_table_id:Types.resource_id -> ?subnet_availability_zone:Types.length_bounded_string -> ?subnet_id:Types.resource_id -> unit -> Types.network_firewall_internet_traffic_not_inspected_violation
val make_network_firewall_invalid_route_configuration_violation : ?vpc_id:Types.resource_id -> ?actual_internet_gateway_routes:Types.routes -> ?expected_internet_gateway_routes:Types.expected_routes -> ?current_internet_gateway_route_table:Types.resource_id -> ?internet_gateway_id:Types.resource_id -> ?actual_firewall_subnet_routes:Types.routes -> ?expected_firewall_subnet_routes:Types.expected_routes -> ?actual_firewall_subnet_id:Types.resource_id -> ?expected_firewall_subnet_id:Types.resource_id -> ?actual_firewall_endpoint:Types.resource_id -> ?expected_firewall_endpoint:Types.resource_id -> ?current_firewall_subnet_route_table:Types.resource_id -> ?violating_route:Types.route -> ?is_route_table_used_in_different_a_z:Types.boolean_ -> ?route_table_id:Types.resource_id -> ?affected_subnets:Types.resource_id_list -> unit -> Types.network_firewall_invalid_route_configuration_violation
val make_network_firewall_black_hole_route_detected_violation : ?violating_routes:Types.routes -> ?vpc_id:Types.resource_id -> ?route_table_id:Types.resource_id -> ?violation_target:Types.violation_target -> unit -> Types.network_firewall_black_hole_route_detected_violation
val make_network_firewall_unexpected_firewall_routes_violation : ?vpc_id:Types.resource_id -> ?firewall_endpoint:Types.resource_id -> ?route_table_id:Types.resource_id -> ?violating_routes:Types.routes -> ?firewall_subnet_id:Types.resource_id -> unit -> Types.network_firewall_unexpected_firewall_routes_violation
val make_network_firewall_unexpected_gateway_routes_violation : ?vpc_id:Types.resource_id -> ?route_table_id:Types.resource_id -> ?violating_routes:Types.routes -> ?gateway_id:Types.resource_id -> unit -> Types.network_firewall_unexpected_gateway_routes_violation
val make_network_firewall_missing_expected_routes_violation : ?vpc_id:Types.resource_id -> ?expected_routes:Types.expected_routes -> ?violation_target:Types.violation_target -> unit -> Types.network_firewall_missing_expected_routes_violation
val make_dns_rule_group_priority_conflict_violation : ?unavailable_priorities:Types.dns_rule_group_priorities -> ?conflicting_policy_id:Types.policy_id -> ?conflicting_priority:Types.dns_rule_group_priority -> ?violation_target_description:Types.length_bounded_string -> ?violation_target:Types.violation_target -> unit -> Types.dns_rule_group_priority_conflict_violation
val make_dns_duplicate_rule_group_violation : ?violation_target_description:Types.length_bounded_string -> ?violation_target:Types.violation_target -> unit -> Types.dns_duplicate_rule_group_violation
val make_dns_rule_group_limit_exceeded_violation : ?number_of_rule_groups_already_associated:Types.basic_integer -> ?violation_target_description:Types.length_bounded_string -> ?violation_target:Types.violation_target -> unit -> Types.dns_rule_group_limit_exceeded_violation
val make_firewall_subnet_is_out_of_scope_violation : ?vpc_endpoint_id:Types.resource_id -> ?subnet_availability_zone_id:Types.length_bounded_string -> ?subnet_availability_zone:Types.length_bounded_string -> ?vpc_id:Types.resource_id -> ?firewall_subnet_id:Types.resource_id -> unit -> Types.firewall_subnet_is_out_of_scope_violation
val make_route_has_out_of_scope_endpoint_violation : ?internet_gateway_routes:Types.routes -> ?current_internet_gateway_route_table:Types.resource_id -> ?internet_gateway_id:Types.resource_id -> ?firewall_subnet_routes:Types.routes -> ?firewall_subnet_id:Types.resource_id -> ?current_firewall_subnet_route_table:Types.resource_id -> ?subnet_availability_zone_id:Types.length_bounded_string -> ?subnet_availability_zone:Types.length_bounded_string -> ?violating_routes:Types.routes -> ?route_table_id:Types.resource_id -> ?vpc_id:Types.resource_id -> ?subnet_id:Types.resource_id -> unit -> Types.route_has_out_of_scope_endpoint_violation
val make_third_party_firewall_missing_firewall_violation : ?target_violation_reason:Types.target_violation_reason -> ?availability_zone:Types.length_bounded_string -> ?vp_c:Types.resource_id -> ?violation_target:Types.violation_target -> unit -> Types.third_party_firewall_missing_firewall_violation
val make_third_party_firewall_missing_subnet_violation : ?target_violation_reason:Types.target_violation_reason -> ?availability_zone:Types.length_bounded_string -> ?vp_c:Types.resource_id -> ?violation_target:Types.violation_target -> unit -> Types.third_party_firewall_missing_subnet_violation
val make_third_party_firewall_missing_expected_route_table_violation : ?expected_route_table:Types.resource_id -> ?current_route_table:Types.resource_id -> ?availability_zone:Types.length_bounded_string -> ?vp_c:Types.resource_id -> ?violation_target:Types.violation_target -> unit -> Types.third_party_firewall_missing_expected_route_table_violation
val make_firewall_subnet_missing_vpc_endpoint_violation : ?subnet_availability_zone_id:Types.length_bounded_string -> ?subnet_availability_zone:Types.length_bounded_string -> ?vpc_id:Types.resource_id -> ?firewall_subnet_id:Types.resource_id -> unit -> Types.firewall_subnet_missing_vpc_endpoint_violation
val make_network_acl_icmp_type_code : ?type_:Types.integer_object -> ?code:Types.integer_object -> unit -> Types.network_acl_icmp_type_code
val make_network_acl_port_range : ?to_:Types.ip_port_number_integer -> ?from_:Types.ip_port_number_integer -> unit -> Types.network_acl_port_range
val make_network_acl_entry : ?ipv6_cidr_block:Types.length_bounded_non_empty_string -> ?cidr_block:Types.length_bounded_non_empty_string -> ?port_range:Types.network_acl_port_range -> ?icmp_type_code:Types.network_acl_icmp_type_code -> egress:Types.boolean_object -> rule_action:Types.network_acl_rule_action -> protocol:Types.length_bounded_string -> unit -> Types.network_acl_entry
val make_entry_description : ?entry_type:Types.entry_type -> ?entry_rule_number:Types.integer_object_minimum0 -> ?entry_detail:Types.network_acl_entry -> unit -> Types.entry_description
val make_entry_violation : ?entry_violation_reasons:Types.entry_violation_reasons -> ?entries_with_conflicts:Types.entries_with_conflicts -> ?entry_at_expected_evaluation_order:Types.entry_description -> ?actual_evaluation_order:Types.length_bounded_string -> ?expected_evaluation_order:Types.length_bounded_string -> ?expected_entry:Types.entry_description -> unit -> Types.entry_violation
val make_invalid_network_acl_entries_violation : ?entry_violations:Types.entry_violations -> ?current_associated_network_acl:Types.resource_id -> ?subnet_availability_zone:Types.length_bounded_string -> ?subnet:Types.resource_id -> ?vpc:Types.resource_id -> unit -> Types.invalid_network_acl_entries_violation
val make_action_target : ?description:Types.length_bounded_string -> ?resource_id:Types.resource_id -> unit -> Types.action_target
val make_ec2_create_route_action : ?gateway_id:Types.action_target -> ?vpc_endpoint_id:Types.action_target -> ?destination_ipv6_cidr_block:Types.cid_r -> ?destination_prefix_list_id:Types.resource_id -> ?destination_cidr_block:Types.cid_r -> ?description:Types.length_bounded_string -> route_table_id:Types.action_target -> unit -> Types.ec2_create_route_action
val make_ec2_replace_route_action : ?gateway_id:Types.action_target -> ?destination_ipv6_cidr_block:Types.cid_r -> ?destination_prefix_list_id:Types.resource_id -> ?destination_cidr_block:Types.cid_r -> ?description:Types.length_bounded_string -> route_table_id:Types.action_target -> unit -> Types.ec2_replace_route_action
val make_ec2_delete_route_action : ?destination_ipv6_cidr_block:Types.cid_r -> ?destination_prefix_list_id:Types.resource_id -> ?destination_cidr_block:Types.cid_r -> ?description:Types.length_bounded_string -> route_table_id:Types.action_target -> unit -> Types.ec2_delete_route_action
val make_ec2_copy_route_table_action : ?description:Types.length_bounded_string -> route_table_id:Types.action_target -> vpc_id:Types.action_target -> unit -> Types.ec2_copy_route_table_action
val make_ec2_replace_route_table_association_action : ?description:Types.length_bounded_string -> route_table_id:Types.action_target -> association_id:Types.action_target -> unit -> Types.ec2_replace_route_table_association_action
val make_ec2_associate_route_table_action : ?gateway_id:Types.action_target -> ?subnet_id:Types.action_target -> ?description:Types.length_bounded_string -> route_table_id:Types.action_target -> unit -> Types.ec2_associate_route_table_action
val make_ec2_create_route_table_action : ?description:Types.length_bounded_string -> vpc_id:Types.action_target -> unit -> Types.ec2_create_route_table_action
val make_fms_policy_update_firewall_creation_config_action : ?firewall_creation_config:Types.managed_service_data -> ?description:Types.length_bounded_string -> unit -> Types.fms_policy_update_firewall_creation_config_action
val make_create_network_acl_action : ?fms_can_remediate:Types.boolean_ -> ?vpc:Types.action_target -> ?description:Types.length_bounded_string -> unit -> Types.create_network_acl_action
val make_replace_network_acl_association_action : ?fms_can_remediate:Types.boolean_ -> ?network_acl_id:Types.action_target -> ?association_id:Types.action_target -> ?description:Types.length_bounded_string -> unit -> Types.replace_network_acl_association_action
val make_create_network_acl_entries_action : ?fms_can_remediate:Types.boolean_ -> ?network_acl_entries_to_be_created:Types.entries_description -> ?network_acl_id:Types.action_target -> ?description:Types.length_bounded_string -> unit -> Types.create_network_acl_entries_action
val make_delete_network_acl_entries_action : ?fms_can_remediate:Types.boolean_ -> ?network_acl_entries_to_be_deleted:Types.entries_description -> ?network_acl_id:Types.action_target -> ?description:Types.length_bounded_string -> unit -> Types.delete_network_acl_entries_action
val make_remediation_action : ?delete_network_acl_entries_action:Types.delete_network_acl_entries_action -> ?create_network_acl_entries_action:Types.create_network_acl_entries_action -> ?replace_network_acl_association_action: Types.replace_network_acl_association_action -> ?create_network_acl_action:Types.create_network_acl_action -> ?fms_policy_update_firewall_creation_config_action: Types.fms_policy_update_firewall_creation_config_action -> ?ec2_create_route_table_action:Types.ec2_create_route_table_action -> ?ec2_associate_route_table_action:Types.ec2_associate_route_table_action -> ?ec2_replace_route_table_association_action: Types.ec2_replace_route_table_association_action -> ?ec2_copy_route_table_action:Types.ec2_copy_route_table_action -> ?ec2_delete_route_action:Types.ec2_delete_route_action -> ?ec2_replace_route_action:Types.ec2_replace_route_action -> ?ec2_create_route_action:Types.ec2_create_route_action -> ?description:Types.length_bounded_string -> unit -> Types.remediation_action
val make_remediation_action_with_order : ?order:Types.basic_integer -> ?remediation_action:Types.remediation_action -> unit -> Types.remediation_action_with_order
val make_possible_remediation_action : ?is_default_action:Types.boolean_ -> ?description:Types.length_bounded_string -> ordered_remediation_actions:Types.ordered_remediation_actions -> unit -> Types.possible_remediation_action
val make_possible_remediation_actions : ?actions:Types.possible_remediation_action_list -> ?description:Types.length_bounded_string -> unit -> Types.possible_remediation_actions
val make_resource_violation : ?web_acl_has_out_of_scope_resources_violation: Types.web_acl_has_out_of_scope_resources_violation -> ?web_acl_has_incompatible_configuration_violation: Types.web_acl_has_incompatible_configuration_violation -> ?possible_remediation_actions:Types.possible_remediation_actions -> ?invalid_network_acl_entries_violation: Types.invalid_network_acl_entries_violation -> ?firewall_subnet_missing_vpc_endpoint_violation: Types.firewall_subnet_missing_vpc_endpoint_violation -> ?third_party_firewall_missing_expected_route_table_violation: Types.third_party_firewall_missing_expected_route_table_violation -> ?third_party_firewall_missing_subnet_violation: Types.third_party_firewall_missing_subnet_violation -> ?third_party_firewall_missing_firewall_violation: Types.third_party_firewall_missing_firewall_violation -> ?route_has_out_of_scope_endpoint_violation: Types.route_has_out_of_scope_endpoint_violation -> ?firewall_subnet_is_out_of_scope_violation: Types.firewall_subnet_is_out_of_scope_violation -> ?dns_rule_group_limit_exceeded_violation: Types.dns_rule_group_limit_exceeded_violation -> ?dns_duplicate_rule_group_violation:Types.dns_duplicate_rule_group_violation -> ?dns_rule_group_priority_conflict_violation: Types.dns_rule_group_priority_conflict_violation -> ?network_firewall_missing_expected_routes_violation: Types.network_firewall_missing_expected_routes_violation -> ?network_firewall_unexpected_gateway_routes_violation: Types.network_firewall_unexpected_gateway_routes_violation -> ?network_firewall_unexpected_firewall_routes_violation: Types.network_firewall_unexpected_firewall_routes_violation -> ?network_firewall_black_hole_route_detected_violation: Types.network_firewall_black_hole_route_detected_violation -> ?network_firewall_invalid_route_configuration_violation: Types.network_firewall_invalid_route_configuration_violation -> ?network_firewall_internet_traffic_not_inspected_violation: Types.network_firewall_internet_traffic_not_inspected_violation -> ?network_firewall_policy_modified_violation: Types.network_firewall_policy_modified_violation -> ?network_firewall_missing_expected_rt_violation: Types.network_firewall_missing_expected_rt_violation -> ?network_firewall_missing_subnet_violation: Types.network_firewall_missing_subnet_violation -> ?network_firewall_missing_firewall_violation: Types.network_firewall_missing_firewall_violation -> ?aws_ec2_instance_violation:Types.aws_ec2_instance_violation -> ?aws_ec2_network_interface_violation: Types.aws_ec2_network_interface_violation -> ?aws_vpc_security_group_violation:Types.aws_vpc_security_group_violation -> unit -> Types.resource_violation
val make_tag : value:Types.tag_value -> key:Types.tag_key -> unit -> Types.tag
val make_violation_detail : ?resource_description:Types.length_bounded_string -> ?resource_tags:Types.tag_list -> resource_violations:Types.resource_violations -> resource_type:Types.resource_type -> resource_id:Types.resource_id -> member_account:Types.aws_account_id -> policy_id:Types.policy_id -> unit -> Types.violation_detail
val make_untag_resource_response : unit -> unit
val make_untag_resource_request : tag_keys:Types.tag_key_list -> resource_arn:Types.resource_arn -> unit -> Types.untag_resource_request
val make_third_party_firewall_policy : ?firewall_deployment_model:Types.firewall_deployment_model -> unit -> Types.third_party_firewall_policy
val make_third_party_firewall_firewall_policy : ?firewall_policy_name:Types.firewall_policy_name -> ?firewall_policy_id:Types.firewall_policy_id -> unit -> Types.third_party_firewall_firewall_policy
val make_tag_resource_response : unit -> unit
val make_tag_resource_request : tag_list:Types.tag_list -> resource_arn:Types.resource_arn -> unit -> Types.tag_resource_request
val make_network_firewall_policy : ?firewall_deployment_model:Types.firewall_deployment_model -> unit -> Types.network_firewall_policy
val make_network_acl_entry_set : ?last_entries:Types.network_acl_entries -> ?first_entries:Types.network_acl_entries -> force_remediate_for_last_entries:Types.boolean_object -> force_remediate_for_first_entries:Types.boolean_object -> unit -> Types.network_acl_entry_set
val make_network_acl_common_policy : network_acl_entry_set:Types.network_acl_entry_set -> unit -> Types.network_acl_common_policy
val make_policy_option : ?network_acl_common_policy:Types.network_acl_common_policy -> ?third_party_firewall_policy:Types.third_party_firewall_policy -> ?network_firewall_policy:Types.network_firewall_policy -> unit -> Types.policy_option
val make_security_service_policy_data : ?policy_option:Types.policy_option -> ?managed_service_data:Types.managed_service_data -> type_:Types.security_service_type -> unit -> Types.security_service_policy_data
val make_resource_tag : ?value:Types.resource_tag_value -> key:Types.resource_tag_key -> unit -> Types.resource_tag
val make_resource_set_summary : ?resource_set_status:Types.resource_set_status -> ?last_update_time:Types.time_stamp -> ?description:Types.description -> ?name:Types.name -> ?id:Types.base62_id -> unit -> Types.resource_set_summary
val make_resource_set : ?resource_set_status:Types.resource_set_status -> ?last_update_time:Types.time_stamp -> ?update_token:Types.update_token -> ?description:Types.description -> ?id:Types.base62_id -> resource_type_list:Types.resource_type_list -> name:Types.name -> unit -> Types.resource_set
val make_resource : ?account_id:Types.aws_account_id -> ur_i:Types.identifier -> unit -> Types.resource
val make_region_scope : ?all_regions_enabled:Types.boolean_ -> ?regions:Types.aws_region_list -> unit -> Types.region_scope
val make_put_resource_set_response : resource_set_arn:Types.resource_arn -> resource_set:Types.resource_set -> unit -> Types.put_resource_set_response
val make_put_resource_set_request : ?tag_list:Types.tag_list -> resource_set:Types.resource_set -> unit -> Types.put_resource_set_request
val make_protocols_list_data : ?previous_protocols_list:Types.previous_protocols_list -> ?last_update_time:Types.time_stamp -> ?create_time:Types.time_stamp -> ?list_update_token:Types.update_token -> ?list_id:Types.list_id -> protocols_list:Types.protocols_list -> list_name:Types.resource_name -> unit -> Types.protocols_list_data
val make_put_protocols_list_response : ?protocols_list_arn:Types.resource_arn -> ?protocols_list:Types.protocols_list_data -> unit -> Types.put_protocols_list_response
val make_put_protocols_list_request : ?tag_list:Types.tag_list -> protocols_list:Types.protocols_list_data -> unit -> Types.put_protocols_list_request
val make_policy : ?resource_tag_logical_operator:Types.resource_tag_logical_operator -> ?policy_status:Types.customer_policy_status -> ?policy_description:Types.resource_description -> ?resource_set_ids:Types.resource_set_ids -> ?exclude_map:Types.customer_policy_scope_map -> ?include_map:Types.customer_policy_scope_map -> ?delete_unused_fm_managed_resources:Types.boolean_ -> ?resource_tags:Types.resource_tags -> ?resource_type_list:Types.resource_type_list -> ?policy_update_token:Types.policy_update_token -> ?policy_id:Types.policy_id -> remediation_enabled:Types.boolean_ -> exclude_resource_tags:Types.boolean_ -> resource_type:Types.resource_type -> security_service_policy_data:Types.security_service_policy_data -> policy_name:Types.resource_name -> unit -> Types.policy
val make_put_policy_response : ?policy_arn:Types.resource_arn -> ?policy:Types.policy -> unit -> Types.put_policy_response
val make_put_policy_request : ?tag_list:Types.tag_list -> policy:Types.policy -> unit -> Types.put_policy_request
val make_put_notification_channel_request : sns_role_name:Types.resource_arn -> sns_topic_arn:Types.resource_arn -> unit -> Types.put_notification_channel_request
val make_app : port:Types.ip_port_number -> protocol:Types.protocol -> app_name:Types.resource_name -> unit -> Types.app
val make_apps_list_data : ?previous_apps_list:Types.previous_apps_list -> ?last_update_time:Types.time_stamp -> ?create_time:Types.time_stamp -> ?list_update_token:Types.update_token -> ?list_id:Types.list_id -> apps_list:Types.apps_list -> list_name:Types.resource_name -> unit -> Types.apps_list_data
val make_put_apps_list_response : ?apps_list_arn:Types.resource_arn -> ?apps_list:Types.apps_list_data -> unit -> Types.put_apps_list_response
val make_put_apps_list_request : ?tag_list:Types.tag_list -> apps_list:Types.apps_list_data -> unit -> Types.put_apps_list_request
val make_account_scope : ?exclude_specified_accounts:Types.boolean_ -> ?all_accounts_enabled:Types.boolean_ -> ?accounts:Types.account_id_list -> unit -> Types.account_scope
val make_organizational_unit_scope : ?exclude_specified_organizational_units:Types.boolean_ -> ?all_organizational_units_enabled:Types.boolean_ -> ?organizational_units:Types.organizational_unit_id_list -> unit -> Types.organizational_unit_scope
val make_policy_type_scope : ?all_policy_types_enabled:Types.boolean_ -> ?policy_types:Types.security_service_type_list -> unit -> Types.policy_type_scope
val make_admin_scope : ?policy_type_scope:Types.policy_type_scope -> ?region_scope:Types.region_scope -> ?organizational_unit_scope:Types.organizational_unit_scope -> ?account_scope:Types.account_scope -> unit -> Types.admin_scope
val make_put_admin_account_request : ?admin_scope:Types.admin_scope -> admin_account:Types.aws_account_id -> unit -> Types.put_admin_account_request
val make_protocols_list_data_summary : ?protocols_list:Types.protocols_list -> ?list_name:Types.resource_name -> ?list_id:Types.list_id -> ?list_arn:Types.resource_arn -> unit -> Types.protocols_list_data_summary
val make_policy_summary : ?policy_status:Types.customer_policy_status -> ?delete_unused_fm_managed_resources:Types.boolean_ -> ?remediation_enabled:Types.boolean_ -> ?security_service_type:Types.security_service_type -> ?resource_type:Types.resource_type -> ?policy_name:Types.resource_name -> ?policy_id:Types.policy_id -> ?policy_arn:Types.resource_arn -> unit -> Types.policy_summary
val make_policy_compliance_status : ?issue_info_map:Types.issue_info_map -> ?last_updated:Types.time_stamp -> ?evaluation_results:Types.evaluation_results -> ?member_account:Types.aws_account_id -> ?policy_name:Types.resource_name -> ?policy_id:Types.policy_id -> ?policy_owner:Types.aws_account_id -> unit -> Types.policy_compliance_status
val make_compliance_violator : ?metadata:Types.compliance_violator_metadata -> ?resource_type:Types.resource_type -> ?violation_reason:Types.violation_reason -> ?resource_id:Types.resource_id -> unit -> Types.compliance_violator
val make_policy_compliance_detail : ?issue_info_map:Types.issue_info_map -> ?expired_at:Types.time_stamp -> ?evaluation_limit_exceeded:Types.boolean_ -> ?violators:Types.compliance_violators -> ?member_account:Types.aws_account_id -> ?policy_id:Types.policy_id -> ?policy_owner:Types.aws_account_id -> unit -> Types.policy_compliance_detail
val make_list_third_party_firewall_firewall_policies_response : ?next_token:Types.pagination_token -> ?third_party_firewall_firewall_policies: Types.third_party_firewall_firewall_policies -> unit -> Types.list_third_party_firewall_firewall_policies_response
val make_list_third_party_firewall_firewall_policies_request : ?next_token:Types.pagination_token -> max_results:Types.pagination_max_results -> third_party_firewall:Types.third_party_firewall -> unit -> Types.list_third_party_firewall_firewall_policies_request
val make_list_tags_for_resource_response : ?tag_list:Types.tag_list -> unit -> Types.list_tags_for_resource_response
val make_list_tags_for_resource_request : resource_arn:Types.resource_arn -> unit -> Types.list_tags_for_resource_request
val make_list_resource_sets_response : ?next_token:Types.pagination_token -> ?resource_sets:Types.resource_set_summary_list -> unit -> Types.list_resource_sets_response
val make_list_resource_sets_request : ?max_results:Types.pagination_max_results -> ?next_token:Types.pagination_token -> unit -> Types.list_resource_sets_request
val make_list_resource_set_resources_response : ?next_token:Types.pagination_token -> items:Types.resource_list -> unit -> Types.list_resource_set_resources_response
val make_list_resource_set_resources_request : ?next_token:Types.pagination_token -> ?max_results:Types.pagination_max_results -> identifier:Types.resource_id -> unit -> Types.list_resource_set_resources_request
val make_list_protocols_lists_response : ?next_token:Types.pagination_token -> ?protocols_lists:Types.protocols_lists_data -> unit -> Types.list_protocols_lists_response
val make_list_protocols_lists_request : ?next_token:Types.pagination_token -> ?default_lists:Types.boolean_ -> max_results:Types.pagination_max_results -> unit -> Types.list_protocols_lists_request
val make_list_policies_response : ?next_token:Types.pagination_token -> ?policy_list:Types.policy_summary_list -> unit -> Types.list_policies_response
val make_list_policies_request : ?max_results:Types.pagination_max_results -> ?next_token:Types.pagination_token -> unit -> Types.list_policies_request
val make_list_member_accounts_response : ?next_token:Types.pagination_token -> ?member_accounts:Types.member_accounts -> unit -> Types.list_member_accounts_response
val make_list_member_accounts_request : ?max_results:Types.pagination_max_results -> ?next_token:Types.pagination_token -> unit -> Types.list_member_accounts_request
val make_discovered_resource : ?name:Types.resource_name -> ?type_:Types.resource_type -> ?account_id:Types.aws_account_id -> ?ur_i:Types.identifier -> unit -> Types.discovered_resource
val make_list_discovered_resources_response : ?next_token:Types.pagination_token -> ?items:Types.discovered_resource_list -> unit -> Types.list_discovered_resources_response
val make_list_discovered_resources_request : ?next_token:Types.pagination_token -> ?max_results:Types.pagination_max_results -> resource_type:Types.resource_type -> member_account_ids:Types.aws_account_id_list -> unit -> Types.list_discovered_resources_request
val make_list_compliance_status_response : ?next_token:Types.pagination_token -> ?policy_compliance_status_list:Types.policy_compliance_status_list -> unit -> Types.list_compliance_status_response
val make_list_compliance_status_request : ?max_results:Types.pagination_max_results -> ?next_token:Types.pagination_token -> policy_id:Types.policy_id -> unit -> Types.list_compliance_status_request
val make_apps_list_data_summary : ?apps_list:Types.apps_list -> ?list_name:Types.resource_name -> ?list_id:Types.list_id -> ?list_arn:Types.resource_arn -> unit -> Types.apps_list_data_summary
val make_list_apps_lists_response : ?next_token:Types.pagination_token -> ?apps_lists:Types.apps_lists_data -> unit -> Types.list_apps_lists_response
val make_list_apps_lists_request : ?next_token:Types.pagination_token -> ?default_lists:Types.boolean_ -> max_results:Types.pagination_max_results -> unit -> Types.list_apps_lists_request
val make_list_admins_managing_account_response : ?next_token:Types.pagination_token -> ?admin_accounts:Types.account_id_list -> unit -> Types.list_admins_managing_account_response
val make_list_admins_managing_account_request : ?max_results:Types.pagination_max_results -> ?next_token:Types.pagination_token -> unit -> Types.list_admins_managing_account_request
val make_admin_account_summary : ?status:Types.organization_status -> ?default_admin:Types.boolean_ -> ?admin_account:Types.aws_account_id -> unit -> Types.admin_account_summary
val make_list_admin_accounts_for_organization_response : ?next_token:Types.pagination_token -> ?admin_accounts:Types.admin_account_summary_list -> unit -> Types.list_admin_accounts_for_organization_response
val make_list_admin_accounts_for_organization_request : ?max_results:Types.pagination_max_results -> ?next_token:Types.pagination_token -> unit -> Types.list_admin_accounts_for_organization_request
val make_get_violation_details_response : ?violation_detail:Types.violation_detail -> unit -> Types.get_violation_details_response
val make_get_violation_details_request : resource_type:Types.resource_type -> resource_id:Types.resource_id -> member_account:Types.aws_account_id -> policy_id:Types.policy_id -> unit -> Types.get_violation_details_request
val make_get_third_party_firewall_association_status_response : ?marketplace_onboarding_status: Types.marketplace_subscription_onboarding_status -> ?third_party_firewall_status:Types.third_party_firewall_association_status -> unit -> Types.get_third_party_firewall_association_status_response
val make_get_third_party_firewall_association_status_request : third_party_firewall:Types.third_party_firewall -> unit -> Types.get_third_party_firewall_association_status_request
val make_get_resource_set_response : resource_set_arn:Types.resource_arn -> resource_set:Types.resource_set -> unit -> Types.get_resource_set_response
val make_get_resource_set_request : identifier:Types.base62_id -> unit -> Types.get_resource_set_request
val make_get_protocols_list_response : ?protocols_list_arn:Types.resource_arn -> ?protocols_list:Types.protocols_list_data -> unit -> Types.get_protocols_list_response
val make_get_protocols_list_request : ?default_list:Types.boolean_ -> list_id:Types.list_id -> unit -> Types.get_protocols_list_request
val make_get_protection_status_response : ?next_token:Types.pagination_token -> ?data:Types.protection_data -> ?service_type:Types.security_service_type -> ?admin_account_id:Types.aws_account_id -> unit -> Types.get_protection_status_response
val make_get_protection_status_request : ?max_results:Types.pagination_max_results -> ?next_token:Types.pagination_token -> ?end_time:Types.time_stamp -> ?start_time:Types.time_stamp -> ?member_account_id:Types.aws_account_id -> policy_id:Types.policy_id -> unit -> Types.get_protection_status_request
val make_get_policy_response : ?policy_arn:Types.resource_arn -> ?policy:Types.policy -> unit -> Types.get_policy_response
val make_get_policy_request : policy_id:Types.policy_id -> unit -> Types.get_policy_request
val make_get_notification_channel_response : ?sns_role_name:Types.resource_arn -> ?sns_topic_arn:Types.resource_arn -> unit -> Types.get_notification_channel_response
val make_get_notification_channel_request : unit -> unit
val make_get_compliance_detail_response : ?policy_compliance_detail:Types.policy_compliance_detail -> unit -> Types.get_compliance_detail_response
val make_get_compliance_detail_request : member_account:Types.aws_account_id -> policy_id:Types.policy_id -> unit -> Types.get_compliance_detail_request
val make_get_apps_list_response : ?apps_list_arn:Types.resource_arn -> ?apps_list:Types.apps_list_data -> unit -> Types.get_apps_list_response
val make_get_apps_list_request : ?default_list:Types.boolean_ -> list_id:Types.list_id -> unit -> Types.get_apps_list_request
val make_get_admin_scope_response : ?status:Types.organization_status -> ?admin_scope:Types.admin_scope -> unit -> Types.get_admin_scope_response
val make_get_admin_scope_request : admin_account:Types.aws_account_id -> unit -> Types.get_admin_scope_request
val make_get_admin_account_response : ?role_status:Types.account_role_status -> ?admin_account:Types.aws_account_id -> unit -> Types.get_admin_account_response
val make_get_admin_account_request : unit -> unit
val make_failed_item : ?reason:Types.failed_item_reason -> ?ur_i:Types.identifier -> unit -> Types.failed_item
val make_disassociate_third_party_firewall_response : ?third_party_firewall_status:Types.third_party_firewall_association_status -> unit -> Types.disassociate_third_party_firewall_response
val make_disassociate_third_party_firewall_request : third_party_firewall:Types.third_party_firewall -> unit -> Types.disassociate_third_party_firewall_request
val make_disassociate_admin_account_request : unit -> unit
val make_delete_resource_set_request : identifier:Types.base62_id -> unit -> Types.delete_resource_set_request
val make_delete_protocols_list_request : list_id:Types.list_id -> unit -> Types.delete_protocols_list_request
val make_delete_policy_request : ?delete_all_policy_resources:Types.boolean_ -> policy_id:Types.policy_id -> unit -> Types.delete_policy_request
val make_delete_notification_channel_request : unit -> unit
val make_delete_apps_list_request : list_id:Types.list_id -> unit -> Types.delete_apps_list_request
val make_batch_disassociate_resource_response : failed_items:Types.failed_item_list -> resource_set_identifier:Types.identifier -> unit -> Types.batch_disassociate_resource_response
val make_batch_disassociate_resource_request : items:Types.identifier_list -> resource_set_identifier:Types.identifier -> unit -> Types.batch_disassociate_resource_request
val make_batch_associate_resource_response : failed_items:Types.failed_item_list -> resource_set_identifier:Types.identifier -> unit -> Types.batch_associate_resource_response
val make_batch_associate_resource_request : items:Types.identifier_list -> resource_set_identifier:Types.identifier -> unit -> Types.batch_associate_resource_request
val make_associate_third_party_firewall_response : ?third_party_firewall_status:Types.third_party_firewall_association_status -> unit -> Types.associate_third_party_firewall_response
val make_associate_third_party_firewall_request : third_party_firewall:Types.third_party_firewall -> unit -> Types.associate_third_party_firewall_request
val make_associate_admin_account_request : admin_account:Types.aws_account_id -> unit -> Types.associate_admin_account_request

Operations

module AssociateAdminAccount : sig ... end

Sets a Firewall Manager default administrator account. The Firewall Manager default administrator account can manage third-party firewalls and has full administrative scope that allows administration of all policy types, accounts, organizational units, and Regions. This account must be a member account of the organization in Organizations whose resources you want to protect.

module AssociateThirdPartyFirewall : sig ... end

Sets the Firewall Manager policy administrator as a tenant administrator of a third-party firewall service. A tenant is an instance of the third-party firewall service that's associated with your Amazon Web Services customer account.

module BatchAssociateResource : sig ... end

Associate resources to a Firewall Manager resource set.

module BatchDisassociateResource : sig ... end

Disassociates resources from a Firewall Manager resource set.

module DeleteAppsList : sig ... end

Permanently deletes an Firewall Manager applications list.

module DeleteNotificationChannel : sig ... end

Deletes an Firewall Manager association with the IAM role and the Amazon Simple Notification Service (SNS) topic that is used to record Firewall Manager SNS logs.

module DeletePolicy : sig ... end

Permanently deletes an Firewall Manager policy.

module DeleteProtocolsList : sig ... end

Permanently deletes an Firewall Manager protocols list.

module DeleteResourceSet : sig ... end

Deletes the specified ResourceSet.

module DisassociateAdminAccount : sig ... end

Disassociates an Firewall Manager administrator account. To set a different account as an Firewall Manager administrator, submit a PutAdminAccount request. To set an account as a default administrator account, you must submit an AssociateAdminAccount request.

module DisassociateThirdPartyFirewall : sig ... end

Disassociates a Firewall Manager policy administrator from a third-party firewall tenant. When you call DisassociateThirdPartyFirewall, the third-party firewall vendor deletes all of the firewalls that are associated with the account.

module GetAdminAccount : sig ... end

Returns the Organizations account that is associated with Firewall Manager as the Firewall Manager default administrator.

module GetAdminScope : sig ... end

Returns information about the specified account's administrative scope. The administrative scope defines the resources that an Firewall Manager administrator can manage.

module GetAppsList : sig ... end

Returns information about the specified Firewall Manager applications list.

module GetComplianceDetail : sig ... end

Returns detailed compliance information about the specified member account. Details include resources that are in and out of compliance with the specified policy.

module GetNotificationChannel : sig ... end

Information about the Amazon Simple Notification Service (SNS) topic that is used to record Firewall Manager SNS logs.

module GetPolicy : sig ... end

Returns information about the specified Firewall Manager policy.

module GetProtectionStatus : sig ... end

If you created a Shield Advanced policy, returns policy-level attack summary information in the event of a potential DDoS attack. Other policy types are currently unsupported.

module GetProtocolsList : sig ... end

Returns information about the specified Firewall Manager protocols list.

module GetResourceSet : sig ... end

Gets information about a specific resource set.

The onboarding status of a Firewall Manager admin account to third-party firewall vendor tenant.

module GetViolationDetails : sig ... end

Retrieves violations for a resource based on the specified Firewall Manager policy and Amazon Web Services account.

Returns a AdminAccounts object that lists the Firewall Manager administrators within the organization that are onboarded to Firewall Manager by AssociateAdminAccount.

module ListAdminsManagingAccount : sig ... end

Lists the accounts that are managing the specified Organizations member account. This is useful for any member account so that they can view the accounts who are managing their account. This operation only returns the managing administrators that have the requested account within their AdminScope.

module ListAppsLists : sig ... end

Returns an array of AppsListDataSummary objects.

module ListComplianceStatus : sig ... end

Returns an array of PolicyComplianceStatus objects. Use PolicyComplianceStatus to get a summary of which member accounts are protected by the specified policy.

module ListDiscoveredResources : sig ... end

Returns an array of resources in the organization's accounts that are available to be associated with a resource set.

module ListMemberAccounts : sig ... end

Returns a MemberAccounts object that lists the member accounts in the administrator's Amazon Web Services organization.

module ListPolicies : sig ... end

Returns an array of PolicySummary objects.

module ListProtocolsLists : sig ... end

Returns an array of ProtocolsListDataSummary objects.

module ListResourceSetResources : sig ... end

Returns an array of resources that are currently associated to a resource set.

module ListResourceSets : sig ... end

Returns an array of ResourceSetSummary objects.

module ListTagsForResource : sig ... end

Retrieves the list of tags for the specified Amazon Web Services resource.

Retrieves a list of all of the third-party firewall policies that are associated with the third-party firewall administrator's account.

module PutAdminAccount : sig ... end

Creates or updates an Firewall Manager administrator account. The account must be a member of the organization that was onboarded to Firewall Manager by AssociateAdminAccount. Only the organization's management account can create an Firewall Manager administrator account. When you create an Firewall Manager administrator account, the service checks to see if the account is already a delegated administrator within Organizations. If the account isn't a delegated administrator, Firewall Manager calls Organizations to delegate the account within Organizations. For more information about administrator accounts within Organizations, see Managing the Amazon Web Services Accounts in Your Organization.

module PutAppsList : sig ... end

Creates an Firewall Manager applications list.

module PutNotificationChannel : sig ... end

Designates the IAM role and Amazon Simple Notification Service (SNS) topic that Firewall Manager uses to record SNS logs.

module PutPolicy : sig ... end

Creates an Firewall Manager policy.

module PutProtocolsList : sig ... end

Creates an Firewall Manager protocols list.

module PutResourceSet : sig ... end

Creates the resource set.

module TagResource : sig ... end

Adds one or more tags to an Amazon Web Services resource.

module UntagResource : sig ... end

Removes one or more tags from an Amazon Web Services resource.

module Json_serializers : sig ... end
module Json_deserializers : sig ... end