/** * All IAM policy actions for Amazon Security Lake (SECURITYLAKE) * * Extracted by `aws-iam-policy` from * https://docs.aws.amazon.com/service-authorization/latest/reference/list_amazonsecuritylake.html * * 2025-02-24T21:49:40.362Z */ export declare enum AwsSecuritylakeActions { /** * Grants permission to enable any source type in any region for accounts that are * either part of a trusted organization or standalone account * * See https://docs.aws.amazon.com/security-lake/latest/APIReference/API_CreateAwsLogSource.html */ CreateAwsLogSource = "securitylake:CreateAwsLogSource", /** * Grants permission to add a custom source * * See https://docs.aws.amazon.com/security-lake/latest/APIReference/API_CreateCustomLogSource.html */ CreateCustomLogSource = "securitylake:CreateCustomLogSource", /** * Grants permission to create a new security data lake * * See https://docs.aws.amazon.com/security-lake/latest/APIReference/API_CreateDataLake.html */ CreateDataLake = "securitylake:CreateDataLake", /** * Grants permission to get instant notifications about exceptions. Subscribes to * the SNS topics for exception notifications * * See https://docs.aws.amazon.com/security-lake/latest/APIReference/API_CreateDataLakeExceptionSubscription.html */ CreateDataLakeExceptionSubscription = "securitylake:CreateDataLakeExceptionSubscription", /** * Grants permission to automatically enable Amazon Security Lake for new member a * ccounts in your organization * * See https://docs.aws.amazon.com/security-lake/latest/APIReference/API_CreateDataLakeOrganizationConfiguration.html */ CreateDataLakeOrganizationConfiguration = "securitylake:CreateDataLakeOrganizationConfiguration", /** * Grants permission to create a subscriber * * See https://docs.aws.amazon.com/security-lake/latest/APIReference/API_CreateSubscriber.html */ CreateSubscriber = "securitylake:CreateSubscriber", /** * Grants permission to create a webhook invocation to notify a client when there * is new data in the data lake * * See https://docs.aws.amazon.com/security-lake/latest/APIReference/API_CreateSubscriberNotification.html */ CreateSubscriberNotification = "securitylake:CreateSubscriberNotification", /** * Grants permission to disable any source type in any region for accounts that ar * e part of a trusted organization or standalone accounts * * See https://docs.aws.amazon.com/security-lake/latest/APIReference/API_DeleteAwsLogSource.html */ DeleteAwsLogSource = "securitylake:DeleteAwsLogSource", /** * Grants permission to remove a custom source * * See https://docs.aws.amazon.com/security-lake/latest/APIReference/API_DeleteCustomLogSource.html */ DeleteCustomLogSource = "securitylake:DeleteCustomLogSource", /** * Grants permission to delete security data lake * * See https://docs.aws.amazon.com/security-lake/latest/APIReference/API_DeleteDataLake.html */ DeleteDataLake = "securitylake:DeleteDataLake", /** * Grants permission to unsubscribe from SNS topics for exception notifications. R * emoves exception notifications for the SNS topic * * See https://docs.aws.amazon.com/security-lake/latest/APIReference/API_DeleteDataLakeExceptionSubscription.html */ DeleteDataLakeExceptionSubscription = "securitylake:DeleteDataLakeExceptionSubscription", /** * Grants permission to remove the automatic enablement of Amazon Security Lake ac * cess for new organization accounts * * See https://docs.aws.amazon.com/security-lake/latest/APIReference/API_DeleteDataLakeOrganizationConfiguration.html */ DeleteDataLakeOrganizationConfiguration = "securitylake:DeleteDataLakeOrganizationConfiguration", /** * Grants permission to delete the specified subscriber * * See https://docs.aws.amazon.com/security-lake/latest/APIReference/API_DeleteSubscriber.html */ DeleteSubscriber = "securitylake:DeleteSubscriber", /** * Grants permission to remove a webhook invocation to notify a client when there * is new data in the data lake * * See https://docs.aws.amazon.com/security-lake/latest/APIReference/API_DeleteSubscriberNotification.html */ DeleteSubscriberNotification = "securitylake:DeleteSubscriberNotification", /** * Grants permission to remove the Delegated Administrator account and disable Ama * zon Security Lake as a service for this organization * * See https://docs.aws.amazon.com/security-lake/latest/APIReference/API_DeregisterDataLakeDelegatedAdministrator.html */ DeregisterDataLakeDelegatedAdministrator = "securitylake:DeregisterDataLakeDelegatedAdministrator", /** * Grants permission to query the protocol and endpoint that were provided when su * bscribing to SNS topics for exception notifications * * See https://docs.aws.amazon.com/security-lake/latest/APIReference/API_GetDataLakeExceptionSubscription.html */ GetDataLakeExceptionSubscription = "securitylake:GetDataLakeExceptionSubscription", /** * Grants permission to get an organization's configuration setting for automatica * lly enabling Amazon Security Lake access for new organization accounts * * See https://docs.aws.amazon.com/security-lake/latest/APIReference/API_GetDataLakeOrganizationConfiguration.html */ GetDataLakeOrganizationConfiguration = "securitylake:GetDataLakeOrganizationConfiguration", /** * Grants permission to get a static snapshot of the security data lake in the cur * rent region. The snapshot includes enabled accounts and log sources * * See https://docs.aws.amazon.com/security-lake/latest/APIReference/API_GetDataLakeSources.html */ GetDataLakeSources = "securitylake:GetDataLakeSources", /** * Grants permission to get information about subscriber that is already created * * See https://docs.aws.amazon.com/security-lake/latest/APIReference/API_GetSubscriber.html */ GetSubscriber = "securitylake:GetSubscriber", /** * Grants permission to get the list of all non-retryable failures * * See https://docs.aws.amazon.com/security-lake/latest/APIReference/API_ListDataLakeExceptions.html */ ListDataLakeExceptions = "securitylake:ListDataLakeExceptions", /** * Grants permission to list information about the security data lakes * * See https://docs.aws.amazon.com/security-lake/latest/APIReference/API_ListDataLakes.html */ ListDataLakes = "securitylake:ListDataLakes", /** * Grants permission to view the enabled accounts. You can view the enabled source * s in the enabled regions * * See https://docs.aws.amazon.com/security-lake/latest/APIReference/API_ListLogSources.html */ ListLogSources = "securitylake:ListLogSources", /** * Grants permission to list all subscribers * * See https://docs.aws.amazon.com/security-lake/latest/APIReference/API_ListSubscribers.html */ ListSubscribers = "securitylake:ListSubscribers", /** * Grants permission to list all tags for the resource * * See https://docs.aws.amazon.com/security-lake/latest/APIReference/API_ListTagsForResource.html */ ListTagsForResource = "securitylake:ListTagsForResource", /** * Grants permission to designate an account as the Amazon Security Lake administr * ator account for the organization * * See https://docs.aws.amazon.com/security-lake/latest/APIReference/API_RegisterDataLakeDelegatedAdministrator.html */ RegisterDataLakeDelegatedAdministrator = "securitylake:RegisterDataLakeDelegatedAdministrator", /** * Grants permission to add tags to the resource * * See https://docs.aws.amazon.com/security-lake/latest/APIReference/API_TagResource.html */ TagResource = "securitylake:TagResource", /** * Grants permission to remove tags from the resource * * See https://docs.aws.amazon.com/security-lake/latest/APIReference/API_UntagResource.html */ UntagResource = "securitylake:UntagResource", /** * Grants permission to update a security data lake * * See https://docs.aws.amazon.com/security-lake/latest/APIReference/API_UpdateDataLake.html */ UpdateDataLake = "securitylake:UpdateDataLake", /** * Grants permission to update subscriptions to the SNS topics for exception notif * ications * * See https://docs.aws.amazon.com/security-lake/latest/APIReference/API_UpdateDataLakeExceptionSubscription.html */ UpdateDataLakeExceptionSubscription = "securitylake:UpdateDataLakeExceptionSubscription", /** * Grants permission to update subscriber * * See https://docs.aws.amazon.com/security-lake/latest/APIReference/API_UpdateSubscriber.html */ UpdateSubscriber = "securitylake:UpdateSubscriber", /** * Grants permission to update a webhook invocation to notify a client when there * is new data in the data lake * * See https://docs.aws.amazon.com/security-lake/latest/APIReference/API_UpdateSubscriberNotification.html */ UpdateSubscriberNotification = "securitylake:UpdateSubscriberNotification" }