Amazon Macie is a fully managed data security and data privacy service that uses machine learning and pattern matching to discover and protect your sensitive data in AWS. Macie automates the discovery of sensitive data, such as PII and intellectual property, to provide you with insight into the data that your organization stores in AWS. Macie also provides an inventory of your Amazon S3 buckets, which it continually monitors for you. If Macie detects sensitive data or potential data access issues, it generates detailed findings for you to review and act upon as necessary.
", "operations" : { "AcceptInvitation" : "Accepts an Amazon Macie membership invitation that was received from a specific account.
", "BatchGetCustomDataIdentifiers" : "Retrieves information about one or more custom data identifiers.
", "CreateClassificationJob" : "Creates and defines the settings for a classification job.
", "CreateCustomDataIdentifier" : "Creates and defines the criteria and other settings for a custom data identifier.
", "CreateFindingsFilter" : "Creates and defines the criteria and other settings for a findings filter.
", "CreateInvitations" : "Sends an Amazon Macie membership invitation to one or more accounts.
", "CreateMember" : "Associates an account with an Amazon Macie master account.
", "CreateSampleFindings" : "Creates sample findings.
", "DeclineInvitations" : "Declines Amazon Macie membership invitations that were received from specific accounts.
", "DeleteCustomDataIdentifier" : "Soft deletes a custom data identifier.
", "DeleteFindingsFilter" : "Deletes a findings filter.
", "DeleteInvitations" : "Deletes Amazon Macie membership invitations that were received from specific accounts.
", "DeleteMember" : "Deletes the association between an Amazon Macie master account and an account.
", "DescribeBuckets" : "Retrieves (queries) statistical data and other information about one or more S3 buckets that Amazon Macie monitors and analyzes.
", "DescribeClassificationJob" : "Retrieves information about the status and settings for a classification job.
", "DescribeOrganizationConfiguration" : "Retrieves information about the Amazon Macie configuration settings for an AWS organization.
", "DisableMacie" : "Disables an Amazon Macie account and deletes Macie resources for the account.
", "DisableOrganizationAdminAccount" : "Disables an account as a delegated administrator of Amazon Macie for an AWS organization.
", "DisassociateFromMasterAccount" : "Disassociates a member account from its Amazon Macie master account.
", "DisassociateMember" : "Disassociates an Amazon Macie master account from a member account.
", "EnableMacie" : "Enables Amazon Macie and specifies the configuration settings for a Macie account.
", "EnableOrganizationAdminAccount" : "Enables an account as a delegated administrator of Amazon Macie for an AWS organization.
", "GetBucketStatistics" : "Retrieves (queries) aggregated statistical data for all the S3 buckets that Amazon Macie monitors and analyzes.
", "GetClassificationExportConfiguration" : "Retrieves the configuration settings for storing data classification results.
", "GetCustomDataIdentifier" : "Retrieves information about the criteria and other settings for a custom data identifier.
", "GetFindingStatistics" : "Retrieves (queries) aggregated statistical data about findings.
", "GetFindings" : "Retrieves information about one or more findings.
", "GetFindingsFilter" : "Retrieves information about the criteria and other settings for a findings filter.
", "GetInvitationsCount" : "Retrieves the count of Amazon Macie membership invitations that were received by an account.
", "GetMacieSession" : "Retrieves information about the current status and configuration settings for an Amazon Macie account.
", "GetMasterAccount" : "Retrieves information about the Amazon Macie master account for an account.
", "GetMember" : "Retrieves information about a member account that's associated with an Amazon Macie master account.
", "GetUsageStatistics" : "Retrieves (queries) quotas and aggregated usage data for one or more accounts.
", "GetUsageTotals" : "Retrieves (queries) aggregated usage data for an account.
", "ListClassificationJobs" : "Retrieves a subset of information about one or more classification jobs.
", "ListCustomDataIdentifiers" : "Retrieves a subset of information about all the custom data identifiers for an account.
", "ListFindings" : "Retrieves a subset of information about one or more findings.
", "ListFindingsFilters" : "Retrieves a subset of information about all the findings filters for an account.
", "ListInvitations" : "Retrieves information about all the Amazon Macie membership invitations that were received by an account.
", "ListMembers" : "Retrieves information about the accounts that are associated with an Amazon Macie master account.
", "ListOrganizationAdminAccounts" : "Retrieves information about the account that's designated as the delegated administrator of Amazon Macie for an AWS organization.
", "ListTagsForResource" : "Retrieves the tags (keys and values) that are associated with a classification job, custom data identifier, findings filter, or member account.
", "PutClassificationExportConfiguration" : "Creates or updates the configuration settings for storing data classification results.
", "TagResource" : "Adds or updates one or more tags (keys and values) that are associated with a classification job, custom data identifier, findings filter, or member account.
", "TestCustomDataIdentifier" : "Tests a custom data identifier.
", "UntagResource" : "Removes one or more tags (keys and values) from a classification job, custom data identifier, findings filter, or member account.
", "UpdateClassificationJob" : "Cancels a classification job.
", "UpdateFindingsFilter" : "Updates the criteria and other settings for a findings filter.
", "UpdateMacieSession" : "Suspends or re-enables an Amazon Macie account, or updates the configuration settings for a Macie account.
", "UpdateMemberSession" : "Enables an Amazon Macie master account to suspend or re-enable a member account.
", "UpdateOrganizationConfiguration" : "Updates Amazon Macie configuration settings for an AWS organization.
" }, "shapes" : { "AcceptInvitationRequest" : { "base" : "Specifies an Amazon Macie membership invitation to accept.
", "refs" : { } }, "AccessControlList" : { "base" : "Provides information about the permissions settings of the bucket-level access control list (ACL) for an S3 bucket.
", "refs" : { "BucketLevelPermissions$AccessControlList" : "The permissions settings of the access control list (ACL) for the bucket. This value is null if an ACL hasn't been defined for the bucket.
" } }, "AccessDeniedException" : { "base" : "Provides information about an error that occurred due to insufficient access to a specified resource.
", "refs" : { } }, "AccountDetail" : { "base" : "Specifies details for an account to associate with an Amazon Macie master account.
", "refs" : { "CreateMemberRequest$Account" : "The details for the account to associate with the master account.
" } }, "AccountLevelPermissions" : { "base" : "Provides information about account-level permissions settings that apply to an S3 bucket.
", "refs" : { "BucketPermissionConfiguration$AccountLevelPermissions" : "The account-level permissions settings that apply to the bucket.
" } }, "AdminAccount" : { "base" : "Provides information about an account that's designated as a delegated administrator of Amazon Macie for an AWS organization.
", "refs" : { "__listOfAdminAccount$member" : null } }, "AdminStatus" : { "base" : "The current status of an account as a delegated administrator of Amazon Macie for an AWS organization.
", "refs" : { "AdminAccount$Status" : "The current status of the account as a delegated administrator of Amazon Macie for the organization.
" } }, "ApiCallDetails" : { "base" : "Provides information about an API operation that an entity invoked for an affected resource.
", "refs" : { "FindingAction$ApiCallDetails" : "The invocation details of the API operation that an entity invoked for the affected resource, if the value for the actionType property is AWS_API_CALL.
" } }, "AssumedRole" : { "base" : "Provides information about an identity that performed an action on an affected resource by using temporary security credentials. The credentials were obtained using the AssumeRole operation of the AWS Security Token Service (AWS STS) API.
", "refs" : { "UserIdentity$AssumedRole" : "If the action was performed with temporary security credentials that were obtained using the AssumeRole operation of the AWS Security Token Service (AWS STS) API, the identifiers, session context, and other details about the identity.
" } }, "AwsAccount" : { "base" : "Provides information about an AWS account and entity that performed an action on an affected resource. The action was performed using the credentials for an AWS account other than your own account.
", "refs" : { "UserIdentity$AwsAccount" : "If the action was performed using the credentials for another AWS account, the details of that account.
" } }, "AwsService" : { "base" : "Provides information about an AWS service that performed an action on an affected resource.
", "refs" : { "UserIdentity$AwsService" : "If the action was performed by an AWS account that belongs to an AWS service, the name of the service.
" } }, "BatchGetCustomDataIdentifierSummary" : { "base" : "Provides information about a custom data identifier.
", "refs" : { "__listOfBatchGetCustomDataIdentifierSummary$member" : null } }, "BatchGetCustomDataIdentifiersRequest" : { "base" : "Specifies one or more custom data identifiers to retrieve information about.
", "refs" : { } }, "BatchGetCustomDataIdentifiersResponse" : { "base" : "Provides information about one or more custom data identifiers.
", "refs" : { } }, "BlockPublicAccess" : { "base" : "Provides information about the block public access settings for an S3 bucket. These settings can apply to a bucket at the account level or bucket level. For detailed information about each setting, see Using Amazon S3 block public access in the Amazon Simple Storage Service Developer Guide.
", "refs" : { "AccountLevelPermissions$BlockPublicAccess" : "The block public access settings for the bucket.
", "BucketLevelPermissions$BlockPublicAccess" : "The block public access settings for the bucket.
" } }, "BucketCountByEffectivePermission" : { "base" : "Provides information about the number of S3 buckets that are publicly accessible based on a combination of permissions settings for each bucket.
", "refs" : { "GetBucketStatisticsResponse$BucketCountByEffectivePermission" : "The total number of buckets that are publicly accessible based on a combination of permissions settings for each bucket.
" } }, "BucketCountByEncryptionType" : { "base" : "Provides information about the number of S3 buckets that use certain types of server-side encryption or don't encrypt objects by default.
", "refs" : { "GetBucketStatisticsResponse$BucketCountByEncryptionType" : "The total number of buckets, grouped by server-side encryption type. This object also reports the total number of buckets that aren't encrypted.
" } }, "BucketCountBySharedAccessType" : { "base" : "Provides information about the number of S3 buckets that are shared with other AWS accounts.
", "refs" : { "GetBucketStatisticsResponse$BucketCountBySharedAccessType" : "The total number of buckets that are shared with another AWS account.
" } }, "BucketCriteria" : { "base" : "Specifies, as a map, one or more attribute-based conditions that filter the results of a query for information about S3 buckets.
", "refs" : { "DescribeBucketsRequest$Criteria" : "The criteria to use to filter the query results.
" } }, "BucketCriteriaAdditionalProperties" : { "base" : "Specifies the operator to use in an attribute-based condition that filters the results of a query for information about S3 buckets.
", "refs" : { "BucketCriteria$member" : null } }, "BucketLevelPermissions" : { "base" : "Provides information about bucket-level permissions settings for an S3 bucket.
", "refs" : { "BucketPermissionConfiguration$BucketLevelPermissions" : "The bucket-level permissions settings for the bucket.
" } }, "BucketMetadata" : { "base" : "Provides information about an S3 bucket that Amazon Macie monitors and analyzes.
", "refs" : { "__listOfBucketMetadata$member" : null } }, "BucketPermissionConfiguration" : { "base" : "The account-level and bucket-level permissions settings for an S3 bucket.
", "refs" : { "BucketPublicAccess$PermissionConfiguration" : "The account-level and bucket-level permissions for the bucket.
" } }, "BucketPolicy" : { "base" : "Provides information about the permissions settings of a bucket policy for an S3 bucket.
", "refs" : { "BucketLevelPermissions$BucketPolicy" : "The permissions settings of the bucket policy for the bucket. This value is null if a bucket policy hasn't been defined for the bucket.
" } }, "BucketPublicAccess" : { "base" : "Provides information about permissions settings that determine whether an S3 bucket is publicly accessible.
", "refs" : { "BucketMetadata$PublicAccess" : "Specifies whether the bucket is publicly accessible. If this value is true, an access control list (ACL), bucket policy, or block public access settings allow the bucket to be accessed by the general public.
", "S3Bucket$PublicAccess" : "The permissions settings that determine whether the bucket is publicly accessible.
" } }, "BucketSortCriteria" : { "base" : "Specifies criteria for sorting the results of a query for information about S3 buckets.
", "refs" : { "DescribeBucketsRequest$SortCriteria" : "The criteria to use to sort the query results.
" } }, "ClassificationDetails" : { "base" : "Provides information about a sensitive data finding, including the classification job that produced the finding.
", "refs" : { "Finding$ClassificationDetails" : "The details of a sensitive data finding. This value is null for a policy finding.
" } }, "ClassificationExportConfiguration" : { "base" : "Specifies where to store data classification results, and the encryption settings to use when storing results in that location. Currently, you can store classification results only in an S3 bucket.
", "refs" : { "GetClassificationExportConfigurationResponse$Configuration" : "The location where data classification results are stored, and the encryption settings that are used when storing results in that location.
", "PutClassificationExportConfigurationRequest$Configuration" : "The location to store data classification results in, and the encryption settings to use when storing results in that location.
", "PutClassificationExportConfigurationResponse$Configuration" : "The location where the data classification results are stored, and the encryption settings that are used when storing results in that location.
" } }, "ClassificationResult" : { "base" : "Provides detailed information about a sensitive data finding, including the types and number of occurrences of the sensitive data that was found.
", "refs" : { "ClassificationDetails$Result" : "The status and detailed results of the finding.
" } }, "ClassificationResultStatus" : { "base" : "Provides information about the status of a sensitive data finding.
", "refs" : { "ClassificationResult$Status" : "The status of the finding.
" } }, "ConflictException" : { "base" : "Provides information about an error that occurred due to a versioning conflict for a specified resource.
", "refs" : { } }, "CreateClassificationJobRequest" : { "base" : "Specifies the scope, schedule, and other settings for a classification job. You can't delete or change the settings for a classification job after you create it. In Amazon Macie, classification jobs are immutable. This ensures accurate data classification results for audits or investigations.
", "refs" : { } }, "CreateClassificationJobResponse" : { "base" : "Provides information about a classification job that was created in response to a request.
", "refs" : { } }, "CreateCustomDataIdentifierRequest" : { "base" : "Specifies the criteria and other settings for a new custom data identifier. You can't change a custom data identifier after you create it. In Amazon Macie, custom data identifiers are immutable. This ensures accurate data classification results for audits or investigations.
", "refs" : { } }, "CreateCustomDataIdentifierResponse" : { "base" : "Provides information about a custom data identifier that was created in response to a request.
", "refs" : { } }, "CreateFindingsFilterRequest" : { "base" : "Specifies the criteria and other settings for a new findings filter.
", "refs" : { } }, "CreateFindingsFilterResponse" : { "base" : "Provides information about a findings filter that was created in response to a request.
", "refs" : { } }, "CreateInvitationsRequest" : { "base" : "Specifies the settings for an Amazon Macie membership invitation.
", "refs" : { } }, "CreateInvitationsResponse" : { "base" : "Provides information about an unprocessed request to send an Amazon Macie membership invitation to a specific account.
", "refs" : { } }, "CreateMemberRequest" : { "base" : "Specifies an account to associate with an Amazon Macie master account.
", "refs" : { } }, "CreateMemberResponse" : { "base" : "Provides information about a request to associate an account with an Amazon Macie master account.
", "refs" : { } }, "CreateSampleFindingsRequest" : { "base" : "Specifies the types of findings to include in a set of sample findings that Amazon Macie creates.
", "refs" : { } }, "Criterion" : { "base" : "Specifies a condition that defines a property, operator, and value to use to filter the results of a query for findings.
", "refs" : { "FindingCriteria$Criterion" : "A condition that specifies the property, operator, and value to use to filter the results.
" } }, "CriterionAdditionalProperties" : { "base" : "Specifies the operator to use in a property-based condition that filters the results of a query for findings.
", "refs" : { "Criterion$member" : null } }, "Currency" : { "base" : "The type of currency that data for a usage metric is reported in. Possible values are:
", "refs" : { "UsageByAccount$Currency" : "The type of currency that the value for the metric (estimatedCost) is reported in.
", "UsageTotal$Currency" : "The type of currency that the value for the metric (estimatedCost) is reported in.
" } }, "CustomDataIdentifierSummary" : { "base" : "Provides information about a custom data identifier.
", "refs" : { "__listOfCustomDataIdentifierSummary$member" : null } }, "CustomDataIdentifiers" : { "base" : "Provides information about the number of occurrences of the data that produced a sensitive data finding, and the custom data identifiers that detected the data for the finding.
", "refs" : { "ClassificationResult$CustomDataIdentifiers" : "The number of occurrences of the data that produced the finding, and the custom data identifiers that detected the data.
" } }, "CustomDetection" : { "base" : "Provides information about a custom data identifier that produced a sensitive data finding, and the number of occurrences of the data that it detected for the finding.
", "refs" : { "CustomDetections$member" : null } }, "CustomDetections" : { "base" : "Provides information about custom data identifiers that produced a sensitive data finding, and the number of occurrences of the data that each identifier detected.
", "refs" : { "CustomDataIdentifiers$Detections" : "The custom data identifiers that detected the data, and the number of occurrences of the data that each identifier detected.
" } }, "DailySchedule" : { "base" : "Specifies that a classification job runs once a day, every day. This is an empty object.
", "refs" : { "JobScheduleFrequency$DailySchedule" : "Specifies a daily recurrence pattern for running the job.
" } }, "DayOfWeek" : { "base" : null, "refs" : { "WeeklySchedule$DayOfWeek" : "The day of the week when Amazon Macie runs the job.
" } }, "DeclineInvitationsRequest" : { "base" : "Specifies one or more accounts that sent Amazon Macie membership invitations to decline.
", "refs" : { } }, "DeclineInvitationsResponse" : { "base" : "Provides information about unprocessed requests to decline Amazon Macie membership invitations that were received from specific accounts.
", "refs" : { } }, "DefaultDetection" : { "base" : "Provides information about sensitive data that was detected by managed data identifiers and produced a sensitive data finding.
", "refs" : { "DefaultDetections$member" : null } }, "DefaultDetections" : { "base" : "Provides information about sensitive data that was detected by managed data identifiers and produced a sensitive data finding, and the number of occurrences of each type of sensitive data that was detected.
", "refs" : { "SensitiveDataItem$Detections" : "An array of objects, one for each type of sensitive data that was detected. Each object reports the number of occurrences of a specific type of sensitive data that was detected.
" } }, "DeleteInvitationsRequest" : { "base" : "Specifies one or more accounts that sent Amazon Macie membership invitations to delete.
", "refs" : { } }, "DeleteInvitationsResponse" : { "base" : "Provides information about unprocessed requests to delete Amazon Macie membership invitations that were received from specific accounts.
", "refs" : { } }, "DescribeBucketsRequest" : { "base" : "Specifies criteria for filtering, sorting, and paginating the results of a query for information about S3 buckets.
", "refs" : { } }, "DescribeBucketsResponse" : { "base" : "Provides the results of a query that retrieved statistical data and other information about one or more S3 buckets that Amazon Macie monitors and analyzes.
", "refs" : { } }, "DescribeClassificationJobResponse" : { "base" : "Provides information about a classification job, including the current configuration settings and status of the job.
", "refs" : { } }, "DescribeOrganizationConfigurationResponse" : { "base" : "Provides information about the Amazon Macie configuration settings for an AWS organization.
", "refs" : { } }, "DomainDetails" : { "base" : "Provides information about the domain name of the device that an entity used to perform an action on an affected resource.
", "refs" : { "FindingActor$DomainDetails" : "The domain name of the device that the entity used to perform the action on the affected resource.
" } }, "EffectivePermission" : { "base" : null, "refs" : { "BucketPublicAccess$EffectivePermission" : "Specifies whether the bucket is publicly accessible due to the combination of permissions settings that apply to the bucket. Possible values are: PUBLIC, the bucket is publicly accessible; and, NOT_PUBLIC, the bucket isn't publicly accessible.
" } }, "Empty" : { "base" : "The request succeeded and there isn't any content to include in the body of the response (No Content).
", "refs" : { } }, "EnableMacieRequest" : { "base" : "Enables Amazon Macie and specifies the configuration settings for an Amazon Macie account.
", "refs" : { } }, "EnableOrganizationAdminAccountRequest" : { "base" : "Specifies an account to designate as a delegated administrator of Amazon Macie for an AWS organization. To submit this request, you must be a user of the master account for the AWS organization.
", "refs" : { } }, "EncryptionType" : { "base" : "The type of server-side encryption that's used to encrypt objects in the S3 bucket. Valid values are:
", "refs" : { "ServerSideEncryption$EncryptionType" : "The server-side encryption algorithm that's used when storing data in the bucket or object. If encryption is disabled for the bucket or object, this value is NONE.
" } }, "ErrorCode" : { "base" : "The source of an error, issue, or delay. Possible values are:
", "refs" : { "UnprocessedAccount$ErrorCode" : "The source of the issue or delay in processing the request.
" } }, "FederatedUser" : { "base" : "Provides information about an identity that performed an action on an affected resource by using temporary security credentials. The credentials were obtained using the GetFederationToken operation of the AWS Security Token Service (AWS STS) API.
", "refs" : { "UserIdentity$FederatedUser" : "If the action was performed with temporary security credentials that were obtained using the GetFederationToken operation of the AWS Security Token Service (AWS STS) API, the identifiers, session context, and other details about the identity.
" } }, "Finding" : { "base" : "Provides information about a finding.
", "refs" : { "__listOfFinding$member" : null } }, "FindingAction" : { "base" : "Provides information about an action that occurred for a resource and produced a policy finding.
", "refs" : { "PolicyDetails$Action" : "The action that produced the finding.
" } }, "FindingActionType" : { "base" : "The type of action that occurred for the resource and produced the policy finding:
", "refs" : { "FindingAction$ActionType" : "The type of action that occurred for the affected resource. This value is typically AWS_API_CALL, which indicates that an entity invoked an API operation for the resource.
" } }, "FindingActor" : { "base" : "Provides information about an entity that performed an action that produced a policy finding for a resource.
", "refs" : { "PolicyDetails$Actor" : "The entity that performed the action that produced the finding.
" } }, "FindingCategory" : { "base" : "The category of the finding. Valid values are:
", "refs" : { "Finding$Category" : "The category of the finding. Possible values are: CLASSIFICATION, for a sensitive data finding; and, POLICY, for a policy finding.
" } }, "FindingCriteria" : { "base" : "Specifies, as a map, one or more property-based conditions that filter the results of a query for findings.
", "refs" : { "CreateFindingsFilterRequest$FindingCriteria" : "The criteria to use to filter findings.
", "GetFindingStatisticsRequest$FindingCriteria" : "The criteria to use to filter the query results.
", "GetFindingsFilterResponse$FindingCriteria" : "The criteria that's used to filter findings.
", "ListFindingsRequest$FindingCriteria" : "The criteria to use to filter the results.
", "UpdateFindingsFilterRequest$FindingCriteria" : "The criteria to use to filter findings.
" } }, "FindingPublishingFrequency" : { "base" : "The frequency with which Amazon Macie publishes updates to policy findings for an account. This includes publishing updates to AWS Security Hub and Amazon EventBridge (formerly called Amazon CloudWatch Events). Valid values are:
", "refs" : { "EnableMacieRequest$FindingPublishingFrequency" : "Specifies how often to publish updates to policy findings for the account. This includes publishing updates to AWS Security Hub and Amazon EventBridge (formerly called Amazon CloudWatch Events).", "GetMacieSessionResponse$FindingPublishingFrequency" : "The frequency with which Amazon Macie publishes updates to policy findings for the account. This includes publishing updates to AWS Security Hub and Amazon EventBridge (formerly called Amazon CloudWatch Events).
", "UpdateMacieSessionRequest$FindingPublishingFrequency" : "Specifies how often to publish updates to policy findings for the account. This includes publishing updates to AWS Security Hub and Amazon EventBridge (formerly called Amazon CloudWatch Events)." } }, "FindingStatisticsSortAttributeName" : { "base" : "The grouping to sort the results by. Valid values are:
", "refs" : { "FindingStatisticsSortCriteria$AttributeName" : "The grouping to sort the results by. Valid values are: count, sort the results by the number of findings in each group of results; and, groupKey, sort the results by the name of each group of results.
" } }, "FindingStatisticsSortCriteria" : { "base" : "Specifies criteria for sorting the results of a query that retrieves aggregated statistical data about findings.
", "refs" : { "GetFindingStatisticsRequest$SortCriteria" : "The criteria to use to sort the query results.
" } }, "FindingType" : { "base" : "The type of finding. Valid values are:
", "refs" : { "Finding$Type" : "The type of the finding.
", "__listOfFindingType$member" : null } }, "FindingsFilterAction" : { "base" : "The action to perform on findings that meet the filter criteria. To suppress (automatically archive) findings that meet the criteria, set this value to ARCHIVE. Valid values are:
", "refs" : { "CreateFindingsFilterRequest$Action" : "The action to perform on findings that meet the filter criteria (findingCriteria). Valid values are: ARCHIVE, suppress (automatically archive) the findings; and, NOOP, don't perform any action on the findings.
", "FindingsFilterListItem$Action" : "The action that's performed on findings that meet the filter criteria. Possible values are: ARCHIVE, suppress (automatically archive) the findings; and, NOOP, don't perform any action on the findings.
", "GetFindingsFilterResponse$Action" : "The action that's performed on findings that meet the filter criteria (findingCriteria). Possible values are: ARCHIVE, suppress (automatically archive) the findings; and, NOOP, don't perform any action on the findings.
", "UpdateFindingsFilterRequest$Action" : "The action to perform on findings that meet the filter criteria (findingCriteria). Valid values are: ARCHIVE, suppress (automatically archive) the findings; and, NOOP, don't perform any action on the findings.
" } }, "FindingsFilterListItem" : { "base" : "Provides information about a findings filter.
", "refs" : { "__listOfFindingsFilterListItem$member" : null } }, "GetBucketStatisticsRequest" : { "base" : "Specifies an account that's associated with the S3 buckets to retrieve aggregated statistical data for.
", "refs" : { } }, "GetBucketStatisticsResponse" : { "base" : "Provides the results of a query that retrieved aggregated statistical data for all the S3 buckets that Amazon Macie monitors and analyzes for an account.
", "refs" : { } }, "GetClassificationExportConfigurationResponse" : { "base" : "Provides information about the current configuration settings for storing data classification results.
", "refs" : { } }, "GetCustomDataIdentifierResponse" : { "base" : "Provides information about the criteria and other settings for a custom data identifier.
", "refs" : { } }, "GetFindingStatisticsRequest" : { "base" : "Specifies criteria for filtering, grouping, sorting, and paginating the results of a query that retrieves aggregated statistical data about findings.
", "refs" : { } }, "GetFindingStatisticsResponse" : { "base" : "Provides the results of a query that retrieved aggregated statistical data about findings.
", "refs" : { } }, "GetFindingsFilterResponse" : { "base" : "Provides information about the criteria and other settings for a findings filter.
", "refs" : { } }, "GetFindingsRequest" : { "base" : "Specifies one or more findings to retrieve information about.
", "refs" : { } }, "GetFindingsResponse" : { "base" : "Provides the results of a request for information about one or more findings.
", "refs" : { } }, "GetInvitationsCountResponse" : { "base" : "Provides the count of all the Amazon Macie membership invitations that were received by an account, not including the currently accepted invitation.
", "refs" : { } }, "GetMacieSessionResponse" : { "base" : "Provides information about the current status and configuration settings for an Amazon Macie account.
", "refs" : { } }, "GetMasterAccountResponse" : { "base" : "Provides information about the Amazon Macie master account for an account. If the accounts are associated by a Macie membership invitation, the response also provides information about that invitation.
", "refs" : { } }, "GetMemberResponse" : { "base" : "Provides information about an account that's associated with an Amazon Macie master account.
", "refs" : { } }, "GetUsageStatisticsRequest" : { "base" : "Specifies criteria for filtering, sorting, and paginating the results of a query for quotas and aggregated usage data for one or more accounts.
", "refs" : { } }, "GetUsageStatisticsResponse" : { "base" : "Provides the results of a query that retrieved quotas and aggregated usage data for one or more accounts.
", "refs" : { } }, "GetUsageTotalsResponse" : { "base" : "Provides the results of a query that retrieved aggregated usage data for an account during the past 30 days.
", "refs" : { } }, "GroupBy" : { "base" : null, "refs" : { "GetFindingStatisticsRequest$GroupBy" : "The finding property to use to group the query results. Valid values are:
classificationDetails.jobId - The unique identifier for the classification job that produced the finding.
resourcesAffected.s3Bucket.name - The name of the S3 bucket that the finding applies to.
severity.description - The severity of the finding, such as High or Medium.
type - The type of finding, such as Policy:IAMUser/S3BucketPublic and SensitiveData:S3Object/Personal.
Provides a group of results for a query that retrieved aggregated statistical data about findings.
", "refs" : { "__listOfGroupCount$member" : null } }, "IamUser" : { "base" : "Provides information about an AWS Identity and Access Management (IAM) user who performed an action on an affected resource.
", "refs" : { "UserIdentity$IamUser" : "If the action was performed using the credentials for an AWS Identity and Access Management (IAM) user, the name and other details about the user.
" } }, "InternalServerException" : { "base" : "Provides information about an error that occurred due to an unknown internal server error, exception, or failure.
", "refs" : { } }, "Invitation" : { "base" : "Provides information about an Amazon Macie membership invitation that was received by an account.
", "refs" : { "GetMasterAccountResponse$Master" : "The AWS account ID for the master account. If the accounts are associated by a Macie membership invitation, this object also provides details about the invitation that was sent and accepted to establish the relationship between the accounts.
", "__listOfInvitation$member" : null } }, "IpAddressDetails" : { "base" : "Provides information about the IP address of the device that an entity used to perform an action on an affected resource.
", "refs" : { "FindingActor$IpAddressDetails" : "The IP address of the device that the entity used to perform the action on the affected resource. This object also provides information such as the owner and geographic location for the IP address.
" } }, "IpCity" : { "base" : "Provides information about the city that an IP address originated from.
", "refs" : { "IpAddressDetails$IpCity" : "The city that the IP address originated from.
" } }, "IpCountry" : { "base" : "Provides information about the country that an IP address originated from.
", "refs" : { "IpAddressDetails$IpCountry" : "The country that the IP address originated from.
" } }, "IpGeoLocation" : { "base" : "Provides geographic coordinates that indicate where a specified IP address originated from.
", "refs" : { "IpAddressDetails$IpGeoLocation" : "The geographic coordinates of the location that the IP address originated from.
" } }, "IpOwner" : { "base" : "Provides information about the registered owner of an IP address.
", "refs" : { "IpAddressDetails$IpOwner" : "The registered owner of the IP address.
" } }, "JobComparator" : { "base" : "The operator to use in a condition. Valid values are:
", "refs" : { "ListJobsFilterTerm$Comparator" : "The operator to use to filter the results.
", "SimpleScopeTerm$Comparator" : "The operator to use in the condition.
", "TagScopeTerm$Comparator" : "The operator to use in the condition.
" } }, "JobScheduleFrequency" : { "base" : "Specifies the recurrence pattern for running a classification job.
", "refs" : { "CreateClassificationJobRequest$ScheduleFrequency" : "The recurrence pattern for running the job. To run the job only once, don't specify a value for this property and set the value of the jobType property to ONE_TIME.
", "DescribeClassificationJobResponse$ScheduleFrequency" : "The recurrence pattern for running the job. If the job is configured to run only once, this value is null.
" } }, "JobScopeTerm" : { "base" : "Specifies a property- or tag-based condition that defines criteria for including or excluding objects from a classification job.
", "refs" : { "__listOfJobScopeTerm$member" : null } }, "JobScopingBlock" : { "base" : "Specifies one or more property- and tag-based conditions that define criteria for including or excluding objects from a classification job.
", "refs" : { "Scoping$Excludes" : "The property- or tag-based conditions that determine which objects to exclude from the analysis.
", "Scoping$Includes" : "The property- or tag-based conditions that determine which objects to include in the analysis.
" } }, "JobStatus" : { "base" : "The current status of a classification job. Possible values are:
", "refs" : { "DescribeClassificationJobResponse$JobStatus" : "The current status of the job. Possible values are:
CANCELLED - The job was cancelled by you or a user of the master account for your organization. A job might also be cancelled if ownership of an S3 bucket changed while the job was running, and that change affected the job's access to the bucket.
COMPLETE - Amazon Macie finished processing all the data specified for the job.
IDLE - For a recurring job, the previous scheduled run is complete and the next scheduled run is pending. This value doesn't apply to jobs that occur only once.
PAUSED - Amazon Macie started the job, but completion of the job would exceed one or more quotas for your account.
RUNNING - The job is in progress.
The current status of the job. Possible values are:
CANCELLED - The job was cancelled by you or a user of the master account for your organization. A job might also be cancelled if ownership of an S3 bucket changed while the job was running, and that change affected the job's access to the bucket.
COMPLETE - Amazon Macie finished processing all the data specified for the job.
IDLE - For a recurring job, the previous scheduled run is complete and the next scheduled run is pending. This value doesn't apply to jobs that occur only once.
PAUSED - Amazon Macie started the job, but completion of the job would exceed one or more quotas for your account.
RUNNING - The job is in progress.
The status to change the job's status to. The only supported value is CANCELLED, which cancels the job completely.
" } }, "JobSummary" : { "base" : "Provides information about a classification job, including the current status of the job.
", "refs" : { "__listOfJobSummary$member" : null } }, "JobType" : { "base" : "The schedule for running a classification job. Valid values are:
", "refs" : { "CreateClassificationJobRequest$JobType" : "The schedule for running the job. Valid values are:
ONE_TIME - Run the job only once. If you specify this value, don't specify a value for the scheduleFrequency property.
SCHEDULED - Run the job on a daily, weekly, or monthly basis. If you specify this value, use the scheduleFrequency property to define the recurrence pattern for the job.
The schedule for running the job. Possible values are:
ONE_TIME - The job ran or will run only once.
SCHEDULED - The job runs on a daily, weekly, or monthly basis. The scheduleFrequency property indicates the recurrence pattern for the job.
The schedule for running the job. Possible values are:
ONE_TIME - The job ran or will run only once.
SCHEDULED - The job runs on a daily, weekly, or monthly basis.
Provides information about the tags that are associated with an S3 bucket or object. Each tag consists of a required tag key and an associated tag value.
", "refs" : { "KeyValuePairList$member" : null, "__listOfKeyValuePair$member" : null } }, "KeyValuePairList" : { "base" : "Provides information about the tags that are associated with an S3 bucket or object. Each tag consists of a required tag key and an associated tag value.
", "refs" : { "S3Bucket$Tags" : "The tags that are associated with the bucket.
", "S3Object$Tags" : "The tags that are associated with the object.
" } }, "ListClassificationJobsRequest" : { "base" : "Specifies criteria for filtering, sorting, and paginating the results of a request for information about classification jobs.
", "refs" : { } }, "ListClassificationJobsResponse" : { "base" : "Provides the results of a request for information about one or more classification jobs.
", "refs" : { } }, "ListCustomDataIdentifiersRequest" : { "base" : "Specifies criteria for paginating the results of a request for information about custom data identifiers.
", "refs" : { } }, "ListCustomDataIdentifiersResponse" : { "base" : "Provides the results of a request for information about custom data identifiers.
", "refs" : { } }, "ListFindingsFiltersResponse" : { "base" : "Provides information about all the findings filters for an account.
", "refs" : { } }, "ListFindingsRequest" : { "base" : "Specifies criteria for filtering, sorting, and paginating the results of a request for information about findings.
", "refs" : { } }, "ListFindingsResponse" : { "base" : "Provides the results of a request for information about one or more findings.
", "refs" : { } }, "ListInvitationsResponse" : { "base" : "Provides information about all the Amazon Macie membership invitations that were received by an account.
", "refs" : { } }, "ListJobsFilterCriteria" : { "base" : "Specifies criteria for filtering the results of a request for information about classification jobs.
", "refs" : { "ListClassificationJobsRequest$FilterCriteria" : "The criteria to use to filter the results.
" } }, "ListJobsFilterKey" : { "base" : "The property to use to filter the results. Valid values are:
", "refs" : { "ListJobsFilterTerm$Key" : "The property to use to filter the results.
" } }, "ListJobsFilterTerm" : { "base" : "Specifies a condition that filters the results of a request for information about classification jobs. Each condition consists of a property, an operator, and one or more values.
", "refs" : { "__listOfListJobsFilterTerm$member" : null } }, "ListJobsSortAttributeName" : { "base" : "The property to sort the results by. Valid values are:
", "refs" : { "ListJobsSortCriteria$AttributeName" : "The property to sort the results by.
" } }, "ListJobsSortCriteria" : { "base" : "Specifies criteria for sorting the results of a request for information about classification jobs.
", "refs" : { "ListClassificationJobsRequest$SortCriteria" : "The criteria to use to sort the results.
" } }, "ListMembersResponse" : { "base" : "Provides information about the accounts that are associated with an Amazon Macie master account.
", "refs" : { } }, "ListOrganizationAdminAccountsResponse" : { "base" : "Provides information about the accounts that are designated as delegated administrators of Amazon Macie for an AWS organization.
", "refs" : { } }, "ListTagsForResourceResponse" : { "base" : "Provides information about the tags (keys and values) that are associated with a classification job, custom data identifier, findings filter, or member account.
", "refs" : { } }, "MacieStatus" : { "base" : "The status of an Amazon Macie account. Valid values are:
", "refs" : { "EnableMacieRequest$Status" : "Specifies the status for the account. To enable Amazon Macie and start all Amazon Macie activities for the account, set this value to ENABLED.
", "GetMacieSessionResponse$Status" : "The current status of the Amazon Macie account. Possible values are: PAUSED, the account is enabled but all Amazon Macie activities are suspended (paused) for the account; and, ENABLED, the account is enabled and all Amazon Macie activities are enabled for the account.
", "UpdateMacieSessionRequest$Status" : "Specifies whether to change the status of the account. Valid values are: ENABLED, resume all Amazon Macie activities for the account; and, PAUSED, suspend all Macie activities for the account.
", "UpdateMemberSessionRequest$Status" : "Specifies the new status for the account. Valid values are: ENABLED, resume all Amazon Macie activities for the account; and, PAUSED, suspend all Macie activities for the account.
" } }, "Member" : { "base" : "Provides information about an account that's associated with an Amazon Macie master account.
", "refs" : { "__listOfMember$member" : null } }, "MonthlySchedule" : { "base" : "Specifies a monthly recurrence pattern for running a classification job.
", "refs" : { "JobScheduleFrequency$MonthlySchedule" : "Specifies a monthly recurrence pattern for running the job.
" } }, "ObjectCountByEncryptionType" : { "base" : "Provides information about the number of objects that are in an S3 bucket and use certain types of server-side encryption, use client-side encryption, or aren't encrypted.
", "refs" : { "BucketMetadata$ObjectCountByEncryptionType" : "The total number of objects that are in the bucket, grouped by server-side encryption type. This includes a grouping that reports the total number of objects that aren't encrypted or use client-side encryption.
" } }, "OrderBy" : { "base" : null, "refs" : { "BucketSortCriteria$OrderBy" : "The sort order to apply to the results, based on the value for the property specified by the attributeName property. Valid values are: ASC, sort the results in ascending order; and, DESC, sort the results in descending order.
", "FindingStatisticsSortCriteria$OrderBy" : "The sort order to apply to the results, based on the value for the property specified by the attributeName property. Valid values are: ASC, sort the results in ascending order; and, DESC, sort the results in descending order.
", "ListJobsSortCriteria$OrderBy" : "The sort order to apply to the results, based on the value for the property specified by the attributeName property. Valid values are: ASC, sort the results in ascending order; and, DESC, sort the results in descending order.
", "SortCriteria$OrderBy" : "The sort order to apply to the results, based on the value for the property specified by the attributeName property. Valid values are: ASC, sort the results in ascending order; and, DESC, sort the results in descending order.
", "UsageStatisticsSortBy$OrderBy" : "The sort order to apply to the results, based on the value for the field specified by the key property. Valid values are: ASC, sort the results in ascending order; and, DESC, sort the results in descending order.
" } }, "PolicyDetails" : { "base" : "Provides the details of a policy finding.
", "refs" : { "Finding$PolicyDetails" : "The details of a policy finding. This value is null for a sensitive data finding.
" } }, "PutClassificationExportConfigurationRequest" : { "base" : "Specifies where to store data classification results, and the encryption settings to use when storing results in that location. Currently, you can store classification results only in an S3 bucket.
", "refs" : { } }, "PutClassificationExportConfigurationResponse" : { "base" : "Provides information about updated settings for storing data classification results.
", "refs" : { } }, "RelationshipStatus" : { "base" : "The current status of the relationship between an account and an associated Amazon Macie master account (inviter account). Possible values are:
", "refs" : { "GetMemberResponse$RelationshipStatus" : "The current status of the relationship between the account and the master account.
", "Invitation$RelationshipStatus" : "The status of the relationship between the account that sent the invitation (inviter account) and the account that received the invitation (invitee account).
", "Member$RelationshipStatus" : "The current status of the relationship between the account and the master account.
" } }, "ReplicationDetails" : { "base" : "Provides information about settings that define whether one or more objects in an S3 bucket are replicated to S3 buckets for other AWS accounts and, if so, which accounts.
", "refs" : { "BucketMetadata$ReplicationDetails" : "Specifies whether the bucket is configured to replicate one or more objects to buckets for other AWS accounts and, if so, which accounts.
" } }, "ResourceNotFoundException" : { "base" : "Provides information about an error that occurred because a specified resource wasn't found.
", "refs" : { } }, "ResourcesAffected" : { "base" : "Provides information about the resources that a finding applies to.
", "refs" : { "Finding$ResourcesAffected" : "The resources that the finding applies to.
" } }, "S3Bucket" : { "base" : "Provides information about an S3 bucket that a finding applies to.
", "refs" : { "ResourcesAffected$S3Bucket" : "An array of objects, one for each S3 bucket that the finding applies to. Each object provides a set of metadata about an affected S3 bucket.
" } }, "S3BucketDefinitionForJob" : { "base" : "Specifies which S3 buckets contain the objects that a classification job analyzes.
", "refs" : { "__listOfS3BucketDefinitionForJob$member" : null } }, "S3BucketOwner" : { "base" : "Provides information about the user who owns an S3 bucket.
", "refs" : { "S3Bucket$Owner" : "The display name and account identifier for the user who owns the bucket.
" } }, "S3Destination" : { "base" : "Specifies an S3 bucket to store data classification results in, and the encryption settings to use when storing results in that bucket.
", "refs" : { "ClassificationExportConfiguration$S3Destination" : "The S3 bucket to store data classification results in, and the encryption settings to use when storing results in that bucket.
" } }, "S3JobDefinition" : { "base" : "Specifies which S3 buckets contain the objects that a classification job analyzes, and the scope of that analysis.
", "refs" : { "CreateClassificationJobRequest$S3JobDefinition" : "The S3 buckets that contain the objects to analyze, and the scope of that analysis.
", "DescribeClassificationJobResponse$S3JobDefinition" : "The S3 buckets that the job is configured to analyze, and the scope of that analysis.
" } }, "S3Object" : { "base" : "Provides information about an S3 object that a finding applies to.
", "refs" : { "ResourcesAffected$S3Object" : "An array of objects, one for each S3 object that the finding applies to. Each object provides a set of metadata about an affected S3 object.
" } }, "ScopeFilterKey" : { "base" : "The property to use in a condition that determines which objects are analyzed by a classification job. Valid values are:
", "refs" : { "SimpleScopeTerm$Key" : "The property to use in the condition.
" } }, "Scoping" : { "base" : "Specifies one or more property- and tag-based conditions that refine the scope of a classification job. These conditions define criteria that determine which objects a job analyzes.
", "refs" : { "S3JobDefinition$Scoping" : "The property- and tag-based conditions that determine which objects to include or exclude from the analysis.
" } }, "SensitiveData" : { "base" : "Provides information about the category and number of occurrences of sensitive data that produced a finding.
", "refs" : { "ClassificationResult$SensitiveData" : "The category and number of occurrences of the sensitive data that produced the finding.
" } }, "SensitiveDataItem" : { "base" : "Provides information about the category, type, and number of occurrences of sensitive data that produced a finding.
", "refs" : { "SensitiveData$member" : null } }, "SensitiveDataItemCategory" : { "base" : "The category of sensitive data that was detected and produced the finding. Possible values are:
", "refs" : { "SensitiveDataItem$Category" : "The category of sensitive data that was detected. For example: FINANCIAL_INFORMATION, for financial information such as credit card numbers; PERSONAL_INFORMATION, for personally identifiable information such as full names and mailing addresses; or, CUSTOM_IDENTIFIER, for data that was detected by a custom data identifier.
" } }, "ServerSideEncryption" : { "base" : "Provides information about the server-side encryption settings for an S3 bucket or object.
", "refs" : { "S3Bucket$DefaultServerSideEncryption" : "The server-side encryption settings for the bucket.
", "S3Object$ServerSideEncryption" : "The server-side encryption settings for the object.
" } }, "ServiceLimit" : { "base" : "Specifies a current quota for an account.
", "refs" : { "UsageByAccount$ServiceLimit" : "The current value for the quota that corresponds to the metric specified by the type field.
" } }, "ServiceQuotaExceededException" : { "base" : "Provides information about an error that occurred due to one or more service quotas for an account.
", "refs" : { } }, "SessionContext" : { "base" : "Provides information about a session that was created for an entity that performed an action by using temporary security credentials.
", "refs" : { "AssumedRole$SessionContext" : "The details of the session that was created for the credentials, including the entity that issued the session.
", "FederatedUser$SessionContext" : "The details of the session that was created for the credentials, including the entity that issued the session.
" } }, "SessionContextAttributes" : { "base" : "Provides information about the context in which temporary security credentials were issued to an entity.
", "refs" : { "SessionContext$Attributes" : "The date and time when the credentials were issued, and whether the credentials were authenticated with a multi-factor authentication (MFA) device.
" } }, "SessionIssuer" : { "base" : "Provides information about the source and type of temporary security credentials that were issued to an entity.
", "refs" : { "SessionContext$SessionIssuer" : "The source and type of credentials that were issued to the entity.
" } }, "Severity" : { "base" : "Provides the numeric score and textual representation of a severity value.
", "refs" : { "Finding$Severity" : "The severity of the finding.
" } }, "SeverityDescription" : { "base" : "The textual representation of the finding's severity. Possible values are:
", "refs" : { "Severity$Description" : "The textual representation of the severity value, such as Low or High.
" } }, "SharedAccess" : { "base" : null, "refs" : { "BucketMetadata$SharedAccess" : "Specifies whether the bucket is shared with another AWS account. Valid values are:
EXTERNAL - The bucket is shared with an AWS account that isn’t part of the same Amazon Macie organization.
INTERNAL - The bucket is shared with an AWS account that's part of the same Amazon Macie organization.
NOT_SHARED - The bucket isn't shared with other AWS accounts.
Specifies a property-based condition that determines whether an object is included or excluded from a classification job.
", "refs" : { "JobScopeTerm$SimpleScopeTerm" : "A property-based condition that defines a property, operator, and one or more values for including or excluding an object from the job.
" } }, "SortCriteria" : { "base" : "Specifies criteria for sorting the results of a request for information about findings.
", "refs" : { "GetFindingsRequest$SortCriteria" : "The criteria for sorting the results of the request.
", "ListFindingsRequest$SortCriteria" : "The criteria to use to sort the results.
" } }, "Statistics" : { "base" : "Provides processing statistics for a classification job.
", "refs" : { "DescribeClassificationJobResponse$Statistics" : "The number of times that the job has run and processing statistics for the job's most recent run.
" } }, "StorageClass" : { "base" : "The storage class of the S3 bucket or object. Possible values are:
", "refs" : { "S3Object$StorageClass" : "The storage class of the object.
" } }, "TagMap" : { "base" : "A string-to-string map of key-value pairs that specifies the tags (keys and values) for a classification job, custom data identifier, findings filter, or member account.
", "refs" : { "CreateClassificationJobRequest$Tags" : "A map of key-value pairs that specifies the tags to associate with the job.
A job can have a maximum of 50 tags. Each tag consists of a required tag key and an associated tag value. The maximum length of a tag key is 128 characters. The maximum length of a tag value is 256 characters.
", "CreateCustomDataIdentifierRequest$Tags" : "A map of key-value pairs that specifies the tags to associate with the custom data identifier.
A custom data identifier can have a maximum of 50 tags. Each tag consists of a required tag key and an associated tag value. The maximum length of a tag key is 128 characters. The maximum length of a tag value is 256 characters.
", "CreateFindingsFilterRequest$Tags" : "A map of key-value pairs that specifies the tags to associate with the filter.
A findings filter can have a maximum of 50 tags. Each tag consists of a required tag key and an associated tag value. The maximum length of a tag key is 128 characters. The maximum length of a tag value is 256 characters.
", "CreateMemberRequest$Tags" : "A map of key-value pairs that specifies the tags to associate with the account in Amazon Macie.
An account can have a maximum of 50 tags. Each tag consists of a required tag key and an associated tag value. The maximum length of a tag key is 128 characters. The maximum length of a tag value is 256 characters.
", "DescribeClassificationJobResponse$Tags" : "A map of key-value pairs that identifies the tags (keys and values) that are associated with the classification job.
", "FindingsFilterListItem$Tags" : "A map of key-value pairs that identifies the tags (keys and values) that are associated with the filter.
", "GetCustomDataIdentifierResponse$Tags" : "A map of key-value pairs that identifies the tags (keys and values) that are associated with the custom data identifier.
", "GetFindingsFilterResponse$Tags" : "A map of key-value pairs that identifies the tags (keys and values) that are associated with the filter.
", "GetMemberResponse$Tags" : "A map of key-value pairs that identifies the tags (keys and values) that are associated with the member account in Amazon Macie.
", "ListTagsForResourceResponse$Tags" : "A map of key-value pairs that identifies the tags (keys and values) that are associated with the resource.
", "Member$Tags" : "A map of key-value pairs that identifies the tags (keys and values) that are associated with the account in Amazon Macie.
", "TagResourceRequest$Tags" : "A map of key-value pairs that specifies the tags to associate with the resource.
A resource can have a maximum of 50 tags. Each tag consists of a required tag key and an associated tag value. The maximum length of a tag key is 128 characters. The maximum length of a tag value is 256 characters.
" } }, "TagResourceRequest" : { "base" : "Specifies the tags (keys and values) to associate with a classification job, custom data identifier, findings filter, or member account.
", "refs" : { } }, "TagResourceResponse" : { "base" : "The request succeeded. The specified tags were added to the resource.
", "refs" : { } }, "TagScopeTerm" : { "base" : "Specifies a tag-based condition that determines whether an object is included or excluded from a classification job.
", "refs" : { "JobScopeTerm$TagScopeTerm" : "A tag-based condition that defines the operator and a tag key or tag keys and values for including or excluding an object from the job.
" } }, "TagTarget" : { "base" : "The type of object to apply a tag-based condition to. Valid values are:
", "refs" : { "TagScopeTerm$Target" : "The type of object to apply the condition to.
" } }, "TagValuePair" : { "base" : "Specifies a tag key and value, as a pair, to use in a tag-based condition for a classification job.
", "refs" : { "__listOfTagValuePair$member" : null } }, "TestCustomDataIdentifierRequest" : { "base" : "Specifies the detection criteria of a custom data identifier to test.
", "refs" : { } }, "TestCustomDataIdentifierResponse" : { "base" : "Provides test results for a custom data identifier.
", "refs" : { } }, "ThrottlingException" : { "base" : "Provides information about an error that occurred because too many requests were sent during a certain amount of time.
", "refs" : { } }, "Unit" : { "base" : null, "refs" : { "ServiceLimit$Unit" : "The unit of measurement for the value specified by the value field.
" } }, "UnprocessedAccount" : { "base" : "Provides information about an account-related request that hasn't been processed.
", "refs" : { "__listOfUnprocessedAccount$member" : null } }, "UntagResourceResponse" : { "base" : "The request succeeded. The specified tags were removed from the resource.
", "refs" : { } }, "UpdateClassificationJobRequest" : { "base" : "Cancels a classification job.
", "refs" : { } }, "UpdateFindingsFilterRequest" : { "base" : "Specifies the criteria and other settings for a findings filter.
", "refs" : { } }, "UpdateFindingsFilterResponse" : { "base" : "Provides information about a findings filter that was updated in response to a request.
", "refs" : { } }, "UpdateMacieSessionRequest" : { "base" : "Changes the status or configuration settings for an Amazon Macie account.
", "refs" : { } }, "UpdateMemberSessionRequest" : { "base" : "Suspends (pauses) or re-enables an Amazon Macie member account.
", "refs" : { } }, "UpdateOrganizationConfigurationRequest" : { "base" : "Specifies whether Amazon Macie is enabled automatically for accounts that are added to an AWS organization.
", "refs" : { } }, "UsageByAccount" : { "base" : "Provides data for a specific usage metric and the corresponding quota for an account. The value for the metric is an aggregated value that reports usage during the past 30 days.
", "refs" : { "__listOfUsageByAccount$member" : null } }, "UsageRecord" : { "base" : "Provides quota and aggregated usage data for an account.
", "refs" : { "__listOfUsageRecord$member" : null } }, "UsageStatisticsFilter" : { "base" : "Specifies a condition for filtering the results of a query for account quotas and usage data.
", "refs" : { "__listOfUsageStatisticsFilter$member" : null } }, "UsageStatisticsFilterComparator" : { "base" : "The operator to use in a condition that filters the results of a query for account quotas and usage data. Valid values are:
", "refs" : { "UsageStatisticsFilter$Comparator" : "The operator to use in the condition. If the value for the key property is accountId, this value must be CONTAINS. If the value for the key property is any other supported field, this value can be EQ, GT, GTE, LT, LTE, or NE.
" } }, "UsageStatisticsFilterKey" : { "base" : "The field to use in a condition that filters the results of a query for account quotas and usage data. Valid values are:
", "refs" : { "UsageStatisticsFilter$Key" : "The field to use in the condition.
" } }, "UsageStatisticsSortBy" : { "base" : "Specifies criteria for sorting the results of a query for account quotas and usage data.
", "refs" : { "GetUsageStatisticsRequest$SortBy" : "The criteria to use to sort the query results.
" } }, "UsageStatisticsSortKey" : { "base" : "The field to use to sort the results of a query for account quotas and usage data. Valid values are:
", "refs" : { "UsageStatisticsSortBy$Key" : "The field to sort the results by.
" } }, "UsageTotal" : { "base" : "Provides aggregated data for a usage metric. The value for the metric reports usage data for an account during the past 30 days.
", "refs" : { "__listOfUsageTotal$member" : null } }, "UsageType" : { "base" : "The name of a usage metric for an account. Possible values are:
", "refs" : { "UsageByAccount$Type" : "The name of the metric. Possible values are: DATA_INVENTORY_EVALUATION, for monitoring S3 buckets; and, SENSITIVE_DATA_DISCOVERY, for analyzing sensitive data.
", "UsageTotal$Type" : "The name of the metric. Possible values are: DATA_INVENTORY_EVALUATION, for monitoring S3 buckets; and, SENSITIVE_DATA_DISCOVERY, for analyzing sensitive data.
" } }, "UserIdentity" : { "base" : "Provides information about the type and other characteristics of an entity that performed an action on an affected resource.
", "refs" : { "FindingActor$UserIdentity" : "The type and other characteristics of the entity that performed the action on the affected resource.
" } }, "UserIdentityRoot" : { "base" : "Provides information about an AWS account and entity that performed an action on an affected resource. The action was performed using the credentials for your AWS account.
", "refs" : { "UserIdentity$Root" : "If the action was performed using the credentials for your AWS account, the details of your account.
" } }, "UserIdentityType" : { "base" : "The type of entity that performed the action on the affected resource. Possible values are:
", "refs" : { "UserIdentity$Type" : "The type of entity that performed the action.
" } }, "ValidationException" : { "base" : "Provides information about an error that occurred due to a syntax error in a request.
", "refs" : { } }, "WeeklySchedule" : { "base" : "Specifies a weekly recurrence pattern for running a classification job.
", "refs" : { "JobScheduleFrequency$WeeklySchedule" : "Specifies a weekly recurrence pattern for running the job.
" } }, "__boolean" : { "base" : null, "refs" : { "AccessControlList$AllowsPublicReadAccess" : "Specifies whether the ACL grants the general public with read access permissions for the bucket.
", "AccessControlList$AllowsPublicWriteAccess" : "Specifies whether the ACL grants the general public with write access permissions for the bucket.
", "BatchGetCustomDataIdentifierSummary$Deleted" : "Specifies whether the custom data identifier was deleted. If you delete a custom data identifier, Amazon Macie doesn't delete it permanently. Instead, it soft deletes the identifier.
", "BlockPublicAccess$BlockPublicAcls" : "Specifies whether Amazon S3 blocks public access control lists (ACLs) for the bucket and objects in the bucket.
", "BlockPublicAccess$BlockPublicPolicy" : "Specifies whether Amazon S3 blocks public bucket policies for the bucket.
", "BlockPublicAccess$IgnorePublicAcls" : "Specifies whether Amazon S3 ignores public ACLs for the bucket and objects in the bucket.
", "BlockPublicAccess$RestrictPublicBuckets" : "Specifies whether Amazon S3 restricts public bucket policies for the bucket.
", "BucketMetadata$Versioning" : "Specifies whether versioning is enabled for the bucket.
", "BucketPolicy$AllowsPublicReadAccess" : "Specifies whether the bucket policy allows the general public to have read access to the bucket.
", "BucketPolicy$AllowsPublicWriteAccess" : "Specifies whether the bucket policy allows the general public to have write access to the bucket.
", "CreateClassificationJobRequest$InitialRun" : "Specifies whether to run the job immediately, after it's created.
", "CreateInvitationsRequest$DisableEmailNotification" : "Specifies whether to send an email notification to the root user of each account that the invitation will be sent to. This notification is in addition to an alert that the root user receives in AWS Personal Health Dashboard. To send an email notification to the root user of each account, set this value to true.
", "DescribeClassificationJobResponse$InitialRun" : "Specifies whether the job has run for the first time.
", "DescribeOrganizationConfigurationResponse$AutoEnable" : "Specifies whether Amazon Macie is enabled automatically for accounts that are added to the AWS organization.
", "DescribeOrganizationConfigurationResponse$MaxAccountLimitReached" : "Specifies whether the maximum number of Amazon Macie member accounts are already associated with the AWS organization.
", "Finding$Archived" : "Specifies whether the finding is archived.
", "Finding$Sample" : "Specifies whether the finding is a sample finding. A sample finding is a finding that uses example data to demonstrate what a finding might contain.
", "GetCustomDataIdentifierResponse$Deleted" : "Specifies whether the custom data identifier was deleted. If you delete a custom data identifier, Amazon Macie doesn't delete it permanently. Instead, it soft deletes the identifier.
", "ReplicationDetails$Replicated" : "Specifies whether the bucket is configured to replicate one or more objects to any destination.
", "ReplicationDetails$ReplicatedExternally" : "Specifies whether the bucket is configured to replicate one or more objects to an AWS account that isn't part of the Amazon Macie organization.
", "S3Object$PublicAccess" : "Specifies whether the object is publicly accessible due to the combination of permissions settings that apply to the object.
", "ServiceLimit$IsServiceLimited" : "Specifies whether the account has met the quota that corresponds to the metric specified by the UsageByAccount.type field in the response.
", "SessionContextAttributes$MfaAuthenticated" : "Specifies whether the credentials were authenticated with a multi-factor authentication (MFA) device.
", "UpdateOrganizationConfigurationRequest$AutoEnable" : "Specifies whether Amazon Macie is enabled automatically for each account, when the account is added to the AWS organization.
" } }, "__double" : { "base" : null, "refs" : { "IpGeoLocation$Lat" : "The latitude coordinate of the location, rounded to four decimal places.
", "IpGeoLocation$Lon" : "The longitude coordinate of the location, rounded to four decimal places.
", "Statistics$ApproximateNumberOfObjectsToProcess" : "The approximate number of objects that the job has yet to process during its current run.
", "Statistics$NumberOfRuns" : "The number of times that the job has run.
" } }, "__integer" : { "base" : null, "refs" : { "CreateClassificationJobRequest$SamplingPercentage" : "The sampling depth, as a percentage, to apply when processing objects. This value determines the percentage of eligible objects that the job analyzes. If the value is less than 100, Amazon Macie randomly selects the objects to analyze, up to the specified percentage.
", "CreateCustomDataIdentifierRequest$MaximumMatchDistance" : "The maximum number of characters that can exist between text that matches the regex pattern and the character sequences specified by the keywords array. Macie includes or excludes a result based on the proximity of a keyword to text that matches the regex pattern. The distance can be 1 - 300 characters. The default value is 50.
", "CreateFindingsFilterRequest$Position" : "The position of the filter in the list of saved filters on the Amazon Macie console. This value also determines the order in which the filter is applied to findings, relative to other filters that are also applied to the findings.
", "DescribeBucketsRequest$MaxResults" : "The maximum number of items to include in each page of the response. The default value is 50.
", "DescribeClassificationJobResponse$SamplingPercentage" : "The sampling depth, as a percentage, that the job applies when it processes objects.
", "GetCustomDataIdentifierResponse$MaximumMatchDistance" : "The maximum number of characters that can exist between text that matches the regex pattern and the character sequences specified by the keywords array. Macie includes or excludes a result based on the proximity of a keyword to text that matches the regex pattern.
", "GetFindingStatisticsRequest$Size" : "The maximum number of items to include in each page of the response.
", "GetFindingsFilterResponse$Position" : "The position of the filter in the list of saved filters on the Amazon Macie console. This value also determines the order in which the filter is applied to findings, relative to other filters that are also applied to the findings.
", "GetUsageStatisticsRequest$MaxResults" : "The maximum number of items to include in each page of the response.
", "ListClassificationJobsRequest$MaxResults" : "The maximum number of items to include in each page of the response.
", "ListCustomDataIdentifiersRequest$MaxResults" : "The maximum number of items to include in each page of the response.
", "ListFindingsRequest$MaxResults" : "The maximum number of items to include in each page of the response.
", "MonthlySchedule$DayOfMonth" : "The numeric day of the month when Amazon Macie runs the job. This value can be an integer from 1 through 30.
", "TestCustomDataIdentifierRequest$MaximumMatchDistance" : "The maximum number of characters that can exist between text that matches the regex pattern and the character sequences specified by the keywords array. Macie includes or excludes a result based on the proximity of a keyword to text that matches the regex pattern. The distance can be 1 - 300 characters. The default value is 50.
", "TestCustomDataIdentifierResponse$MatchCount" : "The number of instances of sample text that matched the detection criteria specified in the custom data identifier.
", "UpdateFindingsFilterRequest$Position" : "The position of the filter in the list of saved filters on the Amazon Macie console. This value also determines the order in which the filter is applied to findings, relative to other filters that are also applied to the findings.
" } }, "__listOfAdminAccount" : { "base" : null, "refs" : { "ListOrganizationAdminAccountsResponse$AdminAccounts" : "An array of objects, one for each account that's designated as a delegated administrator of Amazon Macie for the AWS organization. Of those accounts, only one can have a status of ENABLED.
" } }, "__listOfBatchGetCustomDataIdentifierSummary" : { "base" : null, "refs" : { "BatchGetCustomDataIdentifiersResponse$CustomDataIdentifiers" : "An array of objects, one for each custom data identifier that meets the criteria specified in the request.
" } }, "__listOfBucketMetadata" : { "base" : null, "refs" : { "DescribeBucketsResponse$Buckets" : "An array of objects, one for each bucket that meets the filter criteria specified in the request.
" } }, "__listOfCustomDataIdentifierSummary" : { "base" : null, "refs" : { "ListCustomDataIdentifiersResponse$Items" : "An array of objects, one for each custom data identifier.
" } }, "__listOfFinding" : { "base" : null, "refs" : { "GetFindingsResponse$Findings" : "An array of objects, one for each finding that meets the criteria specified in the request.
" } }, "__listOfFindingType" : { "base" : null, "refs" : { "CreateSampleFindingsRequest$FindingTypes" : "An array that lists one or more types of findings to include in the set of sample findings. Currently, the only supported value is Policy:IAMUser/S3BucketEncryptionDisabled.
" } }, "__listOfFindingsFilterListItem" : { "base" : null, "refs" : { "ListFindingsFiltersResponse$FindingsFilterListItems" : "An array of objects, one for each filter that's associated with the account.
" } }, "__listOfGroupCount" : { "base" : null, "refs" : { "GetFindingStatisticsResponse$CountsByGroup" : "An array of objects, one for each group of findings that meet the filter criteria specified in the request.
" } }, "__listOfInvitation" : { "base" : null, "refs" : { "ListInvitationsResponse$Invitations" : "An array of objects, one for each invitation that was received by the account.
" } }, "__listOfJobScopeTerm" : { "base" : null, "refs" : { "JobScopingBlock$And" : "An array of conditions, one for each condition that determines which objects to include or exclude from the job.
" } }, "__listOfJobSummary" : { "base" : null, "refs" : { "ListClassificationJobsResponse$Items" : "An array of objects, one for each job that meets the filter criteria specified in the request.
" } }, "__listOfKeyValuePair" : { "base" : null, "refs" : { "BucketMetadata$Tags" : "An array that specifies the tags (keys and values) that are associated with the bucket.
" } }, "__listOfListJobsFilterTerm" : { "base" : null, "refs" : { "ListJobsFilterCriteria$Excludes" : "An array of objects, one for each condition that determines which jobs to exclude from the results.
", "ListJobsFilterCriteria$Includes" : "An array of objects, one for each condition that determines which jobs to include in the results.
" } }, "__listOfMember" : { "base" : null, "refs" : { "ListMembersResponse$Members" : "An array of objects, one for each account that's associated with the master account and meets the criteria specified by the onlyAssociated request parameter.
" } }, "__listOfS3BucketDefinitionForJob" : { "base" : null, "refs" : { "JobSummary$BucketDefinitions" : "The S3 buckets that the job is configured to analyze.
", "S3JobDefinition$BucketDefinitions" : "An array of objects, one for each bucket that contains objects to analyze.
" } }, "__listOfTagValuePair" : { "base" : null, "refs" : { "TagScopeTerm$TagValues" : "The tag key and value pairs to use in the condition.
" } }, "__listOfUnprocessedAccount" : { "base" : null, "refs" : { "CreateInvitationsResponse$UnprocessedAccounts" : "An array of objects, one for each account whose invitation hasn't been processed. Each object identifies the account and explains why the invitation hasn't been processed for the account.
", "DeclineInvitationsResponse$UnprocessedAccounts" : "An array of objects, one for each account whose invitation hasn't been declined. Each object identifies the account and explains why the request hasn't been processed for that account.
", "DeleteInvitationsResponse$UnprocessedAccounts" : "An array of objects, one for each account whose invitation hasn't been deleted. Each object identifies the account and explains why the request hasn't been processed for that account.
" } }, "__listOfUsageByAccount" : { "base" : null, "refs" : { "UsageRecord$Usage" : "An array of objects that contains usage data and quotas for the account. Each object contains the data for a specific usage metric and the corresponding quota.
" } }, "__listOfUsageRecord" : { "base" : null, "refs" : { "GetUsageStatisticsResponse$Records" : "An array of objects that contains the results of the query. Each object contains the data for an account that meets the filter criteria specified in the request.
" } }, "__listOfUsageStatisticsFilter" : { "base" : null, "refs" : { "GetUsageStatisticsRequest$FilterBy" : "An array of objects, one for each condition to use to filter the query results. If the array contains more than one object, Amazon Macie uses an AND operator to join the conditions specified by the objects.
" } }, "__listOfUsageTotal" : { "base" : null, "refs" : { "GetUsageTotalsResponse$UsageTotals" : "An array of objects that contains the results of the query. Each object contains the data for a specific usage metric.
" } }, "__listOf__string" : { "base" : null, "refs" : { "BatchGetCustomDataIdentifiersRequest$Ids" : "An array of strings that lists the unique identifiers for the custom data identifiers to retrieve information about.
", "BatchGetCustomDataIdentifiersResponse$NotFoundIdentifierIds" : "An array of identifiers, one for each identifier that was specified in the request, but doesn't correlate to an existing custom data identifier.
", "BucketCriteriaAdditionalProperties$Eq" : "An equal to condition to apply to a specified attribute value for buckets.
", "BucketCriteriaAdditionalProperties$Neq" : "A not equal to condition to apply to a specified attribute value for buckets.
", "CreateClassificationJobRequest$CustomDataIdentifierIds" : "The custom data identifiers to use for data analysis and classification.
", "CreateCustomDataIdentifierRequest$IgnoreWords" : "An array that lists specific character sequences (ignore words) to exclude from the results. If the text matched by the regular expression is the same as any string in this array, Amazon Macie ignores it. The array can contain as many as 10 ignore words. Each ignore word can contain 4 - 90 characters.
", "CreateCustomDataIdentifierRequest$Keywords" : "An array that lists specific character sequences (keywords), one of which must be within proximity (maximumMatchDistance) of the regular expression to match. The array can contain as many as 50 keywords. Each keyword can contain 4 - 90 characters.
", "CreateInvitationsRequest$AccountIds" : "An array that lists AWS account IDs, one for each account to send the invitation to.
", "CriterionAdditionalProperties$Eq" : "An equal to condition to apply to a specified property value for findings.
", "CriterionAdditionalProperties$Neq" : "A not equal to condition to apply to a specified property value for findings.
", "DeclineInvitationsRequest$AccountIds" : "An array that lists AWS account IDs, one for each account that sent an invitation to decline.
", "DeleteInvitationsRequest$AccountIds" : "An array that lists AWS account IDs, one for each account that sent an invitation to delete.
", "DescribeClassificationJobResponse$CustomDataIdentifierIds" : "The custom data identifiers that the job uses to analyze data.
", "GetCustomDataIdentifierResponse$IgnoreWords" : "An array that lists specific character sequences (ignore words) to exclude from the results. If the text matched by the regular expression is the same as any string in this array, Amazon Macie ignores it.
", "GetCustomDataIdentifierResponse$Keywords" : "An array that lists specific character sequences (keywords), one of which must be within proximity (maximumMatchDistance) of the regular expression to match.
", "GetFindingsRequest$FindingIds" : "An array of strings that lists the unique identifiers for the findings to retrieve information about.
", "ListFindingsResponse$FindingIds" : "An array of strings, where each string is the unique identifier for a finding that meets the filter criteria specified in the request.
", "ListJobsFilterTerm$Values" : "An array that lists one or more values to use to filter the results.
", "ReplicationDetails$ReplicationAccounts" : "An array of AWS account IDs, one for each AWS account that the bucket is configured to replicate one or more objects to.
", "S3BucketDefinitionForJob$Buckets" : "An array that lists the names of the buckets.
", "SimpleScopeTerm$Values" : "An array that lists one or more values to use in the condition.
", "TestCustomDataIdentifierRequest$IgnoreWords" : "An array that lists specific character sequences (ignore words) to exclude from the results. If the text matched by the regular expression is the same as any string in this array, Amazon Macie ignores it. The array can contain as many as 10 ignore words. Each ignore word can contain 4 - 90 characters.
", "TestCustomDataIdentifierRequest$Keywords" : "An array that lists specific character sequences (keywords), one of which must be within proximity (maximumMatchDistance) of the regular expression to match. The array can contain as many as 50 keywords. Each keyword can contain 4 - 90 characters.
", "UsageStatisticsFilter$Values" : "An array that lists values to use in the condition, based on the value for the field specified by the key property. If the value for the key property is accountId, this array can specify multiple values. Otherwise, this array can specify only one value.
Valid values for each supported field are:
accountId - The unique identifier for an AWS account.
freeTrialStartDate - The date and time, in UTC and extended ISO 8601 format, when the free trial started for an account.
serviceLimit - A Boolean (true or false) value that indicates whether an account has reached its monthly quota.
total - A string that represents the current, estimated month-to-date cost for an account.
The total number of buckets that allow the general public to have read or write access to the bucket.
", "BucketCountByEffectivePermission$PubliclyReadable" : "The total number of buckets that allow the general public to have read access to the bucket.
", "BucketCountByEffectivePermission$PubliclyWritable" : "The total number of buckets that allow the general public to have write access to the bucket.
", "BucketCountByEncryptionType$KmsManaged" : "The total number of buckets that use an AWS Key Management Service (AWS KMS) customer master key (CMK) to encrypt objects. These buckets use AWS KMS AWS-managed (AWS-KMS) encryption or AWS KMS customer-managed (SSE-KMS) encryption.
", "BucketCountByEncryptionType$S3Managed" : "The total number of buckets that use an Amazon S3-managed key to encrypt objects. These buckets use Amazon S3-managed (SSE-S3) encryption.
", "BucketCountByEncryptionType$Unencrypted" : "The total number of buckets that don't encrypt objects by default. Default encryption is disabled for these buckets.
", "BucketCountBySharedAccessType$External" : "The total number of buckets that are shared with an AWS account that isn't part of the same Amazon Macie organization.
", "BucketCountBySharedAccessType$Internal" : "The total number of buckets that are shared with an AWS account that's part of the same Amazon Macie organization.
", "BucketCountBySharedAccessType$NotShared" : "The total number of buckets that aren't shared with any other AWS accounts.
", "BucketCriteriaAdditionalProperties$Gt" : "A greater than condition to apply to a specified attribute value for buckets.
", "BucketCriteriaAdditionalProperties$Gte" : "A greater than or equal to condition to apply to a specified attribute value for buckets.
", "BucketCriteriaAdditionalProperties$Lt" : "A less than condition to apply to a specified attribute value for buckets.
", "BucketCriteriaAdditionalProperties$Lte" : "A less than or equal to condition to apply to a specified attribute value for buckets.
", "BucketMetadata$ClassifiableObjectCount" : "The total number of objects that Amazon Macie can analyze in the bucket. These objects use a file format, file extension, or content type that Amazon Macie supports.
", "BucketMetadata$ObjectCount" : "The total number of objects in the bucket.
", "BucketMetadata$SizeInBytes" : "The total storage size, in bytes, of the bucket.
", "BucketMetadata$SizeInBytesCompressed" : "The total compressed storage size, in bytes, of the bucket.
", "ClassificationResult$SizeClassified" : "The total size, in bytes, of the data that the finding applies to.
", "CriterionAdditionalProperties$Gt" : "A greater than condition to apply to a specified property value for findings.
", "CriterionAdditionalProperties$Gte" : "A greater than or equal to condition to apply to a specified property value for findings.
", "CriterionAdditionalProperties$Lt" : "A less than condition to apply to a specified property value for findings.
", "CriterionAdditionalProperties$Lte" : "A less than or equal to condition to apply to a specified property value for findings.
", "CustomDataIdentifiers$TotalCount" : "The total number of occurrences of the data that was detected by the custom data identifiers and produced the finding.
", "CustomDetection$Count" : "The total number of occurrences of the data that the custom data identifier detected for the finding.
", "DefaultDetection$Count" : "The total number of occurrences of the type of data that was detected.
", "Finding$Count" : "The total number of occurrences of this finding.
", "GetBucketStatisticsResponse$BucketCount" : "The total number of buckets.
", "GetBucketStatisticsResponse$ClassifiableObjectCount" : "The total number of objects that Amazon Macie can analyze in all the buckets. These objects use a file format, file extension, or content type that Amazon Macie supports.
", "GetBucketStatisticsResponse$ObjectCount" : "The total number of objects in all the buckets.
", "GetBucketStatisticsResponse$SizeInBytes" : "The total storage size, in bytes, of all the buckets.
", "GetBucketStatisticsResponse$SizeInBytesCompressed" : "The total compressed storage size, in bytes, of all the buckets.
", "GetInvitationsCountResponse$InvitationsCount" : "The total number of invitations that were received by the account, not including the currently accepted invitation.
", "GroupCount$Count" : "The total number of findings in the group of query results.
", "ObjectCountByEncryptionType$CustomerManaged" : "The total number of objects that are encrypted using a customer-managed key. The objects use customer-provided server-side (SSE-C) encryption.
", "ObjectCountByEncryptionType$KmsManaged" : "The total number of objects that are encrypted using an AWS Key Management Service (AWS KMS) customer master key (CMK). The objects use AWS KMS AWS-managed (AWS-KMS) encryption or AWS KMS customer-managed (SSE-KMS) encryption.
", "ObjectCountByEncryptionType$S3Managed" : "The total number of objects that are encrypted using an Amazon S3-managed key. The objects use Amazon S3-managed (SSE-S3) encryption.
", "ObjectCountByEncryptionType$Unencrypted" : "The total number of objects that aren't encrypted or use client-side encryption.
", "S3Object$Size" : "The total storage size, in bytes, of the object.
", "SensitiveDataItem$TotalCount" : "The total number of occurrences of the sensitive data that was detected.
", "ServiceLimit$Value" : "The value for the metric specified by the UsageByAccount.type field in the response.
", "Severity$Score" : "The numeric score for the severity value, ranging from 0 (least severe) to 4 (most severe).
" } }, "__string" : { "base" : null, "refs" : { "AcceptInvitationRequest$InvitationId" : "The unique identifier for the invitation to accept.
", "AcceptInvitationRequest$MasterAccount" : "The AWS account ID for the account that sent the invitation.
", "AccessDeniedException$Message" : "The explanation of the error that occurred.
", "AccountDetail$AccountId" : "The AWS account ID for the account.
", "AccountDetail$Email" : "The email address for the account.
", "AdminAccount$AccountId" : "The AWS account ID for the account.
", "ApiCallDetails$Api" : "The name of the operation that was invoked most recently and produced the finding.
", "ApiCallDetails$ApiServiceName" : "The URL of the AWS service that provides the operation, for example: s3.amazonaws.com.
", "AssumedRole$AccessKeyId" : "The AWS access key ID that identifies the credentials.
", "AssumedRole$AccountId" : "The unique identifier for the AWS account that owns the entity that was used to get the credentials.
", "AssumedRole$Arn" : "The Amazon Resource Name (ARN) of the entity that was used to get the credentials.
", "AssumedRole$PrincipalId" : "The unique identifier for the entity that was used to get the credentials.
", "AwsAccount$AccountId" : "The unique identifier for the AWS account.
", "AwsAccount$PrincipalId" : "The unique identifier for the entity that performed the action.
", "AwsService$InvokedBy" : "The name of the AWS service that performed the action.
", "BatchGetCustomDataIdentifierSummary$Arn" : "The Amazon Resource Name (ARN) of the custom data identifier.
", "BatchGetCustomDataIdentifierSummary$Description" : "The custom description of the custom data identifier.
", "BatchGetCustomDataIdentifierSummary$Id" : "The unique identifier for the custom data identifier.
", "BatchGetCustomDataIdentifierSummary$Name" : "The custom name of the custom data identifier.
", "BucketCriteriaAdditionalProperties$Prefix" : "The prefix of the buckets to include in the results.
", "BucketMetadata$AccountId" : "The unique identifier for the AWS account that's associated with the bucket.
", "BucketMetadata$BucketArn" : "The Amazon Resource Name (ARN) of the bucket.
", "BucketMetadata$BucketName" : "The name of the bucket.
", "BucketMetadata$Region" : "The AWS Region that hosts the bucket.
", "BucketSortCriteria$AttributeName" : "The name of the attribute to sort the results by. This value can be the name of any property that Amazon Macie defines as bucket metadata, such as bucketName, accountId, or lastUpdated.
", "ClassificationDetails$DetailedResultsLocation" : "The Amazon Resource Name (ARN) of the file that contains the detailed record, including offsets, for the finding.
", "ClassificationDetails$JobArn" : "The Amazon Resource Name (ARN) of the classification job that produced the finding.
", "ClassificationDetails$JobId" : "The unique identifier for the classification job that produced the finding.
", "ClassificationResult$MimeType" : "The type of content, expressed as a MIME type, that the finding applies to. For example, application/gzip, for a GNU Gzip compressed archive file, or application/pdf, for an Adobe PDF file.
", "ClassificationResultStatus$Code" : "The status of the finding, such as COMPLETE.
", "ClassificationResultStatus$Reason" : "A brief description of the status of the finding. Amazon Macie uses this value to notify you of any errors, warnings, or considerations that might impact your analysis of the finding.
", "ConflictException$Message" : "The explanation of the error that occurred.
", "CreateClassificationJobRequest$ClientToken" : "A unique, case-sensitive token that you provide to ensure the idempotency of the request.
", "CreateClassificationJobRequest$Description" : "A custom description of the job. The description can contain as many as 200 characters.
", "CreateClassificationJobRequest$Name" : "A custom name for the job. The name can contain as many as 500 characters.
", "CreateClassificationJobResponse$JobArn" : "The Amazon Resource Name (ARN) of the job.
", "CreateClassificationJobResponse$JobId" : "The unique identifier for the job.
", "CreateCustomDataIdentifierRequest$ClientToken" : "A unique, case-sensitive token that you provide to ensure the idempotency of the request.
", "CreateCustomDataIdentifierRequest$Description" : "A custom description of the custom data identifier. The description can contain as many as 512 characters.
We strongly recommend that you avoid including any sensitive data in the description of a custom data identifier. Other users of your account might be able to see the identifier's description, depending on the actions that they're allowed to perform in Amazon Macie.
", "CreateCustomDataIdentifierRequest$Name" : "A custom name for the custom data identifier. The name can contain as many as 128 characters.
We strongly recommend that you avoid including any sensitive data in the name of a custom data identifier. Other users of your account might be able to see the identifier's name, depending on the actions that they're allowed to perform in Amazon Macie.
", "CreateCustomDataIdentifierRequest$Regex" : "The regular expression (regex) that defines the pattern to match. The expression can contain as many as 512 characters.
", "CreateCustomDataIdentifierResponse$CustomDataIdentifierId" : "The unique identifier for the custom data identifier that was created.
", "CreateFindingsFilterRequest$ClientToken" : "A unique, case-sensitive token that you provide to ensure the idempotency of the request.
", "CreateFindingsFilterRequest$Description" : "A custom description of the filter. The description can contain as many as 512 characters.
We strongly recommend that you avoid including any sensitive data in the description of a filter. Other users of your account might be able to see the filter's description, depending on the actions that they're allowed to perform in Amazon Macie.
", "CreateFindingsFilterRequest$Name" : "A custom name for the filter. The name must contain at least 3 characters and can contain as many as 64 characters.
We strongly recommend that you avoid including any sensitive data in the name of a filter. Other users of your account might be able to see the filter's name, depending on the actions that they're allowed to perform in Amazon Macie.
", "CreateFindingsFilterResponse$Arn" : "The Amazon Resource Name (ARN) of the filter that was created.
", "CreateFindingsFilterResponse$Id" : "The unique identifier for the filter that was created.
", "CreateInvitationsRequest$Message" : "A custom message to include in the invitation. Amazon Macie adds this message to the standard content that it sends for an invitation.
", "CreateMemberResponse$Arn" : "The Amazon Resource Name (ARN) of the account that was associated with the master account.
", "CustomDataIdentifierSummary$Arn" : "The Amazon Resource Name (ARN) of the custom data identifier.
", "CustomDataIdentifierSummary$Description" : "The custom description of the custom data identifier.
", "CustomDataIdentifierSummary$Id" : "The unique identifier for the custom data identifier.
", "CustomDataIdentifierSummary$Name" : "The custom name of the custom data identifier.
", "CustomDetection$Arn" : "The Amazon Resource Name (ARN) of the custom data identifier.
", "CustomDetection$Name" : "The name of the custom data identifier.
", "DefaultDetection$Type" : "The type of data that was detected. For example, AWS_CREDENTIALS, PHONE_NUMBER, or ADDRESS.
", "DescribeBucketsRequest$NextToken" : "The nextToken string that specifies which page of results to return in a paginated response.
", "DescribeBucketsResponse$NextToken" : "The string to use in a subsequent request to get the next page of results in a paginated response. This value is null if there are no additional pages.
", "DescribeClassificationJobResponse$ClientToken" : "The token that was provided to ensure the idempotency of the request to create the job.
", "DescribeClassificationJobResponse$Description" : "The custom description of the job.
", "DescribeClassificationJobResponse$JobArn" : "The Amazon Resource Name (ARN) of the job.
", "DescribeClassificationJobResponse$JobId" : "The unique identifier for the job.
", "DescribeClassificationJobResponse$Name" : "The custom name of the job.
", "DomainDetails$DomainName" : "The name of the domain.
", "EnableMacieRequest$ClientToken" : "A unique, case-sensitive token that you provide to ensure the idempotency of the request.
", "EnableOrganizationAdminAccountRequest$AdminAccountId" : "The AWS account ID for the account.
", "EnableOrganizationAdminAccountRequest$ClientToken" : "A unique, case-sensitive token that you provide to ensure the idempotency of the request.
", "FederatedUser$AccessKeyId" : "The AWS access key ID that identifies the credentials.
", "FederatedUser$AccountId" : "The unique identifier for the AWS account that owns the entity that was used to get the credentials.
", "FederatedUser$Arn" : "The Amazon Resource Name (ARN) of the entity that was used to get the credentials.
", "FederatedUser$PrincipalId" : "The unique identifier for the entity that was used to get the credentials.
", "Finding$AccountId" : "The unique identifier for the AWS account that the finding applies to. This is typically the account that owns the affected resource.
", "Finding$Description" : "The description of the finding.
", "Finding$Id" : "The unique identifier for the finding. This is a random string that Amazon Macie generates and assigns to a finding when it creates the finding.
", "Finding$Partition" : "The AWS partition that Amazon Macie created the finding in.
", "Finding$Region" : "The AWS Region that Amazon Macie created the finding in.
", "Finding$SchemaVersion" : "The version of the schema that was used to define the data structures in the finding.
", "Finding$Title" : "The brief description of the finding.
", "FindingsFilterListItem$Arn" : "The Amazon Resource Name (ARN) of the filter.
", "FindingsFilterListItem$Id" : "The unique identifier for the filter.
", "FindingsFilterListItem$Name" : "The custom name of the filter.
", "GetBucketStatisticsRequest$AccountId" : "The unique identifier for the AWS account.
", "GetCustomDataIdentifierResponse$Arn" : "The Amazon Resource Name (ARN) of the custom data identifier.
", "GetCustomDataIdentifierResponse$Description" : "The custom description of the custom data identifier.
", "GetCustomDataIdentifierResponse$Id" : "The unique identifier for the custom data identifier.
", "GetCustomDataIdentifierResponse$Name" : "The custom name of the custom data identifier.
", "GetCustomDataIdentifierResponse$Regex" : "The regular expression (regex) that defines the pattern to match.
", "GetFindingsFilterResponse$Arn" : "The Amazon Resource Name (ARN) of the filter.
", "GetFindingsFilterResponse$Description" : "The custom description of the filter.
", "GetFindingsFilterResponse$Id" : "The unique identifier for the filter.
", "GetFindingsFilterResponse$Name" : "The custom name of the filter.
", "GetMacieSessionResponse$ServiceRole" : "The Amazon Resource Name (ARN) of the service-linked role that allows Amazon Macie to monitor and analyze data in AWS resources for the account.
", "GetMemberResponse$AccountId" : "The AWS account ID for the account.
", "GetMemberResponse$Arn" : "The Amazon Resource Name (ARN) of the account.
", "GetMemberResponse$Email" : "The email address for the account.
", "GetMemberResponse$MasterAccountId" : "The AWS account ID for the master account.
", "GetUsageStatisticsRequest$NextToken" : "The nextToken string that specifies which page of results to return in a paginated response.
", "GetUsageStatisticsResponse$NextToken" : "The string to use in a subsequent request to get the next page of results in a paginated response. This value is null if there are no additional pages.
", "GroupCount$GroupKey" : "The name of the property that defines the group in the query results, as specified by the groupBy property in the query request.
", "IamUser$AccountId" : "The unique identifier for the AWS account that's associated with the IAM user who performed the action.
", "IamUser$Arn" : "The Amazon Resource Name (ARN) of the principal that performed the action. The last section of the ARN contains the name of the user who performed the action.
", "IamUser$PrincipalId" : "The unique identifier for the IAM user who performed the action.
", "IamUser$UserName" : "The user name of the IAM user who performed the action.
", "InternalServerException$Message" : "The explanation of the error that occurred.
", "Invitation$AccountId" : "The AWS account ID for the account that sent the invitation.
", "Invitation$InvitationId" : "The unique identifier for the invitation. Amazon Macie uses this identifier to validate the inviter account with the invitee account.
", "IpAddressDetails$IpAddressV4" : "The Internet Protocol version 4 (IPv4) address of the device.
", "IpCity$Name" : "The name of the city.
", "IpCountry$Code" : "The two-character code, in ISO 3166-1 alpha-2 format, for the country that the IP address originated from. For example, US for the United States.
", "IpCountry$Name" : "The name of the country that the IP address originated from.
", "IpOwner$Asn" : "The autonomous system number (ASN) for the autonomous system that included the IP address.
", "IpOwner$AsnOrg" : "The organization identifier that's associated with the autonomous system number (ASN) for the autonomous system that included the IP address.
", "IpOwner$Isp" : "The name of the internet service provider (ISP) that owned the IP address.
", "IpOwner$Org" : "The name of the organization that owned the IP address.
", "JobSummary$JobId" : "The unique identifier for the job.
", "JobSummary$Name" : "The custom name of the job.
", "KeyValuePair$Key" : "One part of a key-value pair that comprises a tag. A tag key is a general label that acts as a category for more specific tag values.
", "KeyValuePair$Value" : "One part of a key-value pair that comprises a tag. A tag value acts as a descriptor for a tag key. A tag value can be empty or null.
", "ListClassificationJobsRequest$NextToken" : "The nextToken string that specifies which page of results to return in a paginated response.
", "ListClassificationJobsResponse$NextToken" : "The string to use in a subsequent request to get the next page of results in a paginated response. This value is null if there are no additional pages.
", "ListCustomDataIdentifiersRequest$NextToken" : "The nextToken string that specifies which page of results to return in a paginated response.
", "ListCustomDataIdentifiersResponse$NextToken" : "The string to use in a subsequent request to get the next page of results in a paginated response. This value is null if there are no additional pages.
", "ListFindingsFiltersResponse$NextToken" : "The string to use in a subsequent request to get the next page of results in a paginated response. This value is null if there are no additional pages.
", "ListFindingsRequest$NextToken" : "The nextToken string that specifies which page of results to return in a paginated response.
", "ListFindingsResponse$NextToken" : "The string to use in a subsequent request to get the next page of results in a paginated response. This value is null if there are no additional pages.
", "ListInvitationsResponse$NextToken" : "The string to use in a subsequent request to get the next page of results in a paginated response. This value is null if there are no additional pages.
", "ListMembersResponse$NextToken" : "The string to use in a subsequent request to get the next page of results in a paginated response. This value is null if there are no additional pages.
", "ListOrganizationAdminAccountsResponse$NextToken" : "The string to use in a subsequent request to get the next page of results in a paginated response. This value is null if there are no additional pages.
", "Member$AccountId" : "The AWS account ID for the account.
", "Member$Arn" : "The Amazon Resource Name (ARN) of the account.
", "Member$Email" : "The email address for the account.
", "Member$MasterAccountId" : "The AWS account ID for the master account.
", "ResourceNotFoundException$Message" : "The explanation of the error that occurred.
", "S3Bucket$Arn" : "The Amazon Resource Name (ARN) of the bucket.
", "S3Bucket$Name" : "The name of the bucket.
", "S3BucketDefinitionForJob$AccountId" : "The unique identifier for the AWS account that owns one or more of the buckets. If specified, the job analyzes objects in all the buckets that are owned by the account and meet other conditions specified for the job.
", "S3BucketOwner$DisplayName" : "The display name of the user who owns the bucket.
", "S3BucketOwner$Id" : "The AWS account ID for the user who owns the bucket.
", "S3Destination$BucketName" : "The name of the bucket.
", "S3Destination$KeyPrefix" : "The path prefix to use in the path to the location in the bucket. This prefix specifies where to store classification results in the bucket.
", "S3Destination$KmsKeyArn" : "The Amazon Resource Name (ARN) of the AWS Key Management Service (AWS KMS) customer master key (CMK) to use for encryption of the results. This must be the ARN of an existing CMK that's in the same AWS Region as the bucket.
", "S3Object$BucketArn" : "The Amazon Resource Name (ARN) of the bucket that contains the object.
", "S3Object$ETag" : "The entity tag (ETag) that identifies the affected version of the object. If the object was overwritten or changed after Amazon Macie produced the finding, this value might be different from the current ETag for the object.
", "S3Object$Extension" : "The file extension of the object. If the object doesn't have a file extension, this value is \"\".
", "S3Object$Key" : "The full key (name) that's assigned to the object.
", "S3Object$Path" : "The path to the object, including the full key (name).
", "S3Object$VersionId" : "The identifier for the affected version of the object.
", "ServerSideEncryption$KmsMasterKeyId" : "The Amazon Resource Name (ARN) of the AWS Key Management Service (AWS KMS) master key that's used to encrypt the bucket or object. This value is null if KMS isn't used to encrypt the bucket or object.
", "ServiceQuotaExceededException$Message" : "The explanation of the error that occurred.
", "SessionIssuer$AccountId" : "The unique identifier for the AWS account that owns the entity that was used to get the credentials.
", "SessionIssuer$Arn" : "The Amazon Resource Name (ARN) of the source account, IAM user, or role that was used to get the credentials.
", "SessionIssuer$PrincipalId" : "The unique identifier for the entity that was used to get the credentials.
", "SessionIssuer$Type" : "The source of the temporary security credentials, such as Root, IAMUser, or Role.
", "SessionIssuer$UserName" : "The name or alias of the user or role that issued the session. This value is null if the credentials were obtained from a root account that doesn't have an alias.
", "SortCriteria$AttributeName" : "The name of the property to sort the results by. This value can be the name of any property that Amazon Macie defines for a finding.
", "TagMap$member" : null, "TagScopeTerm$Key" : "The tag key to use in the condition.
", "TagValuePair$Key" : "The value for the tag key to use in the condition.
", "TagValuePair$Value" : "The tag value, associated with the specified tag key, to use in the condition.
", "TestCustomDataIdentifierRequest$Regex" : "The regular expression (regex) that defines the pattern to match. The expression can contain as many as 512 characters.
", "TestCustomDataIdentifierRequest$SampleText" : "The sample text to inspect by using the custom data identifier. The text can contain as many as 1,000 characters.
", "ThrottlingException$Message" : "The explanation of the error that occurred.
", "UnprocessedAccount$AccountId" : "The AWS account ID for the account that the request applies to.
", "UnprocessedAccount$ErrorMessage" : "The reason why the request hasn't been processed.
", "UpdateFindingsFilterRequest$Description" : "A custom description of the filter. The description can contain as many as 512 characters.
We strongly recommend that you avoid including any sensitive data in the description of a filter. Other users might be able to see the filter's description, depending on the actions that they're allowed to perform in Amazon Macie.
", "UpdateFindingsFilterRequest$Name" : "A custom name for the filter. The name must contain at least 3 characters and can contain as many as 64 characters.
We strongly recommend that you avoid including any sensitive data in the name of a filter. Other users might be able to see the filter's name, depending on the actions that they're allowed to perform in Amazon Macie.
", "UpdateFindingsFilterResponse$Arn" : "The Amazon Resource Name (ARN) of the filter that was updated.
", "UpdateFindingsFilterResponse$Id" : "The unique identifier for the filter that was updated.
", "UsageByAccount$EstimatedCost" : "The estimated value for the metric.
", "UsageRecord$AccountId" : "The unique identifier for the AWS account that the data applies to.
", "UsageTotal$EstimatedCost" : "The estimated value for the metric.
", "UserIdentityRoot$AccountId" : "The unique identifier for the AWS account.
", "UserIdentityRoot$Arn" : "The Amazon Resource Name (ARN) of the principal that performed the action. The last section of the ARN contains the name of the user or role that performed the action.
", "UserIdentityRoot$PrincipalId" : "The unique identifier for the entity that performed the action.
", "ValidationException$Message" : "The explanation of the error that occurred.
", "__listOf__string$member" : null } }, "__timestampIso8601" : { "base" : null, "refs" : { "ApiCallDetails$FirstSeen" : "The first date and time, in UTC and extended ISO 8601 format, when any operation was invoked and produced the finding.
", "ApiCallDetails$LastSeen" : "The most recent date and time, in UTC and extended ISO 8601 format, when the specified operation (api) was invoked and produced the finding.
", "BatchGetCustomDataIdentifierSummary$CreatedAt" : "The date and time, in UTC and extended ISO 8601 format, when the custom data identifier was created.
", "BucketMetadata$BucketCreatedAt" : "The date and time, in UTC and extended ISO 8601 format, when the bucket was created.
", "BucketMetadata$LastUpdated" : "The date and time, in UTC and extended ISO 8601 format, when Amazon Macie last analyzed the bucket.
", "CustomDataIdentifierSummary$CreatedAt" : "The date and time, in UTC and extended ISO 8601 format, when the custom data identifier was created.
", "DescribeClassificationJobResponse$CreatedAt" : "The date and time, in UTC and extended ISO 8601 format, when the job was created.
", "DescribeClassificationJobResponse$LastRunTime" : "The date and time, in UTC and extended ISO 8601 format, when the job last ran.
", "Finding$CreatedAt" : "The date and time, in UTC and extended ISO 8601 format, when the finding was created.
", "Finding$UpdatedAt" : "The date and time, in UTC and extended ISO 8601 format, when the finding was last updated. For sensitive data findings, this value is the same as the value for the createdAt property. Sensitive data findings aren't updated.
", "GetBucketStatisticsResponse$LastUpdated" : "The date and time, in UTC and extended ISO 8601 format, when Amazon Macie last analyzed the buckets.
", "GetCustomDataIdentifierResponse$CreatedAt" : "The date and time, in UTC and extended ISO 8601 format, when the custom data identifier was created.
", "GetMacieSessionResponse$CreatedAt" : "The date and time, in UTC and extended ISO 8601 format, when the Amazon Macie account was created.
", "GetMacieSessionResponse$UpdatedAt" : "The date and time, in UTC and extended ISO 8601 format, of the most recent change to the status of the Amazon Macie account.
", "GetMemberResponse$InvitedAt" : "The date and time, in UTC and extended ISO 8601 format, when an Amazon Macie membership invitation was last sent to the account. This value is null if a Macie invitation hasn't been sent to the account.
", "GetMemberResponse$UpdatedAt" : "The date and time, in UTC and extended ISO 8601 format, of the most recent change to the status of the relationship between the account and the master account.
", "Invitation$InvitedAt" : "The date and time, in UTC and extended ISO 8601 format, when the invitation was sent.
", "JobSummary$CreatedAt" : "The date and time, in UTC and extended ISO 8601 format, when the job was created.
", "Member$InvitedAt" : "The date and time, in UTC and extended ISO 8601 format, when an Amazon Macie membership invitation was last sent to the account. This value is null if a Macie invitation hasn't been sent to the account.
", "Member$UpdatedAt" : "The date and time, in UTC and extended ISO 8601 format, of the most recent change to the status of the relationship between the account and the master account.
", "S3Bucket$CreatedAt" : "The date and time, in UTC and extended ISO 8601 format, when the bucket was created.
", "S3Object$LastModified" : "The date and time, in UTC and extended ISO 8601 format, when the object was last modified.
", "SessionContextAttributes$CreationDate" : "The date and time, in UTC and ISO 8601 format, when the credentials were issued.
", "UsageRecord$FreeTrialStartDate" : "The date and time, in UTC and extended ISO 8601 format, when the free trial started for the account.
" } } } }