com.amazonaws.services.securityhub

Class AWSSecurityHubClient

java.lang.Object

com.amazonaws.AmazonWebServiceClient

com.amazonaws.services.securityhub.AWSSecurityHubClient

All Implemented Interfaces:

AWSSecurityHub

Direct Known Subclasses:

AWSSecurityHubAsyncClient

@ThreadSafe
 @Generated(value="com.amazonaws:aws-java-sdk-code-generator")
public class AWSSecurityHubClient
extends AmazonWebServiceClient
implements AWSSecurityHub

Client for accessing AWS SecurityHub. All service calls made using this client are blocking, and will not return until the service call completes.

AWS Security Hub provides you with a comprehensive view of your security state in AWS and your compliance with the security industry standards and best practices. Security Hub collects security data from across AWS accounts, services, and supported third-party partners and helps you analyze your security trends and identify the highest priority security issues. For more information, see AWS Security Hub User Guide.

Important: AWS Security Hub is currently in Preview release.

Field Summary

Fields

Modifier and Type	Field and Description
protected static ClientConfigurationFactory	configFactory Client configuration factory providing ClientConfigurations tailored to this client

Fields inherited from class com.amazonaws.AmazonWebServiceClient

client, clientConfiguration, endpoint, LOGGING_AWS_REQUEST_METRIC, requestHandler2s, timeOffset

Fields inherited from interface com.amazonaws.services.securityhub.AWSSecurityHub

ENDPOINT_PREFIX

Method Summary

Modifier and Type	Method and Description
AcceptInvitationResult	acceptInvitation(AcceptInvitationRequest request) Accepts the invitation to be monitored by a Security Hub master account.
BatchDisableStandardsResult	batchDisableStandards(BatchDisableStandardsRequest request) Disables the standards specified by the standards subscription ARNs.
BatchEnableStandardsResult	batchEnableStandards(BatchEnableStandardsRequest request) Enables the standards specified by the standards ARNs.
BatchImportFindingsResult	batchImportFindings(BatchImportFindingsRequest request) Imports security findings generated from an integrated third-party product into Security Hub.
static AWSSecurityHubClientBuilder	builder()
CreateInsightResult	createInsight(CreateInsightRequest request) Creates an insight, which is a consolidation of findings that identifies a security area that requires attention or intervention.
CreateMembersResult	createMembers(CreateMembersRequest request) Creates Security Hub member accounts associated with the account used for this action, which becomes the Security Hub Master account.
DeclineInvitationsResult	declineInvitations(DeclineInvitationsRequest request) Declines invitations that are sent to this AWS account (invitee) from the AWS accounts (inviters) that are specified by the provided AccountIds.
DeleteInsightResult	deleteInsight(DeleteInsightRequest request) Deletes the insight specified by the InsightArn.
DeleteInvitationsResult	deleteInvitations(DeleteInvitationsRequest request) Deletes invitations that were sent to theis AWS account (invitee) by the AWS accounts (inviters) that are specified by their account IDs.
DeleteMembersResult	deleteMembers(DeleteMembersRequest request) Deletes the Security Hub member accounts that the account IDs specify.
DescribeProductsResult	describeProducts(DescribeProductsRequest request) Returns information about the products available that you can subscribe to.
DisableImportFindingsForProductResult	disableImportFindingsForProduct(DisableImportFindingsForProductRequest request) Cancels the subscription that allows a findings-generating solution (product) to import its findings into Security Hub.
DisableSecurityHubResult	disableSecurityHub(DisableSecurityHubRequest request) Disables the Security Hub service.
DisassociateFromMasterAccountResult	disassociateFromMasterAccount(DisassociateFromMasterAccountRequest request) Disassociates the current Security Hub member account from its master account.
DisassociateMembersResult	disassociateMembers(DisassociateMembersRequest request) Disassociates the Security Hub member accounts that are specified by the account IDs from their master account.
EnableImportFindingsForProductResult	enableImportFindingsForProduct(EnableImportFindingsForProductRequest request) Sets up the subscription that enables a findings-generating solution (product) to import its findings into Security Hub.
EnableSecurityHubResult	enableSecurityHub(EnableSecurityHubRequest request) Enables the Security Hub service.
ResponseMetadata	getCachedResponseMetadata(AmazonWebServiceRequest request) Returns additional metadata for a previously executed successful, request, typically used for debugging issues where a service isn't acting as expected.
GetEnabledStandardsResult	getEnabledStandards(GetEnabledStandardsRequest request) Lists and describes enabled standards.
GetFindingsResult	getFindings(GetFindingsRequest request) Lists and describes Security Hub-aggregated findings that filter attributes specify.
GetInsightResultsResult	getInsightResults(GetInsightResultsRequest request) Lists the results of the Security Hub insight that the insight ARN specifies.
GetInsightsResult	getInsights(GetInsightsRequest request) Lists and describes insights that insight ARNs specify.
GetInvitationsCountResult	getInvitationsCount(GetInvitationsCountRequest request) Returns the count of all Security Hub membership invitations that were sent to the current member account, not including the currently accepted invitation.
GetMasterAccountResult	getMasterAccount(GetMasterAccountRequest request) Provides the details for the Security Hub master account to the current member account.
GetMembersResult	getMembers(GetMembersRequest request) Returns the details on the Security Hub member accounts that the account IDs specify.
InviteMembersResult	inviteMembers(InviteMembersRequest request) Invites other AWS accounts to enable Security Hub and become Security Hub member accounts.
ListEnabledProductsForImportResult	listEnabledProductsForImport(ListEnabledProductsForImportRequest request) Lists all findings-generating solutions (products) whose findings you have subscribed to receive in Security Hub.
ListInvitationsResult	listInvitations(ListInvitationsRequest request) Lists all Security Hub membership invitations that were sent to the current AWS account.
ListMembersResult	listMembers(ListMembersRequest request) Lists details about all member accounts for the current Security Hub master account.
ListProductSubscribersResult	listProductSubscribers(ListProductSubscribersRequest request) Returns a list of account IDs that are subscribed to the product.
UpdateFindingsResult	updateFindings(UpdateFindingsRequest request) Updates the Note and RecordState of the Security Hub-aggregated findings that the filter attributes specify.
UpdateInsightResult	updateInsight(UpdateInsightRequest request) Updates the Security Hub insight that the insight ARN specifies.

Methods inherited from class com.amazonaws.AmazonWebServiceClient

addRequestHandler, addRequestHandler, beforeClientExecution, beforeMarshalling, calculateCRC32FromCompressedData, checkMutability, configureRegion, createExecutionContext, createExecutionContext, createExecutionContext, createSignerProvider, endClientExecution, endClientExecution, getClientConfiguration, getClientId, getEndpointPrefix, getMonitoringListeners, getRequestMetricsCollector, getServiceAbbreviation, getServiceName, getServiceNameIntern, getSigner, getSignerByURI, getSignerOverride, getSignerProvider, getSignerRegionOverride, getSigningRegion, getTimeOffset, isCsmEnabled, isProfilingEnabled, isRequestMetricsEnabled, makeImmutable, removeRequestHandler, removeRequestHandler, requestMetricCollector, setEndpoint, setEndpoint, setEndpointPrefix, setRegion, setServiceNameIntern, setSignerRegionOverride, setTimeOffset, shouldGenerateClientSideMonitoringEvents, shutdown, useStrictHostNameVerification, withEndpoint, withRegion, withRegion, withTimeOffset

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Methods inherited from interface com.amazonaws.services.securityhub.AWSSecurityHub

shutdown

Field Detail

configFactory

protected static final ClientConfigurationFactory configFactory

Client configuration factory providing ClientConfigurations tailored to this client

Method Detail

builder

public static AWSSecurityHubClientBuilder builder()

acceptInvitation

public AcceptInvitationResult acceptInvitation(AcceptInvitationRequest request)

Accepts the invitation to be monitored by a Security Hub master account.

Specified by:

acceptInvitation in interface AWSSecurityHub

Parameters:

acceptInvitationRequest -

Returns:

Result of the AcceptInvitation operation returned by the service.

Throws:

InternalException - Internal server error.

InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.

LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.

ResourceNotFoundException - The request was rejected because we can't find the specified resource.

InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.

See Also:

AWS API Documentation

batchDisableStandards

public BatchDisableStandardsResult batchDisableStandards(BatchDisableStandardsRequest request)

Disables the standards specified by the standards subscription ARNs. In the context of Security Hub, supported standards (for example, CIS AWS Foundations) are automated and continuous checks that help determine your compliance status against security industry (including AWS) best practices.

Specified by:

batchDisableStandards in interface AWSSecurityHub

Parameters:

batchDisableStandardsRequest -

Returns:

Result of the BatchDisableStandards operation returned by the service.

Throws:

InternalException - Internal server error.

InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.

InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.

LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.

See Also:

AWS API Documentation

batchEnableStandards

public BatchEnableStandardsResult batchEnableStandards(BatchEnableStandardsRequest request)

Enables the standards specified by the standards ARNs. In the context of Security Hub, supported standards (for example, CIS AWS Foundations) are automated and continuous checks that help determine your compliance status against security industry (including AWS) best practices.

Specified by:

batchEnableStandards in interface AWSSecurityHub

Parameters:

batchEnableStandardsRequest -

Returns:

Result of the BatchEnableStandards operation returned by the service.

Throws:

InternalException - Internal server error.

InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.

InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.

LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.

See Also:

AWS API Documentation

batchImportFindings

public BatchImportFindingsResult batchImportFindings(BatchImportFindingsRequest request)

Imports security findings generated from an integrated third-party product into Security Hub.

Specified by:

batchImportFindings in interface AWSSecurityHub

Parameters:

batchImportFindingsRequest -

Returns:

Result of the BatchImportFindings operation returned by the service.

Throws:

InternalException - Internal server error.

InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.

LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.

InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.

See Also:

AWS API Documentation

createInsight

public CreateInsightResult createInsight(CreateInsightRequest request)

Creates an insight, which is a consolidation of findings that identifies a security area that requires attention or intervention.

Specified by:

createInsight in interface AWSSecurityHub

Parameters:

createInsightRequest -

Returns:

Result of the CreateInsight operation returned by the service.

Throws:

InternalException - Internal server error.

InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.

LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.

InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.

ResourceConflictException - The resource specified in the request conflicts with an existing resource.

See Also:

AWS API Documentation

createMembers

public CreateMembersResult createMembers(CreateMembersRequest request)

Creates Security Hub member accounts associated with the account used for this action, which becomes the Security Hub Master account. Security Hub must be enabled in the account used to make this request.

Specified by:

createMembers in interface AWSSecurityHub

Parameters:

createMembersRequest -

Returns:

Result of the CreateMembers operation returned by the service.

Throws:

InternalException - Internal server error.

InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.

LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.

InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.

ResourceConflictException - The resource specified in the request conflicts with an existing resource.

See Also:

AWS API Documentation

declineInvitations

public DeclineInvitationsResult declineInvitations(DeclineInvitationsRequest request)

Declines invitations that are sent to this AWS account (invitee) from the AWS accounts (inviters) that are specified by the provided AccountIds.

Specified by:

declineInvitations in interface AWSSecurityHub

Parameters:

declineInvitationsRequest -

Returns:

Result of the DeclineInvitations operation returned by the service.

Throws:

InternalException - Internal server error.

InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.

InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.

ResourceNotFoundException - The request was rejected because we can't find the specified resource.

See Also:

AWS API Documentation

deleteInsight

public DeleteInsightResult deleteInsight(DeleteInsightRequest request)

Deletes the insight specified by the InsightArn.

Specified by:

deleteInsight in interface AWSSecurityHub

Parameters:

deleteInsightRequest -

Returns:

Result of the DeleteInsight operation returned by the service.

Throws:

InternalException - Internal server error.

InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.

InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.

LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.

ResourceNotFoundException - The request was rejected because we can't find the specified resource.

See Also:

AWS API Documentation

deleteInvitations

public DeleteInvitationsResult deleteInvitations(DeleteInvitationsRequest request)

Deletes invitations that were sent to theis AWS account (invitee) by the AWS accounts (inviters) that are specified by their account IDs.

Specified by:

deleteInvitations in interface AWSSecurityHub

Parameters:

deleteInvitationsRequest -

Returns:

Result of the DeleteInvitations operation returned by the service.

Throws:

InternalException - Internal server error.

InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.

LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.

ResourceNotFoundException - The request was rejected because we can't find the specified resource.

InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.

See Also:

AWS API Documentation

deleteMembers

public DeleteMembersResult deleteMembers(DeleteMembersRequest request)

Deletes the Security Hub member accounts that the account IDs specify.

Specified by:

deleteMembers in interface AWSSecurityHub

Parameters:

deleteMembersRequest -

Returns:

Result of the DeleteMembers operation returned by the service.

Throws:

InternalException - Internal server error.

InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.

InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.

LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.

ResourceNotFoundException - The request was rejected because we can't find the specified resource.

See Also:

AWS API Documentation

describeProducts

public DescribeProductsResult describeProducts(DescribeProductsRequest request)

Returns information about the products available that you can subscribe to.

Specified by:

describeProducts in interface AWSSecurityHub

Parameters:

describeProductsRequest -

Returns:

Result of the DescribeProducts operation returned by the service.

Throws:

InternalException - Internal server error.

LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.

InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.

InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.

See Also:

AWS API Documentation

disableImportFindingsForProduct

public DisableImportFindingsForProductResult disableImportFindingsForProduct(DisableImportFindingsForProductRequest request)

Cancels the subscription that allows a findings-generating solution (product) to import its findings into Security Hub.

Specified by:

disableImportFindingsForProduct in interface AWSSecurityHub

Parameters:

disableImportFindingsForProductRequest -

Returns:

Result of the DisableImportFindingsForProduct operation returned by the service.

Throws:

InternalException - Internal server error.

InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.

ResourceNotFoundException - The request was rejected because we can't find the specified resource.

InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.

LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.

See Also:

AWS API Documentation

disableSecurityHub

public DisableSecurityHubResult disableSecurityHub(DisableSecurityHubRequest request)

Disables the Security Hub service.

Specified by:

disableSecurityHub in interface AWSSecurityHub

Parameters:

disableSecurityHubRequest -

Returns:

Result of the DisableSecurityHub operation returned by the service.

Throws:

InternalException - Internal server error.

LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.

InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.

ResourceNotFoundException - The request was rejected because we can't find the specified resource.

See Also:

AWS API Documentation

disassociateFromMasterAccount

public DisassociateFromMasterAccountResult disassociateFromMasterAccount(DisassociateFromMasterAccountRequest request)

Disassociates the current Security Hub member account from its master account.

Specified by:

disassociateFromMasterAccount in interface AWSSecurityHub

Parameters:

disassociateFromMasterAccountRequest -

Returns:

Result of the DisassociateFromMasterAccount operation returned by the service.

Throws:

InternalException - Internal server error.

InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.

InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.

LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.

ResourceNotFoundException - The request was rejected because we can't find the specified resource.

See Also:

AWS API Documentation

disassociateMembers

public DisassociateMembersResult disassociateMembers(DisassociateMembersRequest request)

Disassociates the Security Hub member accounts that are specified by the account IDs from their master account.

Specified by:

disassociateMembers in interface AWSSecurityHub

Parameters:

disassociateMembersRequest -

Returns:

Result of the DisassociateMembers operation returned by the service.

Throws:

InternalException - Internal server error.

InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.

InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.

LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.

ResourceNotFoundException - The request was rejected because we can't find the specified resource.

See Also:

AWS API Documentation

enableImportFindingsForProduct

public EnableImportFindingsForProductResult enableImportFindingsForProduct(EnableImportFindingsForProductRequest request)

Sets up the subscription that enables a findings-generating solution (product) to import its findings into Security Hub.

Specified by:

enableImportFindingsForProduct in interface AWSSecurityHub

Parameters:

enableImportFindingsForProductRequest -

Returns:

Result of the EnableImportFindingsForProduct operation returned by the service.

Throws:

InternalException - Internal server error.

InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.

InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.

ResourceConflictException - The resource specified in the request conflicts with an existing resource.

LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.

See Also:

AWS API Documentation

enableSecurityHub

public EnableSecurityHubResult enableSecurityHub(EnableSecurityHubRequest request)

Enables the Security Hub service.

Specified by:

enableSecurityHub in interface AWSSecurityHub

Parameters:

enableSecurityHubRequest -

Returns:

Result of the EnableSecurityHub operation returned by the service.

Throws:

InternalException - Internal server error.

LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.

InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.

ResourceConflictException - The resource specified in the request conflicts with an existing resource.

AccessDeniedException - You don't have permission to perform the action specified in the request.

See Also:

AWS API Documentation

getEnabledStandards

public GetEnabledStandardsResult getEnabledStandards(GetEnabledStandardsRequest request)

Lists and describes enabled standards.

Specified by:

getEnabledStandards in interface AWSSecurityHub

Parameters:

getEnabledStandardsRequest -

Returns:

Result of the GetEnabledStandards operation returned by the service.

Throws:

InternalException - Internal server error.

InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.

InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.

LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.

See Also:

AWS API Documentation

getFindings

public GetFindingsResult getFindings(GetFindingsRequest request)

Lists and describes Security Hub-aggregated findings that filter attributes specify.

Specified by:

getFindings in interface AWSSecurityHub

Parameters:

getFindingsRequest -

Returns:

Result of the GetFindings operation returned by the service.

Throws:

InternalException - Internal server error.

InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.

InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.

LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.

See Also:

AWS API Documentation

getInsightResults

public GetInsightResultsResult getInsightResults(GetInsightResultsRequest request)

Lists the results of the Security Hub insight that the insight ARN specifies.

Specified by:

getInsightResults in interface AWSSecurityHub

Parameters:

getInsightResultsRequest -

Returns:

Result of the GetInsightResults operation returned by the service.

Throws:

InternalException - Internal server error.

InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.

InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.

LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.

ResourceNotFoundException - The request was rejected because we can't find the specified resource.

See Also:

AWS API Documentation

getInsights

public GetInsightsResult getInsights(GetInsightsRequest request)

Lists and describes insights that insight ARNs specify.

Specified by:

getInsights in interface AWSSecurityHub

Parameters:

getInsightsRequest -

Returns:

Result of the GetInsights operation returned by the service.

Throws:

InternalException - Internal server error.

InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.

InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.

LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.

ResourceNotFoundException - The request was rejected because we can't find the specified resource.

See Also:

AWS API Documentation

getInvitationsCount

public GetInvitationsCountResult getInvitationsCount(GetInvitationsCountRequest request)

Returns the count of all Security Hub membership invitations that were sent to the current member account, not including the currently accepted invitation.

Specified by:

getInvitationsCount in interface AWSSecurityHub

Parameters:

getInvitationsCountRequest -

Returns:

Result of the GetInvitationsCount operation returned by the service.

Throws:

InternalException - Internal server error.

InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.

InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.

LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.

See Also:

AWS API Documentation

getMasterAccount

public GetMasterAccountResult getMasterAccount(GetMasterAccountRequest request)

Provides the details for the Security Hub master account to the current member account.

Specified by:

getMasterAccount in interface AWSSecurityHub

Parameters:

getMasterAccountRequest -

Returns:

Result of the GetMasterAccount operation returned by the service.

Throws:

InternalException - Internal server error.

InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.

InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.

LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.

ResourceNotFoundException - The request was rejected because we can't find the specified resource.

See Also:

AWS API Documentation

getMembers

public GetMembersResult getMembers(GetMembersRequest request)

Returns the details on the Security Hub member accounts that the account IDs specify.

Specified by:

getMembers in interface AWSSecurityHub

Parameters:

getMembersRequest -

Returns:

Result of the GetMembers operation returned by the service.

Throws:

InternalException - Internal server error.

InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.

InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.

LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.

ResourceNotFoundException - The request was rejected because we can't find the specified resource.

See Also:

AWS API Documentation

inviteMembers

public InviteMembersResult inviteMembers(InviteMembersRequest request)

Invites other AWS accounts to enable Security Hub and become Security Hub member accounts. When an account accepts the invitation and becomes a member account, the master account can view Security Hub findings of the member account.

Specified by:

inviteMembers in interface AWSSecurityHub

Parameters:

inviteMembersRequest -

Returns:

Result of the InviteMembers operation returned by the service.

Throws:

InternalException - Internal server error.

InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.

InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.

LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.

ResourceNotFoundException - The request was rejected because we can't find the specified resource.

See Also:

AWS API Documentation

listEnabledProductsForImport

public ListEnabledProductsForImportResult listEnabledProductsForImport(ListEnabledProductsForImportRequest request)

Lists all findings-generating solutions (products) whose findings you have subscribed to receive in Security Hub.

Specified by:

listEnabledProductsForImport in interface AWSSecurityHub

Parameters:

listEnabledProductsForImportRequest -

Returns:

Result of the ListEnabledProductsForImport operation returned by the service.

Throws:

InternalException - Internal server error.

LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.

InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.

See Also:

AWS API Documentation

listInvitations

public ListInvitationsResult listInvitations(ListInvitationsRequest request)

Lists all Security Hub membership invitations that were sent to the current AWS account.

Specified by:

listInvitations in interface AWSSecurityHub

Parameters:

listInvitationsRequest -

Returns:

Result of the ListInvitations operation returned by the service.

Throws:

InternalException - Internal server error.

InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.

InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.

LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.

See Also:

AWS API Documentation

listMembers

public ListMembersResult listMembers(ListMembersRequest request)

Lists details about all member accounts for the current Security Hub master account.

Specified by:

listMembers in interface AWSSecurityHub

Parameters:

listMembersRequest -

Returns:

Result of the ListMembers operation returned by the service.

Throws:

InternalException - Internal server error.

InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.

InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.

LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.

See Also:

AWS API Documentation

listProductSubscribers

public ListProductSubscribersResult listProductSubscribers(ListProductSubscribersRequest request)

Returns a list of account IDs that are subscribed to the product.

Specified by:

listProductSubscribers in interface AWSSecurityHub

Parameters:

listProductSubscribersRequest -

Returns:

Result of the ListProductSubscribers operation returned by the service.

Throws:

ResourceNotFoundException - The request was rejected because we can't find the specified resource.

InternalException - Internal server error.

LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.

InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.

See Also:

AWS API Documentation

updateFindings

public UpdateFindingsResult updateFindings(UpdateFindingsRequest request)

Updates the Note and RecordState of the Security Hub-aggregated findings that the filter attributes specify. Any member account that can view the finding also sees the update to the finding.

Specified by:

updateFindings in interface AWSSecurityHub

Parameters:

updateFindingsRequest -

Returns:

Result of the UpdateFindings operation returned by the service.

Throws:

InternalException - Internal server error.

InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.

LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.

InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.

ResourceNotFoundException - The request was rejected because we can't find the specified resource.

See Also:

AWS API Documentation

updateInsight

public UpdateInsightResult updateInsight(UpdateInsightRequest request)

Updates the Security Hub insight that the insight ARN specifies.

Specified by:

updateInsight in interface AWSSecurityHub

Parameters:

updateInsightRequest -

Returns:

Result of the UpdateInsight operation returned by the service.

Throws:

InternalException - Internal server error.

InvalidInputException - The request was rejected because you supplied an invalid or out-of-range value for an input parameter.

InvalidAccessException - AWS Security Hub isn't enabled for the account used to make this request.

LimitExceededException - The request was rejected because it attempted to create resources beyond the current AWS account limits. The error code describes the limit exceeded.

ResourceNotFoundException - The request was rejected because we can't find the specified resource.

See Also:

AWS API Documentation

getCachedResponseMetadata

public ResponseMetadata getCachedResponseMetadata(AmazonWebServiceRequest request)

Returns additional metadata for a previously executed successful, request, typically used for debugging issues where a service isn't acting as expected. This data isn't considered part of the result data returned by an operation, so it's available through this separate, diagnostic interface.

Response metadata is only cached for a limited period of time, so if you need to access this extra diagnostic information for an executed request, you should use this method to retrieve it as soon as possible after executing the request.

Specified by:

getCachedResponseMetadata in interface AWSSecurityHub

Parameters:

request - The originally executed request

Returns:

The response metadata for the specified request, or null if none is available.