AIOps / Client / put_investigation_group_policy

put_investigation_group_policy

AIOps.Client.put_investigation_group_policy(**kwargs)

Creates an IAM resource policy and assigns it to the specified investigation group.

If you create your investigation group with CreateInvestigationGroup and you want to enable CloudWatch alarms to create investigations and add events to investigations, you must use this operation to create a policy similar to this example.

{ "Version": "2008-10-17", "Statement": [{ "Effect": "Allow", "Principal": { "Service": "aiops.alarms.cloudwatch.amazonaws.com" }, "Action": ["aiops:CreateInvestigation", "aiops:CreateInvestigationEvent"], "Resource": "*", "Condition": { "StringEquals": { "aws:SourceAccount": "account-id" }, "ArnLike": { "aws:SourceArn": "arn:aws:cloudwatch:region:account-id:alarm:*" } } }] }

See also: AWS API Documentation

Request Syntax

response = client.put_investigation_group_policy(
    identifier='string',
    policy='string'
)

Parameters:

• identifier (string) –

  [REQUIRED]

  Specify either the name or the ARN of the investigation group that you want to assign the policy to.

• policy (string) –

  [REQUIRED]

  The policy, in JSON format.

Return type:

dict

Returns:

Response Syntax

{
    'investigationGroupArn': 'string'
}

Response Structure

• (dict) –

  • investigationGroupArn (string) –

    The ARN of the investigation group that will use this policy.

Exceptions

• AIOps.Client.exceptions.AccessDeniedException

• AIOps.Client.exceptions.ForbiddenException

• AIOps.Client.exceptions.ResourceNotFoundException

• AIOps.Client.exceptions.ThrottlingException

• AIOps.Client.exceptions.ValidationException

• AIOps.Client.exceptions.InternalServerException

• AIOps.Client.exceptions.ConflictException