SecurityLake / Client / create_data_lake_organization_configuration
create_data_lake_organization_configuration#
- SecurityLake.Client.create_data_lake_organization_configuration(**kwargs)#
Automatically enables Amazon Security Lake for new member accounts in your organization. Security Lake is not automatically enabled for any existing member accounts in your organization.
This operation merges the new data lake organization configuration with the existing configuration for Security Lake in your organization. If you want to create a new data lake organization configuration, you must delete the existing one using DeleteDataLakeOrganizationConfiguration.
See also: AWS API Documentation
Request Syntax
response = client.create_data_lake_organization_configuration( autoEnableNewAccount=[ { 'region': 'string', 'sources': [ { 'sourceName': 'ROUTE53'|'VPC_FLOW'|'SH_FINDINGS'|'CLOUD_TRAIL_MGMT'|'LAMBDA_EXECUTION'|'S3_DATA'|'EKS_AUDIT'|'WAF', 'sourceVersion': 'string' }, ] }, ] )
- Parameters:
autoEnableNewAccount (list) –
Enable Security Lake with the specified configuration settings, to begin collecting security data for new accounts in your organization.
(dict) –
Automatically enable new organization accounts as member accounts from an Amazon Security Lake administrator account.
region (string) – [REQUIRED]
The Amazon Web Services Regions where Security Lake is automatically enabled.
sources (list) – [REQUIRED]
The Amazon Web Services sources that are automatically enabled in Security Lake.
(dict) –
Amazon Security Lake can collect logs and events from natively-supported Amazon Web Services services.
sourceName (string) –
The name for a Amazon Web Services source. This must be a Regionally unique value.
sourceVersion (string) –
The version for a Amazon Web Services source. This must be a Regionally unique value.
- Return type:
dict
- Returns:
Response Syntax
{}Response Structure
(dict) –
Exceptions