AWS Audit Manager
API Reference
API Version 2017-07-25
AWS Audit Manager: API Reference
Copyright © Amazon Web Services, Inc. and/or its affiliates. All rights reserved.
Amazon's trademarks and trade dress may not be used in connection with any product or service that is not Amazon's, in any manner that is likely to cause confusion among customers, or in any manner that disparages or discredits Amazon. All other trademarks not owned by Amazon are the property of their respective owners, who may or may not be affiliated with, connected to, or sponsored by Amazon.
Table of Contents
Welcome ... 1
Actions ... 2
AssociateAssessmentReportEvidenceFolder ... 4
Request Syntax ... 4
URI Request Parameters ... 4
Request Body ... 4
Response Syntax ... 4
Response Elements ... 4
Errors ... 5
See Also ... 5
BatchAssociateAssessmentReportEvidence ... 6
Request Syntax ... 6
URI Request Parameters ... 6
Request Body ... 6
Response Syntax ... 7
Response Elements ... 7
Errors ... 7
See Also ... 8
BatchCreateDelegationByAssessment ... 9
Request Syntax ... 9
URI Request Parameters ... 9
Request Body ... 9
Response Syntax ... 9
Response Elements ... 10
Errors ... 10
See Also ... 11
BatchDeleteDelegationByAssessment ... 12
Request Syntax ... 12
URI Request Parameters ... 12
Request Body ... 12
Response Syntax ... 12
Response Elements ... 13
Errors ... 13
See Also ... 13
BatchDisassociateAssessmentReportEvidence ... 15
Request Syntax ... 15
URI Request Parameters ... 15
Request Body ... 15
Response Syntax ... 16
Response Elements ... 16
Errors ... 16
See Also ... 17
BatchImportEvidenceToAssessmentControl ... 18
Request Syntax ... 18
URI Request Parameters ... 18
Request Body ... 18
Response Syntax ... 19
Response Elements ... 19
Errors ... 19
See Also ... 20
CreateAssessment ... 21
Request Syntax ... 21
URI Request Parameters ... 21
Request Body ... 21
API Version 2017-07-25 iii
Response Syntax ... 23
Response Elements ... 25
Errors ... 25
See Also ... 25
CreateAssessmentFramework ... 27
Request Syntax ... 27
URI Request Parameters ... 27
Request Body ... 27
Response Syntax ... 28
Response Elements ... 29
Errors ... 29
See Also ... 30
CreateAssessmentReport ... 31
Request Syntax ... 31
URI Request Parameters ... 31
Request Body ... 31
Response Syntax ... 32
Response Elements ... 32
Errors ... 32
See Also ... 33
CreateControl ... 34
Request Syntax ... 34
URI Request Parameters ... 34
Request Body ... 34
Response Syntax ... 36
Response Elements ... 36
Errors ... 36
See Also ... 37
DeleteAssessment ... 38
Request Syntax ... 38
URI Request Parameters ... 38
Request Body ... 38
Response Syntax ... 38
Response Elements ... 38
Errors ... 38
See Also ... 39
DeleteAssessmentFramework ... 40
Request Syntax ... 40
URI Request Parameters ... 40
Request Body ... 40
Response Syntax ... 40
Response Elements ... 40
Errors ... 40
See Also ... 41
DeleteAssessmentFrameworkShare ... 42
Request Syntax ... 42
URI Request Parameters ... 42
Request Body ... 42
Response Syntax ... 42
Response Elements ... 42
Errors ... 42
See Also ... 43
DeleteAssessmentReport ... 44
Request Syntax ... 44
URI Request Parameters ... 44
Request Body ... 44
Response Syntax ... 44
Response Elements ... 44
Errors ... 44
See Also ... 45
DeleteControl ... 46
Request Syntax ... 46
URI Request Parameters ... 46
Request Body ... 46
Response Syntax ... 46
Response Elements ... 46
Errors ... 46
See Also ... 47
DeregisterAccount ... 48
Request Syntax ... 48
URI Request Parameters ... 48
Request Body ... 48
Response Syntax ... 48
Response Elements ... 48
Errors ... 48
See Also ... 49
DeregisterOrganizationAdminAccount ... 50
Request Syntax ... 50
URI Request Parameters ... 50
Request Body ... 50
Response Syntax ... 50
Response Elements ... 50
Errors ... 50
See Also ... 51
DisassociateAssessmentReportEvidenceFolder ... 52
Request Syntax ... 52
URI Request Parameters ... 52
Request Body ... 52
Response Syntax ... 52
Response Elements ... 52
Errors ... 53
See Also ... 53
GetAccountStatus ... 54
Request Syntax ... 54
URI Request Parameters ... 54
Request Body ... 54
Response Syntax ... 54
Response Elements ... 54
Errors ... 54
See Also ... 54
GetAssessment ... 56
Request Syntax ... 56
URI Request Parameters ... 56
Request Body ... 56
Response Syntax ... 56
Response Elements ... 58
Errors ... 58
See Also ... 59
GetAssessmentFramework ... 60
Request Syntax ... 60
URI Request Parameters ... 60
Request Body ... 60
Response Syntax ... 60
Response Elements ... 61
API Version 2017-07-25 v
Errors ... 61
See Also ... 62
GetAssessmentReportUrl ... 63
Request Syntax ... 63
URI Request Parameters ... 63
Request Body ... 63
Response Syntax ... 63
Response Elements ... 63
Errors ... 64
See Also ... 64
GetChangeLogs ... 65
Request Syntax ... 65
URI Request Parameters ... 65
Request Body ... 65
Response Syntax ... 66
Response Elements ... 66
Errors ... 66
See Also ... 67
GetControl ... 68
Request Syntax ... 68
URI Request Parameters ... 68
Request Body ... 68
Response Syntax ... 68
Response Elements ... 69
Errors ... 69
See Also ... 69
GetDelegations ... 71
Request Syntax ... 71
URI Request Parameters ... 71
Request Body ... 71
Response Syntax ... 71
Response Elements ... 71
Errors ... 72
See Also ... 72
GetEvidence ... 73
Request Syntax ... 73
URI Request Parameters ... 73
Request Body ... 73
Response Syntax ... 74
Response Elements ... 74
Errors ... 74
See Also ... 75
GetEvidenceByEvidenceFolder ... 76
Request Syntax ... 76
URI Request Parameters ... 76
Request Body ... 76
Response Syntax ... 77
Response Elements ... 77
Errors ... 77
See Also ... 78
GetEvidenceFolder ... 79
Request Syntax ... 79
URI Request Parameters ... 79
Request Body ... 79
Response Syntax ... 79
Response Elements ... 80
Errors ... 80
See Also ... 80
GetEvidenceFoldersByAssessment ... 82
Request Syntax ... 82
URI Request Parameters ... 82
Request Body ... 82
Response Syntax ... 82
Response Elements ... 83
Errors ... 83
See Also ... 84
GetEvidenceFoldersByAssessmentControl ... 85
Request Syntax ... 85
URI Request Parameters ... 85
Request Body ... 85
Response Syntax ... 86
Response Elements ... 86
Errors ... 86
See Also ... 87
GetInsights ... 88
Request Syntax ... 88
URI Request Parameters ... 88
Request Body ... 88
Response Syntax ... 88
Response Elements ... 88
Errors ... 88
See Also ... 89
GetInsightsByAssessment ... 90
Request Syntax ... 90
URI Request Parameters ... 90
Request Body ... 90
Response Syntax ... 90
Response Elements ... 90
Errors ... 91
See Also ... 91
GetOrganizationAdminAccount ... 92
Request Syntax ... 92
URI Request Parameters ... 92
Request Body ... 92
Response Syntax ... 92
Response Elements ... 92
Errors ... 92
See Also ... 93
GetServicesInScope ... 94
Request Syntax ... 94
URI Request Parameters ... 94
Request Body ... 94
Response Syntax ... 94
Response Elements ... 94
Errors ... 94
See Also ... 95
GetSettings ... 96
Request Syntax ... 96
URI Request Parameters ... 96
Request Body ... 96
Response Syntax ... 96
Response Elements ... 96
Errors ... 97
See Also ... 97
API Version 2017-07-25 vii
ListAssessmentControlInsightsByControlDomain ... 98
Request Syntax ... 98
URI Request Parameters ... 98
Request Body ... 98
Response Syntax ... 99
Response Elements ... 99
Errors ... 99
See Also ... 100
ListAssessmentFrameworks ... 101
Request Syntax ... 101
URI Request Parameters ... 101
Request Body ... 101
Response Syntax ... 101
Response Elements ... 102
Errors ... 102
See Also ... 102
ListAssessmentFrameworkShareRequests ... 104
Request Syntax ... 104
URI Request Parameters ... 104
Request Body ... 104
Response Syntax ... 104
Response Elements ... 105
Errors ... 105
See Also ... 105
ListAssessmentReports ... 107
Request Syntax ... 107
URI Request Parameters ... 107
Request Body ... 107
Response Syntax ... 107
Response Elements ... 107
Errors ... 108
See Also ... 108
ListAssessments ... 109
Request Syntax ... 109
URI Request Parameters ... 109
Request Body ... 109
Response Syntax ... 109
Response Elements ... 110
Errors ... 110
See Also ... 111
ListControlDomainInsights ... 112
Request Syntax ... 112
URI Request Parameters ... 112
Request Body ... 112
Response Syntax ... 112
Response Elements ... 113
Errors ... 113
See Also ... 113
ListControlDomainInsightsByAssessment ... 115
Request Syntax ... 115
URI Request Parameters ... 115
Request Body ... 115
Response Syntax ... 115
Response Elements ... 116
Errors ... 116
See Also ... 117
ListControlInsightsByControlDomain ... 118
Request Syntax ... 118
URI Request Parameters ... 118
Request Body ... 118
Response Syntax ... 118
Response Elements ... 119
Errors ... 119
See Also ... 120
ListControls ... 121
Request Syntax ... 121
URI Request Parameters ... 121
Request Body ... 121
Response Syntax ... 121
Response Elements ... 122
Errors ... 122
See Also ... 122
ListKeywordsForDataSource ... 124
Request Syntax ... 124
URI Request Parameters ... 124
Request Body ... 124
Response Syntax ... 124
Response Elements ... 124
Errors ... 125
See Also ... 125
ListNotifications ... 126
Request Syntax ... 126
URI Request Parameters ... 126
Request Body ... 126
Response Syntax ... 126
Response Elements ... 126
Errors ... 127
See Also ... 127
ListTagsForResource ... 128
Request Syntax ... 128
URI Request Parameters ... 128
Request Body ... 128
Response Syntax ... 128
Response Elements ... 128
Errors ... 129
See Also ... 129
RegisterAccount ... 130
Request Syntax ... 130
URI Request Parameters ... 130
Request Body ... 130
Response Syntax ... 130
Response Elements ... 131
Errors ... 131
See Also ... 131
RegisterOrganizationAdminAccount ... 133
Request Syntax ... 133
URI Request Parameters ... 133
Request Body ... 133
Response Syntax ... 133
Response Elements ... 133
Errors ... 134
See Also ... 134
StartAssessmentFrameworkShare ... 135
Request Syntax ... 135
API Version 2017-07-25 ix
URI Request Parameters ... 135
Request Body ... 135
Response Syntax ... 136
Response Elements ... 136
Errors ... 136
See Also ... 137
TagResource ... 138
Request Syntax ... 138
URI Request Parameters ... 138
Request Body ... 138
Response Syntax ... 138
Response Elements ... 139
Errors ... 139
See Also ... 139
UntagResource ... 140
Request Syntax ... 140
URI Request Parameters ... 140
Request Body ... 140
Response Syntax ... 140
Response Elements ... 140
Errors ... 140
See Also ... 141
UpdateAssessment ... 142
Request Syntax ... 142
URI Request Parameters ... 142
Request Body ... 142
Response Syntax ... 143
Response Elements ... 145
Errors ... 145
See Also ... 146
UpdateAssessmentControl ... 147
Request Syntax ... 147
URI Request Parameters ... 147
Request Body ... 147
Response Syntax ... 148
Response Elements ... 148
Errors ... 148
See Also ... 149
UpdateAssessmentControlSetStatus ... 150
Request Syntax ... 150
URI Request Parameters ... 150
Request Body ... 150
Response Syntax ... 151
Response Elements ... 151
Errors ... 152
See Also ... 152
UpdateAssessmentFramework ... 153
Request Syntax ... 153
URI Request Parameters ... 153
Request Body ... 153
Response Syntax ... 154
Response Elements ... 155
Errors ... 155
See Also ... 156
UpdateAssessmentFrameworkShare ... 157
Request Syntax ... 157
URI Request Parameters ... 157
Request Body ... 157
Response Syntax ... 157
Response Elements ... 158
Errors ... 158
See Also ... 159
UpdateAssessmentStatus ... 160
Request Syntax ... 160
URI Request Parameters ... 160
Request Body ... 160
Response Syntax ... 160
Response Elements ... 162
Errors ... 162
See Also ... 163
UpdateControl ... 164
Request Syntax ... 164
URI Request Parameters ... 164
Request Body ... 164
Response Syntax ... 165
Response Elements ... 166
Errors ... 166
See Also ... 167
UpdateSettings ... 168
Request Syntax ... 168
URI Request Parameters ... 168
Request Body ... 168
Response Syntax ... 169
Response Elements ... 169
Errors ... 169
See Also ... 170
ValidateAssessmentReportIntegrity ... 171
Request Syntax ... 171
URI Request Parameters ... 171
Request Body ... 171
Response Syntax ... 171
Response Elements ... 171
Errors ... 172
See Also ... 173
Data Types ... 174
Assessment ... 176
Contents ... 176
See Also ... 177
AssessmentControl ... 178
Contents ... 178
See Also ... 179
AssessmentControlSet ... 180
Contents ... 180
See Also ... 181
AssessmentEvidenceFolder ... 182
Contents ... 182
See Also ... 184
AssessmentFramework ... 186
Contents ... 186
See Also ... 186
AssessmentFrameworkMetadata ... 187
Contents ... 187
See Also ... 188
AssessmentFrameworkShareRequest ... 190
API Version 2017-07-25 xi
Contents ... 190
See Also ... 192
AssessmentMetadata ... 193
Contents ... 193
See Also ... 194
AssessmentMetadataItem ... 195
Contents ... 195
See Also ... 196
AssessmentReport ... 197
Contents ... 197
See Also ... 198
AssessmentReportEvidenceError ... 199
Contents ... 199
See Also ... 199
AssessmentReportMetadata ... 200
Contents ... 200
See Also ... 201
AssessmentReportsDestination ... 202
Contents ... 202
See Also ... 202
AWSAccount ... 203
Contents ... 203
See Also ... 203
AWSService ... 204
Contents ... 204
See Also ... 204
BatchCreateDelegationByAssessmentError ... 205
Contents ... 205
See Also ... 205
BatchDeleteDelegationByAssessmentError ... 206
Contents ... 206
See Also ... 206
BatchImportEvidenceToAssessmentControlError ... 207
Contents ... 207
See Also ... 207
ChangeLog ... 208
Contents ... 208
See Also ... 209
Control ... 210
Contents ... 210
See Also ... 212
ControlComment ... 213
Contents ... 213
See Also ... 213
ControlDomainInsights ... 214
Contents ... 214
See Also ... 215
ControlInsightsMetadataByAssessmentItem ... 216
Contents ... 216
See Also ... 217
ControlInsightsMetadataItem ... 218
Contents ... 218
See Also ... 218
ControlMappingSource ... 219
Contents ... 219
See Also ... 220
ControlMetadata ... 221
Contents ... 221
See Also ... 222
ControlSet ... 223
Contents ... 223
See Also ... 223
CreateAssessmentFrameworkControl ... 224
Contents ... 224
See Also ... 224
CreateAssessmentFrameworkControlSet ... 225
Contents ... 225
See Also ... 225
CreateControlMappingSource ... 226
Contents ... 226
See Also ... 227
CreateDelegationRequest ... 228
Contents ... 228
See Also ... 228
Delegation ... 230
Contents ... 230
See Also ... 232
DelegationMetadata ... 233
Contents ... 233
See Also ... 234
Evidence ... 235
Contents ... 235
See Also ... 237
EvidenceInsights ... 239
Contents ... 239
See Also ... 239
Framework ... 240
Contents ... 240
See Also ... 242
FrameworkMetadata ... 243
Contents ... 243
See Also ... 243
Insights ... 245
Contents ... 245
See Also ... 246
InsightsByAssessment ... 247
Contents ... 247
See Also ... 248
ManualEvidence ... 249
Contents ... 249
See Also ... 249
Notification ... 250
Contents ... 250
See Also ... 251
Resource ... 252
Contents ... 252
See Also ... 252
Role ... 253
Contents ... 253
See Also ... 253
Scope ... 254
Contents ... 254
See Also ... 254
ServiceMetadata ... 255
API Version 2017-07-25 xiii
Contents ... 255
See Also ... 255
Settings ... 257
Contents ... 257
See Also ... 257
SourceKeyword ... 259
Contents ... 259
See Also ... 259
UpdateAssessmentFrameworkControlSet ... 260
Contents ... 260
See Also ... 260
URL ... 261
Contents ... 261
See Also ... 261
ValidationExceptionField ... 262
Contents ... 262
See Also ... 262
Common Parameters ... 263
Common Errors ... 265
Welcome
Welcome to the AWS Audit Manager API reference. This guide is for developers who need detailed information about the AWS Audit Manager API operations, data types, and errors.
AWS Audit Manager is a service that provides automated evidence collection so that you can continually audit your AWS usage. You can use it to assess the effectiveness of your controls, manage risk, and simplify compliance.
AWS Audit Manager provides prebuilt frameworks that structure and automate assessments for a given compliance standard. Frameworks include a prebuilt collection of controls with descriptions and testing procedures. These controls are grouped according to the requirements of the specified compliance standard or regulation. You can also customize frameworks and controls to support internal audits with specific requirements.
Use the following links to get started with the AWS Audit Manager API:
• Actions: An alphabetical list of all AWS Audit Manager API operations.
• Data types: An alphabetical list of all AWS Audit Manager data types.
• Common parameters: Parameters that all Query operations can use.
• Common errors: Client and server errors that all operations can return.
If you're new to AWS Audit Manager, we recommend that you review the AWS Audit Manager User Guide.
This document was last published on March 6, 2022.
API Version 2017-07-25 1
Actions
The following actions are supported:
• AssociateAssessmentReportEvidenceFolder (p. 4)
• BatchAssociateAssessmentReportEvidence (p. 6)
• BatchCreateDelegationByAssessment (p. 9)
• BatchDeleteDelegationByAssessment (p. 12)
• BatchDisassociateAssessmentReportEvidence (p. 15)
• BatchImportEvidenceToAssessmentControl (p. 18)
• CreateAssessment (p. 21)
• CreateAssessmentFramework (p. 27)
• CreateAssessmentReport (p. 31)
• CreateControl (p. 34)
• DeleteAssessment (p. 38)
• DeleteAssessmentFramework (p. 40)
• DeleteAssessmentFrameworkShare (p. 42)
• DeleteAssessmentReport (p. 44)
• DeleteControl (p. 46)
• DeregisterAccount (p. 48)
• DeregisterOrganizationAdminAccount (p. 50)
• DisassociateAssessmentReportEvidenceFolder (p. 52)
• GetAccountStatus (p. 54)
• GetAssessment (p. 56)
• GetAssessmentFramework (p. 60)
• GetAssessmentReportUrl (p. 63)
• GetChangeLogs (p. 65)
• GetControl (p. 68)
• GetDelegations (p. 71)
• GetEvidence (p. 73)
• GetEvidenceByEvidenceFolder (p. 76)
• GetEvidenceFolder (p. 79)
• GetEvidenceFoldersByAssessment (p. 82)
• GetEvidenceFoldersByAssessmentControl (p. 85)
• GetInsights (p. 88)
• GetInsightsByAssessment (p. 90)
• GetOrganizationAdminAccount (p. 92)
• GetServicesInScope (p. 94)
• GetSettings (p. 96)
• ListAssessmentControlInsightsByControlDomain (p. 98)
• ListAssessmentFrameworks (p. 101)
• ListAssessmentFrameworkShareRequests (p. 104)
• ListAssessmentReports (p. 107)
• ListAssessments (p. 109)
• ListControlDomainInsights (p. 112)
• ListControlDomainInsightsByAssessment (p. 115)
• ListControlInsightsByControlDomain (p. 118)
• ListControls (p. 121)
• ListKeywordsForDataSource (p. 124)
• ListNotifications (p. 126)
• ListTagsForResource (p. 128)
• RegisterAccount (p. 130)
• RegisterOrganizationAdminAccount (p. 133)
• StartAssessmentFrameworkShare (p. 135)
• TagResource (p. 138)
• UntagResource (p. 140)
• UpdateAssessment (p. 142)
• UpdateAssessmentControl (p. 147)
• UpdateAssessmentControlSetStatus (p. 150)
• UpdateAssessmentFramework (p. 153)
• UpdateAssessmentFrameworkShare (p. 157)
• UpdateAssessmentStatus (p. 160)
• UpdateControl (p. 164)
• UpdateSettings (p. 168)
• ValidateAssessmentReportIntegrity (p. 171)
API Version 2017-07-25 3
AssociateAssessmentReportEvidenceFolder
AssociateAssessmentReportEvidenceFolder
Associates an evidence folder to an assessment report in a AWS Audit Manager assessment.
Request Syntax
PUT /assessments/assessmentId/associateToAssessmentReport HTTP/1.1 Content-type: application/json
{
"evidenceFolderId": "string"
}
URI Request Parameters
The request uses the following URI parameters.
assessmentId (p. 4)
The identifier for the assessment.
Length Constraints: Fixed length of 36.
Pattern: ^[a-f0-9]{8}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{12}$
Required: Yes
Request Body
The request accepts the following data in JSON format.
evidenceFolderId (p. 4)
The identifier for the folder that the evidence is stored in.
Type: String
Length Constraints: Fixed length of 36.
Pattern: ^[a-f0-9]{8}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{12}$
Required: Yes
Response Syntax
HTTP/1.1 200
Response Elements
If the action is successful, the service sends back an HTTP 200 response with an empty HTTP body.
Errors
For information about the errors that are common to all actions, see Common Errors (p. 265).
AccessDeniedException
Your account isn't registered with AWS Audit Manager. Check the delegated administrator setup on the AWS Audit Manager settings page, and try again.
HTTP Status Code: 403 InternalServerException
An internal service error occurred during the processing of your request. Try again later.
HTTP Status Code: 500 ResourceNotFoundException
The resource that's specified in the request can't be found.
HTTP Status Code: 404 ValidationException
The request has invalid or missing parameters.
HTTP Status Code: 400
See Also
For more information about using this API in one of the language-specific AWS SDKs, see the following:
• AWS Command Line Interface
• AWS SDK for .NET
• AWS SDK for C++
• AWS SDK for Go
• AWS SDK for Java V2
• AWS SDK for JavaScript
• AWS SDK for PHP V3
• AWS SDK for Python
• AWS SDK for Ruby V3
API Version 2017-07-25 5
BatchAssociateAssessmentReportEvidence
BatchAssociateAssessmentReportEvidence
Associates a list of evidence to an assessment report in an AWS Audit Manager assessment.
Request Syntax
PUT /assessments/assessmentId/batchAssociateToAssessmentReport HTTP/1.1 Content-type: application/json
{
"evidenceFolderId": "string", "evidenceIds": [ "string" ] }
URI Request Parameters
The request uses the following URI parameters.
assessmentId (p. 6)
The identifier for the assessment.
Length Constraints: Fixed length of 36.
Pattern: ^[a-f0-9]{8}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{12}$
Required: Yes
Request Body
The request accepts the following data in JSON format.
evidenceFolderId (p. 6)
The identifier for the folder that the evidence is stored in.
Type: String
Length Constraints: Fixed length of 36.
Pattern: ^[a-f0-9]{8}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{12}$
Required: Yes evidenceIds (p. 6)
The list of evidence identifiers.
Type: Array of strings
Array Members: Minimum number of 0 items. Maximum number of 50 items.
Length Constraints: Fixed length of 36.
Pattern: ^[a-f0-9]{8}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{12}$
Required: Yes
Response Syntax
HTTP/1.1 200
Content-type: application/json {
"errors": [ {
"errorCode": "string", "errorMessage": "string", "evidenceId": "string"
} ],
"evidenceIds": [ "string" ] }
Response Elements
If the action is successful, the service sends back an HTTP 200 response.
The following data is returned in JSON format by the service.
errors (p. 7)
A list of errors that the BatchAssociateAssessmentReportEvidence API returned.
Type: Array of AssessmentReportEvidenceError (p. 199) objects evidenceIds (p. 7)
The list of evidence identifiers.
Type: Array of strings
Array Members: Minimum number of 0 items. Maximum number of 50 items.
Length Constraints: Fixed length of 36.
Pattern: ^[a-f0-9]{8}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{12}$
Errors
For information about the errors that are common to all actions, see Common Errors (p. 265).
AccessDeniedException
Your account isn't registered with AWS Audit Manager. Check the delegated administrator setup on the AWS Audit Manager settings page, and try again.
HTTP Status Code: 403 InternalServerException
An internal service error occurred during the processing of your request. Try again later.
HTTP Status Code: 500 ResourceNotFoundException
The resource that's specified in the request can't be found.
API Version 2017-07-25 7
See Also
HTTP Status Code: 404 ValidationException
The request has invalid or missing parameters.
HTTP Status Code: 400
See Also
For more information about using this API in one of the language-specific AWS SDKs, see the following:
• AWS Command Line Interface
• AWS SDK for .NET
• AWS SDK for C++
• AWS SDK for Go
• AWS SDK for Java V2
• AWS SDK for JavaScript
• AWS SDK for PHP V3
• AWS SDK for Python
• AWS SDK for Ruby V3
BatchCreateDelegationByAssessment
Creates a batch of delegations for an assessment in AWS Audit Manager.
Request Syntax
POST /assessments/assessmentId/delegations HTTP/1.1 Content-type: application/json
{
"createDelegationRequests": [ {
"comment": "string", "controlSetId": "string", "roleArn": "string", "roleType": "string"
} ] }
URI Request Parameters
The request uses the following URI parameters.
assessmentId (p. 9)
The identifier for the assessment.
Length Constraints: Fixed length of 36.
Pattern: ^[a-f0-9]{8}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{12}$
Required: Yes
Request Body
The request accepts the following data in JSON format.
createDelegationRequests (p. 9)
The API request to batch create delegations in AWS Audit Manager.
Type: Array of CreateDelegationRequest (p. 228) objects
Array Members: Minimum number of 1 item. Maximum number of 50 items.
Required: Yes
Response Syntax
HTTP/1.1 200
Content-type: application/json { "delegations": [
API Version 2017-07-25 9
Response Elements
{
"assessmentId": "string", "assessmentName": "string", "comment": "string",
"controlSetId": "string", "createdBy": "string", "creationTime": number, "id": "string",
"lastUpdated": number, "roleArn": "string", "roleType": "string", "status": "string"
} ],
"errors": [ {
"createDelegationRequest": { "comment": "string", "controlSetId": "string", "roleArn": "string", "roleType": "string"
},
"errorCode": "string", "errorMessage": "string"
} ] }
Response Elements
If the action is successful, the service sends back an HTTP 200 response.
The following data is returned in JSON format by the service.
delegations (p. 9)
The delegations that are associated with the assessment.
Type: Array of Delegation (p. 230) objects errors (p. 9)
A list of errors that the BatchCreateDelegationByAssessment API returned.
Type: Array of BatchCreateDelegationByAssessmentError (p. 205) objects
Errors
For information about the errors that are common to all actions, see Common Errors (p. 265).
AccessDeniedException
Your account isn't registered with AWS Audit Manager. Check the delegated administrator setup on the AWS Audit Manager settings page, and try again.
HTTP Status Code: 403 InternalServerException
An internal service error occurred during the processing of your request. Try again later.
HTTP Status Code: 500
ResourceNotFoundException
The resource that's specified in the request can't be found.
HTTP Status Code: 404 ValidationException
The request has invalid or missing parameters.
HTTP Status Code: 400
See Also
For more information about using this API in one of the language-specific AWS SDKs, see the following:
• AWS Command Line Interface
• AWS SDK for .NET
• AWS SDK for C++
• AWS SDK for Go
• AWS SDK for Java V2
• AWS SDK for JavaScript
• AWS SDK for PHP V3
• AWS SDK for Python
• AWS SDK for Ruby V3
API Version 2017-07-25 11
BatchDeleteDelegationByAssessment
BatchDeleteDelegationByAssessment
Deletes a batch of delegations for an assessment in AWS Audit Manager.
Request Syntax
PUT /assessments/assessmentId/delegations HTTP/1.1 Content-type: application/json
{
"delegationIds": [ "string" ] }
URI Request Parameters
The request uses the following URI parameters.
assessmentId (p. 12)
The identifier for the assessment.
Length Constraints: Fixed length of 36.
Pattern: ^[a-f0-9]{8}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{12}$
Required: Yes
Request Body
The request accepts the following data in JSON format.
delegationIds (p. 12)
The identifiers for the delegations.
Type: Array of strings
Array Members: Minimum number of 1 item. Maximum number of 50 items.
Length Constraints: Fixed length of 36.
Pattern: ^[a-f0-9]{8}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{12}$
Required: Yes
Response Syntax
HTTP/1.1 200
Content-type: application/json { "errors": [
{
"delegationId": "string",
"errorCode": "string", "errorMessage": "string"
} ] }
Response Elements
If the action is successful, the service sends back an HTTP 200 response.
The following data is returned in JSON format by the service.
errors (p. 12)
A list of errors that the BatchDeleteDelegationByAssessment API returned.
Type: Array of BatchDeleteDelegationByAssessmentError (p. 206) objects
Errors
For information about the errors that are common to all actions, see Common Errors (p. 265).
AccessDeniedException
Your account isn't registered with AWS Audit Manager. Check the delegated administrator setup on the AWS Audit Manager settings page, and try again.
HTTP Status Code: 403 InternalServerException
An internal service error occurred during the processing of your request. Try again later.
HTTP Status Code: 500 ResourceNotFoundException
The resource that's specified in the request can't be found.
HTTP Status Code: 404 ValidationException
The request has invalid or missing parameters.
HTTP Status Code: 400
See Also
For more information about using this API in one of the language-specific AWS SDKs, see the following:
• AWS Command Line Interface
• AWS SDK for .NET
• AWS SDK for C++
• AWS SDK for Go
• AWS SDK for Java V2
• AWS SDK for JavaScript
API Version 2017-07-25 13
See Also
• AWS SDK for PHP V3
• AWS SDK for Python
• AWS SDK for Ruby V3
BatchDisassociateAssessmentReportEvidence
Disassociates a list of evidence from an assessment report in AWS Audit Manager.
Request Syntax
PUT /assessments/assessmentId/batchDisassociateFromAssessmentReport HTTP/1.1 Content-type: application/json
{
"evidenceFolderId": "string", "evidenceIds": [ "string" ] }
URI Request Parameters
The request uses the following URI parameters.
assessmentId (p. 15)
The identifier for the assessment.
Length Constraints: Fixed length of 36.
Pattern: ^[a-f0-9]{8}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{12}$
Required: Yes
Request Body
The request accepts the following data in JSON format.
evidenceFolderId (p. 15)
The identifier for the folder that the evidence is stored in.
Type: String
Length Constraints: Fixed length of 36.
Pattern: ^[a-f0-9]{8}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{12}$
Required: Yes evidenceIds (p. 15)
The list of evidence identifiers.
Type: Array of strings
Array Members: Minimum number of 0 items. Maximum number of 50 items.
Length Constraints: Fixed length of 36.
Pattern: ^[a-f0-9]{8}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{12}$
Required: Yes
API Version 2017-07-25 15
Response Syntax
Response Syntax
HTTP/1.1 200
Content-type: application/json {
"errors": [ {
"errorCode": "string", "errorMessage": "string", "evidenceId": "string"
} ],
"evidenceIds": [ "string" ] }
Response Elements
If the action is successful, the service sends back an HTTP 200 response.
The following data is returned in JSON format by the service.
errors (p. 16)
A list of errors that the BatchDisassociateAssessmentReportEvidence API returned.
Type: Array of AssessmentReportEvidenceError (p. 199) objects evidenceIds (p. 16)
The identifier for the evidence.
Type: Array of strings
Array Members: Minimum number of 0 items. Maximum number of 50 items.
Length Constraints: Fixed length of 36.
Pattern: ^[a-f0-9]{8}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{12}$
Errors
For information about the errors that are common to all actions, see Common Errors (p. 265).
AccessDeniedException
Your account isn't registered with AWS Audit Manager. Check the delegated administrator setup on the AWS Audit Manager settings page, and try again.
HTTP Status Code: 403 InternalServerException
An internal service error occurred during the processing of your request. Try again later.
HTTP Status Code: 500 ResourceNotFoundException
The resource that's specified in the request can't be found.
HTTP Status Code: 404 ValidationException
The request has invalid or missing parameters.
HTTP Status Code: 400
See Also
For more information about using this API in one of the language-specific AWS SDKs, see the following:
• AWS Command Line Interface
• AWS SDK for .NET
• AWS SDK for C++
• AWS SDK for Go
• AWS SDK for Java V2
• AWS SDK for JavaScript
• AWS SDK for PHP V3
• AWS SDK for Python
• AWS SDK for Ruby V3
API Version 2017-07-25 17
BatchImportEvidenceToAssessmentControl
BatchImportEvidenceToAssessmentControl
Uploads one or more pieces of evidence to a control in an AWS Audit Manager assessment.
Request Syntax
POST /assessments/assessmentId/controlSets/controlSetId/controls/controlId/evidence HTTP/1.1
Content-type: application/json {
"manualEvidence": [ {
"s3ResourcePath": "string"
} ] }
URI Request Parameters
The request uses the following URI parameters.
assessmentId (p. 18)
The identifier for the assessment.
Length Constraints: Fixed length of 36.
Pattern: ^[a-f0-9]{8}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{12}$
Required: Yes controlId (p. 18)
The identifier for the control.
Length Constraints: Fixed length of 36.
Pattern: ^[a-f0-9]{8}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{12}$
Required: Yes controlSetId (p. 18)
The identifier for the control set.
Length Constraints: Minimum length of 1. Maximum length of 300.
Pattern: ^[\w\W\s\S]*$
Required: Yes
Request Body
The request accepts the following data in JSON format.
manualEvidence (p. 18)
The list of manual evidence objects.
Type: Array of ManualEvidence (p. 249) objects
Array Members: Minimum number of 1 item. Maximum number of 50 items.
Required: Yes
Response Syntax
HTTP/1.1 200
Content-type: application/json { "errors": [
{
"errorCode": "string", "errorMessage": "string", "manualEvidence": {
"s3ResourcePath": "string"
} } ]}
Response Elements
If the action is successful, the service sends back an HTTP 200 response.
The following data is returned in JSON format by the service.
errors (p. 19)
A list of errors that the BatchImportEvidenceToAssessmentControl API returned.
Type: Array of BatchImportEvidenceToAssessmentControlError (p. 207) objects
Errors
For information about the errors that are common to all actions, see Common Errors (p. 265).
AccessDeniedException
Your account isn't registered with AWS Audit Manager. Check the delegated administrator setup on the AWS Audit Manager settings page, and try again.
HTTP Status Code: 403 InternalServerException
An internal service error occurred during the processing of your request. Try again later.
HTTP Status Code: 500 ResourceNotFoundException
The resource that's specified in the request can't be found.
HTTP Status Code: 404
API Version 2017-07-25 19
See Also
ValidationException
The request has invalid or missing parameters.
HTTP Status Code: 400
See Also
For more information about using this API in one of the language-specific AWS SDKs, see the following:
• AWS Command Line Interface
• AWS SDK for .NET
• AWS SDK for C++
• AWS SDK for Go
• AWS SDK for Java V2
• AWS SDK for JavaScript
• AWS SDK for PHP V3
• AWS SDK for Python
• AWS SDK for Ruby V3
CreateAssessment
Creates an assessment in AWS Audit Manager.
Request Syntax
POST /assessments HTTP/1.1 Content-type: application/json { "assessmentReportsDestination": { "destination": "string",
"destinationType": "string"
},
"description": "string", "frameworkId": "string", "name": "string",
"roles": [ {
"roleArn": "string", "roleType": "string"
} ],
"scope": {
"awsAccounts": [ {
"emailAddress": "string", "id": "string",
"name": "string"
} ],
"awsServices": [ {
"serviceName": "string"
} ] },
"tags": {
"string" : "string"
}}
URI Request Parameters
The request does not use any URI parameters.
Request Body
The request accepts the following data in JSON format.
assessmentReportsDestination (p. 21)
The assessment report storage destination for the assessment that's being created.
Type: AssessmentReportsDestination (p. 202) object Required: Yes
API Version 2017-07-25 21
Request Body
description (p. 21)
The optional description of the assessment to be created.
Type: String
Length Constraints: Maximum length of 1000.
Pattern: ^[\w\W\s\S]*$
Required: No frameworkId (p. 21)
The identifier for the framework that the assessment will be created from.
Type: String
Length Constraints: Fixed length of 36.
Pattern: ^[a-f0-9]{8}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{12}$
Required: Yes name (p. 21)
The name of the assessment to be created.
Type: String
Length Constraints: Minimum length of 1. Maximum length of 300.
Pattern: ^[^\\]*$
Required: Yes roles (p. 21)
The list of roles for the assessment.
Type: Array of Role (p. 253) objects Required: Yes
scope (p. 21)
The wrapper that contains the AWS accounts and services that are in scope for the assessment.
Type: Scope (p. 254) object Required: Yes
tags (p. 21)
The tags that are associated with the assessment.
Type: String to string map
Map Entries: Minimum number of 0 items. Maximum number of 50 items.
Key Length Constraints: Minimum length of 1. Maximum length of 128.
Key Pattern: ^(?!aws:)[a-zA-Z+-=._:/]+$
Value Length Constraints: Minimum length of 0. Maximum length of 256.
Value Pattern: .{0,255}
Required: No
Response Syntax
HTTP/1.1 200
Content-type: application/json { "assessment": {
"arn": "string", "awsAccount": {
"emailAddress": "string", "id": "string",
"name": "string"
},
"framework": { "arn": "string", "controlSets": [ {
"controls": [ {
"assessmentReportEvidenceCount": number, "comments": [
{
"authorName": "string", "commentBody": "string", "postedDate": number }
],
"description": "string", "evidenceCount": number,
"evidenceSources": [ "string" ], "id": "string",
"name": "string", "response": "string", "status": "string"
} ],
"delegations": [ {
"assessmentId": "string", "assessmentName": "string", "comment": "string",
"controlSetId": "string", "createdBy": "string", "creationTime": number, "id": "string",
"lastUpdated": number, "roleArn": "string", "roleType": "string", "status": "string"
} ],
"description": "string", "id": "string",
"manualEvidenceCount": number, "roles": [
{
"roleArn": "string",
API Version 2017-07-25 23
Response Syntax
"roleType": "string"
} ],
"status": "string",
"systemEvidenceCount": number }
],
"id": "string", "metadata": {
"complianceType": "string", "description": "string", "logo": "string",
"name": "string"
} },
"metadata": {
"assessmentReportsDestination": { "destination": "string", "destinationType": "string"
},
"complianceType": "string", "creationTime": number, "delegations": [ {
"assessmentId": "string", "assessmentName": "string", "comment": "string",
"controlSetId": "string", "createdBy": "string", "creationTime": number, "id": "string",
"lastUpdated": number, "roleArn": "string", "roleType": "string", "status": "string"
} ],
"description": "string", "id": "string",
"lastUpdated": number, "name": "string", "roles": [ {
"roleArn": "string", "roleType": "string"
} ],
"scope": {
"awsAccounts": [ {
"emailAddress": "string", "id": "string",
"name": "string"
} ],
"awsServices": [ {
"serviceName": "string"
} ] },
"status": "string"
},
"tags": {
"string" : "string"
}
} }
Response Elements
If the action is successful, the service sends back an HTTP 200 response.
The following data is returned in JSON format by the service.
assessment (p. 23)
An entity that defines the scope of audit evidence collected by AWS Audit Manager. An AWS Audit Manager assessment is an implementation of an AWS Audit Manager framework.
Type: Assessment (p. 176) object
Errors
For information about the errors that are common to all actions, see Common Errors (p. 265).
AccessDeniedException
Your account isn't registered with AWS Audit Manager. Check the delegated administrator setup on the AWS Audit Manager settings page, and try again.
HTTP Status Code: 403 InternalServerException
An internal service error occurred during the processing of your request. Try again later.
HTTP Status Code: 500 ResourceNotFoundException
The resource that's specified in the request can't be found.
HTTP Status Code: 404 ValidationException
The request has invalid or missing parameters.
HTTP Status Code: 400
See Also
For more information about using this API in one of the language-specific AWS SDKs, see the following:
• AWS Command Line Interface
• AWS SDK for .NET
• AWS SDK for C++
• AWS SDK for Go
• AWS SDK for Java V2
• AWS SDK for JavaScript
• AWS SDK for PHP V3
API Version 2017-07-25 25
See Also
• AWS SDK for Python
• AWS SDK for Ruby V3
CreateAssessmentFramework
Creates a custom framework in AWS Audit Manager.
Request Syntax
POST /assessmentFrameworks HTTP/1.1 Content-type: application/json { "complianceType": "string", "controlSets": [
{
"controls": [ {
"id": "string"
} ],
"name": "string"
} ],
"description": "string", "name": "string",
"tags": {
"string" : "string"
}}
URI Request Parameters
The request does not use any URI parameters.
Request Body
The request accepts the following data in JSON format.
complianceType (p. 27)
The compliance type that the new custom framework supports, such as CIS or HIPAA.
Type: String
Length Constraints: Maximum length of 100.
Pattern: ^[\w\W\s\S]*$
Required: No controlSets (p. 27)
The control sets that are associated with the framework.
Type: Array of CreateAssessmentFrameworkControlSet (p. 225) objects Array Members: Minimum number of 1 item.
Required: Yes
API Version 2017-07-25 27
Response Syntax
description (p. 27)
An optional description for the new custom framework.
Type: String
Length Constraints: Minimum length of 1. Maximum length of 1000.
Pattern: ^[\w\W\s\S]*$
Required: No name (p. 27)
The name of the new custom framework.
Type: String
Length Constraints: Minimum length of 1. Maximum length of 300.
Pattern: ^[^\\]*$
Required: Yes tags (p. 27)
The tags that are associated with the framework.
Type: String to string map
Map Entries: Minimum number of 0 items. Maximum number of 50 items.
Key Length Constraints: Minimum length of 1. Maximum length of 128.
Key Pattern: ^(?!aws:)[a-zA-Z+-=._:/]+$
Value Length Constraints: Minimum length of 0. Maximum length of 256.
Value Pattern: .{0,255}
Required: No
Response Syntax
HTTP/1.1 200
Content-type: application/json { "framework": {
"arn": "string",
"complianceType": "string", "controlSets": [
{
"controls": [ {
"actionPlanInstructions": "string", "actionPlanTitle": "string",
"arn": "string",
"controlMappingSources": [ {
"sourceDescription": "string", "sourceFrequency": "string",
"sourceId": "string", "sourceKeyword": {
"keywordInputType": "string", "keywordValue": "string"
},
"sourceName": "string", "sourceSetUpOption": "string", "sourceType": "string",
"troubleshootingText": "string"
} ],
"controlSources": "string", "createdAt": number, "createdBy": "string", "description": "string", "id": "string",
"lastUpdatedAt": number, "lastUpdatedBy": "string", "name": "string",
"tags": {
"string" : "string"
},
"testingInformation": "string", "type": "string"
} ],
"id": "string", "name": "string"
} ],
"controlSources": "string", "createdAt": number, "createdBy": "string", "description": "string", "id": "string",
"lastUpdatedAt": number, "lastUpdatedBy": "string", "logo": "string",
"name": "string", "tags": {
"string" : "string"
},
"type": "string"
} }
Response Elements
If the action is successful, the service sends back an HTTP 200 response.
The following data is returned in JSON format by the service.
framework (p. 28)
The name of the new framework that the CreateAssessmentFramework API returned.
Type: Framework (p. 240) object
Errors
For information about the errors that are common to all actions, see Common Errors (p. 265).
API Version 2017-07-25 29
See Also
AccessDeniedException
Your account isn't registered with AWS Audit Manager. Check the delegated administrator setup on the AWS Audit Manager settings page, and try again.
HTTP Status Code: 403 InternalServerException
An internal service error occurred during the processing of your request. Try again later.
HTTP Status Code: 500 ResourceNotFoundException
The resource that's specified in the request can't be found.
HTTP Status Code: 404 ValidationException
The request has invalid or missing parameters.
HTTP Status Code: 400
See Also
For more information about using this API in one of the language-specific AWS SDKs, see the following:
• AWS Command Line Interface
• AWS SDK for .NET
• AWS SDK for C++
• AWS SDK for Go
• AWS SDK for Java V2
• AWS SDK for JavaScript
• AWS SDK for PHP V3
• AWS SDK for Python
• AWS SDK for Ruby V3
CreateAssessmentReport
Creates an assessment report for the specified assessment.
Request Syntax
POST /assessments/assessmentId/reports HTTP/1.1 Content-type: application/json
{ "description": "string", "name": "string"
}
URI Request Parameters
The request uses the following URI parameters.
assessmentId (p. 31)
The identifier for the assessment.
Length Constraints: Fixed length of 36.
Pattern: ^[a-f0-9]{8}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{12}$
Required: Yes
Request Body
The request accepts the following data in JSON format.
description (p. 31)
The description of the assessment report.
Type: String
Length Constraints: Maximum length of 1000.
Pattern: ^[\w\W\s\S]*$
Required: No name (p. 31)
The name of the new assessment report.
Type: String
Length Constraints: Minimum length of 1. Maximum length of 300.
Pattern: ^[a-zA-Z0-9-_\.]+$
Required: Yes
API Version 2017-07-25 31
Response Syntax
Response Syntax
HTTP/1.1 200
Content-type: application/json {
"assessmentReport": { "assessmentId": "string", "assessmentName": "string", "author": "string",
"awsAccountId": "string", "creationTime": number, "description": "string", "id": "string",
"name": "string", "status": "string"
}}
Response Elements
If the action is successful, the service sends back an HTTP 200 response.
The following data is returned in JSON format by the service.
assessmentReport (p. 32)
The new assessment report that the CreateAssessmentReport API returned.
Type: AssessmentReport (p. 197) object
Errors
For information about the errors that are common to all actions, see Common Errors (p. 265).
AccessDeniedException
Your account isn't registered with AWS Audit Manager. Check the delegated administrator setup on the AWS Audit Manager settings page, and try again.
HTTP Status Code: 403 InternalServerException
An internal service error occurred during the processing of your request. Try again later.
HTTP Status Code: 500 ResourceNotFoundException
The resource that's specified in the request can't be found.
HTTP Status Code: 404 ValidationException
The request has invalid or missing parameters.
HTTP Status Code: 400
See Also
For more information about using this API in one of the language-specific AWS SDKs, see the following:
• AWS Command Line Interface
• AWS SDK for .NET
• AWS SDK for C++
• AWS SDK for Go
• AWS SDK for Java V2
• AWS SDK for JavaScript
• AWS SDK for PHP V3
• AWS SDK for Python
• AWS SDK for Ruby V3
API Version 2017-07-25 33
CreateControl
CreateControl
Creates a new custom control in AWS Audit Manager.
Request Syntax
POST /controls HTTP/1.1
Content-type: application/json {
"actionPlanInstructions": "string", "actionPlanTitle": "string",
"controlMappingSources": [ {
"sourceDescription": "string", "sourceFrequency": "string", "sourceKeyword": {
"keywordInputType": "string", "keywordValue": "string"
},
"sourceName": "string", "sourceSetUpOption": "string", "sourceType": "string",
"troubleshootingText": "string"
} ],
"description": "string", "name": "string",
"tags": {
"string" : "string"
},
"testingInformation": "string"
}
URI Request Parameters
The request does not use any URI parameters.
Request Body
The request accepts the following data in JSON format.
actionPlanInstructions (p. 34)
The recommended actions to carry out if the control isn't fulfilled.
Type: String
Length Constraints: Maximum length of 1000.
Pattern: ^[\w\W\s\S]*$
Required: No actionPlanTitle (p. 34)
The title of the action plan for remediating the control.
Type: String
Length Constraints: Maximum length of 300.
Pattern: ^[\w\W\s\S]*$
Required: No
controlMappingSources (p. 34)
The data mapping sources for the control.
Type: Array of CreateControlMappingSource (p. 226) objects Array Members: Minimum number of 1 item.
Required: Yes description (p. 34)
The description of the control.
Type: String
Length Constraints: Maximum length of 1000.
Pattern: ^[\w\W\s\S]*$
Required: No name (p. 34)
The name of the control.
Type: String
Length Constraints: Minimum length of 1. Maximum length of 300.
Pattern: ^[^\\]*$
Required: Yes tags (p. 34)
The tags that are associated with the control.
Type: String to string map
Map Entries: Minimum number of 0 items. Maximum number of 50 items.
Key Length Constraints: Minimum length of 1. Maximum length of 128.
Key Pattern: ^(?!aws:)[a-zA-Z+-=._:/]+$
Value Length Constraints: Minimum length of 0. Maximum length of 256.
Value Pattern: .{0,255}
Required: No
testingInformation (p. 34)
The steps to follow to determine if the control is satisfied.
Type: String
Length Constraints: Maximum length of 1000.
Pattern: ^[\w\W\s\S]*$
API Version 2017-07-25 35
Response Syntax
Required: No
Response Syntax
HTTP/1.1 200
Content-type: application/json { "control": {
"actionPlanInstructions": "string", "actionPlanTitle": "string", "arn": "string",
"controlMappingSources": [ {
"sourceDescription": "string", "sourceFrequency": "string", "sourceId": "string", "sourceKeyword": {
"keywordInputType": "string", "keywordValue": "string"
},
"sourceName": "string",
"sourceSetUpOption": "string", "sourceType": "string",
"troubleshootingText": "string"
} ],
"controlSources": "string", "createdAt": number, "createdBy": "string", "description": "string", "id": "string",
"lastUpdatedAt": number, "lastUpdatedBy": "string", "name": "string",
"tags": {
"string" : "string"
},
"testingInformation": "string", "type": "string"
}}
Response Elements
If the action is successful, the service sends back an HTTP 200 response.
The following data is returned in JSON format by the service.
control (p. 36)
The new control that the CreateControl API returned.
Type: Control (p. 210) object
Errors
For information about the errors that are common to all actions, see Common Errors (p. 265).
AccessDeniedException
Your account isn't registered with AWS Audit Manager. Check the delegated administrator setup on the AWS Audit Manager settings page, and try again.
HTTP Status Code: 403 InternalServerException
An internal service error occurred during the processing of your request. Try again later.
HTTP Status Code: 500 ResourceNotFoundException
The resource that's specified in the request can't be found.
HTTP Status Code: 404 ValidationException
The request has invalid or missing parameters.
HTTP Status Code: 400
See Also
For more information about using this API in one of the language-specific AWS SDKs, see the following:
• AWS Command Line Interface
• AWS SDK for .NET
• AWS SDK for C++
• AWS SDK for Go
• AWS SDK for Java V2
• AWS SDK for JavaScript
• AWS SDK for PHP V3
• AWS SDK for Python
• AWS SDK for Ruby V3
API Version 2017-07-25 37
DeleteAssessment
DeleteAssessment
Deletes an assessment in AWS Audit Manager.
Request Syntax
DELETE /assessments/assessmentId HTTP/1.1
URI Request Parameters
The request uses the following URI parameters.
assessmentId (p. 38)
The identifier for the assessment.
Length Constraints: Fixed length of 36.
Pattern: ^[a-f0-9]{8}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{12}$
Required: Yes
Request Body
The request does not have a request body.
Response Syntax
HTTP/1.1 200
Response Elements
If the action is successful, the service sends back an HTTP 200 response with an empty HTTP body.
Errors
For information about the errors that are common to all actions, see Common Errors (p. 265).
AccessDeniedException
Your account isn't registered with AWS Audit Manager. Check the delegated administrator setup on the AWS Audit Manager settings page, and try again.
HTTP Status Code: 403 InternalServerException
An internal service error occurred during the processing of your request. Try again later.
HTTP Status Code: 500 ResourceNotFoundException
The resource that's specified in the request can't be found.
HTTP Status Code: 404 ValidationException
The request has invalid or missing parameters.
HTTP Status Code: 400
See Also
For more information about using this API in one of the language-specific AWS SDKs, see the following:
• AWS Command Line Interface
• AWS SDK for .NET
• AWS SDK for C++
• AWS SDK for Go
• AWS SDK for Java V2
• AWS SDK for JavaScript
• AWS SDK for PHP V3
• AWS SDK for Python
• AWS SDK for Ruby V3
API Version 2017-07-25 39
DeleteAssessmentFramework
DeleteAssessmentFramework
Deletes a custom framework in AWS Audit Manager.
Request Syntax
DELETE /assessmentFrameworks/frameworkId HTTP/1.1
URI Request Parameters
The request uses the following URI parameters.
frameworkId (p. 40)
The identifier for the custom framework.
Length Constraints: Fixed length of 36.
Pattern: ^[a-f0-9]{8}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{12}$
Required: Yes
Request Body
The request does not have a request body.
Response Syntax
HTTP/1.1 200
Response Elements
If the action is successful, the service sends back an HTTP 200 response with an empty HTTP body.
Errors
For information about the errors that are common to all actions, see Common Errors (p. 265).
AccessDeniedException
Your account isn't registered with AWS Audit Manager. Check the delegated administrator setup on the AWS Audit Manager settings page, and try again.
HTTP Status Code: 403 InternalServerException
An internal service error occurred during the processing of your request. Try again later.
HTTP Status Code: 500 ResourceNotFoundException
The resource that's specified in the request can't be found.
