Table Of Contents

  1. Docs
  2. Available services
  3. GuardDuty
  4. describe_organization_configuration

describe_organization_configuration

describe_organization_configuration(**kwargs)

Returns information about the account selected as the delegated administrator for GuardDuty.

There might be regional differences because some data sources might not be available in all the Amazon Web Services Regions where GuardDuty is presently supported. For more information, see Regions and endpoints.

See also: AWS API Documentation

Request Syntax

response = client.describe_organization_configuration(
    DetectorId='string'
)
Parameters
DetectorId (string) --

[REQUIRED]

The ID of the detector to retrieve information about the delegated administrator from.

Return type
dict
Returns
Response Syntax
{
    'AutoEnable': True|False,
    'MemberAccountLimitReached': True|False,
    'DataSources': {
        'S3Logs': {
            'AutoEnable': True|False
        },
        'Kubernetes': {
            'AuditLogs': {
                'AutoEnable': True|False
            }
        },
        'MalwareProtection': {
            'ScanEc2InstanceWithFindings': {
                'EbsVolumes': {
                    'AutoEnable': True|False
                }
            }
        }
    }
}

Response Structure

  • (dict) --
    • AutoEnable (boolean) --

      Indicates whether GuardDuty is automatically enabled for accounts added to the organization.

    • MemberAccountLimitReached (boolean) --

      Indicates whether the maximum number of allowed member accounts are already associated with the delegated administrator account for your organization.

    • DataSources (dict) --

      Describes which data sources are enabled automatically for member accounts.

      • S3Logs (dict) --

        Describes whether S3 data event logs are enabled as a data source.

        • AutoEnable (boolean) --

          A value that describes whether S3 data event logs are automatically enabled for new members of the organization.

      • Kubernetes (dict) --

        Describes the configuration of Kubernetes data sources.

        • AuditLogs (dict) --

          The current configuration of Kubernetes audit logs as a data source for the organization.

          • AutoEnable (boolean) --

            Whether Kubernetes audit logs data source should be auto-enabled for new members joining the organization.

      • MalwareProtection (dict) --

        Describes the configuration of Malware Protection data source for an organization.

        • ScanEc2InstanceWithFindings (dict) --

          Describes the configuration for scanning EC2 instances with findings for an organization.

          • EbsVolumes (dict) --

            Describes the configuration for scanning EBS volumes for an organization.

            • AutoEnable (boolean) --

              An object that contains the status of whether scanning EBS volumes should be auto-enabled for new members joining the organization.

Exceptions

  • GuardDuty.Client.exceptions.BadRequestException
  • GuardDuty.Client.exceptions.InternalServerErrorException
describe_malware_scans
describe_publishing_destination
Privacy | Site Terms | Cookie preferences | © Copyright 2023, Amazon Web Services, Inc. Created using Sphinx.