delete_datalake_auto_enable

SecurityLake.Client.delete_datalake_auto_enable(**kwargs)
DeleteDatalakeAutoEnable removes automatic enablement of configuration settings for new member accounts (but keeps settings for the delegated administrator) from Amazon Security Lake. You must run this API using credentials of the delegated administrator. When you run this API, new member accounts that are added after the organization enables Security Lake won't contribute to the data lake.

See also: AWS API Documentation

Request Syntax

response = client.delete_datalake_auto_enable(
    removeFromConfigurationForNewAccounts=[
        {
            'region': 'us-east-1'|'us-west-2'|'eu-central-1'|'us-east-2'|'eu-west-1'|'ap-northeast-1'|'ap-southeast-2',
            'sources': [
                'ROUTE53'|'VPC_FLOW'|'CLOUD_TRAIL'|'SH_FINDINGS',
            ]
        },
    ]
)
Parameters
removeFromConfigurationForNewAccounts (list) --

[REQUIRED]

Remove automatic enablement of configuration settings for new member accounts in Security Lake.

  • (dict) --

    Automatically enable new organization accounts as member accounts from an Amazon Security Lake administrator account.

    • region (string) -- [REQUIRED]

      The Amazon Web Services Regions where Security Lake is automatically enabled.

    • sources (list) -- [REQUIRED]

      The Amazon Web Services sources that are automatically enabled in Security Lake.

      • (string) --
Return type
dict
Returns
Response Syntax
{}

Response Structure

  • (dict) --

Exceptions

  • SecurityLake.Client.exceptions.InternalServerException
  • SecurityLake.Client.exceptions.ValidationException
  • SecurityLake.Client.exceptions.AccessDeniedException
  • SecurityLake.Client.exceptions.AccountNotFoundException