SecurityLake / Client / create_data_lake_organization_configuration



Automatically enables Amazon Security Lake for new member accounts in your organization. Security Lake is not automatically enabled for any existing member accounts in your organization.

See also: AWS API Documentation

Request Syntax

response = client.create_data_lake_organization_configuration(
            'region': 'string',
            'sources': [
                    'sourceVersion': 'string'

autoEnableNewAccount (list) –

Enable Security Lake with the specified configuration settings, to begin collecting security data for new accounts in your organization.

  • (dict) –

    Automatically enable new organization accounts as member accounts from an Amazon Security Lake administrator account.

    • region (string) – [REQUIRED]

      The Amazon Web Services Regions where Security Lake is automatically enabled.

    • sources (list) – [REQUIRED]

      The Amazon Web Services sources that are automatically enabled in Security Lake.

      • (dict) –

        Amazon Security Lake can collect logs and events from natively-supported Amazon Web Services services.

        • sourceName (string) –

          The name for a Amazon Web Services source. This must be a Regionally unique value.

        • sourceVersion (string) –

          The version for a Amazon Web Services source. This must be a Regionally unique value.

Return type:



Response Syntax


Response Structure

  • (dict) –


  • SecurityLake.Client.exceptions.BadRequestException

  • SecurityLake.Client.exceptions.ResourceNotFoundException

  • SecurityLake.Client.exceptions.InternalServerException

  • SecurityLake.Client.exceptions.AccessDeniedException

  • SecurityLake.Client.exceptions.ConflictException

  • SecurityLake.Client.exceptions.ThrottlingException