Amazon Detective (detective)

2021-12-21

7 new actions | 3 updated actions | 2 removed actions

Additions

    Actions
  • DescribeOrganizationConfiguration
    • Description:  Grants permission to view the current configuration related to the Amazon Detective integration with AWS Organizations
    • Access:  Read
    • Resources: 

      Name: Graph

      Required: Yes

    • Dependents: 

      organizations:DescribeOrganization
  • EnableOrganizationAdminAccount
    • Description:  Grants permission to designate the Amazon Detective delegated administrator account for an organization
    • Access:  Write
    • Dependents: 

      iam:CreateServiceLinkedRole

      organizations:DescribeOrganization

      organizations:EnableAWSServiceAccess

      organizations:RegisterDelegatedAdministrator
  • GetPricingInformation
    • Description:  Grants permission to retrieve information about Amazon Detective's pricing
    • Access:  Read
  • GetUsageInformation
    • Description:  Grants permission to list usage information of a behavior graph
    • Access:  Read
    • Resources: 

      Name: Graph

      Required: Yes

  • ListOrganizationAdminAccounts
    • Description:  Grants permission to view the current Amazon Detective delegated administrator account for an organization
    • Access:  List
    • Resources: 

      Name: Graph

      Required: Yes

    • Dependents: 

      organizations:DescribeOrganization
  • SearchGraph
    • Description:  Grants permission to search the data stored in a behavior graph
    • Access:  Read
    • Resources: 

      Name: Graph

      Required: Yes

  • UpdateOrganizationConfiguration
    • Description:  Grants permission to update the current configuration related to the Amazon Detective integration with AWS Organizations
    • Access:  Write
    • Resources: 

      Name: Graph

      Required: Yes

    • Dependents: 

      organizations:DescribeOrganization

Updates

    Actions
  • DisableOrganizationAdminAccount
      Description
    • Old: Grants permission to retrieve a behavior graph's eligibility for a free trial period
      New: Grants permission to remove the Amazon Detective delegated administrator account for an organization
      Access
    • Read  ⟶  Write
      Dependents

    • New_value: ['organizations:DescribeOrganization']

      Old_value: []

  • GetFreeTrialEligibility
      Description
    • Old: Grants permission to retrieve information about Amazon Detective's pricing
      New: Grants permission to retrieve a behavior graph's eligibility for a free trial period
      Resources

    • New_value: [{'name': 'Graph', 'is_required': True}]

      Old_value: []

  • GetGraphIngestState
      Description
    • Old: Grants permission to list usage information of a behavior graph
      New: Grants permission to retrieve the data ingestion state of a behavior graph

Deletions

    Actions
  • GetGraphIngestState [permission only]
    • Description:  Grants permission to retrieve the data ingestion state of a behavior graph
    • Access:  Read
    • Resources: 

      Name: Graph

      Required: Yes

  • SearchGraph [permission only]
    • Description:  Grants permission to search the data stored in a behavior graph
    • Access:  Read
    • Resources: 

      Name: Graph

      Required: Yes