L1 ConstructAWS::OpenSearchServerless::SecurityPolicy

CfnSecurityPolicy

Creates an encryption or network policy to be used by one or more OpenSearch Serverless collections. Network policies specify access to a collection and its OpenSearch Dashboards endpoint from public networks or specific VPC endpoints. For more information, see [Network access for Amazon OpenSearch Serverless](https://docs.aws.amazon.com/opensearch-service/latest/developerguide/serverless-network.html) . Encryption policies specify a KMS encryption key to assign to particular collections. For more information, see [Encryption at rest for Amazon OpenSearch Serverless](https://docs.aws.amazon.com/opensearch-service/latest/developerguide/serverless-encryption.html) .

Import

import { CfnSecurityPolicy } from 'aws-cdk-lib/aws-opensearchserverless';

Or use the module namespace:

import * as opensearchserverless from 'aws-cdk-lib/aws-opensearchserverless';
// opensearchserverless.CfnSecurityPolicy

Properties

Configuration passed to the constructor as CfnSecurityPolicyProps.

nameRequired

string

The name of the policy.

policyRequired

string

The JSON policy document without any whitespaces.

typeRequired

string

The type of security policy. Can be either `encryption` or `network` .

descriptionOptional

string

The description of the security policy.

CloudFormation Resource

This L1 construct maps directly to the following CloudFormation resource type.

AWS::OpenSearchServerless::SecurityPolicyView in CloudFormation Explorer

Learn AWS the Practical Way

Our bi-weekly newsletter teaches hands-on AWS fundamentals. No certification fluff - just practical knowledge.

Subscribe to Newsletter

Quick Facts

LevelL1 (CloudFormation)

Moduleaws-opensearchserverless

CFN TypeAWS::OpenSearchServerless::SecurityPolicy

Properties4

Related Constructs

Explore This Service

External Links

CDK API Documentation