AWS::SecurityHub::FindingAggregator

SecurityHub FindingAggregator

The AWS::SecurityHub::FindingAggregator resource enables cross-Region aggregation. When cross-Region aggregation is enabled, you can aggregate findings, finding updates, insights, control compliance statuses, and security scores from one or more linked Regions to a single aggregation Region. You can then view and manage all of this data from the aggregation Region. For more details about cross-Region aggregation, see [Cross-Region aggregation](https://docs.aws.amazon.com/securityhub/lates...

Properties

2 configurable properties. 1 required. Click a row to see details.

Filter:

Property	Type	Flags
`RegionLinkingMode`	`string`	Required
`Regions`	`Array<string>`

Return Values

Values returned after the resource is created. Access these with Fn::GetAtt.

Attribute	Type	Description
`FindingAggregationRegion`	`string`	-
`FindingAggregatorArn`	`string`	-

Sample CloudFormation Template

A minimal template with required properties and common optional ones.

template.yaml

AWSTemplateFormatVersion: "2010-09-09"
Description: Sample template for AWS::SecurityHub::FindingAggregator

Resources:
  MyResource:
    Type: AWS::SecurityHub::FindingAggregator
    Properties:
      RegionLinkingMode: "ALL_REGIONS"

Required IAM Permissions

Permissions CloudFormation needs in your IAM role to manage this resource.

create

securityhub:CreateFindingAggregator

read

securityhub:GetFindingAggregator

update

securityhub:UpdateFindingAggregator

delete

securityhub:DeleteFindingAggregator

list

securityhub:ListFindingAggregators

Learn AWS the Practical Way

Our bi-weekly newsletter teaches hands-on AWS fundamentals. No certification fluff - just practical knowledge.

Subscribe to Newsletter

Quick Facts

ServiceSecurityHub

Properties4

Required1

TaggingNot supported

Primary IDFindingAggregatorArn

Supported Operations

CreateReadUpdateDeleteList

Related Resources

External Links

AWS Documentation