Alchemy

Appearance

OrganizationConfiguration

The OrganizationConfiguration resource lets you manage the configuration settings for AWS SecurityHub across multiple accounts within an organization. For more details, visit the AWS SecurityHub OrganizationConfigurations documentation.

Minimal Example

Create a basic OrganizationConfiguration with required properties and a common optional property.

ts
import AWS from "alchemy/aws/control";

const basicOrgConfig = await AWS.SecurityHub.OrganizationConfiguration("basicOrgConfig", {
  AutoEnable: true,
  ConfigurationType: "DEFAULT"
});

Advanced Configuration

Configure an OrganizationConfiguration with additional settings for auto-enabling standards.

ts
const advancedOrgConfig = await AWS.SecurityHub.OrganizationConfiguration("advancedOrgConfig", {
  AutoEnable: true,
  AutoEnableStandards: "ENABLE_ALL"
});

Adopting Existing Resources

If you want to adopt existing OrganizationConfigurations instead of failing when the resource already exists, you can set the adopt property to true.

ts
const adoptExistingOrgConfig = await AWS.SecurityHub.OrganizationConfiguration("adoptOrgConfig", {
  AutoEnable: false,
  ConfigurationType: "CUSTOM",
  adopt: true
});