AWS Fundamentals Logo
AWS Fundamentals
AWS::GuardDuty::Filter

GuardDuty Filter

Resource Type definition for AWS::GuardDuty::Filter

Properties

7 configurable properties. 3 required. Click a row to see details.

Filter:
PropertyTypeFlags
DetectorId
string
RequiredCreate-only
FindingCriteria
FindingCriteria
Required
Name
string
RequiredCreate-only
Action
string
Description
string
Rank
integer
Tags
Array<TagItem>

Sample CloudFormation Template

A minimal template with required properties and common optional ones.

template.yaml
AWSTemplateFormatVersion: "2010-09-09"
Description: Sample template for AWS::GuardDuty::Filter

Resources:
  MyResource:
    Type: AWS::GuardDuty::Filter
    Properties:
      DetectorId: "my-detectorid"
      Name: "my-name"
      FindingCriteria: "value"
      Tags:
        - Key: Environment
          Value: Production
      Description: !Ref "AWS::StackName"

Required IAM Permissions

Permissions CloudFormation needs in your IAM role to manage this resource.

create

guardduty:CreateFilterguardduty:GetFilterguardduty:TagResource

read

guardduty:GetFilterguardduty:ListTagsForResource

delete

guardduty:ListDetectorsguardduty:ListFiltersguardduty:GetFilterguardduty:DeleteFilter

update

guardduty:UpdateFilterguardduty:GetFilterguardduty:ListFiltersguardduty:TagResourceguardduty:UntagResource

list

guardduty:ListFilters

Learn AWS the Practical Way

Our bi-weekly newsletter teaches hands-on AWS fundamentals. No certification fluff - just practical knowledge.

Subscribe to Newsletter

Quick Facts

ServiceGuardDuty
Properties7
Required3
TaggingSupported
Primary IDDetectorId

Supported Operations

CreateReadDeleteUpdateList

Immutable After Creation

These properties cannot be changed after the resource is created. Updating them triggers a replacement.

DetectorIdName

Related Resources

External Links