AWS::SecurityLake::DataLake

SecurityLake DataLake

Resource Type definition for AWS::SecurityLake::DataLake

Properties

5 configurable properties. Click a row to see details.

Filter:

Property	Type	Flags
`EncryptionConfiguration`	`EncryptionConfiguration`
`LifecycleConfiguration`	`LifecycleConfiguration`
`MetaStoreManagerRoleArn`	`string`	Write-only
`ReplicationConfiguration`	`ReplicationConfiguration`
`Tags`	`Array<Tag>`

Return Values

Values returned after the resource is created. Access these with Fn::GetAtt.

Attribute	Type	Description
`Arn`	`string`	The Amazon Resource Name (ARN) created by you to provide to the subscriber.
`S3BucketArn`	`string`	The ARN for the Amazon Security Lake Amazon S3 bucket.

Sample CloudFormation Template

A minimal template with required properties and common optional ones.

template.yaml

AWSTemplateFormatVersion: "2010-09-09"
Description: Sample template for AWS::SecurityLake::DataLake

Resources:
  MyResource:
    Type: AWS::SecurityLake::DataLake
    Properties:
      Tags:
        - Key: Environment
          Value: Production

Required IAM Permissions

Permissions CloudFormation needs in your IAM role to manage this resource.

create

events:*iam:CreateServiceLinkedRoleiam:GetRoleiam:ListAttachedRolePoliciesiam:PutRolePolicyiam:PassRoleglue:*organizations:*

update

events:*iam:CreateServiceLinkedRoleiam:DeleteRolePolicyiam:GetRoleiam:PassRoleiam:PutRolePolicykms:DescribeKeykms:CreateGrant

delete

organizations:*securitylake:DeleteDataLakesecuritylake:List*

read

securitylake:List*

list

securitylake:List*

Learn AWS the Practical Way

Our bi-weekly newsletter teaches hands-on AWS fundamentals. No certification fluff - just practical knowledge.

Subscribe to Newsletter

Quick Facts

ServiceSecurityLake

Properties7

Required0

TaggingSupported

Primary IDArn

Supported Operations

CreateUpdateDeleteReadList

Related Resources

External Links

AWS Documentation