CloudControl(mapping=None, *, ignore_unknown_fields=False, **kwargs)A cloud control is a set of rules and associated metadata that you can use to define your organization's security or compliance intent.
Attributes |
|
|---|---|
| Name | Description |
name |
str
Required. Identifier. The name of the cloud control, in the format organizations/{organization}/locations/{location}/cloudControls/{cloud_control_id}.
The only supported location is global.
|
major_revision_id |
int
Output only. The major version of the cloud control, which is incremented in ascending order. |
description |
str
Optional. A description of the cloud control. The maximum length is 2000 characters. |
display_name |
str
Optional. The friendly name of the cloud control. The maximum length is 200 characters. |
supported_enforcement_modes |
MutableSequence[google.cloud.cloudsecuritycompliance_v1.types.EnforcementMode]
Output only. The supported enforcement modes for the cloud control. |
parameter_spec |
MutableSequence[google.cloud.cloudsecuritycompliance_v1.types.ParameterSpec]
Optional. The parameter specifications for the cloud control. |
rules |
MutableSequence[google.cloud.cloudsecuritycompliance_v1.types.Rule]
Optional. The rules that you can enforce to meet your security or compliance intent. |
severity |
google.cloud.cloudsecuritycompliance_v1.types.Severity
Optional. The severity of the findings that are generated by the cloud control. |
finding_category |
str
Optional. The finding category for the cloud control findings. The maximum length is 255 characters. |
supported_cloud_providers |
MutableSequence[google.cloud.cloudsecuritycompliance_v1.types.CloudProvider]
Optional. The supported cloud providers. |
related_frameworks |
MutableSequence[str]
Output only. The frameworks that include this cloud control. |
remediation_steps |
str
Optional. The remediation steps for the cloud control findings. The maximum length is 400 characters. |
categories |
MutableSequence[google.cloud.cloudsecuritycompliance_v1.types.CloudControlCategory]
Optional. The categories for the cloud control. |
create_time |
google.protobuf.timestamp_pb2.Timestamp
Output only. The time that the cloud control was last updated. create_time is used because a new cloud control
is created whenever an existing cloud control is updated.
|
supported_target_resource_types |
MutableSequence[google.cloud.cloudsecuritycompliance_v1.types.TargetResourceType]
Optional. The target resource types that are supported by the cloud control. |
Classes
Type
Type(value)The type of cloud control.