Gets information about a mitigation action.
Requires permission to access the DescribeMitigationAction action.
See also: AWS API Documentation
See ‘aws help’ for descriptions of global parameters.
describe-mitigation-action
--action-name <value>
[--cli-input-json | --cli-input-yaml]
[--generate-cli-skeleton <value>]
--action-name
(string)
The friendly name that uniquely identifies the mitigation action.
--cli-input-json
| --cli-input-yaml
(string)
Reads arguments from the JSON string provided. The JSON string follows the format provided by --generate-cli-skeleton
. If other arguments are provided on the command line, those values will override the JSON-provided values. It is not possible to pass arbitrary binary values using a JSON-provided value as the string will be taken literally. This may not be specified along with --cli-input-yaml
.
--generate-cli-skeleton
(string)
Prints a JSON skeleton to standard output without sending an API request. If provided with no value or the value input
, prints a sample input JSON that can be used as an argument for --cli-input-json
. Similarly, if provided yaml-input
it will print a sample input YAML that can be used with --cli-input-yaml
. If provided with the value output
, it validates the command inputs and returns a sample output JSON for that command.
See ‘aws help’ for descriptions of global parameters.
To view the details for a defined mitigation action
The following describe-mitigation-action
example displays details for the specified mitigation action.
aws iot describe-mitigation-action \
--action-name AddThingsToQuarantineGroupAction
Output:
{
"actionName": "AddThingsToQuarantineGroupAction",
"actionType": "ADD_THINGS_TO_THING_GROUP",
"actionArn": "arn:aws:iot:us-west-2:123456789012:mitigationaction/AddThingsToQuarantineGroupAction",
"actionId": "2fd2726d-98e1-4abf-b10f-09465ccd6bfa",
"roleArn": "arn:aws:iam::123456789012:role/service-role/MoveThingsToQuarantineGroupRole",
"actionParams": {
"addThingsToThingGroupParams": {
"thingGroupNames": [
"QuarantineGroup1"
],
"overrideDynamicGroups": true
}
},
"creationDate": "2019-12-10T11:09:35.999000-08:00",
"lastModifiedDate": "2019-12-10T11:09:35.999000-08:00"
}
For more information, see DescribeMitigationAction (Mitigation Action Commands) in the AWS IoT Developer Guide.
actionName -> (string)
The friendly name that uniquely identifies the mitigation action.
actionType -> (string)
The type of mitigation action.
actionArn -> (string)
The ARN that identifies this migration action.
actionId -> (string)
A unique identifier for this action.
roleArn -> (string)
The ARN of the IAM role used to apply this action.
actionParams -> (structure)
Parameters that control how the mitigation action is applied, specific to the type of mitigation action.
updateDeviceCertificateParams -> (structure)
Parameters to define a mitigation action that changes the state of the device certificate to inactive.
action -> (string)
The action that you want to apply to the device certificate. The only supported value is
DEACTIVATE
.updateCACertificateParams -> (structure)
Parameters to define a mitigation action that changes the state of the CA certificate to inactive.
action -> (string)
The action that you want to apply to the CA certificate. The only supported value is
DEACTIVATE
.addThingsToThingGroupParams -> (structure)
Parameters to define a mitigation action that moves devices associated with a certificate to one or more specified thing groups, typically for quarantine.
thingGroupNames -> (list)
The list of groups to which you want to add the things that triggered the mitigation action. You can add a thing to a maximum of 10 groups, but you can’t add a thing to more than one group in the same hierarchy.
(string)
overrideDynamicGroups -> (boolean)
Specifies if this mitigation action can move the things that triggered the mitigation action even if they are part of one or more dynamic thing groups.
replaceDefaultPolicyVersionParams -> (structure)
Parameters to define a mitigation action that adds a blank policy to restrict permissions.
templateName -> (string)
The name of the template to be applied. The only supported value is
BLANK_POLICY
.enableIoTLoggingParams -> (structure)
Parameters to define a mitigation action that enables Amazon Web Services IoT Core logging at a specified level of detail.
roleArnForLogging -> (string)
The Amazon Resource Name (ARN) of the IAM role used for logging.
logLevel -> (string)
Specifies the type of information to be logged.
publishFindingToSnsParams -> (structure)
Parameters to define a mitigation action that publishes findings to Amazon Simple Notification Service (Amazon SNS. You can implement your own custom actions in response to the Amazon SNS messages.
topicArn -> (string)
The ARN of the topic to which you want to publish the findings.
creationDate -> (timestamp)
The date and time when the mitigation action was added to your Amazon Web Services accounts.
lastModifiedDate -> (timestamp)
The date and time when the mitigation action was last changed.