pulumi-aws-kotlin/com.pulumi.aws.ssm.kotlin/QuicksetupConfigurationManager

QuicksetupConfigurationManager

class QuicksetupConfigurationManager : KotlinCustomResource

Resource for managing an AWS SSM Quick Setup Configuration Manager.

Example Usage

Patch Policy Configuration Type

import * as pulumi from "@pulumi/pulumi";
import * as aws from "@pulumi/aws";
const current = aws.getCallerIdentity({});
const currentGetPartition = aws.getPartition({});
const currentGetRegion = aws.getRegion({});
const example = aws.ssm.getPatchBaselines({
    defaultBaselines: true,
});
// transform the output of the aws_ssm_patch_baselines data source
// into the format expected by the SelectedPatchBaselines parameter
const selectedPatchBaselines = JSON.stringify(example.then(example => .reduce((__obj, baseline) => ({ ...__obj, [baseline&#46;operatingSystem]: {
    value: baseline.baselineId,
    label: baseline.baselineName,
    description: baseline.baselineDescription,
    disabled: !baseline.defaultBaseline,
} }))));
const exampleQuicksetupConfigurationManager = new aws.ssm.QuicksetupConfigurationManager("example", {
    name: "example",
    configurationDefinition: {
        localDeploymentAdministrationRoleArn: Promise.all([currentGetPartition, current])&#46;then(([currentGetPartition, current]) => `arn:${currentGetPartition.partition}:iam::${current.accountId}:role/AWS-QuickSetup-PatchPolicy-LocalAdministrationRole`),
        localDeploymentExecutionRoleName: "AWS-QuickSetup-PatchPolicy-LocalExecutionRole",
        type: "AWSQuickSetupType-PatchPolicy",
        parameters: {
            ConfigurationOptionsPatchOperation: "Scan",
            ConfigurationOptionsScanValue: "cron(0 1 * * ? *)",
            ConfigurationOptionsScanNextInterval: "false",
            PatchBaselineRegion: currentGetRegion.then(currentGetRegion => currentGetRegion.name),
            PatchBaselineUseDefault: "default",
            PatchPolicyName: "example",
            SelectedPatchBaselines: selectedPatchBaselines,
            OutputLogEnableS3: "false",
            RateControlConcurrency: "10%",
            RateControlErrorThreshold: "2%",
            IsPolicyAttachAllowed: "false",
            TargetAccounts: current.then(current => current.accountId),
            TargetRegions: currentGetRegion.then(currentGetRegion => currentGetRegion.name),
            TargetType: "*",
        },
    },
});

import pulumi
import json
import pulumi_aws as aws
current = aws.get_caller_identity()
current_get_partition = aws.get_partition()
current_get_region = aws.get_region()
example = aws.ssm.get_patch_baselines(default_baselines=True)
# transform the output of the aws_ssm_patch_baselines data source
# into the format expected by the SelectedPatchBaselines parameter
selected_patch_baselines = json.dumps({baseline.operating_system: {
    "value": baseline.baseline_id,
    "label": baseline.baseline_name,
    "description": baseline.baseline_description,
    "disabled": not baseline.default_baseline,
} for baseline in example.baseline_identities})
example_quicksetup_configuration_manager = aws.ssm.QuicksetupConfigurationManager("example",
    name="example",
    configuration_definition={
        "local_deployment_administration_role_arn": f"arn:{current_get_partition.partition}:iam::{current.account_id}:role/AWS-QuickSetup-PatchPolicy-LocalAdministrationRole",
        "local_deployment_execution_role_name": "AWS-QuickSetup-PatchPolicy-LocalExecutionRole",
        "type": "AWSQuickSetupType-PatchPolicy",
        "parameters": {
            "ConfigurationOptionsPatchOperation": "Scan",
            "ConfigurationOptionsScanValue": "cron(0 1 * * ? *)",
            "ConfigurationOptionsScanNextInterval": "false",
            "PatchBaselineRegion": current_get_region.name,
            "PatchBaselineUseDefault": "default",
            "PatchPolicyName": "example",
            "SelectedPatchBaselines": selected_patch_baselines,
            "OutputLogEnableS3": "false",
            "RateControlConcurrency": "10%",
            "RateControlErrorThreshold": "2%",
            "IsPolicyAttachAllowed": "false",
            "TargetAccounts": current.account_id,
            "TargetRegions": current_get_region.name,
            "TargetType": "*",
        },
    })

using System.Collections.Generic;
using System.Linq;
using System.Text.Json;
using Pulumi;
using Aws = Pulumi.Aws;
return await Deployment.RunAsync(() =>
{
    var current = Aws.GetCallerIdentity.Invoke();
    var currentGetPartition = Aws.GetPartition.Invoke();
    var currentGetRegion = Aws.GetRegion.Invoke();
    var example = Aws.Ssm.GetPatchBaselines.Invoke(new()
    {
        DefaultBaselines = true,
    });
    // transform the output of the aws_ssm_patch_baselines data source
    // into the format expected by the SelectedPatchBaselines parameter
    var selectedPatchBaselines = JsonSerializer.Serialize(.ToDictionary(item => {
        var baseline = item.Value;
        return baseline.OperatingSystem;
    }, item => {
        var baseline = item.Value;
        return
        {
            { "value", baseline.BaselineId },
            { "label", baseline.BaselineName },
            { "description", baseline.BaselineDescription },
            { "disabled", !baseline.DefaultBaseline },
        };
    }));
    var exampleQuicksetupConfigurationManager = new Aws.Ssm.QuicksetupConfigurationManager("example", new()
    {
        Name = "example",
        ConfigurationDefinition = new Aws.Ssm.Inputs.QuicksetupConfigurationManagerConfigurationDefinitionArgs
        {
            LocalDeploymentAdministrationRoleArn = Output.Tuple(currentGetPartition, current).Apply(values =>
            {
                var currentGetPartition = values.Item1;
                var current = values.Item2;
                return $"arn:{currentGetPartition.Apply(getPartitionResult => getPartitionResult.Partition)}:iam::{current.Apply(getCallerIdentityResult => getCallerIdentityResult.AccountId)}:role/AWS-QuickSetup-PatchPolicy-LocalAdministrationRole";
            }),
            LocalDeploymentExecutionRoleName = "AWS-QuickSetup-PatchPolicy-LocalExecutionRole",
            Type = "AWSQuickSetupType-PatchPolicy",
            Parameters =
            {
                { "ConfigurationOptionsPatchOperation", "Scan" },
                { "ConfigurationOptionsScanValue", "cron(0 1 * * ? *)" },
                { "ConfigurationOptionsScanNextInterval", "false" },
                { "PatchBaselineRegion", currentGetRegion.Apply(getRegionResult => getRegionResult.Name) },
                { "PatchBaselineUseDefault", "default" },
                { "PatchPolicyName", "example" },
                { "SelectedPatchBaselines", selectedPatchBaselines },
                { "OutputLogEnableS3", "false" },
                { "RateControlConcurrency", "10%" },
                { "RateControlErrorThreshold", "2%" },
                { "IsPolicyAttachAllowed", "false" },
                { "TargetAccounts", current.Apply(getCallerIdentityResult => getCallerIdentityResult.AccountId) },
                { "TargetRegions", currentGetRegion.Apply(getRegionResult => getRegionResult.Name) },
                { "TargetType", "*" },
            },
        },
    });
});

Import

Using pulumi import, import SSM Quick Setup Configuration Manager using the manager_arn. For example:

$ pulumi import aws:ssm/quicksetupConfigurationManager:QuicksetupConfigurationManager example arn:aws:ssm-quicksetup:us-east-1:012345678901:configuration-manager/abcd-1234

Properties

configurationDefinition

val configurationDefinition: Output<QuicksetupConfigurationManagerConfigurationDefinition>?

Definition of the Quick Setup configuration that the configuration manager deploys. See configuration_definition below.

description

val description: Output<String>

Description of the configuration manager.

val id: Output<String>

managerArn

val managerArn: Output<String>

ARN of the Configuration Manager.

name

val name: Output<String>

Configuration manager name. The following arguments are optional:

pulumiChildResources

val pulumiChildResources: Set<KotlinResource>

pulumiResourceName

val pulumiResourceName: String

pulumiResourceType

val pulumiResourceType: String

statusSummaries

val statusSummaries: Output<List<QuicksetupConfigurationManagerStatusSummary>>

A summary of the state of the configuration manager. This includes deployment statuses, association statuses, drift statuses, health checks, and more. See status_summaries below.