---
# generated by https://github.com/hashicorp/terraform-plugin-docs
page_title: "awscc_iot_account_audit_configuration Data Source - terraform-provider-awscc"
subcategory: ""
description: |-
  Data Source schema for AWS::IoT::AccountAuditConfiguration
---

# awscc_iot_account_audit_configuration (Data Source)

Data Source schema for AWS::IoT::AccountAuditConfiguration



<!-- schema generated by tfplugindocs -->
## Schema

### Required

- `id` (String) Uniquely identifies the resource.

### Read-Only

- `account_id` (String) Your 12-digit account ID (used as the primary identifier for the CloudFormation resource).
- `audit_check_configurations` (Attributes) Specifies which audit checks are enabled and disabled for this account. (see [below for nested schema](#nestedatt--audit_check_configurations))
- `audit_notification_target_configurations` (Attributes) Information about the targets to which audit notifications are sent. (see [below for nested schema](#nestedatt--audit_notification_target_configurations))
- `role_arn` (String) The ARN of the role that grants permission to AWS IoT to access information about your devices, policies, certificates and other items as required when performing an audit.

<a id="nestedatt--audit_check_configurations"></a>
### Nested Schema for `audit_check_configurations`

Read-Only:

- `authenticated_cognito_role_overly_permissive_check` (Attributes) The configuration for a specific audit check. (see [below for nested schema](#nestedatt--audit_check_configurations--authenticated_cognito_role_overly_permissive_check))
- `ca_certificate_expiring_check` (Attributes) The configuration for a specific audit check. (see [below for nested schema](#nestedatt--audit_check_configurations--ca_certificate_expiring_check))
- `ca_certificate_key_quality_check` (Attributes) The configuration for a specific audit check. (see [below for nested schema](#nestedatt--audit_check_configurations--ca_certificate_key_quality_check))
- `conflicting_client_ids_check` (Attributes) The configuration for a specific audit check. (see [below for nested schema](#nestedatt--audit_check_configurations--conflicting_client_ids_check))
- `device_certificate_expiring_check` (Attributes) The configuration for a specific audit check. (see [below for nested schema](#nestedatt--audit_check_configurations--device_certificate_expiring_check))
- `device_certificate_key_quality_check` (Attributes) The configuration for a specific audit check. (see [below for nested schema](#nestedatt--audit_check_configurations--device_certificate_key_quality_check))
- `device_certificate_shared_check` (Attributes) The configuration for a specific audit check. (see [below for nested schema](#nestedatt--audit_check_configurations--device_certificate_shared_check))
- `iot_policy_overly_permissive_check` (Attributes) The configuration for a specific audit check. (see [below for nested schema](#nestedatt--audit_check_configurations--iot_policy_overly_permissive_check))
- `iot_role_alias_allows_access_to_unused_services_check` (Attributes) The configuration for a specific audit check. (see [below for nested schema](#nestedatt--audit_check_configurations--iot_role_alias_allows_access_to_unused_services_check))
- `iot_role_alias_overly_permissive_check` (Attributes) The configuration for a specific audit check. (see [below for nested schema](#nestedatt--audit_check_configurations--iot_role_alias_overly_permissive_check))
- `logging_disabled_check` (Attributes) The configuration for a specific audit check. (see [below for nested schema](#nestedatt--audit_check_configurations--logging_disabled_check))
- `revoked_ca_certificate_still_active_check` (Attributes) The configuration for a specific audit check. (see [below for nested schema](#nestedatt--audit_check_configurations--revoked_ca_certificate_still_active_check))
- `revoked_device_certificate_still_active_check` (Attributes) The configuration for a specific audit check. (see [below for nested schema](#nestedatt--audit_check_configurations--revoked_device_certificate_still_active_check))
- `unauthenticated_cognito_role_overly_permissive_check` (Attributes) The configuration for a specific audit check. (see [below for nested schema](#nestedatt--audit_check_configurations--unauthenticated_cognito_role_overly_permissive_check))

<a id="nestedatt--audit_check_configurations--authenticated_cognito_role_overly_permissive_check"></a>
### Nested Schema for `audit_check_configurations.authenticated_cognito_role_overly_permissive_check`

Read-Only:

- `enabled` (Boolean) True if the check is enabled.


<a id="nestedatt--audit_check_configurations--ca_certificate_expiring_check"></a>
### Nested Schema for `audit_check_configurations.ca_certificate_expiring_check`

Read-Only:

- `enabled` (Boolean) True if the check is enabled.


<a id="nestedatt--audit_check_configurations--ca_certificate_key_quality_check"></a>
### Nested Schema for `audit_check_configurations.ca_certificate_key_quality_check`

Read-Only:

- `enabled` (Boolean) True if the check is enabled.


<a id="nestedatt--audit_check_configurations--conflicting_client_ids_check"></a>
### Nested Schema for `audit_check_configurations.conflicting_client_ids_check`

Read-Only:

- `enabled` (Boolean) True if the check is enabled.


<a id="nestedatt--audit_check_configurations--device_certificate_expiring_check"></a>
### Nested Schema for `audit_check_configurations.device_certificate_expiring_check`

Read-Only:

- `enabled` (Boolean) True if the check is enabled.


<a id="nestedatt--audit_check_configurations--device_certificate_key_quality_check"></a>
### Nested Schema for `audit_check_configurations.device_certificate_key_quality_check`

Read-Only:

- `enabled` (Boolean) True if the check is enabled.


<a id="nestedatt--audit_check_configurations--device_certificate_shared_check"></a>
### Nested Schema for `audit_check_configurations.device_certificate_shared_check`

Read-Only:

- `enabled` (Boolean) True if the check is enabled.


<a id="nestedatt--audit_check_configurations--iot_policy_overly_permissive_check"></a>
### Nested Schema for `audit_check_configurations.iot_policy_overly_permissive_check`

Read-Only:

- `enabled` (Boolean) True if the check is enabled.


<a id="nestedatt--audit_check_configurations--iot_role_alias_allows_access_to_unused_services_check"></a>
### Nested Schema for `audit_check_configurations.iot_role_alias_allows_access_to_unused_services_check`

Read-Only:

- `enabled` (Boolean) True if the check is enabled.


<a id="nestedatt--audit_check_configurations--iot_role_alias_overly_permissive_check"></a>
### Nested Schema for `audit_check_configurations.iot_role_alias_overly_permissive_check`

Read-Only:

- `enabled` (Boolean) True if the check is enabled.


<a id="nestedatt--audit_check_configurations--logging_disabled_check"></a>
### Nested Schema for `audit_check_configurations.logging_disabled_check`

Read-Only:

- `enabled` (Boolean) True if the check is enabled.


<a id="nestedatt--audit_check_configurations--revoked_ca_certificate_still_active_check"></a>
### Nested Schema for `audit_check_configurations.revoked_ca_certificate_still_active_check`

Read-Only:

- `enabled` (Boolean) True if the check is enabled.


<a id="nestedatt--audit_check_configurations--revoked_device_certificate_still_active_check"></a>
### Nested Schema for `audit_check_configurations.revoked_device_certificate_still_active_check`

Read-Only:

- `enabled` (Boolean) True if the check is enabled.


<a id="nestedatt--audit_check_configurations--unauthenticated_cognito_role_overly_permissive_check"></a>
### Nested Schema for `audit_check_configurations.unauthenticated_cognito_role_overly_permissive_check`

Read-Only:

- `enabled` (Boolean) True if the check is enabled.



<a id="nestedatt--audit_notification_target_configurations"></a>
### Nested Schema for `audit_notification_target_configurations`

Read-Only:

- `sns` (Attributes) (see [below for nested schema](#nestedatt--audit_notification_target_configurations--sns))

<a id="nestedatt--audit_notification_target_configurations--sns"></a>
### Nested Schema for `audit_notification_target_configurations.sns`

Read-Only:

- `enabled` (Boolean) True if notifications to the target are enabled.
- `role_arn` (String) The ARN of the role that grants permission to send notifications to the target.
- `target_arn` (String) The ARN of the target (SNS topic) to which audit notifications are sent.