aws-sdk-directconnect 1.40.0 → 1.41.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 78dddddf0c0d142b94dd7ac347fb9c9b947c2430c2bb422a7c6bcc9dd08656fa
-  data.tar.gz: a41dea904789c6a546f1e0179e399a5e264c54b870e5dbb5fdfcc100eb92a299
+  metadata.gz: f27bd60e658b1d2874b41cfee7bcfa1895ca59637a7d698b95d520c839c304e4
+  data.tar.gz: ba7266c911e4e7c1d3e052307d58d520887d6595f2787049dd3aa0b32127f5e3
 SHA512:
-  metadata.gz: b02fc9c21421552f79304a2c0bd791927b5260a742d1a5d3c974f8d75577a5cfe8fc8deedf147e09d584ba90d266f98470591c41198b52065e3923c65ad612e0
-  data.tar.gz: 24626a959f8c2a1c87b2a3d922db866f9366881f3f720992642e9a8e6319d3258e52c039a467c34a0885f4f87efa64e6c373246be8e7be61d32b8a37b32cb20d
+  metadata.gz: e73b54cc99be8e919bf51b8abee79ca0a2b10982fc9d9cd567a41333ff195dc43dd07c076484e7dce1048429f5addbc6d454b3de2ef15fc7ba9526ebc6f4bac6
+  data.tar.gz: 168c3519d9ba5b1e1e4ddab43b29d77d04eb9ecd359929bfb4c552f922440348402ad1ae16e613b4a5fff4a60e1285e44ea480b4260a3096a4985581c71886f2

data/CHANGELOG.md

@@ -1,6 +1,11 @@
 Unreleased Changes
 ------------------
 
+1.41.0 (2021-03-31)
+------------------
+
+* Feature - This release adds MACsec support to AWS Direct Connect
+
 1.40.0 (2021-03-10)
 ------------------
 

data/VERSION

@@ -1 +1 @@
-1.40.0
+1.41.0

data/lib/aws-sdk-directconnect.rb

@@ -48,6 +48,6 @@ require_relative 'aws-sdk-directconnect/customizations'
 # @!group service
 module Aws::DirectConnect
 
-  GEM_VERSION = '1.40.0'
+  GEM_VERSION = '1.41.0'
 
 end

data/lib/aws-sdk-directconnect/client.rb

@@ -455,6 +455,10 @@ module Aws::DirectConnect
     #   * {Types::Connection#has_logical_redundancy #has_logical_redundancy} => String
     #   * {Types::Connection#tags #tags} => Array<Types::Tag>
     #   * {Types::Connection#provider_name #provider_name} => String
+    #   * {Types::Connection#mac_sec_capable #mac_sec_capable} => Boolean
+    #   * {Types::Connection#port_encryption_status #port_encryption_status} => String
+    #   * {Types::Connection#encryption_mode #encryption_mode} => String
+    #   * {Types::Connection#mac_sec_keys #mac_sec_keys} => Array<Types::MacSecKey>
     #
     # @example Request syntax with placeholder values
     #
@@ -487,6 +491,14 @@ module Aws::DirectConnect
     #   resp.tags[0].key #=> String
     #   resp.tags[0].value #=> String
     #   resp.provider_name #=> String
+    #   resp.mac_sec_capable #=> Boolean
+    #   resp.port_encryption_status #=> String
+    #   resp.encryption_mode #=> String
+    #   resp.mac_sec_keys #=> Array
+    #   resp.mac_sec_keys[0].secret_arn #=> String
+    #   resp.mac_sec_keys[0].ckn #=> String
+    #   resp.mac_sec_keys[0].state #=> String
+    #   resp.mac_sec_keys[0].start_on #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/directconnect-2012-10-25/AllocateConnectionOnInterconnect AWS API Documentation
     #
@@ -551,6 +563,10 @@ module Aws::DirectConnect
     #   * {Types::Connection#has_logical_redundancy #has_logical_redundancy} => String
     #   * {Types::Connection#tags #tags} => Array<Types::Tag>
     #   * {Types::Connection#provider_name #provider_name} => String
+    #   * {Types::Connection#mac_sec_capable #mac_sec_capable} => Boolean
+    #   * {Types::Connection#port_encryption_status #port_encryption_status} => String
+    #   * {Types::Connection#encryption_mode #encryption_mode} => String
+    #   * {Types::Connection#mac_sec_keys #mac_sec_keys} => Array<Types::MacSecKey>
     #
     # @example Request syntax with placeholder values
     #
@@ -589,6 +605,14 @@ module Aws::DirectConnect
     #   resp.tags[0].key #=> String
     #   resp.tags[0].value #=> String
     #   resp.provider_name #=> String
+    #   resp.mac_sec_capable #=> Boolean
+    #   resp.port_encryption_status #=> String
+    #   resp.encryption_mode #=> String
+    #   resp.mac_sec_keys #=> Array
+    #   resp.mac_sec_keys[0].secret_arn #=> String
+    #   resp.mac_sec_keys[0].ckn #=> String
+    #   resp.mac_sec_keys[0].state #=> String
+    #   resp.mac_sec_keys[0].start_on #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/directconnect-2012-10-25/AllocateHostedConnection AWS API Documentation
     #
@@ -985,6 +1009,10 @@ module Aws::DirectConnect
     #   * {Types::Connection#has_logical_redundancy #has_logical_redundancy} => String
     #   * {Types::Connection#tags #tags} => Array<Types::Tag>
     #   * {Types::Connection#provider_name #provider_name} => String
+    #   * {Types::Connection#mac_sec_capable #mac_sec_capable} => Boolean
+    #   * {Types::Connection#port_encryption_status #port_encryption_status} => String
+    #   * {Types::Connection#encryption_mode #encryption_mode} => String
+    #   * {Types::Connection#mac_sec_keys #mac_sec_keys} => Array<Types::MacSecKey>
     #
     # @example Request syntax with placeholder values
     #
@@ -1014,6 +1042,14 @@ module Aws::DirectConnect
     #   resp.tags[0].key #=> String
     #   resp.tags[0].value #=> String
     #   resp.provider_name #=> String
+    #   resp.mac_sec_capable #=> Boolean
+    #   resp.port_encryption_status #=> String
+    #   resp.encryption_mode #=> String
+    #   resp.mac_sec_keys #=> Array
+    #   resp.mac_sec_keys[0].secret_arn #=> String
+    #   resp.mac_sec_keys[0].ckn #=> String
+    #   resp.mac_sec_keys[0].state #=> String
+    #   resp.mac_sec_keys[0].start_on #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/directconnect-2012-10-25/AssociateConnectionWithLag AWS API Documentation
     #
@@ -1059,6 +1095,10 @@ module Aws::DirectConnect
     #   * {Types::Connection#has_logical_redundancy #has_logical_redundancy} => String
     #   * {Types::Connection#tags #tags} => Array<Types::Tag>
     #   * {Types::Connection#provider_name #provider_name} => String
+    #   * {Types::Connection#mac_sec_capable #mac_sec_capable} => Boolean
+    #   * {Types::Connection#port_encryption_status #port_encryption_status} => String
+    #   * {Types::Connection#encryption_mode #encryption_mode} => String
+    #   * {Types::Connection#mac_sec_keys #mac_sec_keys} => Array<Types::MacSecKey>
     #
     # @example Request syntax with placeholder values
     #
@@ -1088,6 +1128,14 @@ module Aws::DirectConnect
     #   resp.tags[0].key #=> String
     #   resp.tags[0].value #=> String
     #   resp.provider_name #=> String
+    #   resp.mac_sec_capable #=> Boolean
+    #   resp.port_encryption_status #=> String
+    #   resp.encryption_mode #=> String
+    #   resp.mac_sec_keys #=> Array
+    #   resp.mac_sec_keys[0].secret_arn #=> String
+    #   resp.mac_sec_keys[0].ckn #=> String
+    #   resp.mac_sec_keys[0].state #=> String
+    #   resp.mac_sec_keys[0].start_on #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/directconnect-2012-10-25/AssociateHostedConnection AWS API Documentation
     #
@@ -1098,6 +1146,92 @@ module Aws::DirectConnect
       req.send_request(options)
     end
 
+    # Associates a MAC Security (MACsec) Connection Key Name (CKN)/
+    # Connectivity Association Key (CAK) pair with an AWS Direct Connect
+    # dedicated connection.
+    #
+    # You must supply either the `secretARN,` or the CKN/CAK (`ckn` and
+    # `cak`) pair in the request.
+    #
+    # For information about MAC Security (MACsec) key considerations, see
+    # [MACsec pre-shared CKN/CAK key considerations ][1] in the *AWS Direct
+    # Connect User Guide*.
+    #
+    #
+    #
+    # [1]: https://docs.aws.amazon.com/directconnect/latest/UserGuide/direct-connect-mac-sec-getting-started.html#mac-sec-key-consideration
+    #
+    # @option params [required, String] :connection_id
+    #   The ID of the dedicated connection (dxcon-xxxx), or the ID of the LAG
+    #   (dxlag-xxxx).
+    #
+    #   You can use DescribeConnections or DescribeLags to retrieve connection
+    #   ID.
+    #
+    # @option params [String] :secret_arn
+    #   The Amazon Resource Name (ARN) of the MAC Security (MACsec) secret key
+    #   to associate with the dedicated connection.
+    #
+    #   You can use DescribeConnections or DescribeLags to retrieve the MAC
+    #   Security (MACsec) secret key.
+    #
+    #   If you use this request parameter, you do not use the `ckn` and `cak`
+    #   request parameters.
+    #
+    # @option params [String] :ckn
+    #   The MAC Security (MACsec) CKN to associate with the dedicated
+    #   connection.
+    #
+    #   You can create the CKN/CAK pair using an industry standard tool.
+    #
+    #   The valid values are 64 hexadecimal characters (0-9, A-E).
+    #
+    #   If you use this request parameter, you must use the `cak` request
+    #   parameter and not use the `secretARN` request parameter.
+    #
+    # @option params [String] :cak
+    #   The MAC Security (MACsec) CAK to associate with the dedicated
+    #   connection.
+    #
+    #   You can create the CKN/CAK pair using an industry standard tool.
+    #
+    #   The valid values are 64 hexadecimal characters (0-9, A-E).
+    #
+    #   If you use this request parameter, you must use the `ckn` request
+    #   parameter and not use the `secretARN` request parameter.
+    #
+    # @return [Types::AssociateMacSecKeyResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::AssociateMacSecKeyResponse#connection_id #connection_id} => String
+    #   * {Types::AssociateMacSecKeyResponse#mac_sec_keys #mac_sec_keys} => Array<Types::MacSecKey>
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.associate_mac_sec_key({
+    #     connection_id: "ConnectionId", # required
+    #     secret_arn: "SecretARN",
+    #     ckn: "Ckn",
+    #     cak: "Cak",
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.connection_id #=> String
+    #   resp.mac_sec_keys #=> Array
+    #   resp.mac_sec_keys[0].secret_arn #=> String
+    #   resp.mac_sec_keys[0].ckn #=> String
+    #   resp.mac_sec_keys[0].state #=> String
+    #   resp.mac_sec_keys[0].start_on #=> String
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/directconnect-2012-10-25/AssociateMacSecKey AWS API Documentation
+    #
+    # @overload associate_mac_sec_key(params = {})
+    # @param [Hash] params ({})
+    def associate_mac_sec_key(params = {}, options = {})
+      req = build_request(:associate_mac_sec_key, params)
+      req.send_request(options)
+    end
+
     # Associates a virtual interface with a specified link aggregation group
     # (LAG) or connection. Connectivity to AWS is temporarily interrupted as
     # the virtual interface is being migrated. If the target connection or
@@ -1470,6 +1604,18 @@ module Aws::DirectConnect
     #   The name of the service provider associated with the requested
     #   connection.
     #
+    # @option params [Boolean] :request_mac_sec
+    #   Indicates whether you want the connection to support MAC Security
+    #   (MACsec).
+    #
+    #   MAC Security (MACsec) is only available on dedicated connections. For
+    #   information about MAC Security (MACsec) prerequisties, see [MACsec
+    #   prerequisties][1] in the *AWS Direct Connect User Guide*.
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/directconnect/latest/UserGuide/direct-connect-mac-sec-getting-started.html#mac-sec-prerequisites
+    #
     # @return [Types::Connection] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::Connection#owner_account #owner_account} => String
@@ -1489,6 +1635,10 @@ module Aws::DirectConnect
     #   * {Types::Connection#has_logical_redundancy #has_logical_redundancy} => String
     #   * {Types::Connection#tags #tags} => Array<Types::Tag>
     #   * {Types::Connection#provider_name #provider_name} => String
+    #   * {Types::Connection#mac_sec_capable #mac_sec_capable} => Boolean
+    #   * {Types::Connection#port_encryption_status #port_encryption_status} => String
+    #   * {Types::Connection#encryption_mode #encryption_mode} => String
+    #   * {Types::Connection#mac_sec_keys #mac_sec_keys} => Array<Types::MacSecKey>
     #
     # @example Request syntax with placeholder values
     #
@@ -1504,6 +1654,7 @@ module Aws::DirectConnect
     #       },
     #     ],
     #     provider_name: "ProviderName",
+    #     request_mac_sec: false,
     #   })
     #
     # @example Response structure
@@ -1527,6 +1678,14 @@ module Aws::DirectConnect
     #   resp.tags[0].key #=> String
     #   resp.tags[0].value #=> String
     #   resp.provider_name #=> String
+    #   resp.mac_sec_capable #=> Boolean
+    #   resp.port_encryption_status #=> String
+    #   resp.encryption_mode #=> String
+    #   resp.mac_sec_keys #=> Array
+    #   resp.mac_sec_keys[0].secret_arn #=> String
+    #   resp.mac_sec_keys[0].ckn #=> String
+    #   resp.mac_sec_keys[0].state #=> String
+    #   resp.mac_sec_keys[0].start_on #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/directconnect-2012-10-25/CreateConnection AWS API Documentation
     #
@@ -1883,6 +2042,19 @@ module Aws::DirectConnect
     # @option params [String] :provider_name
     #   The name of the service provider associated with the LAG.
     #
+    # @option params [Boolean] :request_mac_sec
+    #   Indicates whether the connection will support MAC Security (MACsec).
+    #
+    #   <note markdown="1"> All connections in the LAG must be capable of supporting MAC Security
+    #   (MACsec). For information about MAC Security (MACsec) prerequisties,
+    #   see [MACsec prerequisties][1] in the *AWS Direct Connect User Guide*.
+    #
+    #    </note>
+    #
+    #
+    #
+    #   [1]: https://docs.aws.amazon.com/directconnect/latest/UserGuide/direct-connect-mac-sec-getting-started.html#mac-sec-prerequisites
+    #
     # @return [Types::Lag] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::Lag#connections_bandwidth #connections_bandwidth} => String
@@ -1902,6 +2074,9 @@ module Aws::DirectConnect
     #   * {Types::Lag#has_logical_redundancy #has_logical_redundancy} => String
     #   * {Types::Lag#tags #tags} => Array&lt;Types::Tag&gt;
     #   * {Types::Lag#provider_name #provider_name} => String
+    #   * {Types::Lag#mac_sec_capable #mac_sec_capable} => Boolean
+    #   * {Types::Lag#encryption_mode #encryption_mode} => String
+    #   * {Types::Lag#mac_sec_keys #mac_sec_keys} => Array&lt;Types::MacSecKey&gt;
     #
     # @example Request syntax with placeholder values
     #
@@ -1924,6 +2099,7 @@ module Aws::DirectConnect
     #       },
     #     ],
     #     provider_name: "ProviderName",
+    #     request_mac_sec: false,
     #   })
     #
     # @example Response structure
@@ -1959,6 +2135,14 @@ module Aws::DirectConnect
     #   resp.connections[0].tags[0].key #=> String
     #   resp.connections[0].tags[0].value #=> String
     #   resp.connections[0].provider_name #=> String
+    #   resp.connections[0].mac_sec_capable #=> Boolean
+    #   resp.connections[0].port_encryption_status #=> String
+    #   resp.connections[0].encryption_mode #=> String
+    #   resp.connections[0].mac_sec_keys #=> Array
+    #   resp.connections[0].mac_sec_keys[0].secret_arn #=> String
+    #   resp.connections[0].mac_sec_keys[0].ckn #=> String
+    #   resp.connections[0].mac_sec_keys[0].state #=> String
+    #   resp.connections[0].mac_sec_keys[0].start_on #=> String
     #   resp.allows_hosted_connections #=> Boolean
     #   resp.jumbo_frame_capable #=> Boolean
     #   resp.has_logical_redundancy #=> String, one of "unknown", "yes", "no"
@@ -1966,6 +2150,13 @@ module Aws::DirectConnect
     #   resp.tags[0].key #=> String
     #   resp.tags[0].value #=> String
     #   resp.provider_name #=> String
+    #   resp.mac_sec_capable #=> Boolean
+    #   resp.encryption_mode #=> String
+    #   resp.mac_sec_keys #=> Array
+    #   resp.mac_sec_keys[0].secret_arn #=> String
+    #   resp.mac_sec_keys[0].ckn #=> String
+    #   resp.mac_sec_keys[0].state #=> String
+    #   resp.mac_sec_keys[0].start_on #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/directconnect-2012-10-25/CreateLag AWS API Documentation
     #
@@ -2424,6 +2615,10 @@ module Aws::DirectConnect
     #   * {Types::Connection#has_logical_redundancy #has_logical_redundancy} => String
     #   * {Types::Connection#tags #tags} => Array&lt;Types::Tag&gt;
     #   * {Types::Connection#provider_name #provider_name} => String
+    #   * {Types::Connection#mac_sec_capable #mac_sec_capable} => Boolean
+    #   * {Types::Connection#port_encryption_status #port_encryption_status} => String
+    #   * {Types::Connection#encryption_mode #encryption_mode} => String
+    #   * {Types::Connection#mac_sec_keys #mac_sec_keys} => Array&lt;Types::MacSecKey&gt;
     #
     # @example Request syntax with placeholder values
     #
@@ -2452,6 +2647,14 @@ module Aws::DirectConnect
     #   resp.tags[0].key #=> String
     #   resp.tags[0].value #=> String
     #   resp.provider_name #=> String
+    #   resp.mac_sec_capable #=> Boolean
+    #   resp.port_encryption_status #=> String
+    #   resp.encryption_mode #=> String
+    #   resp.mac_sec_keys #=> Array
+    #   resp.mac_sec_keys[0].secret_arn #=> String
+    #   resp.mac_sec_keys[0].ckn #=> String
+    #   resp.mac_sec_keys[0].state #=> String
+    #   resp.mac_sec_keys[0].start_on #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/directconnect-2012-10-25/DeleteConnection AWS API Documentation
     #
@@ -2650,6 +2853,9 @@ module Aws::DirectConnect
     #   * {Types::Lag#has_logical_redundancy #has_logical_redundancy} => String
     #   * {Types::Lag#tags #tags} => Array&lt;Types::Tag&gt;
     #   * {Types::Lag#provider_name #provider_name} => String
+    #   * {Types::Lag#mac_sec_capable #mac_sec_capable} => Boolean
+    #   * {Types::Lag#encryption_mode #encryption_mode} => String
+    #   * {Types::Lag#mac_sec_keys #mac_sec_keys} => Array&lt;Types::MacSecKey&gt;
     #
     # @example Request syntax with placeholder values
     #
@@ -2690,6 +2896,14 @@ module Aws::DirectConnect
     #   resp.connections[0].tags[0].key #=> String
     #   resp.connections[0].tags[0].value #=> String
     #   resp.connections[0].provider_name #=> String
+    #   resp.connections[0].mac_sec_capable #=> Boolean
+    #   resp.connections[0].port_encryption_status #=> String
+    #   resp.connections[0].encryption_mode #=> String
+    #   resp.connections[0].mac_sec_keys #=> Array
+    #   resp.connections[0].mac_sec_keys[0].secret_arn #=> String
+    #   resp.connections[0].mac_sec_keys[0].ckn #=> String
+    #   resp.connections[0].mac_sec_keys[0].state #=> String
+    #   resp.connections[0].mac_sec_keys[0].start_on #=> String
     #   resp.allows_hosted_connections #=> Boolean
     #   resp.jumbo_frame_capable #=> Boolean
     #   resp.has_logical_redundancy #=> String, one of "unknown", "yes", "no"
@@ -2697,6 +2911,13 @@ module Aws::DirectConnect
     #   resp.tags[0].key #=> String
     #   resp.tags[0].value #=> String
     #   resp.provider_name #=> String
+    #   resp.mac_sec_capable #=> Boolean
+    #   resp.encryption_mode #=> String
+    #   resp.mac_sec_keys #=> Array
+    #   resp.mac_sec_keys[0].secret_arn #=> String
+    #   resp.mac_sec_keys[0].ckn #=> String
+    #   resp.mac_sec_keys[0].state #=> String
+    #   resp.mac_sec_keys[0].start_on #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/directconnect-2012-10-25/DeleteLag AWS API Documentation
     #
@@ -2825,6 +3046,14 @@ module Aws::DirectConnect
     #   resp.connections[0].tags[0].key #=> String
     #   resp.connections[0].tags[0].value #=> String
     #   resp.connections[0].provider_name #=> String
+    #   resp.connections[0].mac_sec_capable #=> Boolean
+    #   resp.connections[0].port_encryption_status #=> String
+    #   resp.connections[0].encryption_mode #=> String
+    #   resp.connections[0].mac_sec_keys #=> Array
+    #   resp.connections[0].mac_sec_keys[0].secret_arn #=> String
+    #   resp.connections[0].mac_sec_keys[0].ckn #=> String
+    #   resp.connections[0].mac_sec_keys[0].state #=> String
+    #   resp.connections[0].mac_sec_keys[0].start_on #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/directconnect-2012-10-25/DescribeConnections AWS API Documentation
     #
@@ -2879,6 +3108,14 @@ module Aws::DirectConnect
     #   resp.connections[0].tags[0].key #=> String
     #   resp.connections[0].tags[0].value #=> String
     #   resp.connections[0].provider_name #=> String
+    #   resp.connections[0].mac_sec_capable #=> Boolean
+    #   resp.connections[0].port_encryption_status #=> String
+    #   resp.connections[0].encryption_mode #=> String
+    #   resp.connections[0].mac_sec_keys #=> Array
+    #   resp.connections[0].mac_sec_keys[0].secret_arn #=> String
+    #   resp.connections[0].mac_sec_keys[0].ckn #=> String
+    #   resp.connections[0].mac_sec_keys[0].state #=> String
+    #   resp.connections[0].mac_sec_keys[0].start_on #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/directconnect-2012-10-25/DescribeConnectionsOnInterconnect AWS API Documentation
     #
@@ -3201,6 +3438,14 @@ module Aws::DirectConnect
     #   resp.connections[0].tags[0].key #=> String
     #   resp.connections[0].tags[0].value #=> String
     #   resp.connections[0].provider_name #=> String
+    #   resp.connections[0].mac_sec_capable #=> Boolean
+    #   resp.connections[0].port_encryption_status #=> String
+    #   resp.connections[0].encryption_mode #=> String
+    #   resp.connections[0].mac_sec_keys #=> Array
+    #   resp.connections[0].mac_sec_keys[0].secret_arn #=> String
+    #   resp.connections[0].mac_sec_keys[0].ckn #=> String
+    #   resp.connections[0].mac_sec_keys[0].state #=> String
+    #   resp.connections[0].mac_sec_keys[0].start_on #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/directconnect-2012-10-25/DescribeHostedConnections AWS API Documentation
     #
@@ -3358,6 +3603,14 @@ module Aws::DirectConnect
     #   resp.lags[0].connections[0].tags[0].key #=> String
     #   resp.lags[0].connections[0].tags[0].value #=> String
     #   resp.lags[0].connections[0].provider_name #=> String
+    #   resp.lags[0].connections[0].mac_sec_capable #=> Boolean
+    #   resp.lags[0].connections[0].port_encryption_status #=> String
+    #   resp.lags[0].connections[0].encryption_mode #=> String
+    #   resp.lags[0].connections[0].mac_sec_keys #=> Array
+    #   resp.lags[0].connections[0].mac_sec_keys[0].secret_arn #=> String
+    #   resp.lags[0].connections[0].mac_sec_keys[0].ckn #=> String
+    #   resp.lags[0].connections[0].mac_sec_keys[0].state #=> String
+    #   resp.lags[0].connections[0].mac_sec_keys[0].start_on #=> String
     #   resp.lags[0].allows_hosted_connections #=> Boolean
     #   resp.lags[0].jumbo_frame_capable #=> Boolean
     #   resp.lags[0].has_logical_redundancy #=> String, one of "unknown", "yes", "no"
@@ -3365,6 +3618,13 @@ module Aws::DirectConnect
     #   resp.lags[0].tags[0].key #=> String
     #   resp.lags[0].tags[0].value #=> String
     #   resp.lags[0].provider_name #=> String
+    #   resp.lags[0].mac_sec_capable #=> Boolean
+    #   resp.lags[0].encryption_mode #=> String
+    #   resp.lags[0].mac_sec_keys #=> Array
+    #   resp.lags[0].mac_sec_keys[0].secret_arn #=> String
+    #   resp.lags[0].mac_sec_keys[0].ckn #=> String
+    #   resp.lags[0].mac_sec_keys[0].state #=> String
+    #   resp.lags[0].mac_sec_keys[0].start_on #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/directconnect-2012-10-25/DescribeLags AWS API Documentation
     #
@@ -3446,6 +3706,8 @@ module Aws::DirectConnect
     #   resp.locations[0].available_port_speeds[0] #=> String
     #   resp.locations[0].available_providers #=> Array
     #   resp.locations[0].available_providers[0] #=> String
+    #   resp.locations[0].available_mac_sec_port_speeds #=> Array
+    #   resp.locations[0].available_mac_sec_port_speeds[0] #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/directconnect-2012-10-25/DescribeLocations AWS API Documentation
     #
@@ -3627,6 +3889,10 @@ module Aws::DirectConnect
     #   * {Types::Connection#has_logical_redundancy #has_logical_redundancy} => String
     #   * {Types::Connection#tags #tags} => Array&lt;Types::Tag&gt;
     #   * {Types::Connection#provider_name #provider_name} => String
+    #   * {Types::Connection#mac_sec_capable #mac_sec_capable} => Boolean
+    #   * {Types::Connection#port_encryption_status #port_encryption_status} => String
+    #   * {Types::Connection#encryption_mode #encryption_mode} => String
+    #   * {Types::Connection#mac_sec_keys #mac_sec_keys} => Array&lt;Types::MacSecKey&gt;
     #
     # @example Request syntax with placeholder values
     #
@@ -3656,6 +3922,14 @@ module Aws::DirectConnect
     #   resp.tags[0].key #=> String
     #   resp.tags[0].value #=> String
     #   resp.provider_name #=> String
+    #   resp.mac_sec_capable #=> Boolean
+    #   resp.port_encryption_status #=> String
+    #   resp.encryption_mode #=> String
+    #   resp.mac_sec_keys #=> Array
+    #   resp.mac_sec_keys[0].secret_arn #=> String
+    #   resp.mac_sec_keys[0].ckn #=> String
+    #   resp.mac_sec_keys[0].state #=> String
+    #   resp.mac_sec_keys[0].start_on #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/directconnect-2012-10-25/DisassociateConnectionFromLag AWS API Documentation
     #
@@ -3666,6 +3940,53 @@ module Aws::DirectConnect
       req.send_request(options)
     end
 
+    # Removes the association between a MAC Security (MACsec) security key
+    # and an AWS Direct Connect dedicated connection.
+    #
+    # @option params [required, String] :connection_id
+    #   The ID of the dedicated connection (dxcon-xxxx), or the ID of the LAG
+    #   (dxlag-xxxx).
+    #
+    #   You can use DescribeConnections or DescribeLags to retrieve connection
+    #   ID.
+    #
+    # @option params [required, String] :secret_arn
+    #   The Amazon Resource Name (ARN) of the MAC Security (MACsec) secret
+    #   key.
+    #
+    #   You can use DescribeConnections to retrieve the ARN of the MAC
+    #   Security (MACsec) secret key.
+    #
+    # @return [Types::DisassociateMacSecKeyResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::DisassociateMacSecKeyResponse#connection_id #connection_id} => String
+    #   * {Types::DisassociateMacSecKeyResponse#mac_sec_keys #mac_sec_keys} => Array&lt;Types::MacSecKey&gt;
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.disassociate_mac_sec_key({
+    #     connection_id: "ConnectionId", # required
+    #     secret_arn: "SecretARN", # required
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.connection_id #=> String
+    #   resp.mac_sec_keys #=> Array
+    #   resp.mac_sec_keys[0].secret_arn #=> String
+    #   resp.mac_sec_keys[0].ckn #=> String
+    #   resp.mac_sec_keys[0].state #=> String
+    #   resp.mac_sec_keys[0].start_on #=> String
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/directconnect-2012-10-25/DisassociateMacSecKey AWS API Documentation
+    #
+    # @overload disassociate_mac_sec_key(params = {})
+    # @param [Hash] params ({})
+    def disassociate_mac_sec_key(params = {}, options = {})
+      req = build_request(:disassociate_mac_sec_key, params)
+      req.send_request(options)
+    end
+
     # Lists the virtual interface failover test history.
     #
     # @option params [String] :test_id
@@ -3896,6 +4217,99 @@ module Aws::DirectConnect
       req.send_request(options)
     end
 
+    # Updates the AWS Direct Connect dedicated connection configuration.
+    #
+    # You can update the following parameters for a connection:
+    #
+    # * The connection name
+    #
+    # * The connection's MAC Security (MACsec) encryption mode.
+    #
+    # @option params [required, String] :connection_id
+    #   The ID of the dedicated connection.
+    #
+    #   You can use DescribeConnections to retrieve the connection ID.
+    #
+    # @option params [String] :connection_name
+    #   The name of the connection.
+    #
+    # @option params [String] :encryption_mode
+    #   The connection MAC Security (MACsec) encryption mode.
+    #
+    #   The valid values are `no_encrypt`, `should_encrypt`, and
+    #   `must_encrypt`.
+    #
+    # @return [Types::Connection] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::Connection#owner_account #owner_account} => String
+    #   * {Types::Connection#connection_id #connection_id} => String
+    #   * {Types::Connection#connection_name #connection_name} => String
+    #   * {Types::Connection#connection_state #connection_state} => String
+    #   * {Types::Connection#region #region} => String
+    #   * {Types::Connection#location #location} => String
+    #   * {Types::Connection#bandwidth #bandwidth} => String
+    #   * {Types::Connection#vlan #vlan} => Integer
+    #   * {Types::Connection#partner_name #partner_name} => String
+    #   * {Types::Connection#loa_issue_time #loa_issue_time} => Time
+    #   * {Types::Connection#lag_id #lag_id} => String
+    #   * {Types::Connection#aws_device #aws_device} => String
+    #   * {Types::Connection#jumbo_frame_capable #jumbo_frame_capable} => Boolean
+    #   * {Types::Connection#aws_device_v2 #aws_device_v2} => String
+    #   * {Types::Connection#has_logical_redundancy #has_logical_redundancy} => String
+    #   * {Types::Connection#tags #tags} => Array&lt;Types::Tag&gt;
+    #   * {Types::Connection#provider_name #provider_name} => String
+    #   * {Types::Connection#mac_sec_capable #mac_sec_capable} => Boolean
+    #   * {Types::Connection#port_encryption_status #port_encryption_status} => String
+    #   * {Types::Connection#encryption_mode #encryption_mode} => String
+    #   * {Types::Connection#mac_sec_keys #mac_sec_keys} => Array&lt;Types::MacSecKey&gt;
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.update_connection({
+    #     connection_id: "ConnectionId", # required
+    #     connection_name: "ConnectionName",
+    #     encryption_mode: "EncryptionMode",
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.owner_account #=> String
+    #   resp.connection_id #=> String
+    #   resp.connection_name #=> String
+    #   resp.connection_state #=> String, one of "ordering", "requested", "pending", "available", "down", "deleting", "deleted", "rejected", "unknown"
+    #   resp.region #=> String
+    #   resp.location #=> String
+    #   resp.bandwidth #=> String
+    #   resp.vlan #=> Integer
+    #   resp.partner_name #=> String
+    #   resp.loa_issue_time #=> Time
+    #   resp.lag_id #=> String
+    #   resp.aws_device #=> String
+    #   resp.jumbo_frame_capable #=> Boolean
+    #   resp.aws_device_v2 #=> String
+    #   resp.has_logical_redundancy #=> String, one of "unknown", "yes", "no"
+    #   resp.tags #=> Array
+    #   resp.tags[0].key #=> String
+    #   resp.tags[0].value #=> String
+    #   resp.provider_name #=> String
+    #   resp.mac_sec_capable #=> Boolean
+    #   resp.port_encryption_status #=> String
+    #   resp.encryption_mode #=> String
+    #   resp.mac_sec_keys #=> Array
+    #   resp.mac_sec_keys[0].secret_arn #=> String
+    #   resp.mac_sec_keys[0].ckn #=> String
+    #   resp.mac_sec_keys[0].state #=> String
+    #   resp.mac_sec_keys[0].start_on #=> String
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/directconnect-2012-10-25/UpdateConnection AWS API Documentation
+    #
+    # @overload update_connection(params = {})
+    # @param [Hash] params ({})
+    def update_connection(params = {}, options = {})
+      req = build_request(:update_connection, params)
+      req.send_request(options)
+    end
+
     # Updates the specified attributes of the Direct Connect gateway
     # association.
     #
@@ -3959,20 +4373,24 @@ module Aws::DirectConnect
 
     # Updates the attributes of the specified link aggregation group (LAG).
     #
-    # You can update the following attributes:
+    # You can update the following LAG attributes:
     #
     # * The name of the LAG.
     #
     # * The value for the minimum number of connections that must be
     #   operational for the LAG itself to be operational.
     #
-    # When you create a LAG, the default value for the minimum number of
-    # operational connections is zero (0). If you update this value and the
-    # number of operational connections falls below the specified value, the
-    # LAG automatically goes down to avoid over-utilization of the remaining
-    # connections. Adjust this value with care, as it could force the LAG
-    # down if it is set higher than the current number of operational
-    # connections.
+    # * The LAG's MACsec encryption mode.
+    #
+    #   AWS assigns this value to each connection which is part of the LAG.
+    #
+    # * The tags
+    #
+    # <note markdown="1"> If you adjust the threshold value for the minimum number of
+    # operational connections, ensure that the new value does not cause the
+    # LAG to fall below the threshold and become non-operational.
+    #
+    #  </note>
     #
     # @option params [required, String] :lag_id
     #   The ID of the LAG.
@@ -3984,6 +4402,11 @@ module Aws::DirectConnect
     #   The minimum number of physical connections that must be operational
     #   for the LAG itself to be operational.
     #
+    # @option params [String] :encryption_mode
+    #   The LAG MAC Security (MACsec) encryption mode.
+    #
+    #   AWS applies the value to all connections which are part of the LAG.
+    #
     # @return [Types::Lag] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::Lag#connections_bandwidth #connections_bandwidth} => String
@@ -4003,6 +4426,9 @@ module Aws::DirectConnect
     #   * {Types::Lag#has_logical_redundancy #has_logical_redundancy} => String
     #   * {Types::Lag#tags #tags} => Array&lt;Types::Tag&gt;
     #   * {Types::Lag#provider_name #provider_name} => String
+    #   * {Types::Lag#mac_sec_capable #mac_sec_capable} => Boolean
+    #   * {Types::Lag#encryption_mode #encryption_mode} => String
+    #   * {Types::Lag#mac_sec_keys #mac_sec_keys} => Array&lt;Types::MacSecKey&gt;
     #
     # @example Request syntax with placeholder values
     #
@@ -4010,6 +4436,7 @@ module Aws::DirectConnect
     #     lag_id: "LagId", # required
     #     lag_name: "LagName",
     #     minimum_links: 1,
+    #     encryption_mode: "EncryptionMode",
     #   })
     #
     # @example Response structure
@@ -4045,6 +4472,14 @@ module Aws::DirectConnect
     #   resp.connections[0].tags[0].key #=> String
     #   resp.connections[0].tags[0].value #=> String
     #   resp.connections[0].provider_name #=> String
+    #   resp.connections[0].mac_sec_capable #=> Boolean
+    #   resp.connections[0].port_encryption_status #=> String
+    #   resp.connections[0].encryption_mode #=> String
+    #   resp.connections[0].mac_sec_keys #=> Array
+    #   resp.connections[0].mac_sec_keys[0].secret_arn #=> String
+    #   resp.connections[0].mac_sec_keys[0].ckn #=> String
+    #   resp.connections[0].mac_sec_keys[0].state #=> String
+    #   resp.connections[0].mac_sec_keys[0].start_on #=> String
     #   resp.allows_hosted_connections #=> Boolean
     #   resp.jumbo_frame_capable #=> Boolean
     #   resp.has_logical_redundancy #=> String, one of "unknown", "yes", "no"
@@ -4052,6 +4487,13 @@ module Aws::DirectConnect
     #   resp.tags[0].key #=> String
     #   resp.tags[0].value #=> String
     #   resp.provider_name #=> String
+    #   resp.mac_sec_capable #=> Boolean
+    #   resp.encryption_mode #=> String
+    #   resp.mac_sec_keys #=> Array
+    #   resp.mac_sec_keys[0].secret_arn #=> String
+    #   resp.mac_sec_keys[0].ckn #=> String
+    #   resp.mac_sec_keys[0].state #=> String
+    #   resp.mac_sec_keys[0].start_on #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/directconnect-2012-10-25/UpdateLag AWS API Documentation
     #
@@ -4176,7 +4618,7 @@ module Aws::DirectConnect
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-directconnect'
-      context[:gem_version] = '1.40.0'
+      context[:gem_version] = '1.41.0'
       Seahorse::Client::Request.new(handlers, context)
     end