aws-sdk-iot 1.51.1 → 1.56.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 3c37785afa8cdec87b6ced402d464030a3fc6a533898998525d7f33dc417a8a6
-  data.tar.gz: 6e7392deec168ba7f7266f91223263ebb569f4e55c2067269376be6789cb5a84
+  metadata.gz: ea23e0b2d0c4275d7675c069d3795f5037df689e3fe7945d3539c2bd42e96fca
+  data.tar.gz: e16795d184b07396ebb1ed8b5a4253051265624926ce0da1e18b8600c8348bdf
 SHA512:
-  metadata.gz: c179c29f5fafce7e3a7d078bdaa65a6845fab8edfbc49672ba41ca0b8fbd186308d24c26d9d9dc5f10ba560cf9be02426407f93350e6c534c0774d9f99aef34b
-  data.tar.gz: 0c2953889b9fc0e4a2b0529e4f4e05d4aa10c902c821acb7fb7b0b16194e8e4a5b546ad5c689175638d2e3111dc0f98b8c6041b9794eb191fee6b8dc062c50ab
+  metadata.gz: efff2774b86478a5ed8b9937ecf6b5623a2eb9885817548922842ea518228c4e20bf86c3b2647c01918fbb7604cae758f361a8261e3f3226abc8cb8bc4ffb2b7
+  data.tar.gz: 8a911940d59ae32675bfab9798259c462a64f0f1d76e0339f4e6b2612acdacfcf8c4947eaf00066c705448ea0531ec8d31fe7a8a06fd27ec665a6cfcf2e174a7

data/lib/aws-sdk-iot.rb

@@ -1,3 +1,5 @@
+# frozen_string_literal: true
+
 # WARNING ABOUT GENERATED CODE
 #
 # This file is generated. See the contributing guide for more information:
@@ -42,9 +44,9 @@ require_relative 'aws-sdk-iot/customizations'
 #
 # See {Errors} for more information.
 #
-# @service
+# @!group service
 module Aws::IoT
 
-  GEM_VERSION = '1.51.1'
+  GEM_VERSION = '1.56.0'
 
 end

data/lib/aws-sdk-iot/client.rb

@@ -1,3 +1,5 @@
+# frozen_string_literal: true
+
 # WARNING ABOUT GENERATED CODE
 #
 # This file is generated. See the contributing guide for more information:
@@ -83,13 +85,28 @@ module Aws::IoT
     #     * `Aws::Credentials` - Used for configuring static, non-refreshing
     #       credentials.
     #
+    #     * `Aws::SharedCredentials` - Used for loading static credentials from a
+    #       shared file, such as `~/.aws/config`.
+    #
+    #     * `Aws::AssumeRoleCredentials` - Used when you need to assume a role.
+    #
+    #     * `Aws::AssumeRoleWebIdentityCredentials` - Used when you need to
+    #       assume a role after providing credentials via the web.
+    #
+    #     * `Aws::SSOCredentials` - Used for loading credentials from AWS SSO using an
+    #       access token generated from `aws login`.
+    #
+    #     * `Aws::ProcessCredentials` - Used for loading credentials from a
+    #       process that outputs to stdout.
+    #
     #     * `Aws::InstanceProfileCredentials` - Used for loading credentials
     #       from an EC2 IMDS on an EC2 instance.
     #
-    #     * `Aws::SharedCredentials` - Used for loading credentials from a
-    #       shared file, such as `~/.aws/config`.
+    #     * `Aws::ECSCredentials` - Used for loading credentials from
+    #       instances running in ECS.
     #
-    #     * `Aws::AssumeRoleCredentials` - Used when you need to assume a role.
+    #     * `Aws::CognitoIdentityCredentials` - Used for loading credentials
+    #       from the Cognito Identity service.
     #
     #     When `:credentials` are not configured directly, the following
     #     locations will be searched for credentials:
@@ -99,10 +116,10 @@ module Aws::IoT
     #     * ENV['AWS_ACCESS_KEY_ID'], ENV['AWS_SECRET_ACCESS_KEY']
     #     * `~/.aws/credentials`
     #     * `~/.aws/config`
-    #     * EC2 IMDS instance profile - When used by default, the timeouts are
-    #       very aggressive. Construct and pass an instance of
-    #       `Aws::InstanceProfileCredentails` to enable retries and extended
-    #       timeouts.
+    #     * EC2/ECS IMDS instance profile - When used by default, the timeouts
+    #       are very aggressive. Construct and pass an instance of
+    #       `Aws::InstanceProfileCredentails` or `Aws::ECSCredentials` to
+    #       enable retries and extended timeouts.
     #
     #   @option options [required, String] :region
     #     The AWS region to connect to.  The configured `:region` is
@@ -468,7 +485,7 @@ module Aws::IoT
     #
     #
     #
-    #   [1]: https://docs.aws.amazon.com/iot/latest/developerguide/iot-security-identity.html
+    #   [1]: https://docs.aws.amazon.com/iot/latest/developerguide/security-iam.html
     #
     # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
     #
@@ -783,6 +800,64 @@ module Aws::IoT
       req.send_request(options)
     end
 
+    # Creates a Device Defender audit suppression.
+    #
+    # @option params [required, String] :check_name
+    #   An audit check name. Checks must be enabled for your account. (Use
+    #   `DescribeAccountAuditConfiguration` to see the list of all checks,
+    #   including those that are enabled or use
+    #   `UpdateAccountAuditConfiguration` to select which checks are enabled.)
+    #
+    # @option params [required, Types::ResourceIdentifier] :resource_identifier
+    #   Information that identifies the noncompliant resource.
+    #
+    # @option params [Time,DateTime,Date,Integer,String] :expiration_date
+    #   The epoch timestamp in seconds at which this suppression expires.
+    #
+    # @option params [Boolean] :suppress_indefinitely
+    #   Indicates whether a suppression should exist indefinitely or not.
+    #
+    # @option params [String] :description
+    #   The description of the audit suppression.
+    #
+    # @option params [required, String] :client_request_token
+    #   The epoch timestamp in seconds at which this suppression expires.
+    #
+    #   **A suitable default value is auto-generated.** You should normally
+    #   not need to pass this option.**
+    #
+    # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.create_audit_suppression({
+    #     check_name: "AuditCheckName", # required
+    #     resource_identifier: { # required
+    #       device_certificate_id: "CertificateId",
+    #       ca_certificate_id: "CertificateId",
+    #       cognito_identity_pool_id: "CognitoIdentityPoolId",
+    #       client_id: "ClientId",
+    #       policy_version_identifier: {
+    #         policy_name: "PolicyName",
+    #         policy_version_id: "PolicyVersionId",
+    #       },
+    #       account: "AwsAccountId",
+    #       iam_role_arn: "RoleArn",
+    #       role_alias_arn: "RoleAliasArn",
+    #     },
+    #     expiration_date: Time.now,
+    #     suppress_indefinitely: false,
+    #     description: "AuditDescription",
+    #     client_request_token: "ClientRequestToken", # required
+    #   })
+    #
+    # @overload create_audit_suppression(params = {})
+    # @param [Hash] params ({})
+    def create_audit_suppression(params = {}, options = {})
+      req = build_request(:create_audit_suppression, params)
+      req.send_request(options)
+    end
+
     # Creates an authorizer.
     #
     # @option params [required, String] :authorizer_name
@@ -1380,8 +1455,14 @@ module Aws::IoT
     end
 
     # Defines an action that can be applied to audit findings by using
-    # StartAuditMitigationActionsTask. Each mitigation action can apply only
-    # one type of change.
+    # StartAuditMitigationActionsTask. Only certain types of mitigation
+    # actions can be applied to specific check names. For more information,
+    # see [Mitigation actions][1]. Each mitigation action can apply only one
+    # type of change.
+    #
+    #
+    #
+    # [1]: https://docs.aws.amazon.com/iot/latest/developerguide/device-defender-mitigation-actions.html
     #
     # @option params [required, String] :action_name
     #   A friendly name for the action. Choose a friendly name that accurately
@@ -1457,7 +1538,7 @@ module Aws::IoT
     #   The description of the OTA update.
     #
     # @option params [required, Array<String>] :targets
-    #   The targeted devices to receive OTA updates.
+    #   The devices targeted to receive OTA updates.
     #
     # @option params [Array<String>] :protocols
     #   The protocol used to transfer the OTA update image. Valid values are
@@ -1479,11 +1560,22 @@ module Aws::IoT
     # @option params [Types::AwsJobPresignedUrlConfig] :aws_job_presigned_url_config
     #   Configuration information for pre-signed URLs.
     #
+    # @option params [Types::AwsJobAbortConfig] :aws_job_abort_config
+    #   The criteria that determine when and how a job abort takes place.
+    #
+    # @option params [Types::AwsJobTimeoutConfig] :aws_job_timeout_config
+    #   Specifies the amount of time each device has to finish its execution
+    #   of the job. A timer is started when the job execution status is set to
+    #   `IN_PROGRESS`. If the job execution status is not set to another
+    #   terminal state before the timer expires, it will be automatically set
+    #   to `TIMED_OUT`.
+    #
     # @option params [required, Array<Types::OTAUpdateFile>] :files
     #   The files to be streamed by the OTA update.
     #
     # @option params [required, String] :role_arn
-    #   The IAM role that allows access to the AWS IoT Jobs service.
+    #   The IAM role that grants AWS IoT access to the Amazon S3, AWS IoT jobs
+    #   and AWS Code Signing resources to create an OTA update job.
     #
     # @option params [Hash<String,String>] :additional_parameters
     #   A list of additional OTA update parameters which are name-value pairs.
@@ -1509,10 +1601,31 @@ module Aws::IoT
     #     target_selection: "CONTINUOUS", # accepts CONTINUOUS, SNAPSHOT
     #     aws_job_executions_rollout_config: {
     #       maximum_per_minute: 1,
+    #       exponential_rate: {
+    #         base_rate_per_minute: 1, # required
+    #         increment_factor: 1.0, # required
+    #         rate_increase_criteria: { # required
+    #           number_of_notified_things: 1,
+    #           number_of_succeeded_things: 1,
+    #         },
+    #       },
     #     },
     #     aws_job_presigned_url_config: {
     #       expires_in_sec: 1,
     #     },
+    #     aws_job_abort_config: {
+    #       abort_criteria_list: [ # required
+    #         {
+    #           failure_type: "FAILED", # required, accepts FAILED, REJECTED, TIMED_OUT, ALL
+    #           action: "CANCEL", # required, accepts CANCEL
+    #           threshold_percentage: 1.0, # required
+    #           min_number_of_executed_things: 1, # required
+    #         },
+    #       ],
+    #     },
+    #     aws_job_timeout_config: {
+    #       in_progress_timeout_in_minutes: 1,
+    #     },
     #     files: [ # required
     #       {
     #         file_name: "FileName",
@@ -2703,6 +2816,45 @@ module Aws::IoT
       req.send_request(options)
     end
 
+    # Deletes a Device Defender audit suppression.
+    #
+    # @option params [required, String] :check_name
+    #   An audit check name. Checks must be enabled for your account. (Use
+    #   `DescribeAccountAuditConfiguration` to see the list of all checks,
+    #   including those that are enabled or use
+    #   `UpdateAccountAuditConfiguration` to select which checks are enabled.)
+    #
+    # @option params [required, Types::ResourceIdentifier] :resource_identifier
+    #   Information that identifies the noncompliant resource.
+    #
+    # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.delete_audit_suppression({
+    #     check_name: "AuditCheckName", # required
+    #     resource_identifier: { # required
+    #       device_certificate_id: "CertificateId",
+    #       ca_certificate_id: "CertificateId",
+    #       cognito_identity_pool_id: "CognitoIdentityPoolId",
+    #       client_id: "ClientId",
+    #       policy_version_identifier: {
+    #         policy_name: "PolicyName",
+    #         policy_version_id: "PolicyVersionId",
+    #       },
+    #       account: "AwsAccountId",
+    #       iam_role_arn: "RoleArn",
+    #       role_alias_arn: "RoleAliasArn",
+    #     },
+    #   })
+    #
+    # @overload delete_audit_suppression(params = {})
+    # @param [Hash] params ({})
+    def delete_audit_suppression(params = {}, options = {})
+      req = build_request(:delete_audit_suppression, params)
+      req.send_request(options)
+    end
+
     # Deletes an authorizer.
     #
     # @option params [required, String] :authorizer_name
@@ -2991,7 +3143,7 @@ module Aws::IoT
     # Delete an OTA update.
     #
     # @option params [required, String] :ota_update_id
-    #   The OTA update ID to delete.
+    #   The ID of the OTA update to delete.
     #
     # @option params [Boolean] :delete_stream
     #   Specifies if the stream associated with an OTA update should be
@@ -2999,7 +3151,7 @@ module Aws::IoT
     #
     # @option params [Boolean] :force_delete_aws_job
     #   Specifies if the AWS Job associated with the OTA update should be
-    #   deleted with the OTA update is deleted.
+    #   deleted when the OTA update is deleted.
     #
     # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
     #
@@ -3468,6 +3620,7 @@ module Aws::IoT
     #   resp.finding.related_resources[0].additional_info["String"] #=> String
     #   resp.finding.reason_for_non_compliance #=> String
     #   resp.finding.reason_for_non_compliance_code #=> String
+    #   resp.finding.is_suppressed #=> Boolean
     #
     # @overload describe_audit_finding(params = {})
     # @param [Hash] params ({})
@@ -3541,6 +3694,67 @@ module Aws::IoT
       req.send_request(options)
     end
 
+    # Gets information about a Device Defender audit suppression.
+    #
+    # @option params [required, String] :check_name
+    #   An audit check name. Checks must be enabled for your account. (Use
+    #   `DescribeAccountAuditConfiguration` to see the list of all checks,
+    #   including those that are enabled or use
+    #   `UpdateAccountAuditConfiguration` to select which checks are enabled.)
+    #
+    # @option params [required, Types::ResourceIdentifier] :resource_identifier
+    #   Information that identifies the noncompliant resource.
+    #
+    # @return [Types::DescribeAuditSuppressionResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::DescribeAuditSuppressionResponse#check_name #check_name} => String
+    #   * {Types::DescribeAuditSuppressionResponse#resource_identifier #resource_identifier} => Types::ResourceIdentifier
+    #   * {Types::DescribeAuditSuppressionResponse#expiration_date #expiration_date} => Time
+    #   * {Types::DescribeAuditSuppressionResponse#suppress_indefinitely #suppress_indefinitely} => Boolean
+    #   * {Types::DescribeAuditSuppressionResponse#description #description} => String
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.describe_audit_suppression({
+    #     check_name: "AuditCheckName", # required
+    #     resource_identifier: { # required
+    #       device_certificate_id: "CertificateId",
+    #       ca_certificate_id: "CertificateId",
+    #       cognito_identity_pool_id: "CognitoIdentityPoolId",
+    #       client_id: "ClientId",
+    #       policy_version_identifier: {
+    #         policy_name: "PolicyName",
+    #         policy_version_id: "PolicyVersionId",
+    #       },
+    #       account: "AwsAccountId",
+    #       iam_role_arn: "RoleArn",
+    #       role_alias_arn: "RoleAliasArn",
+    #     },
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.check_name #=> String
+    #   resp.resource_identifier.device_certificate_id #=> String
+    #   resp.resource_identifier.ca_certificate_id #=> String
+    #   resp.resource_identifier.cognito_identity_pool_id #=> String
+    #   resp.resource_identifier.client_id #=> String
+    #   resp.resource_identifier.policy_version_identifier.policy_name #=> String
+    #   resp.resource_identifier.policy_version_identifier.policy_version_id #=> String
+    #   resp.resource_identifier.account #=> String
+    #   resp.resource_identifier.iam_role_arn #=> String
+    #   resp.resource_identifier.role_alias_arn #=> String
+    #   resp.expiration_date #=> Time
+    #   resp.suppress_indefinitely #=> Boolean
+    #   resp.description #=> String
+    #
+    # @overload describe_audit_suppression(params = {})
+    # @param [Hash] params ({})
+    def describe_audit_suppression(params = {}, options = {})
+      req = build_request(:describe_audit_suppression, params)
+      req.send_request(options)
+    end
+
     # Gets information about a Device Defender audit.
     #
     # @option params [required, String] :task_id
@@ -3579,6 +3793,7 @@ module Aws::IoT
     #   resp.audit_details["AuditCheckName"].check_compliant #=> Boolean
     #   resp.audit_details["AuditCheckName"].total_resources_count #=> Integer
     #   resp.audit_details["AuditCheckName"].non_compliant_resources_count #=> Integer
+    #   resp.audit_details["AuditCheckName"].suppressed_non_compliant_resources_count #=> Integer
     #   resp.audit_details["AuditCheckName"].error_code #=> String
     #   resp.audit_details["AuditCheckName"].message #=> String
     #
@@ -4580,8 +4795,11 @@ module Aws::IoT
     # @option params [required, String] :principal
     #   The principal.
     #
-    #   If the principal is a certificate, specify the certificate ARN. If the
-    #   principal is an Amazon Cognito identity, specify the identity ID.
+    #   Valid principals are CertificateArn
+    #   (arn:aws:iot:*region*\:*accountId*\:cert/*certificateId*),
+    #   thingGroupArn
+    #   (arn:aws:iot:*region*\:*accountId*\:thinggroup/*groupName*) and
+    #   CognitoId (*region*\:*id*).
     #
     # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
     #
@@ -4741,7 +4959,11 @@ module Aws::IoT
     # device gateway.
     #
     # @option params [String] :principal
-    #   The principal.
+    #   The principal. Valid principals are CertificateArn
+    #   (arn:aws:iot:*region*\:*accountId*\:cert/*certificateId*),
+    #   thingGroupArn
+    #   (arn:aws:iot:*region*\:*accountId*\:thinggroup/*groupName*) and
+    #   CognitoId (*region*\:*id*).
     #
     # @option params [String] :cognito_identity_pool_id
     #   The Cognito identity pool ID.
@@ -4882,6 +5104,10 @@ module Aws::IoT
     #   resp.ota_update_info.protocols #=> Array
     #   resp.ota_update_info.protocols[0] #=> String, one of "MQTT", "HTTP"
     #   resp.ota_update_info.aws_job_executions_rollout_config.maximum_per_minute #=> Integer
+    #   resp.ota_update_info.aws_job_executions_rollout_config.exponential_rate.base_rate_per_minute #=> Integer
+    #   resp.ota_update_info.aws_job_executions_rollout_config.exponential_rate.increment_factor #=> Float
+    #   resp.ota_update_info.aws_job_executions_rollout_config.exponential_rate.rate_increase_criteria.number_of_notified_things #=> Integer
+    #   resp.ota_update_info.aws_job_executions_rollout_config.exponential_rate.rate_increase_criteria.number_of_succeeded_things #=> Integer
     #   resp.ota_update_info.aws_job_presigned_url_config.expires_in_sec #=> Integer
     #   resp.ota_update_info.target_selection #=> String, one of "CONTINUOUS", "SNAPSHOT"
     #   resp.ota_update_info.ota_update_files #=> Array
@@ -5394,6 +5620,8 @@ module Aws::IoT
     #   * {Types::ListActiveViolationsResponse#active_violations #active_violations} => Array&lt;Types::ActiveViolation&gt;
     #   * {Types::ListActiveViolationsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_active_violations({
@@ -5442,7 +5670,12 @@ module Aws::IoT
     # Lists the policies attached to the specified thing group.
     #
     # @option params [required, String] :target
-    #   The group or principal for which the policies will be listed.
+    #   The group or principal for which the policies will be listed. Valid
+    #   principals are CertificateArn
+    #   (arn:aws:iot:*region*\:*accountId*\:cert/*certificateId*),
+    #   thingGroupArn
+    #   (arn:aws:iot:*region*\:*accountId*\:thinggroup/*groupName*) and
+    #   CognitoId (*region*\:*id*).
     #
     # @option params [Boolean] :recursive
     #   When true, recursively list attached policies.
@@ -5458,6 +5691,8 @@ module Aws::IoT
     #   * {Types::ListAttachedPoliciesResponse#policies #policies} => Array&lt;Types::Policy&gt;
     #   * {Types::ListAttachedPoliciesResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_attached_policies({
@@ -5513,11 +5748,19 @@ module Aws::IoT
     #   You must specify either the startTime and endTime or the taskId, but
     #   not both.
     #
+    # @option params [Boolean] :list_suppressed_findings
+    #   Boolean flag indicating whether only the suppressed findings or the
+    #   unsuppressed findings should be listed. If this parameter isn't
+    #   provided, the response will list both suppressed and unsuppressed
+    #   findings.
+    #
     # @return [Types::ListAuditFindingsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::ListAuditFindingsResponse#findings #findings} => Array&lt;Types::AuditFinding&gt;
     #   * {Types::ListAuditFindingsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_audit_findings({
@@ -5540,6 +5783,7 @@ module Aws::IoT
     #     next_token: "NextToken",
     #     start_time: Time.now,
     #     end_time: Time.now,
+    #     list_suppressed_findings: false,
     #   })
     #
     # @example Response structure
@@ -5578,6 +5822,7 @@ module Aws::IoT
     #   resp.findings[0].related_resources[0].additional_info["String"] #=> String
     #   resp.findings[0].reason_for_non_compliance #=> String
     #   resp.findings[0].reason_for_non_compliance_code #=> String
+    #   resp.findings[0].is_suppressed #=> Boolean
     #   resp.next_token #=> String
     #
     # @overload list_audit_findings(params = {})
@@ -5612,6 +5857,8 @@ module Aws::IoT
     #   * {Types::ListAuditMitigationActionsExecutionsResponse#actions_executions #actions_executions} => Array&lt;Types::AuditMitigationActionExecutionMetadata&gt;
     #   * {Types::ListAuditMitigationActionsExecutionsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_audit_mitigation_actions_executions({
@@ -5678,6 +5925,8 @@ module Aws::IoT
     #   * {Types::ListAuditMitigationActionsTasksResponse#tasks #tasks} => Array&lt;Types::AuditMitigationActionsTaskMetadata&gt;
     #   * {Types::ListAuditMitigationActionsTasksResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_audit_mitigation_actions_tasks({
@@ -5705,6 +5954,83 @@ module Aws::IoT
       req.send_request(options)
     end
 
+    # Lists your Device Defender audit listings.
+    #
+    # @option params [String] :check_name
+    #   An audit check name. Checks must be enabled for your account. (Use
+    #   `DescribeAccountAuditConfiguration` to see the list of all checks,
+    #   including those that are enabled or use
+    #   `UpdateAccountAuditConfiguration` to select which checks are enabled.)
+    #
+    # @option params [Types::ResourceIdentifier] :resource_identifier
+    #   Information that identifies the noncompliant resource.
+    #
+    # @option params [Boolean] :ascending_order
+    #   Determines whether suppressions are listed in ascending order by
+    #   expiration date or not. If parameter isn't provided,
+    #   `ascendingOrder=true`.
+    #
+    # @option params [String] :next_token
+    #   The token for the next set of results.
+    #
+    # @option params [Integer] :max_results
+    #   The maximum number of results to return at one time. The default is
+    #   25.
+    #
+    # @return [Types::ListAuditSuppressionsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::ListAuditSuppressionsResponse#suppressions #suppressions} => Array&lt;Types::AuditSuppression&gt;
+    #   * {Types::ListAuditSuppressionsResponse#next_token #next_token} => String
+    #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.list_audit_suppressions({
+    #     check_name: "AuditCheckName",
+    #     resource_identifier: {
+    #       device_certificate_id: "CertificateId",
+    #       ca_certificate_id: "CertificateId",
+    #       cognito_identity_pool_id: "CognitoIdentityPoolId",
+    #       client_id: "ClientId",
+    #       policy_version_identifier: {
+    #         policy_name: "PolicyName",
+    #         policy_version_id: "PolicyVersionId",
+    #       },
+    #       account: "AwsAccountId",
+    #       iam_role_arn: "RoleArn",
+    #       role_alias_arn: "RoleAliasArn",
+    #     },
+    #     ascending_order: false,
+    #     next_token: "NextToken",
+    #     max_results: 1,
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.suppressions #=> Array
+    #   resp.suppressions[0].check_name #=> String
+    #   resp.suppressions[0].resource_identifier.device_certificate_id #=> String
+    #   resp.suppressions[0].resource_identifier.ca_certificate_id #=> String
+    #   resp.suppressions[0].resource_identifier.cognito_identity_pool_id #=> String
+    #   resp.suppressions[0].resource_identifier.client_id #=> String
+    #   resp.suppressions[0].resource_identifier.policy_version_identifier.policy_name #=> String
+    #   resp.suppressions[0].resource_identifier.policy_version_identifier.policy_version_id #=> String
+    #   resp.suppressions[0].resource_identifier.account #=> String
+    #   resp.suppressions[0].resource_identifier.iam_role_arn #=> String
+    #   resp.suppressions[0].resource_identifier.role_alias_arn #=> String
+    #   resp.suppressions[0].expiration_date #=> Time
+    #   resp.suppressions[0].suppress_indefinitely #=> Boolean
+    #   resp.suppressions[0].description #=> String
+    #   resp.next_token #=> String
+    #
+    # @overload list_audit_suppressions(params = {})
+    # @param [Hash] params ({})
+    def list_audit_suppressions(params = {}, options = {})
+      req = build_request(:list_audit_suppressions, params)
+      req.send_request(options)
+    end
+
     # Lists the Device Defender audits that have been performed during a
     # given time period.
     #
@@ -5737,6 +6063,8 @@ module Aws::IoT
     #   * {Types::ListAuditTasksResponse#tasks #tasks} => Array&lt;Types::AuditTaskMetadata&gt;
     #   * {Types::ListAuditTasksResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_audit_tasks({
@@ -5782,6 +6110,8 @@ module Aws::IoT
     #   * {Types::ListAuthorizersResponse#authorizers #authorizers} => Array&lt;Types::AuthorizerSummary&gt;
     #   * {Types::ListAuthorizersResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_authorizers({
@@ -5821,6 +6151,8 @@ module Aws::IoT
     #   * {Types::ListBillingGroupsResponse#billing_groups #billing_groups} => Array&lt;Types::GroupNameAndArn&gt;
     #   * {Types::ListBillingGroupsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_billing_groups({
@@ -5862,6 +6194,8 @@ module Aws::IoT
     #   * {Types::ListCACertificatesResponse#certificates #certificates} => Array&lt;Types::CACertificate&gt;
     #   * {Types::ListCACertificatesResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_ca_certificates({
@@ -5906,6 +6240,8 @@ module Aws::IoT
     #   * {Types::ListCertificatesResponse#certificates #certificates} => Array&lt;Types::Certificate&gt;
     #   * {Types::ListCertificatesResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_certificates({
@@ -5952,6 +6288,8 @@ module Aws::IoT
     #   * {Types::ListCertificatesByCAResponse#certificates #certificates} => Array&lt;Types::Certificate&gt;
     #   * {Types::ListCertificatesByCAResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_certificates_by_ca({
@@ -5991,6 +6329,8 @@ module Aws::IoT
     #   * {Types::ListDimensionsResponse#dimension_names #dimension_names} => Array&lt;String&gt;
     #   * {Types::ListDimensionsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_dimensions({
@@ -6033,6 +6373,8 @@ module Aws::IoT
     #   * {Types::ListDomainConfigurationsResponse#domain_configurations #domain_configurations} => Array&lt;Types::DomainConfigurationSummary&gt;
     #   * {Types::ListDomainConfigurationsResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_domain_configurations({
@@ -6070,6 +6412,8 @@ module Aws::IoT
     #   * {Types::ListIndicesResponse#index_names #index_names} => Array&lt;String&gt;
     #   * {Types::ListIndicesResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_indices({
@@ -6109,6 +6453,8 @@ module Aws::IoT
     #   * {Types::ListJobExecutionsForJobResponse#execution_summaries #execution_summaries} => Array&lt;Types::JobExecutionSummaryForJob&gt;
     #   * {Types::ListJobExecutionsForJobResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_job_executions_for_job({
@@ -6156,6 +6502,8 @@ module Aws::IoT
     #   * {Types::ListJobExecutionsForThingResponse#execution_summaries #execution_summaries} => Array&lt;Types::JobExecutionSummaryForThing&gt;
     #   * {Types::ListJobExecutionsForThingResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_job_executions_for_thing({
@@ -6216,6 +6564,8 @@ module Aws::IoT
     #   * {Types::ListJobsResponse#jobs #jobs} => Array&lt;Types::JobSummary&gt;
     #   * {Types::ListJobsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_jobs({
@@ -6266,6 +6616,8 @@ module Aws::IoT
     #   * {Types::ListMitigationActionsResponse#action_identifiers #action_identifiers} => Array&lt;Types::MitigationActionIdentifier&gt;
     #   * {Types::ListMitigationActionsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_mitigation_actions({
@@ -6305,6 +6657,8 @@ module Aws::IoT
     #   * {Types::ListOTAUpdatesResponse#ota_updates #ota_updates} => Array&lt;Types::OTAUpdateSummary&gt;
     #   * {Types::ListOTAUpdatesResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_ota_updates({
@@ -6345,6 +6699,8 @@ module Aws::IoT
     #   * {Types::ListOutgoingCertificatesResponse#outgoing_certificates #outgoing_certificates} => Array&lt;Types::OutgoingCertificate&gt;
     #   * {Types::ListOutgoingCertificatesResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_outgoing_certificates({
@@ -6388,6 +6744,8 @@ module Aws::IoT
     #   * {Types::ListPoliciesResponse#policies #policies} => Array&lt;Types::Policy&gt;
     #   * {Types::ListPoliciesResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_policies({
@@ -6433,6 +6791,8 @@ module Aws::IoT
     #   * {Types::ListPolicyPrincipalsResponse#principals #principals} => Array&lt;String&gt;
     #   * {Types::ListPolicyPrincipalsResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_policy_principals({
@@ -6497,7 +6857,11 @@ module Aws::IoT
     # [1]: https://docs.aws.amazon.com/cognitoidentity/latest/APIReference/API_GetCredentialsForIdentity.html#API_GetCredentialsForIdentity_RequestSyntax
     #
     # @option params [required, String] :principal
-    #   The principal.
+    #   The principal. Valid principals are CertificateArn
+    #   (arn:aws:iot:*region*\:*accountId*\:cert/*certificateId*),
+    #   thingGroupArn
+    #   (arn:aws:iot:*region*\:*accountId*\:thinggroup/*groupName*) and
+    #   CognitoId (*region*\:*id*).
     #
     # @option params [String] :marker
     #   The marker for the next set of results.
@@ -6514,6 +6878,8 @@ module Aws::IoT
     #   * {Types::ListPrincipalPoliciesResponse#policies #policies} => Array&lt;Types::Policy&gt;
     #   * {Types::ListPrincipalPoliciesResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_principal_policies({
@@ -6555,6 +6921,8 @@ module Aws::IoT
     #   * {Types::ListPrincipalThingsResponse#things #things} => Array&lt;String&gt;
     #   * {Types::ListPrincipalThingsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_principal_things({
@@ -6592,6 +6960,8 @@ module Aws::IoT
     #   * {Types::ListProvisioningTemplateVersionsResponse#versions #versions} => Array&lt;Types::ProvisioningTemplateVersionSummary&gt;
     #   * {Types::ListProvisioningTemplateVersionsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_provisioning_template_versions({
@@ -6628,6 +6998,8 @@ module Aws::IoT
     #   * {Types::ListProvisioningTemplatesResponse#templates #templates} => Array&lt;Types::ProvisioningTemplateSummary&gt;
     #   * {Types::ListProvisioningTemplatesResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_provisioning_templates({
@@ -6669,6 +7041,8 @@ module Aws::IoT
     #   * {Types::ListRoleAliasesResponse#role_aliases #role_aliases} => Array&lt;String&gt;
     #   * {Types::ListRoleAliasesResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_role_aliases({
@@ -6704,6 +7078,8 @@ module Aws::IoT
     #   * {Types::ListScheduledAuditsResponse#scheduled_audits #scheduled_audits} => Array&lt;Types::ScheduledAuditMetadata&gt;
     #   * {Types::ListScheduledAuditsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_scheduled_audits({
@@ -6747,6 +7123,8 @@ module Aws::IoT
     #   * {Types::ListSecurityProfilesResponse#security_profile_identifiers #security_profile_identifiers} => Array&lt;Types::SecurityProfileIdentifier&gt;
     #   * {Types::ListSecurityProfilesResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_security_profiles({
@@ -6790,6 +7168,8 @@ module Aws::IoT
     #   * {Types::ListSecurityProfilesForTargetResponse#security_profile_target_mappings #security_profile_target_mappings} => Array&lt;Types::SecurityProfileTargetMapping&gt;
     #   * {Types::ListSecurityProfilesForTargetResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_security_profiles_for_target({
@@ -6830,6 +7210,8 @@ module Aws::IoT
     #   * {Types::ListStreamsResponse#streams #streams} => Array&lt;Types::StreamSummary&gt;
     #   * {Types::ListStreamsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_streams({
@@ -6867,6 +7249,8 @@ module Aws::IoT
     #   * {Types::ListTagsForResourceResponse#tags #tags} => Array&lt;Types::Tag&gt;
     #   * {Types::ListTagsForResourceResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_tags_for_resource({
@@ -6904,6 +7288,8 @@ module Aws::IoT
     #   * {Types::ListTargetsForPolicyResponse#targets #targets} => Array&lt;String&gt;
     #   * {Types::ListTargetsForPolicyResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_targets_for_policy({
@@ -6942,6 +7328,8 @@ module Aws::IoT
     #   * {Types::ListTargetsForSecurityProfileResponse#security_profile_targets #security_profile_targets} => Array&lt;Types::SecurityProfileTarget&gt;
     #   * {Types::ListTargetsForSecurityProfileResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_targets_for_security_profile({
@@ -6987,6 +7375,8 @@ module Aws::IoT
     #   * {Types::ListThingGroupsResponse#thing_groups #thing_groups} => Array&lt;Types::GroupNameAndArn&gt;
     #   * {Types::ListThingGroupsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_thing_groups({
@@ -7027,6 +7417,8 @@ module Aws::IoT
     #   * {Types::ListThingGroupsForThingResponse#thing_groups #thing_groups} => Array&lt;Types::GroupNameAndArn&gt;
     #   * {Types::ListThingGroupsForThingResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_thing_groups_for_thing({
@@ -7098,6 +7490,8 @@ module Aws::IoT
     #   * {Types::ListThingRegistrationTaskReportsResponse#report_type #report_type} => String
     #   * {Types::ListThingRegistrationTaskReportsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_thing_registration_task_reports({
@@ -7137,6 +7531,8 @@ module Aws::IoT
     #   * {Types::ListThingRegistrationTasksResponse#task_ids #task_ids} => Array&lt;String&gt;
     #   * {Types::ListThingRegistrationTasksResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_thing_registration_tasks({
@@ -7174,6 +7570,8 @@ module Aws::IoT
     #   * {Types::ListThingTypesResponse#thing_types #thing_types} => Array&lt;Types::ThingTypeDefinition&gt;
     #   * {Types::ListThingTypesResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_thing_types({
@@ -7208,6 +7606,13 @@ module Aws::IoT
     # in the registry that contain an attribute **Color** with the value
     # **Red**.
     #
+    # <note markdown="1"> You will not be charged for calling this API if an `Access denied`
+    # error is returned. You will also not be charged if no attributes or
+    # pagination token was provided in request and no pagination token and
+    # no results were returned.
+    #
+    #  </note>
+    #
     # @option params [String] :next_token
     #   The token to retrieve the next set of results.
     #
@@ -7228,6 +7633,8 @@ module Aws::IoT
     #   * {Types::ListThingsResponse#things #things} => Array&lt;Types::ThingAttribute&gt;
     #   * {Types::ListThingsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_things({
@@ -7272,6 +7679,8 @@ module Aws::IoT
     #   * {Types::ListThingsInBillingGroupResponse#things #things} => Array&lt;String&gt;
     #   * {Types::ListThingsInBillingGroupResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_things_in_billing_group({
@@ -7313,6 +7722,8 @@ module Aws::IoT
     #   * {Types::ListThingsInThingGroupResponse#things #things} => Array&lt;String&gt;
     #   * {Types::ListThingsInThingGroupResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_things_in_thing_group({
@@ -7348,6 +7759,8 @@ module Aws::IoT
     #   * {Types::ListTopicRuleDestinationsResponse#destination_summaries #destination_summaries} => Array&lt;Types::TopicRuleDestinationSummary&gt;
     #   * {Types::ListTopicRuleDestinationsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_topic_rule_destinations({
@@ -7390,6 +7803,8 @@ module Aws::IoT
     #   * {Types::ListTopicRulesResponse#rules #rules} => Array&lt;Types::TopicRuleListItem&gt;
     #   * {Types::ListTopicRulesResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_topic_rules({
@@ -7434,6 +7849,8 @@ module Aws::IoT
     #   * {Types::ListV2LoggingLevelsResponse#log_target_configurations #log_target_configurations} => Array&lt;Types::LogTargetConfiguration&gt;
     #   * {Types::ListV2LoggingLevelsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_v2_logging_levels({
@@ -7487,6 +7904,8 @@ module Aws::IoT
     #   * {Types::ListViolationEventsResponse#violation_events #violation_events} => Array&lt;Types::ViolationEvent&gt;
     #   * {Types::ListViolationEventsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_violation_events({
@@ -7808,6 +8227,10 @@ module Aws::IoT
 
     # Remove the specified thing from the specified group.
     #
+    # You must specify either a `thingGroupArn` or a `thingGroupName` to
+    # identify the thing group and either a `thingArn` or a `thingName` to
+    # identify the thing to remove from the thing group.
+    #
     # @option params [String] :thing_group_name
     #   The group name.
     #
@@ -8538,7 +8961,11 @@ module Aws::IoT
     # gateway.
     #
     # @option params [String] :principal
-    #   The principal.
+    #   The principal. Valid principals are CertificateArn
+    #   (arn:aws:iot:*region*\:*accountId*\:cert/*certificateId*),
+    #   thingGroupArn
+    #   (arn:aws:iot:*region*\:*accountId*\:thinggroup/*groupName*) and
+    #   CognitoId (*region*\:*id*).
     #
     # @option params [String] :cognito_identity_pool_id
     #   The Cognito identity pool ID.
@@ -8798,6 +9225,58 @@ module Aws::IoT
       req.send_request(options)
     end
 
+    # Updates a Device Defender audit suppression.
+    #
+    # @option params [required, String] :check_name
+    #   An audit check name. Checks must be enabled for your account. (Use
+    #   `DescribeAccountAuditConfiguration` to see the list of all checks,
+    #   including those that are enabled or use
+    #   `UpdateAccountAuditConfiguration` to select which checks are enabled.)
+    #
+    # @option params [required, Types::ResourceIdentifier] :resource_identifier
+    #   Information that identifies the noncompliant resource.
+    #
+    # @option params [Time,DateTime,Date,Integer,String] :expiration_date
+    #   The expiration date (epoch timestamp in seconds) that you want the
+    #   suppression to adhere to.
+    #
+    # @option params [Boolean] :suppress_indefinitely
+    #   Indicates whether a suppression should exist indefinitely or not.
+    #
+    # @option params [String] :description
+    #   The description of the audit suppression.
+    #
+    # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.update_audit_suppression({
+    #     check_name: "AuditCheckName", # required
+    #     resource_identifier: { # required
+    #       device_certificate_id: "CertificateId",
+    #       ca_certificate_id: "CertificateId",
+    #       cognito_identity_pool_id: "CognitoIdentityPoolId",
+    #       client_id: "ClientId",
+    #       policy_version_identifier: {
+    #         policy_name: "PolicyName",
+    #         policy_version_id: "PolicyVersionId",
+    #       },
+    #       account: "AwsAccountId",
+    #       iam_role_arn: "RoleArn",
+    #       role_alias_arn: "RoleAliasArn",
+    #     },
+    #     expiration_date: Time.now,
+    #     suppress_indefinitely: false,
+    #     description: "AuditDescription",
+    #   })
+    #
+    # @overload update_audit_suppression(params = {})
+    # @param [Hash] params ({})
+    def update_audit_suppression(params = {}, options = {})
+      req = build_request(:update_audit_suppression, params)
+      req.send_request(options)
+    end
+
     # Updates an authorizer.
     #
     # @option params [required, String] :authorizer_name
@@ -8929,12 +9408,13 @@ module Aws::IoT
     # Updates the status of the specified certificate. This operation is
     # idempotent.
     #
-    # Moving a certificate from the ACTIVE state (including REVOKED) will
-    # not disconnect currently connected devices, but these devices will be
-    # unable to reconnect.
+    # Certificates must be in the ACTIVE state to authenticate devices that
+    # use a certificate to connect to AWS IoT.
     #
-    # The ACTIVE state is required to authenticate devices connecting to AWS
-    # IoT using a certificate.
+    # Within a few minutes of updating a certificate from the ACTIVE state
+    # to any other state, AWS IoT disconnects all devices that used that
+    # certificate to connect. Devices cannot use a certificate that is not
+    # in the ACTIVE state to reconnect.
     #
     # @option params [required, String] :certificate_id
     #   The ID of the certificate. (The last part of the certificate ARN
@@ -9927,7 +10407,7 @@ module Aws::IoT
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-iot'
-      context[:gem_version] = '1.51.1'
+      context[:gem_version] = '1.56.0'
       Seahorse::Client::Request.new(handlers, context)
     end