aws-sdk-iot 1.53.0 → 1.58.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 9e8a1d28d2845d4576e5eaef405d1c8cb46a0cec2095cab987aa396ca0e0a34d
-  data.tar.gz: 7e5048c21c70a98bb170a0910918805eb9b415c3ac925baed28ae5466b09017a
+  metadata.gz: 850296b7409e4ff85c578ba17e6f2c4fc1dcf67b3611ce500243a8d03b595a76
+  data.tar.gz: 2d93dd80a9e7dbdfba2b8109e4ff47917586c6f36c05c8e98b17a386629b7b9b
 SHA512:
-  metadata.gz: 1d0fb64242996f85fb5d6537e2e51f997b537331c91dd894cf0e052199745d0e72d0aa427389e5b5c0b57502423e82e478d48de2981ce229d02bf3d1d28d192b
-  data.tar.gz: 884ab55ab715003842604c54e026efeb5e48160c196a53f5136b2d99d2ca62c31ca955904e72b8f696ad9049c59423fdd974ea6b438103542105fb9ad332fc3e
+  metadata.gz: f8a4569f4f37626dc71f220ff8d44e9a2d89690feccb29e9d54df29277a5418cfe79136044dbf69a4ba6591d33a6105d1403fee44e9b0ab0b27a70c5638e1647
+  data.tar.gz: 2fa346b63b92cecc0c3c90016251eece0636cf5071349463ba56d61d7c8e0472acdeedc997a775d379babc4e1e42ed9be65f15da01918b5c7d6f42bc7b8f534b

data/lib/aws-sdk-iot.rb

@@ -7,6 +7,7 @@
 #
 # WARNING ABOUT GENERATED CODE
 
+
 require 'aws-sdk-core'
 require 'aws-sigv4'
 
@@ -44,9 +45,9 @@ require_relative 'aws-sdk-iot/customizations'
 #
 # See {Errors} for more information.
 #
-# @service
+# @!group service
 module Aws::IoT
 
-  GEM_VERSION = '1.53.0'
+  GEM_VERSION = '1.58.0'
 
 end

data/lib/aws-sdk-iot/client.rb

@@ -85,13 +85,28 @@ module Aws::IoT
     #     * `Aws::Credentials` - Used for configuring static, non-refreshing
     #       credentials.
     #
+    #     * `Aws::SharedCredentials` - Used for loading static credentials from a
+    #       shared file, such as `~/.aws/config`.
+    #
+    #     * `Aws::AssumeRoleCredentials` - Used when you need to assume a role.
+    #
+    #     * `Aws::AssumeRoleWebIdentityCredentials` - Used when you need to
+    #       assume a role after providing credentials via the web.
+    #
+    #     * `Aws::SSOCredentials` - Used for loading credentials from AWS SSO using an
+    #       access token generated from `aws login`.
+    #
+    #     * `Aws::ProcessCredentials` - Used for loading credentials from a
+    #       process that outputs to stdout.
+    #
     #     * `Aws::InstanceProfileCredentials` - Used for loading credentials
     #       from an EC2 IMDS on an EC2 instance.
     #
-    #     * `Aws::SharedCredentials` - Used for loading credentials from a
-    #       shared file, such as `~/.aws/config`.
+    #     * `Aws::ECSCredentials` - Used for loading credentials from
+    #       instances running in ECS.
     #
-    #     * `Aws::AssumeRoleCredentials` - Used when you need to assume a role.
+    #     * `Aws::CognitoIdentityCredentials` - Used for loading credentials
+    #       from the Cognito Identity service.
     #
     #     When `:credentials` are not configured directly, the following
     #     locations will be searched for credentials:
@@ -101,10 +116,10 @@ module Aws::IoT
     #     * ENV['AWS_ACCESS_KEY_ID'], ENV['AWS_SECRET_ACCESS_KEY']
     #     * `~/.aws/credentials`
     #     * `~/.aws/config`
-    #     * EC2 IMDS instance profile - When used by default, the timeouts are
-    #       very aggressive. Construct and pass an instance of
-    #       `Aws::InstanceProfileCredentails` to enable retries and extended
-    #       timeouts.
+    #     * EC2/ECS IMDS instance profile - When used by default, the timeouts
+    #       are very aggressive. Construct and pass an instance of
+    #       `Aws::InstanceProfileCredentails` or `Aws::ECSCredentials` to
+    #       enable retries and extended timeouts.
     #
     #   @option options [required, String] :region
     #     The AWS region to connect to.  The configured `:region` is
@@ -785,6 +800,64 @@ module Aws::IoT
       req.send_request(options)
     end
 
+    # Creates a Device Defender audit suppression.
+    #
+    # @option params [required, String] :check_name
+    #   An audit check name. Checks must be enabled for your account. (Use
+    #   `DescribeAccountAuditConfiguration` to see the list of all checks,
+    #   including those that are enabled or use
+    #   `UpdateAccountAuditConfiguration` to select which checks are enabled.)
+    #
+    # @option params [required, Types::ResourceIdentifier] :resource_identifier
+    #   Information that identifies the noncompliant resource.
+    #
+    # @option params [Time,DateTime,Date,Integer,String] :expiration_date
+    #   The epoch timestamp in seconds at which this suppression expires.
+    #
+    # @option params [Boolean] :suppress_indefinitely
+    #   Indicates whether a suppression should exist indefinitely or not.
+    #
+    # @option params [String] :description
+    #   The description of the audit suppression.
+    #
+    # @option params [required, String] :client_request_token
+    #   The epoch timestamp in seconds at which this suppression expires.
+    #
+    #   **A suitable default value is auto-generated.** You should normally
+    #   not need to pass this option.**
+    #
+    # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.create_audit_suppression({
+    #     check_name: "AuditCheckName", # required
+    #     resource_identifier: { # required
+    #       device_certificate_id: "CertificateId",
+    #       ca_certificate_id: "CertificateId",
+    #       cognito_identity_pool_id: "CognitoIdentityPoolId",
+    #       client_id: "ClientId",
+    #       policy_version_identifier: {
+    #         policy_name: "PolicyName",
+    #         policy_version_id: "PolicyVersionId",
+    #       },
+    #       account: "AwsAccountId",
+    #       iam_role_arn: "RoleArn",
+    #       role_alias_arn: "RoleAliasArn",
+    #     },
+    #     expiration_date: Time.now,
+    #     suppress_indefinitely: false,
+    #     description: "AuditDescription",
+    #     client_request_token: "ClientRequestToken", # required
+    #   })
+    #
+    # @overload create_audit_suppression(params = {})
+    # @param [Hash] params ({})
+    def create_audit_suppression(params = {}, options = {})
+      req = build_request(:create_audit_suppression, params)
+      req.send_request(options)
+    end
+
     # Creates an authorizer.
     #
     # @option params [required, String] :authorizer_name
@@ -1382,8 +1455,14 @@ module Aws::IoT
     end
 
     # Defines an action that can be applied to audit findings by using
-    # StartAuditMitigationActionsTask. Each mitigation action can apply only
-    # one type of change.
+    # StartAuditMitigationActionsTask. Only certain types of mitigation
+    # actions can be applied to specific check names. For more information,
+    # see [Mitigation actions][1]. Each mitigation action can apply only one
+    # type of change.
+    #
+    #
+    #
+    # [1]: https://docs.aws.amazon.com/iot/latest/developerguide/device-defender-mitigation-actions.html
     #
     # @option params [required, String] :action_name
     #   A friendly name for the action. Choose a friendly name that accurately
@@ -2508,6 +2587,21 @@ module Aws::IoT
     #             state_machine_name: "StateMachineName", # required
     #             role_arn: "AwsArn", # required
     #           },
+    #           timestream: {
+    #             role_arn: "AwsArn", # required
+    #             database_name: "TimestreamDatabaseName", # required
+    #             table_name: "TimestreamTableName", # required
+    #             dimensions: [ # required
+    #               {
+    #                 name: "TimestreamDimensionName", # required
+    #                 value: "TimestreamDimensionValue", # required
+    #               },
+    #             ],
+    #             timestamp: {
+    #               value: "TimestreamTimestampValue", # required
+    #               unit: "TimestreamTimestampUnit", # required
+    #             },
+    #           },
     #           http: {
     #             url: "Url", # required
     #             confirmation_url: "Url",
@@ -2652,6 +2746,21 @@ module Aws::IoT
     #           state_machine_name: "StateMachineName", # required
     #           role_arn: "AwsArn", # required
     #         },
+    #         timestream: {
+    #           role_arn: "AwsArn", # required
+    #           database_name: "TimestreamDatabaseName", # required
+    #           table_name: "TimestreamTableName", # required
+    #           dimensions: [ # required
+    #             {
+    #               name: "TimestreamDimensionName", # required
+    #               value: "TimestreamDimensionValue", # required
+    #             },
+    #           ],
+    #           timestamp: {
+    #             value: "TimestreamTimestampValue", # required
+    #             unit: "TimestreamTimestampUnit", # required
+    #           },
+    #         },
     #         http: {
     #           url: "Url", # required
     #           confirmation_url: "Url",
@@ -2737,6 +2846,45 @@ module Aws::IoT
       req.send_request(options)
     end
 
+    # Deletes a Device Defender audit suppression.
+    #
+    # @option params [required, String] :check_name
+    #   An audit check name. Checks must be enabled for your account. (Use
+    #   `DescribeAccountAuditConfiguration` to see the list of all checks,
+    #   including those that are enabled or use
+    #   `UpdateAccountAuditConfiguration` to select which checks are enabled.)
+    #
+    # @option params [required, Types::ResourceIdentifier] :resource_identifier
+    #   Information that identifies the noncompliant resource.
+    #
+    # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.delete_audit_suppression({
+    #     check_name: "AuditCheckName", # required
+    #     resource_identifier: { # required
+    #       device_certificate_id: "CertificateId",
+    #       ca_certificate_id: "CertificateId",
+    #       cognito_identity_pool_id: "CognitoIdentityPoolId",
+    #       client_id: "ClientId",
+    #       policy_version_identifier: {
+    #         policy_name: "PolicyName",
+    #         policy_version_id: "PolicyVersionId",
+    #       },
+    #       account: "AwsAccountId",
+    #       iam_role_arn: "RoleArn",
+    #       role_alias_arn: "RoleAliasArn",
+    #     },
+    #   })
+    #
+    # @overload delete_audit_suppression(params = {})
+    # @param [Hash] params ({})
+    def delete_audit_suppression(params = {}, options = {})
+      req = build_request(:delete_audit_suppression, params)
+      req.send_request(options)
+    end
+
     # Deletes an authorizer.
     #
     # @option params [required, String] :authorizer_name
@@ -3502,6 +3650,7 @@ module Aws::IoT
     #   resp.finding.related_resources[0].additional_info["String"] #=> String
     #   resp.finding.reason_for_non_compliance #=> String
     #   resp.finding.reason_for_non_compliance_code #=> String
+    #   resp.finding.is_suppressed #=> Boolean
     #
     # @overload describe_audit_finding(params = {})
     # @param [Hash] params ({})
@@ -3575,6 +3724,67 @@ module Aws::IoT
       req.send_request(options)
     end
 
+    # Gets information about a Device Defender audit suppression.
+    #
+    # @option params [required, String] :check_name
+    #   An audit check name. Checks must be enabled for your account. (Use
+    #   `DescribeAccountAuditConfiguration` to see the list of all checks,
+    #   including those that are enabled or use
+    #   `UpdateAccountAuditConfiguration` to select which checks are enabled.)
+    #
+    # @option params [required, Types::ResourceIdentifier] :resource_identifier
+    #   Information that identifies the noncompliant resource.
+    #
+    # @return [Types::DescribeAuditSuppressionResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::DescribeAuditSuppressionResponse#check_name #check_name} => String
+    #   * {Types::DescribeAuditSuppressionResponse#resource_identifier #resource_identifier} => Types::ResourceIdentifier
+    #   * {Types::DescribeAuditSuppressionResponse#expiration_date #expiration_date} => Time
+    #   * {Types::DescribeAuditSuppressionResponse#suppress_indefinitely #suppress_indefinitely} => Boolean
+    #   * {Types::DescribeAuditSuppressionResponse#description #description} => String
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.describe_audit_suppression({
+    #     check_name: "AuditCheckName", # required
+    #     resource_identifier: { # required
+    #       device_certificate_id: "CertificateId",
+    #       ca_certificate_id: "CertificateId",
+    #       cognito_identity_pool_id: "CognitoIdentityPoolId",
+    #       client_id: "ClientId",
+    #       policy_version_identifier: {
+    #         policy_name: "PolicyName",
+    #         policy_version_id: "PolicyVersionId",
+    #       },
+    #       account: "AwsAccountId",
+    #       iam_role_arn: "RoleArn",
+    #       role_alias_arn: "RoleAliasArn",
+    #     },
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.check_name #=> String
+    #   resp.resource_identifier.device_certificate_id #=> String
+    #   resp.resource_identifier.ca_certificate_id #=> String
+    #   resp.resource_identifier.cognito_identity_pool_id #=> String
+    #   resp.resource_identifier.client_id #=> String
+    #   resp.resource_identifier.policy_version_identifier.policy_name #=> String
+    #   resp.resource_identifier.policy_version_identifier.policy_version_id #=> String
+    #   resp.resource_identifier.account #=> String
+    #   resp.resource_identifier.iam_role_arn #=> String
+    #   resp.resource_identifier.role_alias_arn #=> String
+    #   resp.expiration_date #=> Time
+    #   resp.suppress_indefinitely #=> Boolean
+    #   resp.description #=> String
+    #
+    # @overload describe_audit_suppression(params = {})
+    # @param [Hash] params ({})
+    def describe_audit_suppression(params = {}, options = {})
+      req = build_request(:describe_audit_suppression, params)
+      req.send_request(options)
+    end
+
     # Gets information about a Device Defender audit.
     #
     # @option params [required, String] :task_id
@@ -3613,6 +3823,7 @@ module Aws::IoT
     #   resp.audit_details["AuditCheckName"].check_compliant #=> Boolean
     #   resp.audit_details["AuditCheckName"].total_resources_count #=> Integer
     #   resp.audit_details["AuditCheckName"].non_compliant_resources_count #=> Integer
+    #   resp.audit_details["AuditCheckName"].suppressed_non_compliant_resources_count #=> Integer
     #   resp.audit_details["AuditCheckName"].error_code #=> String
     #   resp.audit_details["AuditCheckName"].message #=> String
     #
@@ -4614,8 +4825,11 @@ module Aws::IoT
     # @option params [required, String] :principal
     #   The principal.
     #
-    #   If the principal is a certificate, specify the certificate ARN. If the
-    #   principal is an Amazon Cognito identity, specify the identity ID.
+    #   Valid principals are CertificateArn
+    #   (arn:aws:iot:*region*\:*accountId*\:cert/*certificateId*),
+    #   thingGroupArn
+    #   (arn:aws:iot:*region*\:*accountId*\:thinggroup/*groupName*) and
+    #   CognitoId (*region*\:*id*).
     #
     # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
     #
@@ -4775,7 +4989,11 @@ module Aws::IoT
     # device gateway.
     #
     # @option params [String] :principal
-    #   The principal.
+    #   The principal. Valid principals are CertificateArn
+    #   (arn:aws:iot:*region*\:*accountId*\:cert/*certificateId*),
+    #   thingGroupArn
+    #   (arn:aws:iot:*region*\:*accountId*\:thinggroup/*groupName*) and
+    #   CognitoId (*region*\:*id*).
     #
     # @option params [String] :cognito_identity_pool_id
     #   The Cognito identity pool ID.
@@ -5261,6 +5479,14 @@ module Aws::IoT
     #   resp.rule.actions[0].step_functions.execution_name_prefix #=> String
     #   resp.rule.actions[0].step_functions.state_machine_name #=> String
     #   resp.rule.actions[0].step_functions.role_arn #=> String
+    #   resp.rule.actions[0].timestream.role_arn #=> String
+    #   resp.rule.actions[0].timestream.database_name #=> String
+    #   resp.rule.actions[0].timestream.table_name #=> String
+    #   resp.rule.actions[0].timestream.dimensions #=> Array
+    #   resp.rule.actions[0].timestream.dimensions[0].name #=> String
+    #   resp.rule.actions[0].timestream.dimensions[0].value #=> String
+    #   resp.rule.actions[0].timestream.timestamp.value #=> String
+    #   resp.rule.actions[0].timestream.timestamp.unit #=> String
     #   resp.rule.actions[0].http.url #=> String
     #   resp.rule.actions[0].http.confirmation_url #=> String
     #   resp.rule.actions[0].http.headers #=> Array
@@ -5345,6 +5571,14 @@ module Aws::IoT
     #   resp.rule.error_action.step_functions.execution_name_prefix #=> String
     #   resp.rule.error_action.step_functions.state_machine_name #=> String
     #   resp.rule.error_action.step_functions.role_arn #=> String
+    #   resp.rule.error_action.timestream.role_arn #=> String
+    #   resp.rule.error_action.timestream.database_name #=> String
+    #   resp.rule.error_action.timestream.table_name #=> String
+    #   resp.rule.error_action.timestream.dimensions #=> Array
+    #   resp.rule.error_action.timestream.dimensions[0].name #=> String
+    #   resp.rule.error_action.timestream.dimensions[0].value #=> String
+    #   resp.rule.error_action.timestream.timestamp.value #=> String
+    #   resp.rule.error_action.timestream.timestamp.unit #=> String
     #   resp.rule.error_action.http.url #=> String
     #   resp.rule.error_action.http.confirmation_url #=> String
     #   resp.rule.error_action.http.headers #=> Array
@@ -5432,6 +5666,8 @@ module Aws::IoT
     #   * {Types::ListActiveViolationsResponse#active_violations #active_violations} => Array<Types::ActiveViolation>
     #   * {Types::ListActiveViolationsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_active_violations({
@@ -5480,7 +5716,12 @@ module Aws::IoT
     # Lists the policies attached to the specified thing group.
     #
     # @option params [required, String] :target
-    #   The group or principal for which the policies will be listed.
+    #   The group or principal for which the policies will be listed. Valid
+    #   principals are CertificateArn
+    #   (arn:aws:iot:*region*\:*accountId*\:cert/*certificateId*),
+    #   thingGroupArn
+    #   (arn:aws:iot:*region*\:*accountId*\:thinggroup/*groupName*) and
+    #   CognitoId (*region*\:*id*).
     #
     # @option params [Boolean] :recursive
     #   When true, recursively list attached policies.
@@ -5496,6 +5737,8 @@ module Aws::IoT
     #   * {Types::ListAttachedPoliciesResponse#policies #policies} => Array<Types::Policy>
     #   * {Types::ListAttachedPoliciesResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_attached_policies({
@@ -5521,7 +5764,7 @@ module Aws::IoT
 
     # Lists the findings (results) of a Device Defender audit or of the
     # audits performed during a specified time period. (Findings are
-    # retained for 180 days.)
+    # retained for 90 days.)
     #
     # @option params [String] :task_id
     #   A filter to limit results to the audit with the specified ID. You must
@@ -5551,11 +5794,19 @@ module Aws::IoT
     #   You must specify either the startTime and endTime or the taskId, but
     #   not both.
     #
+    # @option params [Boolean] :list_suppressed_findings
+    #   Boolean flag indicating whether only the suppressed findings or the
+    #   unsuppressed findings should be listed. If this parameter isn't
+    #   provided, the response will list both suppressed and unsuppressed
+    #   findings.
+    #
     # @return [Types::ListAuditFindingsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::ListAuditFindingsResponse#findings #findings} => Array<Types::AuditFinding>
     #   * {Types::ListAuditFindingsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_audit_findings({
@@ -5578,6 +5829,7 @@ module Aws::IoT
     #     next_token: "NextToken",
     #     start_time: Time.now,
     #     end_time: Time.now,
+    #     list_suppressed_findings: false,
     #   })
     #
     # @example Response structure
@@ -5616,6 +5868,7 @@ module Aws::IoT
     #   resp.findings[0].related_resources[0].additional_info["String"] #=> String
     #   resp.findings[0].reason_for_non_compliance #=> String
     #   resp.findings[0].reason_for_non_compliance_code #=> String
+    #   resp.findings[0].is_suppressed #=> Boolean
     #   resp.next_token #=> String
     #
     # @overload list_audit_findings(params = {})
@@ -5650,6 +5903,8 @@ module Aws::IoT
     #   * {Types::ListAuditMitigationActionsExecutionsResponse#actions_executions #actions_executions} => Array<Types::AuditMitigationActionExecutionMetadata>
     #   * {Types::ListAuditMitigationActionsExecutionsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_audit_mitigation_actions_executions({
@@ -5716,6 +5971,8 @@ module Aws::IoT
     #   * {Types::ListAuditMitigationActionsTasksResponse#tasks #tasks} => Array<Types::AuditMitigationActionsTaskMetadata>
     #   * {Types::ListAuditMitigationActionsTasksResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_audit_mitigation_actions_tasks({
@@ -5743,12 +6000,89 @@ module Aws::IoT
       req.send_request(options)
     end
 
+    # Lists your Device Defender audit listings.
+    #
+    # @option params [String] :check_name
+    #   An audit check name. Checks must be enabled for your account. (Use
+    #   `DescribeAccountAuditConfiguration` to see the list of all checks,
+    #   including those that are enabled or use
+    #   `UpdateAccountAuditConfiguration` to select which checks are enabled.)
+    #
+    # @option params [Types::ResourceIdentifier] :resource_identifier
+    #   Information that identifies the noncompliant resource.
+    #
+    # @option params [Boolean] :ascending_order
+    #   Determines whether suppressions are listed in ascending order by
+    #   expiration date or not. If parameter isn't provided,
+    #   `ascendingOrder=true`.
+    #
+    # @option params [String] :next_token
+    #   The token for the next set of results.
+    #
+    # @option params [Integer] :max_results
+    #   The maximum number of results to return at one time. The default is
+    #   25.
+    #
+    # @return [Types::ListAuditSuppressionsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::ListAuditSuppressionsResponse#suppressions #suppressions} => Array<Types::AuditSuppression>
+    #   * {Types::ListAuditSuppressionsResponse#next_token #next_token} => String
+    #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.list_audit_suppressions({
+    #     check_name: "AuditCheckName",
+    #     resource_identifier: {
+    #       device_certificate_id: "CertificateId",
+    #       ca_certificate_id: "CertificateId",
+    #       cognito_identity_pool_id: "CognitoIdentityPoolId",
+    #       client_id: "ClientId",
+    #       policy_version_identifier: {
+    #         policy_name: "PolicyName",
+    #         policy_version_id: "PolicyVersionId",
+    #       },
+    #       account: "AwsAccountId",
+    #       iam_role_arn: "RoleArn",
+    #       role_alias_arn: "RoleAliasArn",
+    #     },
+    #     ascending_order: false,
+    #     next_token: "NextToken",
+    #     max_results: 1,
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.suppressions #=> Array
+    #   resp.suppressions[0].check_name #=> String
+    #   resp.suppressions[0].resource_identifier.device_certificate_id #=> String
+    #   resp.suppressions[0].resource_identifier.ca_certificate_id #=> String
+    #   resp.suppressions[0].resource_identifier.cognito_identity_pool_id #=> String
+    #   resp.suppressions[0].resource_identifier.client_id #=> String
+    #   resp.suppressions[0].resource_identifier.policy_version_identifier.policy_name #=> String
+    #   resp.suppressions[0].resource_identifier.policy_version_identifier.policy_version_id #=> String
+    #   resp.suppressions[0].resource_identifier.account #=> String
+    #   resp.suppressions[0].resource_identifier.iam_role_arn #=> String
+    #   resp.suppressions[0].resource_identifier.role_alias_arn #=> String
+    #   resp.suppressions[0].expiration_date #=> Time
+    #   resp.suppressions[0].suppress_indefinitely #=> Boolean
+    #   resp.suppressions[0].description #=> String
+    #   resp.next_token #=> String
+    #
+    # @overload list_audit_suppressions(params = {})
+    # @param [Hash] params ({})
+    def list_audit_suppressions(params = {}, options = {})
+      req = build_request(:list_audit_suppressions, params)
+      req.send_request(options)
+    end
+
     # Lists the Device Defender audits that have been performed during a
     # given time period.
     #
     # @option params [required, Time,DateTime,Date,Integer,String] :start_time
     #   The beginning of the time period. Audit information is retained for a
-    #   limited time (180 days). Requesting a start time prior to what is
+    #   limited time (90 days). Requesting a start time prior to what is
     #   retained results in an "InvalidRequestException".
     #
     # @option params [required, Time,DateTime,Date,Integer,String] :end_time
@@ -5775,6 +6109,8 @@ module Aws::IoT
     #   * {Types::ListAuditTasksResponse#tasks #tasks} => Array<Types::AuditTaskMetadata>
     #   * {Types::ListAuditTasksResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_audit_tasks({
@@ -5820,6 +6156,8 @@ module Aws::IoT
     #   * {Types::ListAuthorizersResponse#authorizers #authorizers} => Array<Types::AuthorizerSummary>
     #   * {Types::ListAuthorizersResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_authorizers({
@@ -5859,6 +6197,8 @@ module Aws::IoT
     #   * {Types::ListBillingGroupsResponse#billing_groups #billing_groups} => Array<Types::GroupNameAndArn>
     #   * {Types::ListBillingGroupsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_billing_groups({
@@ -5900,6 +6240,8 @@ module Aws::IoT
     #   * {Types::ListCACertificatesResponse#certificates #certificates} => Array<Types::CACertificate>
     #   * {Types::ListCACertificatesResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_ca_certificates({
@@ -5944,6 +6286,8 @@ module Aws::IoT
     #   * {Types::ListCertificatesResponse#certificates #certificates} => Array<Types::Certificate>
     #   * {Types::ListCertificatesResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_certificates({
@@ -5990,6 +6334,8 @@ module Aws::IoT
     #   * {Types::ListCertificatesByCAResponse#certificates #certificates} => Array<Types::Certificate>
     #   * {Types::ListCertificatesByCAResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_certificates_by_ca({
@@ -6029,6 +6375,8 @@ module Aws::IoT
     #   * {Types::ListDimensionsResponse#dimension_names #dimension_names} => Array<String>
     #   * {Types::ListDimensionsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_dimensions({
@@ -6071,6 +6419,8 @@ module Aws::IoT
     #   * {Types::ListDomainConfigurationsResponse#domain_configurations #domain_configurations} => Array<Types::DomainConfigurationSummary>
     #   * {Types::ListDomainConfigurationsResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_domain_configurations({
@@ -6108,6 +6458,8 @@ module Aws::IoT
     #   * {Types::ListIndicesResponse#index_names #index_names} => Array<String>
     #   * {Types::ListIndicesResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_indices({
@@ -6147,6 +6499,8 @@ module Aws::IoT
     #   * {Types::ListJobExecutionsForJobResponse#execution_summaries #execution_summaries} => Array<Types::JobExecutionSummaryForJob>
     #   * {Types::ListJobExecutionsForJobResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_job_executions_for_job({
@@ -6194,6 +6548,8 @@ module Aws::IoT
     #   * {Types::ListJobExecutionsForThingResponse#execution_summaries #execution_summaries} => Array<Types::JobExecutionSummaryForThing>
     #   * {Types::ListJobExecutionsForThingResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_job_executions_for_thing({
@@ -6254,6 +6610,8 @@ module Aws::IoT
     #   * {Types::ListJobsResponse#jobs #jobs} => Array<Types::JobSummary>
     #   * {Types::ListJobsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_jobs({
@@ -6304,6 +6662,8 @@ module Aws::IoT
     #   * {Types::ListMitigationActionsResponse#action_identifiers #action_identifiers} => Array<Types::MitigationActionIdentifier>
     #   * {Types::ListMitigationActionsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_mitigation_actions({
@@ -6343,6 +6703,8 @@ module Aws::IoT
     #   * {Types::ListOTAUpdatesResponse#ota_updates #ota_updates} => Array<Types::OTAUpdateSummary>
     #   * {Types::ListOTAUpdatesResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_ota_updates({
@@ -6383,6 +6745,8 @@ module Aws::IoT
     #   * {Types::ListOutgoingCertificatesResponse#outgoing_certificates #outgoing_certificates} => Array<Types::OutgoingCertificate>
     #   * {Types::ListOutgoingCertificatesResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_outgoing_certificates({
@@ -6426,6 +6790,8 @@ module Aws::IoT
     #   * {Types::ListPoliciesResponse#policies #policies} => Array<Types::Policy>
     #   * {Types::ListPoliciesResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_policies({
@@ -6471,6 +6837,8 @@ module Aws::IoT
     #   * {Types::ListPolicyPrincipalsResponse#principals #principals} => Array<String>
     #   * {Types::ListPolicyPrincipalsResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_policy_principals({
@@ -6535,7 +6903,11 @@ module Aws::IoT
     # [1]: https://docs.aws.amazon.com/cognitoidentity/latest/APIReference/API_GetCredentialsForIdentity.html#API_GetCredentialsForIdentity_RequestSyntax
     #
     # @option params [required, String] :principal
-    #   The principal.
+    #   The principal. Valid principals are CertificateArn
+    #   (arn:aws:iot:*region*\:*accountId*\:cert/*certificateId*),
+    #   thingGroupArn
+    #   (arn:aws:iot:*region*\:*accountId*\:thinggroup/*groupName*) and
+    #   CognitoId (*region*\:*id*).
     #
     # @option params [String] :marker
     #   The marker for the next set of results.
@@ -6552,6 +6924,8 @@ module Aws::IoT
     #   * {Types::ListPrincipalPoliciesResponse#policies #policies} => Array<Types::Policy>
     #   * {Types::ListPrincipalPoliciesResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_principal_policies({
@@ -6593,6 +6967,8 @@ module Aws::IoT
     #   * {Types::ListPrincipalThingsResponse#things #things} => Array<String>
     #   * {Types::ListPrincipalThingsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_principal_things({
@@ -6630,6 +7006,8 @@ module Aws::IoT
     #   * {Types::ListProvisioningTemplateVersionsResponse#versions #versions} => Array<Types::ProvisioningTemplateVersionSummary>
     #   * {Types::ListProvisioningTemplateVersionsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_provisioning_template_versions({
@@ -6666,6 +7044,8 @@ module Aws::IoT
     #   * {Types::ListProvisioningTemplatesResponse#templates #templates} => Array<Types::ProvisioningTemplateSummary>
     #   * {Types::ListProvisioningTemplatesResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_provisioning_templates({
@@ -6707,6 +7087,8 @@ module Aws::IoT
     #   * {Types::ListRoleAliasesResponse#role_aliases #role_aliases} => Array<String>
     #   * {Types::ListRoleAliasesResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_role_aliases({
@@ -6742,6 +7124,8 @@ module Aws::IoT
     #   * {Types::ListScheduledAuditsResponse#scheduled_audits #scheduled_audits} => Array<Types::ScheduledAuditMetadata>
     #   * {Types::ListScheduledAuditsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_scheduled_audits({
@@ -6785,6 +7169,8 @@ module Aws::IoT
     #   * {Types::ListSecurityProfilesResponse#security_profile_identifiers #security_profile_identifiers} => Array<Types::SecurityProfileIdentifier>
     #   * {Types::ListSecurityProfilesResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_security_profiles({
@@ -6828,6 +7214,8 @@ module Aws::IoT
     #   * {Types::ListSecurityProfilesForTargetResponse#security_profile_target_mappings #security_profile_target_mappings} => Array<Types::SecurityProfileTargetMapping>
     #   * {Types::ListSecurityProfilesForTargetResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_security_profiles_for_target({
@@ -6868,6 +7256,8 @@ module Aws::IoT
     #   * {Types::ListStreamsResponse#streams #streams} => Array<Types::StreamSummary>
     #   * {Types::ListStreamsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_streams({
@@ -6905,6 +7295,8 @@ module Aws::IoT
     #   * {Types::ListTagsForResourceResponse#tags #tags} => Array<Types::Tag>
     #   * {Types::ListTagsForResourceResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_tags_for_resource({
@@ -6942,6 +7334,8 @@ module Aws::IoT
     #   * {Types::ListTargetsForPolicyResponse#targets #targets} => Array<String>
     #   * {Types::ListTargetsForPolicyResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_targets_for_policy({
@@ -6980,6 +7374,8 @@ module Aws::IoT
     #   * {Types::ListTargetsForSecurityProfileResponse#security_profile_targets #security_profile_targets} => Array<Types::SecurityProfileTarget>
     #   * {Types::ListTargetsForSecurityProfileResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_targets_for_security_profile({
@@ -7025,6 +7421,8 @@ module Aws::IoT
     #   * {Types::ListThingGroupsResponse#thing_groups #thing_groups} => Array<Types::GroupNameAndArn>
     #   * {Types::ListThingGroupsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_thing_groups({
@@ -7065,6 +7463,8 @@ module Aws::IoT
     #   * {Types::ListThingGroupsForThingResponse#thing_groups #thing_groups} => Array<Types::GroupNameAndArn>
     #   * {Types::ListThingGroupsForThingResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_thing_groups_for_thing({
@@ -7136,6 +7536,8 @@ module Aws::IoT
     #   * {Types::ListThingRegistrationTaskReportsResponse#report_type #report_type} => String
     #   * {Types::ListThingRegistrationTaskReportsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_thing_registration_task_reports({
@@ -7175,6 +7577,8 @@ module Aws::IoT
     #   * {Types::ListThingRegistrationTasksResponse#task_ids #task_ids} => Array<String>
     #   * {Types::ListThingRegistrationTasksResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_thing_registration_tasks({
@@ -7212,6 +7616,8 @@ module Aws::IoT
     #   * {Types::ListThingTypesResponse#thing_types #thing_types} => Array<Types::ThingTypeDefinition>
     #   * {Types::ListThingTypesResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_thing_types({
@@ -7246,6 +7652,13 @@ module Aws::IoT
     # in the registry that contain an attribute **Color** with the value
     # **Red**.
     #
+    # <note markdown="1"> You will not be charged for calling this API if an `Access denied`
+    # error is returned. You will also not be charged if no attributes or
+    # pagination token was provided in request and no pagination token and
+    # no results were returned.
+    #
+    #  </note>
+    #
     # @option params [String] :next_token
     #   The token to retrieve the next set of results.
     #
@@ -7266,6 +7679,8 @@ module Aws::IoT
     #   * {Types::ListThingsResponse#things #things} => Array&lt;Types::ThingAttribute&gt;
     #   * {Types::ListThingsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_things({
@@ -7310,6 +7725,8 @@ module Aws::IoT
     #   * {Types::ListThingsInBillingGroupResponse#things #things} => Array&lt;String&gt;
     #   * {Types::ListThingsInBillingGroupResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_things_in_billing_group({
@@ -7351,6 +7768,8 @@ module Aws::IoT
     #   * {Types::ListThingsInThingGroupResponse#things #things} => Array&lt;String&gt;
     #   * {Types::ListThingsInThingGroupResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_things_in_thing_group({
@@ -7386,6 +7805,8 @@ module Aws::IoT
     #   * {Types::ListTopicRuleDestinationsResponse#destination_summaries #destination_summaries} => Array&lt;Types::TopicRuleDestinationSummary&gt;
     #   * {Types::ListTopicRuleDestinationsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_topic_rule_destinations({
@@ -7428,6 +7849,8 @@ module Aws::IoT
     #   * {Types::ListTopicRulesResponse#rules #rules} => Array&lt;Types::TopicRuleListItem&gt;
     #   * {Types::ListTopicRulesResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_topic_rules({
@@ -7472,6 +7895,8 @@ module Aws::IoT
     #   * {Types::ListV2LoggingLevelsResponse#log_target_configurations #log_target_configurations} => Array&lt;Types::LogTargetConfiguration&gt;
     #   * {Types::ListV2LoggingLevelsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_v2_logging_levels({
@@ -7525,6 +7950,8 @@ module Aws::IoT
     #   * {Types::ListViolationEventsResponse#violation_events #violation_events} => Array&lt;Types::ViolationEvent&gt;
     #   * {Types::ListViolationEventsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_violation_events({
@@ -8024,6 +8451,21 @@ module Aws::IoT
     #             state_machine_name: "StateMachineName", # required
     #             role_arn: "AwsArn", # required
     #           },
+    #           timestream: {
+    #             role_arn: "AwsArn", # required
+    #             database_name: "TimestreamDatabaseName", # required
+    #             table_name: "TimestreamTableName", # required
+    #             dimensions: [ # required
+    #               {
+    #                 name: "TimestreamDimensionName", # required
+    #                 value: "TimestreamDimensionValue", # required
+    #               },
+    #             ],
+    #             timestamp: {
+    #               value: "TimestreamTimestampValue", # required
+    #               unit: "TimestreamTimestampUnit", # required
+    #             },
+    #           },
     #           http: {
     #             url: "Url", # required
     #             confirmation_url: "Url",
@@ -8168,6 +8610,21 @@ module Aws::IoT
     #           state_machine_name: "StateMachineName", # required
     #           role_arn: "AwsArn", # required
     #         },
+    #         timestream: {
+    #           role_arn: "AwsArn", # required
+    #           database_name: "TimestreamDatabaseName", # required
+    #           table_name: "TimestreamTableName", # required
+    #           dimensions: [ # required
+    #             {
+    #               name: "TimestreamDimensionName", # required
+    #               value: "TimestreamDimensionValue", # required
+    #             },
+    #           ],
+    #           timestamp: {
+    #             value: "TimestreamTimestampValue", # required
+    #             unit: "TimestreamTimestampUnit", # required
+    #           },
+    #         },
     #         http: {
     #           url: "Url", # required
     #           confirmation_url: "Url",
@@ -8580,7 +9037,11 @@ module Aws::IoT
     # gateway.
     #
     # @option params [String] :principal
-    #   The principal.
+    #   The principal. Valid principals are CertificateArn
+    #   (arn:aws:iot:*region*\:*accountId*\:cert/*certificateId*),
+    #   thingGroupArn
+    #   (arn:aws:iot:*region*\:*accountId*\:thinggroup/*groupName*) and
+    #   CognitoId (*region*\:*id*).
     #
     # @option params [String] :cognito_identity_pool_id
     #   The Cognito identity pool ID.
@@ -8840,6 +9301,58 @@ module Aws::IoT
       req.send_request(options)
     end
 
+    # Updates a Device Defender audit suppression.
+    #
+    # @option params [required, String] :check_name
+    #   An audit check name. Checks must be enabled for your account. (Use
+    #   `DescribeAccountAuditConfiguration` to see the list of all checks,
+    #   including those that are enabled or use
+    #   `UpdateAccountAuditConfiguration` to select which checks are enabled.)
+    #
+    # @option params [required, Types::ResourceIdentifier] :resource_identifier
+    #   Information that identifies the noncompliant resource.
+    #
+    # @option params [Time,DateTime,Date,Integer,String] :expiration_date
+    #   The expiration date (epoch timestamp in seconds) that you want the
+    #   suppression to adhere to.
+    #
+    # @option params [Boolean] :suppress_indefinitely
+    #   Indicates whether a suppression should exist indefinitely or not.
+    #
+    # @option params [String] :description
+    #   The description of the audit suppression.
+    #
+    # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.update_audit_suppression({
+    #     check_name: "AuditCheckName", # required
+    #     resource_identifier: { # required
+    #       device_certificate_id: "CertificateId",
+    #       ca_certificate_id: "CertificateId",
+    #       cognito_identity_pool_id: "CognitoIdentityPoolId",
+    #       client_id: "ClientId",
+    #       policy_version_identifier: {
+    #         policy_name: "PolicyName",
+    #         policy_version_id: "PolicyVersionId",
+    #       },
+    #       account: "AwsAccountId",
+    #       iam_role_arn: "RoleArn",
+    #       role_alias_arn: "RoleAliasArn",
+    #     },
+    #     expiration_date: Time.now,
+    #     suppress_indefinitely: false,
+    #     description: "AuditDescription",
+    #   })
+    #
+    # @overload update_audit_suppression(params = {})
+    # @param [Hash] params ({})
+    def update_audit_suppression(params = {}, options = {})
+      req = build_request(:update_audit_suppression, params)
+      req.send_request(options)
+    end
+
     # Updates an authorizer.
     #
     # @option params [required, String] :authorizer_name
@@ -8971,12 +9484,13 @@ module Aws::IoT
     # Updates the status of the specified certificate. This operation is
     # idempotent.
     #
-    # Moving a certificate from the ACTIVE state (including REVOKED) will
-    # not disconnect currently connected devices, but these devices will be
-    # unable to reconnect.
+    # Certificates must be in the ACTIVE state to authenticate devices that
+    # use a certificate to connect to AWS IoT.
     #
-    # The ACTIVE state is required to authenticate devices connecting to AWS
-    # IoT using a certificate.
+    # Within a few minutes of updating a certificate from the ACTIVE state
+    # to any other state, AWS IoT disconnects all devices that used that
+    # certificate to connect. Devices cannot use a certificate that is not
+    # in the ACTIVE state to reconnect.
     #
     # @option params [required, String] :certificate_id
     #   The ID of the certificate. (The last part of the certificate ARN
@@ -9969,7 +10483,7 @@ module Aws::IoT
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-iot'
-      context[:gem_version] = '1.53.0'
+      context[:gem_version] = '1.58.0'
       Seahorse::Client::Request.new(handlers, context)
     end