aws-sdk-iot 1.54.0 → 1.59.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: a4394dd35da5f9a54e44e6ea555f31e9945d61adc50802a0fdf05bf7bb8aaa57
-  data.tar.gz: 97213885a6d71516a6e7febbbaca52ea26a0546a722dccc90a2b88fc2748fd3b
+  metadata.gz: ab7824aa7d6f7254404e0bfcb0bdb6f9f4016af28948086b81e3021442bb7d68
+  data.tar.gz: 2add98c241dda9ffb0eff5c68dd1c2a57ae604acae884c1dc3a1c0a99d50b914
 SHA512:
-  metadata.gz: f80072f13e0b574bee87c90dfadd9ff88fde6ba31aafe833bf8d5ba69653def38f83b59f63fed5843e9a153ec9bdfdeca8573c87ae7eec3a69d7298e8ac120b5
-  data.tar.gz: 0ef2fdb69f3b59a8efb609d66efe35fb292e65f1003fbd8c89837e232fa86d187eefb63c1ed2ec31ecff715764912b5972ae0a13f4be526a19382f128b21d815
+  metadata.gz: 6c2c9c7f8901d548908431f29f76214e42a11edacd55e3d50ed16b296662ab7b9354e525da55ab19761bf6431ade9311e749a3fe0744c035ea630d8826e33376
+  data.tar.gz: c8dc7e1f90d1e7b80ef74f9b92858d724e5b3817b70afa89a5b1004949a1535805eb235f562cd6ab230a595a381776d0b325f9fa96bb024e956eda7e8ef018be

data/lib/aws-sdk-iot.rb

@@ -7,6 +7,7 @@
 #
 # WARNING ABOUT GENERATED CODE
 
+
 require 'aws-sdk-core'
 require 'aws-sigv4'
 
@@ -44,9 +45,9 @@ require_relative 'aws-sdk-iot/customizations'
 #
 # See {Errors} for more information.
 #
-# @service
+# @!group service
 module Aws::IoT
 
-  GEM_VERSION = '1.54.0'
+  GEM_VERSION = '1.59.0'
 
 end

data/lib/aws-sdk-iot/client.rb

@@ -85,13 +85,28 @@ module Aws::IoT
     #     * `Aws::Credentials` - Used for configuring static, non-refreshing
     #       credentials.
     #
+    #     * `Aws::SharedCredentials` - Used for loading static credentials from a
+    #       shared file, such as `~/.aws/config`.
+    #
+    #     * `Aws::AssumeRoleCredentials` - Used when you need to assume a role.
+    #
+    #     * `Aws::AssumeRoleWebIdentityCredentials` - Used when you need to
+    #       assume a role after providing credentials via the web.
+    #
+    #     * `Aws::SSOCredentials` - Used for loading credentials from AWS SSO using an
+    #       access token generated from `aws login`.
+    #
+    #     * `Aws::ProcessCredentials` - Used for loading credentials from a
+    #       process that outputs to stdout.
+    #
     #     * `Aws::InstanceProfileCredentials` - Used for loading credentials
     #       from an EC2 IMDS on an EC2 instance.
     #
-    #     * `Aws::SharedCredentials` - Used for loading credentials from a
-    #       shared file, such as `~/.aws/config`.
+    #     * `Aws::ECSCredentials` - Used for loading credentials from
+    #       instances running in ECS.
     #
-    #     * `Aws::AssumeRoleCredentials` - Used when you need to assume a role.
+    #     * `Aws::CognitoIdentityCredentials` - Used for loading credentials
+    #       from the Cognito Identity service.
     #
     #     When `:credentials` are not configured directly, the following
     #     locations will be searched for credentials:
@@ -101,10 +116,10 @@ module Aws::IoT
     #     * ENV['AWS_ACCESS_KEY_ID'], ENV['AWS_SECRET_ACCESS_KEY']
     #     * `~/.aws/credentials`
     #     * `~/.aws/config`
-    #     * EC2 IMDS instance profile - When used by default, the timeouts are
-    #       very aggressive. Construct and pass an instance of
-    #       `Aws::InstanceProfileCredentails` to enable retries and extended
-    #       timeouts.
+    #     * EC2/ECS IMDS instance profile - When used by default, the timeouts
+    #       are very aggressive. Construct and pass an instance of
+    #       `Aws::InstanceProfileCredentails` or `Aws::ECSCredentials` to
+    #       enable retries and extended timeouts.
     #
     #   @option options [required, String] :region
     #     The AWS region to connect to.  The configured `:region` is
@@ -785,6 +800,64 @@ module Aws::IoT
       req.send_request(options)
     end
 
+    # Creates a Device Defender audit suppression.
+    #
+    # @option params [required, String] :check_name
+    #   An audit check name. Checks must be enabled for your account. (Use
+    #   `DescribeAccountAuditConfiguration` to see the list of all checks,
+    #   including those that are enabled or use
+    #   `UpdateAccountAuditConfiguration` to select which checks are enabled.)
+    #
+    # @option params [required, Types::ResourceIdentifier] :resource_identifier
+    #   Information that identifies the noncompliant resource.
+    #
+    # @option params [Time,DateTime,Date,Integer,String] :expiration_date
+    #   The epoch timestamp in seconds at which this suppression expires.
+    #
+    # @option params [Boolean] :suppress_indefinitely
+    #   Indicates whether a suppression should exist indefinitely or not.
+    #
+    # @option params [String] :description
+    #   The description of the audit suppression.
+    #
+    # @option params [required, String] :client_request_token
+    #   The epoch timestamp in seconds at which this suppression expires.
+    #
+    #   **A suitable default value is auto-generated.** You should normally
+    #   not need to pass this option.**
+    #
+    # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.create_audit_suppression({
+    #     check_name: "AuditCheckName", # required
+    #     resource_identifier: { # required
+    #       device_certificate_id: "CertificateId",
+    #       ca_certificate_id: "CertificateId",
+    #       cognito_identity_pool_id: "CognitoIdentityPoolId",
+    #       client_id: "ClientId",
+    #       policy_version_identifier: {
+    #         policy_name: "PolicyName",
+    #         policy_version_id: "PolicyVersionId",
+    #       },
+    #       account: "AwsAccountId",
+    #       iam_role_arn: "RoleArn",
+    #       role_alias_arn: "RoleAliasArn",
+    #     },
+    #     expiration_date: Time.now,
+    #     suppress_indefinitely: false,
+    #     description: "AuditDescription",
+    #     client_request_token: "ClientRequestToken", # required
+    #   })
+    #
+    # @overload create_audit_suppression(params = {})
+    # @param [Hash] params ({})
+    def create_audit_suppression(params = {}, options = {})
+      req = build_request(:create_audit_suppression, params)
+      req.send_request(options)
+    end
+
     # Creates an authorizer.
     #
     # @option params [required, String] :authorizer_name
@@ -1382,8 +1455,14 @@ module Aws::IoT
     end
 
     # Defines an action that can be applied to audit findings by using
-    # StartAuditMitigationActionsTask. Each mitigation action can apply only
-    # one type of change.
+    # StartAuditMitigationActionsTask. Only certain types of mitigation
+    # actions can be applied to specific check names. For more information,
+    # see [Mitigation actions][1]. Each mitigation action can apply only one
+    # type of change.
+    #
+    #
+    #
+    # [1]: https://docs.aws.amazon.com/iot/latest/developerguide/device-defender-mitigation-actions.html
     #
     # @option params [required, String] :action_name
     #   A friendly name for the action. Choose a friendly name that accurately
@@ -2022,13 +2101,13 @@ module Aws::IoT
     #   (thing) violates a behavior.
     #
     # @option params [Array<String>] :additional_metrics_to_retain
+    #   *Please use CreateSecurityProfileRequest$additionalMetricsToRetainV2
+    #   instead.*
+    #
     #   A list of metrics whose data is retained (stored). By default, data is
     #   retained for any metric used in the profile's `behaviors`, but it is
     #   also retained for any metric specified here.
     #
-    #   **Note:** This API field is deprecated. Please use
-    #   CreateSecurityProfileRequest$additionalMetricsToRetainV2 instead.
-    #
     # @option params [Array<Types::MetricToRetain>] :additional_metrics_to_retain_v2
     #   A list of metrics whose data is retained (stored). By default, data is
     #   retained for any metric used in the profile's `behaviors`, but it is
@@ -2508,6 +2587,21 @@ module Aws::IoT
     #             state_machine_name: "StateMachineName", # required
     #             role_arn: "AwsArn", # required
     #           },
+    #           timestream: {
+    #             role_arn: "AwsArn", # required
+    #             database_name: "TimestreamDatabaseName", # required
+    #             table_name: "TimestreamTableName", # required
+    #             dimensions: [ # required
+    #               {
+    #                 name: "TimestreamDimensionName", # required
+    #                 value: "TimestreamDimensionValue", # required
+    #               },
+    #             ],
+    #             timestamp: {
+    #               value: "TimestreamTimestampValue", # required
+    #               unit: "TimestreamTimestampUnit", # required
+    #             },
+    #           },
     #           http: {
     #             url: "Url", # required
     #             confirmation_url: "Url",
@@ -2652,6 +2746,21 @@ module Aws::IoT
     #           state_machine_name: "StateMachineName", # required
     #           role_arn: "AwsArn", # required
     #         },
+    #         timestream: {
+    #           role_arn: "AwsArn", # required
+    #           database_name: "TimestreamDatabaseName", # required
+    #           table_name: "TimestreamTableName", # required
+    #           dimensions: [ # required
+    #             {
+    #               name: "TimestreamDimensionName", # required
+    #               value: "TimestreamDimensionValue", # required
+    #             },
+    #           ],
+    #           timestamp: {
+    #             value: "TimestreamTimestampValue", # required
+    #             unit: "TimestreamTimestampUnit", # required
+    #           },
+    #         },
     #         http: {
     #           url: "Url", # required
     #           confirmation_url: "Url",
@@ -2737,6 +2846,45 @@ module Aws::IoT
       req.send_request(options)
     end
 
+    # Deletes a Device Defender audit suppression.
+    #
+    # @option params [required, String] :check_name
+    #   An audit check name. Checks must be enabled for your account. (Use
+    #   `DescribeAccountAuditConfiguration` to see the list of all checks,
+    #   including those that are enabled or use
+    #   `UpdateAccountAuditConfiguration` to select which checks are enabled.)
+    #
+    # @option params [required, Types::ResourceIdentifier] :resource_identifier
+    #   Information that identifies the noncompliant resource.
+    #
+    # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.delete_audit_suppression({
+    #     check_name: "AuditCheckName", # required
+    #     resource_identifier: { # required
+    #       device_certificate_id: "CertificateId",
+    #       ca_certificate_id: "CertificateId",
+    #       cognito_identity_pool_id: "CognitoIdentityPoolId",
+    #       client_id: "ClientId",
+    #       policy_version_identifier: {
+    #         policy_name: "PolicyName",
+    #         policy_version_id: "PolicyVersionId",
+    #       },
+    #       account: "AwsAccountId",
+    #       iam_role_arn: "RoleArn",
+    #       role_alias_arn: "RoleAliasArn",
+    #     },
+    #   })
+    #
+    # @overload delete_audit_suppression(params = {})
+    # @param [Hash] params ({})
+    def delete_audit_suppression(params = {}, options = {})
+      req = build_request(:delete_audit_suppression, params)
+      req.send_request(options)
+    end
+
     # Deletes an authorizer.
     #
     # @option params [required, String] :authorizer_name
@@ -3502,6 +3650,7 @@ module Aws::IoT
     #   resp.finding.related_resources[0].additional_info["String"] #=> String
     #   resp.finding.reason_for_non_compliance #=> String
     #   resp.finding.reason_for_non_compliance_code #=> String
+    #   resp.finding.is_suppressed #=> Boolean
     #
     # @overload describe_audit_finding(params = {})
     # @param [Hash] params ({})
@@ -3575,6 +3724,67 @@ module Aws::IoT
       req.send_request(options)
     end
 
+    # Gets information about a Device Defender audit suppression.
+    #
+    # @option params [required, String] :check_name
+    #   An audit check name. Checks must be enabled for your account. (Use
+    #   `DescribeAccountAuditConfiguration` to see the list of all checks,
+    #   including those that are enabled or use
+    #   `UpdateAccountAuditConfiguration` to select which checks are enabled.)
+    #
+    # @option params [required, Types::ResourceIdentifier] :resource_identifier
+    #   Information that identifies the noncompliant resource.
+    #
+    # @return [Types::DescribeAuditSuppressionResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::DescribeAuditSuppressionResponse#check_name #check_name} => String
+    #   * {Types::DescribeAuditSuppressionResponse#resource_identifier #resource_identifier} => Types::ResourceIdentifier
+    #   * {Types::DescribeAuditSuppressionResponse#expiration_date #expiration_date} => Time
+    #   * {Types::DescribeAuditSuppressionResponse#suppress_indefinitely #suppress_indefinitely} => Boolean
+    #   * {Types::DescribeAuditSuppressionResponse#description #description} => String
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.describe_audit_suppression({
+    #     check_name: "AuditCheckName", # required
+    #     resource_identifier: { # required
+    #       device_certificate_id: "CertificateId",
+    #       ca_certificate_id: "CertificateId",
+    #       cognito_identity_pool_id: "CognitoIdentityPoolId",
+    #       client_id: "ClientId",
+    #       policy_version_identifier: {
+    #         policy_name: "PolicyName",
+    #         policy_version_id: "PolicyVersionId",
+    #       },
+    #       account: "AwsAccountId",
+    #       iam_role_arn: "RoleArn",
+    #       role_alias_arn: "RoleAliasArn",
+    #     },
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.check_name #=> String
+    #   resp.resource_identifier.device_certificate_id #=> String
+    #   resp.resource_identifier.ca_certificate_id #=> String
+    #   resp.resource_identifier.cognito_identity_pool_id #=> String
+    #   resp.resource_identifier.client_id #=> String
+    #   resp.resource_identifier.policy_version_identifier.policy_name #=> String
+    #   resp.resource_identifier.policy_version_identifier.policy_version_id #=> String
+    #   resp.resource_identifier.account #=> String
+    #   resp.resource_identifier.iam_role_arn #=> String
+    #   resp.resource_identifier.role_alias_arn #=> String
+    #   resp.expiration_date #=> Time
+    #   resp.suppress_indefinitely #=> Boolean
+    #   resp.description #=> String
+    #
+    # @overload describe_audit_suppression(params = {})
+    # @param [Hash] params ({})
+    def describe_audit_suppression(params = {}, options = {})
+      req = build_request(:describe_audit_suppression, params)
+      req.send_request(options)
+    end
+
     # Gets information about a Device Defender audit.
     #
     # @option params [required, String] :task_id
@@ -3613,6 +3823,7 @@ module Aws::IoT
     #   resp.audit_details["AuditCheckName"].check_compliant #=> Boolean
     #   resp.audit_details["AuditCheckName"].total_resources_count #=> Integer
     #   resp.audit_details["AuditCheckName"].non_compliant_resources_count #=> Integer
+    #   resp.audit_details["AuditCheckName"].suppressed_non_compliant_resources_count #=> Integer
     #   resp.audit_details["AuditCheckName"].error_code #=> String
     #   resp.audit_details["AuditCheckName"].message #=> String
     #
@@ -3863,6 +4074,7 @@ module Aws::IoT
     #   * {Types::DescribeDomainConfigurationResponse#domain_configuration_status #domain_configuration_status} => String
     #   * {Types::DescribeDomainConfigurationResponse#service_type #service_type} => String
     #   * {Types::DescribeDomainConfigurationResponse#domain_type #domain_type} => String
+    #   * {Types::DescribeDomainConfigurationResponse#last_status_change_date #last_status_change_date} => Time
     #
     # @example Request syntax with placeholder values
     #
@@ -3884,6 +4096,7 @@ module Aws::IoT
     #   resp.domain_configuration_status #=> String, one of "ENABLED", "DISABLED"
     #   resp.service_type #=> String, one of "DATA", "CREDENTIAL_PROVIDER", "JOBS"
     #   resp.domain_type #=> String, one of "ENDPOINT", "AWS_MANAGED", "CUSTOMER_MANAGED"
+    #   resp.last_status_change_date #=> Time
     #
     # @overload describe_domain_configuration(params = {})
     # @param [Hash] params ({})
@@ -4614,8 +4827,11 @@ module Aws::IoT
     # @option params [required, String] :principal
     #   The principal.
     #
-    #   If the principal is a certificate, specify the certificate ARN. If the
-    #   principal is an Amazon Cognito identity, specify the identity ID.
+    #   Valid principals are CertificateArn
+    #   (arn:aws:iot:*region*\:*accountId*\:cert/*certificateId*),
+    #   thingGroupArn
+    #   (arn:aws:iot:*region*\:*accountId*\:thinggroup/*groupName*) and
+    #   CognitoId (*region*\:*id*).
     #
     # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
     #
@@ -4775,7 +4991,11 @@ module Aws::IoT
     # device gateway.
     #
     # @option params [String] :principal
-    #   The principal.
+    #   The principal. Valid principals are CertificateArn
+    #   (arn:aws:iot:*region*\:*accountId*\:cert/*certificateId*),
+    #   thingGroupArn
+    #   (arn:aws:iot:*region*\:*accountId*\:thinggroup/*groupName*) and
+    #   CognitoId (*region*\:*id*).
     #
     # @option params [String] :cognito_identity_pool_id
     #   The Cognito identity pool ID.
@@ -5261,6 +5481,14 @@ module Aws::IoT
     #   resp.rule.actions[0].step_functions.execution_name_prefix #=> String
     #   resp.rule.actions[0].step_functions.state_machine_name #=> String
     #   resp.rule.actions[0].step_functions.role_arn #=> String
+    #   resp.rule.actions[0].timestream.role_arn #=> String
+    #   resp.rule.actions[0].timestream.database_name #=> String
+    #   resp.rule.actions[0].timestream.table_name #=> String
+    #   resp.rule.actions[0].timestream.dimensions #=> Array
+    #   resp.rule.actions[0].timestream.dimensions[0].name #=> String
+    #   resp.rule.actions[0].timestream.dimensions[0].value #=> String
+    #   resp.rule.actions[0].timestream.timestamp.value #=> String
+    #   resp.rule.actions[0].timestream.timestamp.unit #=> String
     #   resp.rule.actions[0].http.url #=> String
     #   resp.rule.actions[0].http.confirmation_url #=> String
     #   resp.rule.actions[0].http.headers #=> Array
@@ -5345,6 +5573,14 @@ module Aws::IoT
     #   resp.rule.error_action.step_functions.execution_name_prefix #=> String
     #   resp.rule.error_action.step_functions.state_machine_name #=> String
     #   resp.rule.error_action.step_functions.role_arn #=> String
+    #   resp.rule.error_action.timestream.role_arn #=> String
+    #   resp.rule.error_action.timestream.database_name #=> String
+    #   resp.rule.error_action.timestream.table_name #=> String
+    #   resp.rule.error_action.timestream.dimensions #=> Array
+    #   resp.rule.error_action.timestream.dimensions[0].name #=> String
+    #   resp.rule.error_action.timestream.dimensions[0].value #=> String
+    #   resp.rule.error_action.timestream.timestamp.value #=> String
+    #   resp.rule.error_action.timestream.timestamp.unit #=> String
     #   resp.rule.error_action.http.url #=> String
     #   resp.rule.error_action.http.confirmation_url #=> String
     #   resp.rule.error_action.http.headers #=> Array
@@ -5432,6 +5668,8 @@ module Aws::IoT
     #   * {Types::ListActiveViolationsResponse#active_violations #active_violations} => Array&lt;Types::ActiveViolation&gt;
     #   * {Types::ListActiveViolationsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_active_violations({
@@ -5480,7 +5718,12 @@ module Aws::IoT
     # Lists the policies attached to the specified thing group.
     #
     # @option params [required, String] :target
-    #   The group or principal for which the policies will be listed.
+    #   The group or principal for which the policies will be listed. Valid
+    #   principals are CertificateArn
+    #   (arn:aws:iot:*region*\:*accountId*\:cert/*certificateId*),
+    #   thingGroupArn
+    #   (arn:aws:iot:*region*\:*accountId*\:thinggroup/*groupName*) and
+    #   CognitoId (*region*\:*id*).
     #
     # @option params [Boolean] :recursive
     #   When true, recursively list attached policies.
@@ -5496,6 +5739,8 @@ module Aws::IoT
     #   * {Types::ListAttachedPoliciesResponse#policies #policies} => Array&lt;Types::Policy&gt;
     #   * {Types::ListAttachedPoliciesResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_attached_policies({
@@ -5521,7 +5766,7 @@ module Aws::IoT
 
     # Lists the findings (results) of a Device Defender audit or of the
     # audits performed during a specified time period. (Findings are
-    # retained for 180 days.)
+    # retained for 90 days.)
     #
     # @option params [String] :task_id
     #   A filter to limit results to the audit with the specified ID. You must
@@ -5551,11 +5796,19 @@ module Aws::IoT
     #   You must specify either the startTime and endTime or the taskId, but
     #   not both.
     #
+    # @option params [Boolean] :list_suppressed_findings
+    #   Boolean flag indicating whether only the suppressed findings or the
+    #   unsuppressed findings should be listed. If this parameter isn't
+    #   provided, the response will list both suppressed and unsuppressed
+    #   findings.
+    #
     # @return [Types::ListAuditFindingsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::ListAuditFindingsResponse#findings #findings} => Array&lt;Types::AuditFinding&gt;
     #   * {Types::ListAuditFindingsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_audit_findings({
@@ -5578,6 +5831,7 @@ module Aws::IoT
     #     next_token: "NextToken",
     #     start_time: Time.now,
     #     end_time: Time.now,
+    #     list_suppressed_findings: false,
     #   })
     #
     # @example Response structure
@@ -5616,6 +5870,7 @@ module Aws::IoT
     #   resp.findings[0].related_resources[0].additional_info["String"] #=> String
     #   resp.findings[0].reason_for_non_compliance #=> String
     #   resp.findings[0].reason_for_non_compliance_code #=> String
+    #   resp.findings[0].is_suppressed #=> Boolean
     #   resp.next_token #=> String
     #
     # @overload list_audit_findings(params = {})
@@ -5650,6 +5905,8 @@ module Aws::IoT
     #   * {Types::ListAuditMitigationActionsExecutionsResponse#actions_executions #actions_executions} => Array&lt;Types::AuditMitigationActionExecutionMetadata&gt;
     #   * {Types::ListAuditMitigationActionsExecutionsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_audit_mitigation_actions_executions({
@@ -5716,6 +5973,8 @@ module Aws::IoT
     #   * {Types::ListAuditMitigationActionsTasksResponse#tasks #tasks} => Array&lt;Types::AuditMitigationActionsTaskMetadata&gt;
     #   * {Types::ListAuditMitigationActionsTasksResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_audit_mitigation_actions_tasks({
@@ -5743,12 +6002,89 @@ module Aws::IoT
       req.send_request(options)
     end
 
+    # Lists your Device Defender audit listings.
+    #
+    # @option params [String] :check_name
+    #   An audit check name. Checks must be enabled for your account. (Use
+    #   `DescribeAccountAuditConfiguration` to see the list of all checks,
+    #   including those that are enabled or use
+    #   `UpdateAccountAuditConfiguration` to select which checks are enabled.)
+    #
+    # @option params [Types::ResourceIdentifier] :resource_identifier
+    #   Information that identifies the noncompliant resource.
+    #
+    # @option params [Boolean] :ascending_order
+    #   Determines whether suppressions are listed in ascending order by
+    #   expiration date or not. If parameter isn't provided,
+    #   `ascendingOrder=true`.
+    #
+    # @option params [String] :next_token
+    #   The token for the next set of results.
+    #
+    # @option params [Integer] :max_results
+    #   The maximum number of results to return at one time. The default is
+    #   25.
+    #
+    # @return [Types::ListAuditSuppressionsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::ListAuditSuppressionsResponse#suppressions #suppressions} => Array&lt;Types::AuditSuppression&gt;
+    #   * {Types::ListAuditSuppressionsResponse#next_token #next_token} => String
+    #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.list_audit_suppressions({
+    #     check_name: "AuditCheckName",
+    #     resource_identifier: {
+    #       device_certificate_id: "CertificateId",
+    #       ca_certificate_id: "CertificateId",
+    #       cognito_identity_pool_id: "CognitoIdentityPoolId",
+    #       client_id: "ClientId",
+    #       policy_version_identifier: {
+    #         policy_name: "PolicyName",
+    #         policy_version_id: "PolicyVersionId",
+    #       },
+    #       account: "AwsAccountId",
+    #       iam_role_arn: "RoleArn",
+    #       role_alias_arn: "RoleAliasArn",
+    #     },
+    #     ascending_order: false,
+    #     next_token: "NextToken",
+    #     max_results: 1,
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.suppressions #=> Array
+    #   resp.suppressions[0].check_name #=> String
+    #   resp.suppressions[0].resource_identifier.device_certificate_id #=> String
+    #   resp.suppressions[0].resource_identifier.ca_certificate_id #=> String
+    #   resp.suppressions[0].resource_identifier.cognito_identity_pool_id #=> String
+    #   resp.suppressions[0].resource_identifier.client_id #=> String
+    #   resp.suppressions[0].resource_identifier.policy_version_identifier.policy_name #=> String
+    #   resp.suppressions[0].resource_identifier.policy_version_identifier.policy_version_id #=> String
+    #   resp.suppressions[0].resource_identifier.account #=> String
+    #   resp.suppressions[0].resource_identifier.iam_role_arn #=> String
+    #   resp.suppressions[0].resource_identifier.role_alias_arn #=> String
+    #   resp.suppressions[0].expiration_date #=> Time
+    #   resp.suppressions[0].suppress_indefinitely #=> Boolean
+    #   resp.suppressions[0].description #=> String
+    #   resp.next_token #=> String
+    #
+    # @overload list_audit_suppressions(params = {})
+    # @param [Hash] params ({})
+    def list_audit_suppressions(params = {}, options = {})
+      req = build_request(:list_audit_suppressions, params)
+      req.send_request(options)
+    end
+
     # Lists the Device Defender audits that have been performed during a
     # given time period.
     #
     # @option params [required, Time,DateTime,Date,Integer,String] :start_time
     #   The beginning of the time period. Audit information is retained for a
-    #   limited time (180 days). Requesting a start time prior to what is
+    #   limited time (90 days). Requesting a start time prior to what is
     #   retained results in an "InvalidRequestException".
     #
     # @option params [required, Time,DateTime,Date,Integer,String] :end_time
@@ -5775,6 +6111,8 @@ module Aws::IoT
     #   * {Types::ListAuditTasksResponse#tasks #tasks} => Array&lt;Types::AuditTaskMetadata&gt;
     #   * {Types::ListAuditTasksResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_audit_tasks({
@@ -5820,6 +6158,8 @@ module Aws::IoT
     #   * {Types::ListAuthorizersResponse#authorizers #authorizers} => Array&lt;Types::AuthorizerSummary&gt;
     #   * {Types::ListAuthorizersResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_authorizers({
@@ -5859,6 +6199,8 @@ module Aws::IoT
     #   * {Types::ListBillingGroupsResponse#billing_groups #billing_groups} => Array&lt;Types::GroupNameAndArn&gt;
     #   * {Types::ListBillingGroupsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_billing_groups({
@@ -5900,6 +6242,8 @@ module Aws::IoT
     #   * {Types::ListCACertificatesResponse#certificates #certificates} => Array&lt;Types::CACertificate&gt;
     #   * {Types::ListCACertificatesResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_ca_certificates({
@@ -5944,6 +6288,8 @@ module Aws::IoT
     #   * {Types::ListCertificatesResponse#certificates #certificates} => Array&lt;Types::Certificate&gt;
     #   * {Types::ListCertificatesResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_certificates({
@@ -5990,6 +6336,8 @@ module Aws::IoT
     #   * {Types::ListCertificatesByCAResponse#certificates #certificates} => Array&lt;Types::Certificate&gt;
     #   * {Types::ListCertificatesByCAResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_certificates_by_ca({
@@ -6029,6 +6377,8 @@ module Aws::IoT
     #   * {Types::ListDimensionsResponse#dimension_names #dimension_names} => Array&lt;String&gt;
     #   * {Types::ListDimensionsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_dimensions({
@@ -6071,6 +6421,8 @@ module Aws::IoT
     #   * {Types::ListDomainConfigurationsResponse#domain_configurations #domain_configurations} => Array&lt;Types::DomainConfigurationSummary&gt;
     #   * {Types::ListDomainConfigurationsResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_domain_configurations({
@@ -6108,6 +6460,8 @@ module Aws::IoT
     #   * {Types::ListIndicesResponse#index_names #index_names} => Array&lt;String&gt;
     #   * {Types::ListIndicesResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_indices({
@@ -6147,6 +6501,8 @@ module Aws::IoT
     #   * {Types::ListJobExecutionsForJobResponse#execution_summaries #execution_summaries} => Array&lt;Types::JobExecutionSummaryForJob&gt;
     #   * {Types::ListJobExecutionsForJobResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_job_executions_for_job({
@@ -6194,6 +6550,8 @@ module Aws::IoT
     #   * {Types::ListJobExecutionsForThingResponse#execution_summaries #execution_summaries} => Array&lt;Types::JobExecutionSummaryForThing&gt;
     #   * {Types::ListJobExecutionsForThingResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_job_executions_for_thing({
@@ -6254,6 +6612,8 @@ module Aws::IoT
     #   * {Types::ListJobsResponse#jobs #jobs} => Array&lt;Types::JobSummary&gt;
     #   * {Types::ListJobsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_jobs({
@@ -6304,6 +6664,8 @@ module Aws::IoT
     #   * {Types::ListMitigationActionsResponse#action_identifiers #action_identifiers} => Array&lt;Types::MitigationActionIdentifier&gt;
     #   * {Types::ListMitigationActionsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_mitigation_actions({
@@ -6343,6 +6705,8 @@ module Aws::IoT
     #   * {Types::ListOTAUpdatesResponse#ota_updates #ota_updates} => Array&lt;Types::OTAUpdateSummary&gt;
     #   * {Types::ListOTAUpdatesResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_ota_updates({
@@ -6383,6 +6747,8 @@ module Aws::IoT
     #   * {Types::ListOutgoingCertificatesResponse#outgoing_certificates #outgoing_certificates} => Array&lt;Types::OutgoingCertificate&gt;
     #   * {Types::ListOutgoingCertificatesResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_outgoing_certificates({
@@ -6426,6 +6792,8 @@ module Aws::IoT
     #   * {Types::ListPoliciesResponse#policies #policies} => Array&lt;Types::Policy&gt;
     #   * {Types::ListPoliciesResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_policies({
@@ -6471,6 +6839,8 @@ module Aws::IoT
     #   * {Types::ListPolicyPrincipalsResponse#principals #principals} => Array&lt;String&gt;
     #   * {Types::ListPolicyPrincipalsResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_policy_principals({
@@ -6535,7 +6905,11 @@ module Aws::IoT
     # [1]: https://docs.aws.amazon.com/cognitoidentity/latest/APIReference/API_GetCredentialsForIdentity.html#API_GetCredentialsForIdentity_RequestSyntax
     #
     # @option params [required, String] :principal
-    #   The principal.
+    #   The principal. Valid principals are CertificateArn
+    #   (arn:aws:iot:*region*\:*accountId*\:cert/*certificateId*),
+    #   thingGroupArn
+    #   (arn:aws:iot:*region*\:*accountId*\:thinggroup/*groupName*) and
+    #   CognitoId (*region*\:*id*).
     #
     # @option params [String] :marker
     #   The marker for the next set of results.
@@ -6552,6 +6926,8 @@ module Aws::IoT
     #   * {Types::ListPrincipalPoliciesResponse#policies #policies} => Array&lt;Types::Policy&gt;
     #   * {Types::ListPrincipalPoliciesResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_principal_policies({
@@ -6593,6 +6969,8 @@ module Aws::IoT
     #   * {Types::ListPrincipalThingsResponse#things #things} => Array&lt;String&gt;
     #   * {Types::ListPrincipalThingsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_principal_things({
@@ -6630,6 +7008,8 @@ module Aws::IoT
     #   * {Types::ListProvisioningTemplateVersionsResponse#versions #versions} => Array&lt;Types::ProvisioningTemplateVersionSummary&gt;
     #   * {Types::ListProvisioningTemplateVersionsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_provisioning_template_versions({
@@ -6666,6 +7046,8 @@ module Aws::IoT
     #   * {Types::ListProvisioningTemplatesResponse#templates #templates} => Array&lt;Types::ProvisioningTemplateSummary&gt;
     #   * {Types::ListProvisioningTemplatesResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_provisioning_templates({
@@ -6707,6 +7089,8 @@ module Aws::IoT
     #   * {Types::ListRoleAliasesResponse#role_aliases #role_aliases} => Array&lt;String&gt;
     #   * {Types::ListRoleAliasesResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_role_aliases({
@@ -6742,6 +7126,8 @@ module Aws::IoT
     #   * {Types::ListScheduledAuditsResponse#scheduled_audits #scheduled_audits} => Array&lt;Types::ScheduledAuditMetadata&gt;
     #   * {Types::ListScheduledAuditsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_scheduled_audits({
@@ -6785,6 +7171,8 @@ module Aws::IoT
     #   * {Types::ListSecurityProfilesResponse#security_profile_identifiers #security_profile_identifiers} => Array&lt;Types::SecurityProfileIdentifier&gt;
     #   * {Types::ListSecurityProfilesResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_security_profiles({
@@ -6828,6 +7216,8 @@ module Aws::IoT
     #   * {Types::ListSecurityProfilesForTargetResponse#security_profile_target_mappings #security_profile_target_mappings} => Array&lt;Types::SecurityProfileTargetMapping&gt;
     #   * {Types::ListSecurityProfilesForTargetResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_security_profiles_for_target({
@@ -6868,6 +7258,8 @@ module Aws::IoT
     #   * {Types::ListStreamsResponse#streams #streams} => Array&lt;Types::StreamSummary&gt;
     #   * {Types::ListStreamsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_streams({
@@ -6905,6 +7297,8 @@ module Aws::IoT
     #   * {Types::ListTagsForResourceResponse#tags #tags} => Array&lt;Types::Tag&gt;
     #   * {Types::ListTagsForResourceResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_tags_for_resource({
@@ -6942,6 +7336,8 @@ module Aws::IoT
     #   * {Types::ListTargetsForPolicyResponse#targets #targets} => Array&lt;String&gt;
     #   * {Types::ListTargetsForPolicyResponse#next_marker #next_marker} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_targets_for_policy({
@@ -6980,6 +7376,8 @@ module Aws::IoT
     #   * {Types::ListTargetsForSecurityProfileResponse#security_profile_targets #security_profile_targets} => Array&lt;Types::SecurityProfileTarget&gt;
     #   * {Types::ListTargetsForSecurityProfileResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_targets_for_security_profile({
@@ -7025,6 +7423,8 @@ module Aws::IoT
     #   * {Types::ListThingGroupsResponse#thing_groups #thing_groups} => Array&lt;Types::GroupNameAndArn&gt;
     #   * {Types::ListThingGroupsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_thing_groups({
@@ -7065,6 +7465,8 @@ module Aws::IoT
     #   * {Types::ListThingGroupsForThingResponse#thing_groups #thing_groups} => Array&lt;Types::GroupNameAndArn&gt;
     #   * {Types::ListThingGroupsForThingResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_thing_groups_for_thing({
@@ -7136,6 +7538,8 @@ module Aws::IoT
     #   * {Types::ListThingRegistrationTaskReportsResponse#report_type #report_type} => String
     #   * {Types::ListThingRegistrationTaskReportsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_thing_registration_task_reports({
@@ -7175,6 +7579,8 @@ module Aws::IoT
     #   * {Types::ListThingRegistrationTasksResponse#task_ids #task_ids} => Array&lt;String&gt;
     #   * {Types::ListThingRegistrationTasksResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_thing_registration_tasks({
@@ -7212,6 +7618,8 @@ module Aws::IoT
     #   * {Types::ListThingTypesResponse#thing_types #thing_types} => Array&lt;Types::ThingTypeDefinition&gt;
     #   * {Types::ListThingTypesResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_thing_types({
@@ -7246,6 +7654,13 @@ module Aws::IoT
     # in the registry that contain an attribute **Color** with the value
     # **Red**.
     #
+    # <note markdown="1"> You will not be charged for calling this API if an `Access denied`
+    # error is returned. You will also not be charged if no attributes or
+    # pagination token was provided in request and no pagination token and
+    # no results were returned.
+    #
+    #  </note>
+    #
     # @option params [String] :next_token
     #   The token to retrieve the next set of results.
     #
@@ -7266,6 +7681,8 @@ module Aws::IoT
     #   * {Types::ListThingsResponse#things #things} => Array&lt;Types::ThingAttribute&gt;
     #   * {Types::ListThingsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_things({
@@ -7310,6 +7727,8 @@ module Aws::IoT
     #   * {Types::ListThingsInBillingGroupResponse#things #things} => Array&lt;String&gt;
     #   * {Types::ListThingsInBillingGroupResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_things_in_billing_group({
@@ -7351,6 +7770,8 @@ module Aws::IoT
     #   * {Types::ListThingsInThingGroupResponse#things #things} => Array&lt;String&gt;
     #   * {Types::ListThingsInThingGroupResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_things_in_thing_group({
@@ -7386,6 +7807,8 @@ module Aws::IoT
     #   * {Types::ListTopicRuleDestinationsResponse#destination_summaries #destination_summaries} => Array&lt;Types::TopicRuleDestinationSummary&gt;
     #   * {Types::ListTopicRuleDestinationsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_topic_rule_destinations({
@@ -7428,6 +7851,8 @@ module Aws::IoT
     #   * {Types::ListTopicRulesResponse#rules #rules} => Array&lt;Types::TopicRuleListItem&gt;
     #   * {Types::ListTopicRulesResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_topic_rules({
@@ -7472,6 +7897,8 @@ module Aws::IoT
     #   * {Types::ListV2LoggingLevelsResponse#log_target_configurations #log_target_configurations} => Array&lt;Types::LogTargetConfiguration&gt;
     #   * {Types::ListV2LoggingLevelsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_v2_logging_levels({
@@ -7525,6 +7952,8 @@ module Aws::IoT
     #   * {Types::ListViolationEventsResponse#violation_events #violation_events} => Array&lt;Types::ViolationEvent&gt;
     #   * {Types::ListViolationEventsResponse#next_token #next_token} => String
     #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_violation_events({
@@ -8024,6 +8453,21 @@ module Aws::IoT
     #             state_machine_name: "StateMachineName", # required
     #             role_arn: "AwsArn", # required
     #           },
+    #           timestream: {
+    #             role_arn: "AwsArn", # required
+    #             database_name: "TimestreamDatabaseName", # required
+    #             table_name: "TimestreamTableName", # required
+    #             dimensions: [ # required
+    #               {
+    #                 name: "TimestreamDimensionName", # required
+    #                 value: "TimestreamDimensionValue", # required
+    #               },
+    #             ],
+    #             timestamp: {
+    #               value: "TimestreamTimestampValue", # required
+    #               unit: "TimestreamTimestampUnit", # required
+    #             },
+    #           },
     #           http: {
     #             url: "Url", # required
     #             confirmation_url: "Url",
@@ -8168,6 +8612,21 @@ module Aws::IoT
     #           state_machine_name: "StateMachineName", # required
     #           role_arn: "AwsArn", # required
     #         },
+    #         timestream: {
+    #           role_arn: "AwsArn", # required
+    #           database_name: "TimestreamDatabaseName", # required
+    #           table_name: "TimestreamTableName", # required
+    #           dimensions: [ # required
+    #             {
+    #               name: "TimestreamDimensionName", # required
+    #               value: "TimestreamDimensionValue", # required
+    #             },
+    #           ],
+    #           timestamp: {
+    #             value: "TimestreamTimestampValue", # required
+    #             unit: "TimestreamTimestampUnit", # required
+    #           },
+    #         },
     #         http: {
     #           url: "Url", # required
     #           confirmation_url: "Url",
@@ -8580,7 +9039,11 @@ module Aws::IoT
     # gateway.
     #
     # @option params [String] :principal
-    #   The principal.
+    #   The principal. Valid principals are CertificateArn
+    #   (arn:aws:iot:*region*\:*accountId*\:cert/*certificateId*),
+    #   thingGroupArn
+    #   (arn:aws:iot:*region*\:*accountId*\:thinggroup/*groupName*) and
+    #   CognitoId (*region*\:*id*).
     #
     # @option params [String] :cognito_identity_pool_id
     #   The Cognito identity pool ID.
@@ -8840,6 +9303,58 @@ module Aws::IoT
       req.send_request(options)
     end
 
+    # Updates a Device Defender audit suppression.
+    #
+    # @option params [required, String] :check_name
+    #   An audit check name. Checks must be enabled for your account. (Use
+    #   `DescribeAccountAuditConfiguration` to see the list of all checks,
+    #   including those that are enabled or use
+    #   `UpdateAccountAuditConfiguration` to select which checks are enabled.)
+    #
+    # @option params [required, Types::ResourceIdentifier] :resource_identifier
+    #   Information that identifies the noncompliant resource.
+    #
+    # @option params [Time,DateTime,Date,Integer,String] :expiration_date
+    #   The expiration date (epoch timestamp in seconds) that you want the
+    #   suppression to adhere to.
+    #
+    # @option params [Boolean] :suppress_indefinitely
+    #   Indicates whether a suppression should exist indefinitely or not.
+    #
+    # @option params [String] :description
+    #   The description of the audit suppression.
+    #
+    # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.update_audit_suppression({
+    #     check_name: "AuditCheckName", # required
+    #     resource_identifier: { # required
+    #       device_certificate_id: "CertificateId",
+    #       ca_certificate_id: "CertificateId",
+    #       cognito_identity_pool_id: "CognitoIdentityPoolId",
+    #       client_id: "ClientId",
+    #       policy_version_identifier: {
+    #         policy_name: "PolicyName",
+    #         policy_version_id: "PolicyVersionId",
+    #       },
+    #       account: "AwsAccountId",
+    #       iam_role_arn: "RoleArn",
+    #       role_alias_arn: "RoleAliasArn",
+    #     },
+    #     expiration_date: Time.now,
+    #     suppress_indefinitely: false,
+    #     description: "AuditDescription",
+    #   })
+    #
+    # @overload update_audit_suppression(params = {})
+    # @param [Hash] params ({})
+    def update_audit_suppression(params = {}, options = {})
+      req = build_request(:update_audit_suppression, params)
+      req.send_request(options)
+    end
+
     # Updates an authorizer.
     #
     # @option params [required, String] :authorizer_name
@@ -8971,12 +9486,13 @@ module Aws::IoT
     # Updates the status of the specified certificate. This operation is
     # idempotent.
     #
-    # Moving a certificate from the ACTIVE state (including REVOKED) will
-    # not disconnect currently connected devices, but these devices will be
-    # unable to reconnect.
+    # Certificates must be in the ACTIVE state to authenticate devices that
+    # use a certificate to connect to AWS IoT.
     #
-    # The ACTIVE state is required to authenticate devices connecting to AWS
-    # IoT using a certificate.
+    # Within a few minutes of updating a certificate from the ACTIVE state
+    # to any other state, AWS IoT disconnects all devices that used that
+    # certificate to connect. Devices cannot use a certificate that is not
+    # in the ACTIVE state to reconnect.
     #
     # @option params [required, String] :certificate_id
     #   The ID of the certificate. (The last part of the certificate ARN
@@ -9525,13 +10041,13 @@ module Aws::IoT
     #   Where the alerts are sent. (Alerts are always sent to the console.)
     #
     # @option params [Array<String>] :additional_metrics_to_retain
+    #   *Please use UpdateSecurityProfileRequest$additionalMetricsToRetainV2
+    #   instead.*
+    #
     #   A list of metrics whose data is retained (stored). By default, data is
     #   retained for any metric used in the profile's `behaviors`, but it is
     #   also retained for any metric specified here.
     #
-    #   **Note:** This API field is deprecated. Please use
-    #   UpdateSecurityProfileRequest$additionalMetricsToRetainV2 instead.
-    #
     # @option params [Array<Types::MetricToRetain>] :additional_metrics_to_retain_v2
     #   A list of metrics whose data is retained (stored). By default, data is
     #   retained for any metric used in the profile's behaviors, but it is
@@ -9969,7 +10485,7 @@ module Aws::IoT
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-iot'
-      context[:gem_version] = '1.54.0'
+      context[:gem_version] = '1.59.0'
       Seahorse::Client::Request.new(handlers, context)
     end