npm - @jjrawlins/cdk-iam-policy-builder-helper - Versions diffs - 0.0.2 → 0.0.3 - Mend

@jjrawlins/cdk-iam-policy-builder-helper 0.0.2 → 0.0.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (2211) hide show

package/node_modules/@aws-sdk/client-iam/dist-types/models/models_0.d.ts CHANGED Viewed

@@ -42,7 +42,7 @@ export interface AccessDetail {
      *          service within the <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_access-advisor.html#service-last-accessed-reporting-period">tracking period</a>.</p>
      * @public
      */
-    Region?: string;
+    Region?: string | undefined;
     /**
      * <p>The path of the Organizations entity (root, organizational unit, or account) from which an
      *          authenticated principal last attempted to access the service. Amazon Web Services does not report
@@ -51,7 +51,7 @@ export interface AccessDetail {
      *          reported Organizations entity attempted to access the service within the <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_access-advisor.html#service-last-accessed-reporting-period">tracking period</a>.</p>
      * @public
      */
-    EntityPath?: string;
+    EntityPath?: string | undefined;
     /**
      * <p>The date and time, in <a href="http://www.iso.org/iso/iso8601">ISO 8601 date-time
      *             format</a>, when an authenticated principal most recently attempted to access the
@@ -60,13 +60,13 @@ export interface AccessDetail {
      *          service within the <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_access-advisor.html#service-last-accessed-reporting-period">tracking period</a>.</p>
      * @public
      */
-    LastAuthenticatedTime?: Date;
+    LastAuthenticatedTime?: Date | undefined;
     /**
      * <p>The number of accounts with authenticated principals (root user, IAM users, and IAM
      *          roles) that attempted to access the service in the tracking period.</p>
      * @public
      */
-    TotalAuthenticatedEntities?: number;
+    TotalAuthenticatedEntities?: number | undefined;
 }
 /**
  * @public
@@ -117,7 +117,7 @@ export interface AccessKey {
      * <p>The date when the access key was created.</p>
      * @public
      */
-    CreateDate?: Date;
+    CreateDate?: Date | undefined;
 }
 /**
  * <p>Contains information about the last time an Amazon Web Services access key was used since IAM began
@@ -144,7 +144,7 @@ export interface AccessKeyLastUsed {
      *          </ul>
      * @public
      */
-    LastUsedDate: Date | undefined;
+    LastUsedDate?: Date | undefined;
     /**
      * <p>The name of the Amazon Web Services service with which this access key was most recently used. The
      *          value of this field is "N/A" in the following situations:</p>
@@ -195,23 +195,38 @@ export interface AccessKeyMetadata {
      * <p>The name of the IAM user that the key is associated with.</p>
      * @public
      */
-    UserName?: string;
+    UserName?: string | undefined;
     /**
      * <p>The ID for this access key.</p>
      * @public
      */
-    AccessKeyId?: string;
+    AccessKeyId?: string | undefined;
     /**
      * <p>The status of the access key. <code>Active</code> means that the key is valid for API
      *          calls; <code>Inactive</code> means it is not.</p>
      * @public
      */
-    Status?: StatusType;
+    Status?: StatusType | undefined;
     /**
      * <p>The date when the access key was created.</p>
      * @public
      */
-    CreateDate?: Date;
+    CreateDate?: Date | undefined;
+}
+/**
+ * <p>The request was rejected because the account making the request is not the management
+ *       account or delegated administrator account for <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_root-user.html#id_root-user-access-management">centralized root
+ *         access</a>.</p>
+ * @public
+ */
+export declare class AccountNotManagementOrDelegatedAdministratorException extends __BaseException {
+    readonly name: "AccountNotManagementOrDelegatedAdministratorException";
+    readonly $fault: "client";
+    Message?: string | undefined;
+    /**
+     * @internal
+     */
+    constructor(opts: __ExceptionOptionType<AccountNotManagementOrDelegatedAdministratorException, __BaseException>);
 }
 /**
  * @public
@@ -348,6 +363,18 @@ export interface AddUserToGroupRequest {
      */
     UserName: string | undefined;
 }
+/**
+ * @public
+ * @enum
+ */
+export declare const AssertionEncryptionModeType: {
+    readonly Allowed: "Allowed";
+    readonly Required: "Required";
+};
+/**
+ * @public
+ */
+export type AssertionEncryptionModeType = (typeof AssertionEncryptionModeType)[keyof typeof AssertionEncryptionModeType];
 /**
  * @public
  * @enum
@@ -387,12 +414,12 @@ export interface AttachedPermissionsBoundary {
      *             <code>Policy</code>.</p>
      * @public
      */
-    PermissionsBoundaryType?: PermissionsBoundaryAttachmentType;
+    PermissionsBoundaryType?: PermissionsBoundaryAttachmentType | undefined;
     /**
      * <p> The ARN of the policy used to set the permissions boundary for the user or role.</p>
      * @public
      */
-    PermissionsBoundaryArn?: string;
+    PermissionsBoundaryArn?: string | undefined;
 }
 /**
  * <p>Contains information about an attached policy.</p>
@@ -407,14 +434,14 @@ export interface AttachedPolicy {
      * <p>The friendly name of the attached policy.</p>
      * @public
      */
-    PolicyName?: string;
+    PolicyName?: string | undefined;
     /**
      * <p>The Amazon Resource Name (ARN). ARNs are unique identifiers for Amazon Web Services resources.</p>
      *          <p>For more information about ARNs, go to <a href="https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource Names (ARNs)</a> in
      *          the <i>Amazon Web Services General Reference</i>. </p>
      * @public
      */
-    PolicyArn?: string;
+    PolicyArn?: string | undefined;
 }
 /**
  * @public
@@ -557,7 +584,7 @@ export interface CreateAccessKeyRequest {
      *     characters with no spaces. You can also include any of the following characters: _+=,.@-</p>
      * @public
      */
-    UserName?: string;
+    UserName?: string | undefined;
 }
 /**
  * <p>Contains the response to a successful <a>CreateAccessKey</a> request.
@@ -611,7 +638,7 @@ export interface CreateGroupRequest {
      *     most punctuation characters, digits, and upper and lowercased letters.</p>
      * @public
      */
-    Path?: string;
+    Path?: string | undefined;
     /**
      * <p>The name of the group to create. Do not include the path in this value.</p>
      *          <p>IAM user, group, role, and policy names must be unique within the account. Names are
@@ -737,7 +764,7 @@ export interface CreateInstanceProfileRequest {
      *     most punctuation characters, digits, and upper and lowercased letters.</p>
      * @public
      */
-    Path?: string;
+    Path?: string | undefined;
     /**
      * <p>A list of tags that you want to attach to the newly created IAM instance profile.
      *       Each tag consists of a key name and an associated value. For more information about tagging, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html">Tagging IAM resources</a> in the
@@ -748,7 +775,7 @@ export interface CreateInstanceProfileRequest {
      *          </note>
      * @public
      */
-    Tags?: Tag[];
+    Tags?: Tag[] | undefined;
 }
 /**
  * <p>Contains information about the last time that an IAM role was used. This includes the
@@ -770,12 +797,12 @@ export interface RoleLastUsed {
      *       </p>
      * @public
      */
-    LastUsedDate?: Date;
+    LastUsedDate?: Date | undefined;
     /**
      * <p>The name of the Amazon Web Services Region in which the role was last used.</p>
      * @public
      */
-    Region?: string;
+    Region?: string | undefined;
 }
 /**
  * <p>Contains information about an IAM role. This structure is returned as a response
@@ -818,12 +845,12 @@ export interface Role {
      * <p>The policy that grants an entity permission to assume the role.</p>
      * @public
      */
-    AssumeRolePolicyDocument?: string;
+    AssumeRolePolicyDocument?: string | undefined;
     /**
      * <p>A description of the role that you provide.</p>
      * @public
      */
-    Description?: string;
+    Description?: string | undefined;
     /**
      * <p>The maximum session duration (in seconds) for the specified role. Anyone who uses the
      *          CLI, or API to assume the role can specify the duration using the optional
@@ -831,20 +858,20 @@ export interface Role {
      *          parameter.</p>
      * @public
      */
-    MaxSessionDuration?: number;
+    MaxSessionDuration?: number | undefined;
     /**
      * <p>The ARN of the policy used to set the permissions boundary for the role.</p>
      *          <p>For more information about permissions boundaries, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_boundaries.html">Permissions boundaries for IAM
      *             identities </a> in the <i>IAM User Guide</i>.</p>
      * @public
      */
-    PermissionsBoundary?: AttachedPermissionsBoundary;
+    PermissionsBoundary?: AttachedPermissionsBoundary | undefined;
     /**
      * <p>A list of tags that are attached to the role. For more information about tagging, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html">Tagging IAM resources</a> in the
      *       <i>IAM User Guide</i>.</p>
      * @public
      */
-    Tags?: Tag[];
+    Tags?: Tag[] | undefined;
     /**
      * <p>Contains information about the last time that an IAM role was used. This includes the
      *          date and time and the Region in which the role was last used. Activity is only reported for
@@ -854,7 +881,7 @@ export interface Role {
      *          Guide</i>.</p>
      * @public
      */
-    RoleLastUsed?: RoleLastUsed;
+    RoleLastUsed?: RoleLastUsed | undefined;
 }
 /**
  * <p>Contains information about an instance profile.</p>
@@ -923,7 +950,7 @@ export interface InstanceProfile {
      *       <i>IAM User Guide</i>.</p>
      * @public
      */
-    Tags?: Tag[];
+    Tags?: Tag[] | undefined;
 }
 /**
  * <p>Contains the response to a successful <a>CreateInstanceProfile</a> request.
@@ -944,13 +971,17 @@ export interface CreateLoginProfileRequest {
     /**
      * <p>The name of the IAM user to create a password for. The user must already
      *             exist.</p>
+     *          <p>This parameter is optional. If no user name is included, it defaults to the principal
+     *             making the request. When you make this request with root user credentials, you must use
+     *             an <a href="https://docs.aws.amazon.com/STS/latest/APIReference/API_AssumeRoot.html">AssumeRoot</a> session to omit the user name.</p>
      *          <p>This parameter allows (through its <a href="http://wikipedia.org/wiki/regex">regex pattern</a>) a string of characters consisting of upper and lowercase alphanumeric
      *     characters with no spaces. You can also include any of the following characters: _+=,.@-</p>
      * @public
      */
-    UserName: string | undefined;
+    UserName?: string | undefined;
     /**
      * <p>The new password for the user.</p>
+     *          <p>This parameter must be omitted when you make the request with an <a href="https://docs.aws.amazon.com/STS/latest/APIReference/API_AssumeRoot.html">AssumeRoot</a> session. It is required in all other cases.</p>
      *          <p>The <a href="http://wikipedia.org/wiki/regex">regex pattern</a>
      *     that is used to validate this parameter is a string of characters. That string can include almost any printable
      *     ASCII character from the space (<code>\u0020</code>) through the end of the ASCII character range (<code>\u00FF</code>).
@@ -960,12 +991,12 @@ export interface CreateLoginProfileRequest {
      *     special meaning within that tool.</p>
      * @public
      */
-    Password: string | undefined;
+    Password?: string | undefined;
     /**
      * <p>Specifies whether the user is required to set a new password on next sign-in.</p>
      * @public
      */
-    PasswordResetRequired?: boolean;
+    PasswordResetRequired?: boolean | undefined;
 }
 /**
  * <p>Contains the user name and password create date for a user.</p>
@@ -987,7 +1018,7 @@ export interface LoginProfile {
      * <p>Specifies whether the user is required to set a new password on next sign-in.</p>
      * @public
      */
-    PasswordResetRequired?: boolean;
+    PasswordResetRequired?: boolean | undefined;
 }
 /**
  * <p>Contains the response to a successful <a>CreateLoginProfile</a> request.
@@ -1031,7 +1062,7 @@ export interface CreateOpenIDConnectProviderRequest {
      *             255 characters long.</p>
      * @public
      */
-    ClientIDList?: string[];
+    ClientIDList?: string[] | undefined;
     /**
      * <p>A list of server certificate thumbprints for the OpenID Connect (OIDC) identity
      *             provider's server certificates. Typically this list includes only one entry. However,
@@ -1053,7 +1084,7 @@ export interface CreateOpenIDConnectProviderRequest {
      *                 Guide</i>.</p>
      * @public
      */
-    ThumbprintList?: string[];
+    ThumbprintList?: string[] | undefined;
     /**
      * <p>A list of tags that you want to attach to the new IAM OpenID Connect (OIDC) provider.
      *       Each tag consists of a key name and an associated value. For more information about tagging, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html">Tagging IAM resources</a> in the
@@ -1064,7 +1095,7 @@ export interface CreateOpenIDConnectProviderRequest {
      *          </note>
      * @public
      */
-    Tags?: Tag[];
+    Tags?: Tag[] | undefined;
 }
 /**
  * <p>Contains the response to a successful <a>CreateOpenIDConnectProvider</a>
@@ -1078,17 +1109,18 @@ export interface CreateOpenIDConnectProviderResponse {
      *         </p>
      * @public
      */
-    OpenIDConnectProviderArn?: string;
+    OpenIDConnectProviderArn?: string | undefined;
     /**
      * <p>A list of tags that are attached to the new IAM OIDC provider. The returned list of
      *       tags is sorted by tag key. For more information about tagging, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html">Tagging IAM resources</a> in the
      *       <i>IAM User Guide</i>.</p>
      * @public
      */
-    Tags?: Tag[];
+    Tags?: Tag[] | undefined;
 }
 /**
- * <p>The request failed because IAM cannot connect to the OpenID Connect identity provider URL.</p>
+ * <p>The request failed because IAM cannot connect to the OpenID Connect identity provider
+ *       URL.</p>
  * @public
  */
 export declare class OpenIdIdpCommunicationErrorException extends __BaseException {
@@ -1125,7 +1157,7 @@ export interface CreatePolicyRequest {
      *          </note>
      * @public
      */
-    Path?: string;
+    Path?: string | undefined;
     /**
      * <p>The JSON policy document that you want to use as the content for the new
      *             policy.</p>
@@ -1163,7 +1195,7 @@ export interface CreatePolicyRequest {
      *             changed.</p>
      * @public
      */
-    Description?: string;
+    Description?: string | undefined;
     /**
      * <p>A list of tags that you want to attach to the new IAM customer managed policy.
      *       Each tag consists of a key name and an associated value. For more information about tagging, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html">Tagging IAM resources</a> in the
@@ -1174,7 +1206,7 @@ export interface CreatePolicyRequest {
      *          </note>
      * @public
      */
-    Tags?: Tag[];
+    Tags?: Tag[] | undefined;
 }
 /**
  * <p>Contains information about a managed policy.</p>
@@ -1189,38 +1221,38 @@ export interface Policy {
      * <p>The friendly name (not ARN) identifying the policy.</p>
      * @public
      */
-    PolicyName?: string;
+    PolicyName?: string | undefined;
     /**
      * <p>The stable and unique string identifying the policy.</p>
      *          <p>For more information about IDs, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html">IAM identifiers</a> in the
      *             <i>IAM User Guide</i>.</p>
      * @public
      */
-    PolicyId?: string;
+    PolicyId?: string | undefined;
     /**
      * <p>The Amazon Resource Name (ARN). ARNs are unique identifiers for Amazon Web Services resources.</p>
      *          <p>For more information about ARNs, go to <a href="https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource Names (ARNs)</a> in
      *          the <i>Amazon Web Services General Reference</i>. </p>
      * @public
      */
-    Arn?: string;
+    Arn?: string | undefined;
     /**
      * <p>The path to the policy.</p>
      *          <p>For more information about paths, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html">IAM identifiers</a> in the
      *             <i>IAM User Guide</i>.</p>
      * @public
      */
-    Path?: string;
+    Path?: string | undefined;
     /**
      * <p>The identifier for the version of the policy that is set as the default version.</p>
      * @public
      */
-    DefaultVersionId?: string;
+    DefaultVersionId?: string | undefined;
     /**
      * <p>The number of entities (users, groups, and roles) that the policy is attached to.</p>
      * @public
      */
-    AttachmentCount?: number;
+    AttachmentCount?: number | undefined;
     /**
      * <p>The number of entities (users and roles) for which the policy is used to set the
      *          permissions boundary. </p>
@@ -1228,25 +1260,25 @@ export interface Policy {
      *             identities </a> in the <i>IAM User Guide</i>.</p>
      * @public
      */
-    PermissionsBoundaryUsageCount?: number;
+    PermissionsBoundaryUsageCount?: number | undefined;
     /**
      * <p>Specifies whether the policy can be attached to an IAM user, group, or role.</p>
      * @public
      */
-    IsAttachable?: boolean;
+    IsAttachable?: boolean | undefined;
     /**
      * <p>A friendly description of the policy.</p>
      *          <p>This element is included in the response to the <a>GetPolicy</a> operation.
      *          It is not included in the response to the <a>ListPolicies</a> operation. </p>
      * @public
      */
-    Description?: string;
+    Description?: string | undefined;
     /**
      * <p>The date and time, in <a href="http://www.iso.org/iso/iso8601">ISO 8601 date-time
      *             format</a>, when the policy was created.</p>
      * @public
      */
-    CreateDate?: Date;
+    CreateDate?: Date | undefined;
     /**
      * <p>The date and time, in <a href="http://www.iso.org/iso/iso8601">ISO 8601 date-time
      *             format</a>, when the policy was last updated.</p>
@@ -1255,13 +1287,13 @@ export interface Policy {
      *          and time when the most recent policy version was created.</p>
      * @public
      */
-    UpdateDate?: Date;
+    UpdateDate?: Date | undefined;
     /**
      * <p>A list of tags that are attached to the instance profile. For more information about tagging, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html">Tagging IAM resources</a> in the
      *       <i>IAM User Guide</i>.</p>
      * @public
      */
-    Tags?: Tag[];
+    Tags?: Tag[] | undefined;
 }
 /**
  * <p>Contains the response to a successful <a>CreatePolicy</a> request.
@@ -1273,7 +1305,7 @@ export interface CreatePolicyResponse {
      * <p>A structure containing details about the new policy.</p>
      * @public
      */
-    Policy?: Policy;
+    Policy?: Policy | undefined;
 }
 /**
  * <p>The request was rejected because the policy document was malformed. The error message
@@ -1335,7 +1367,7 @@ export interface CreatePolicyVersionRequest {
      *                 policies</a> in the <i>IAM User Guide</i>.</p>
      * @public
      */
-    SetAsDefault?: boolean;
+    SetAsDefault?: boolean | undefined;
 }
 /**
  * <p>Contains information about a version of a managed policy.</p>
@@ -1355,25 +1387,25 @@ export interface PolicyVersion {
      *          the Java SDK. Other languages and SDKs provide similar functionality.</p>
      * @public
      */
-    Document?: string;
+    Document?: string | undefined;
     /**
      * <p>The identifier for the policy version.</p>
      *          <p>Policy version identifiers always begin with <code>v</code> (always lowercase). When a
      *          policy is created, the first policy version is <code>v1</code>. </p>
      * @public
      */
-    VersionId?: string;
+    VersionId?: string | undefined;
     /**
      * <p>Specifies whether the policy version is set as the policy's default version.</p>
      * @public
      */
-    IsDefaultVersion?: boolean;
+    IsDefaultVersion?: boolean | undefined;
     /**
      * <p>The date and time, in <a href="http://www.iso.org/iso/iso8601">ISO 8601 date-time
      *             format</a>, when the policy version was created.</p>
      * @public
      */
-    CreateDate?: Date;
+    CreateDate?: Date | undefined;
 }
 /**
  * <p>Contains the response to a successful <a>CreatePolicyVersion</a> request.
@@ -1385,7 +1417,7 @@ export interface CreatePolicyVersionResponse {
      * <p>A structure containing details about the new policy version.</p>
      * @public
      */
-    PolicyVersion?: PolicyVersion;
+    PolicyVersion?: PolicyVersion | undefined;
 }
 /**
  * @public
@@ -1401,7 +1433,7 @@ export interface CreateRoleRequest {
      *     most punctuation characters, digits, and upper and lowercased letters.</p>
      * @public
      */
-    Path?: string;
+    Path?: string | undefined;
     /**
      * <p>The name of the role to create.</p>
      *          <p>IAM user, group, role, and policy names must be unique within the account. Names are
@@ -1443,7 +1475,7 @@ export interface CreateRoleRequest {
      * <p>A description of the role.</p>
      * @public
      */
-    Description?: string;
+    Description?: string | undefined;
     /**
      * <p>The maximum session duration (in seconds) that you want to set for the specified role.
      *             If you do not specify a value for this setting, the default value of one hour is
@@ -1460,7 +1492,7 @@ export interface CreateRoleRequest {
      *                 roles</a> in the <i>IAM User Guide</i>.</p>
      * @public
      */
-    MaxSessionDuration?: number;
+    MaxSessionDuration?: number | undefined;
     /**
      * <p>The ARN of the managed policy that is used to set the permissions boundary for the
      *             role.</p>
@@ -1473,7 +1505,7 @@ export interface CreateRoleRequest {
      *             </a> in the <i>IAM User Guide</i>.</p>
      * @public
      */
-    PermissionsBoundary?: string;
+    PermissionsBoundary?: string | undefined;
     /**
      * <p>A list of tags that you want to attach to the new role. Each tag consists of a key name and an associated value.
      *       For more information about tagging, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html">Tagging IAM resources</a> in the
@@ -1484,7 +1516,7 @@ export interface CreateRoleRequest {
      *          </note>
      * @public
      */
-    Tags?: Tag[];
+    Tags?: Tag[] | undefined;
 }
 /**
  * <p>Contains the response to a successful <a>CreateRole</a> request. </p>
@@ -1530,7 +1562,19 @@ export interface CreateSAMLProviderRequest {
      *          </note>
      * @public
      */
-    Tags?: Tag[];
+    Tags?: Tag[] | undefined;
+    /**
+     * <p>Specifies the encryption setting for the SAML provider.</p>
+     * @public
+     */
+    AssertionEncryptionMode?: AssertionEncryptionModeType | undefined;
+    /**
+     * <p>The private key generated from your external identity provider. The private key must
+     *             be a .pem file that uses AES-GCM or AES-CBC encryption algorithm to decrypt SAML
+     *             assertions.</p>
+     * @public
+     */
+    AddPrivateKey?: string | undefined;
 }
 /**
  * <p>Contains the response to a successful <a>CreateSAMLProvider</a> request.
@@ -1542,14 +1586,14 @@ export interface CreateSAMLProviderResponse {
      * <p>The Amazon Resource Name (ARN) of the new SAML provider resource in IAM.</p>
      * @public
      */
-    SAMLProviderArn?: string;
+    SAMLProviderArn?: string | undefined;
     /**
      * <p>A list of tags that are attached to the new IAM SAML provider. The returned list of tags is sorted by tag key.
      *       For more information about tagging, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html">Tagging IAM resources</a> in the
      *       <i>IAM User Guide</i>.</p>
      * @public
      */
-    Tags?: Tag[];
+    Tags?: Tag[] | undefined;
 }
 /**
  * @public
@@ -1571,7 +1615,7 @@ export interface CreateServiceLinkedRoleRequest {
      * <p>The description of the role.</p>
      * @public
      */
-    Description?: string;
+    Description?: string | undefined;
     /**
      * <p></p>
      *          <p>A string that you provide, which is combined with the service-provided prefix to form
@@ -1584,7 +1628,7 @@ export interface CreateServiceLinkedRoleRequest {
      *             suffix.</p>
      * @public
      */
-    CustomSuffix?: string;
+    CustomSuffix?: string | undefined;
 }
 /**
  * @public
@@ -1595,7 +1639,7 @@ export interface CreateServiceLinkedRoleResponse {
      *             role.</p>
      * @public
      */
-    Role?: Role;
+    Role?: Role | undefined;
 }
 /**
  * @public
@@ -1677,7 +1721,7 @@ export interface CreateServiceSpecificCredentialResponse {
      *          </important>
      * @public
      */
-    ServiceSpecificCredential?: ServiceSpecificCredential;
+    ServiceSpecificCredential?: ServiceSpecificCredential | undefined;
 }
 /**
  * <p>The specified service does not support service-specific credentials.</p>
@@ -1705,7 +1749,7 @@ export interface CreateUserRequest {
      *     most punctuation characters, digits, and upper and lowercased letters.</p>
      * @public
      */
-    Path?: string;
+    Path?: string | undefined;
     /**
      * <p>The name of the user to create.</p>
      *          <p>IAM user, group, role, and policy names must be unique within the account. Names are
@@ -1726,7 +1770,7 @@ export interface CreateUserRequest {
      *             </a> in the <i>IAM User Guide</i>.</p>
      * @public
      */
-    PermissionsBoundary?: string;
+    PermissionsBoundary?: string | undefined;
     /**
      * <p>A list of tags that you want to attach to the new user. Each tag consists of a key name and an associated value.
      *       For more information about tagging, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html">Tagging IAM resources</a> in the
@@ -1737,7 +1781,7 @@ export interface CreateUserRequest {
      *          </note>
      * @public
      */
-    Tags?: Tag[];
+    Tags?: Tag[] | undefined;
 }
 /**
  * <p>Contains information about an IAM user entity.</p>
@@ -1817,19 +1861,19 @@ export interface User {
      *          <p>This value is returned only in the <a>GetUser</a> and <a>ListUsers</a> operations. </p>
      * @public
      */
-    PasswordLastUsed?: Date;
+    PasswordLastUsed?: Date | undefined;
     /**
      * <p>For more information about permissions boundaries, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_boundaries.html">Permissions boundaries for IAM
      *             identities </a> in the <i>IAM User Guide</i>.</p>
      * @public
      */
-    PermissionsBoundary?: AttachedPermissionsBoundary;
+    PermissionsBoundary?: AttachedPermissionsBoundary | undefined;
     /**
      * <p>A list of tags that are associated with the user. For more information about tagging, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html">Tagging IAM resources</a> in the
      *       <i>IAM User Guide</i>.</p>
      * @public
      */
-    Tags?: Tag[];
+    Tags?: Tag[] | undefined;
 }
 /**
  * <p>Contains the response to a successful <a>CreateUser</a> request. </p>
@@ -1840,7 +1884,7 @@ export interface CreateUserResponse {
      * <p>A structure with details about the new IAM user.</p>
      * @public
      */
-    User?: User;
+    User?: User | undefined;
 }
 /**
  * @public
@@ -1856,7 +1900,7 @@ export interface CreateVirtualMFADeviceRequest {
      *     most punctuation characters, digits, and upper and lowercased letters.</p>
      * @public
      */
-    Path?: string;
+    Path?: string | undefined;
     /**
      * <p>The name of the virtual MFA device, which must be unique. Use with path to uniquely
      *             identify a virtual MFA device.</p>
@@ -1875,7 +1919,7 @@ export interface CreateVirtualMFADeviceRequest {
      *          </note>
      * @public
      */
-    Tags?: Tag[];
+    Tags?: Tag[] | undefined;
 }
 /**
  * <p>Contains information about a virtual MFA device.</p>
@@ -1891,7 +1935,7 @@ export interface VirtualMFADevice {
      * <p> The base32 seed defined as specified in <a href="https://tools.ietf.org/html/rfc3548.txt">RFC3548</a>. The <code>Base32StringSeed</code> is base32-encoded. </p>
      * @public
      */
-    Base32StringSeed?: Uint8Array;
+    Base32StringSeed?: Uint8Array | undefined;
     /**
      * <p> A QR code PNG image that encodes
      *             <code>otpauth://totp/$virtualMFADeviceName@$AccountName?secret=$Base32String</code>
@@ -1901,23 +1945,23 @@ export interface VirtualMFADevice {
      *          value is base64-encoded. </p>
      * @public
      */
-    QRCodePNG?: Uint8Array;
+    QRCodePNG?: Uint8Array | undefined;
     /**
      * <p>The IAM user associated with this virtual MFA device.</p>
      * @public
      */
-    User?: User;
+    User?: User | undefined;
     /**
      * <p>The date and time on which the virtual MFA device was enabled.</p>
      * @public
      */
-    EnableDate?: Date;
+    EnableDate?: Date | undefined;
     /**
      * <p>A list of tags that are attached to the virtual MFA device. For more information about tagging, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html">Tagging IAM resources</a> in the
      *       <i>IAM User Guide</i>.</p>
      * @public
      */
-    Tags?: Tag[];
+    Tags?: Tag[] | undefined;
 }
 /**
  * <p>Contains the response to a successful <a>CreateVirtualMFADevice</a> request.
@@ -1937,11 +1981,14 @@ export interface CreateVirtualMFADeviceResponse {
 export interface DeactivateMFADeviceRequest {
     /**
      * <p>The name of the user whose MFA device you want to deactivate.</p>
+     *          <p>This parameter is optional. If no user name is included, it defaults to the principal
+     *             making the request. When you make this request with root user credentials, you must use
+     *             an <a href="https://docs.aws.amazon.com/STS/latest/APIReference/API_AssumeRoot.html">AssumeRoot</a> session to omit the user name.</p>
      *          <p>This parameter allows (through its <a href="http://wikipedia.org/wiki/regex">regex pattern</a>) a string of characters consisting of upper and lowercase alphanumeric
      *     characters with no spaces. You can also include any of the following characters: _+=,.@-</p>
      * @public
      */
-    UserName: string | undefined;
+    UserName?: string | undefined;
     /**
      * <p>The serial number that uniquely identifies the MFA device. For virtual MFA devices,
      *             the serial number is the device ARN.</p>
@@ -1962,7 +2009,7 @@ export interface DeleteAccessKeyRequest {
      *     characters with no spaces. You can also include any of the following characters: _+=,.@-</p>
      * @public
      */
-    UserName?: string;
+    UserName?: string | undefined;
     /**
      * <p>The access key ID for the access key ID and secret access key you want to
      *             delete.</p>
@@ -2048,11 +2095,14 @@ export interface DeleteInstanceProfileRequest {
 export interface DeleteLoginProfileRequest {
     /**
      * <p>The name of the user whose password you want to delete.</p>
+     *          <p>This parameter is optional. If no user name is included, it defaults to the principal
+     *             making the request. When you make this request with root user credentials, you must use
+     *             an <a href="https://docs.aws.amazon.com/STS/latest/APIReference/API_AssumeRoot.html">AssumeRoot</a> session to omit the user name.</p>
      *          <p>This parameter allows (through its <a href="http://wikipedia.org/wiki/regex">regex pattern</a>) a string of characters consisting of upper and lowercase alphanumeric
      *     characters with no spaces. You can also include any of the following characters: _+=,.@-</p>
      * @public
      */
-    UserName: string | undefined;
+    UserName?: string | undefined;
 }
 /**
  * @public
@@ -2197,7 +2247,7 @@ export interface DeleteServiceSpecificCredentialRequest {
      *     characters with no spaces. You can also include any of the following characters: _+=,.@-</p>
      * @public
      */
-    UserName?: string;
+    UserName?: string | undefined;
     /**
      * <p>The unique identifier of the service-specific credential. You can get this value by
      *             calling <a>ListServiceSpecificCredentials</a>.</p>
@@ -2217,7 +2267,7 @@ export interface DeleteSigningCertificateRequest {
      *     characters with no spaces. You can also include any of the following characters: _+=,.@-</p>
      * @public
      */
-    UserName?: string;
+    UserName?: string | undefined;
     /**
      * <p>The ID of the signing certificate to delete.</p>
      *          <p>The format of this parameter, as described by its <a href="http://wikipedia.org/wiki/regex">regex</a> pattern, is a string of
@@ -2356,6 +2406,101 @@ export interface DetachUserPolicyRequest {
      */
     PolicyArn: string | undefined;
 }
+/**
+ * @public
+ */
+export interface DisableOrganizationsRootCredentialsManagementRequest {
+}
+/**
+ * @public
+ * @enum
+ */
+export declare const FeatureType: {
+    readonly ROOT_CREDENTIALS_MANAGEMENT: "RootCredentialsManagement";
+    readonly ROOT_SESSIONS: "RootSessions";
+};
+/**
+ * @public
+ */
+export type FeatureType = (typeof FeatureType)[keyof typeof FeatureType];
+/**
+ * @public
+ */
+export interface DisableOrganizationsRootCredentialsManagementResponse {
+    /**
+     * <p>The unique identifier (ID) of an organization.</p>
+     * @public
+     */
+    OrganizationId?: string | undefined;
+    /**
+     * <p>The features enabled for centralized root access for member accounts in your
+     *             organization.</p>
+     * @public
+     */
+    EnabledFeatures?: FeatureType[] | undefined;
+}
+/**
+ * <p>The request was rejected because no organization is associated with your account.</p>
+ * @public
+ */
+export declare class OrganizationNotFoundException extends __BaseException {
+    readonly name: "OrganizationNotFoundException";
+    readonly $fault: "client";
+    Message?: string | undefined;
+    /**
+     * @internal
+     */
+    constructor(opts: __ExceptionOptionType<OrganizationNotFoundException, __BaseException>);
+}
+/**
+ * <p>The request was rejected because your organization does not have All features enabled. For
+ *       more information, see <a href="https://docs.aws.amazon.com/organizations/latest/userguide/orgs_getting-started_concepts.html#feature-set">Available feature sets</a> in the <i>Organizations User
+ *           Guide</i>.</p>
+ * @public
+ */
+export declare class OrganizationNotInAllFeaturesModeException extends __BaseException {
+    readonly name: "OrganizationNotInAllFeaturesModeException";
+    readonly $fault: "client";
+    Message?: string | undefined;
+    /**
+     * @internal
+     */
+    constructor(opts: __ExceptionOptionType<OrganizationNotInAllFeaturesModeException, __BaseException>);
+}
+/**
+ * <p>The request was rejected because trusted access is not enabled for IAM in Organizations. For details, see IAM and Organizations in the <i>Organizations User Guide</i>.</p>
+ * @public
+ */
+export declare class ServiceAccessNotEnabledException extends __BaseException {
+    readonly name: "ServiceAccessNotEnabledException";
+    readonly $fault: "client";
+    Message?: string | undefined;
+    /**
+     * @internal
+     */
+    constructor(opts: __ExceptionOptionType<ServiceAccessNotEnabledException, __BaseException>);
+}
+/**
+ * @public
+ */
+export interface DisableOrganizationsRootSessionsRequest {
+}
+/**
+ * @public
+ */
+export interface DisableOrganizationsRootSessionsResponse {
+    /**
+     * <p>The unique identifier (ID) of an organization.</p>
+     * @public
+     */
+    OrganizationId?: string | undefined;
+    /**
+     * <p>The features you have enabled for centralized root access of member accounts in your
+     *             organization.</p>
+     * @public
+     */
+    EnabledFeatures?: FeatureType[] | undefined;
+}
 /**
  * @public
  */
@@ -2418,6 +2563,60 @@ export declare class InvalidAuthenticationCodeException extends __BaseException
      */
     constructor(opts: __ExceptionOptionType<InvalidAuthenticationCodeException, __BaseException>);
 }
+/**
+ * <p>The request was rejected because the account making the request is not the management
+ *       account for the organization.</p>
+ * @public
+ */
+export declare class CallerIsNotManagementAccountException extends __BaseException {
+    readonly name: "CallerIsNotManagementAccountException";
+    readonly $fault: "client";
+    Message?: string | undefined;
+    /**
+     * @internal
+     */
+    constructor(opts: __ExceptionOptionType<CallerIsNotManagementAccountException, __BaseException>);
+}
+/**
+ * @public
+ */
+export interface EnableOrganizationsRootCredentialsManagementRequest {
+}
+/**
+ * @public
+ */
+export interface EnableOrganizationsRootCredentialsManagementResponse {
+    /**
+     * <p>The unique identifier (ID) of an organization.</p>
+     * @public
+     */
+    OrganizationId?: string | undefined;
+    /**
+     * <p>The features you have enabled for centralized root access.</p>
+     * @public
+     */
+    EnabledFeatures?: FeatureType[] | undefined;
+}
+/**
+ * @public
+ */
+export interface EnableOrganizationsRootSessionsRequest {
+}
+/**
+ * @public
+ */
+export interface EnableOrganizationsRootSessionsResponse {
+    /**
+     * <p>The unique identifier (ID) of an organization.</p>
+     * @public
+     */
+    OrganizationId?: string | undefined;
+    /**
+     * <p>The features you have enabled for centralized root access.</p>
+     * @public
+     */
+    EnabledFeatures?: FeatureType[] | undefined;
+}
 /**
  * @public
  * @enum
@@ -2441,12 +2640,12 @@ export interface GenerateCredentialReportResponse {
      * <p>Information about the state of the credential report.</p>
      * @public
      */
-    State?: ReportStateType;
+    State?: ReportStateType | undefined;
     /**
      * <p>Information about the credential report.</p>
      * @public
      */
-    Description?: string;
+    Description?: string | undefined;
 }
 /**
  * @public
@@ -2469,7 +2668,7 @@ export interface GenerateOrganizationsAccessReportRequest {
      *             limited by the SCP attempted to access an Amazon Web Services service.</p>
      * @public
      */
-    OrganizationsPolicyId?: string;
+    OrganizationsPolicyId?: string | undefined;
 }
 /**
  * @public
@@ -2479,7 +2678,7 @@ export interface GenerateOrganizationsAccessReportResponse {
      * <p>The job identifier that you can use in the <a>GetOrganizationsAccessReport</a> operation.</p>
      * @public
      */
-    JobId?: string;
+    JobId?: string | undefined;
 }
 /**
  * <p>The request failed because the maximum number of concurrent requests for this account are
@@ -2513,7 +2712,7 @@ export interface GenerateServiceLastAccessedDetailsRequest {
      *             include this optional parameter, the operation generates service data.</p>
      * @public
      */
-    Granularity?: AccessAdvisorUsageGranularityType;
+    Granularity?: AccessAdvisorUsageGranularityType | undefined;
 }
 /**
  * @public
@@ -2526,7 +2725,7 @@ export interface GenerateServiceLastAccessedDetailsResponse {
      *                 <code>GetServiceLastAccessedDetail</code>.</p>
      * @public
      */
-    JobId?: string;
+    JobId?: string | undefined;
 }
 /**
  * @public
@@ -2552,12 +2751,12 @@ export interface GetAccessKeyLastUsedResponse {
      *          <p></p>
      * @public
      */
-    UserName?: string;
+    UserName?: string | undefined;
     /**
      * <p>Contains information about the last time the access key was used.</p>
      * @public
      */
-    AccessKeyLastUsed?: AccessKeyLastUsed;
+    AccessKeyLastUsed?: AccessKeyLastUsed | undefined;
 }
 /**
  * @public
@@ -2586,7 +2785,7 @@ export interface GetAccountAuthorizationDetailsRequest {
      *             Each string value in the list must be one of the valid values listed below.</p>
      * @public
      */
-    Filter?: EntityType[];
+    Filter?: EntityType[] | undefined;
     /**
      * <p>Use this only when paginating results to indicate the
      *     maximum number of items you want in the response. If additional items exist beyond the maximum
@@ -2598,7 +2797,7 @@ export interface GetAccountAuthorizationDetailsRequest {
      *     from.</p>
      * @public
      */
-    MaxItems?: number;
+    MaxItems?: number | undefined;
     /**
      * <p>Use this parameter only when paginating results and only after
      *     you receive a response indicating that the results are truncated. Set it to the value of the
@@ -2606,7 +2805,7 @@ export interface GetAccountAuthorizationDetailsRequest {
      *     should start.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
 }
 /**
  * <p>Contains information about an IAM policy, including the policy document.</p>
@@ -2618,12 +2817,12 @@ export interface PolicyDetail {
      * <p>The name of the policy.</p>
      * @public
      */
-    PolicyName?: string;
+    PolicyName?: string | undefined;
     /**
      * <p>The policy document.</p>
      * @public
      */
-    PolicyDocument?: string;
+    PolicyDocument?: string | undefined;
 }
 /**
  * <p>Contains information about an IAM group, including all of the group's policies.</p>
@@ -2636,42 +2835,42 @@ export interface GroupDetail {
      *             <i>IAM User Guide</i>.</p>
      * @public
      */
-    Path?: string;
+    Path?: string | undefined;
     /**
      * <p>The friendly name that identifies the group.</p>
      * @public
      */
-    GroupName?: string;
+    GroupName?: string | undefined;
     /**
      * <p>The stable and unique string identifying the group. For more information about IDs, see
      *             <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html">IAM
      *             identifiers</a> in the <i>IAM User Guide</i>.</p>
      * @public
      */
-    GroupId?: string;
+    GroupId?: string | undefined;
     /**
      * <p>The Amazon Resource Name (ARN). ARNs are unique identifiers for Amazon Web Services resources.</p>
      *          <p>For more information about ARNs, go to <a href="https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource Names (ARNs)</a> in
      *          the <i>Amazon Web Services General Reference</i>. </p>
      * @public
      */
-    Arn?: string;
+    Arn?: string | undefined;
     /**
      * <p>The date and time, in <a href="http://www.iso.org/iso/iso8601">ISO 8601 date-time
      *             format</a>, when the group was created.</p>
      * @public
      */
-    CreateDate?: Date;
+    CreateDate?: Date | undefined;
     /**
      * <p>A list of the inline policies embedded in the group.</p>
      * @public
      */
-    GroupPolicyList?: PolicyDetail[];
+    GroupPolicyList?: PolicyDetail[] | undefined;
     /**
      * <p>A list of the managed policies attached to the group.</p>
      * @public
      */
-    AttachedManagedPolicies?: AttachedPolicy[];
+    AttachedManagedPolicies?: AttachedPolicy[] | undefined;
 }
 /**
  * <p>Contains information about a managed policy, including the policy's ARN, versions, and
@@ -2687,28 +2886,28 @@ export interface ManagedPolicyDetail {
      * <p>The friendly name (not ARN) identifying the policy.</p>
      * @public
      */
-    PolicyName?: string;
+    PolicyName?: string | undefined;
     /**
      * <p>The stable and unique string identifying the policy.</p>
      *          <p>For more information about IDs, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html">IAM identifiers</a> in the
      *             <i>IAM User Guide</i>.</p>
      * @public
      */
-    PolicyId?: string;
+    PolicyId?: string | undefined;
     /**
      * <p>The Amazon Resource Name (ARN). ARNs are unique identifiers for Amazon Web Services resources.</p>
      *          <p>For more information about ARNs, go to <a href="https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource Names (ARNs)</a> in
      *          the <i>Amazon Web Services General Reference</i>. </p>
      * @public
      */
-    Arn?: string;
+    Arn?: string | undefined;
     /**
      * <p>The path to the policy.</p>
      *          <p>For more information about paths, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html">IAM identifiers</a> in the
      *             <i>IAM User Guide</i>.</p>
      * @public
      */
-    Path?: string;
+    Path?: string | undefined;
     /**
      * <p>The identifier for the version of the policy that is set as the default (operative)
      *          version.</p>
@@ -2716,13 +2915,13 @@ export interface ManagedPolicyDetail {
      *             policies</a> in the <i>IAM User Guide</i>. </p>
      * @public
      */
-    DefaultVersionId?: string;
+    DefaultVersionId?: string | undefined;
     /**
      * <p>The number of principal entities (users, groups, and roles) that the policy is attached
      *          to.</p>
      * @public
      */
-    AttachmentCount?: number;
+    AttachmentCount?: number | undefined;
     /**
      * <p>The number of entities (users and roles) for which the policy is used as the permissions
      *          boundary. </p>
@@ -2730,23 +2929,23 @@ export interface ManagedPolicyDetail {
      *             identities </a> in the <i>IAM User Guide</i>.</p>
      * @public
      */
-    PermissionsBoundaryUsageCount?: number;
+    PermissionsBoundaryUsageCount?: number | undefined;
     /**
      * <p>Specifies whether the policy can be attached to an IAM user, group, or role.</p>
      * @public
      */
-    IsAttachable?: boolean;
+    IsAttachable?: boolean | undefined;
     /**
      * <p>A friendly description of the policy.</p>
      * @public
      */
-    Description?: string;
+    Description?: string | undefined;
     /**
      * <p>The date and time, in <a href="http://www.iso.org/iso/iso8601">ISO 8601 date-time
      *             format</a>, when the policy was created.</p>
      * @public
      */
-    CreateDate?: Date;
+    CreateDate?: Date | undefined;
     /**
      * <p>The date and time, in <a href="http://www.iso.org/iso/iso8601">ISO 8601 date-time
      *             format</a>, when the policy was last updated.</p>
@@ -2755,12 +2954,12 @@ export interface ManagedPolicyDetail {
      *          and time when the most recent policy version was created.</p>
      * @public
      */
-    UpdateDate?: Date;
+    UpdateDate?: Date | undefined;
     /**
      * <p>A list containing information about the versions of the policy.</p>
      * @public
      */
-    PolicyVersionList?: PolicyVersion[];
+    PolicyVersionList?: PolicyVersion[] | undefined;
 }
 /**
  * <p>Contains information about an IAM role, including all of the role's policies.</p>
@@ -2773,76 +2972,77 @@ export interface RoleDetail {
      *             <i>IAM User Guide</i>.</p>
      * @public
      */
-    Path?: string;
+    Path?: string | undefined;
     /**
      * <p>The friendly name that identifies the role.</p>
      * @public
      */
-    RoleName?: string;
+    RoleName?: string | undefined;
     /**
      * <p>The stable and unique string identifying the role. For more information about IDs, see
      *             <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html">IAM
      *             identifiers</a> in the <i>IAM User Guide</i>.</p>
      * @public
      */
-    RoleId?: string;
+    RoleId?: string | undefined;
     /**
      * <p>The Amazon Resource Name (ARN). ARNs are unique identifiers for Amazon Web Services resources.</p>
      *          <p>For more information about ARNs, go to <a href="https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource Names (ARNs)</a> in
      *          the <i>Amazon Web Services General Reference</i>. </p>
      * @public
      */
-    Arn?: string;
+    Arn?: string | undefined;
     /**
      * <p>The date and time, in <a href="http://www.iso.org/iso/iso8601">ISO 8601 date-time
      *             format</a>, when the role was created.</p>
      * @public
      */
-    CreateDate?: Date;
+    CreateDate?: Date | undefined;
     /**
      * <p>The trust policy that grants permission to assume the role.</p>
      * @public
      */
-    AssumeRolePolicyDocument?: string;
+    AssumeRolePolicyDocument?: string | undefined;
     /**
      * <p>A list of instance profiles that contain this role.</p>
      * @public
      */
-    InstanceProfileList?: InstanceProfile[];
+    InstanceProfileList?: InstanceProfile[] | undefined;
     /**
      * <p>A list of inline policies embedded in the role. These policies are the role's access
      *          (permissions) policies.</p>
      * @public
      */
-    RolePolicyList?: PolicyDetail[];
+    RolePolicyList?: PolicyDetail[] | undefined;
     /**
      * <p>A list of managed policies attached to the role. These policies are the role's access
      *          (permissions) policies.</p>
      * @public
      */
-    AttachedManagedPolicies?: AttachedPolicy[];
+    AttachedManagedPolicies?: AttachedPolicy[] | undefined;
     /**
      * <p>The ARN of the policy used to set the permissions boundary for the role.</p>
      *          <p>For more information about permissions boundaries, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_boundaries.html">Permissions boundaries for IAM
      *             identities </a> in the <i>IAM User Guide</i>.</p>
      * @public
      */
-    PermissionsBoundary?: AttachedPermissionsBoundary;
+    PermissionsBoundary?: AttachedPermissionsBoundary | undefined;
     /**
      * <p>A list of tags that are attached to the role. For more information about tagging, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html">Tagging IAM resources</a> in the
      *       <i>IAM User Guide</i>.</p>
      * @public
      */
-    Tags?: Tag[];
+    Tags?: Tag[] | undefined;
     /**
      * <p>Contains information about the last time that an IAM role was used. This includes the
      *          date and time and the Region in which the role was last used. Activity is only reported for
      *          the trailing 400 days. This period can be shorter if your Region began supporting these
      *          features within the last year. The role might have been used more than 400 days ago. For
-     *          more information, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_access-advisor.html#access-advisor_tracking-period">Regions where data is tracked</a> in the <i>IAM User Guide</i>.</p>
+     *          more information, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_access-advisor.html#access-advisor_tracking-period">Regions where data is tracked</a> in the
+     *          <i>IAM User Guide</i>.</p>
      * @public
      */
-    RoleLastUsed?: RoleLastUsed;
+    RoleLastUsed?: RoleLastUsed | undefined;
 }
 /**
  * <p>Contains information about an IAM user, including all the user's policies and all the
@@ -2856,60 +3056,60 @@ export interface UserDetail {
      *             <i>IAM User Guide</i>.</p>
      * @public
      */
-    Path?: string;
+    Path?: string | undefined;
     /**
      * <p>The friendly name identifying the user.</p>
      * @public
      */
-    UserName?: string;
+    UserName?: string | undefined;
     /**
      * <p>The stable and unique string identifying the user. For more information about IDs, see
      *             <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/Using_Identifiers.html">IAM
      *             identifiers</a> in the <i>IAM User Guide</i>.</p>
      * @public
      */
-    UserId?: string;
+    UserId?: string | undefined;
     /**
      * <p>The Amazon Resource Name (ARN). ARNs are unique identifiers for Amazon Web Services resources.</p>
      *          <p>For more information about ARNs, go to <a href="https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource Names (ARNs)</a> in
      *          the <i>Amazon Web Services General Reference</i>. </p>
      * @public
      */
-    Arn?: string;
+    Arn?: string | undefined;
     /**
      * <p>The date and time, in <a href="http://www.iso.org/iso/iso8601">ISO 8601 date-time
      *             format</a>, when the user was created.</p>
      * @public
      */
-    CreateDate?: Date;
+    CreateDate?: Date | undefined;
     /**
      * <p>A list of the inline policies embedded in the user.</p>
      * @public
      */
-    UserPolicyList?: PolicyDetail[];
+    UserPolicyList?: PolicyDetail[] | undefined;
     /**
      * <p>A list of IAM groups that the user is in.</p>
      * @public
      */
-    GroupList?: string[];
+    GroupList?: string[] | undefined;
     /**
      * <p>A list of the managed policies attached to the user.</p>
      * @public
      */
-    AttachedManagedPolicies?: AttachedPolicy[];
+    AttachedManagedPolicies?: AttachedPolicy[] | undefined;
     /**
      * <p>The ARN of the policy used to set the permissions boundary for the user.</p>
      *          <p>For more information about permissions boundaries, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_boundaries.html">Permissions boundaries for IAM
      *             identities </a> in the <i>IAM User Guide</i>.</p>
      * @public
      */
-    PermissionsBoundary?: AttachedPermissionsBoundary;
+    PermissionsBoundary?: AttachedPermissionsBoundary | undefined;
     /**
      * <p>A list of tags that are associated with the user. For more information about tagging, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html">Tagging IAM resources</a> in the
      *       <i>IAM User Guide</i>.</p>
      * @public
      */
-    Tags?: Tag[];
+    Tags?: Tag[] | undefined;
 }
 /**
  * <p>Contains the response to a successful <a>GetAccountAuthorizationDetails</a>
@@ -2921,22 +3121,22 @@ export interface GetAccountAuthorizationDetailsResponse {
      * <p>A list containing information about IAM users.</p>
      * @public
      */
-    UserDetailList?: UserDetail[];
+    UserDetailList?: UserDetail[] | undefined;
     /**
      * <p>A list containing information about IAM groups.</p>
      * @public
      */
-    GroupDetailList?: GroupDetail[];
+    GroupDetailList?: GroupDetail[] | undefined;
     /**
      * <p>A list containing information about IAM roles.</p>
      * @public
      */
-    RoleDetailList?: RoleDetail[];
+    RoleDetailList?: RoleDetail[] | undefined;
     /**
      * <p>A list containing information about managed policies.</p>
      * @public
      */
-    Policies?: ManagedPolicyDetail[];
+    Policies?: ManagedPolicyDetail[] | undefined;
     /**
      * <p>A flag that indicates whether there are more items to return. If your
      *     results were truncated, you can make a subsequent pagination request using the <code>Marker</code>
@@ -2946,14 +3146,14 @@ export interface GetAccountAuthorizationDetailsResponse {
      *     results.</p>
      * @public
      */
-    IsTruncated?: boolean;
+    IsTruncated?: boolean | undefined;
     /**
      * <p>When <code>IsTruncated</code> is <code>true</code>, this element
      *     is present and contains the value to use for the <code>Marker</code> parameter in a subsequent
      *     pagination request.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
 }
 /**
  * <p>Contains information about the account password policy.</p>
@@ -2965,32 +3165,32 @@ export interface PasswordPolicy {
      * <p>Minimum length to require for IAM user passwords.</p>
      * @public
      */
-    MinimumPasswordLength?: number;
+    MinimumPasswordLength?: number | undefined;
     /**
      * <p>Specifies whether IAM user passwords must contain at least one of the following
      *          symbols:</p>
      *          <p>! @ # $ % ^ & * ( ) _ + - = [ ] \{ \} | '</p>
      * @public
      */
-    RequireSymbols?: boolean;
+    RequireSymbols?: boolean | undefined;
     /**
      * <p>Specifies whether IAM user passwords must contain at least one numeric character (0 to
      *          9).</p>
      * @public
      */
-    RequireNumbers?: boolean;
+    RequireNumbers?: boolean | undefined;
     /**
      * <p>Specifies whether IAM user passwords must contain at least one uppercase character (A
      *          to Z).</p>
      * @public
      */
-    RequireUppercaseCharacters?: boolean;
+    RequireUppercaseCharacters?: boolean | undefined;
     /**
      * <p>Specifies whether IAM user passwords must contain at least one lowercase character (a
      *          to z).</p>
      * @public
      */
-    RequireLowercaseCharacters?: boolean;
+    RequireLowercaseCharacters?: boolean | undefined;
     /**
      * <p>Specifies whether IAM users are allowed to change their own password. Gives IAM
      *          users permissions to <code>iam:ChangePassword</code> for only their user and to the
@@ -2999,25 +3199,25 @@ export interface PasswordPolicy {
      *          for all users by IAM.</p>
      * @public
      */
-    AllowUsersToChangePassword?: boolean;
+    AllowUsersToChangePassword?: boolean | undefined;
     /**
      * <p>Indicates whether passwords in the account expire. Returns true if
      *             <code>MaxPasswordAge</code> contains a value greater than 0. Returns false if
      *          MaxPasswordAge is 0 or not present.</p>
      * @public
      */
-    ExpirePasswords?: boolean;
+    ExpirePasswords?: boolean | undefined;
     /**
      * <p>The number of days that an IAM user password is valid.</p>
      * @public
      */
-    MaxPasswordAge?: number;
+    MaxPasswordAge?: number | undefined;
     /**
      * <p>Specifies the number of previous passwords that IAM users are prevented from
      *          reusing.</p>
      * @public
      */
-    PasswordReusePrevention?: number;
+    PasswordReusePrevention?: number | undefined;
     /**
      * <p>Specifies whether IAM users are prevented from setting a new password via the
      *          Amazon Web Services Management Console after their password has expired. The IAM user cannot access the console until
@@ -3026,7 +3226,7 @@ export interface PasswordPolicy {
      *          CLI or API.</p>
      * @public
      */
-    HardExpiry?: boolean;
+    HardExpiry?: boolean | undefined;
 }
 /**
  * <p>Contains the response to a successful <a>GetAccountPasswordPolicy</a>
@@ -3048,6 +3248,7 @@ export declare const SummaryKeyType: {
     readonly AccessKeysPerUserQuota: "AccessKeysPerUserQuota";
     readonly AccountAccessKeysPresent: "AccountAccessKeysPresent";
     readonly AccountMFAEnabled: "AccountMFAEnabled";
+    readonly AccountPasswordPresent: "AccountPasswordPresent";
     readonly AccountSigningCertificatesPresent: "AccountSigningCertificatesPresent";
     readonly AttachedPoliciesPerGroupQuota: "AttachedPoliciesPerGroupQuota";
     readonly AttachedPoliciesPerRoleQuota: "AttachedPoliciesPerRoleQuota";
@@ -3087,7 +3288,7 @@ export interface GetAccountSummaryResponse {
      *             IAM quotas.</p>
      * @public
      */
-    SummaryMap?: Partial<Record<SummaryKeyType, number>>;
+    SummaryMap?: Partial<Record<SummaryKeyType, number>> | undefined;
 }
 /**
  * @public
@@ -3126,7 +3327,7 @@ export interface GetContextKeysForPolicyResponse {
      * <p>The list of context keys that are referenced in the input policies.</p>
      * @public
      */
-    ContextKeyNames?: string[];
+    ContextKeyNames?: string[] | undefined;
 }
 /**
  * @public
@@ -3165,13 +3366,13 @@ export interface GetContextKeysForPrincipalPolicyRequest {
      *          </ul>
      * @public
      */
-    PolicyInputList?: string[];
+    PolicyInputList?: string[] | undefined;
 }
 /**
  * <p>The request was rejected because the most recent credential report has expired. To
  *       generate a new credential report, use <a>GenerateCredentialReport</a>. For more
  *       information about credential report expiration, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/credential-reports.html">Getting credential reports</a> in the
- *         <i>IAM User Guide</i>.</p>
+ *       <i>IAM User Guide</i>.</p>
  * @public
  */
 export declare class CredentialReportExpiredException extends __BaseException {
@@ -3228,17 +3429,17 @@ export interface GetCredentialReportResponse {
      * <p>Contains the credential report. The report is Base64-encoded.</p>
      * @public
      */
-    Content?: Uint8Array;
+    Content?: Uint8Array | undefined;
     /**
      * <p>The format (MIME type) of the credential report.</p>
      * @public
      */
-    ReportFormat?: ReportFormatType;
+    ReportFormat?: ReportFormatType | undefined;
     /**
      * <p> The date and time when the credential report was created, in <a href="http://www.iso.org/iso/iso8601">ISO 8601 date-time format</a>.</p>
      * @public
      */
-    GeneratedTime?: Date;
+    GeneratedTime?: Date | undefined;
 }
 /**
  * @public
@@ -3258,7 +3459,7 @@ export interface GetGroupRequest {
      *     should start.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
     /**
      * <p>Use this only when paginating results to indicate the
      *     maximum number of items you want in the response. If additional items exist beyond the maximum
@@ -3270,7 +3471,7 @@ export interface GetGroupRequest {
      *     from.</p>
      * @public
      */
-    MaxItems?: number;
+    MaxItems?: number | undefined;
 }
 /**
  * <p>Contains the response to a successful <a>GetGroup</a> request. </p>
@@ -3296,14 +3497,14 @@ export interface GetGroupResponse {
      *     results.</p>
      * @public
      */
-    IsTruncated?: boolean;
+    IsTruncated?: boolean | undefined;
     /**
      * <p>When <code>IsTruncated</code> is <code>true</code>, this element
      *     is present and contains the value to use for the <code>Marker</code> parameter in a subsequent
      *     pagination request.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
 }
 /**
  * @public
@@ -3379,11 +3580,14 @@ export interface GetInstanceProfileResponse {
 export interface GetLoginProfileRequest {
     /**
      * <p>The name of the user whose login profile you want to retrieve.</p>
+     *          <p>This parameter is optional. If no user name is included, it defaults to the principal
+     *             making the request. When you make this request with root user credentials, you must use
+     *             an <a href="https://docs.aws.amazon.com/STS/latest/APIReference/API_AssumeRoot.html">AssumeRoot</a> session to omit the user name.</p>
      *          <p>This parameter allows (through its <a href="http://wikipedia.org/wiki/regex">regex pattern</a>) a string of characters consisting of upper and lowercase alphanumeric
      *     characters with no spaces. You can also include any of the following characters: _+=,.@-</p>
      * @public
      */
-    UserName: string | undefined;
+    UserName?: string | undefined;
 }
 /**
  * <p>Contains the response to a successful <a>GetLoginProfile</a> request.
@@ -3412,7 +3616,7 @@ export interface GetMFADeviceRequest {
      * <p>The friendly name identifying the user.</p>
      * @public
      */
-    UserName?: string;
+    UserName?: string | undefined;
 }
 /**
  * @public
@@ -3422,7 +3626,7 @@ export interface GetMFADeviceResponse {
      * <p>The friendly name identifying the user.</p>
      * @public
      */
-    UserName?: string;
+    UserName?: string | undefined;
     /**
      * <p>Serial number that uniquely identifies the MFA device. For this API, we only accept
      *             FIDO security key <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/reference-arns.html">ARNs</a>.</p>
@@ -3433,14 +3637,14 @@ export interface GetMFADeviceResponse {
      * <p>The date that a specified user's MFA device was first enabled.</p>
      * @public
      */
-    EnableDate?: Date;
+    EnableDate?: Date | undefined;
     /**
      * <p>The certifications of a specified user's MFA device. We currently provide FIPS-140-2,
      *             FIPS-140-3, and FIDO certification levels obtained from <a href="https://fidoalliance.org/metadata/"> FIDO Alliance Metadata Service
      *                 (MDS)</a>.</p>
      * @public
      */
-    Certifications?: Record<string, string>;
+    Certifications?: Record<string, string> | undefined;
 }
 /**
  * @public
@@ -3465,32 +3669,32 @@ export interface GetOpenIDConnectProviderResponse {
      *             information, see <a>CreateOpenIDConnectProvider</a>.</p>
      * @public
      */
-    Url?: string;
+    Url?: string | undefined;
     /**
      * <p>A list of client IDs (also known as audiences) that are associated with the specified
      *             IAM OIDC provider resource object. For more information, see <a>CreateOpenIDConnectProvider</a>.</p>
      * @public
      */
-    ClientIDList?: string[];
+    ClientIDList?: string[] | undefined;
     /**
      * <p>A list of certificate thumbprints that are associated with the specified IAM OIDC
      *             provider resource object. For more information, see <a>CreateOpenIDConnectProvider</a>. </p>
      * @public
      */
-    ThumbprintList?: string[];
+    ThumbprintList?: string[] | undefined;
     /**
      * <p>The date and time when the IAM OIDC provider resource object was created in the
      *             Amazon Web Services account.</p>
      * @public
      */
-    CreateDate?: Date;
+    CreateDate?: Date | undefined;
     /**
      * <p>A list of tags that are attached to the specified IAM OIDC provider. The returned list of tags is sorted by tag key.
      *       For more information about tagging, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html">Tagging IAM resources</a> in the
      *       <i>IAM User Guide</i>.</p>
      * @public
      */
-    Tags?: Tag[];
+    Tags?: Tag[] | undefined;
 }
 /**
  * @public
@@ -3526,7 +3730,7 @@ export interface GetOrganizationsAccessReportRequest {
      *     from.</p>
      * @public
      */
-    MaxItems?: number;
+    MaxItems?: number | undefined;
     /**
      * <p>Use this parameter only when paginating results and only after
      *     you receive a response indicating that the results are truncated. Set it to the value of the
@@ -3534,14 +3738,14 @@ export interface GetOrganizationsAccessReportRequest {
      *     should start.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
     /**
      * <p>The key that is used to sort the results. If you choose the namespace key, the results
      *             are returned in alphabetical order. If you choose the time key, the results are sorted
      *             numerically by the date and time.</p>
      * @public
      */
-    SortKey?: SortKeyType;
+    SortKey?: SortKeyType | undefined;
 }
 /**
  * <p>Contains information about the reason that the operation failed.</p>
@@ -3595,25 +3799,25 @@ export interface GetOrganizationsAccessReportResponse {
      *             of <code>IN_PROGRESS</code>.</p>
      * @public
      */
-    JobCompletionDate?: Date;
+    JobCompletionDate?: Date | undefined;
     /**
      * <p>The number of services that the applicable SCPs allow account principals to
      *             access.</p>
      * @public
      */
-    NumberOfServicesAccessible?: number;
+    NumberOfServicesAccessible?: number | undefined;
     /**
      * <p>The number of services that account principals are allowed but did not attempt to
      *             access.</p>
      * @public
      */
-    NumberOfServicesNotAccessed?: number;
+    NumberOfServicesNotAccessed?: number | undefined;
     /**
      * <p>An object that contains details about the most recent attempt to access the
      *             service.</p>
      * @public
      */
-    AccessDetails?: AccessDetail[];
+    AccessDetails?: AccessDetail[] | undefined;
     /**
      * <p>A flag that indicates whether there are more items to return. If your
      *     results were truncated, you can make a subsequent pagination request using the <code>Marker</code>
@@ -3623,20 +3827,20 @@ export interface GetOrganizationsAccessReportResponse {
      *     results.</p>
      * @public
      */
-    IsTruncated?: boolean;
+    IsTruncated?: boolean | undefined;
     /**
      * <p>When <code>IsTruncated</code> is <code>true</code>, this element
      *     is present and contains the value to use for the <code>Marker</code> parameter in a subsequent
      *     pagination request.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
     /**
      * <p>Contains information about the reason that the operation failed.</p>
      *          <p>This data type is used as a response element in the <a>GetOrganizationsAccessReport</a>, <a>GetServiceLastAccessedDetails</a>, and <a>GetServiceLastAccessedDetailsWithEntities</a> operations.</p>
      * @public
      */
-    ErrorDetails?: ErrorDetails;
+    ErrorDetails?: ErrorDetails | undefined;
 }
 /**
  * @public
@@ -3659,7 +3863,7 @@ export interface GetPolicyResponse {
      * <p>A structure containing details about the policy.</p>
      * @public
      */
-    Policy?: Policy;
+    Policy?: Policy | undefined;
 }
 /**
  * @public
@@ -3691,7 +3895,7 @@ export interface GetPolicyVersionResponse {
      * <p>A structure containing details about the policy version.</p>
      * @public
      */
-    PolicyVersion?: PolicyVersion;
+    PolicyVersion?: PolicyVersion | undefined;
 }
 /**
  * @public
@@ -3772,34 +3976,67 @@ export interface GetSAMLProviderRequest {
      */
     SAMLProviderArn: string | undefined;
 }
+/**
+ * <p>Contains the private keys for the SAML provider.</p>
+ *          <p>This data type is used as a response element in the <a>GetSAMLProvider</a> operation.</p>
+ * @public
+ */
+export interface SAMLPrivateKey {
+    /**
+     * <p>The unique identifier for the SAML private key.</p>
+     * @public
+     */
+    KeyId?: string | undefined;
+    /**
+     * <p>The date and time, in <a href="http://www.iso.org/iso/iso8601">ISO 8601 date-time
+     *          </a> format, when the private key was uploaded.</p>
+     * @public
+     */
+    Timestamp?: Date | undefined;
+}
 /**
  * <p>Contains the response to a successful <a>GetSAMLProvider</a> request.
  *     </p>
  * @public
  */
 export interface GetSAMLProviderResponse {
+    /**
+     * <p>The unique identifier assigned to the SAML provider.</p>
+     * @public
+     */
+    SAMLProviderUUID?: string | undefined;
     /**
      * <p>The XML metadata document that includes information about an identity provider.</p>
      * @public
      */
-    SAMLMetadataDocument?: string;
+    SAMLMetadataDocument?: string | undefined;
     /**
      * <p>The date and time when the SAML provider was created.</p>
      * @public
      */
-    CreateDate?: Date;
+    CreateDate?: Date | undefined;
     /**
      * <p>The expiration date and time for the SAML provider.</p>
      * @public
      */
-    ValidUntil?: Date;
+    ValidUntil?: Date | undefined;
     /**
      * <p>A list of tags that are attached to the specified IAM SAML provider. The returned list of tags is sorted by tag key.
      *       For more information about tagging, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html">Tagging IAM resources</a> in the
      *       <i>IAM User Guide</i>.</p>
      * @public
      */
-    Tags?: Tag[];
+    Tags?: Tag[] | undefined;
+    /**
+     * <p>Specifies the encryption setting for the SAML provider.</p>
+     * @public
+     */
+    AssertionEncryptionMode?: AssertionEncryptionModeType | undefined;
+    /**
+     * <p>The private key metadata for the SAML provider.</p>
+     * @public
+     */
+    PrivateKeyList?: SAMLPrivateKey[] | undefined;
 }
 /**
  * @public
@@ -3849,12 +4086,12 @@ export interface ServerCertificateMetadata {
      * <p>The date when the server certificate was uploaded.</p>
      * @public
      */
-    UploadDate?: Date;
+    UploadDate?: Date | undefined;
     /**
      * <p>The date on which the certificate is set to expire.</p>
      * @public
      */
-    Expiration?: Date;
+    Expiration?: Date | undefined;
 }
 /**
  * <p>Contains information about a server certificate.</p>
@@ -3877,13 +4114,13 @@ export interface ServerCertificate {
      * <p>The contents of the public key certificate chain.</p>
      * @public
      */
-    CertificateChain?: string;
+    CertificateChain?: string | undefined;
     /**
      * <p>A list of tags that are attached to the server certificate. For more information about tagging, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/id_tags.html">Tagging IAM resources</a> in the
      *       <i>IAM User Guide</i>.</p>
      * @public
      */
-    Tags?: Tag[];
+    Tags?: Tag[] | undefined;
 }
 /**
  * <p>Contains the response to a successful <a>GetServerCertificate</a> request.
@@ -3920,7 +4157,7 @@ export interface GetServiceLastAccessedDetailsRequest {
      *     from.</p>
      * @public
      */
-    MaxItems?: number;
+    MaxItems?: number | undefined;
     /**
      * <p>Use this parameter only when paginating results and only after
      *     you receive a response indicating that the results are truncated. Set it to the value of the
@@ -3928,7 +4165,7 @@ export interface GetServiceLastAccessedDetailsRequest {
      *     should start.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
 }
 /**
  * <p>Contains details about the most recent attempt to access an action within the
@@ -3942,14 +4179,14 @@ export interface TrackedActionLastAccessed {
      *          actions that report activity to IAM.</p>
      * @public
      */
-    ActionName?: string;
+    ActionName?: string | undefined;
     /**
      * <p>The Amazon Resource Name (ARN). ARNs are unique identifiers for Amazon Web Services resources.</p>
      *          <p>For more information about ARNs, go to <a href="https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource Names (ARNs)</a> in
      *          the <i>Amazon Web Services General Reference</i>. </p>
      * @public
      */
-    LastAccessedEntity?: string;
+    LastAccessedEntity?: string | undefined;
     /**
      * <p>The date and time, in <a href="http://www.iso.org/iso/iso8601">ISO 8601 date-time
      *             format</a>, when an authenticated entity most recently attempted to access the
@@ -3958,7 +4195,7 @@ export interface TrackedActionLastAccessed {
      *             <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_access-advisor.html#service-last-accessed-reporting-period">tracking period</a>.</p>
      * @public
      */
-    LastAccessedTime?: Date;
+    LastAccessedTime?: Date | undefined;
     /**
      * <p>The Region from which the authenticated entity (user or role) last attempted to access
      *          the tracked action. Amazon Web Services does not report unauthenticated requests.</p>
@@ -3966,7 +4203,7 @@ export interface TrackedActionLastAccessed {
      *             <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_access-advisor.html#service-last-accessed-reporting-period">tracking period</a>.</p>
      * @public
      */
-    LastAccessedRegion?: string;
+    LastAccessedRegion?: string | undefined;
 }
 /**
  * <p>Contains details about the most recent attempt to access the service.</p>
@@ -3987,7 +4224,7 @@ export interface ServiceLastAccessed {
      *             <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_access-advisor.html#service-last-accessed-reporting-period">tracking period</a>.</p>
      * @public
      */
-    LastAuthenticated?: Date;
+    LastAuthenticated?: Date | undefined;
     /**
      * <p>The namespace of the service in which access was attempted.</p>
      *          <p>To learn the service namespace of a service, see <a href="https://docs.aws.amazon.com/service-authorization/latest/reference/reference_policies_actions-resources-contextkeys.html">Actions, resources, and condition keys for Amazon Web Services services</a> in the
@@ -4006,7 +4243,7 @@ export interface ServiceLastAccessed {
      *             <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_access-advisor.html#service-last-accessed-reporting-period">tracking period</a>.</p>
      * @public
      */
-    LastAuthenticatedEntity?: string;
+    LastAuthenticatedEntity?: string | undefined;
     /**
      * <p>The Region from which the authenticated entity (user or role) last attempted to access
      *          the service. Amazon Web Services does not report unauthenticated requests.</p>
@@ -4014,14 +4251,14 @@ export interface ServiceLastAccessed {
      *             <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_access-advisor.html#service-last-accessed-reporting-period">tracking period</a>.</p>
      * @public
      */
-    LastAuthenticatedRegion?: string;
+    LastAuthenticatedRegion?: string | undefined;
     /**
-     * <p>The total number of authenticated principals (root user, IAM users, or IAM roles)
-     *          that have attempted to access the service.</p>
+     * <p>The total number of authenticated principals (root user, IAM users, or IAM roles) that
+     *          have attempted to access the service.</p>
      *          <p>This field is null if no principals attempted to access the service within the <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_access-advisor.html#service-last-accessed-reporting-period">tracking period</a>.</p>
      * @public
      */
-    TotalAuthenticatedEntities?: number;
+    TotalAuthenticatedEntities?: number | undefined;
     /**
      * <p>An object that contains details about the most recent attempt to access a tracked action
      *          within the service.</p>
@@ -4031,7 +4268,7 @@ export interface ServiceLastAccessed {
      *             <code>Granularity</code> field in <a>GenerateServiceLastAccessedDetails</a>.</p>
      * @public
      */
-    TrackedActionsLastAccessed?: TrackedActionLastAccessed[];
+    TrackedActionsLastAccessed?: TrackedActionLastAccessed[] | undefined;
 }
 /**
  * @public
@@ -4048,7 +4285,7 @@ export interface GetServiceLastAccessedDetailsResponse {
      *             service were last accessed.</p>
      * @public
      */
-    JobType?: AccessAdvisorUsageGranularityType;
+    JobType?: AccessAdvisorUsageGranularityType | undefined;
     /**
      * <p>The date and time, in <a href="http://www.iso.org/iso/iso8601">ISO 8601 date-time
      *                 format</a>, when the report job was created.</p>
@@ -4078,19 +4315,19 @@ export interface GetServiceLastAccessedDetailsResponse {
      *     results.</p>
      * @public
      */
-    IsTruncated?: boolean;
+    IsTruncated?: boolean | undefined;
     /**
      * <p>When <code>IsTruncated</code> is <code>true</code>, this element
      *     is present and contains the value to use for the <code>Marker</code> parameter in a subsequent
      *     pagination request.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
     /**
      * <p>An object that contains details about the reason the operation failed.</p>
      * @public
      */
-    Error?: ErrorDetails;
+    Error?: ErrorDetails | undefined;
 }
 /**
  * @public
@@ -4125,7 +4362,7 @@ export interface GetServiceLastAccessedDetailsWithEntitiesRequest {
      *     from.</p>
      * @public
      */
-    MaxItems?: number;
+    MaxItems?: number | undefined;
     /**
      * <p>Use this parameter only when paginating results and only after
      *     you receive a response indicating that the results are truncated. Set it to the value of the
@@ -4133,7 +4370,7 @@ export interface GetServiceLastAccessedDetailsWithEntitiesRequest {
      *     should start.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
 }
 /**
  * @public
@@ -4181,7 +4418,7 @@ export interface EntityInfo {
      *             identifiers</a> in the <i>IAM User Guide</i>. </p>
      * @public
      */
-    Path?: string;
+    Path?: string | undefined;
 }
 /**
  * <p>An object that contains details about when the IAM entities (users or roles) were last
@@ -4204,7 +4441,7 @@ export interface EntityDetails {
      *             <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_access-advisor.html#service-last-accessed-reporting-period">tracking period</a>.</p>
      * @public
      */
-    LastAuthenticated?: Date;
+    LastAuthenticated?: Date | undefined;
 }
 /**
  * @public
@@ -4245,19 +4482,19 @@ export interface GetServiceLastAccessedDetailsWithEntitiesResponse {
      *     results.</p>
      * @public
      */
-    IsTruncated?: boolean;
+    IsTruncated?: boolean | undefined;
     /**
      * <p>When <code>IsTruncated</code> is <code>true</code>, this element
      *     is present and contains the value to use for the <code>Marker</code> parameter in a subsequent
      *     pagination request.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
     /**
      * <p>An object that contains details about the reason the operation failed.</p>
      * @public
      */
-    Error?: ErrorDetails;
+    Error?: ErrorDetails | undefined;
 }
 /**
  * @public
@@ -4281,12 +4518,12 @@ export interface RoleUsageType {
      * <p>The name of the Region where the service-linked role is being used.</p>
      * @public
      */
-    Region?: string;
+    Region?: string | undefined;
     /**
      * <p>The name of the resource that is using the service-linked role.</p>
      * @public
      */
-    Resources?: string[];
+    Resources?: string[] | undefined;
 }
 /**
  * <p>The reason that the service-linked role deletion failed.</p>
@@ -4298,7 +4535,7 @@ export interface DeletionTaskFailureReasonType {
      * <p>A short description of the reason that the service-linked role deletion failed.</p>
      * @public
      */
-    Reason?: string;
+    Reason?: string | undefined;
     /**
      * <p>A list of objects that contains details about the service-linked role deletion failure,
      *          if that information is returned by the service. If the service-linked role has active
@@ -4308,7 +4545,7 @@ export interface DeletionTaskFailureReasonType {
      *          used.</p>
      * @public
      */
-    RoleUsageList?: RoleUsageType[];
+    RoleUsageList?: RoleUsageType[] | undefined;
 }
 /**
  * @public
@@ -4337,7 +4574,7 @@ export interface GetServiceLinkedRoleDeletionStatusResponse {
      * <p>An object that contains details about the reason the deletion failed.</p>
      * @public
      */
-    Reason?: DeletionTaskFailureReasonType;
+    Reason?: DeletionTaskFailureReasonType | undefined;
 }
 /**
  * @public
@@ -4416,7 +4653,7 @@ export interface SSHPublicKey {
      *             format</a>, when the SSH public key was uploaded.</p>
      * @public
      */
-    UploadDate?: Date;
+    UploadDate?: Date | undefined;
 }
 /**
  * <p>Contains the response to a successful <a>GetSSHPublicKey</a>
@@ -4428,7 +4665,7 @@ export interface GetSSHPublicKeyResponse {
      * <p>A structure containing details about the SSH public key.</p>
      * @public
      */
-    SSHPublicKey?: SSHPublicKey;
+    SSHPublicKey?: SSHPublicKey | undefined;
 }
 /**
  * <p>The request was rejected because the public key encoding format is unsupported or
@@ -4454,7 +4691,7 @@ export interface GetUserRequest {
      *     characters with no spaces. You can also include any of the following characters: _+=,.@-</p>
      * @public
      */
-    UserName?: string;
+    UserName?: string | undefined;
 }
 /**
  * <p>Contains the response to a successful <a>GetUser</a> request. </p>
@@ -4536,7 +4773,7 @@ export interface ListAccessKeysRequest {
      *     characters with no spaces. You can also include any of the following characters: _+=,.@-</p>
      * @public
      */
-    UserName?: string;
+    UserName?: string | undefined;
     /**
      * <p>Use this parameter only when paginating results and only after
      *     you receive a response indicating that the results are truncated. Set it to the value of the
@@ -4544,7 +4781,7 @@ export interface ListAccessKeysRequest {
      *     should start.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
     /**
      * <p>Use this only when paginating results to indicate the
      *     maximum number of items you want in the response. If additional items exist beyond the maximum
@@ -4556,7 +4793,7 @@ export interface ListAccessKeysRequest {
      *     from.</p>
      * @public
      */
-    MaxItems?: number;
+    MaxItems?: number | undefined;
 }
 /**
  * <p>Contains the response to a successful <a>ListAccessKeys</a> request.
@@ -4578,14 +4815,14 @@ export interface ListAccessKeysResponse {
      *     results.</p>
      * @public
      */
-    IsTruncated?: boolean;
+    IsTruncated?: boolean | undefined;
     /**
      * <p>When <code>IsTruncated</code> is <code>true</code>, this element
      *     is present and contains the value to use for the <code>Marker</code> parameter in a subsequent
      *     pagination request.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
 }
 /**
  * @public
@@ -4598,7 +4835,7 @@ export interface ListAccountAliasesRequest {
      *     should start.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
     /**
      * <p>Use this only when paginating results to indicate the
      *     maximum number of items you want in the response. If additional items exist beyond the maximum
@@ -4610,7 +4847,7 @@ export interface ListAccountAliasesRequest {
      *     from.</p>
      * @public
      */
-    MaxItems?: number;
+    MaxItems?: number | undefined;
 }
 /**
  * <p>Contains the response to a successful <a>ListAccountAliases</a> request.
@@ -4633,14 +4870,14 @@ export interface ListAccountAliasesResponse {
      *     results.</p>
      * @public
      */
-    IsTruncated?: boolean;
+    IsTruncated?: boolean | undefined;
     /**
      * <p>When <code>IsTruncated</code> is <code>true</code>, this element
      *     is present and contains the value to use for the <code>Marker</code> parameter in a subsequent
      *     pagination request.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
 }
 /**
  * @public
@@ -4662,7 +4899,7 @@ export interface ListAttachedGroupPoliciesRequest {
      *     most punctuation characters, digits, and upper and lowercased letters.</p>
      * @public
      */
-    PathPrefix?: string;
+    PathPrefix?: string | undefined;
     /**
      * <p>Use this parameter only when paginating results and only after
      *     you receive a response indicating that the results are truncated. Set it to the value of the
@@ -4670,7 +4907,7 @@ export interface ListAttachedGroupPoliciesRequest {
      *     should start.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
     /**
      * <p>Use this only when paginating results to indicate the
      *     maximum number of items you want in the response. If additional items exist beyond the maximum
@@ -4682,7 +4919,7 @@ export interface ListAttachedGroupPoliciesRequest {
      *     from.</p>
      * @public
      */
-    MaxItems?: number;
+    MaxItems?: number | undefined;
 }
 /**
  * <p>Contains the response to a successful <a>ListAttachedGroupPolicies</a>
@@ -4694,7 +4931,7 @@ export interface ListAttachedGroupPoliciesResponse {
      * <p>A list of the attached policies.</p>
      * @public
      */
-    AttachedPolicies?: AttachedPolicy[];
+    AttachedPolicies?: AttachedPolicy[] | undefined;
     /**
      * <p>A flag that indicates whether there are more items to return. If your
      *     results were truncated, you can make a subsequent pagination request using the <code>Marker</code>
@@ -4704,14 +4941,14 @@ export interface ListAttachedGroupPoliciesResponse {
      *     results.</p>
      * @public
      */
-    IsTruncated?: boolean;
+    IsTruncated?: boolean | undefined;
     /**
      * <p>When <code>IsTruncated</code> is <code>true</code>, this element
      *     is present and contains the value to use for the <code>Marker</code> parameter in a subsequent
      *     pagination request.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
 }
 /**
  * @public
@@ -4733,7 +4970,7 @@ export interface ListAttachedRolePoliciesRequest {
      *     most punctuation characters, digits, and upper and lowercased letters.</p>
      * @public
      */
-    PathPrefix?: string;
+    PathPrefix?: string | undefined;
     /**
      * <p>Use this parameter only when paginating results and only after
      *     you receive a response indicating that the results are truncated. Set it to the value of the
@@ -4741,7 +4978,7 @@ export interface ListAttachedRolePoliciesRequest {
      *     should start.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
     /**
      * <p>Use this only when paginating results to indicate the
      *     maximum number of items you want in the response. If additional items exist beyond the maximum
@@ -4753,7 +4990,7 @@ export interface ListAttachedRolePoliciesRequest {
      *     from.</p>
      * @public
      */
-    MaxItems?: number;
+    MaxItems?: number | undefined;
 }
 /**
  * <p>Contains the response to a successful <a>ListAttachedRolePolicies</a>
@@ -4765,7 +5002,7 @@ export interface ListAttachedRolePoliciesResponse {
      * <p>A list of the attached policies.</p>
      * @public
      */
-    AttachedPolicies?: AttachedPolicy[];
+    AttachedPolicies?: AttachedPolicy[] | undefined;
     /**
      * <p>A flag that indicates whether there are more items to return. If your
      *     results were truncated, you can make a subsequent pagination request using the <code>Marker</code>
@@ -4775,14 +5012,14 @@ export interface ListAttachedRolePoliciesResponse {
      *     results.</p>
      * @public
      */
-    IsTruncated?: boolean;
+    IsTruncated?: boolean | undefined;
     /**
      * <p>When <code>IsTruncated</code> is <code>true</code>, this element
      *     is present and contains the value to use for the <code>Marker</code> parameter in a subsequent
      *     pagination request.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
 }
 /**
  * @public
@@ -4804,7 +5041,7 @@ export interface ListAttachedUserPoliciesRequest {
      *     most punctuation characters, digits, and upper and lowercased letters.</p>
      * @public
      */
-    PathPrefix?: string;
+    PathPrefix?: string | undefined;
     /**
      * <p>Use this parameter only when paginating results and only after
      *     you receive a response indicating that the results are truncated. Set it to the value of the
@@ -4812,7 +5049,7 @@ export interface ListAttachedUserPoliciesRequest {
      *     should start.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
     /**
      * <p>Use this only when paginating results to indicate the
      *     maximum number of items you want in the response. If additional items exist beyond the maximum
@@ -4824,7 +5061,7 @@ export interface ListAttachedUserPoliciesRequest {
      *     from.</p>
      * @public
      */
-    MaxItems?: number;
+    MaxItems?: number | undefined;
 }
 /**
  * <p>Contains the response to a successful <a>ListAttachedUserPolicies</a>
@@ -4836,7 +5073,7 @@ export interface ListAttachedUserPoliciesResponse {
      * <p>A list of the attached policies.</p>
      * @public
      */
-    AttachedPolicies?: AttachedPolicy[];
+    AttachedPolicies?: AttachedPolicy[] | undefined;
     /**
      * <p>A flag that indicates whether there are more items to return. If your
      *     results were truncated, you can make a subsequent pagination request using the <code>Marker</code>
@@ -4846,14 +5083,14 @@ export interface ListAttachedUserPoliciesResponse {
      *     results.</p>
      * @public
      */
-    IsTruncated?: boolean;
+    IsTruncated?: boolean | undefined;
     /**
      * <p>When <code>IsTruncated</code> is <code>true</code>, this element
      *     is present and contains the value to use for the <code>Marker</code> parameter in a subsequent
      *     pagination request.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
 }
 /**
  * @public
@@ -4886,7 +5123,7 @@ export interface ListEntitiesForPolicyRequest {
      *             argument for this parameter must be one of the valid values listed below.</p>
      * @public
      */
-    EntityFilter?: EntityType;
+    EntityFilter?: EntityType | undefined;
     /**
      * <p>The path prefix for filtering the results. This parameter is optional. If it is not
      *             included, it defaults to a slash (/), listing all entities.</p>
@@ -4896,7 +5133,7 @@ export interface ListEntitiesForPolicyRequest {
      *     most punctuation characters, digits, and upper and lowercased letters.</p>
      * @public
      */
-    PathPrefix?: string;
+    PathPrefix?: string | undefined;
     /**
      * <p>The policy usage method to use for filtering the results.</p>
      *          <p>To list only permissions policies,
@@ -4906,7 +5143,7 @@ export interface ListEntitiesForPolicyRequest {
      *          <p>This parameter is optional. If it is not included, all policies are returned. </p>
      * @public
      */
-    PolicyUsageFilter?: PolicyUsageType;
+    PolicyUsageFilter?: PolicyUsageType | undefined;
     /**
      * <p>Use this parameter only when paginating results and only after
      *     you receive a response indicating that the results are truncated. Set it to the value of the
@@ -4914,7 +5151,7 @@ export interface ListEntitiesForPolicyRequest {
      *     should start.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
     /**
      * <p>Use this only when paginating results to indicate the
      *     maximum number of items you want in the response. If additional items exist beyond the maximum
@@ -4926,7 +5163,7 @@ export interface ListEntitiesForPolicyRequest {
      *     from.</p>
      * @public
      */
-    MaxItems?: number;
+    MaxItems?: number | undefined;
 }
 /**
  * <p>Contains information about a group that a managed policy is attached to.</p>
@@ -4940,14 +5177,14 @@ export interface PolicyGroup {
      * <p>The name (friendly name, not ARN) identifying the group.</p>
      * @public
      */
-    GroupName?: string;
+    GroupName?: string | undefined;
     /**
      * <p>The stable and unique string identifying the group. For more information about IDs, see
      *             <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_identifiers.html">IAM
      *             identifiers</a> in the <i>IAM User Guide</i>.</p>
      * @public
      */
-    GroupId?: string;
+    GroupId?: string | undefined;
 }
 /**
  * <p>Contains information about a role that a managed policy is attached to.</p>
@@ -4961,14 +5198,14 @@ export interface PolicyRole {
      * <p>The name (friendly name, not ARN) identifying the role.</p>
      * @public
      */
-    RoleName?: string;
+    RoleName?: string | undefined;
     /**
      * <p>The stable and unique string identifying the role. For more information about IDs, see
      *             <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_identifiers.html">IAM
      *             identifiers</a> in the <i>IAM User Guide</i>.</p>
      * @public
      */
-    RoleId?: string;
+    RoleId?: string | undefined;
 }
 /**
  * <p>Contains information about a user that a managed policy is attached to.</p>
@@ -4982,14 +5219,14 @@ export interface PolicyUser {
      * <p>The name (friendly name, not ARN) identifying the user.</p>
      * @public
      */
-    UserName?: string;
+    UserName?: string | undefined;
     /**
      * <p>The stable and unique string identifying the user. For more information about IDs, see
      *             <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_identifiers.html">IAM
      *             identifiers</a> in the <i>IAM User Guide</i>.</p>
      * @public
      */
-    UserId?: string;
+    UserId?: string | undefined;
 }
 /**
  * <p>Contains the response to a successful <a>ListEntitiesForPolicy</a> request.
@@ -5001,17 +5238,17 @@ export interface ListEntitiesForPolicyResponse {
      * <p>A list of IAM groups that the policy is attached to.</p>
      * @public
      */
-    PolicyGroups?: PolicyGroup[];
+    PolicyGroups?: PolicyGroup[] | undefined;
     /**
      * <p>A list of IAM users that the policy is attached to.</p>
      * @public
      */
-    PolicyUsers?: PolicyUser[];
+    PolicyUsers?: PolicyUser[] | undefined;
     /**
      * <p>A list of IAM roles that the policy is attached to.</p>
      * @public
      */
-    PolicyRoles?: PolicyRole[];
+    PolicyRoles?: PolicyRole[] | undefined;
     /**
      * <p>A flag that indicates whether there are more items to return. If your
      *     results were truncated, you can make a subsequent pagination request using the <code>Marker</code>
@@ -5021,14 +5258,14 @@ export interface ListEntitiesForPolicyResponse {
      *     results.</p>
      * @public
      */
-    IsTruncated?: boolean;
+    IsTruncated?: boolean | undefined;
     /**
      * <p>When <code>IsTruncated</code> is <code>true</code>, this element
      *     is present and contains the value to use for the <code>Marker</code> parameter in a subsequent
      *     pagination request.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
 }
 /**
  * @public
@@ -5048,7 +5285,7 @@ export interface ListGroupPoliciesRequest {
      *     should start.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
     /**
      * <p>Use this only when paginating results to indicate the
      *     maximum number of items you want in the response. If additional items exist beyond the maximum
@@ -5060,7 +5297,7 @@ export interface ListGroupPoliciesRequest {
      *     from.</p>
      * @public
      */
-    MaxItems?: number;
+    MaxItems?: number | undefined;
 }
 /**
  * <p>Contains the response to a successful <a>ListGroupPolicies</a> request.
@@ -5084,14 +5321,14 @@ export interface ListGroupPoliciesResponse {
      *     results.</p>
      * @public
      */
-    IsTruncated?: boolean;
+    IsTruncated?: boolean | undefined;
     /**
      * <p>When <code>IsTruncated</code> is <code>true</code>, this element
      *     is present and contains the value to use for the <code>Marker</code> parameter in a subsequent
      *     pagination request.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
 }
 /**
  * @public
@@ -5108,7 +5345,7 @@ export interface ListGroupsRequest {
      *     most punctuation characters, digits, and upper and lowercased letters.</p>
      * @public
      */
-    PathPrefix?: string;
+    PathPrefix?: string | undefined;
     /**
      * <p>Use this parameter only when paginating results and only after
      *     you receive a response indicating that the results are truncated. Set it to the value of the
@@ -5116,7 +5353,7 @@ export interface ListGroupsRequest {
      *     should start.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
     /**
      * <p>Use this only when paginating results to indicate the
      *     maximum number of items you want in the response. If additional items exist beyond the maximum
@@ -5128,7 +5365,7 @@ export interface ListGroupsRequest {
      *     from.</p>
      * @public
      */
-    MaxItems?: number;
+    MaxItems?: number | undefined;
 }
 /**
  * <p>Contains the response to a successful <a>ListGroups</a> request. </p>
@@ -5149,14 +5386,14 @@ export interface ListGroupsResponse {
      *     results.</p>
      * @public
      */
-    IsTruncated?: boolean;
+    IsTruncated?: boolean | undefined;
     /**
      * <p>When <code>IsTruncated</code> is <code>true</code>, this element
      *     is present and contains the value to use for the <code>Marker</code> parameter in a subsequent
      *     pagination request.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
 }
 /**
  * @public
@@ -5176,7 +5413,7 @@ export interface ListGroupsForUserRequest {
      *     should start.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
     /**
      * <p>Use this only when paginating results to indicate the
      *     maximum number of items you want in the response. If additional items exist beyond the maximum
@@ -5188,7 +5425,7 @@ export interface ListGroupsForUserRequest {
      *     from.</p>
      * @public
      */
-    MaxItems?: number;
+    MaxItems?: number | undefined;
 }
 /**
  * <p>Contains the response to a successful <a>ListGroupsForUser</a> request.
@@ -5210,14 +5447,14 @@ export interface ListGroupsForUserResponse {
      *     results.</p>
      * @public
      */
-    IsTruncated?: boolean;
+    IsTruncated?: boolean | undefined;
     /**
      * <p>When <code>IsTruncated</code> is <code>true</code>, this element
      *     is present and contains the value to use for the <code>Marker</code> parameter in a subsequent
      *     pagination request.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
 }
 /**
  * @public
@@ -5234,7 +5471,7 @@ export interface ListInstanceProfilesRequest {
      *     most punctuation characters, digits, and upper and lowercased letters.</p>
      * @public
      */
-    PathPrefix?: string;
+    PathPrefix?: string | undefined;
     /**
      * <p>Use this parameter only when paginating results and only after
      *     you receive a response indicating that the results are truncated. Set it to the value of the
@@ -5242,7 +5479,7 @@ export interface ListInstanceProfilesRequest {
      *     should start.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
     /**
      * <p>Use this only when paginating results to indicate the
      *     maximum number of items you want in the response. If additional items exist beyond the maximum
@@ -5254,7 +5491,7 @@ export interface ListInstanceProfilesRequest {
      *     from.</p>
      * @public
      */
-    MaxItems?: number;
+    MaxItems?: number | undefined;
 }
 /**
  * <p>Contains the response to a successful <a>ListInstanceProfiles</a> request.
@@ -5276,14 +5513,14 @@ export interface ListInstanceProfilesResponse {
      *     results.</p>
      * @public
      */
-    IsTruncated?: boolean;
+    IsTruncated?: boolean | undefined;
     /**
      * <p>When <code>IsTruncated</code> is <code>true</code>, this element
      *     is present and contains the value to use for the <code>Marker</code> parameter in a subsequent
      *     pagination request.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
 }
 /**
  * @public
@@ -5303,7 +5540,7 @@ export interface ListInstanceProfilesForRoleRequest {
      *     should start.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
     /**
      * <p>Use this only when paginating results to indicate the
      *     maximum number of items you want in the response. If additional items exist beyond the maximum
@@ -5315,7 +5552,7 @@ export interface ListInstanceProfilesForRoleRequest {
      *     from.</p>
      * @public
      */
-    MaxItems?: number;
+    MaxItems?: number | undefined;
 }
 /**
  * <p>Contains the response to a successful <a>ListInstanceProfilesForRole</a>
@@ -5337,14 +5574,14 @@ export interface ListInstanceProfilesForRoleResponse {
      *     results.</p>
      * @public
      */
-    IsTruncated?: boolean;
+    IsTruncated?: boolean | undefined;
     /**
      * <p>When <code>IsTruncated</code> is <code>true</code>, this element
      *     is present and contains the value to use for the <code>Marker</code> parameter in a subsequent
      *     pagination request.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
 }
 /**
  * @public
@@ -5364,7 +5601,7 @@ export interface ListInstanceProfileTagsRequest {
      *     should start.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
     /**
      * <p>Use this only when paginating results to indicate the
      *     maximum number of items you want in the response. If additional items exist beyond the maximum
@@ -5376,7 +5613,7 @@ export interface ListInstanceProfileTagsRequest {
      *     from.</p>
      * @public
      */
-    MaxItems?: number;
+    MaxItems?: number | undefined;
 }
 /**
  * @public
@@ -5396,14 +5633,14 @@ export interface ListInstanceProfileTagsResponse {
      *     results.</p>
      * @public
      */
-    IsTruncated?: boolean;
+    IsTruncated?: boolean | undefined;
     /**
      * <p>When <code>IsTruncated</code> is <code>true</code>, this element
      *     is present and contains the value to use for the <code>Marker</code> parameter in a subsequent
      *     pagination request.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
 }
 /**
  * @public
@@ -5415,7 +5652,7 @@ export interface ListMFADevicesRequest {
      *     characters with no spaces. You can also include any of the following characters: _+=,.@-</p>
      * @public
      */
-    UserName?: string;
+    UserName?: string | undefined;
     /**
      * <p>Use this parameter only when paginating results and only after
      *     you receive a response indicating that the results are truncated. Set it to the value of the
@@ -5423,7 +5660,7 @@ export interface ListMFADevicesRequest {
      *     should start.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
     /**
      * <p>Use this only when paginating results to indicate the
      *     maximum number of items you want in the response. If additional items exist beyond the maximum
@@ -5435,7 +5672,7 @@ export interface ListMFADevicesRequest {
      *     from.</p>
      * @public
      */
-    MaxItems?: number;
+    MaxItems?: number | undefined;
 }
 /**
  * <p>Contains information about an MFA device.</p>
@@ -5481,14 +5718,14 @@ export interface ListMFADevicesResponse {
      *     results.</p>
      * @public
      */
-    IsTruncated?: boolean;
+    IsTruncated?: boolean | undefined;
     /**
      * <p>When <code>IsTruncated</code> is <code>true</code>, this element
      *     is present and contains the value to use for the <code>Marker</code> parameter in a subsequent
      *     pagination request.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
 }
 /**
  * @public
@@ -5509,7 +5746,7 @@ export interface ListMFADeviceTagsRequest {
      *     should start.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
     /**
      * <p>Use this only when paginating results to indicate the
      *     maximum number of items you want in the response. If additional items exist beyond the maximum
@@ -5521,7 +5758,7 @@ export interface ListMFADeviceTagsRequest {
      *     from.</p>
      * @public
      */
-    MaxItems?: number;
+    MaxItems?: number | undefined;
 }
 /**
  * @public
@@ -5541,14 +5778,14 @@ export interface ListMFADeviceTagsResponse {
      *     results.</p>
      * @public
      */
-    IsTruncated?: boolean;
+    IsTruncated?: boolean | undefined;
     /**
      * <p>When <code>IsTruncated</code> is <code>true</code>, this element
      *     is present and contains the value to use for the <code>Marker</code> parameter in a subsequent
      *     pagination request.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
 }
 /**
  * @public
@@ -5566,7 +5803,7 @@ export interface OpenIDConnectProviderListEntry {
      *          the <i>Amazon Web Services General Reference</i>. </p>
      * @public
      */
-    Arn?: string;
+    Arn?: string | undefined;
 }
 /**
  * <p>Contains the response to a successful <a>ListOpenIDConnectProviders</a>
@@ -5578,7 +5815,7 @@ export interface ListOpenIDConnectProvidersResponse {
      * <p>The list of IAM OIDC provider resource objects defined in the Amazon Web Services account.</p>
      * @public
      */
-    OpenIDConnectProviderList?: OpenIDConnectProviderListEntry[];
+    OpenIDConnectProviderList?: OpenIDConnectProviderListEntry[] | undefined;
 }
 /**
  * @public
@@ -5599,7 +5836,7 @@ export interface ListOpenIDConnectProviderTagsRequest {
      *     should start.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
     /**
      * <p>Use this only when paginating results to indicate the
      *     maximum number of items you want in the response. If additional items exist beyond the maximum
@@ -5611,7 +5848,7 @@ export interface ListOpenIDConnectProviderTagsRequest {
      *     from.</p>
      * @public
      */
-    MaxItems?: number;
+    MaxItems?: number | undefined;
 }
 /**
  * @public
@@ -5632,14 +5869,34 @@ export interface ListOpenIDConnectProviderTagsResponse {
      *     results.</p>
      * @public
      */
-    IsTruncated?: boolean;
+    IsTruncated?: boolean | undefined;
     /**
      * <p>When <code>IsTruncated</code> is <code>true</code>, this element
      *     is present and contains the value to use for the <code>Marker</code> parameter in a subsequent
      *     pagination request.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
+}
+/**
+ * @public
+ */
+export interface ListOrganizationsFeaturesRequest {
+}
+/**
+ * @public
+ */
+export interface ListOrganizationsFeaturesResponse {
+    /**
+     * <p>The unique identifier (ID) of an organization.</p>
+     * @public
+     */
+    OrganizationId?: string | undefined;
+    /**
+     * <p>Specifies the features that are currently available in your organization.</p>
+     * @public
+     */
+    EnabledFeatures?: FeatureType[] | undefined;
 }
 /**
  * @public
@@ -5667,7 +5924,7 @@ export interface ListPoliciesRequest {
      *             <code>All</code>, all policies are returned.</p>
      * @public
      */
-    Scope?: PolicyScopeType;
+    Scope?: PolicyScopeType | undefined;
     /**
      * <p>A flag to filter the results to only the attached policies.</p>
      *          <p>When <code>OnlyAttached</code> is <code>true</code>, the returned list contains only
@@ -5676,7 +5933,7 @@ export interface ListPoliciesRequest {
      *             included, all policies are returned.</p>
      * @public
      */
-    OnlyAttached?: boolean;
+    OnlyAttached?: boolean | undefined;
     /**
      * <p>The path prefix for filtering the results. This parameter is optional. If it is not
      *             included, it defaults to a slash (/), listing all policies. This parameter allows (through its <a href="http://wikipedia.org/wiki/regex">regex pattern</a>) a string of characters consisting
@@ -5685,7 +5942,7 @@ export interface ListPoliciesRequest {
      *     most punctuation characters, digits, and upper and lowercased letters.</p>
      * @public
      */
-    PathPrefix?: string;
+    PathPrefix?: string | undefined;
     /**
      * <p>The policy usage method to use for filtering the results.</p>
      *          <p>To list only permissions policies,
@@ -5695,7 +5952,7 @@ export interface ListPoliciesRequest {
      *          <p>This parameter is optional. If it is not included, all policies are returned. </p>
      * @public
      */
-    PolicyUsageFilter?: PolicyUsageType;
+    PolicyUsageFilter?: PolicyUsageType | undefined;
     /**
      * <p>Use this parameter only when paginating results and only after
      *     you receive a response indicating that the results are truncated. Set it to the value of the
@@ -5703,7 +5960,7 @@ export interface ListPoliciesRequest {
      *     should start.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
     /**
      * <p>Use this only when paginating results to indicate the
      *     maximum number of items you want in the response. If additional items exist beyond the maximum
@@ -5715,7 +5972,7 @@ export interface ListPoliciesRequest {
      *     from.</p>
      * @public
      */
-    MaxItems?: number;
+    MaxItems?: number | undefined;
 }
 /**
  * <p>Contains the response to a successful <a>ListPolicies</a> request.
@@ -5727,7 +5984,7 @@ export interface ListPoliciesResponse {
      * <p>A list of policies.</p>
      * @public
      */
-    Policies?: Policy[];
+    Policies?: Policy[] | undefined;
     /**
      * <p>A flag that indicates whether there are more items to return. If your
      *     results were truncated, you can make a subsequent pagination request using the <code>Marker</code>
@@ -5737,14 +5994,14 @@ export interface ListPoliciesResponse {
      *     results.</p>
      * @public
      */
-    IsTruncated?: boolean;
+    IsTruncated?: boolean | undefined;
     /**
      * <p>When <code>IsTruncated</code> is <code>true</code>, this element
      *     is present and contains the value to use for the <code>Marker</code> parameter in a subsequent
      *     pagination request.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
 }
 /**
  * @public
@@ -5757,7 +6014,7 @@ export interface ListPoliciesGrantingServiceAccessRequest {
      *     should start.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
     /**
      * <p>The ARN of the IAM identity (user, group, or role) whose policies you want to
      *             list.</p>
@@ -5813,7 +6070,7 @@ export interface PolicyGrantingServiceAccess {
      *          the <i>Amazon Web Services General Reference</i>. </p>
      * @public
      */
-    PolicyArn?: string;
+    PolicyArn?: string | undefined;
     /**
      * <p>The type of entity (user or role) that used the policy to access the service to which
      *          the inline policy is attached.</p>
@@ -5822,7 +6079,7 @@ export interface PolicyGrantingServiceAccess {
      *             <i>IAM User Guide</i>.</p>
      * @public
      */
-    EntityType?: PolicyOwnerEntityType;
+    EntityType?: PolicyOwnerEntityType | undefined;
     /**
      * <p>The name of the entity (user or role) to which the inline policy is attached.</p>
      *          <p>This field is null for managed policies. For more information about these policy types,
@@ -5830,7 +6087,7 @@ export interface PolicyGrantingServiceAccess {
      *             <i>IAM User Guide</i>.</p>
      * @public
      */
-    EntityName?: string;
+    EntityName?: string | undefined;
 }
 /**
  * <p>Contains details about the permissions policies that are attached to the specified
@@ -5849,13 +6106,13 @@ export interface ListPoliciesGrantingServiceAccessEntry {
      *             service namespaces</a> in the <i>Amazon Web Services General Reference</i>.</p>
      * @public
      */
-    ServiceNamespace?: string;
+    ServiceNamespace?: string | undefined;
     /**
      * <p>The <code>PoliciesGrantingServiceAccess</code> object that contains details about the
      *          policy.</p>
      * @public
      */
-    Policies?: PolicyGrantingServiceAccess[];
+    Policies?: PolicyGrantingServiceAccess[] | undefined;
 }
 /**
  * @public
@@ -5876,14 +6133,14 @@ export interface ListPoliciesGrantingServiceAccessResponse {
      *             results.</p>
      * @public
      */
-    IsTruncated?: boolean;
+    IsTruncated?: boolean | undefined;
     /**
      * <p>When <code>IsTruncated</code> is <code>true</code>, this element
      *     is present and contains the value to use for the <code>Marker</code> parameter in a subsequent
      *     pagination request.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
 }
 /**
  * @public
@@ -5903,7 +6160,7 @@ export interface ListPolicyTagsRequest {
      *     should start.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
     /**
      * <p>Use this only when paginating results to indicate the
      *     maximum number of items you want in the response. If additional items exist beyond the maximum
@@ -5915,7 +6172,7 @@ export interface ListPolicyTagsRequest {
      *     from.</p>
      * @public
      */
-    MaxItems?: number;
+    MaxItems?: number | undefined;
 }
 /**
  * @public
@@ -5936,14 +6193,14 @@ export interface ListPolicyTagsResponse {
      *     results.</p>
      * @public
      */
-    IsTruncated?: boolean;
+    IsTruncated?: boolean | undefined;
     /**
      * <p>When <code>IsTruncated</code> is <code>true</code>, this element
      *     is present and contains the value to use for the <code>Marker</code> parameter in a subsequent
      *     pagination request.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
 }
 /**
  * @public
@@ -5963,7 +6220,7 @@ export interface ListPolicyVersionsRequest {
      *     should start.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
     /**
      * <p>Use this only when paginating results to indicate the
      *     maximum number of items you want in the response. If additional items exist beyond the maximum
@@ -5975,7 +6232,7 @@ export interface ListPolicyVersionsRequest {
      *     from.</p>
      * @public
      */
-    MaxItems?: number;
+    MaxItems?: number | undefined;
 }
 /**
  * <p>Contains the response to a successful <a>ListPolicyVersions</a> request.
@@ -5989,7 +6246,7 @@ export interface ListPolicyVersionsResponse {
      *                 policies</a> in the <i>IAM User Guide</i>.</p>
      * @public
      */
-    Versions?: PolicyVersion[];
+    Versions?: PolicyVersion[] | undefined;
     /**
      * <p>A flag that indicates whether there are more items to return. If your
      *     results were truncated, you can make a subsequent pagination request using the <code>Marker</code>
@@ -5999,14 +6256,14 @@ export interface ListPolicyVersionsResponse {
      *     results.</p>
      * @public
      */
-    IsTruncated?: boolean;
+    IsTruncated?: boolean | undefined;
     /**
      * <p>When <code>IsTruncated</code> is <code>true</code>, this element
      *     is present and contains the value to use for the <code>Marker</code> parameter in a subsequent
      *     pagination request.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
 }
 /**
  * @public
@@ -6026,7 +6283,7 @@ export interface ListRolePoliciesRequest {
      *     should start.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
     /**
      * <p>Use this only when paginating results to indicate the
      *     maximum number of items you want in the response. If additional items exist beyond the maximum
@@ -6038,7 +6295,7 @@ export interface ListRolePoliciesRequest {
      *     from.</p>
      * @public
      */
-    MaxItems?: number;
+    MaxItems?: number | undefined;
 }
 /**
  * <p>Contains the response to a successful <a>ListRolePolicies</a> request.
@@ -6060,14 +6317,14 @@ export interface ListRolePoliciesResponse {
      *     results.</p>
      * @public
      */
-    IsTruncated?: boolean;
+    IsTruncated?: boolean | undefined;
     /**
      * <p>When <code>IsTruncated</code> is <code>true</code>, this element
      *     is present and contains the value to use for the <code>Marker</code> parameter in a subsequent
      *     pagination request.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
 }
 /**
  * @public
@@ -6084,7 +6341,7 @@ export interface ListRolesRequest {
      *     most punctuation characters, digits, and upper and lowercased letters.</p>
      * @public
      */
-    PathPrefix?: string;
+    PathPrefix?: string | undefined;
     /**
      * <p>Use this parameter only when paginating results and only after
      *     you receive a response indicating that the results are truncated. Set it to the value of the
@@ -6092,7 +6349,7 @@ export interface ListRolesRequest {
      *     should start.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
     /**
      * <p>Use this only when paginating results to indicate the
      *     maximum number of items you want in the response. If additional items exist beyond the maximum
@@ -6104,7 +6361,7 @@ export interface ListRolesRequest {
      *     from.</p>
      * @public
      */
-    MaxItems?: number;
+    MaxItems?: number | undefined;
 }
 /**
  * <p>Contains the response to a successful <a>ListRoles</a> request. </p>
@@ -6125,14 +6382,14 @@ export interface ListRolesResponse {
      *     results.</p>
      * @public
      */
-    IsTruncated?: boolean;
+    IsTruncated?: boolean | undefined;
     /**
      * <p>When <code>IsTruncated</code> is <code>true</code>, this element
      *     is present and contains the value to use for the <code>Marker</code> parameter in a subsequent
      *     pagination request.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
 }
 /**
  * @public
@@ -6152,7 +6409,7 @@ export interface ListRoleTagsRequest {
      *     should start.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
     /**
      * <p>Use this only when paginating results to indicate the
      *     maximum number of items you want in the response. If additional items exist beyond the maximum
@@ -6164,7 +6421,7 @@ export interface ListRoleTagsRequest {
      *     from.</p>
      * @public
      */
-    MaxItems?: number;
+    MaxItems?: number | undefined;
 }
 /**
  * @public
@@ -6184,14 +6441,14 @@ export interface ListRoleTagsResponse {
      *     results.</p>
      * @public
      */
-    IsTruncated?: boolean;
+    IsTruncated?: boolean | undefined;
     /**
      * <p>When <code>IsTruncated</code> is <code>true</code>, this element
      *     is present and contains the value to use for the <code>Marker</code> parameter in a subsequent
      *     pagination request.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
 }
 /**
  * @public
@@ -6207,17 +6464,17 @@ export interface SAMLProviderListEntry {
      * <p>The Amazon Resource Name (ARN) of the SAML provider.</p>
      * @public
      */
-    Arn?: string;
+    Arn?: string | undefined;
     /**
      * <p>The expiration date and time for the SAML provider.</p>
      * @public
      */
-    ValidUntil?: Date;
+    ValidUntil?: Date | undefined;
     /**
      * <p>The date and time when the SAML provider was created.</p>
      * @public
      */
-    CreateDate?: Date;
+    CreateDate?: Date | undefined;
 }
 /**
  * <p>Contains the response to a successful <a>ListSAMLProviders</a> request.
@@ -6230,7 +6487,7 @@ export interface ListSAMLProvidersResponse {
      *             account.</p>
      * @public
      */
-    SAMLProviderList?: SAMLProviderListEntry[];
+    SAMLProviderList?: SAMLProviderListEntry[] | undefined;
 }
 /**
  * @public
@@ -6251,7 +6508,7 @@ export interface ListSAMLProviderTagsRequest {
      *     should start.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
     /**
      * <p>Use this only when paginating results to indicate the
      *     maximum number of items you want in the response. If additional items exist beyond the maximum
@@ -6263,7 +6520,7 @@ export interface ListSAMLProviderTagsRequest {
      *     from.</p>
      * @public
      */
-    MaxItems?: number;
+    MaxItems?: number | undefined;
 }
 /**
  * @public
@@ -6284,14 +6541,14 @@ export interface ListSAMLProviderTagsResponse {
      *     results.</p>
      * @public
      */
-    IsTruncated?: boolean;
+    IsTruncated?: boolean | undefined;
     /**
      * <p>When <code>IsTruncated</code> is <code>true</code>, this element
      *     is present and contains the value to use for the <code>Marker</code> parameter in a subsequent
      *     pagination request.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
 }
 /**
  * @public
@@ -6308,7 +6565,7 @@ export interface ListServerCertificatesRequest {
      *     most punctuation characters, digits, and upper and lowercased letters.</p>
      * @public
      */
-    PathPrefix?: string;
+    PathPrefix?: string | undefined;
     /**
      * <p>Use this parameter only when paginating results and only after
      *     you receive a response indicating that the results are truncated. Set it to the value of the
@@ -6316,7 +6573,7 @@ export interface ListServerCertificatesRequest {
      *     should start.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
     /**
      * <p>Use this only when paginating results to indicate the
      *     maximum number of items you want in the response. If additional items exist beyond the maximum
@@ -6328,7 +6585,7 @@ export interface ListServerCertificatesRequest {
      *     from.</p>
      * @public
      */
-    MaxItems?: number;
+    MaxItems?: number | undefined;
 }
 /**
  * <p>Contains the response to a successful <a>ListServerCertificates</a> request.
@@ -6350,14 +6607,14 @@ export interface ListServerCertificatesResponse {
      *     results.</p>
      * @public
      */
-    IsTruncated?: boolean;
+    IsTruncated?: boolean | undefined;
     /**
      * <p>When <code>IsTruncated</code> is <code>true</code>, this element
      *     is present and contains the value to use for the <code>Marker</code> parameter in a subsequent
      *     pagination request.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
 }
 /**
  * @public
@@ -6377,7 +6634,7 @@ export interface ListServerCertificateTagsRequest {
      *     should start.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
     /**
      * <p>Use this only when paginating results to indicate the
      *     maximum number of items you want in the response. If additional items exist beyond the maximum
@@ -6389,7 +6646,7 @@ export interface ListServerCertificateTagsRequest {
      *     from.</p>
      * @public
      */
-    MaxItems?: number;
+    MaxItems?: number | undefined;
 }
 /**
  * @public
@@ -6410,14 +6667,14 @@ export interface ListServerCertificateTagsResponse {
      *     results.</p>
      * @public
      */
-    IsTruncated?: boolean;
+    IsTruncated?: boolean | undefined;
     /**
      * <p>When <code>IsTruncated</code> is <code>true</code>, this element
      *     is present and contains the value to use for the <code>Marker</code> parameter in a subsequent
      *     pagination request.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
 }
 /**
  * @public
@@ -6431,13 +6688,13 @@ export interface ListServiceSpecificCredentialsRequest {
      *     characters with no spaces. You can also include any of the following characters: _+=,.@-</p>
      * @public
      */
-    UserName?: string;
+    UserName?: string | undefined;
     /**
      * <p>Filters the returned results to only those for the specified Amazon Web Services service. If not
      *             specified, then Amazon Web Services returns service-specific credentials for all services.</p>
      * @public
      */
-    ServiceName?: string;
+    ServiceName?: string | undefined;
 }
 /**
  * <p>Contains additional details about a service-specific credential.</p>
@@ -6486,7 +6743,7 @@ export interface ListServiceSpecificCredentialsResponse {
      *             credential.</p>
      * @public
      */
-    ServiceSpecificCredentials?: ServiceSpecificCredentialMetadata[];
+    ServiceSpecificCredentials?: ServiceSpecificCredentialMetadata[] | undefined;
 }
 /**
  * @public
@@ -6498,7 +6755,7 @@ export interface ListSigningCertificatesRequest {
      *     characters with no spaces. You can also include any of the following characters: _+=,.@-</p>
      * @public
      */
-    UserName?: string;
+    UserName?: string | undefined;
     /**
      * <p>Use this parameter only when paginating results and only after
      *     you receive a response indicating that the results are truncated. Set it to the value of the
@@ -6506,7 +6763,7 @@ export interface ListSigningCertificatesRequest {
      *     should start.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
     /**
      * <p>Use this only when paginating results to indicate the
      *     maximum number of items you want in the response. If additional items exist beyond the maximum
@@ -6518,7 +6775,7 @@ export interface ListSigningCertificatesRequest {
      *     from.</p>
      * @public
      */
-    MaxItems?: number;
+    MaxItems?: number | undefined;
 }
 /**
  * <p>Contains information about an X.509 signing certificate.</p>
@@ -6552,7 +6809,7 @@ export interface SigningCertificate {
      * <p>The date when the signing certificate was uploaded.</p>
      * @public
      */
-    UploadDate?: Date;
+    UploadDate?: Date | undefined;
 }
 /**
  * <p>Contains the response to a successful <a>ListSigningCertificates</a>
@@ -6574,14 +6831,14 @@ export interface ListSigningCertificatesResponse {
      *     results.</p>
      * @public
      */
-    IsTruncated?: boolean;
+    IsTruncated?: boolean | undefined;
     /**
      * <p>When <code>IsTruncated</code> is <code>true</code>, this element
      *     is present and contains the value to use for the <code>Marker</code> parameter in a subsequent
      *     pagination request.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
 }
 /**
  * @public
@@ -6595,7 +6852,7 @@ export interface ListSSHPublicKeysRequest {
      *     characters with no spaces. You can also include any of the following characters: _+=,.@-</p>
      * @public
      */
-    UserName?: string;
+    UserName?: string | undefined;
     /**
      * <p>Use this parameter only when paginating results and only after
      *     you receive a response indicating that the results are truncated. Set it to the value of the
@@ -6603,7 +6860,7 @@ export interface ListSSHPublicKeysRequest {
      *     should start.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
     /**
      * <p>Use this only when paginating results to indicate the
      *     maximum number of items you want in the response. If additional items exist beyond the maximum
@@ -6615,7 +6872,7 @@ export interface ListSSHPublicKeysRequest {
      *     from.</p>
      * @public
      */
-    MaxItems?: number;
+    MaxItems?: number | undefined;
 }
 /**
  * <p>Contains information about an SSH public key, without the key's body or
@@ -6659,7 +6916,7 @@ export interface ListSSHPublicKeysResponse {
      * <p>A list of the SSH public keys assigned to IAM user.</p>
      * @public
      */
-    SSHPublicKeys?: SSHPublicKeyMetadata[];
+    SSHPublicKeys?: SSHPublicKeyMetadata[] | undefined;
     /**
      * <p>A flag that indicates whether there are more items to return. If your
      *     results were truncated, you can make a subsequent pagination request using the <code>Marker</code>
@@ -6669,14 +6926,14 @@ export interface ListSSHPublicKeysResponse {
      *     results.</p>
      * @public
      */
-    IsTruncated?: boolean;
+    IsTruncated?: boolean | undefined;
     /**
      * <p>When <code>IsTruncated</code> is <code>true</code>, this element
      *     is present and contains the value to use for the <code>Marker</code> parameter in a subsequent
      *     pagination request.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
 }
 /**
  * @public
@@ -6696,7 +6953,7 @@ export interface ListUserPoliciesRequest {
      *     should start.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
     /**
      * <p>Use this only when paginating results to indicate the
      *     maximum number of items you want in the response. If additional items exist beyond the maximum
@@ -6708,7 +6965,7 @@ export interface ListUserPoliciesRequest {
      *     from.</p>
      * @public
      */
-    MaxItems?: number;
+    MaxItems?: number | undefined;
 }
 /**
  * <p>Contains the response to a successful <a>ListUserPolicies</a> request.
@@ -6730,14 +6987,14 @@ export interface ListUserPoliciesResponse {
      *     results.</p>
      * @public
      */
-    IsTruncated?: boolean;
+    IsTruncated?: boolean | undefined;
     /**
      * <p>When <code>IsTruncated</code> is <code>true</code>, this element
      *     is present and contains the value to use for the <code>Marker</code> parameter in a subsequent
      *     pagination request.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
 }
 /**
  * @public
@@ -6754,7 +7011,7 @@ export interface ListUsersRequest {
      *     most punctuation characters, digits, and upper and lowercased letters.</p>
      * @public
      */
-    PathPrefix?: string;
+    PathPrefix?: string | undefined;
     /**
      * <p>Use this parameter only when paginating results and only after
      *     you receive a response indicating that the results are truncated. Set it to the value of the
@@ -6762,7 +7019,7 @@ export interface ListUsersRequest {
      *     should start.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
     /**
      * <p>Use this only when paginating results to indicate the
      *     maximum number of items you want in the response. If additional items exist beyond the maximum
@@ -6774,7 +7031,7 @@ export interface ListUsersRequest {
      *     from.</p>
      * @public
      */
-    MaxItems?: number;
+    MaxItems?: number | undefined;
 }
 /**
  * <p>Contains the response to a successful <a>ListUsers</a> request. </p>
@@ -6795,14 +7052,14 @@ export interface ListUsersResponse {
      *     results.</p>
      * @public
      */
-    IsTruncated?: boolean;
+    IsTruncated?: boolean | undefined;
     /**
      * <p>When <code>IsTruncated</code> is <code>true</code>, this element
      *     is present and contains the value to use for the <code>Marker</code> parameter in a subsequent
      *     pagination request.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
 }
 /**
  * @public
@@ -6822,7 +7079,7 @@ export interface ListUserTagsRequest {
      *     should start.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
     /**
      * <p>Use this only when paginating results to indicate the
      *     maximum number of items you want in the response. If additional items exist beyond the maximum
@@ -6834,7 +7091,7 @@ export interface ListUserTagsRequest {
      *     from.</p>
      * @public
      */
-    MaxItems?: number;
+    MaxItems?: number | undefined;
 }
 /**
  * @public
@@ -6854,14 +7111,14 @@ export interface ListUserTagsResponse {
      *     results.</p>
      * @public
      */
-    IsTruncated?: boolean;
+    IsTruncated?: boolean | undefined;
     /**
      * <p>When <code>IsTruncated</code> is <code>true</code>, this element
      *     is present and contains the value to use for the <code>Marker</code> parameter in a subsequent
      *     pagination request.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
 }
 /**
  * @public
@@ -6874,7 +7131,7 @@ export interface ListVirtualMFADevicesRequest {
      *             devices.,</p>
      * @public
      */
-    AssignmentStatus?: AssignmentStatusType;
+    AssignmentStatus?: AssignmentStatusType | undefined;
     /**
      * <p>Use this parameter only when paginating results and only after
      *     you receive a response indicating that the results are truncated. Set it to the value of the
@@ -6882,7 +7139,7 @@ export interface ListVirtualMFADevicesRequest {
      *     should start.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
     /**
      * <p>Use this only when paginating results to indicate the
      *     maximum number of items you want in the response. If additional items exist beyond the maximum
@@ -6894,7 +7151,7 @@ export interface ListVirtualMFADevicesRequest {
      *     from.</p>
      * @public
      */
-    MaxItems?: number;
+    MaxItems?: number | undefined;
 }
 /**
  * <p>Contains the response to a successful <a>ListVirtualMFADevices</a> request.
@@ -6917,14 +7174,14 @@ export interface ListVirtualMFADevicesResponse {
      *     results.</p>
      * @public
      */
-    IsTruncated?: boolean;
+    IsTruncated?: boolean | undefined;
     /**
      * <p>When <code>IsTruncated</code> is <code>true</code>, this element is present and
      *             contains the value to use for the <code>Marker</code> parameter in a subsequent
      *             pagination request.</p>
      * @public
      */
-    Marker?: string;
+    Marker?: string | undefined;
 }
 /**
  * @public
@@ -7171,7 +7428,7 @@ export interface ResetServiceSpecificCredentialRequest {
      *     characters with no spaces. You can also include any of the following characters: _+=,.@-</p>
      * @public
      */
-    UserName?: string;
+    UserName?: string | undefined;
     /**
      * <p>The unique identifier of the service-specific credential.</p>
      *          <p>This parameter allows (through its <a href="http://wikipedia.org/wiki/regex">regex pattern</a>) a string of characters that can
@@ -7193,7 +7450,7 @@ export interface ResetServiceSpecificCredentialResponse {
      *          </important>
      * @public
      */
-    ServiceSpecificCredential?: ServiceSpecificCredential;
+    ServiceSpecificCredential?: ServiceSpecificCredential | undefined;
 }
 /**
  * @public
@@ -7323,20 +7580,20 @@ export interface ContextEntry {
      *             <code>aws:SourceIp</code> or <code>s3:VersionId</code>.</p>
      * @public
      */
-    ContextKeyName?: string;
+    ContextKeyName?: string | undefined;
     /**
      * <p>The value (or values, if the condition context key supports multiple values) to provide
      *          to the simulation when the key is referenced by a <code>Condition</code> element in an
      *          input policy.</p>
      * @public
      */
-    ContextKeyValues?: string[];
+    ContextKeyValues?: string[] | undefined;
     /**
      * <p>The data type of the value (or values) specified in the <code>ContextKeyValues</code>
      *          parameter.</p>
      * @public
      */
-    ContextKeyType?: ContextKeyTypeEnum;
+    ContextKeyType?: ContextKeyTypeEnum | undefined;
 }
 /**
  * @public
@@ -7399,7 +7656,7 @@ export interface SimulateCustomPolicyRequest {
      *          </ul>
      * @public
      */
-    PermissionsBoundaryPolicyInputList?: string[];
+    PermissionsBoundaryPolicyInputList?: string[] | undefined;
     /**
      * <p>A list of names of API operations to evaluate in the simulation. Each operation is
      *             evaluated against each resource. Each operation must include the service identifier,
@@ -7426,7 +7683,7 @@ export interface SimulateCustomPolicyRequest {
      *          </note>
      * @public
      */
-    ResourceArns?: string[];
+    ResourceArns?: string[] | undefined;
     /**
      * <p>A resource-based policy to include in the simulation provided as a string. Each
      *             resource in the simulation is treated as if it had this policy attached. You can include
@@ -7454,7 +7711,7 @@ export interface SimulateCustomPolicyRequest {
      *          </note>
      * @public
      */
-    ResourcePolicy?: string;
+    ResourcePolicy?: string | undefined;
     /**
      * <p>An ARN representing the Amazon Web Services account ID that specifies the owner of any simulated
      *             resource that does not identify its owner in the resource ARN. Examples of resource ARNs
@@ -7471,7 +7728,7 @@ export interface SimulateCustomPolicyRequest {
      *                 <code>arn:aws:iam::112233445566-ID:root</code>. </p>
      * @public
      */
-    ResourceOwner?: string;
+    ResourceOwner?: string | undefined;
     /**
      * <p>The ARN of the IAM user that you want to use as the simulated caller of the API
      *             operations. <code>CallerArn</code> is required if you include a
@@ -7481,14 +7738,14 @@ export interface SimulateCustomPolicyRequest {
      *             assumed role, federated user, or a service principal.</p>
      * @public
      */
-    CallerArn?: string;
+    CallerArn?: string | undefined;
     /**
      * <p>A list of context keys and corresponding values for the simulation to use. Whenever a
      *             context key is evaluated in one of the simulated IAM permissions policies, the
      *             corresponding value is supplied.</p>
      * @public
      */
-    ContextEntries?: ContextEntry[];
+    ContextEntries?: ContextEntry[] | undefined;
     /**
      * <p>Specifies the type of simulation to run. Different API operations that support
      *             resource-based policies require different combinations of resources. By specifying the
@@ -7530,7 +7787,7 @@ export interface SimulateCustomPolicyRequest {
      *          </ul>
      * @public
      */
-    ResourceHandlingOption?: string;
+    ResourceHandlingOption?: string | undefined;
     /**
      * <p>Use this only when paginating results to indicate the
      *     maximum number of items you want in the response. If additional items exist beyond the maximum
@@ -7542,7 +7799,7 @@ export interface SimulateCustomPolicyRequest {
      *     from.</p>
      * @public
      */
-    MaxItems?: number;
+    MaxItems?: number | undefined;
     /**
      * <p>Use this parameter only when paginating results and only after
      *     you receive a response indicating that the results are truncated. Set it to the value of the
@@ -7550,667 +7807,28 @@ export interface SimulateCustomPolicyRequest {
      *     should start.</p>
      * @public
      */
-    Marker?: string;
-}
-/**
- * @public
- * @enum
- */
-export declare const PolicyEvaluationDecisionType: {
-    readonly ALLOWED: "allowed";
-    readonly EXPLICIT_DENY: "explicitDeny";
-    readonly IMPLICIT_DENY: "implicitDeny";
-};
-/**
- * @public
- */
-export type PolicyEvaluationDecisionType = (typeof PolicyEvaluationDecisionType)[keyof typeof PolicyEvaluationDecisionType];
-/**
- * <p>Contains the row and column of a location of a <code>Statement</code> element in a
- *          policy document.</p>
- *          <p>This data type is used as a member of the <code>
- *                <a>Statement</a>
- *             </code> type.</p>
- * @public
- */
-export interface Position {
-    /**
-     * <p>The line containing the specified position in the document.</p>
-     * @public
-     */
-    Line?: number;
-    /**
-     * <p>The column in the line containing the specified position in the document.</p>
-     * @public
-     */
-    Column?: number;
+    Marker?: string | undefined;
 }
 /**
- * @public
- * @enum
- */
-export declare const PolicySourceType: {
-    readonly AWS_MANAGED: "aws-managed";
-    readonly GROUP: "group";
-    readonly NONE: "none";
-    readonly RESOURCE: "resource";
-    readonly ROLE: "role";
-    readonly USER: "user";
-    readonly USER_MANAGED: "user-managed";
-};
-/**
- * @public
- */
-export type PolicySourceType = (typeof PolicySourceType)[keyof typeof PolicySourceType];
-/**
- * <p>Contains a reference to a <code>Statement</code> element in a policy document that
- *          determines the result of the simulation.</p>
- *          <p>This data type is used by the <code>MatchedStatements</code> member of the <code>
- *                <a>EvaluationResult</a>
- *             </code> type.</p>
- * @public
+ * @internal
  */
-export interface Statement {
-    /**
-     * <p>The identifier of the policy that was provided as an input.</p>
-     * @public
-     */
-    SourcePolicyId?: string;
-    /**
-     * <p>The type of the policy.</p>
-     * @public
-     */
-    SourcePolicyType?: PolicySourceType;
-    /**
-     * <p>The row and column of the beginning of the <code>Statement</code> in an IAM
-     *          policy.</p>
-     * @public
-     */
-    StartPosition?: Position;
-    /**
-     * <p>The row and column of the end of a <code>Statement</code> in an IAM policy.</p>
-     * @public
-     */
-    EndPosition?: Position;
-}
+export declare const AccessKeyFilterSensitiveLog: (obj: AccessKey) => any;
 /**
- * <p>Contains information about the effect that Organizations has on a policy simulation.</p>
- * @public
+ * @internal
  */
-export interface OrganizationsDecisionDetail {
-    /**
-     * <p>Specifies whether the simulated operation is allowed by the Organizations service control
-     *          policies that impact the simulated user's account.</p>
-     * @public
-     */
-    AllowedByOrganizations?: boolean;
-}
+export declare const ChangePasswordRequestFilterSensitiveLog: (obj: ChangePasswordRequest) => any;
 /**
- * <p>Contains information about the effect that a permissions boundary has on a policy
- *          simulation when the boundary is applied to an IAM entity.</p>
- * @public
+ * @internal
  */
-export interface PermissionsBoundaryDecisionDetail {
-    /**
-     * <p>Specifies whether an action is allowed by a permissions boundary that is applied to an
-     *          IAM entity (user or role). A value of <code>true</code> means that the permissions
-     *          boundary does not deny the action. This means that the policy includes an
-     *             <code>Allow</code> statement that matches the request. In this case, if an
-     *          identity-based policy also allows the action, the request is allowed. A value of
-     *             <code>false</code> means that either the requested action is not allowed (implicitly
-     *          denied) or that the action is explicitly denied by the permissions boundary. In both of
-     *          these cases, the action is not allowed, regardless of the identity-based policy.</p>
-     * @public
-     */
-    AllowedByPermissionsBoundary?: boolean;
-}
+export declare const CreateAccessKeyResponseFilterSensitiveLog: (obj: CreateAccessKeyResponse) => any;
 /**
- * <p>Contains the result of the simulation of a single API operation call on a single
- *          resource.</p>
- *          <p>This data type is used by a member of the <a>EvaluationResult</a> data
- *          type.</p>
- * @public
+ * @internal
  */
-export interface ResourceSpecificResult {
-    /**
-     * <p>The name of the simulated resource, in Amazon Resource Name (ARN) format.</p>
-     * @public
-     */
-    EvalResourceName: string | undefined;
-    /**
-     * <p>The result of the simulation of the simulated API operation on the resource specified in
-     *             <code>EvalResourceName</code>.</p>
-     * @public
-     */
-    EvalResourceDecision: PolicyEvaluationDecisionType | undefined;
-    /**
-     * <p>A list of the statements in the input policies that determine the result for this part
-     *          of the simulation. Remember that even if multiple statements allow the operation on the
-     *          resource, if <i>any</i> statement denies that operation, then the explicit
-     *          deny overrides any allow. In addition, the deny statement is the only entry included in the
-     *          result.</p>
-     * @public
-     */
-    MatchedStatements?: Statement[];
-    /**
-     * <p>A list of context keys that are required by the included input policies but that were
-     *          not provided by one of the input parameters. This list is used when a list of ARNs is
-     *          included in the <code>ResourceArns</code> parameter instead of "*". If you do not specify
-     *          individual resources, by setting <code>ResourceArns</code> to "*" or by not including the
-     *             <code>ResourceArns</code> parameter, then any missing context values are instead
-     *          included under the <code>EvaluationResults</code> section. To discover the context keys
-     *          used by a set of policies, you can call <a>GetContextKeysForCustomPolicy</a> or
-     *             <a>GetContextKeysForPrincipalPolicy</a>.</p>
-     * @public
-     */
-    MissingContextValues?: string[];
-    /**
-     * <p>Additional details about the results of the evaluation decision on a single resource.
-     *          This parameter is returned only for cross-account simulations. This parameter explains how
-     *          each policy type contributes to the resource-specific evaluation decision.</p>
-     * @public
-     */
-    EvalDecisionDetails?: Record<string, PolicyEvaluationDecisionType>;
-    /**
-     * <p>Contains information about the effect that a permissions boundary has on a policy
-     *          simulation when that boundary is applied to an IAM entity.</p>
-     * @public
-     */
-    PermissionsBoundaryDecisionDetail?: PermissionsBoundaryDecisionDetail;
-}
+export declare const CreateLoginProfileRequestFilterSensitiveLog: (obj: CreateLoginProfileRequest) => any;
 /**
- * <p>Contains the results of a simulation.</p>
- *          <p>This data type is used by the return parameter of <code>
- *                <a>SimulateCustomPolicy</a>
- *             </code> and <code>
- *                <a>SimulatePrincipalPolicy</a>
- *             </code>.</p>
- * @public
+ * @internal
  */
-export interface EvaluationResult {
-    /**
-     * <p>The name of the API operation tested on the indicated resource.</p>
-     * @public
-     */
-    EvalActionName: string | undefined;
-    /**
-     * <p>The ARN of the resource that the indicated API operation was tested on.</p>
-     * @public
-     */
-    EvalResourceName?: string;
-    /**
-     * <p>The result of the simulation.</p>
-     * @public
-     */
-    EvalDecision: PolicyEvaluationDecisionType | undefined;
-    /**
-     * <p>A list of the statements in the input policies that determine the result for this
-     *          scenario. Remember that even if multiple statements allow the operation on the resource, if
-     *          only one statement denies that operation, then the explicit deny overrides any allow. In
-     *          addition, the deny statement is the only entry included in the result.</p>
-     * @public
-     */
-    MatchedStatements?: Statement[];
-    /**
-     * <p>A list of context keys that are required by the included input policies but that were
-     *          not provided by one of the input parameters. This list is used when the resource in a
-     *          simulation is "*", either explicitly, or when the <code>ResourceArns</code> parameter
-     *          blank. If you include a list of resources, then any missing context values are instead
-     *          included under the <code>ResourceSpecificResults</code> section. To discover the context
-     *          keys used by a set of policies, you can call <a>GetContextKeysForCustomPolicy</a> or <a>GetContextKeysForPrincipalPolicy</a>.</p>
-     * @public
-     */
-    MissingContextValues?: string[];
-    /**
-     * <p>A structure that details how Organizations and its service control policies affect the results of
-     *          the simulation. Only applies if the simulated user's account is part of an
-     *          organization.</p>
-     * @public
-     */
-    OrganizationsDecisionDetail?: OrganizationsDecisionDetail;
-    /**
-     * <p>Contains information about the effect that a permissions boundary has on a policy
-     *          simulation when the boundary is applied to an IAM entity.</p>
-     * @public
-     */
-    PermissionsBoundaryDecisionDetail?: PermissionsBoundaryDecisionDetail;
-    /**
-     * <p>Additional details about the results of the cross-account evaluation decision. This
-     *          parameter is populated for only cross-account simulations. It contains a brief summary of
-     *          how each policy type contributes to the final evaluation decision.</p>
-     *          <p>If the simulation evaluates policies within the same account and includes a resource
-     *          ARN, then the parameter is present but the response is empty. If the simulation evaluates
-     *          policies within the same account and specifies all resources (<code>*</code>), then the
-     *          parameter is not returned.</p>
-     *          <p>When you make a cross-account request, Amazon Web Services evaluates the request in the trusting
-     *          account and the trusted account. The request is allowed only if both evaluations return
-     *             <code>true</code>. For more information about how policies are evaluated, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_evaluation-logic.html#policy-eval-basics">Evaluating policies within a single account</a>.</p>
-     *          <p>If an Organizations SCP included in the evaluation denies access, the simulation ends. In
-     *          this case, policy evaluation does not proceed any further and this parameter is not
-     *          returned.</p>
-     * @public
-     */
-    EvalDecisionDetails?: Record<string, PolicyEvaluationDecisionType>;
-    /**
-     * <p>The individual results of the simulation of the API operation specified in
-     *          EvalActionName on each resource.</p>
-     * @public
-     */
-    ResourceSpecificResults?: ResourceSpecificResult[];
-}
-/**
- * <p>Contains the response to a successful <a>SimulatePrincipalPolicy</a> or
- *       <a>SimulateCustomPolicy</a> request.</p>
- * @public
- */
-export interface SimulatePolicyResponse {
-    /**
-     * <p>The results of the simulation.</p>
-     * @public
-     */
-    EvaluationResults?: EvaluationResult[];
-    /**
-     * <p>A flag that indicates whether there are more items to return. If your
-     *     results were truncated, you can make a subsequent pagination request using the <code>Marker</code>
-     *     request parameter to retrieve more items. Note that IAM might return fewer than the
-     *     <code>MaxItems</code> number of results even when there are more results available. We recommend
-     *     that you check <code>IsTruncated</code> after every call to ensure that you receive all your
-     *     results.</p>
-     * @public
-     */
-    IsTruncated?: boolean;
-    /**
-     * <p>When <code>IsTruncated</code> is <code>true</code>, this element
-     *     is present and contains the value to use for the <code>Marker</code> parameter in a subsequent
-     *     pagination request.</p>
-     * @public
-     */
-    Marker?: string;
-}
-/**
- * @public
- */
-export interface SimulatePrincipalPolicyRequest {
-    /**
-     * <p>The Amazon Resource Name (ARN) of a user, group, or role whose policies you want to
-     *             include in the simulation. If you specify a user, group, or role, the simulation
-     *             includes all policies that are associated with that entity. If you specify a user, the
-     *             simulation also includes all policies that are attached to any groups the user belongs
-     *             to.</p>
-     *          <p>The maximum length of the policy document that you can pass in this operation,
-     *             including whitespace, is listed below. To view the maximum character counts of a managed policy with no whitespaces, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_iam-quotas.html#reference_iam-quotas-entity-length">IAM and STS character quotas</a>.</p>
-     *          <p>For more information about ARNs, see <a href="https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource Names (ARNs)</a> in the <i>Amazon Web Services General Reference</i>.</p>
-     * @public
-     */
-    PolicySourceArn: string | undefined;
-    /**
-     * <p>An optional list of additional policy documents to include in the simulation. Each
-     *             document is specified as a string containing the complete, valid JSON text of an IAM
-     *             policy.</p>
-     *          <p>The <a href="http://wikipedia.org/wiki/regex">regex pattern</a>
-     *     used to validate this parameter is a string of characters consisting of the following:</p>
-     *          <ul>
-     *             <li>
-     *                <p>Any printable ASCII
-     *     character ranging from the space character (<code>\u0020</code>) through the end of the ASCII character range</p>
-     *             </li>
-     *             <li>
-     *                <p>The printable characters in the Basic Latin and  Latin-1 Supplement character set
-     *     (through <code>\u00FF</code>)</p>
-     *             </li>
-     *             <li>
-     *                <p>The special characters tab (<code>\u0009</code>), line feed (<code>\u000A</code>), and
-     *     carriage return (<code>\u000D</code>)</p>
-     *             </li>
-     *          </ul>
-     * @public
-     */
-    PolicyInputList?: string[];
-    /**
-     * <p>The IAM permissions boundary policy to simulate. The permissions boundary sets the
-     *             maximum permissions that the entity can have. You can input only one permissions
-     *             boundary when you pass a policy to this operation. An IAM entity can only have one
-     *             permissions boundary in effect at a time. For example, if a permissions boundary is
-     *             attached to an entity and you pass in a different permissions boundary policy using this
-     *             parameter, then the new permissions boundary policy is used for the simulation. For more
-     *             information about permissions boundaries, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_boundaries.html">Permissions boundaries for IAM
-     *                 entities</a> in the <i>IAM User Guide</i>. The policy input is
-     *             specified as a string containing the complete, valid JSON text of a permissions boundary
-     *             policy.</p>
-     *          <p>The maximum length of the policy document that you can pass in this operation,
-     *             including whitespace, is listed below. To view the maximum character counts of a managed policy with no whitespaces, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_iam-quotas.html#reference_iam-quotas-entity-length">IAM and STS character quotas</a>.</p>
-     *          <p>The <a href="http://wikipedia.org/wiki/regex">regex pattern</a>
-     *     used to validate this parameter is a string of characters consisting of the following:</p>
-     *          <ul>
-     *             <li>
-     *                <p>Any printable ASCII
-     *     character ranging from the space character (<code>\u0020</code>) through the end of the ASCII character range</p>
-     *             </li>
-     *             <li>
-     *                <p>The printable characters in the Basic Latin and  Latin-1 Supplement character set
-     *     (through <code>\u00FF</code>)</p>
-     *             </li>
-     *             <li>
-     *                <p>The special characters tab (<code>\u0009</code>), line feed (<code>\u000A</code>), and
-     *     carriage return (<code>\u000D</code>)</p>
-     *             </li>
-     *          </ul>
-     * @public
-     */
-    PermissionsBoundaryPolicyInputList?: string[];
-    /**
-     * <p>A list of names of API operations to evaluate in the simulation. Each operation is
-     *             evaluated for each resource. Each operation must include the service identifier, such as
-     *                 <code>iam:CreateUser</code>.</p>
-     * @public
-     */
-    ActionNames: string[] | undefined;
-    /**
-     * <p>A list of ARNs of Amazon Web Services resources to include in the simulation. If this parameter is
-     *             not provided, then the value defaults to <code>*</code> (all resources). Each API in the
-     *                 <code>ActionNames</code> parameter is evaluated for each resource in this list. The
-     *             simulation determines the access result (allowed or denied) of each combination and
-     *             reports it in the response. You can simulate resources that don't exist in your
-     *             account.</p>
-     *          <p>The simulation does not automatically retrieve policies for the specified resources.
-     *             If you want to include a resource policy in the simulation, then you must include the
-     *             policy as a string in the <code>ResourcePolicy</code> parameter.</p>
-     *          <p>For more information about ARNs, see <a href="https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource Names (ARNs)</a> in the <i>Amazon Web Services General Reference</i>.</p>
-     *          <note>
-     *             <p>Simulation of resource-based policies isn't supported for IAM roles.</p>
-     *          </note>
-     * @public
-     */
-    ResourceArns?: string[];
-    /**
-     * <p>A resource-based policy to include in the simulation provided as a string. Each
-     *             resource in the simulation is treated as if it had this policy attached. You can include
-     *             only one resource-based policy in a simulation.</p>
-     *          <p>The maximum length of the policy document that you can pass in this operation,
-     *             including whitespace, is listed below. To view the maximum character counts of a managed policy with no whitespaces, see <a href="https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_iam-quotas.html#reference_iam-quotas-entity-length">IAM and STS character quotas</a>.</p>
-     *          <p>The <a href="http://wikipedia.org/wiki/regex">regex pattern</a>
-     *     used to validate this parameter is a string of characters consisting of the following:</p>
-     *          <ul>
-     *             <li>
-     *                <p>Any printable ASCII
-     *     character ranging from the space character (<code>\u0020</code>) through the end of the ASCII character range</p>
-     *             </li>
-     *             <li>
-     *                <p>The printable characters in the Basic Latin and  Latin-1 Supplement character set
-     *     (through <code>\u00FF</code>)</p>
-     *             </li>
-     *             <li>
-     *                <p>The special characters tab (<code>\u0009</code>), line feed (<code>\u000A</code>), and
-     *     carriage return (<code>\u000D</code>)</p>
-     *             </li>
-     *          </ul>
-     *          <note>
-     *             <p>Simulation of resource-based policies isn't supported for IAM roles.</p>
-     *          </note>
-     * @public
-     */
-    ResourcePolicy?: string;
-    /**
-     * <p>An Amazon Web Services account ID that specifies the owner of any simulated resource that does not
-     *             identify its owner in the resource ARN. Examples of resource ARNs include an S3 bucket
-     *             or object. If <code>ResourceOwner</code> is specified, it is also used as the account
-     *             owner of any <code>ResourcePolicy</code> included in the simulation. If the
-     *                 <code>ResourceOwner</code> parameter is not specified, then the owner of the
-     *             resources and the resource policy defaults to the account of the identity provided in
-     *                 <code>CallerArn</code>. This parameter is required only if you specify a
-     *             resource-based policy and account that owns the resource is different from the account
-     *             that owns the simulated calling user <code>CallerArn</code>.</p>
-     * @public
-     */
-    ResourceOwner?: string;
-    /**
-     * <p>The ARN of the IAM user that you want to specify as the simulated caller of the API
-     *             operations. If you do not specify a <code>CallerArn</code>, it defaults to the ARN of
-     *             the user that you specify in <code>PolicySourceArn</code>, if you specified a user. If
-     *             you include both a <code>PolicySourceArn</code> (for example,
-     *                 <code>arn:aws:iam::123456789012:user/David</code>) and a <code>CallerArn</code> (for
-     *             example, <code>arn:aws:iam::123456789012:user/Bob</code>), the result is that you
-     *             simulate calling the API operations as Bob, as if Bob had David's policies.</p>
-     *          <p>You can specify only the ARN of an IAM user. You cannot specify the ARN of an
-     *             assumed role, federated user, or a service principal.</p>
-     *          <p>
-     *             <code>CallerArn</code> is required if you include a <code>ResourcePolicy</code> and
-     *             the <code>PolicySourceArn</code> is not the ARN for an IAM user. This is required so
-     *             that the resource-based policy's <code>Principal</code> element has a value to use in
-     *             evaluating the policy.</p>
-     *          <p>For more information about ARNs, see <a href="https://docs.aws.amazon.com/general/latest/gr/aws-arns-and-namespaces.html">Amazon Resource Names (ARNs)</a> in the <i>Amazon Web Services General Reference</i>.</p>
-     * @public
-     */
-    CallerArn?: string;
-    /**
-     * <p>A list of context keys and corresponding values for the simulation to use. Whenever a
-     *             context key is evaluated in one of the simulated IAM permissions policies, the
-     *             corresponding value is supplied.</p>
-     * @public
-     */
-    ContextEntries?: ContextEntry[];
-    /**
-     * <p>Specifies the type of simulation to run. Different API operations that support
-     *             resource-based policies require different combinations of resources. By specifying the
-     *             type of simulation to run, you enable the policy simulator to enforce the presence of
-     *             the required resources to ensure reliable simulation results. If your simulation does
-     *             not match one of the following scenarios, then you can omit this parameter. The
-     *             following list shows each of the supported scenario values and the resources that you
-     *             must define to run the simulation.</p>
-     *          <p>Each of the Amazon EC2 scenarios requires that you specify instance, image, and security
-     *             group resources. If your scenario includes an EBS volume, then you must specify that
-     *             volume as a resource. If the Amazon EC2 scenario includes VPC, then you must supply the
-     *             network interface resource. If it includes an IP subnet, then you must specify the
-     *             subnet resource. For more information on the Amazon EC2 scenario options, see <a href="https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-supported-platforms.html">Supported platforms</a> in the <i>Amazon EC2 User Guide</i>.</p>
-     *          <ul>
-     *             <li>
-     *                <p>
-     *                   <b>EC2-VPC-InstanceStore</b>
-     *                </p>
-     *                <p>instance, image, security group, network interface</p>
-     *             </li>
-     *             <li>
-     *                <p>
-     *                   <b>EC2-VPC-InstanceStore-Subnet</b>
-     *                </p>
-     *                <p>instance, image, security group, network interface, subnet</p>
-     *             </li>
-     *             <li>
-     *                <p>
-     *                   <b>EC2-VPC-EBS</b>
-     *                </p>
-     *                <p>instance, image, security group, network interface, volume</p>
-     *             </li>
-     *             <li>
-     *                <p>
-     *                   <b>EC2-VPC-EBS-Subnet</b>
-     *                </p>
-     *                <p>instance, image, security group, network interface, subnet, volume</p>
-     *             </li>
-     *          </ul>
-     * @public
-     */
-    ResourceHandlingOption?: string;
-    /**
-     * <p>Use this only when paginating results to indicate the
-     *     maximum number of items you want in the response. If additional items exist beyond the maximum
-     *     you specify, the <code>IsTruncated</code> response element is <code>true</code>.</p>
-     *          <p>If you do not include this parameter, the number of items defaults to 100. Note that
-     *     IAM might return fewer results, even when there are more results available. In that case, the
-     *     <code>IsTruncated</code> response element returns <code>true</code>, and <code>Marker</code>
-     *     contains a value to include in the subsequent call that tells the service where to continue
-     *     from.</p>
-     * @public
-     */
-    MaxItems?: number;
-    /**
-     * <p>Use this parameter only when paginating results and only after
-     *     you receive a response indicating that the results are truncated. Set it to the value of the
-     *     <code>Marker</code> element in the response that you received to indicate where the next call
-     *     should start.</p>
-     * @public
-     */
-    Marker?: string;
-}
-/**
- * @public
- */
-export interface TagInstanceProfileRequest {
-    /**
-     * <p>The name of the IAM instance profile to which you want to add tags.</p>
-     *          <p>This parameter allows (through its <a href="http://wikipedia.org/wiki/regex">regex pattern</a>) a string of characters consisting of upper and lowercase alphanumeric
-     *     characters with no spaces. You can also include any of the following characters: _+=,.@-</p>
-     * @public
-     */
-    InstanceProfileName: string | undefined;
-    /**
-     * <p>The list of tags that you want to attach to the IAM instance profile.
-     *       Each tag consists of a key name and an associated value.</p>
-     * @public
-     */
-    Tags: Tag[] | undefined;
-}
-/**
- * @public
- */
-export interface TagMFADeviceRequest {
-    /**
-     * <p>The unique identifier for the IAM virtual MFA device to which you want to add tags.
-     *       For virtual MFA devices, the serial number is the same as the ARN.</p>
-     *          <p>This parameter allows (through its <a href="http://wikipedia.org/wiki/regex">regex pattern</a>) a string of characters consisting of upper and lowercase alphanumeric
-     *     characters with no spaces. You can also include any of the following characters: _+=,.@-</p>
-     * @public
-     */
-    SerialNumber: string | undefined;
-    /**
-     * <p>The list of tags that you want to attach to the IAM virtual MFA device.
-     *       Each tag consists of a key name and an associated value.</p>
-     * @public
-     */
-    Tags: Tag[] | undefined;
-}
-/**
- * @public
- */
-export interface TagOpenIDConnectProviderRequest {
-    /**
-     * <p>The ARN of the OIDC identity provider in IAM to which you want to add tags.</p>
-     *          <p>This parameter allows (through its <a href="http://wikipedia.org/wiki/regex">regex pattern</a>) a string of characters consisting of upper and lowercase alphanumeric
-     *     characters with no spaces. You can also include any of the following characters: _+=,.@-</p>
-     * @public
-     */
-    OpenIDConnectProviderArn: string | undefined;
-    /**
-     * <p>The list of tags that you want to attach to the OIDC identity provider in IAM.
-     *       Each tag consists of a key name and an associated value.</p>
-     * @public
-     */
-    Tags: Tag[] | undefined;
-}
-/**
- * @public
- */
-export interface TagPolicyRequest {
-    /**
-     * <p>The ARN of the IAM customer managed policy to which you want to add tags.</p>
-     *          <p>This parameter allows (through its <a href="http://wikipedia.org/wiki/regex">regex pattern</a>) a string of characters consisting of upper and lowercase alphanumeric
-     *     characters with no spaces. You can also include any of the following characters: _+=,.@-</p>
-     * @public
-     */
-    PolicyArn: string | undefined;
-    /**
-     * <p>The list of tags that you want to attach to the IAM customer managed policy.
-     *       Each tag consists of a key name and an associated value.</p>
-     * @public
-     */
-    Tags: Tag[] | undefined;
-}
-/**
- * @public
- */
-export interface TagRoleRequest {
-    /**
-     * <p>The name of the IAM role to which you want to add tags.</p>
-     *          <p>This parameter accepts (through its <a href="http://wikipedia.org/wiki/regex">regex pattern</a>) a string of characters that consist of upper and lowercase alphanumeric
-     *     characters with no spaces. You can also include any of the following characters: _+=,.@-</p>
-     * @public
-     */
-    RoleName: string | undefined;
-    /**
-     * <p>The list of tags that you want to attach to the IAM role. Each tag consists of a key name and an associated value.</p>
-     * @public
-     */
-    Tags: Tag[] | undefined;
-}
-/**
- * @public
- */
-export interface TagSAMLProviderRequest {
-    /**
-     * <p>The ARN of the SAML identity provider in IAM to which you want to add tags.</p>
-     *          <p>This parameter allows (through its <a href="http://wikipedia.org/wiki/regex">regex pattern</a>) a string of characters consisting of upper and lowercase alphanumeric
-     *     characters with no spaces. You can also include any of the following characters: _+=,.@-</p>
-     * @public
-     */
-    SAMLProviderArn: string | undefined;
-    /**
-     * <p>The list of tags that you want to attach to the SAML identity provider in IAM.
-     *       Each tag consists of a key name and an associated value.</p>
-     * @public
-     */
-    Tags: Tag[] | undefined;
-}
-/**
- * @public
- */
-export interface TagServerCertificateRequest {
-    /**
-     * <p>The name of the IAM server certificate to which you want to add tags.</p>
-     *          <p>This parameter allows (through its <a href="http://wikipedia.org/wiki/regex">regex pattern</a>) a string of characters consisting of upper and lowercase alphanumeric
-     *     characters with no spaces. You can also include any of the following characters: _+=,.@-</p>
-     * @public
-     */
-    ServerCertificateName: string | undefined;
-    /**
-     * <p>The list of tags that you want to attach to the IAM server certificate.
-     *       Each tag consists of a key name and an associated value.</p>
-     * @public
-     */
-    Tags: Tag[] | undefined;
-}
-/**
- * @public
- */
-export interface TagUserRequest {
-    /**
-     * <p>The name of the IAM user to which you want to add tags.</p>
-     *          <p>This parameter allows (through its <a href="http://wikipedia.org/wiki/regex">regex pattern</a>) a string of characters consisting of upper and lowercase alphanumeric
-     *     characters with no spaces. You can also include any of the following characters: _+=,.@-</p>
-     * @public
-     */
-    UserName: string | undefined;
-    /**
-     * <p>The list of tags that you want to attach to the IAM user. Each tag consists of a key name and an associated value.</p>
-     * @public
-     */
-    Tags: Tag[] | undefined;
-}
-/**
- * @internal
- */
-export declare const AccessKeyFilterSensitiveLog: (obj: AccessKey) => any;
-/**
- * @internal
- */
-export declare const ChangePasswordRequestFilterSensitiveLog: (obj: ChangePasswordRequest) => any;
-/**
- * @internal
- */
-export declare const CreateAccessKeyResponseFilterSensitiveLog: (obj: CreateAccessKeyResponse) => any;
-/**
- * @internal
- */
-export declare const CreateLoginProfileRequestFilterSensitiveLog: (obj: CreateLoginProfileRequest) => any;
+export declare const CreateSAMLProviderRequestFilterSensitiveLog: (obj: CreateSAMLProviderRequest) => any;
 /**
  * @internal
  */