AWS::EC2::VerifiedAccessTrustProviderEC2 VerifiedAccessTrustProvider
The AWS::EC2::VerifiedAccessTrustProvider type describes a verified access trust provider
Properties
10 configurable properties. 2 required. Click a row to see details.
Filter:
| Property | Type | Flags |
|---|---|---|
PolicyReferenceName | string | RequiredCreate-only |
TrustProviderType | string | RequiredCreate-only |
Description | string | |
DeviceOptions | DeviceOptions | Create-only |
DeviceTrustProviderType | string | Create-only |
NativeApplicationOidcOptions | NativeApplicationOidcOptions | |
OidcOptions | OidcOptions | |
SseSpecification | object | |
Tags | Array<Tag> | |
UserTrustProviderType | string | Create-only |
Return Values
Values returned after the resource is created. Access these with Fn::GetAtt.
| Attribute | Type | Description |
|---|---|---|
CreationTime | string | The creation time. |
LastUpdatedTime | string | The last updated time. |
VerifiedAccessTrustProviderId | string | The ID of the Amazon Web Services Verified Access trust provider. |
Sample CloudFormation Template
A minimal template with required properties and common optional ones.
template.yaml
AWSTemplateFormatVersion: "2010-09-09"
Description: Sample template for AWS::EC2::VerifiedAccessTrustProvider
Resources:
MyResource:
Type: AWS::EC2::VerifiedAccessTrustProvider
Properties:
TrustProviderType: "my-trustprovidertype"
PolicyReferenceName: "my-policyreferencename"
Tags:
- Key: Environment
Value: Production
Description: !Ref "AWS::StackName"Required IAM Permissions
Permissions CloudFormation needs in your IAM role to manage this resource.
create
ec2:CreateVerifiedAccessTrustProviderec2:DescribeVerifiedAccessTrustProvidersec2:CreateTagsec2:DescribeTagssso:GetSharedSsoConfigurationkms:DescribeKeykms:RetireGrantkms:CreateGrantread
ec2:DescribeVerifiedAccessTrustProvidersec2:DescribeTagskms:DescribeKeykms:GenerateDataKeykms:Decryptupdate
ec2:ModifyVerifiedAccessTrustProviderec2:DescribeVerifiedAccessTrustProvidersec2:DescribeTagsec2:DeleteTagsec2:CreateTagskms:DescribeKeykms:RetireGrantkms:CreateGrantdelete
ec2:DeleteVerifiedAccessTrustProviderec2:DeleteTagsec2:DescribeVerifiedAccessTrustProvidersec2:DescribeTagskms:DescribeKeykms:RetireGrantkms:CreateGrantkms:GenerateDataKeylist
ec2:DescribeVerifiedAccessTrustProvidersec2:DescribeTagskms:DescribeKeykms:GenerateDataKeykms:DecryptGet the EC2 Cheat Sheet
Everything you need to know about EC2 on one page. HD quality, print-friendly.
Download Free InfographicQuick Facts
ServiceEC2
Properties13
Required2
TaggingSupported
Primary ID
VerifiedAccessTrustProviderIdSupported Operations
CreateReadUpdateDeleteList
Immutable After Creation
These properties cannot be changed after the resource is created. Updating them triggers a replacement.
PolicyReferenceNameDeviceOptionsDeviceTrustProviderTypeTrustProviderTypeUserTrustProviderType