We recommend new projects start with resources from the AWS provider.
aws-native.ec2.VerifiedAccessEndpoint
Explore with Pulumi AI
We recommend new projects start with resources from the AWS provider.
The AWS::EC2::VerifiedAccessEndpoint resource creates an AWS EC2 Verified Access Endpoint.
Create VerifiedAccessEndpoint Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new VerifiedAccessEndpoint(name: string, args: VerifiedAccessEndpointArgs, opts?: CustomResourceOptions);
@overload
def VerifiedAccessEndpoint(resource_name: str,
args: VerifiedAccessEndpointArgs,
opts: Optional[ResourceOptions] = None)
@overload
def VerifiedAccessEndpoint(resource_name: str,
opts: Optional[ResourceOptions] = None,
application_domain: Optional[str] = None,
attachment_type: Optional[str] = None,
verified_access_group_id: Optional[str] = None,
domain_certificate_arn: Optional[str] = None,
endpoint_domain_prefix: Optional[str] = None,
endpoint_type: Optional[str] = None,
load_balancer_options: Optional[VerifiedAccessEndpointLoadBalancerOptionsArgs] = None,
network_interface_options: Optional[VerifiedAccessEndpointNetworkInterfaceOptionsArgs] = None,
policy_document: Optional[str] = None,
policy_enabled: Optional[bool] = None,
security_group_ids: Optional[Sequence[str]] = None,
sse_specification: Optional[VerifiedAccessEndpointSseSpecificationArgs] = None,
tags: Optional[Sequence[_root_inputs.TagArgs]] = None,
description: Optional[str] = None)
func NewVerifiedAccessEndpoint(ctx *Context, name string, args VerifiedAccessEndpointArgs, opts ...ResourceOption) (*VerifiedAccessEndpoint, error)
public VerifiedAccessEndpoint(string name, VerifiedAccessEndpointArgs args, CustomResourceOptions? opts = null)
public VerifiedAccessEndpoint(String name, VerifiedAccessEndpointArgs args)
public VerifiedAccessEndpoint(String name, VerifiedAccessEndpointArgs args, CustomResourceOptions options)
type: aws-native:ec2:VerifiedAccessEndpoint
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args VerifiedAccessEndpointArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args VerifiedAccessEndpointArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args VerifiedAccessEndpointArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args VerifiedAccessEndpointArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args VerifiedAccessEndpointArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
VerifiedAccessEndpoint Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The VerifiedAccessEndpoint resource accepts the following input properties:
- Application
Domain string - The DNS name for users to reach your application.
- Attachment
Type string - The type of attachment used to provide connectivity between the AWS Verified Access endpoint and the application.
- Domain
Certificate stringArn - The ARN of a public TLS/SSL certificate imported into or created with ACM.
- Endpoint
Domain stringPrefix - A custom identifier that gets prepended to a DNS name that is generated for the endpoint.
- Endpoint
Type string - The type of AWS Verified Access endpoint. Incoming application requests will be sent to an IP address, load balancer or a network interface depending on the endpoint type specified.The type of AWS Verified Access endpoint. Incoming application requests will be sent to an IP address, load balancer or a network interface depending on the endpoint type specified.
- Verified
Access stringGroup Id - The ID of the AWS Verified Access group.
- Description string
- A description for the AWS Verified Access endpoint.
- Load
Balancer Pulumi.Options Aws Native. Ec2. Inputs. Verified Access Endpoint Load Balancer Options - The load balancer details if creating the AWS Verified Access endpoint as load-balancer type.
- Network
Interface Pulumi.Options Aws Native. Ec2. Inputs. Verified Access Endpoint Network Interface Options - The options for network-interface type endpoint.
- Policy
Document string - The AWS Verified Access policy document.
- Policy
Enabled bool - The status of the Verified Access policy.
- Security
Group List<string>Ids - The IDs of the security groups for the endpoint.
- Sse
Specification Pulumi.Aws Native. Ec2. Inputs. Verified Access Endpoint Sse Specification - The configuration options for customer provided KMS encryption.
- List<Pulumi.
Aws Native. Inputs. Tag> - An array of key-value pairs to apply to this resource.
- Application
Domain string - The DNS name for users to reach your application.
- Attachment
Type string - The type of attachment used to provide connectivity between the AWS Verified Access endpoint and the application.
- Domain
Certificate stringArn - The ARN of a public TLS/SSL certificate imported into or created with ACM.
- Endpoint
Domain stringPrefix - A custom identifier that gets prepended to a DNS name that is generated for the endpoint.
- Endpoint
Type string - The type of AWS Verified Access endpoint. Incoming application requests will be sent to an IP address, load balancer or a network interface depending on the endpoint type specified.The type of AWS Verified Access endpoint. Incoming application requests will be sent to an IP address, load balancer or a network interface depending on the endpoint type specified.
- Verified
Access stringGroup Id - The ID of the AWS Verified Access group.
- Description string
- A description for the AWS Verified Access endpoint.
- Load
Balancer VerifiedOptions Access Endpoint Load Balancer Options Args - The load balancer details if creating the AWS Verified Access endpoint as load-balancer type.
- Network
Interface VerifiedOptions Access Endpoint Network Interface Options Args - The options for network-interface type endpoint.
- Policy
Document string - The AWS Verified Access policy document.
- Policy
Enabled bool - The status of the Verified Access policy.
- Security
Group []stringIds - The IDs of the security groups for the endpoint.
- Sse
Specification VerifiedAccess Endpoint Sse Specification Args - The configuration options for customer provided KMS encryption.
- Tag
Args - An array of key-value pairs to apply to this resource.
- application
Domain String - The DNS name for users to reach your application.
- attachment
Type String - The type of attachment used to provide connectivity between the AWS Verified Access endpoint and the application.
- domain
Certificate StringArn - The ARN of a public TLS/SSL certificate imported into or created with ACM.
- endpoint
Domain StringPrefix - A custom identifier that gets prepended to a DNS name that is generated for the endpoint.
- endpoint
Type String - The type of AWS Verified Access endpoint. Incoming application requests will be sent to an IP address, load balancer or a network interface depending on the endpoint type specified.The type of AWS Verified Access endpoint. Incoming application requests will be sent to an IP address, load balancer or a network interface depending on the endpoint type specified.
- verified
Access StringGroup Id - The ID of the AWS Verified Access group.
- description String
- A description for the AWS Verified Access endpoint.
- load
Balancer VerifiedOptions Access Endpoint Load Balancer Options - The load balancer details if creating the AWS Verified Access endpoint as load-balancer type.
- network
Interface VerifiedOptions Access Endpoint Network Interface Options - The options for network-interface type endpoint.
- policy
Document String - The AWS Verified Access policy document.
- policy
Enabled Boolean - The status of the Verified Access policy.
- security
Group List<String>Ids - The IDs of the security groups for the endpoint.
- sse
Specification VerifiedAccess Endpoint Sse Specification - The configuration options for customer provided KMS encryption.
- List<Tag>
- An array of key-value pairs to apply to this resource.
- application
Domain string - The DNS name for users to reach your application.
- attachment
Type string - The type of attachment used to provide connectivity between the AWS Verified Access endpoint and the application.
- domain
Certificate stringArn - The ARN of a public TLS/SSL certificate imported into or created with ACM.
- endpoint
Domain stringPrefix - A custom identifier that gets prepended to a DNS name that is generated for the endpoint.
- endpoint
Type string - The type of AWS Verified Access endpoint. Incoming application requests will be sent to an IP address, load balancer or a network interface depending on the endpoint type specified.The type of AWS Verified Access endpoint. Incoming application requests will be sent to an IP address, load balancer or a network interface depending on the endpoint type specified.
- verified
Access stringGroup Id - The ID of the AWS Verified Access group.
- description string
- A description for the AWS Verified Access endpoint.
- load
Balancer VerifiedOptions Access Endpoint Load Balancer Options - The load balancer details if creating the AWS Verified Access endpoint as load-balancer type.
- network
Interface VerifiedOptions Access Endpoint Network Interface Options - The options for network-interface type endpoint.
- policy
Document string - The AWS Verified Access policy document.
- policy
Enabled boolean - The status of the Verified Access policy.
- security
Group string[]Ids - The IDs of the security groups for the endpoint.
- sse
Specification VerifiedAccess Endpoint Sse Specification - The configuration options for customer provided KMS encryption.
- Tag[]
- An array of key-value pairs to apply to this resource.
- application_
domain str - The DNS name for users to reach your application.
- attachment_
type str - The type of attachment used to provide connectivity between the AWS Verified Access endpoint and the application.
- domain_
certificate_ strarn - The ARN of a public TLS/SSL certificate imported into or created with ACM.
- endpoint_
domain_ strprefix - A custom identifier that gets prepended to a DNS name that is generated for the endpoint.
- endpoint_
type str - The type of AWS Verified Access endpoint. Incoming application requests will be sent to an IP address, load balancer or a network interface depending on the endpoint type specified.The type of AWS Verified Access endpoint. Incoming application requests will be sent to an IP address, load balancer or a network interface depending on the endpoint type specified.
- verified_
access_ strgroup_ id - The ID of the AWS Verified Access group.
- description str
- A description for the AWS Verified Access endpoint.
- load_
balancer_ Verifiedoptions Access Endpoint Load Balancer Options Args - The load balancer details if creating the AWS Verified Access endpoint as load-balancer type.
- network_
interface_ Verifiedoptions Access Endpoint Network Interface Options Args - The options for network-interface type endpoint.
- policy_
document str - The AWS Verified Access policy document.
- policy_
enabled bool - The status of the Verified Access policy.
- security_
group_ Sequence[str]ids - The IDs of the security groups for the endpoint.
- sse_
specification VerifiedAccess Endpoint Sse Specification Args - The configuration options for customer provided KMS encryption.
- Sequence[Tag
Args] - An array of key-value pairs to apply to this resource.
- application
Domain String - The DNS name for users to reach your application.
- attachment
Type String - The type of attachment used to provide connectivity between the AWS Verified Access endpoint and the application.
- domain
Certificate StringArn - The ARN of a public TLS/SSL certificate imported into or created with ACM.
- endpoint
Domain StringPrefix - A custom identifier that gets prepended to a DNS name that is generated for the endpoint.
- endpoint
Type String - The type of AWS Verified Access endpoint. Incoming application requests will be sent to an IP address, load balancer or a network interface depending on the endpoint type specified.The type of AWS Verified Access endpoint. Incoming application requests will be sent to an IP address, load balancer or a network interface depending on the endpoint type specified.
- verified
Access StringGroup Id - The ID of the AWS Verified Access group.
- description String
- A description for the AWS Verified Access endpoint.
- load
Balancer Property MapOptions - The load balancer details if creating the AWS Verified Access endpoint as load-balancer type.
- network
Interface Property MapOptions - The options for network-interface type endpoint.
- policy
Document String - The AWS Verified Access policy document.
- policy
Enabled Boolean - The status of the Verified Access policy.
- security
Group List<String>Ids - The IDs of the security groups for the endpoint.
- sse
Specification Property Map - The configuration options for customer provided KMS encryption.
- List<Property Map>
- An array of key-value pairs to apply to this resource.
Outputs
All input properties are implicitly available as output properties. Additionally, the VerifiedAccessEndpoint resource produces the following output properties:
- Creation
Time string - The creation time.
- Device
Validation stringDomain - Returned if endpoint has a device trust provider attached.
- Endpoint
Domain string - A DNS name that is generated for the endpoint.
- Id string
- The provider-assigned unique ID for this managed resource.
- Last
Updated stringTime - The last updated time.
- Status string
- The endpoint status.
- Verified
Access stringEndpoint Id - The ID of the AWS Verified Access endpoint.
- Verified
Access stringInstance Id - The ID of the AWS Verified Access instance.
- Creation
Time string - The creation time.
- Device
Validation stringDomain - Returned if endpoint has a device trust provider attached.
- Endpoint
Domain string - A DNS name that is generated for the endpoint.
- Id string
- The provider-assigned unique ID for this managed resource.
- Last
Updated stringTime - The last updated time.
- Status string
- The endpoint status.
- Verified
Access stringEndpoint Id - The ID of the AWS Verified Access endpoint.
- Verified
Access stringInstance Id - The ID of the AWS Verified Access instance.
- creation
Time String - The creation time.
- device
Validation StringDomain - Returned if endpoint has a device trust provider attached.
- endpoint
Domain String - A DNS name that is generated for the endpoint.
- id String
- The provider-assigned unique ID for this managed resource.
- last
Updated StringTime - The last updated time.
- status String
- The endpoint status.
- verified
Access StringEndpoint Id - The ID of the AWS Verified Access endpoint.
- verified
Access StringInstance Id - The ID of the AWS Verified Access instance.
- creation
Time string - The creation time.
- device
Validation stringDomain - Returned if endpoint has a device trust provider attached.
- endpoint
Domain string - A DNS name that is generated for the endpoint.
- id string
- The provider-assigned unique ID for this managed resource.
- last
Updated stringTime - The last updated time.
- status string
- The endpoint status.
- verified
Access stringEndpoint Id - The ID of the AWS Verified Access endpoint.
- verified
Access stringInstance Id - The ID of the AWS Verified Access instance.
- creation_
time str - The creation time.
- device_
validation_ strdomain - Returned if endpoint has a device trust provider attached.
- endpoint_
domain str - A DNS name that is generated for the endpoint.
- id str
- The provider-assigned unique ID for this managed resource.
- last_
updated_ strtime - The last updated time.
- status str
- The endpoint status.
- verified_
access_ strendpoint_ id - The ID of the AWS Verified Access endpoint.
- verified_
access_ strinstance_ id - The ID of the AWS Verified Access instance.
- creation
Time String - The creation time.
- device
Validation StringDomain - Returned if endpoint has a device trust provider attached.
- endpoint
Domain String - A DNS name that is generated for the endpoint.
- id String
- The provider-assigned unique ID for this managed resource.
- last
Updated StringTime - The last updated time.
- status String
- The endpoint status.
- verified
Access StringEndpoint Id - The ID of the AWS Verified Access endpoint.
- verified
Access StringInstance Id - The ID of the AWS Verified Access instance.
Supporting Types
Tag, TagArgs
VerifiedAccessEndpointLoadBalancerOptions, VerifiedAccessEndpointLoadBalancerOptionsArgs
- Load
Balancer stringArn - The ARN of the load balancer.
- Port int
- The IP port number.
- Protocol string
- The IP protocol.
- Subnet
Ids List<string> - The IDs of the subnets.
- Load
Balancer stringArn - The ARN of the load balancer.
- Port int
- The IP port number.
- Protocol string
- The IP protocol.
- Subnet
Ids []string - The IDs of the subnets.
- load
Balancer StringArn - The ARN of the load balancer.
- port Integer
- The IP port number.
- protocol String
- The IP protocol.
- subnet
Ids List<String> - The IDs of the subnets.
- load
Balancer stringArn - The ARN of the load balancer.
- port number
- The IP port number.
- protocol string
- The IP protocol.
- subnet
Ids string[] - The IDs of the subnets.
- load_
balancer_ strarn - The ARN of the load balancer.
- port int
- The IP port number.
- protocol str
- The IP protocol.
- subnet_
ids Sequence[str] - The IDs of the subnets.
- load
Balancer StringArn - The ARN of the load balancer.
- port Number
- The IP port number.
- protocol String
- The IP protocol.
- subnet
Ids List<String> - The IDs of the subnets.
VerifiedAccessEndpointNetworkInterfaceOptions, VerifiedAccessEndpointNetworkInterfaceOptionsArgs
- Network
Interface stringId - The ID of the network interface.
- Port int
- The IP port number.
- Protocol string
- The IP protocol.
- Network
Interface stringId - The ID of the network interface.
- Port int
- The IP port number.
- Protocol string
- The IP protocol.
- network
Interface StringId - The ID of the network interface.
- port Integer
- The IP port number.
- protocol String
- The IP protocol.
- network
Interface stringId - The ID of the network interface.
- port number
- The IP port number.
- protocol string
- The IP protocol.
- network_
interface_ strid - The ID of the network interface.
- port int
- The IP port number.
- protocol str
- The IP protocol.
- network
Interface StringId - The ID of the network interface.
- port Number
- The IP port number.
- protocol String
- The IP protocol.
VerifiedAccessEndpointSseSpecification, VerifiedAccessEndpointSseSpecificationArgs
- Customer
Managed boolKey Enabled - Whether to encrypt the policy with the provided key or disable encryption
- Kms
Key stringArn - KMS Key Arn used to encrypt the group policy
- Customer
Managed boolKey Enabled - Whether to encrypt the policy with the provided key or disable encryption
- Kms
Key stringArn - KMS Key Arn used to encrypt the group policy
- customer
Managed BooleanKey Enabled - Whether to encrypt the policy with the provided key or disable encryption
- kms
Key StringArn - KMS Key Arn used to encrypt the group policy
- customer
Managed booleanKey Enabled - Whether to encrypt the policy with the provided key or disable encryption
- kms
Key stringArn - KMS Key Arn used to encrypt the group policy
- customer_
managed_ boolkey_ enabled - Whether to encrypt the policy with the provided key or disable encryption
- kms_
key_ strarn - KMS Key Arn used to encrypt the group policy
- customer
Managed BooleanKey Enabled - Whether to encrypt the policy with the provided key or disable encryption
- kms
Key StringArn - KMS Key Arn used to encrypt the group policy
Package Details
- Repository
- AWS Native pulumi/pulumi-aws-native
- License
- Apache-2.0
We recommend new projects start with resources from the AWS provider.