verified_access_trust_provider
Gets an individual verified_access_trust_provider resource
Overview
| Name | verified_access_trust_provider |
| Type | Resource |
| Description | verified_access_trust_provider |
| Id | awscc.ec2.verified_access_trust_provider |
Fields
| Name | Datatype | Description |
|---|---|---|
trust_provider_type | string | Type of trust provider. Possible values: user|device |
device_trust_provider_type | string | The type of device-based trust provider. Possible values: jamf|crowdstrike |
user_trust_provider_type | string | The type of device-based trust provider. Possible values: oidc|iam-identity-center |
oidc_options | object | |
device_options | object | |
policy_reference_name | string | The identifier to be used when working with policy rules. |
creation_time | string | The creation time. |
last_updated_time | string | The last updated time. |
verified_access_trust_provider_id | string | The ID of the Amazon Web Services Verified Access trust provider. |
description | string | A description for the Amazon Web Services Verified Access trust provider. |
tags | array | An array of key-value pairs to apply to this resource. |
sse_specification | object | The configuration options for customer provided KMS encryption. |
region | string | AWS region. |
Methods
Currently only SELECT is supported for this resource resource.
Example
SELECT
region,
trust_provider_type,
device_trust_provider_type,
user_trust_provider_type,
oidc_options,
device_options,
policy_reference_name,
creation_time,
last_updated_time,
verified_access_trust_provider_id,
description,
tags,
sse_specification
FROM awscc.ec2.verified_access_trust_provider
WHERE data__Identifier = '<VerifiedAccessTrustProviderId>';
Permissions
To operate on the verified_access_trust_provider resource, the following permissions are required:
Read
ec2:DescribeVerifiedAccessTrustProviders,
ec2:DescribeTags,
kms:DescribeKey,
kms:GenerateDataKey,
kms:Decrypt
Update
ec2:ModifyVerifiedAccessTrustProvider,
ec2:DescribeVerifiedAccessTrustProviders,
ec2:DescribeTags,
ec2:DeleteTags,
ec2:CreateTags,
kms:DescribeKey,
kms:RetireGrant,
kms:CreateGrant,
kms:GenerateDataKey,
kms:Decrypt
Delete
ec2:DeleteVerifiedAccessTrustProvider,
ec2:DeleteTags,
ec2:DescribeVerifiedAccessTrustProviders,
ec2:DescribeTags,
kms:DescribeKey,
kms:RetireGrant,
kms:CreateGrant,
kms:GenerateDataKey,
kms:Decrypt