Skip to content
Alchemy
GitHubXDiscord

VerifiedAccessInstance

The VerifiedAccessInstance resource allows you to manage AWS EC2 Verified Access Instances for secure and controlled access to your applications and services.

Minimal Example

Section titled “Minimal Example”

Create a basic Verified Access Instance with essential properties and a description.

import AWS from "alchemy/aws/control";


const basicVerifiedAccessInstance = await AWS.EC2.VerifiedAccessInstance("basicVerifiedAccessInstance", {
  VerifiedAccessTrustProviders: [{
    Type: "AWS",
    Id: "provider-id-123"
  }],
  Description: "This is a basic Verified Access Instance for secure access.",
  FipsEnabled: false,
  Tags: [{
    Key: "Environment",
    Value: "Development"
  }]
});

Advanced Configuration

Section titled “Advanced Configuration”

Configure a Verified Access Instance with logging configurations and custom CIDR endpoints.

const advancedVerifiedAccessInstance = await AWS.EC2.VerifiedAccessInstance("advancedVerifiedAccessInstance", {
  VerifiedAccessTrustProviders: [{
    Type: "AWS",
    Id: "provider-id-456"
  }],
  Description: "This Verified Access Instance has advanced configurations.",
  LoggingConfigurations: {
    LogDestination: "s3://my-log-bucket/",
    LogFormat: "json"
  },
  CidrEndpointsCustomSubDomain: "custom-subdomain.example.com",
  Tags: [{
    Key: "Environment",
    Value: "Production"
  }]
});

Adopt Existing Resource

Section titled “Adopt Existing Resource”

If you want to adopt an existing Verified Access Instance instead of failing when it already exists, you can set the adopt property to true.

const adoptVerifiedAccessInstance = await AWS.EC2.VerifiedAccessInstance("adoptVerifiedAccessInstance", {
  VerifiedAccessTrustProviders: [{
    Type: "AWS",
    Id: "provider-id-789"
  }],
  Description: "Adopting an existing Verified Access Instance.",
  adopt: true
});

Logging Configuration Example

Section titled “Logging Configuration Example”

Create a Verified Access Instance with specific logging configurations to monitor access.

const loggingVerifiedAccessInstance = await AWS.EC2.VerifiedAccessInstance("loggingVerifiedAccessInstance", {
  VerifiedAccessTrustProviders: [{
    Type: "AWS",
    Id: "provider-id-101"
  }],
  Description: "This instance is configured for logging access events.",
  LoggingConfigurations: {
    LogDestination: "s3://my-logging-bucket/",
    LogFormat: "text"
  },
  Tags: [{
    Key: "Project",
    Value: "AccessControl"
  }]
});