Alchemy

Appearance

VerifiedAccessInstance

The VerifiedAccessInstance resource allows you to manage AWS EC2 Verified Access Instances for secure and controlled access to your applications and services.

Minimal Example

Create a basic Verified Access Instance with essential properties and a description.

ts
import AWS from "alchemy/aws/control";

const basicVerifiedAccessInstance = await AWS.EC2.VerifiedAccessInstance("basicVerifiedAccessInstance", {
  VerifiedAccessTrustProviders: [{
    Type: "AWS",
    Id: "provider-id-123"
  }],
  Description: "This is a basic Verified Access Instance for secure access.",
  FipsEnabled: false,
  Tags: [{
    Key: "Environment",
    Value: "Development"
  }]
});

Advanced Configuration

Configure a Verified Access Instance with logging configurations and custom CIDR endpoints.

ts
const advancedVerifiedAccessInstance = await AWS.EC2.VerifiedAccessInstance("advancedVerifiedAccessInstance", {
  VerifiedAccessTrustProviders: [{
    Type: "AWS",
    Id: "provider-id-456"
  }],
  Description: "This Verified Access Instance has advanced configurations.",
  LoggingConfigurations: {
    LogDestination: "s3://my-log-bucket/",
    LogFormat: "json"
  },
  CidrEndpointsCustomSubDomain: "custom-subdomain.example.com",
  Tags: [{
    Key: "Environment",
    Value: "Production"
  }]
});

Adopt Existing Resource

If you want to adopt an existing Verified Access Instance instead of failing when it already exists, you can set the adopt property to true.

ts
const adoptVerifiedAccessInstance = await AWS.EC2.VerifiedAccessInstance("adoptVerifiedAccessInstance", {
  VerifiedAccessTrustProviders: [{
    Type: "AWS",
    Id: "provider-id-789"
  }],
  Description: "Adopting an existing Verified Access Instance.",
  adopt: true
});

Logging Configuration Example

Create a Verified Access Instance with specific logging configurations to monitor access.

ts
const loggingVerifiedAccessInstance = await AWS.EC2.VerifiedAccessInstance("loggingVerifiedAccessInstance", {
  VerifiedAccessTrustProviders: [{
    Type: "AWS",
    Id: "provider-id-101"
  }],
  Description: "This instance is configured for logging access events.",
  LoggingConfigurations: {
    LogDestination: "s3://my-logging-bucket/",
    LogFormat: "text"
  },
  Tags: [{
    Key: "Project",
    Value: "AccessControl"
  }]
});