Control: AWS > EC2 > Snapshot > Trusted Access

Manage trusted access for AWS EC2 Snapshots.

AWS allows EC2 Snapshots to be shared with specific AWS accounts. This control allows you to configure whether such sharing is allowed, and to which accounts.

If set to Enforce, access to non-trusted accounts will be removed.

Resource Types

This control targets the following resource types:

AWS > EC2 > Snapshot

Policies

The following policies can be used to configure this control:

AWS > EC2 > Snapshot > Trusted Access

This control type relies on these other policies when running actions:

AWS > EC2 > Snapshot > Trusted Access > Accounts

Permissions

Cloud permissions used by this control and its actions:

ec2:ModifySnapshotAttribute

In Your Workspace

Developers

Control Type URI

tmod:@turbot/aws-ec2#/control/types/snapshotTrustedAccess

Category URI

tmod:@turbot/turbot#/control/categories/securityTrustedAccess

GraphQL

query controlType(id: "tmod:@turbot/aws-ec2#/control/types/snapshotTrustedAccess") { … }

query controls(filter: "controlTypeId:'tmod:@turbot/aws-ec2#/control/types/snapshotTrustedAccess'") { … }

CLI

Get Controls

turbot graphql controls --filter "controlTypeId:tmod:@turbot/aws-ec2#/control/types/snapshotTrustedAccess"