Policy: AWS > EC2 > AMI > Trusted Access

Manage trusted access for AWS EC2 AMIs.

AWS allows EC2 AMIs to be shared with specific AWS accounts. This policy allows you to configure whether such sharing is allowed, and to which accounts.

If set to Enforce, access to non-trusted accounts will be removed.

Targets

This policy targets the following resource types:

AWS > EC2 > AMI

Accounts

Controls

Setting this policy configures this control:

AWS > EC2 > AMI > Trusted Access

Policy Packs

This policy setting is used by the following policy packs:

Enforce AWS EC2 AMIs Are Shared With Trusted Accounts

Policy Specification

Schema Type	`string`
Default	`Skip`
Valid Values [YAML]	`Skip` `Check: Trusted Access > Accounts` `Enforce: Trusted Access > Accounts`
Examples [YAML]	`Check: Trusted Access > Accounts`

In Your Workspace

Policy Settings by Type report

Developers

Category URI

tmod:@turbot/turbot#/control/categories/securityTrustedAccess

Policy Type URI

tmod:@turbot/aws-ec2#/policy/types/amiTrustedAccess

GraphQL

query policyType(id: "tmod:@turbot/aws-ec2#/policy/types/amiTrustedAccess") { … }

query policySettings(filter: "policyTypeId:'tmod:@turbot/aws-ec2#/policy/types/amiTrustedAccess'") { … }

query policyValues(filter: "policyTypeId:'tmod:@turbot/aws-ec2#/policy/types/amiTrustedAccess'") { … }

CLI

Get Policy Type

turbot graphql policy-type --id "tmod:@turbot/aws-ec2#/policy/types/amiTrustedAccess"

Get Policy Settings

turbot graphql policy-settings --filter "policyTypeId:tmod:@turbot/aws-ec2#/policy/types/amiTrustedAccess"

Policy: AWS > EC2 > AMI > Trusted Access

Targets

Related Policies

Controls

Policy Packs

Policy Specification

Category

In Your Workspace

Developers

Policy: AWS > EC2 > AMI > Trusted Access

Targets

Related Policies

Controls

Policy Packs

Policy Specification

Category

In Your Workspace

Developers