Policy: AWS > EC2 > Trusted Accounts [Default]

List of AWS Accounts that are trusted for access in the AWS EC2 policy.

This policy is used by the Trusted Access control to determine which members of type "account" are allowed to be granted access. You may use the '*' and '?' wildcard characters.

example: - "013122550996" - "560741234067"

Note: Setting the policy to Empty array will remove all accounts.

Resource Types

This policy targets the following resource types:

AWS > Account

Policy Specification

Schema Type	`array`
Default template	`{% if $.trustedAccounts.value \| length == 0 %}[]{% else %}{% for item in $.trustedAccounts.value %}- '{{ item }}' {% endfor %}{% endif %}`
Default template input	`\| { trustedAccounts: policyValue(uri:"tmod:@turbot/aws#/policy/types/trustedAccounts") { value } }`

Schema Type

array

Default template

{% if $.trustedAccounts.value | length == 0 %}[]{% else %}{% for item in $.trustedAccounts.value %}- '{{ item }}'
{% endfor %}{% endif %}

Default template input

|
  {
    trustedAccounts: policyValue(uri:"tmod:@turbot/aws#/policy/types/trustedAccounts") {
      value
    }
  }

In Your Workspace

Policy Settings by Type report

Developers

Category URI

tmod:@turbot/turbot#/control/categories/securityTrustedAccess

Policy Type URI

tmod:@turbot/aws-ec2#/policy/types/ec2TrustedAccounts

GraphQL

query policyType(id: "tmod:@turbot/aws-ec2#/policy/types/ec2TrustedAccounts") { … }

query policySettings(filter: "policyTypeId:'tmod:@turbot/aws-ec2#/policy/types/ec2TrustedAccounts'") { … }

query policyValues(filter: "policyTypeId:'tmod:@turbot/aws-ec2#/policy/types/ec2TrustedAccounts'") { … }

CLI

Get Policy Type

turbot graphql policy-type --id "tmod:@turbot/aws-ec2#/policy/types/ec2TrustedAccounts"

Get Policy Settings

turbot graphql policy-settings --filter "policyTypeId:tmod:@turbot/aws-ec2#/policy/types/ec2TrustedAccounts"