Amazon EC2 Instance Connect (ec2-instance-connect)

Additions

Actions

• OpenTunnel
  
  • Description:  Grants permission to establish SSH connection to an EC2 instance using EC2 Instance Connect Endpoint
  • Access:  Write
  • Resources: 

    Name: instance-connect-endpoint

    Required: Yes

  • Conditions: 

    aws:ResourceTag/${TagKey}

    ec2:ResourceTag/${TagKey}

    ec2-instance-connect:remotePort

    ec2-instance-connect:privateIpAddress

    ec2-instance-connect:MaxTunnelDuration

Resources

• instance-connect-endpoint
  
  • Arn:  arn:${Partition}:ec2:${Region}:${Account}:instance-connect-endpoint/${InstanceConnectEndpointId}
  • Conditions: 

    aws:ResourceTag/${TagKey}

    ec2:ResourceTag/${TagKey}

Conditions

• ec2-instance-connect:maxTunnelDuration
  
  • Description:  Filters access by maximum session duration associated with the instance
  • Type:  String
• ec2-instance-connect:privateIpAddress
  
  • Description:  Filters access by private IP Address associated with the instance
  • Type:  String
• ec2-instance-connect:remotePort
  
  • Description:  Filters access by port number associated with the instance
  • Type:  String