aws-native.ec2.getVerifiedAccessTrustProvider

AWS Cloud Control v1.38.0, Nov 5 25

We recommend new projects start with resources from the AWS provider.

AWS Cloud Control v1.38.0 published on Wednesday, Nov 5, 2025 by Pulumi

Schema (JSON)

pulumi/pulumi-aws-native

We recommend new projects start with resources from the AWS provider.

AWS Cloud Control v1.38.0 published on Wednesday, Nov 5, 2025 by Pulumi

Schema (JSON)

pulumi/pulumi-aws-native

Using getVerifiedAccessTrustProvider

Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.

function getVerifiedAccessTrustProvider(args: GetVerifiedAccessTrustProviderArgs, opts?: InvokeOptions): Promise<GetVerifiedAccessTrustProviderResult>
function getVerifiedAccessTrustProviderOutput(args: GetVerifiedAccessTrustProviderOutputArgs, opts?: InvokeOptions): Output<GetVerifiedAccessTrustProviderResult>

def get_verified_access_trust_provider(verified_access_trust_provider_id: Optional[str] = None,
                                       opts: Optional[InvokeOptions] = None) -> GetVerifiedAccessTrustProviderResult
def get_verified_access_trust_provider_output(verified_access_trust_provider_id: Optional[pulumi.Input[str]] = None,
                                       opts: Optional[InvokeOptions] = None) -> Output[GetVerifiedAccessTrustProviderResult]

func LookupVerifiedAccessTrustProvider(ctx *Context, args *LookupVerifiedAccessTrustProviderArgs, opts ...InvokeOption) (*LookupVerifiedAccessTrustProviderResult, error)
func LookupVerifiedAccessTrustProviderOutput(ctx *Context, args *LookupVerifiedAccessTrustProviderOutputArgs, opts ...InvokeOption) LookupVerifiedAccessTrustProviderResultOutput

> Note: This function is named LookupVerifiedAccessTrustProvider in the Go SDK.

public static class GetVerifiedAccessTrustProvider 
{
    public static Task<GetVerifiedAccessTrustProviderResult> InvokeAsync(GetVerifiedAccessTrustProviderArgs args, InvokeOptions? opts = null)
    public static Output<GetVerifiedAccessTrustProviderResult> Invoke(GetVerifiedAccessTrustProviderInvokeArgs args, InvokeOptions? opts = null)
}

public static CompletableFuture<GetVerifiedAccessTrustProviderResult> getVerifiedAccessTrustProvider(GetVerifiedAccessTrustProviderArgs args, InvokeOptions options)
public static Output<GetVerifiedAccessTrustProviderResult> getVerifiedAccessTrustProvider(GetVerifiedAccessTrustProviderArgs args, InvokeOptions options)

fn::invoke:
  function: aws-native:ec2:getVerifiedAccessTrustProvider
  arguments:
    # arguments dictionary

The following arguments are supported:

VerifiedAccessTrustProviderId string: The ID of the Amazon Web Services Verified Access trust provider.

VerifiedAccessTrustProviderId string: The ID of the Amazon Web Services Verified Access trust provider.

verifiedAccessTrustProviderId String: The ID of the Amazon Web Services Verified Access trust provider.

verifiedAccessTrustProviderId string: The ID of the Amazon Web Services Verified Access trust provider.

verified_access_trust_provider_id str: The ID of the Amazon Web Services Verified Access trust provider.

verifiedAccessTrustProviderId String: The ID of the Amazon Web Services Verified Access trust provider.

getVerifiedAccessTrustProvider Result

The following output properties are available:

CreationTime string: The creation time.
Description string: A description for the Amazon Web Services Verified Access trust provider.
LastUpdatedTime string: The last updated time.
NativeApplicationOidcOptions Pulumi.AwsNative.Ec2.Outputs.VerifiedAccessTrustProviderNativeApplicationOidcOptions: The OpenID Connect (OIDC) options.
OidcOptions Pulumi.AwsNative.Ec2.Outputs.VerifiedAccessTrustProviderOidcOptions: The options for an OpenID Connect-compatible user-identity trust provider.
SseSpecification Pulumi.AwsNative.Ec2.Outputs.SseSpecificationProperties: The configuration options for customer provided KMS encryption.
Tags List<Pulumi.AwsNative.Outputs.Tag>: An array of key-value pairs to apply to this resource.
VerifiedAccessTrustProviderId string: The ID of the Amazon Web Services Verified Access trust provider.

CreationTime string: The creation time.
Description string: A description for the Amazon Web Services Verified Access trust provider.
LastUpdatedTime string: The last updated time.
NativeApplicationOidcOptions VerifiedAccessTrustProviderNativeApplicationOidcOptions: The OpenID Connect (OIDC) options.
OidcOptions VerifiedAccessTrustProviderOidcOptions: The options for an OpenID Connect-compatible user-identity trust provider.
SseSpecification SseSpecificationProperties: The configuration options for customer provided KMS encryption.
Tags Tag: An array of key-value pairs to apply to this resource.
VerifiedAccessTrustProviderId string: The ID of the Amazon Web Services Verified Access trust provider.

creationTime String: The creation time.
description String: A description for the Amazon Web Services Verified Access trust provider.
lastUpdatedTime String: The last updated time.
nativeApplicationOidcOptions VerifiedAccessTrustProviderNativeApplicationOidcOptions: The OpenID Connect (OIDC) options.
oidcOptions VerifiedAccessTrustProviderOidcOptions: The options for an OpenID Connect-compatible user-identity trust provider.
sseSpecification SseSpecificationProperties: The configuration options for customer provided KMS encryption.
tags List<Tag>: An array of key-value pairs to apply to this resource.
verifiedAccessTrustProviderId String: The ID of the Amazon Web Services Verified Access trust provider.

creationTime string: The creation time.
description string: A description for the Amazon Web Services Verified Access trust provider.
lastUpdatedTime string: The last updated time.
nativeApplicationOidcOptions VerifiedAccessTrustProviderNativeApplicationOidcOptions: The OpenID Connect (OIDC) options.
oidcOptions VerifiedAccessTrustProviderOidcOptions: The options for an OpenID Connect-compatible user-identity trust provider.
sseSpecification SseSpecificationProperties: The configuration options for customer provided KMS encryption.
tags Tag[]: An array of key-value pairs to apply to this resource.
verifiedAccessTrustProviderId string: The ID of the Amazon Web Services Verified Access trust provider.

creation_time str: The creation time.
description str: A description for the Amazon Web Services Verified Access trust provider.
last_updated_time str: The last updated time.
native_application_oidc_options VerifiedAccessTrustProviderNativeApplicationOidcOptions: The OpenID Connect (OIDC) options.
oidc_options VerifiedAccessTrustProviderOidcOptions: The options for an OpenID Connect-compatible user-identity trust provider.
sse_specification SseSpecificationProperties: The configuration options for customer provided KMS encryption.
tags Sequence[root_Tag]: An array of key-value pairs to apply to this resource.
verified_access_trust_provider_id str: The ID of the Amazon Web Services Verified Access trust provider.

creationTime String: The creation time.
description String: A description for the Amazon Web Services Verified Access trust provider.
lastUpdatedTime String: The last updated time.
nativeApplicationOidcOptions Property Map: The OpenID Connect (OIDC) options.
oidcOptions Property Map: The options for an OpenID Connect-compatible user-identity trust provider.
sseSpecification Property Map: The configuration options for customer provided KMS encryption.
tags List<Property Map>: An array of key-value pairs to apply to this resource.
verifiedAccessTrustProviderId String: The ID of the Amazon Web Services Verified Access trust provider.

Supporting Types

SseSpecificationProperties

CustomerManagedKeyEnabled bool: Whether to encrypt the policy with the provided key or disable encryption
KmsKeyArn string: KMS Key Arn used to encrypt the group policy

CustomerManagedKeyEnabled bool: Whether to encrypt the policy with the provided key or disable encryption
KmsKeyArn string: KMS Key Arn used to encrypt the group policy

customerManagedKeyEnabled Boolean: Whether to encrypt the policy with the provided key or disable encryption
kmsKeyArn String: KMS Key Arn used to encrypt the group policy

customerManagedKeyEnabled boolean: Whether to encrypt the policy with the provided key or disable encryption
kmsKeyArn string: KMS Key Arn used to encrypt the group policy

customer_managed_key_enabled bool: Whether to encrypt the policy with the provided key or disable encryption
kms_key_arn str: KMS Key Arn used to encrypt the group policy

customerManagedKeyEnabled Boolean: Whether to encrypt the policy with the provided key or disable encryption
kmsKeyArn String: KMS Key Arn used to encrypt the group policy

VerifiedAccessTrustProviderNativeApplicationOidcOptions

AuthorizationEndpoint string: The OIDC authorization endpoint.
ClientId string: The client identifier.
ClientSecret string: The client secret.
Issuer string: The OIDC issuer.
PublicSigningKeyEndpoint string: The public signing key for endpoint
Scope string: OpenID Connect (OIDC) scopes are used by an application during authentication to authorize access to details of a user. Each scope returns a specific set of user attributes.
TokenEndpoint string: The OIDC token endpoint.
UserInfoEndpoint string: The OIDC user info endpoint.

AuthorizationEndpoint string: The OIDC authorization endpoint.
ClientId string: The client identifier.
ClientSecret string: The client secret.
Issuer string: The OIDC issuer.
PublicSigningKeyEndpoint string: The public signing key for endpoint
Scope string: OpenID Connect (OIDC) scopes are used by an application during authentication to authorize access to details of a user. Each scope returns a specific set of user attributes.
TokenEndpoint string: The OIDC token endpoint.
UserInfoEndpoint string: The OIDC user info endpoint.

authorizationEndpoint String: The OIDC authorization endpoint.
clientId String: The client identifier.
clientSecret String: The client secret.
issuer String: The OIDC issuer.
publicSigningKeyEndpoint String: The public signing key for endpoint
scope String: OpenID Connect (OIDC) scopes are used by an application during authentication to authorize access to details of a user. Each scope returns a specific set of user attributes.
tokenEndpoint String: The OIDC token endpoint.
userInfoEndpoint String: The OIDC user info endpoint.

authorizationEndpoint string: The OIDC authorization endpoint.
clientId string: The client identifier.
clientSecret string: The client secret.
issuer string: The OIDC issuer.
publicSigningKeyEndpoint string: The public signing key for endpoint
scope string: OpenID Connect (OIDC) scopes are used by an application during authentication to authorize access to details of a user. Each scope returns a specific set of user attributes.
tokenEndpoint string: The OIDC token endpoint.
userInfoEndpoint string: The OIDC user info endpoint.

authorization_endpoint str: The OIDC authorization endpoint.
client_id str: The client identifier.
client_secret str: The client secret.
issuer str: The OIDC issuer.
public_signing_key_endpoint str: The public signing key for endpoint
scope str: OpenID Connect (OIDC) scopes are used by an application during authentication to authorize access to details of a user. Each scope returns a specific set of user attributes.
token_endpoint str: The OIDC token endpoint.
user_info_endpoint str: The OIDC user info endpoint.

authorizationEndpoint String: The OIDC authorization endpoint.
clientId String: The client identifier.
clientSecret String: The client secret.
issuer String: The OIDC issuer.
publicSigningKeyEndpoint String: The public signing key for endpoint
scope String: OpenID Connect (OIDC) scopes are used by an application during authentication to authorize access to details of a user. Each scope returns a specific set of user attributes.
tokenEndpoint String: The OIDC token endpoint.
userInfoEndpoint String: The OIDC user info endpoint.

VerifiedAccessTrustProviderOidcOptions

AuthorizationEndpoint string: The OIDC authorization endpoint.
ClientId string: The client identifier.
ClientSecret string: The client secret.
Issuer string: The OIDC issuer.
Scope string: OpenID Connect (OIDC) scopes are used by an application during authentication to authorize access to details of a user. Each scope returns a specific set of user attributes.
TokenEndpoint string: The OIDC token endpoint.
UserInfoEndpoint string: The OIDC user info endpoint.

AuthorizationEndpoint string: The OIDC authorization endpoint.
ClientId string: The client identifier.
ClientSecret string: The client secret.
Issuer string: The OIDC issuer.
Scope string: OpenID Connect (OIDC) scopes are used by an application during authentication to authorize access to details of a user. Each scope returns a specific set of user attributes.
TokenEndpoint string: The OIDC token endpoint.
UserInfoEndpoint string: The OIDC user info endpoint.

authorizationEndpoint String: The OIDC authorization endpoint.
clientId String: The client identifier.
clientSecret String: The client secret.
issuer String: The OIDC issuer.
scope String: OpenID Connect (OIDC) scopes are used by an application during authentication to authorize access to details of a user. Each scope returns a specific set of user attributes.
tokenEndpoint String: The OIDC token endpoint.
userInfoEndpoint String: The OIDC user info endpoint.

authorizationEndpoint string: The OIDC authorization endpoint.
clientId string: The client identifier.
clientSecret string: The client secret.
issuer string: The OIDC issuer.
scope string: OpenID Connect (OIDC) scopes are used by an application during authentication to authorize access to details of a user. Each scope returns a specific set of user attributes.
tokenEndpoint string: The OIDC token endpoint.
userInfoEndpoint string: The OIDC user info endpoint.

authorization_endpoint str: The OIDC authorization endpoint.
client_id str: The client identifier.
client_secret str: The client secret.
issuer str: The OIDC issuer.
scope str: OpenID Connect (OIDC) scopes are used by an application during authentication to authorize access to details of a user. Each scope returns a specific set of user attributes.
token_endpoint str: The OIDC token endpoint.
user_info_endpoint str: The OIDC user info endpoint.

authorizationEndpoint String: The OIDC authorization endpoint.
clientId String: The client identifier.
clientSecret String: The client secret.
issuer String: The OIDC issuer.
scope String: OpenID Connect (OIDC) scopes are used by an application during authentication to authorize access to details of a user. Each scope returns a specific set of user attributes.
tokenEndpoint String: The OIDC token endpoint.
userInfoEndpoint String: The OIDC user info endpoint.