Description

AWS SessionManager configuration

Example

sessionManager:
sendToCloudWatchLogs: true
sendToS3: true
excludeRegions: []
excludeAccounts: []
lifecycleRules: []
attachPolicyToIamRoles:
- EC2-Default-SSM-AD-Role

Hierarchy

  • SessionManagerConfig

Implements

Constructors

Properties

attachPolicyToIamRoles: never[] = []

List of IAM EC2 roles that the Session Manager access policy should be attached to

excludeAccounts: string[] = []

List of AWS Account names to be excluded from configuring SessionManager configuration

excludeRegions: ("af-south-1" | "ap-east-1" | "ap-south-1" | "ap-south-2" | "ap-southeast-1" | "ap-southeast-2" | "ap-southeast-3" | "ap-northeast-1" | "ap-northeast-2" | "ap-northeast-3" | "ca-central-1" | "eu-central-1" | "eu-central-2" | "eu-west-1" | "eu-west-2" | "eu-west-3" | "eu-north-1" | "eu-south-1" | "eu-south-2" | "me-central-1" | "me-south-1" | "sa-east-1" | "us-east-1" | "us-east-2" | "us-west-1" | "us-west-2" | "cn-north-1" | "cn-northwest-1" | "us-gov-west-1" | "us-gov-east-1" | "us-iso-east-1" | "us-iso-west-1" | "us-isob-east-1" | "ap-southeast-4" | "il-central-1" | "ca-west-1")[] = []

List of AWS Region names to be excluded from configuring SessionManager configuration

lifecycleRules: LifeCycleRule[] = []

S3 Lifecycle rule for log storage

sendToCloudWatchLogs: false = false

Indicates whether sending SessionManager logs to CloudWatchLogs enabled.

sendToS3: false = false

Indicates whether sending SessionManager logs to S3 enabled.

When this flag is on, accelerator will send session manager logs to Central log bucket in LogArchive account.

Generated using TypeDoc