Readonly
blockReadonly
enforceBy default, IMDSv2 is enabled. Disable it by setting this to false.
Readonly
iamName of the instance profile created by accelerator in iam-config.yaml under roleSets
Readonly
imageValid AMI ID or a reference to ssm parameter store to get AMI ID. If ssm parameter is referenced it should follow the pattern ${ACCEL_LOOKUP::ImageId:/path/to/ssm/parameter/for/ami}
For example to get the latest x86_64 amazon linux 2 ami, the value would be ${ACCEL_LOOKUP::ImageId:/aws/service/ami-amazon-linux-latest/amzn2-ami-hvm-x86_64-gp2}
Readonly
instanceValid instance type which can be launched in the target account and region.
Readonly
keyThe name of the key pair. LZA does not create keypair. This should exist in the account/region or else deployment will fail.
Readonly
nameReadonly
networkOne or more network interfaces. If you specify a network interface, you must specify any security groups and subnets as part of the network interface.
Readonly
securityOne or more security group names. These should be created under the VPC in network-config.yaml
Readonly
userPath to user data. The path is relative to the config repository and the content should be in regular text. It is encoded in base64 before passing in to Launch Template
If defining user data for an EC2 firewall instance or AutoScaling group, you may use the variable
${ACCEL_LOOKUP::S3:BUCKET:firewall-config}
in order to dynamically resolve the name of the S3 bucket
where S3 firewall configurations are stored by the accelerator. This bucket is used when the configFile
, configDir
or
licenseFile
properties are defined for a firewall.
Ec2FirewallAutoScalingGroupConfig | Ec2FirewallInstanceConfig
Generated using TypeDoc
CustomizationsConfig / AppConfigItem | Ec2FirewallConfig / LaunchTemplateConfig / NetworkInterfaceItemConfig
Configure a launch template for the application.
See
https://docs.aws.amazon.com/AWSEC2/latest/APIReference/API_RequestLaunchTemplateData.html
Example