AWS::GroundStation::DataflowEndpointGroup SecurityDetails - AWS CloudFormation

AWS::GroundStation::DataflowEndpointGroup SecurityDetails

Information about IAM roles, subnets, and security groups needed for this DataflowEndpointGroup.

Syntax

To declare this entity in your AWS CloudFormation template, use the following syntax:

JSON

{ "RoleArn" : String, "SecurityGroupIds" : [ String, ... ], "SubnetIds" : [ String, ... ] }

YAML

RoleArn: String SecurityGroupIds: - String SubnetIds: - String

Properties

RoleArn

The ARN of a role which Ground Station has permission to assume, such as arn:aws:iam::1234567890:role/DataDeliveryServiceRole.

Ground Station will assume this role and create an ENI in your VPC on the specified subnet upon creation of a dataflow endpoint group. This ENI is used as the ingress/egress point for data streamed during a satellite contact.

Required: No

Type: String

Update requires: No interruption

SecurityGroupIds

The security group Ids of the security role, such as sg-1234567890abcdef0.

Required: No

Type: List of String

Update requires: No interruption

SubnetIds

The subnet Ids of the security details, such as subnet-12345678.

Required: No

Type: List of String

Update requires: No interruption

Examples

Create SecurityDetails

The following example creates Ground Station SecurityDetails

JSON

{ "SecurityDetails": { "SubnetIds": [ "subnet-6782e71e" ], "SecurityGroupIds": [ "sg-6979fe18" ], "RoleArn": "arn:aws:iam::012345678910:role/groundstation-service-role-AWSServiceRoleForAmazonGroundStation-EXAMPLEBQ4PI" } }

YAML

SecurityDetails: SubnetIds: - subnet-12345678 SecurityGroupIds: - sg-87654321 RoleArn: arn:aws:iam::012345678910:role/groundstation-service-role-AWSServiceRoleForAmazonGroundStation-EXAMPLEABCDE