Verified Access groups - AWS Verified Access
Create a Verified Access groupModify a Verified Access group policyDelete a Verified Access group

Verified Access groups

An AWS Verified Access group is a collection of Verified Access endpoints and a group-level Verified Access policy. Each endpoint within a group shares the Verified Access policy. You can use groups to gather together endpoints that have common security requirements. This can help simplify policy administration by using one policy for the security needs of multiple applications.

For example, you can group all sales applications together and set a group-wide access policy. You can then use this policy to define a common set of minimum security requirements for all sales applications. This approach helps to simplify policy administration.

When you create a group, you are required to associate the group with a Verified Access instance. During the process of creating an endpoint, you will associate the endpoint with a group.

Create a Verified Access group

Use the following procedure to create a Verified Access group.

To create a Verified Access group

  1. Open the Amazon VPC console at https://console.aws.amazon.com/vpc/.

  2. In the navigation pane, choose Verified Access groups, and then Create Verified Access group.

  3. (Optional) For Name tag and Description, enter a name and description for the group.

  4. For Verified Access instance, select a Verified Access instance to associate with the group.

  5. (Optional) For Policy definition, enter a Verified Access policy to apply to the group.

  6. (Optional) To add a tag, choose Add new tag and enter the tag key and the tag value.

  7. Choose Create Verified Access group.

Modify a Verified Access group policy

Use the following procedure to modify a Verified Access group policy.

To modify a Verified Access group policy

  1. Open the Amazon VPC console at https://console.aws.amazon.com/vpc/.

  2. In the navigation pane, choose Verified Access groups, then select the group whose policy you want to modify.

  3. Choose Actions, then Modify Verified Access group policy.

  4. (Optional) Turn on or off Enable policy depending on your current goal.

  5. (Optional) For Policy, enter a Verified Access policy to apply to the group.

  6. Choose Modify Verified Access group policy.

Delete a Verified Access group

When you are finished with a Verified Access group, you can delete it.

To delete a Verified Access group

  1. Open the Amazon VPC console at https://console.aws.amazon.com/vpc/.

  2. In the navigation pane, choose Verified Access groups.

  3. Select the group.

  4. Choose Actions, Delete Verified Access group.

  5. When prompted for confirmation, enter delete, and then choose Delete.