import { ManagedInstanceRole } from '@renovosolutions/cdk-library-managed-instance-role'
new ManagedInstanceRole(scope: Construct, id: string, props: ManagedInstanceRoleProps)
- Type:
constructs.Construct
- Type:
string
public readonly arn: string;
- Type:
string
The role arn.
public readonly name: string;
- Type:
string
The role name.
public readonly role: Role;
- Type:
aws-cdk-lib.aws_iam.Role
The role.
public readonly instanceProfile: CfnInstanceProfile;
The CfnInstanceProfile automatically created for this role.
import { ManagedInstanceRoleProps } from '@renovosolutions/cdk-library-managed-instance-role'
const managedInstanceRoleProps: ManagedInstanceRoleProps = { ... }
public readonly createInstanceProfile: boolean;
- Type:
boolean
- Default: true
Whether or not to associate the role with an instance profile.
public readonly domainJoinEnabled: boolean;
- Type:
boolean
Should the role include directory service access with SSM.
public readonly managedPolicies: ManagedPolicy[];
The managed policies to apply to the role in addition to the default policies.
public readonly retentionPolicy: boolean;
- Type:
boolean
The retention policy for this role.
public readonly ssmManagementEnabled: boolean;
- Type:
boolean
Should the role include SSM management.
By default if domainJoinEnabled is true then this role is always included.