AWS::Transfer::Server EndpointDetails - AWS CloudFormation

AWS::Transfer::Server EndpointDetails

The virtual private cloud (VPC) endpoint settings that are configured for your server. When you host your endpoint within your VPC, you can make your endpoint accessible only to resources within your VPC, or you can attach Elastic IP addresses and make your endpoint accessible to clients over the internet. Your VPC's default security groups are automatically assigned to your endpoint.


To declare this entity in your AWS CloudFormation template, use the following syntax:


{ "AddressAllocationIds" : [ String, ... ], "SecurityGroupIds" : [ String, ... ], "SubnetIds" : [ String, ... ], "VpcEndpointId" : String, "VpcId" : String }


AddressAllocationIds: - String SecurityGroupIds: - String SubnetIds: - String VpcEndpointId: String VpcId: String



A list of address allocation IDs that are required to attach an Elastic IP address to your server's endpoint.

An address allocation ID corresponds to the allocation ID of an Elastic IP address. This value can be retrieved from the allocationId field from the Amazon EC2 Address data type. One way to retrieve this value is by calling the EC2 DescribeAddresses API.

This parameter is optional. Set this parameter if you want to make your VPC endpoint public-facing. For details, see Create an internet-facing endpoint for your server.


This property can only be set as follows:

  • EndpointType must be set to VPC

  • The Transfer Family server must be offline.

  • You cannot set this parameter for Transfer Family servers that use the FTP protocol.

  • The server must already have SubnetIds populated (SubnetIds and AddressAllocationIds cannot be updated simultaneously).

  • AddressAllocationIds can't contain duplicates, and must be equal in length to SubnetIds. For example, if you have three subnet IDs, you must also specify three address allocation IDs.

  • Call the UpdateServer API to set or change this parameter.

Required: No

Type: Array of String

Update requires: Some interruptions


A list of security groups IDs that are available to attach to your server's endpoint.


This property can only be set when EndpointType is set to VPC.

You can edit the SecurityGroupIds property in the UpdateServer API only if you are changing the EndpointType from PUBLIC or VPC_ENDPOINT to VPC. To change security groups associated with your server's VPC endpoint after creation, use the Amazon EC2 ModifyVpcEndpoint API.

Required: No

Type: Array of String

Minimum: 11

Maximum: 20

Update requires: Some interruptions


A list of subnet IDs that are required to host your server endpoint in your VPC.


This property can only be set when EndpointType is set to VPC.

Required: No

Type: Array of String

Update requires: Some interruptions


The ID of the VPC endpoint.


This property can only be set when EndpointType is set to VPC_ENDPOINT.

Required: No

Type: String

Pattern: ^vpce-[0-9a-f]{17}$

Minimum: 22

Maximum: 22

Update requires: Some interruptions


The VPC ID of the virtual private cloud in which the server's endpoint will be hosted.


This property can only be set when EndpointType is set to VPC.

Required: No

Type: String

Update requires: Some interruptions

See also

EndpointDetails in the AWS Transfer Family User Guide.