# first install the execution role
aws cloudformation create-stack \
--template-url https://community-resource-provider-catalog.s3.amazonaws.com/community-ssm-publicaccessblock-resource-role-0.1.0.yml \
--stack-name community-ssm-publicaccessblock-resource-role \
--capabilities CAPABILITY_IAM
aws cloudformation wait stack-create-complete \
--stack-name community-ssm-publicaccessblock-resource-role
# get the value of the ExecutionRoleArn Output
aws cloudformation describe-stacks \
--stack-name community-ssm-publicaccessblock-resource-role
# register the cloudformation type
aws cloudformation register-type \
--type-name Community::SSM::PublicAccessBlock \
--type RESOURCE \
--schema-handler-package s3://community-resource-provider-catalog/community-ssm-publicaccessblock-0.1.0.zip \
--execution-role <role-arn-from-output>
aws cloudformation describe-type-registration --registration-token <registration-token>
aws cloudformation set-type-default-version \
--version-id <version-id> \
--type-name Community::SSM::PublicAccessBlock \
--type RESOURCE
For more information on AWS Organization Formation, see: https://github.com/org-formation/org-formation-cli
CommunitySSMPublicAccessBlockRP:
Type: register-type
SchemaHandlerPackage: s3://community-resource-provider-catalog/community-ssm-publicaccessblock-0.1.0.zip
ResourceType: 'Community::SSM::PublicAccessBlock'
MaxConcurrentTasks: 10
OrganizationBinding:
IncludeMasterAccount: true
Account: '*'
Region: us-east-1