Revoking Private Link access

You can use the revoke-private-link-service-access command to revoke access for an authorized cloud account.

The revoke-private-link-service-access CLI command can be used to revoke a cloud account that has been authorized using the authorize-private-link-service-access command. The revoke-private-link-service-access command removes the cloud account from the allowed principals in AWS. Revoking the access blocks any creation of Private Link endpoints to access the service. Executing the revoke-private-link-service-access command returns revocation status.

Use the following command to revoke access for a cloud account:

cdp cloudprivatelinks revoke-private-link-service-access --cli-input-json '{
"cloudAccountId": "[***AWS CLOUD ACCOUNT ID***]",
"region": "[***CLOUDERA CONTROL PLANE REGION***]",
"serviceGroup": "[***CLOUDERA SERVICE GROUP***]",
"cloudServiceProvider": "AWS"
}'

The command returns a similar response:

{
    "status": "SUCCESS",
    "revokePrivateLinkServiceAccessResults": [
        {
            "privateLinkService": "privateLinkService": "com.amazonaws.vpce.us-west-2.vpce-svc-0a1b2c34567890000",
            "serviceComponent": "ccmv2",
            "revocationStatus": "SUCCESS"
        }
]
}