diff --git a/clients/client-ec2/src/commands/AttachVerifiedAccessTrustProviderCommand.ts b/clients/client-ec2/src/commands/AttachVerifiedAccessTrustProviderCommand.ts
index 15830558be21..dce9195a0826 100644
--- a/clients/client-ec2/src/commands/AttachVerifiedAccessTrustProviderCommand.ts
+++ b/clients/client-ec2/src/commands/AttachVerifiedAccessTrustProviderCommand.ts
@@ -14,7 +14,11 @@ import {
 } from "@aws-sdk/types";
 
 import { EC2ClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../EC2Client";
-import { AttachVerifiedAccessTrustProviderRequest, AttachVerifiedAccessTrustProviderResult } from "../models/models_0";
+import {
+  AttachVerifiedAccessTrustProviderRequest,
+  AttachVerifiedAccessTrustProviderResult,
+  AttachVerifiedAccessTrustProviderResultFilterSensitiveLog,
+} from "../models/models_0";
 import {
   de_AttachVerifiedAccessTrustProviderCommand,
   se_AttachVerifiedAccessTrustProviderCommand,
@@ -37,9 +41,7 @@ export interface AttachVerifiedAccessTrustProviderCommandOutput
 
 /**
  * @public
- * <p>A trust provider is a third-party entity that creates, maintains, and manages identity
- *          information for users and devices. One or more trust providers can be attached to an Amazon Web Services Verified Access
- *          instance.</p>
+ * <p>Attaches the specified Amazon Web Services Verified Access trust provider to the specified Amazon Web Services Verified Access instance.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript
@@ -113,7 +115,7 @@ export class AttachVerifiedAccessTrustProviderCommand extends $Command<
       clientName,
       commandName,
       inputFilterSensitiveLog: (_: any) => _,
-      outputFilterSensitiveLog: (_: any) => _,
+      outputFilterSensitiveLog: AttachVerifiedAccessTrustProviderResultFilterSensitiveLog,
     };
     const { requestHandler } = configuration;
     return stack.resolve(
diff --git a/clients/client-ec2/src/commands/CreateVerifiedAccessGroupCommand.ts b/clients/client-ec2/src/commands/CreateVerifiedAccessGroupCommand.ts
index f6e9d4d82c64..bc9017cf7587 100644
--- a/clients/client-ec2/src/commands/CreateVerifiedAccessGroupCommand.ts
+++ b/clients/client-ec2/src/commands/CreateVerifiedAccessGroupCommand.ts
@@ -33,9 +33,9 @@ export interface CreateVerifiedAccessGroupCommandOutput extends CreateVerifiedAc
 /**
  * @public
  * <p>An Amazon Web Services Verified Access group is a collection of Amazon Web Services Verified Access endpoints who's associated applications have
- *          similar security requirements. Each instance within an Amazon Web Services Verified Access group shares an Amazon Web Services Verified Access policy. For
- *          example, you can group all Amazon Web Services Verified Access instances associated with “sales” applications together and
- *          use one common Amazon Web Services Verified Access policy.</p>
+ *          similar security requirements. Each instance within a Verified Access group shares an Verified Access policy. For
+ *          example, you can group all Verified Access instances associated with "sales" applications together and
+ *          use one common Verified Access policy.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript
diff --git a/clients/client-ec2/src/commands/CreateVerifiedAccessTrustProviderCommand.ts b/clients/client-ec2/src/commands/CreateVerifiedAccessTrustProviderCommand.ts
index 5e26241079b8..ad31c9f5ce4f 100644
--- a/clients/client-ec2/src/commands/CreateVerifiedAccessTrustProviderCommand.ts
+++ b/clients/client-ec2/src/commands/CreateVerifiedAccessTrustProviderCommand.ts
@@ -14,7 +14,12 @@ import {
 } from "@aws-sdk/types";
 
 import { EC2ClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../EC2Client";
-import { CreateVerifiedAccessTrustProviderRequest, CreateVerifiedAccessTrustProviderResult } from "../models/models_2";
+import {
+  CreateVerifiedAccessTrustProviderRequest,
+  CreateVerifiedAccessTrustProviderRequestFilterSensitiveLog,
+  CreateVerifiedAccessTrustProviderResult,
+  CreateVerifiedAccessTrustProviderResultFilterSensitiveLog,
+} from "../models/models_2";
 import {
   de_CreateVerifiedAccessTrustProviderCommand,
   se_CreateVerifiedAccessTrustProviderCommand,
@@ -39,7 +44,7 @@ export interface CreateVerifiedAccessTrustProviderCommandOutput
  * @public
  * <p>A trust provider is a third-party entity that creates, maintains, and manages identity
  *          information for users and devices. When an application request is made, the identity
- *          information sent by the trust provider will be evaluated by Amazon Web Services Verified Access, before allowing or
+ *          information sent by the trust provider is evaluated by Verified Access before allowing or
  *          denying the application request.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
@@ -139,8 +144,8 @@ export class CreateVerifiedAccessTrustProviderCommand extends $Command<
       logger,
       clientName,
       commandName,
-      inputFilterSensitiveLog: (_: any) => _,
-      outputFilterSensitiveLog: (_: any) => _,
+      inputFilterSensitiveLog: CreateVerifiedAccessTrustProviderRequestFilterSensitiveLog,
+      outputFilterSensitiveLog: CreateVerifiedAccessTrustProviderResultFilterSensitiveLog,
     };
     const { requestHandler } = configuration;
     return stack.resolve(
diff --git a/clients/client-ec2/src/commands/DeleteVerifiedAccessTrustProviderCommand.ts b/clients/client-ec2/src/commands/DeleteVerifiedAccessTrustProviderCommand.ts
index de82f27b9ff6..b1b0758e286a 100644
--- a/clients/client-ec2/src/commands/DeleteVerifiedAccessTrustProviderCommand.ts
+++ b/clients/client-ec2/src/commands/DeleteVerifiedAccessTrustProviderCommand.ts
@@ -14,7 +14,11 @@ import {
 } from "@aws-sdk/types";
 
 import { EC2ClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../EC2Client";
-import { DeleteVerifiedAccessTrustProviderRequest, DeleteVerifiedAccessTrustProviderResult } from "../models/models_3";
+import {
+  DeleteVerifiedAccessTrustProviderRequest,
+  DeleteVerifiedAccessTrustProviderResult,
+  DeleteVerifiedAccessTrustProviderResultFilterSensitiveLog,
+} from "../models/models_3";
 import {
   de_DeleteVerifiedAccessTrustProviderCommand,
   se_DeleteVerifiedAccessTrustProviderCommand,
@@ -110,7 +114,7 @@ export class DeleteVerifiedAccessTrustProviderCommand extends $Command<
       clientName,
       commandName,
       inputFilterSensitiveLog: (_: any) => _,
-      outputFilterSensitiveLog: (_: any) => _,
+      outputFilterSensitiveLog: DeleteVerifiedAccessTrustProviderResultFilterSensitiveLog,
     };
     const { requestHandler } = configuration;
     return stack.resolve(
diff --git a/clients/client-ec2/src/commands/DescribeConversionTasksCommand.ts b/clients/client-ec2/src/commands/DescribeConversionTasksCommand.ts
index 1e44c41a19c8..bf1312515108 100644
--- a/clients/client-ec2/src/commands/DescribeConversionTasksCommand.ts
+++ b/clients/client-ec2/src/commands/DescribeConversionTasksCommand.ts
@@ -14,7 +14,11 @@ import {
 } from "@aws-sdk/types";
 
 import { EC2ClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../EC2Client";
-import { DescribeConversionTasksRequest, DescribeConversionTasksResult } from "../models/models_3";
+import {
+  DescribeConversionTasksRequest,
+  DescribeConversionTasksResult,
+  DescribeConversionTasksResultFilterSensitiveLog,
+} from "../models/models_3";
 import { de_DescribeConversionTasksCommand, se_DescribeConversionTasksCommand } from "../protocols/Aws_ec2";
 
 /**
@@ -108,7 +112,7 @@ export class DescribeConversionTasksCommand extends $Command<
       clientName,
       commandName,
       inputFilterSensitiveLog: (_: any) => _,
-      outputFilterSensitiveLog: (_: any) => _,
+      outputFilterSensitiveLog: DescribeConversionTasksResultFilterSensitiveLog,
     };
     const { requestHandler } = configuration;
     return stack.resolve(
diff --git a/clients/client-ec2/src/commands/DescribeVerifiedAccessEndpointsCommand.ts b/clients/client-ec2/src/commands/DescribeVerifiedAccessEndpointsCommand.ts
index f4d230ed3fd6..26ded75b410c 100644
--- a/clients/client-ec2/src/commands/DescribeVerifiedAccessEndpointsCommand.ts
+++ b/clients/client-ec2/src/commands/DescribeVerifiedAccessEndpointsCommand.ts
@@ -37,7 +37,7 @@ export interface DescribeVerifiedAccessEndpointsCommandOutput
 
 /**
  * @public
- * <p>Describe Amazon Web Services Verified Access endpoints.</p>
+ * <p>Describes the specified Amazon Web Services Verified Access endpoints.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript
diff --git a/clients/client-ec2/src/commands/DescribeVerifiedAccessGroupsCommand.ts b/clients/client-ec2/src/commands/DescribeVerifiedAccessGroupsCommand.ts
index fe388668be7e..6cfd73fd08de 100644
--- a/clients/client-ec2/src/commands/DescribeVerifiedAccessGroupsCommand.ts
+++ b/clients/client-ec2/src/commands/DescribeVerifiedAccessGroupsCommand.ts
@@ -34,7 +34,7 @@ export interface DescribeVerifiedAccessGroupsCommandOutput
 
 /**
  * @public
- * <p>Describe details of existing Verified Access groups.</p>
+ * <p>Describes the specified Verified Access groups.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript
diff --git a/clients/client-ec2/src/commands/DescribeVerifiedAccessInstanceLoggingConfigurationsCommand.ts b/clients/client-ec2/src/commands/DescribeVerifiedAccessInstanceLoggingConfigurationsCommand.ts
index 50e63a5d7e43..6da5d1873fd8 100644
--- a/clients/client-ec2/src/commands/DescribeVerifiedAccessInstanceLoggingConfigurationsCommand.ts
+++ b/clients/client-ec2/src/commands/DescribeVerifiedAccessInstanceLoggingConfigurationsCommand.ts
@@ -41,7 +41,7 @@ export interface DescribeVerifiedAccessInstanceLoggingConfigurationsCommandOutpu
 
 /**
  * @public
- * <p>Describes the current logging configuration for the Amazon Web Services Verified Access instances.</p>
+ * <p>Describes the specified Amazon Web Services Verified Access instances.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript
diff --git a/clients/client-ec2/src/commands/DescribeVerifiedAccessInstancesCommand.ts b/clients/client-ec2/src/commands/DescribeVerifiedAccessInstancesCommand.ts
index 00d252096af1..b213e06c8b03 100644
--- a/clients/client-ec2/src/commands/DescribeVerifiedAccessInstancesCommand.ts
+++ b/clients/client-ec2/src/commands/DescribeVerifiedAccessInstancesCommand.ts
@@ -37,7 +37,7 @@ export interface DescribeVerifiedAccessInstancesCommandOutput
 
 /**
  * @public
- * <p>Describe Verified Access instances.</p>
+ * <p>Describes the specified Amazon Web Services Verified Access instances.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript
diff --git a/clients/client-ec2/src/commands/DescribeVerifiedAccessTrustProvidersCommand.ts b/clients/client-ec2/src/commands/DescribeVerifiedAccessTrustProvidersCommand.ts
index ca43a051325e..3e5726b5964b 100644
--- a/clients/client-ec2/src/commands/DescribeVerifiedAccessTrustProvidersCommand.ts
+++ b/clients/client-ec2/src/commands/DescribeVerifiedAccessTrustProvidersCommand.ts
@@ -17,6 +17,7 @@ import { EC2ClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "
 import {
   DescribeVerifiedAccessTrustProvidersRequest,
   DescribeVerifiedAccessTrustProvidersResult,
+  DescribeVerifiedAccessTrustProvidersResultFilterSensitiveLog,
 } from "../models/models_4";
 import {
   de_DescribeVerifiedAccessTrustProvidersCommand,
@@ -40,7 +41,7 @@ export interface DescribeVerifiedAccessTrustProvidersCommandOutput
 
 /**
  * @public
- * <p>Describe details of existing Verified Access trust providers.</p>
+ * <p>Describes the specified Amazon Web Services Verified Access trust providers.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript
@@ -124,7 +125,7 @@ export class DescribeVerifiedAccessTrustProvidersCommand extends $Command<
       clientName,
       commandName,
       inputFilterSensitiveLog: (_: any) => _,
-      outputFilterSensitiveLog: (_: any) => _,
+      outputFilterSensitiveLog: DescribeVerifiedAccessTrustProvidersResultFilterSensitiveLog,
     };
     const { requestHandler } = configuration;
     return stack.resolve(
diff --git a/clients/client-ec2/src/commands/DetachVerifiedAccessTrustProviderCommand.ts b/clients/client-ec2/src/commands/DetachVerifiedAccessTrustProviderCommand.ts
index a786d916487e..d23a3a432fa7 100644
--- a/clients/client-ec2/src/commands/DetachVerifiedAccessTrustProviderCommand.ts
+++ b/clients/client-ec2/src/commands/DetachVerifiedAccessTrustProviderCommand.ts
@@ -14,7 +14,11 @@ import {
 } from "@aws-sdk/types";
 
 import { EC2ClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../EC2Client";
-import { DetachVerifiedAccessTrustProviderRequest, DetachVerifiedAccessTrustProviderResult } from "../models/models_5";
+import {
+  DetachVerifiedAccessTrustProviderRequest,
+  DetachVerifiedAccessTrustProviderResult,
+  DetachVerifiedAccessTrustProviderResultFilterSensitiveLog,
+} from "../models/models_5";
 import {
   de_DetachVerifiedAccessTrustProviderCommand,
   se_DetachVerifiedAccessTrustProviderCommand,
@@ -37,7 +41,7 @@ export interface DetachVerifiedAccessTrustProviderCommandOutput
 
 /**
  * @public
- * <p>Detach a trust provider from an Amazon Web Services Verified Access instance.</p>
+ * <p>Detaches the specified Amazon Web Services Verified Access trust provider from the specified Amazon Web Services Verified Access instance.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript
@@ -111,7 +115,7 @@ export class DetachVerifiedAccessTrustProviderCommand extends $Command<
       clientName,
       commandName,
       inputFilterSensitiveLog: (_: any) => _,
-      outputFilterSensitiveLog: (_: any) => _,
+      outputFilterSensitiveLog: DetachVerifiedAccessTrustProviderResultFilterSensitiveLog,
     };
     const { requestHandler } = configuration;
     return stack.resolve(
diff --git a/clients/client-ec2/src/commands/ImportInstanceCommand.ts b/clients/client-ec2/src/commands/ImportInstanceCommand.ts
index c9c4a21c6e69..ab84cb693514 100644
--- a/clients/client-ec2/src/commands/ImportInstanceCommand.ts
+++ b/clients/client-ec2/src/commands/ImportInstanceCommand.ts
@@ -18,6 +18,7 @@ import {
   ImportInstanceRequest,
   ImportInstanceRequestFilterSensitiveLog,
   ImportInstanceResult,
+  ImportInstanceResultFilterSensitiveLog,
 } from "../models/models_5";
 import { de_ImportInstanceCommand, se_ImportInstanceCommand } from "../protocols/Aws_ec2";
 
@@ -157,7 +158,7 @@ export class ImportInstanceCommand extends $Command<
       clientName,
       commandName,
       inputFilterSensitiveLog: ImportInstanceRequestFilterSensitiveLog,
-      outputFilterSensitiveLog: (_: any) => _,
+      outputFilterSensitiveLog: ImportInstanceResultFilterSensitiveLog,
     };
     const { requestHandler } = configuration;
     return stack.resolve(
diff --git a/clients/client-ec2/src/commands/ImportVolumeCommand.ts b/clients/client-ec2/src/commands/ImportVolumeCommand.ts
index c628e0688e70..c5961ec3d5c6 100644
--- a/clients/client-ec2/src/commands/ImportVolumeCommand.ts
+++ b/clients/client-ec2/src/commands/ImportVolumeCommand.ts
@@ -14,7 +14,12 @@ import {
 } from "@aws-sdk/types";
 
 import { EC2ClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../EC2Client";
-import { ImportVolumeRequest, ImportVolumeRequestFilterSensitiveLog, ImportVolumeResult } from "../models/models_6";
+import {
+  ImportVolumeRequest,
+  ImportVolumeRequestFilterSensitiveLog,
+  ImportVolumeResult,
+  ImportVolumeResultFilterSensitiveLog,
+} from "../models/models_6";
 import { de_ImportVolumeCommand, se_ImportVolumeCommand } from "../protocols/Aws_ec2";
 
 /**
@@ -117,7 +122,7 @@ export class ImportVolumeCommand extends $Command<
       clientName,
       commandName,
       inputFilterSensitiveLog: ImportVolumeRequestFilterSensitiveLog,
-      outputFilterSensitiveLog: (_: any) => _,
+      outputFilterSensitiveLog: ImportVolumeResultFilterSensitiveLog,
     };
     const { requestHandler } = configuration;
     return stack.resolve(
diff --git a/clients/client-ec2/src/commands/ModifyVerifiedAccessEndpointCommand.ts b/clients/client-ec2/src/commands/ModifyVerifiedAccessEndpointCommand.ts
index 75b24d7890c9..5b878a060e0a 100644
--- a/clients/client-ec2/src/commands/ModifyVerifiedAccessEndpointCommand.ts
+++ b/clients/client-ec2/src/commands/ModifyVerifiedAccessEndpointCommand.ts
@@ -34,7 +34,7 @@ export interface ModifyVerifiedAccessEndpointCommandOutput
 
 /**
  * @public
- * <p>Modifies the configuration of an Amazon Web Services Verified Access endpoint.</p>
+ * <p>Modifies the configuration of the specified Amazon Web Services Verified Access endpoint.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript
diff --git a/clients/client-ec2/src/commands/ModifyVerifiedAccessEndpointPolicyCommand.ts b/clients/client-ec2/src/commands/ModifyVerifiedAccessEndpointPolicyCommand.ts
index 20a6703c6e86..763706c90cf6 100644
--- a/clients/client-ec2/src/commands/ModifyVerifiedAccessEndpointPolicyCommand.ts
+++ b/clients/client-ec2/src/commands/ModifyVerifiedAccessEndpointPolicyCommand.ts
@@ -40,7 +40,7 @@ export interface ModifyVerifiedAccessEndpointPolicyCommandOutput
 
 /**
  * @public
- * <p>Modifies the specified Verified Access endpoint policy.</p>
+ * <p>Modifies the specified Amazon Web Services Verified Access endpoint policy.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript
diff --git a/clients/client-ec2/src/commands/ModifyVerifiedAccessGroupCommand.ts b/clients/client-ec2/src/commands/ModifyVerifiedAccessGroupCommand.ts
index c906dd79259f..7f415b4cd094 100644
--- a/clients/client-ec2/src/commands/ModifyVerifiedAccessGroupCommand.ts
+++ b/clients/client-ec2/src/commands/ModifyVerifiedAccessGroupCommand.ts
@@ -32,7 +32,7 @@ export interface ModifyVerifiedAccessGroupCommandOutput extends ModifyVerifiedAc
 
 /**
  * @public
- * <p>Modifies the specified Verified Access group configuration.</p>
+ * <p>Modifies the specified Amazon Web Services Verified Access group configuration.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript
diff --git a/clients/client-ec2/src/commands/ModifyVerifiedAccessGroupPolicyCommand.ts b/clients/client-ec2/src/commands/ModifyVerifiedAccessGroupPolicyCommand.ts
index c96f135a7284..155e64420d80 100644
--- a/clients/client-ec2/src/commands/ModifyVerifiedAccessGroupPolicyCommand.ts
+++ b/clients/client-ec2/src/commands/ModifyVerifiedAccessGroupPolicyCommand.ts
@@ -37,7 +37,7 @@ export interface ModifyVerifiedAccessGroupPolicyCommandOutput
 
 /**
  * @public
- * <p>Modifies the specified Verified Access group policy.</p>
+ * <p>Modifies the specified Amazon Web Services Verified Access group policy.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript
diff --git a/clients/client-ec2/src/commands/ModifyVerifiedAccessInstanceCommand.ts b/clients/client-ec2/src/commands/ModifyVerifiedAccessInstanceCommand.ts
index 32aedbb546ad..817aa7d24efa 100644
--- a/clients/client-ec2/src/commands/ModifyVerifiedAccessInstanceCommand.ts
+++ b/clients/client-ec2/src/commands/ModifyVerifiedAccessInstanceCommand.ts
@@ -34,7 +34,7 @@ export interface ModifyVerifiedAccessInstanceCommandOutput
 
 /**
  * @public
- * <p>Modifies the configuration of the specified Verified Access instance.</p>
+ * <p>Modifies the configuration of the specified Amazon Web Services Verified Access instance.</p>
  * @example
  * Use a bare-bones client and the command you need to make an API call.
  * ```javascript
diff --git a/clients/client-ec2/src/commands/ModifyVerifiedAccessTrustProviderCommand.ts b/clients/client-ec2/src/commands/ModifyVerifiedAccessTrustProviderCommand.ts
index 6f6c63f10c9e..6bcd794d7b34 100644
--- a/clients/client-ec2/src/commands/ModifyVerifiedAccessTrustProviderCommand.ts
+++ b/clients/client-ec2/src/commands/ModifyVerifiedAccessTrustProviderCommand.ts
@@ -14,7 +14,12 @@ import {
 } from "@aws-sdk/types";
 
 import { EC2ClientResolvedConfig, ServiceInputTypes, ServiceOutputTypes } from "../EC2Client";
-import { ModifyVerifiedAccessTrustProviderRequest, ModifyVerifiedAccessTrustProviderResult } from "../models/models_6";
+import {
+  ModifyVerifiedAccessTrustProviderRequest,
+  ModifyVerifiedAccessTrustProviderRequestFilterSensitiveLog,
+  ModifyVerifiedAccessTrustProviderResult,
+  ModifyVerifiedAccessTrustProviderResultFilterSensitiveLog,
+} from "../models/models_6";
 import {
   de_ModifyVerifiedAccessTrustProviderCommand,
   se_ModifyVerifiedAccessTrustProviderCommand,
@@ -47,6 +52,12 @@ export interface ModifyVerifiedAccessTrustProviderCommandOutput
  * const input = { // ModifyVerifiedAccessTrustProviderRequest
  *   VerifiedAccessTrustProviderId: "STRING_VALUE", // required
  *   OidcOptions: { // ModifyVerifiedAccessTrustProviderOidcOptions
+ *     Issuer: "STRING_VALUE",
+ *     AuthorizationEndpoint: "STRING_VALUE",
+ *     TokenEndpoint: "STRING_VALUE",
+ *     UserInfoEndpoint: "STRING_VALUE",
+ *     ClientId: "STRING_VALUE",
+ *     ClientSecret: "STRING_VALUE",
  *     Scope: "STRING_VALUE",
  *   },
  *   Description: "STRING_VALUE",
@@ -113,8 +124,8 @@ export class ModifyVerifiedAccessTrustProviderCommand extends $Command<
       logger,
       clientName,
       commandName,
-      inputFilterSensitiveLog: (_: any) => _,
-      outputFilterSensitiveLog: (_: any) => _,
+      inputFilterSensitiveLog: ModifyVerifiedAccessTrustProviderRequestFilterSensitiveLog,
+      outputFilterSensitiveLog: ModifyVerifiedAccessTrustProviderResultFilterSensitiveLog,
     };
     const { requestHandler } = configuration;
     return stack.resolve(
diff --git a/clients/client-ec2/src/models/models_0.ts b/clients/client-ec2/src/models/models_0.ts
index ef4bded1339e..1caf736fa66f 100644
--- a/clients/client-ec2/src/models/models_0.ts
+++ b/clients/client-ec2/src/models/models_0.ts
@@ -4943,12 +4943,12 @@ export interface AttachNetworkInterfaceResult {
  */
 export interface AttachVerifiedAccessTrustProviderRequest {
   /**
-   * <p>The ID of the Amazon Web Services Verified Access instance.</p>
+   * <p>The ID of the Verified Access instance.</p>
    */
   VerifiedAccessInstanceId: string | undefined;
 
   /**
-   * <p>The ID of the Amazon Web Services Verified Access trust provider.</p>
+   * <p>The ID of the Verified Access trust provider.</p>
    */
   VerifiedAccessTrustProviderId: string | undefined;
 
@@ -5077,7 +5077,7 @@ export interface VerifiedAccessInstance {
 
 /**
  * @public
- * <p>Options for an Amazon Web Services Verified Access device-identity based trust provider.</p>
+ * <p>Describes the options for an Amazon Web Services Verified Access device-identity based trust provider.</p>
  */
 export interface DeviceOptions {
   /**
@@ -5088,7 +5088,8 @@ export interface DeviceOptions {
 
 /**
  * @public
- * <p>Options for OIDC-based, user-identity type trust provider.</p>
+ * <p>Describes the options for an OpenID Connect-compatible user-identity trust
+ *          provider.</p>
  */
 export interface OidcOptions {
   /**
@@ -5158,12 +5159,12 @@ export interface VerifiedAccessTrustProvider {
   DeviceTrustProviderType?: DeviceTrustProviderType | string;
 
   /**
-   * <p>The OpenID Connect details for an <code>oidc</code>-type, user-identity based trust provider.</p>
+   * <p>The options for an OpenID Connect-compatible user-identity trust provider.</p>
    */
   OidcOptions?: OidcOptions;
 
   /**
-   * <p>The options for device-identity type trust provider.</p>
+   * <p>The options for device-identity trust provider.</p>
    */
   DeviceOptions?: DeviceOptions;
 
@@ -5193,12 +5194,12 @@ export interface VerifiedAccessTrustProvider {
  */
 export interface AttachVerifiedAccessTrustProviderResult {
   /**
-   * <p>The ID of the Amazon Web Services Verified Access trust provider.</p>
+   * <p>The ID of the Verified Access trust provider.</p>
    */
   VerifiedAccessTrustProvider?: VerifiedAccessTrustProvider;
 
   /**
-   * <p>The ID of the Amazon Web Services Verified Access instance.</p>
+   * <p>The ID of the Verified Access instance.</p>
    */
   VerifiedAccessInstance?: VerifiedAccessInstance;
 }
@@ -8524,6 +8525,34 @@ export interface CertificateAuthenticationRequest {
   ClientRootCertificateChainArn?: string;
 }
 
+/**
+ * @internal
+ */
+export const OidcOptionsFilterSensitiveLog = (obj: OidcOptions): any => ({
+  ...obj,
+  ...(obj.ClientSecret && { ClientSecret: SENSITIVE_STRING }),
+});
+
+/**
+ * @internal
+ */
+export const VerifiedAccessTrustProviderFilterSensitiveLog = (obj: VerifiedAccessTrustProvider): any => ({
+  ...obj,
+  ...(obj.OidcOptions && { OidcOptions: OidcOptionsFilterSensitiveLog(obj.OidcOptions) }),
+});
+
+/**
+ * @internal
+ */
+export const AttachVerifiedAccessTrustProviderResultFilterSensitiveLog = (
+  obj: AttachVerifiedAccessTrustProviderResult
+): any => ({
+  ...obj,
+  ...(obj.VerifiedAccessTrustProvider && {
+    VerifiedAccessTrustProvider: VerifiedAccessTrustProviderFilterSensitiveLog(obj.VerifiedAccessTrustProvider),
+  }),
+});
+
 /**
  * @internal
  */
diff --git a/clients/client-ec2/src/models/models_2.ts b/clients/client-ec2/src/models/models_2.ts
index 94faa49039f0..dac8a1c4a240 100644
--- a/clients/client-ec2/src/models/models_2.ts
+++ b/clients/client-ec2/src/models/models_2.ts
@@ -1,4 +1,6 @@
 // smithy-typescript generated code
+import { SENSITIVE_STRING } from "@aws-sdk/smithy-client";
+
 import {
   ApplianceModeSupportValue,
   CarrierGateway,
@@ -21,6 +23,7 @@ import {
   UserTrustProviderType,
   VerifiedAccessInstance,
   VerifiedAccessTrustProvider,
+  VerifiedAccessTrustProviderFilterSensitiveLog,
   VolumeAttachment,
   VpcAttachment,
   VpcPeeringConnection,
@@ -3371,7 +3374,7 @@ export type VerifiedAccessEndpointProtocol =
 
 /**
  * @public
- * <p>Describes a load balancer when creating an Amazon Web Services Verified Access endpoint using the
+ * <p>Describes the load balancer options when creating an Amazon Web Services Verified Access endpoint using the
  *             <code>load-balancer</code> type.</p>
  */
 export interface CreateVerifiedAccessEndpointLoadBalancerOptions {
@@ -3398,7 +3401,8 @@ export interface CreateVerifiedAccessEndpointLoadBalancerOptions {
 
 /**
  * @public
- * <p>Options for a network interface-type endpoint.</p>
+ * <p>Describes the network interface options when creating an Amazon Web Services Verified Access endpoint using the
+ *             <code>network-interface</code> type.</p>
  */
 export interface CreateVerifiedAccessEndpointEniOptions {
   /**
@@ -3427,12 +3431,12 @@ export interface CreateVerifiedAccessEndpointRequest {
   VerifiedAccessGroupId: string | undefined;
 
   /**
-   * <p>The type of Amazon Web Services Verified Access endpoint to create.</p>
+   * <p>The type of Verified Access endpoint to create.</p>
    */
   EndpointType: VerifiedAccessEndpointType | string | undefined;
 
   /**
-   * <p>The Amazon Web Services network component Verified Access attaches to.</p>
+   * <p>The type of attachment.</p>
    */
   AttachmentType: VerifiedAccessEndpointAttachmentType | string | undefined;
 
@@ -3449,39 +3453,40 @@ export interface CreateVerifiedAccessEndpointRequest {
   ApplicationDomain: string | undefined;
 
   /**
-   * <p>A custom identifier that gets prepended to a DNS name that is generated for the endpoint.</p>
+   * <p>A custom identifier that is prepended to the DNS name that is generated for the
+   *          endpoint.</p>
    */
   EndpointDomainPrefix: string | undefined;
 
   /**
-   * <p>The Amazon EC2 security groups to associate with the Amazon Web Services Verified Access endpoint.</p>
+   * <p>The IDs of the security groups to associate with the Verified Access endpoint.</p>
    */
   SecurityGroupIds?: string[];
 
   /**
-   * <p>The load balancer details if creating the Amazon Web Services Verified Access endpoint as
-   *          <code>load-balancer</code>type.</p>
+   * <p>The load balancer details. This parameter is required if the endpoint type is
+   *             <code>load-balancer</code>.</p>
    */
   LoadBalancerOptions?: CreateVerifiedAccessEndpointLoadBalancerOptions;
 
   /**
-   * <p>The network interface details if creating the Amazon Web Services Verified Access endpoint as
-   *             <code>network-interface</code>type.</p>
+   * <p>The network interface details. This parameter is required if the endpoint type is
+   *             <code>network-interface</code>.</p>
    */
   NetworkInterfaceOptions?: CreateVerifiedAccessEndpointEniOptions;
 
   /**
-   * <p>A description for the Amazon Web Services Verified Access endpoint.</p>
+   * <p>A description for the Verified Access endpoint.</p>
    */
   Description?: string;
 
   /**
-   * <p>The Amazon Web Services Verified Access policy document.</p>
+   * <p>The Verified Access policy document.</p>
    */
   PolicyDocument?: string;
 
   /**
-   * <p>The tags to assign to the Amazon Web Services Verified Access endpoint.</p>
+   * <p>The tags to assign to the Verified Access endpoint.</p>
    */
   TagSpecifications?: TagSpecification[];
 
@@ -3688,7 +3693,7 @@ export interface VerifiedAccessEndpoint {
  */
 export interface CreateVerifiedAccessEndpointResult {
   /**
-   * <p>The ID of the Amazon Web Services Verified Access endpoint.</p>
+   * <p>The ID of the Verified Access endpoint.</p>
    */
   VerifiedAccessEndpoint?: VerifiedAccessEndpoint;
 }
@@ -3698,22 +3703,22 @@ export interface CreateVerifiedAccessEndpointResult {
  */
 export interface CreateVerifiedAccessGroupRequest {
   /**
-   * <p>The ID of the Amazon Web Services Verified Access instance.</p>
+   * <p>The ID of the Verified Access instance.</p>
    */
   VerifiedAccessInstanceId: string | undefined;
 
   /**
-   * <p>A description for the Amazon Web Services Verified Access group.</p>
+   * <p>A description for the Verified Access group.</p>
    */
   Description?: string;
 
   /**
-   * <p>The Amazon Web Services Verified Access policy document.</p>
+   * <p>The Verified Access policy document.</p>
    */
   PolicyDocument?: string;
 
   /**
-   * <p>The tags to assign to the Amazon Web Services Verified Access group.</p>
+   * <p>The tags to assign to the Verified Access group.</p>
    */
   TagSpecifications?: TagSpecification[];
 
@@ -3797,12 +3802,12 @@ export interface CreateVerifiedAccessGroupResult {
  */
 export interface CreateVerifiedAccessInstanceRequest {
   /**
-   * <p>A description for the Amazon Web Services Verified Access instance.</p>
+   * <p>A description for the Verified Access instance.</p>
    */
   Description?: string;
 
   /**
-   * <p>The tags to assign to the Amazon Web Services Verified Access instance.</p>
+   * <p>The tags to assign to the Verified Access instance.</p>
    */
   TagSpecifications?: TagSpecification[];
 
@@ -3825,14 +3830,15 @@ export interface CreateVerifiedAccessInstanceRequest {
  */
 export interface CreateVerifiedAccessInstanceResult {
   /**
-   * <p>The ID of the Amazon Web Services Verified Access instance.</p>
+   * <p>The ID of the Verified Access instance.</p>
    */
   VerifiedAccessInstance?: VerifiedAccessInstance;
 }
 
 /**
  * @public
- * <p>Options for a device-identity type trust provider.</p>
+ * <p>Describes the options when creating an Amazon Web Services Verified Access trust provider using the
+ *             <code>device</code> type.</p>
  */
 export interface CreateVerifiedAccessTrustProviderDeviceOptions {
   /**
@@ -3843,7 +3849,8 @@ export interface CreateVerifiedAccessTrustProviderDeviceOptions {
 
 /**
  * @public
- * <p>Options for an OIDC-based, user-identity type trust provider.</p>
+ * <p>Describes the options when creating an Amazon Web Services Verified Access trust provider using the <code>user</code>
+ *          type.</p>
  */
 export interface CreateVerifiedAccessTrustProviderOidcOptions {
   /**
@@ -3887,27 +3894,31 @@ export interface CreateVerifiedAccessTrustProviderOidcOptions {
  */
 export interface CreateVerifiedAccessTrustProviderRequest {
   /**
-   * <p>The type of trust provider can be either user or device-based.</p>
+   * <p>The type of trust provider.</p>
    */
   TrustProviderType: TrustProviderType | string | undefined;
 
   /**
-   * <p>The type of user-based trust provider.</p>
+   * <p>The type of user-based trust provider. This parameter is required when the provider type
+   *          is <code>user</code>.</p>
    */
   UserTrustProviderType?: UserTrustProviderType | string;
 
   /**
-   * <p>The type of device-based trust provider.</p>
+   * <p>The type of device-based trust provider. This parameter is required when the provider
+   *          type is <code>device</code>.</p>
    */
   DeviceTrustProviderType?: DeviceTrustProviderType | string;
 
   /**
-   * <p>The OpenID Connect details for an <code>oidc</code>-type, user-identity based trust provider.</p>
+   * <p>The options for a OpenID Connect-compatible user-identity trust provider. This parameter
+   *          is required when the provider type is <code>user</code>.</p>
    */
   OidcOptions?: CreateVerifiedAccessTrustProviderOidcOptions;
 
   /**
-   * <p>The options for device identity based trust providers.</p>
+   * <p>The options for a device-based trust provider. This parameter is required when the
+   *          provider type is <code>device</code>.</p>
    */
   DeviceOptions?: CreateVerifiedAccessTrustProviderDeviceOptions;
 
@@ -3917,12 +3928,12 @@ export interface CreateVerifiedAccessTrustProviderRequest {
   PolicyReferenceName: string | undefined;
 
   /**
-   * <p>A description for the Amazon Web Services Verified Access trust provider.</p>
+   * <p>A description for the Verified Access trust provider.</p>
    */
   Description?: string;
 
   /**
-   * <p>The tags to assign to the Amazon Web Services Verified Access trust provider.</p>
+   * <p>The tags to assign to the Verified Access trust provider.</p>
    */
   TagSpecifications?: TagSpecification[];
 
@@ -3945,7 +3956,7 @@ export interface CreateVerifiedAccessTrustProviderRequest {
  */
 export interface CreateVerifiedAccessTrustProviderResult {
   /**
-   * <p>The ID of the Amazon Web Services Verified Access trust provider.</p>
+   * <p>The ID of the Verified Access trust provider.</p>
    */
   VerifiedAccessTrustProvider?: VerifiedAccessTrustProvider;
 }
@@ -7625,3 +7636,37 @@ export interface DeleteSpotDatafeedSubscriptionRequest {
    */
   DryRun?: boolean;
 }
+
+/**
+ * @internal
+ */
+export const CreateVerifiedAccessTrustProviderOidcOptionsFilterSensitiveLog = (
+  obj: CreateVerifiedAccessTrustProviderOidcOptions
+): any => ({
+  ...obj,
+  ...(obj.ClientSecret && { ClientSecret: SENSITIVE_STRING }),
+});
+
+/**
+ * @internal
+ */
+export const CreateVerifiedAccessTrustProviderRequestFilterSensitiveLog = (
+  obj: CreateVerifiedAccessTrustProviderRequest
+): any => ({
+  ...obj,
+  ...(obj.OidcOptions && {
+    OidcOptions: CreateVerifiedAccessTrustProviderOidcOptionsFilterSensitiveLog(obj.OidcOptions),
+  }),
+});
+
+/**
+ * @internal
+ */
+export const CreateVerifiedAccessTrustProviderResultFilterSensitiveLog = (
+  obj: CreateVerifiedAccessTrustProviderResult
+): any => ({
+  ...obj,
+  ...(obj.VerifiedAccessTrustProvider && {
+    VerifiedAccessTrustProvider: VerifiedAccessTrustProviderFilterSensitiveLog(obj.VerifiedAccessTrustProvider),
+  }),
+});
diff --git a/clients/client-ec2/src/models/models_3.ts b/clients/client-ec2/src/models/models_3.ts
index f8f5106adf1c..13a29097025b 100644
--- a/clients/client-ec2/src/models/models_3.ts
+++ b/clients/client-ec2/src/models/models_3.ts
@@ -1,4 +1,6 @@
 // smithy-typescript generated code
+import { SENSITIVE_STRING } from "@aws-sdk/smithy-client";
+
 import {
   _InstanceType,
   AccountAttribute,
@@ -33,6 +35,7 @@ import {
   UnsuccessfulItem,
   VerifiedAccessInstance,
   VerifiedAccessTrustProvider,
+  VerifiedAccessTrustProviderFilterSensitiveLog,
 } from "./models_0";
 import {
   AttributeValue,
@@ -579,7 +582,7 @@ export interface DeleteTransitGatewayVpcAttachmentResult {
  */
 export interface DeleteVerifiedAccessEndpointRequest {
   /**
-   * <p>The ID of the Amazon Web Services Verified Access endpoint.</p>
+   * <p>The ID of the Verified Access endpoint.</p>
    */
   VerifiedAccessEndpointId: string | undefined;
 
@@ -602,7 +605,7 @@ export interface DeleteVerifiedAccessEndpointRequest {
  */
 export interface DeleteVerifiedAccessEndpointResult {
   /**
-   * <p>The ID of the Amazon Web Services Verified Access endpoint.</p>
+   * <p>The ID of the Verified Access endpoint.</p>
    */
   VerifiedAccessEndpoint?: VerifiedAccessEndpoint;
 }
@@ -612,7 +615,7 @@ export interface DeleteVerifiedAccessEndpointResult {
  */
 export interface DeleteVerifiedAccessGroupRequest {
   /**
-   * <p>The ID of the Amazon Web Services Verified Access group.</p>
+   * <p>The ID of the Verified Access group.</p>
    */
   VerifiedAccessGroupId: string | undefined;
 
@@ -635,7 +638,7 @@ export interface DeleteVerifiedAccessGroupRequest {
  */
 export interface DeleteVerifiedAccessGroupResult {
   /**
-   * <p>The ID of the Amazon Web Services Verified Access group.</p>
+   * <p>The ID of the Verified Access group.</p>
    */
   VerifiedAccessGroup?: VerifiedAccessGroup;
 }
@@ -645,7 +648,7 @@ export interface DeleteVerifiedAccessGroupResult {
  */
 export interface DeleteVerifiedAccessInstanceRequest {
   /**
-   * <p>The ID of the Amazon Web Services Verified Access instance.</p>
+   * <p>The ID of the Verified Access instance.</p>
    */
   VerifiedAccessInstanceId: string | undefined;
 
@@ -668,7 +671,7 @@ export interface DeleteVerifiedAccessInstanceRequest {
  */
 export interface DeleteVerifiedAccessInstanceResult {
   /**
-   * <p>The ID of the Amazon Web Services Verified Access instance.</p>
+   * <p>The ID of the Verified Access instance.</p>
    */
   VerifiedAccessInstance?: VerifiedAccessInstance;
 }
@@ -678,7 +681,7 @@ export interface DeleteVerifiedAccessInstanceResult {
  */
 export interface DeleteVerifiedAccessTrustProviderRequest {
   /**
-   * <p>The ID of the Amazon Web Services Verified Access trust provider.</p>
+   * <p>The ID of the Verified Access trust provider.</p>
    */
   VerifiedAccessTrustProviderId: string | undefined;
 
@@ -701,7 +704,7 @@ export interface DeleteVerifiedAccessTrustProviderRequest {
  */
 export interface DeleteVerifiedAccessTrustProviderResult {
   /**
-   * <p>The ID of the Amazon Web Services Verified Access trust provider.</p>
+   * <p>The ID of the Verified Access trust provider.</p>
    */
   VerifiedAccessTrustProvider?: VerifiedAccessTrustProvider;
 }
@@ -9151,3 +9154,66 @@ export const MonitoringState = {
  * @public
  */
 export type MonitoringState = (typeof MonitoringState)[keyof typeof MonitoringState];
+
+/**
+ * @internal
+ */
+export const DeleteVerifiedAccessTrustProviderResultFilterSensitiveLog = (
+  obj: DeleteVerifiedAccessTrustProviderResult
+): any => ({
+  ...obj,
+  ...(obj.VerifiedAccessTrustProvider && {
+    VerifiedAccessTrustProvider: VerifiedAccessTrustProviderFilterSensitiveLog(obj.VerifiedAccessTrustProvider),
+  }),
+});
+
+/**
+ * @internal
+ */
+export const DiskImageDescriptionFilterSensitiveLog = (obj: DiskImageDescription): any => ({
+  ...obj,
+  ...(obj.ImportManifestUrl && { ImportManifestUrl: SENSITIVE_STRING }),
+});
+
+/**
+ * @internal
+ */
+export const ImportInstanceVolumeDetailItemFilterSensitiveLog = (obj: ImportInstanceVolumeDetailItem): any => ({
+  ...obj,
+  ...(obj.Image && { Image: DiskImageDescriptionFilterSensitiveLog(obj.Image) }),
+});
+
+/**
+ * @internal
+ */
+export const ImportInstanceTaskDetailsFilterSensitiveLog = (obj: ImportInstanceTaskDetails): any => ({
+  ...obj,
+  ...(obj.Volumes && { Volumes: obj.Volumes.map((item) => ImportInstanceVolumeDetailItemFilterSensitiveLog(item)) }),
+});
+
+/**
+ * @internal
+ */
+export const ImportVolumeTaskDetailsFilterSensitiveLog = (obj: ImportVolumeTaskDetails): any => ({
+  ...obj,
+  ...(obj.Image && { Image: DiskImageDescriptionFilterSensitiveLog(obj.Image) }),
+});
+
+/**
+ * @internal
+ */
+export const ConversionTaskFilterSensitiveLog = (obj: ConversionTask): any => ({
+  ...obj,
+  ...(obj.ImportInstance && { ImportInstance: ImportInstanceTaskDetailsFilterSensitiveLog(obj.ImportInstance) }),
+  ...(obj.ImportVolume && { ImportVolume: ImportVolumeTaskDetailsFilterSensitiveLog(obj.ImportVolume) }),
+});
+
+/**
+ * @internal
+ */
+export const DescribeConversionTasksResultFilterSensitiveLog = (obj: DescribeConversionTasksResult): any => ({
+  ...obj,
+  ...(obj.ConversionTasks && {
+    ConversionTasks: obj.ConversionTasks.map((item) => ConversionTaskFilterSensitiveLog(item)),
+  }),
+});
diff --git a/clients/client-ec2/src/models/models_4.ts b/clients/client-ec2/src/models/models_4.ts
index 6869018f4a94..bd1d0b348d1d 100644
--- a/clients/client-ec2/src/models/models_4.ts
+++ b/clients/client-ec2/src/models/models_4.ts
@@ -30,6 +30,7 @@ import {
   UserIdGroupPair,
   VerifiedAccessInstance,
   VerifiedAccessTrustProvider,
+  VerifiedAccessTrustProviderFilterSensitiveLog,
 } from "./models_0";
 import {
   AttributeValue,
@@ -10700,17 +10701,17 @@ export interface DescribeTrunkInterfaceAssociationsResult {
  */
 export interface DescribeVerifiedAccessEndpointsRequest {
   /**
-   * <p>The ID of the Amazon Web Services Verified Access endpoint.</p>
+   * <p>The ID of the Verified Access endpoint.</p>
    */
   VerifiedAccessEndpointIds?: string[];
 
   /**
-   * <p>The ID of the Amazon Web Services Verified Access instance.</p>
+   * <p>The ID of the Verified Access instance.</p>
    */
   VerifiedAccessInstanceId?: string;
 
   /**
-   * <p>The ID of the Amazon Web Services Verified Access group.</p>
+   * <p>The ID of the Verified Access group.</p>
    */
   VerifiedAccessGroupId?: string;
 
@@ -10743,7 +10744,7 @@ export interface DescribeVerifiedAccessEndpointsRequest {
  */
 export interface DescribeVerifiedAccessEndpointsResult {
   /**
-   * <p>The ID of the Amazon Web Services Verified Access endpoint.</p>
+   * <p>The ID of the Verified Access endpoint.</p>
    */
   VerifiedAccessEndpoints?: VerifiedAccessEndpoint[];
 
@@ -10758,12 +10759,12 @@ export interface DescribeVerifiedAccessEndpointsResult {
  */
 export interface DescribeVerifiedAccessGroupsRequest {
   /**
-   * <p>The ID of the Amazon Web Services Verified Access groups.</p>
+   * <p>The ID of the Verified Access groups.</p>
    */
   VerifiedAccessGroupIds?: string[];
 
   /**
-   * <p>The ID of the Amazon Web Services Verified Access instance.</p>
+   * <p>The ID of the Verified Access instance.</p>
    */
   VerifiedAccessInstanceId?: string;
 
@@ -10811,7 +10812,7 @@ export interface DescribeVerifiedAccessGroupsResult {
  */
 export interface DescribeVerifiedAccessInstanceLoggingConfigurationsRequest {
   /**
-   * <p>The IDs of the Amazon Web Services Verified Access instances.</p>
+   * <p>The IDs of the Verified Access instances.</p>
    */
   VerifiedAccessInstanceIds?: string[];
 
@@ -10985,7 +10986,7 @@ export interface VerifiedAccessInstanceLoggingConfiguration {
  */
 export interface DescribeVerifiedAccessInstanceLoggingConfigurationsResult {
   /**
-   * <p>The current logging configuration for the Amazon Web Services Verified Access instances.</p>
+   * <p>The current logging configuration for the Verified Access instances.</p>
    */
   LoggingConfigurations?: VerifiedAccessInstanceLoggingConfiguration[];
 
@@ -11000,7 +11001,7 @@ export interface DescribeVerifiedAccessInstanceLoggingConfigurationsResult {
  */
 export interface DescribeVerifiedAccessInstancesRequest {
   /**
-   * <p>The IDs of the Amazon Web Services Verified Access instances.</p>
+   * <p>The IDs of the Verified Access instances.</p>
    */
   VerifiedAccessInstanceIds?: string[];
 
@@ -11033,7 +11034,7 @@ export interface DescribeVerifiedAccessInstancesRequest {
  */
 export interface DescribeVerifiedAccessInstancesResult {
   /**
-   * <p>The IDs of the Amazon Web Services Verified Access instances.</p>
+   * <p>The IDs of the Verified Access instances.</p>
    */
   VerifiedAccessInstances?: VerifiedAccessInstance[];
 
@@ -11048,7 +11049,7 @@ export interface DescribeVerifiedAccessInstancesResult {
  */
 export interface DescribeVerifiedAccessTrustProvidersRequest {
   /**
-   * <p>The IDs of the Amazon Web Services Verified Access trust providers.</p>
+   * <p>The IDs of the Verified Access trust providers.</p>
    */
   VerifiedAccessTrustProviderIds?: string[];
 
@@ -11081,7 +11082,7 @@ export interface DescribeVerifiedAccessTrustProvidersRequest {
  */
 export interface DescribeVerifiedAccessTrustProvidersResult {
   /**
-   * <p>The IDs of the Amazon Web Services Verified Access trust providers.</p>
+   * <p>The IDs of the Verified Access trust providers.</p>
    */
   VerifiedAccessTrustProviders?: VerifiedAccessTrustProvider[];
 
@@ -11341,3 +11342,17 @@ export const DescribeSpotInstanceRequestsResultFilterSensitiveLog = (obj: Descri
     SpotInstanceRequests: obj.SpotInstanceRequests.map((item) => SpotInstanceRequestFilterSensitiveLog(item)),
   }),
 });
+
+/**
+ * @internal
+ */
+export const DescribeVerifiedAccessTrustProvidersResultFilterSensitiveLog = (
+  obj: DescribeVerifiedAccessTrustProvidersResult
+): any => ({
+  ...obj,
+  ...(obj.VerifiedAccessTrustProviders && {
+    VerifiedAccessTrustProviders: obj.VerifiedAccessTrustProviders.map((item) =>
+      VerifiedAccessTrustProviderFilterSensitiveLog(item)
+    ),
+  }),
+});
diff --git a/clients/client-ec2/src/models/models_5.ts b/clients/client-ec2/src/models/models_5.ts
index 4ce8535ceecd..0ae8f7ddf33f 100644
--- a/clients/client-ec2/src/models/models_5.ts
+++ b/clients/client-ec2/src/models/models_5.ts
@@ -26,6 +26,7 @@ import {
   TransitGatewayPolicyTableAssociation,
   VerifiedAccessInstance,
   VerifiedAccessTrustProvider,
+  VerifiedAccessTrustProviderFilterSensitiveLog,
   VpcCidrBlockAssociation,
   VpcIpv6CidrBlockAssociation,
   VpcPeeringConnection,
@@ -67,6 +68,7 @@ import {
   AttributeBooleanValue,
   BootModeValues,
   ConversionTask,
+  ConversionTaskFilterSensitiveLog,
   ExportTaskS3Location,
   FastLaunchLaunchTemplateSpecificationResponse,
   FastLaunchResourceType,
@@ -1917,12 +1919,12 @@ export interface DetachNetworkInterfaceRequest {
  */
 export interface DetachVerifiedAccessTrustProviderRequest {
   /**
-   * <p>The ID of the Amazon Web Services Verified Access instance.</p>
+   * <p>The ID of the Verified Access instance.</p>
    */
   VerifiedAccessInstanceId: string | undefined;
 
   /**
-   * <p>The ID of the Amazon Web Services Verified Access trust provider.</p>
+   * <p>The ID of the Verified Access trust provider.</p>
    */
   VerifiedAccessTrustProviderId: string | undefined;
 
@@ -1945,12 +1947,12 @@ export interface DetachVerifiedAccessTrustProviderRequest {
  */
 export interface DetachVerifiedAccessTrustProviderResult {
   /**
-   * <p>The ID of the Amazon Web Services Verified Access trust provider.</p>
+   * <p>The ID of the Verified Access trust provider.</p>
    */
   VerifiedAccessTrustProvider?: VerifiedAccessTrustProvider;
 
   /**
-   * <p>The ID of the Amazon Web Services Verified Access instance.</p>
+   * <p>The ID of the Verified Access instance.</p>
    */
   VerifiedAccessInstance?: VerifiedAccessInstance;
 }
@@ -6929,7 +6931,7 @@ export interface GetTransitGatewayRouteTablePropagationsResult {
  */
 export interface GetVerifiedAccessEndpointPolicyRequest {
   /**
-   * <p>The ID of the Amazon Web Services Verified Access endpoint.</p>
+   * <p>The ID of the Verified Access endpoint.</p>
    */
   VerifiedAccessEndpointId: string | undefined;
 
@@ -6951,7 +6953,7 @@ export interface GetVerifiedAccessEndpointPolicyResult {
   PolicyEnabled?: boolean;
 
   /**
-   * <p>The Amazon Web Services Verified Access policy document.</p>
+   * <p>The Verified Access policy document.</p>
    */
   PolicyDocument?: string;
 }
@@ -6961,7 +6963,7 @@ export interface GetVerifiedAccessEndpointPolicyResult {
  */
 export interface GetVerifiedAccessGroupPolicyRequest {
   /**
-   * <p>The ID of the Amazon Web Services Verified Access group.</p>
+   * <p>The ID of the Verified Access group.</p>
    */
   VerifiedAccessGroupId: string | undefined;
 
@@ -6983,7 +6985,7 @@ export interface GetVerifiedAccessGroupPolicyResult {
   PolicyEnabled?: boolean;
 
   /**
-   * <p>The Amazon Web Services Verified Access policy document.</p>
+   * <p>The Verified Access policy document.</p>
    */
   PolicyDocument?: string;
 }
@@ -7754,6 +7756,18 @@ export interface ImportKeyPairResult {
   Tags?: Tag[];
 }
 
+/**
+ * @internal
+ */
+export const DetachVerifiedAccessTrustProviderResultFilterSensitiveLog = (
+  obj: DetachVerifiedAccessTrustProviderResult
+): any => ({
+  ...obj,
+  ...(obj.VerifiedAccessTrustProvider && {
+    VerifiedAccessTrustProvider: VerifiedAccessTrustProviderFilterSensitiveLog(obj.VerifiedAccessTrustProvider),
+  }),
+});
+
 /**
  * @internal
  */
@@ -7815,3 +7829,11 @@ export const ImportInstanceRequestFilterSensitiveLog = (obj: ImportInstanceReque
     LaunchSpecification: ImportInstanceLaunchSpecificationFilterSensitiveLog(obj.LaunchSpecification),
   }),
 });
+
+/**
+ * @internal
+ */
+export const ImportInstanceResultFilterSensitiveLog = (obj: ImportInstanceResult): any => ({
+  ...obj,
+  ...(obj.ConversionTask && { ConversionTask: ConversionTaskFilterSensitiveLog(obj.ConversionTask) }),
+});
diff --git a/clients/client-ec2/src/models/models_6.ts b/clients/client-ec2/src/models/models_6.ts
index 35a048513f52..e471b7c2fd6f 100644
--- a/clients/client-ec2/src/models/models_6.ts
+++ b/clients/client-ec2/src/models/models_6.ts
@@ -35,6 +35,7 @@ import {
   UnsuccessfulItem,
   VerifiedAccessInstance,
   VerifiedAccessTrustProvider,
+  VerifiedAccessTrustProviderFilterSensitiveLog,
 } from "./models_0";
 import {
   AttributeValue,
@@ -107,6 +108,7 @@ import {
   AttributeBooleanValue,
   BootModeValues,
   ConversionTask,
+  ConversionTaskFilterSensitiveLog,
   Filter,
   FpgaImageAttribute,
   FpgaImageAttributeName,
@@ -3371,7 +3373,8 @@ export interface ModifyVerifiedAccessEndpointLoadBalancerOptions {
 
 /**
  * @public
- * <p>Options for a network-interface type Verified Access endpoint.</p>
+ * <p>Describes the options when modifying a Verified Access endpoint with the
+ *             <code>network-interface</code> type.</p>
  */
 export interface ModifyVerifiedAccessEndpointEniOptions {
   /**
@@ -3390,17 +3393,17 @@ export interface ModifyVerifiedAccessEndpointEniOptions {
  */
 export interface ModifyVerifiedAccessEndpointRequest {
   /**
-   * <p>The ID of the Amazon Web Services Verified Access endpoint.</p>
+   * <p>The ID of the Verified Access endpoint.</p>
    */
   VerifiedAccessEndpointId: string | undefined;
 
   /**
-   * <p>The ID of the Amazon Web Services Verified Access group.</p>
+   * <p>The ID of the Verified Access group.</p>
    */
   VerifiedAccessGroupId?: string;
 
   /**
-   * <p>The load balancer details if creating the Amazon Web Services Verified Access endpoint as
+   * <p>The load balancer details if creating the Verified Access endpoint as
    *          <code>load-balancer</code>type.</p>
    */
   LoadBalancerOptions?: ModifyVerifiedAccessEndpointLoadBalancerOptions;
@@ -3411,7 +3414,7 @@ export interface ModifyVerifiedAccessEndpointRequest {
   NetworkInterfaceOptions?: ModifyVerifiedAccessEndpointEniOptions;
 
   /**
-   * <p>A description for the Amazon Web Services Verified Access endpoint.</p>
+   * <p>A description for the Verified Access endpoint.</p>
    */
   Description?: string;
 
@@ -3434,7 +3437,7 @@ export interface ModifyVerifiedAccessEndpointRequest {
  */
 export interface ModifyVerifiedAccessEndpointResult {
   /**
-   * <p>The Amazon Web Services Verified Access endpoint details.</p>
+   * <p>The Verified Access endpoint details.</p>
    */
   VerifiedAccessEndpoint?: VerifiedAccessEndpoint;
 }
@@ -3444,7 +3447,7 @@ export interface ModifyVerifiedAccessEndpointResult {
  */
 export interface ModifyVerifiedAccessEndpointPolicyRequest {
   /**
-   * <p>The ID of the Amazon Web Services Verified Access endpoint.</p>
+   * <p>The ID of the Verified Access endpoint.</p>
    */
   VerifiedAccessEndpointId: string | undefined;
 
@@ -3454,7 +3457,7 @@ export interface ModifyVerifiedAccessEndpointPolicyRequest {
   PolicyEnabled: boolean | undefined;
 
   /**
-   * <p>The Amazon Web Services Verified Access policy document.</p>
+   * <p>The Verified Access policy document.</p>
    */
   PolicyDocument?: string;
 
@@ -3482,7 +3485,7 @@ export interface ModifyVerifiedAccessEndpointPolicyResult {
   PolicyEnabled?: boolean;
 
   /**
-   * <p>The Amazon Web Services Verified Access policy document.</p>
+   * <p>The Verified Access policy document.</p>
    */
   PolicyDocument?: string;
 }
@@ -3492,17 +3495,17 @@ export interface ModifyVerifiedAccessEndpointPolicyResult {
  */
 export interface ModifyVerifiedAccessGroupRequest {
   /**
-   * <p>The ID of the Amazon Web Services Verified Access group.</p>
+   * <p>The ID of the Verified Access group.</p>
    */
   VerifiedAccessGroupId: string | undefined;
 
   /**
-   * <p>The ID of the Amazon Web Services Verified Access instance.</p>
+   * <p>The ID of the Verified Access instance.</p>
    */
   VerifiedAccessInstanceId?: string;
 
   /**
-   * <p>A description for the Amazon Web Services Verified Access group.</p>
+   * <p>A description for the Verified Access group.</p>
    */
   Description?: string;
 
@@ -3525,7 +3528,7 @@ export interface ModifyVerifiedAccessGroupRequest {
  */
 export interface ModifyVerifiedAccessGroupResult {
   /**
-   * <p>Details of Amazon Web Services Verified Access group.</p>
+   * <p>Details of Verified Access group.</p>
    */
   VerifiedAccessGroup?: VerifiedAccessGroup;
 }
@@ -3535,7 +3538,7 @@ export interface ModifyVerifiedAccessGroupResult {
  */
 export interface ModifyVerifiedAccessGroupPolicyRequest {
   /**
-   * <p>The ID of the Amazon Web Services Verified Access group.</p>
+   * <p>The ID of the Verified Access group.</p>
    */
   VerifiedAccessGroupId: string | undefined;
 
@@ -3545,7 +3548,7 @@ export interface ModifyVerifiedAccessGroupPolicyRequest {
   PolicyEnabled: boolean | undefined;
 
   /**
-   * <p>The Amazon Web Services Verified Access policy document.</p>
+   * <p>The Verified Access policy document.</p>
    */
   PolicyDocument?: string;
 
@@ -3573,7 +3576,7 @@ export interface ModifyVerifiedAccessGroupPolicyResult {
   PolicyEnabled?: boolean;
 
   /**
-   * <p>The Amazon Web Services Verified Access policy document.</p>
+   * <p>The Verified Access policy document.</p>
    */
   PolicyDocument?: string;
 }
@@ -3583,12 +3586,12 @@ export interface ModifyVerifiedAccessGroupPolicyResult {
  */
 export interface ModifyVerifiedAccessInstanceRequest {
   /**
-   * <p>The ID of the Amazon Web Services Verified Access instance.</p>
+   * <p>The ID of the Verified Access instance.</p>
    */
   VerifiedAccessInstanceId: string | undefined;
 
   /**
-   * <p>A description for the Amazon Web Services Verified Access instance.</p>
+   * <p>A description for the Verified Access instance.</p>
    */
   Description?: string;
 
@@ -3611,7 +3614,7 @@ export interface ModifyVerifiedAccessInstanceRequest {
  */
 export interface ModifyVerifiedAccessInstanceResult {
   /**
-   * <p>The ID of the Amazon Web Services Verified Access instance.</p>
+   * <p>The ID of the Verified Access instance.</p>
    */
   VerifiedAccessInstance?: VerifiedAccessInstance;
 }
@@ -3700,12 +3703,12 @@ export interface VerifiedAccessLogOptions {
  */
 export interface ModifyVerifiedAccessInstanceLoggingConfigurationRequest {
   /**
-   * <p>The ID of the Amazon Web Services Verified Access instance.</p>
+   * <p>The ID of the Verified Access instance.</p>
    */
   VerifiedAccessInstanceId: string | undefined;
 
   /**
-   * <p>The configuration options for Amazon Web Services Verified Access instances.</p>
+   * <p>The configuration options for Verified Access instances.</p>
    */
   AccessLogs: VerifiedAccessLogOptions | undefined;
 
@@ -3728,17 +3731,46 @@ export interface ModifyVerifiedAccessInstanceLoggingConfigurationRequest {
  */
 export interface ModifyVerifiedAccessInstanceLoggingConfigurationResult {
   /**
-   * <p>The logging configuration for Amazon Web Services Verified Access instance.</p>
+   * <p>The logging configuration for the Verified Access instance.</p>
    */
   LoggingConfiguration?: VerifiedAccessInstanceLoggingConfiguration;
 }
 
 /**
  * @public
- * <p>OpenID Connect options for an <code>oidc</code>-type, user-identity based trust
- *          provider.</p>
+ * <p>Options for an OpenID Connect-compatible user-identity trust provider.</p>
  */
 export interface ModifyVerifiedAccessTrustProviderOidcOptions {
+  /**
+   * <p>The OIDC issuer.</p>
+   */
+  Issuer?: string;
+
+  /**
+   * <p>The OIDC authorization endpoint.</p>
+   */
+  AuthorizationEndpoint?: string;
+
+  /**
+   * <p>The OIDC token endpoint.</p>
+   */
+  TokenEndpoint?: string;
+
+  /**
+   * <p>The OIDC user info endpoint.</p>
+   */
+  UserInfoEndpoint?: string;
+
+  /**
+   * <p>The client identifier.</p>
+   */
+  ClientId?: string;
+
+  /**
+   * <p>The client secret.</p>
+   */
+  ClientSecret?: string;
+
   /**
    * <p>OpenID Connect (OIDC) scopes are used by an application during authentication to authorize access to a user's details. Each scope returns a specific set of user attributes.</p>
    */
@@ -3750,17 +3782,17 @@ export interface ModifyVerifiedAccessTrustProviderOidcOptions {
  */
 export interface ModifyVerifiedAccessTrustProviderRequest {
   /**
-   * <p>The ID of the Amazon Web Services Verified Access trust provider.</p>
+   * <p>The ID of the Verified Access trust provider.</p>
    */
   VerifiedAccessTrustProviderId: string | undefined;
 
   /**
-   * <p>The OpenID Connect details for an <code>oidc</code>-type, user-identity based trust provider.</p>
+   * <p>The options for an OpenID Connect-compatible user-identity trust provider.</p>
    */
   OidcOptions?: ModifyVerifiedAccessTrustProviderOidcOptions;
 
   /**
-   * <p>A description for the Amazon Web Services Verified Access trust provider.</p>
+   * <p>A description for the Verified Access trust provider.</p>
    */
   Description?: string;
 
@@ -3783,7 +3815,7 @@ export interface ModifyVerifiedAccessTrustProviderRequest {
  */
 export interface ModifyVerifiedAccessTrustProviderResult {
   /**
-   * <p>The ID of the Amazon Web Services Verified Access trust provider.</p>
+   * <p>The ID of the Verified Access trust provider.</p>
    */
   VerifiedAccessTrustProvider?: VerifiedAccessTrustProvider;
 }
@@ -8528,6 +8560,48 @@ export const ImportVolumeRequestFilterSensitiveLog = (obj: ImportVolumeRequest):
   ...(obj.Image && { Image: DiskImageDetailFilterSensitiveLog(obj.Image) }),
 });
 
+/**
+ * @internal
+ */
+export const ImportVolumeResultFilterSensitiveLog = (obj: ImportVolumeResult): any => ({
+  ...obj,
+  ...(obj.ConversionTask && { ConversionTask: ConversionTaskFilterSensitiveLog(obj.ConversionTask) }),
+});
+
+/**
+ * @internal
+ */
+export const ModifyVerifiedAccessTrustProviderOidcOptionsFilterSensitiveLog = (
+  obj: ModifyVerifiedAccessTrustProviderOidcOptions
+): any => ({
+  ...obj,
+  ...(obj.ClientSecret && { ClientSecret: SENSITIVE_STRING }),
+});
+
+/**
+ * @internal
+ */
+export const ModifyVerifiedAccessTrustProviderRequestFilterSensitiveLog = (
+  obj: ModifyVerifiedAccessTrustProviderRequest
+): any => ({
+  ...obj,
+  ...(obj.OidcOptions && {
+    OidcOptions: ModifyVerifiedAccessTrustProviderOidcOptionsFilterSensitiveLog(obj.OidcOptions),
+  }),
+});
+
+/**
+ * @internal
+ */
+export const ModifyVerifiedAccessTrustProviderResultFilterSensitiveLog = (
+  obj: ModifyVerifiedAccessTrustProviderResult
+): any => ({
+  ...obj,
+  ...(obj.VerifiedAccessTrustProvider && {
+    VerifiedAccessTrustProvider: VerifiedAccessTrustProviderFilterSensitiveLog(obj.VerifiedAccessTrustProvider),
+  }),
+});
+
 /**
  * @internal
  */
diff --git a/clients/client-ec2/src/protocols/Aws_ec2.ts b/clients/client-ec2/src/protocols/Aws_ec2.ts
index 9969dbbd2134..557107ad16d7 100644
--- a/clients/client-ec2/src/protocols/Aws_ec2.ts
+++ b/clients/client-ec2/src/protocols/Aws_ec2.ts
@@ -57894,6 +57894,24 @@ const se_ModifyVerifiedAccessTrustProviderOidcOptions = (
   context: __SerdeContext
 ): any => {
   const entries: any = {};
+  if (input.Issuer != null) {
+    entries["Issuer"] = input.Issuer;
+  }
+  if (input.AuthorizationEndpoint != null) {
+    entries["AuthorizationEndpoint"] = input.AuthorizationEndpoint;
+  }
+  if (input.TokenEndpoint != null) {
+    entries["TokenEndpoint"] = input.TokenEndpoint;
+  }
+  if (input.UserInfoEndpoint != null) {
+    entries["UserInfoEndpoint"] = input.UserInfoEndpoint;
+  }
+  if (input.ClientId != null) {
+    entries["ClientId"] = input.ClientId;
+  }
+  if (input.ClientSecret != null) {
+    entries["ClientSecret"] = input.ClientSecret;
+  }
   if (input.Scope != null) {
     entries["Scope"] = input.Scope;
   }
diff --git a/codegen/sdk-codegen/aws-models/ec2.json b/codegen/sdk-codegen/aws-models/ec2.json
index 703fccb1eb33..1a6979b35a10 100644
--- a/codegen/sdk-codegen/aws-models/ec2.json
+++ b/codegen/sdk-codegen/aws-models/ec2.json
@@ -7389,7 +7389,7 @@
         "target": "com.amazonaws.ec2#AttachVerifiedAccessTrustProviderResult"
       },
       "traits": {
-        "smithy.api#documentation": "<p>A trust provider is a third-party entity that creates, maintains, and manages identity\n         information for users and devices. One or more trust providers can be attached to an Amazon Web Services Verified Access\n         instance.</p>"
+        "smithy.api#documentation": "<p>Attaches the specified Amazon Web Services Verified Access trust provider to the specified Amazon Web Services Verified Access instance.</p>"
       }
     },
     "com.amazonaws.ec2#AttachVerifiedAccessTrustProviderRequest": {
@@ -7399,7 +7399,7 @@
           "target": "com.amazonaws.ec2#VerifiedAccessInstanceId",
           "traits": {
             "smithy.api#clientOptional": {},
-            "smithy.api#documentation": "<p>The ID of the Amazon Web Services Verified Access instance.</p>",
+            "smithy.api#documentation": "<p>The ID of the Verified Access instance.</p>",
             "smithy.api#required": {}
           }
         },
@@ -7407,7 +7407,7 @@
           "target": "com.amazonaws.ec2#VerifiedAccessTrustProviderId",
           "traits": {
             "smithy.api#clientOptional": {},
-            "smithy.api#documentation": "<p>The ID of the Amazon Web Services Verified Access trust provider.</p>",
+            "smithy.api#documentation": "<p>The ID of the Verified Access trust provider.</p>",
             "smithy.api#required": {}
           }
         },
@@ -7438,7 +7438,7 @@
           "target": "com.amazonaws.ec2#VerifiedAccessTrustProvider",
           "traits": {
             "aws.protocols#ec2QueryName": "VerifiedAccessTrustProvider",
-            "smithy.api#documentation": "<p>The ID of the Amazon Web Services Verified Access trust provider.</p>",
+            "smithy.api#documentation": "<p>The ID of the Verified Access trust provider.</p>",
             "smithy.api#xmlName": "verifiedAccessTrustProvider"
           }
         },
@@ -7446,7 +7446,7 @@
           "target": "com.amazonaws.ec2#VerifiedAccessInstance",
           "traits": {
             "aws.protocols#ec2QueryName": "VerifiedAccessInstance",
-            "smithy.api#documentation": "<p>The ID of the Amazon Web Services Verified Access instance.</p>",
+            "smithy.api#documentation": "<p>The ID of the Verified Access instance.</p>",
             "smithy.api#xmlName": "verifiedAccessInstance"
           }
         }
@@ -11083,6 +11083,12 @@
         "smithy.api#documentation": "<p>Current state of options for customizable text banner that will be displayed on\n\t\t\tAmazon Web Services provided clients when a VPN session is established.</p>"
       }
     },
+    "com.amazonaws.ec2#ClientSecretType": {
+      "type": "string",
+      "traits": {
+        "smithy.api#sensitive": {}
+      }
+    },
     "com.amazonaws.ec2#ClientVpnAssociationId": {
       "type": "string"
     },
@@ -18821,7 +18827,7 @@
         }
       },
       "traits": {
-        "smithy.api#documentation": "<p>Options for a network interface-type endpoint.</p>"
+        "smithy.api#documentation": "<p>Describes the network interface options when creating an Amazon Web Services Verified Access endpoint using the\n            <code>network-interface</code> type.</p>"
       }
     },
     "com.amazonaws.ec2#CreateVerifiedAccessEndpointLoadBalancerOptions": {
@@ -18856,7 +18862,7 @@
         }
       },
       "traits": {
-        "smithy.api#documentation": "<p>Describes a load balancer when creating an Amazon Web Services Verified Access endpoint using the\n            <code>load-balancer</code> type.</p>"
+        "smithy.api#documentation": "<p>Describes the load balancer options when creating an Amazon Web Services Verified Access endpoint using the\n            <code>load-balancer</code> type.</p>"
       }
     },
     "com.amazonaws.ec2#CreateVerifiedAccessEndpointRequest": {
@@ -18874,7 +18880,7 @@
           "target": "com.amazonaws.ec2#VerifiedAccessEndpointType",
           "traits": {
             "smithy.api#clientOptional": {},
-            "smithy.api#documentation": "<p>The type of Amazon Web Services Verified Access endpoint to create.</p>",
+            "smithy.api#documentation": "<p>The type of Verified Access endpoint to create.</p>",
             "smithy.api#required": {}
           }
         },
@@ -18882,7 +18888,7 @@
           "target": "com.amazonaws.ec2#VerifiedAccessEndpointAttachmentType",
           "traits": {
             "smithy.api#clientOptional": {},
-            "smithy.api#documentation": "<p>The Amazon Web Services network component Verified Access attaches to.</p>",
+            "smithy.api#documentation": "<p>The type of attachment.</p>",
             "smithy.api#required": {}
           }
         },
@@ -18906,45 +18912,45 @@
           "target": "com.amazonaws.ec2#String",
           "traits": {
             "smithy.api#clientOptional": {},
-            "smithy.api#documentation": "<p>A custom identifier that gets prepended to a DNS name that is generated for the endpoint.</p>",
+            "smithy.api#documentation": "<p>A custom identifier that is prepended to the DNS name that is generated for the\n         endpoint.</p>",
             "smithy.api#required": {}
           }
         },
         "SecurityGroupIds": {
           "target": "com.amazonaws.ec2#SecurityGroupIdList",
           "traits": {
-            "smithy.api#documentation": "<p>The Amazon EC2 security groups to associate with the Amazon Web Services Verified Access endpoint.</p>",
+            "smithy.api#documentation": "<p>The IDs of the security groups to associate with the Verified Access endpoint.</p>",
             "smithy.api#xmlName": "SecurityGroupId"
           }
         },
         "LoadBalancerOptions": {
           "target": "com.amazonaws.ec2#CreateVerifiedAccessEndpointLoadBalancerOptions",
           "traits": {
-            "smithy.api#documentation": "<p>The load balancer details if creating the Amazon Web Services Verified Access endpoint as\n         <code>load-balancer</code>type.</p>"
+            "smithy.api#documentation": "<p>The load balancer details. This parameter is required if the endpoint type is\n            <code>load-balancer</code>.</p>"
           }
         },
         "NetworkInterfaceOptions": {
           "target": "com.amazonaws.ec2#CreateVerifiedAccessEndpointEniOptions",
           "traits": {
-            "smithy.api#documentation": "<p>The network interface details if creating the Amazon Web Services Verified Access endpoint as\n            <code>network-interface</code>type.</p>"
+            "smithy.api#documentation": "<p>The network interface details. This parameter is required if the endpoint type is\n            <code>network-interface</code>.</p>"
           }
         },
         "Description": {
           "target": "com.amazonaws.ec2#String",
           "traits": {
-            "smithy.api#documentation": "<p>A description for the Amazon Web Services Verified Access endpoint.</p>"
+            "smithy.api#documentation": "<p>A description for the Verified Access endpoint.</p>"
           }
         },
         "PolicyDocument": {
           "target": "com.amazonaws.ec2#String",
           "traits": {
-            "smithy.api#documentation": "<p>The Amazon Web Services Verified Access policy document.</p>"
+            "smithy.api#documentation": "<p>The Verified Access policy document.</p>"
           }
         },
         "TagSpecifications": {
           "target": "com.amazonaws.ec2#TagSpecificationList",
           "traits": {
-            "smithy.api#documentation": "<p>The tags to assign to the Amazon Web Services Verified Access endpoint.</p>",
+            "smithy.api#documentation": "<p>The tags to assign to the Verified Access endpoint.</p>",
             "smithy.api#xmlName": "TagSpecification"
           }
         },
@@ -18975,7 +18981,7 @@
           "target": "com.amazonaws.ec2#VerifiedAccessEndpoint",
           "traits": {
             "aws.protocols#ec2QueryName": "VerifiedAccessEndpoint",
-            "smithy.api#documentation": "<p>The ID of the Amazon Web Services Verified Access endpoint.</p>",
+            "smithy.api#documentation": "<p>The ID of the Verified Access endpoint.</p>",
             "smithy.api#xmlName": "verifiedAccessEndpoint"
           }
         }
@@ -18999,7 +19005,7 @@
         "target": "com.amazonaws.ec2#CreateVerifiedAccessGroupResult"
       },
       "traits": {
-        "smithy.api#documentation": "<p>An Amazon Web Services Verified Access group is a collection of Amazon Web Services Verified Access endpoints who's associated applications have\n         similar security requirements. Each instance within an Amazon Web Services Verified Access group shares an Amazon Web Services Verified Access policy. For\n         example, you can group all Amazon Web Services Verified Access instances associated with “sales” applications together and\n         use one common Amazon Web Services Verified Access policy.</p>"
+        "smithy.api#documentation": "<p>An Amazon Web Services Verified Access group is a collection of Amazon Web Services Verified Access endpoints who's associated applications have\n         similar security requirements. Each instance within a Verified Access group shares an Verified Access policy. For\n         example, you can group all Verified Access instances associated with \"sales\" applications together and\n         use one common Verified Access policy.</p>"
       }
     },
     "com.amazonaws.ec2#CreateVerifiedAccessGroupRequest": {
@@ -19009,26 +19015,26 @@
           "target": "com.amazonaws.ec2#VerifiedAccessInstanceId",
           "traits": {
             "smithy.api#clientOptional": {},
-            "smithy.api#documentation": "<p>The ID of the Amazon Web Services Verified Access instance.</p>",
+            "smithy.api#documentation": "<p>The ID of the Verified Access instance.</p>",
             "smithy.api#required": {}
           }
         },
         "Description": {
           "target": "com.amazonaws.ec2#String",
           "traits": {
-            "smithy.api#documentation": "<p>A description for the Amazon Web Services Verified Access group.</p>"
+            "smithy.api#documentation": "<p>A description for the Verified Access group.</p>"
           }
         },
         "PolicyDocument": {
           "target": "com.amazonaws.ec2#String",
           "traits": {
-            "smithy.api#documentation": "<p>The Amazon Web Services Verified Access policy document.</p>"
+            "smithy.api#documentation": "<p>The Verified Access policy document.</p>"
           }
         },
         "TagSpecifications": {
           "target": "com.amazonaws.ec2#TagSpecificationList",
           "traits": {
-            "smithy.api#documentation": "<p>The tags to assign to the Amazon Web Services Verified Access group.</p>",
+            "smithy.api#documentation": "<p>The tags to assign to the Verified Access group.</p>",
             "smithy.api#xmlName": "TagSpecification"
           }
         },
@@ -19083,13 +19089,13 @@
         "Description": {
           "target": "com.amazonaws.ec2#String",
           "traits": {
-            "smithy.api#documentation": "<p>A description for the Amazon Web Services Verified Access instance.</p>"
+            "smithy.api#documentation": "<p>A description for the Verified Access instance.</p>"
           }
         },
         "TagSpecifications": {
           "target": "com.amazonaws.ec2#TagSpecificationList",
           "traits": {
-            "smithy.api#documentation": "<p>The tags to assign to the Amazon Web Services Verified Access instance.</p>",
+            "smithy.api#documentation": "<p>The tags to assign to the Verified Access instance.</p>",
             "smithy.api#xmlName": "TagSpecification"
           }
         },
@@ -19120,7 +19126,7 @@
           "target": "com.amazonaws.ec2#VerifiedAccessInstance",
           "traits": {
             "aws.protocols#ec2QueryName": "VerifiedAccessInstance",
-            "smithy.api#documentation": "<p>The ID of the Amazon Web Services Verified Access instance.</p>",
+            "smithy.api#documentation": "<p>The ID of the Verified Access instance.</p>",
             "smithy.api#xmlName": "verifiedAccessInstance"
           }
         }
@@ -19135,7 +19141,7 @@
         "target": "com.amazonaws.ec2#CreateVerifiedAccessTrustProviderResult"
       },
       "traits": {
-        "smithy.api#documentation": "<p>A trust provider is a third-party entity that creates, maintains, and manages identity\n         information for users and devices. When an application request is made, the identity\n         information sent by the trust provider will be evaluated by Amazon Web Services Verified Access, before allowing or\n         denying the application request.</p>"
+        "smithy.api#documentation": "<p>A trust provider is a third-party entity that creates, maintains, and manages identity\n         information for users and devices. When an application request is made, the identity\n         information sent by the trust provider is evaluated by Verified Access before allowing or\n         denying the application request.</p>"
       }
     },
     "com.amazonaws.ec2#CreateVerifiedAccessTrustProviderDeviceOptions": {
@@ -19149,7 +19155,7 @@
         }
       },
       "traits": {
-        "smithy.api#documentation": "<p>Options for a device-identity type trust provider.</p>"
+        "smithy.api#documentation": "<p>Describes the options when creating an Amazon Web Services Verified Access trust provider using the\n            <code>device</code> type.</p>"
       }
     },
     "com.amazonaws.ec2#CreateVerifiedAccessTrustProviderOidcOptions": {
@@ -19186,7 +19192,7 @@
           }
         },
         "ClientSecret": {
-          "target": "com.amazonaws.ec2#String",
+          "target": "com.amazonaws.ec2#ClientSecretType",
           "traits": {
             "smithy.api#documentation": "<p>The client secret.</p>"
           }
@@ -19199,7 +19205,7 @@
         }
       },
       "traits": {
-        "smithy.api#documentation": "<p>Options for an OIDC-based, user-identity type trust provider.</p>"
+        "smithy.api#documentation": "<p>Describes the options when creating an Amazon Web Services Verified Access trust provider using the <code>user</code>\n         type.</p>"
       }
     },
     "com.amazonaws.ec2#CreateVerifiedAccessTrustProviderRequest": {
@@ -19209,32 +19215,32 @@
           "target": "com.amazonaws.ec2#TrustProviderType",
           "traits": {
             "smithy.api#clientOptional": {},
-            "smithy.api#documentation": "<p>The type of trust provider can be either user or device-based.</p>",
+            "smithy.api#documentation": "<p>The type of trust provider.</p>",
             "smithy.api#required": {}
           }
         },
         "UserTrustProviderType": {
           "target": "com.amazonaws.ec2#UserTrustProviderType",
           "traits": {
-            "smithy.api#documentation": "<p>The type of user-based trust provider.</p>"
+            "smithy.api#documentation": "<p>The type of user-based trust provider. This parameter is required when the provider type\n         is <code>user</code>.</p>"
           }
         },
         "DeviceTrustProviderType": {
           "target": "com.amazonaws.ec2#DeviceTrustProviderType",
           "traits": {
-            "smithy.api#documentation": "<p>The type of device-based trust provider.</p>"
+            "smithy.api#documentation": "<p>The type of device-based trust provider. This parameter is required when the provider\n         type is <code>device</code>.</p>"
           }
         },
         "OidcOptions": {
           "target": "com.amazonaws.ec2#CreateVerifiedAccessTrustProviderOidcOptions",
           "traits": {
-            "smithy.api#documentation": "<p>The OpenID Connect details for an <code>oidc</code>-type, user-identity based trust provider.</p>"
+            "smithy.api#documentation": "<p>The options for a OpenID Connect-compatible user-identity trust provider. This parameter\n         is required when the provider type is <code>user</code>.</p>"
           }
         },
         "DeviceOptions": {
           "target": "com.amazonaws.ec2#CreateVerifiedAccessTrustProviderDeviceOptions",
           "traits": {
-            "smithy.api#documentation": "<p>The options for device identity based trust providers.</p>"
+            "smithy.api#documentation": "<p>The options for a device-based trust provider. This parameter is required when the\n         provider type is <code>device</code>.</p>"
           }
         },
         "PolicyReferenceName": {
@@ -19248,13 +19254,13 @@
         "Description": {
           "target": "com.amazonaws.ec2#String",
           "traits": {
-            "smithy.api#documentation": "<p>A description for the Amazon Web Services Verified Access trust provider.</p>"
+            "smithy.api#documentation": "<p>A description for the Verified Access trust provider.</p>"
           }
         },
         "TagSpecifications": {
           "target": "com.amazonaws.ec2#TagSpecificationList",
           "traits": {
-            "smithy.api#documentation": "<p>The tags to assign to the Amazon Web Services Verified Access trust provider.</p>",
+            "smithy.api#documentation": "<p>The tags to assign to the Verified Access trust provider.</p>",
             "smithy.api#xmlName": "TagSpecification"
           }
         },
@@ -19285,7 +19291,7 @@
           "target": "com.amazonaws.ec2#VerifiedAccessTrustProvider",
           "traits": {
             "aws.protocols#ec2QueryName": "VerifiedAccessTrustProvider",
-            "smithy.api#documentation": "<p>The ID of the Amazon Web Services Verified Access trust provider.</p>",
+            "smithy.api#documentation": "<p>The ID of the Verified Access trust provider.</p>",
             "smithy.api#xmlName": "verifiedAccessTrustProvider"
           }
         }
@@ -23835,7 +23841,7 @@
           "target": "com.amazonaws.ec2#VerifiedAccessEndpointId",
           "traits": {
             "smithy.api#clientOptional": {},
-            "smithy.api#documentation": "<p>The ID of the Amazon Web Services Verified Access endpoint.</p>",
+            "smithy.api#documentation": "<p>The ID of the Verified Access endpoint.</p>",
             "smithy.api#required": {}
           }
         },
@@ -23866,7 +23872,7 @@
           "target": "com.amazonaws.ec2#VerifiedAccessEndpoint",
           "traits": {
             "aws.protocols#ec2QueryName": "VerifiedAccessEndpoint",
-            "smithy.api#documentation": "<p>The ID of the Amazon Web Services Verified Access endpoint.</p>",
+            "smithy.api#documentation": "<p>The ID of the Verified Access endpoint.</p>",
             "smithy.api#xmlName": "verifiedAccessEndpoint"
           }
         }
@@ -23891,7 +23897,7 @@
           "target": "com.amazonaws.ec2#VerifiedAccessGroupId",
           "traits": {
             "smithy.api#clientOptional": {},
-            "smithy.api#documentation": "<p>The ID of the Amazon Web Services Verified Access group.</p>",
+            "smithy.api#documentation": "<p>The ID of the Verified Access group.</p>",
             "smithy.api#required": {}
           }
         },
@@ -23922,7 +23928,7 @@
           "target": "com.amazonaws.ec2#VerifiedAccessGroup",
           "traits": {
             "aws.protocols#ec2QueryName": "VerifiedAccessGroup",
-            "smithy.api#documentation": "<p>The ID of the Amazon Web Services Verified Access group.</p>",
+            "smithy.api#documentation": "<p>The ID of the Verified Access group.</p>",
             "smithy.api#xmlName": "verifiedAccessGroup"
           }
         }
@@ -23947,7 +23953,7 @@
           "target": "com.amazonaws.ec2#VerifiedAccessInstanceId",
           "traits": {
             "smithy.api#clientOptional": {},
-            "smithy.api#documentation": "<p>The ID of the Amazon Web Services Verified Access instance.</p>",
+            "smithy.api#documentation": "<p>The ID of the Verified Access instance.</p>",
             "smithy.api#required": {}
           }
         },
@@ -23978,7 +23984,7 @@
           "target": "com.amazonaws.ec2#VerifiedAccessInstance",
           "traits": {
             "aws.protocols#ec2QueryName": "VerifiedAccessInstance",
-            "smithy.api#documentation": "<p>The ID of the Amazon Web Services Verified Access instance.</p>",
+            "smithy.api#documentation": "<p>The ID of the Verified Access instance.</p>",
             "smithy.api#xmlName": "verifiedAccessInstance"
           }
         }
@@ -24003,7 +24009,7 @@
           "target": "com.amazonaws.ec2#VerifiedAccessTrustProviderId",
           "traits": {
             "smithy.api#clientOptional": {},
-            "smithy.api#documentation": "<p>The ID of the Amazon Web Services Verified Access trust provider.</p>",
+            "smithy.api#documentation": "<p>The ID of the Verified Access trust provider.</p>",
             "smithy.api#required": {}
           }
         },
@@ -24034,7 +24040,7 @@
           "target": "com.amazonaws.ec2#VerifiedAccessTrustProvider",
           "traits": {
             "aws.protocols#ec2QueryName": "VerifiedAccessTrustProvider",
-            "smithy.api#documentation": "<p>The ID of the Amazon Web Services Verified Access trust provider.</p>",
+            "smithy.api#documentation": "<p>The ID of the Verified Access trust provider.</p>",
             "smithy.api#xmlName": "verifiedAccessTrustProvider"
           }
         }
@@ -36169,7 +36175,7 @@
         "target": "com.amazonaws.ec2#DescribeVerifiedAccessEndpointsResult"
       },
       "traits": {
-        "smithy.api#documentation": "<p>Describe Amazon Web Services Verified Access endpoints.</p>",
+        "smithy.api#documentation": "<p>Describes the specified Amazon Web Services Verified Access endpoints.</p>",
         "smithy.api#paginated": {
           "inputToken": "NextToken",
           "outputToken": "NextToken",
@@ -36194,20 +36200,20 @@
         "VerifiedAccessEndpointIds": {
           "target": "com.amazonaws.ec2#VerifiedAccessEndpointIdList",
           "traits": {
-            "smithy.api#documentation": "<p>The ID of the Amazon Web Services Verified Access endpoint.</p>",
+            "smithy.api#documentation": "<p>The ID of the Verified Access endpoint.</p>",
             "smithy.api#xmlName": "VerifiedAccessEndpointId"
           }
         },
         "VerifiedAccessInstanceId": {
           "target": "com.amazonaws.ec2#VerifiedAccessInstanceId",
           "traits": {
-            "smithy.api#documentation": "<p>The ID of the Amazon Web Services Verified Access instance.</p>"
+            "smithy.api#documentation": "<p>The ID of the Verified Access instance.</p>"
           }
         },
         "VerifiedAccessGroupId": {
           "target": "com.amazonaws.ec2#VerifiedAccessGroupId",
           "traits": {
-            "smithy.api#documentation": "<p>The ID of the Amazon Web Services Verified Access group.</p>"
+            "smithy.api#documentation": "<p>The ID of the Verified Access group.</p>"
           }
         },
         "MaxResults": {
@@ -36251,7 +36257,7 @@
           "target": "com.amazonaws.ec2#VerifiedAccessEndpointList",
           "traits": {
             "aws.protocols#ec2QueryName": "VerifiedAccessEndpointSet",
-            "smithy.api#documentation": "<p>The ID of the Amazon Web Services Verified Access endpoint.</p>",
+            "smithy.api#documentation": "<p>The ID of the Verified Access endpoint.</p>",
             "smithy.api#xmlName": "verifiedAccessEndpointSet"
           }
         },
@@ -36284,7 +36290,7 @@
         "target": "com.amazonaws.ec2#DescribeVerifiedAccessGroupsResult"
       },
       "traits": {
-        "smithy.api#documentation": "<p>Describe details of existing Verified Access groups.</p>",
+        "smithy.api#documentation": "<p>Describes the specified Verified Access groups.</p>",
         "smithy.api#paginated": {
           "inputToken": "NextToken",
           "outputToken": "NextToken",
@@ -36299,14 +36305,14 @@
         "VerifiedAccessGroupIds": {
           "target": "com.amazonaws.ec2#VerifiedAccessGroupIdList",
           "traits": {
-            "smithy.api#documentation": "<p>The ID of the Amazon Web Services Verified Access groups.</p>",
+            "smithy.api#documentation": "<p>The ID of the Verified Access groups.</p>",
             "smithy.api#xmlName": "VerifiedAccessGroupId"
           }
         },
         "VerifiedAccessInstanceId": {
           "target": "com.amazonaws.ec2#VerifiedAccessInstanceId",
           "traits": {
-            "smithy.api#documentation": "<p>The ID of the Amazon Web Services Verified Access instance.</p>"
+            "smithy.api#documentation": "<p>The ID of the Verified Access instance.</p>"
           }
         },
         "MaxResults": {
@@ -36373,7 +36379,7 @@
         "target": "com.amazonaws.ec2#DescribeVerifiedAccessInstanceLoggingConfigurationsResult"
       },
       "traits": {
-        "smithy.api#documentation": "<p>Describes the current logging configuration for the Amazon Web Services Verified Access instances.</p>",
+        "smithy.api#documentation": "<p>Describes the specified Amazon Web Services Verified Access instances.</p>",
         "smithy.api#paginated": {
           "inputToken": "NextToken",
           "outputToken": "NextToken",
@@ -36398,7 +36404,7 @@
         "VerifiedAccessInstanceIds": {
           "target": "com.amazonaws.ec2#VerifiedAccessInstanceIdList",
           "traits": {
-            "smithy.api#documentation": "<p>The IDs of the Amazon Web Services Verified Access instances.</p>",
+            "smithy.api#documentation": "<p>The IDs of the Verified Access instances.</p>",
             "smithy.api#xmlName": "VerifiedAccessInstanceId"
           }
         },
@@ -36443,7 +36449,7 @@
           "target": "com.amazonaws.ec2#VerifiedAccessInstanceLoggingConfigurationList",
           "traits": {
             "aws.protocols#ec2QueryName": "LoggingConfigurationSet",
-            "smithy.api#documentation": "<p>The current logging configuration for the Amazon Web Services Verified Access instances.</p>",
+            "smithy.api#documentation": "<p>The current logging configuration for the Verified Access instances.</p>",
             "smithy.api#xmlName": "loggingConfigurationSet"
           }
         },
@@ -36466,7 +36472,7 @@
         "target": "com.amazonaws.ec2#DescribeVerifiedAccessInstancesResult"
       },
       "traits": {
-        "smithy.api#documentation": "<p>Describe Verified Access instances.</p>",
+        "smithy.api#documentation": "<p>Describes the specified Amazon Web Services Verified Access instances.</p>",
         "smithy.api#paginated": {
           "inputToken": "NextToken",
           "outputToken": "NextToken",
@@ -36491,7 +36497,7 @@
         "VerifiedAccessInstanceIds": {
           "target": "com.amazonaws.ec2#VerifiedAccessInstanceIdList",
           "traits": {
-            "smithy.api#documentation": "<p>The IDs of the Amazon Web Services Verified Access instances.</p>",
+            "smithy.api#documentation": "<p>The IDs of the Verified Access instances.</p>",
             "smithy.api#xmlName": "VerifiedAccessInstanceId"
           }
         },
@@ -36536,7 +36542,7 @@
           "target": "com.amazonaws.ec2#VerifiedAccessInstanceList",
           "traits": {
             "aws.protocols#ec2QueryName": "VerifiedAccessInstanceSet",
-            "smithy.api#documentation": "<p>The IDs of the Amazon Web Services Verified Access instances.</p>",
+            "smithy.api#documentation": "<p>The IDs of the Verified Access instances.</p>",
             "smithy.api#xmlName": "verifiedAccessInstanceSet"
           }
         },
@@ -36559,7 +36565,7 @@
         "target": "com.amazonaws.ec2#DescribeVerifiedAccessTrustProvidersResult"
       },
       "traits": {
-        "smithy.api#documentation": "<p>Describe details of existing Verified Access trust providers.</p>",
+        "smithy.api#documentation": "<p>Describes the specified Amazon Web Services Verified Access trust providers.</p>",
         "smithy.api#paginated": {
           "inputToken": "NextToken",
           "outputToken": "NextToken",
@@ -36584,7 +36590,7 @@
         "VerifiedAccessTrustProviderIds": {
           "target": "com.amazonaws.ec2#VerifiedAccessTrustProviderIdList",
           "traits": {
-            "smithy.api#documentation": "<p>The IDs of the Amazon Web Services Verified Access trust providers.</p>",
+            "smithy.api#documentation": "<p>The IDs of the Verified Access trust providers.</p>",
             "smithy.api#xmlName": "VerifiedAccessTrustProviderId"
           }
         },
@@ -36629,7 +36635,7 @@
           "target": "com.amazonaws.ec2#VerifiedAccessTrustProviderList",
           "traits": {
             "aws.protocols#ec2QueryName": "VerifiedAccessTrustProviderSet",
-            "smithy.api#documentation": "<p>The IDs of the Amazon Web Services Verified Access trust providers.</p>",
+            "smithy.api#documentation": "<p>The IDs of the Verified Access trust providers.</p>",
             "smithy.api#xmlName": "verifiedAccessTrustProviderSet"
           }
         },
@@ -38481,7 +38487,7 @@
         "target": "com.amazonaws.ec2#DetachVerifiedAccessTrustProviderResult"
       },
       "traits": {
-        "smithy.api#documentation": "<p>Detach a trust provider from an Amazon Web Services Verified Access instance.</p>"
+        "smithy.api#documentation": "<p>Detaches the specified Amazon Web Services Verified Access trust provider from the specified Amazon Web Services Verified Access instance.</p>"
       }
     },
     "com.amazonaws.ec2#DetachVerifiedAccessTrustProviderRequest": {
@@ -38491,7 +38497,7 @@
           "target": "com.amazonaws.ec2#VerifiedAccessInstanceId",
           "traits": {
             "smithy.api#clientOptional": {},
-            "smithy.api#documentation": "<p>The ID of the Amazon Web Services Verified Access instance.</p>",
+            "smithy.api#documentation": "<p>The ID of the Verified Access instance.</p>",
             "smithy.api#required": {}
           }
         },
@@ -38499,7 +38505,7 @@
           "target": "com.amazonaws.ec2#VerifiedAccessTrustProviderId",
           "traits": {
             "smithy.api#clientOptional": {},
-            "smithy.api#documentation": "<p>The ID of the Amazon Web Services Verified Access trust provider.</p>",
+            "smithy.api#documentation": "<p>The ID of the Verified Access trust provider.</p>",
             "smithy.api#required": {}
           }
         },
@@ -38530,7 +38536,7 @@
           "target": "com.amazonaws.ec2#VerifiedAccessTrustProvider",
           "traits": {
             "aws.protocols#ec2QueryName": "VerifiedAccessTrustProvider",
-            "smithy.api#documentation": "<p>The ID of the Amazon Web Services Verified Access trust provider.</p>",
+            "smithy.api#documentation": "<p>The ID of the Verified Access trust provider.</p>",
             "smithy.api#xmlName": "verifiedAccessTrustProvider"
           }
         },
@@ -38538,7 +38544,7 @@
           "target": "com.amazonaws.ec2#VerifiedAccessInstance",
           "traits": {
             "aws.protocols#ec2QueryName": "VerifiedAccessInstance",
-            "smithy.api#documentation": "<p>The ID of the Amazon Web Services Verified Access instance.</p>",
+            "smithy.api#documentation": "<p>The ID of the Verified Access instance.</p>",
             "smithy.api#xmlName": "verifiedAccessInstance"
           }
         }
@@ -38662,7 +38668,7 @@
         }
       },
       "traits": {
-        "smithy.api#documentation": "<p>Options for an Amazon Web Services Verified Access device-identity based trust provider.</p>"
+        "smithy.api#documentation": "<p>Describes the options for an Amazon Web Services Verified Access device-identity based trust provider.</p>"
       }
     },
     "com.amazonaws.ec2#DeviceTrustProviderType": {
@@ -40555,7 +40561,7 @@
           }
         },
         "ImportManifestUrl": {
-          "target": "com.amazonaws.ec2#String",
+          "target": "com.amazonaws.ec2#ImportManifestUrl",
           "traits": {
             "aws.protocols#ec2QueryName": "ImportManifestUrl",
             "smithy.api#documentation": "<p>A presigned URL for the import manifest stored in Amazon S3. For information about creating a presigned URL for\n   an Amazon S3 object, read the \"Query String Request Authentication Alternative\" section of the <a href=\"https://docs.aws.amazon.com/AmazonS3/latest/dev/RESTAuthentication.html\">Authenticating REST Requests</a> topic in\n   the <i>Amazon Simple Storage Service Developer Guide</i>.</p>\n         <p>For information about the import manifest referenced by this API action, see <a href=\"https://docs.aws.amazon.com/AWSEC2/latest/APIReference/manifest.html\">VM Import Manifest</a>.</p>",
@@ -49294,7 +49300,7 @@
           "target": "com.amazonaws.ec2#VerifiedAccessEndpointId",
           "traits": {
             "smithy.api#clientOptional": {},
-            "smithy.api#documentation": "<p>The ID of the Amazon Web Services Verified Access endpoint.</p>",
+            "smithy.api#documentation": "<p>The ID of the Verified Access endpoint.</p>",
             "smithy.api#required": {}
           }
         },
@@ -49328,7 +49334,7 @@
           "target": "com.amazonaws.ec2#String",
           "traits": {
             "aws.protocols#ec2QueryName": "PolicyDocument",
-            "smithy.api#documentation": "<p>The Amazon Web Services Verified Access policy document.</p>",
+            "smithy.api#documentation": "<p>The Verified Access policy document.</p>",
             "smithy.api#xmlName": "policyDocument"
           }
         }
@@ -49353,7 +49359,7 @@
           "target": "com.amazonaws.ec2#VerifiedAccessGroupId",
           "traits": {
             "smithy.api#clientOptional": {},
-            "smithy.api#documentation": "<p>The ID of the Amazon Web Services Verified Access group.</p>",
+            "smithy.api#documentation": "<p>The ID of the Verified Access group.</p>",
             "smithy.api#required": {}
           }
         },
@@ -49387,7 +49393,7 @@
           "target": "com.amazonaws.ec2#String",
           "traits": {
             "aws.protocols#ec2QueryName": "PolicyDocument",
-            "smithy.api#documentation": "<p>The Amazon Web Services Verified Access policy document.</p>",
+            "smithy.api#documentation": "<p>The Verified Access policy document.</p>",
             "smithy.api#xmlName": "policyDocument"
           }
         }
@@ -70295,7 +70301,7 @@
         "target": "com.amazonaws.ec2#ModifyVerifiedAccessEndpointResult"
       },
       "traits": {
-        "smithy.api#documentation": "<p>Modifies the configuration of an Amazon Web Services Verified Access endpoint.</p>"
+        "smithy.api#documentation": "<p>Modifies the configuration of the specified Amazon Web Services Verified Access endpoint.</p>"
       }
     },
     "com.amazonaws.ec2#ModifyVerifiedAccessEndpointEniOptions": {
@@ -70317,7 +70323,7 @@
         }
       },
       "traits": {
-        "smithy.api#documentation": "<p>Options for a network-interface type Verified Access endpoint.</p>"
+        "smithy.api#documentation": "<p>Describes the options when modifying a Verified Access endpoint with the\n            <code>network-interface</code> type.</p>"
       }
     },
     "com.amazonaws.ec2#ModifyVerifiedAccessEndpointLoadBalancerOptions": {
@@ -70358,7 +70364,7 @@
         "target": "com.amazonaws.ec2#ModifyVerifiedAccessEndpointPolicyResult"
       },
       "traits": {
-        "smithy.api#documentation": "<p>Modifies the specified Verified Access endpoint policy.</p>"
+        "smithy.api#documentation": "<p>Modifies the specified Amazon Web Services Verified Access endpoint policy.</p>"
       }
     },
     "com.amazonaws.ec2#ModifyVerifiedAccessEndpointPolicyRequest": {
@@ -70368,7 +70374,7 @@
           "target": "com.amazonaws.ec2#VerifiedAccessEndpointId",
           "traits": {
             "smithy.api#clientOptional": {},
-            "smithy.api#documentation": "<p>The ID of the Amazon Web Services Verified Access endpoint.</p>",
+            "smithy.api#documentation": "<p>The ID of the Verified Access endpoint.</p>",
             "smithy.api#required": {}
           }
         },
@@ -70384,7 +70390,7 @@
         "PolicyDocument": {
           "target": "com.amazonaws.ec2#String",
           "traits": {
-            "smithy.api#documentation": "<p>The Amazon Web Services Verified Access policy document.</p>"
+            "smithy.api#documentation": "<p>The Verified Access policy document.</p>"
           }
         },
         "ClientToken": {
@@ -70424,7 +70430,7 @@
           "target": "com.amazonaws.ec2#String",
           "traits": {
             "aws.protocols#ec2QueryName": "PolicyDocument",
-            "smithy.api#documentation": "<p>The Amazon Web Services Verified Access policy document.</p>",
+            "smithy.api#documentation": "<p>The Verified Access policy document.</p>",
             "smithy.api#xmlName": "policyDocument"
           }
         }
@@ -70437,20 +70443,20 @@
           "target": "com.amazonaws.ec2#VerifiedAccessEndpointId",
           "traits": {
             "smithy.api#clientOptional": {},
-            "smithy.api#documentation": "<p>The ID of the Amazon Web Services Verified Access endpoint.</p>",
+            "smithy.api#documentation": "<p>The ID of the Verified Access endpoint.</p>",
             "smithy.api#required": {}
           }
         },
         "VerifiedAccessGroupId": {
           "target": "com.amazonaws.ec2#VerifiedAccessGroupId",
           "traits": {
-            "smithy.api#documentation": "<p>The ID of the Amazon Web Services Verified Access group.</p>"
+            "smithy.api#documentation": "<p>The ID of the Verified Access group.</p>"
           }
         },
         "LoadBalancerOptions": {
           "target": "com.amazonaws.ec2#ModifyVerifiedAccessEndpointLoadBalancerOptions",
           "traits": {
-            "smithy.api#documentation": "<p>The load balancer details if creating the Amazon Web Services Verified Access endpoint as\n         <code>load-balancer</code>type.</p>"
+            "smithy.api#documentation": "<p>The load balancer details if creating the Verified Access endpoint as\n         <code>load-balancer</code>type.</p>"
           }
         },
         "NetworkInterfaceOptions": {
@@ -70462,7 +70468,7 @@
         "Description": {
           "target": "com.amazonaws.ec2#String",
           "traits": {
-            "smithy.api#documentation": "<p>A description for the Amazon Web Services Verified Access endpoint.</p>"
+            "smithy.api#documentation": "<p>A description for the Verified Access endpoint.</p>"
           }
         },
         "ClientToken": {
@@ -70492,7 +70498,7 @@
           "target": "com.amazonaws.ec2#VerifiedAccessEndpoint",
           "traits": {
             "aws.protocols#ec2QueryName": "VerifiedAccessEndpoint",
-            "smithy.api#documentation": "<p>The Amazon Web Services Verified Access endpoint details.</p>",
+            "smithy.api#documentation": "<p>The Verified Access endpoint details.</p>",
             "smithy.api#xmlName": "verifiedAccessEndpoint"
           }
         }
@@ -70516,7 +70522,7 @@
         "target": "com.amazonaws.ec2#ModifyVerifiedAccessGroupResult"
       },
       "traits": {
-        "smithy.api#documentation": "<p>Modifies the specified Verified Access group configuration.</p>"
+        "smithy.api#documentation": "<p>Modifies the specified Amazon Web Services Verified Access group configuration.</p>"
       }
     },
     "com.amazonaws.ec2#ModifyVerifiedAccessGroupPolicy": {
@@ -70528,7 +70534,7 @@
         "target": "com.amazonaws.ec2#ModifyVerifiedAccessGroupPolicyResult"
       },
       "traits": {
-        "smithy.api#documentation": "<p>Modifies the specified Verified Access group policy.</p>"
+        "smithy.api#documentation": "<p>Modifies the specified Amazon Web Services Verified Access group policy.</p>"
       }
     },
     "com.amazonaws.ec2#ModifyVerifiedAccessGroupPolicyRequest": {
@@ -70538,7 +70544,7 @@
           "target": "com.amazonaws.ec2#VerifiedAccessGroupId",
           "traits": {
             "smithy.api#clientOptional": {},
-            "smithy.api#documentation": "<p>The ID of the Amazon Web Services Verified Access group.</p>",
+            "smithy.api#documentation": "<p>The ID of the Verified Access group.</p>",
             "smithy.api#required": {}
           }
         },
@@ -70554,7 +70560,7 @@
         "PolicyDocument": {
           "target": "com.amazonaws.ec2#String",
           "traits": {
-            "smithy.api#documentation": "<p>The Amazon Web Services Verified Access policy document.</p>"
+            "smithy.api#documentation": "<p>The Verified Access policy document.</p>"
           }
         },
         "ClientToken": {
@@ -70594,7 +70600,7 @@
           "target": "com.amazonaws.ec2#String",
           "traits": {
             "aws.protocols#ec2QueryName": "PolicyDocument",
-            "smithy.api#documentation": "<p>The Amazon Web Services Verified Access policy document.</p>",
+            "smithy.api#documentation": "<p>The Verified Access policy document.</p>",
             "smithy.api#xmlName": "policyDocument"
           }
         }
@@ -70607,20 +70613,20 @@
           "target": "com.amazonaws.ec2#VerifiedAccessGroupId",
           "traits": {
             "smithy.api#clientOptional": {},
-            "smithy.api#documentation": "<p>The ID of the Amazon Web Services Verified Access group.</p>",
+            "smithy.api#documentation": "<p>The ID of the Verified Access group.</p>",
             "smithy.api#required": {}
           }
         },
         "VerifiedAccessInstanceId": {
           "target": "com.amazonaws.ec2#VerifiedAccessInstanceId",
           "traits": {
-            "smithy.api#documentation": "<p>The ID of the Amazon Web Services Verified Access instance.</p>"
+            "smithy.api#documentation": "<p>The ID of the Verified Access instance.</p>"
           }
         },
         "Description": {
           "target": "com.amazonaws.ec2#String",
           "traits": {
-            "smithy.api#documentation": "<p>A description for the Amazon Web Services Verified Access group.</p>"
+            "smithy.api#documentation": "<p>A description for the Verified Access group.</p>"
           }
         },
         "ClientToken": {
@@ -70650,7 +70656,7 @@
           "target": "com.amazonaws.ec2#VerifiedAccessGroup",
           "traits": {
             "aws.protocols#ec2QueryName": "VerifiedAccessGroup",
-            "smithy.api#documentation": "<p>Details of Amazon Web Services Verified Access group.</p>",
+            "smithy.api#documentation": "<p>Details of Verified Access group.</p>",
             "smithy.api#xmlName": "verifiedAccessGroup"
           }
         }
@@ -70665,7 +70671,7 @@
         "target": "com.amazonaws.ec2#ModifyVerifiedAccessInstanceResult"
       },
       "traits": {
-        "smithy.api#documentation": "<p>Modifies the configuration of the specified Verified Access instance.</p>"
+        "smithy.api#documentation": "<p>Modifies the configuration of the specified Amazon Web Services Verified Access instance.</p>"
       }
     },
     "com.amazonaws.ec2#ModifyVerifiedAccessInstanceLoggingConfiguration": {
@@ -70687,7 +70693,7 @@
           "target": "com.amazonaws.ec2#VerifiedAccessInstanceId",
           "traits": {
             "smithy.api#clientOptional": {},
-            "smithy.api#documentation": "<p>The ID of the Amazon Web Services Verified Access instance.</p>",
+            "smithy.api#documentation": "<p>The ID of the Verified Access instance.</p>",
             "smithy.api#required": {}
           }
         },
@@ -70695,7 +70701,7 @@
           "target": "com.amazonaws.ec2#VerifiedAccessLogOptions",
           "traits": {
             "smithy.api#clientOptional": {},
-            "smithy.api#documentation": "<p>The configuration options for Amazon Web Services Verified Access instances.</p>",
+            "smithy.api#documentation": "<p>The configuration options for Verified Access instances.</p>",
             "smithy.api#required": {}
           }
         },
@@ -70726,7 +70732,7 @@
           "target": "com.amazonaws.ec2#VerifiedAccessInstanceLoggingConfiguration",
           "traits": {
             "aws.protocols#ec2QueryName": "LoggingConfiguration",
-            "smithy.api#documentation": "<p>The logging configuration for Amazon Web Services Verified Access instance.</p>",
+            "smithy.api#documentation": "<p>The logging configuration for the Verified Access instance.</p>",
             "smithy.api#xmlName": "loggingConfiguration"
           }
         }
@@ -70739,14 +70745,14 @@
           "target": "com.amazonaws.ec2#VerifiedAccessInstanceId",
           "traits": {
             "smithy.api#clientOptional": {},
-            "smithy.api#documentation": "<p>The ID of the Amazon Web Services Verified Access instance.</p>",
+            "smithy.api#documentation": "<p>The ID of the Verified Access instance.</p>",
             "smithy.api#required": {}
           }
         },
         "Description": {
           "target": "com.amazonaws.ec2#String",
           "traits": {
-            "smithy.api#documentation": "<p>A description for the Amazon Web Services Verified Access instance.</p>"
+            "smithy.api#documentation": "<p>A description for the Verified Access instance.</p>"
           }
         },
         "DryRun": {
@@ -70776,7 +70782,7 @@
           "target": "com.amazonaws.ec2#VerifiedAccessInstance",
           "traits": {
             "aws.protocols#ec2QueryName": "VerifiedAccessInstance",
-            "smithy.api#documentation": "<p>The ID of the Amazon Web Services Verified Access instance.</p>",
+            "smithy.api#documentation": "<p>The ID of the Verified Access instance.</p>",
             "smithy.api#xmlName": "verifiedAccessInstance"
           }
         }
@@ -70797,6 +70803,42 @@
     "com.amazonaws.ec2#ModifyVerifiedAccessTrustProviderOidcOptions": {
       "type": "structure",
       "members": {
+        "Issuer": {
+          "target": "com.amazonaws.ec2#String",
+          "traits": {
+            "smithy.api#documentation": "<p>The OIDC issuer.</p>"
+          }
+        },
+        "AuthorizationEndpoint": {
+          "target": "com.amazonaws.ec2#String",
+          "traits": {
+            "smithy.api#documentation": "<p>The OIDC authorization endpoint.</p>"
+          }
+        },
+        "TokenEndpoint": {
+          "target": "com.amazonaws.ec2#String",
+          "traits": {
+            "smithy.api#documentation": "<p>The OIDC token endpoint.</p>"
+          }
+        },
+        "UserInfoEndpoint": {
+          "target": "com.amazonaws.ec2#String",
+          "traits": {
+            "smithy.api#documentation": "<p>The OIDC user info endpoint.</p>"
+          }
+        },
+        "ClientId": {
+          "target": "com.amazonaws.ec2#String",
+          "traits": {
+            "smithy.api#documentation": "<p>The client identifier.</p>"
+          }
+        },
+        "ClientSecret": {
+          "target": "com.amazonaws.ec2#ClientSecretType",
+          "traits": {
+            "smithy.api#documentation": "<p>The client secret.</p>"
+          }
+        },
         "Scope": {
           "target": "com.amazonaws.ec2#String",
           "traits": {
@@ -70805,7 +70847,7 @@
         }
       },
       "traits": {
-        "smithy.api#documentation": "<p>OpenID Connect options for an <code>oidc</code>-type, user-identity based trust\n         provider.</p>"
+        "smithy.api#documentation": "<p>Options for an OpenID Connect-compatible user-identity trust provider.</p>"
       }
     },
     "com.amazonaws.ec2#ModifyVerifiedAccessTrustProviderRequest": {
@@ -70815,20 +70857,20 @@
           "target": "com.amazonaws.ec2#VerifiedAccessTrustProviderId",
           "traits": {
             "smithy.api#clientOptional": {},
-            "smithy.api#documentation": "<p>The ID of the Amazon Web Services Verified Access trust provider.</p>",
+            "smithy.api#documentation": "<p>The ID of the Verified Access trust provider.</p>",
             "smithy.api#required": {}
           }
         },
         "OidcOptions": {
           "target": "com.amazonaws.ec2#ModifyVerifiedAccessTrustProviderOidcOptions",
           "traits": {
-            "smithy.api#documentation": "<p>The OpenID Connect details for an <code>oidc</code>-type, user-identity based trust provider.</p>"
+            "smithy.api#documentation": "<p>The options for an OpenID Connect-compatible user-identity trust provider.</p>"
           }
         },
         "Description": {
           "target": "com.amazonaws.ec2#String",
           "traits": {
-            "smithy.api#documentation": "<p>A description for the Amazon Web Services Verified Access trust provider.</p>"
+            "smithy.api#documentation": "<p>A description for the Verified Access trust provider.</p>"
           }
         },
         "DryRun": {
@@ -70858,7 +70900,7 @@
           "target": "com.amazonaws.ec2#VerifiedAccessTrustProvider",
           "traits": {
             "aws.protocols#ec2QueryName": "VerifiedAccessTrustProvider",
-            "smithy.api#documentation": "<p>The ID of the Amazon Web Services Verified Access trust provider.</p>",
+            "smithy.api#documentation": "<p>The ID of the Verified Access trust provider.</p>",
             "smithy.api#xmlName": "verifiedAccessTrustProvider"
           }
         }
@@ -74595,7 +74637,7 @@
           }
         },
         "ClientSecret": {
-          "target": "com.amazonaws.ec2#String",
+          "target": "com.amazonaws.ec2#ClientSecretType",
           "traits": {
             "aws.protocols#ec2QueryName": "ClientSecret",
             "smithy.api#documentation": "<p>The client secret.</p>",
@@ -74612,7 +74654,7 @@
         }
       },
       "traits": {
-        "smithy.api#documentation": "<p>Options for OIDC-based, user-identity type trust provider.</p>"
+        "smithy.api#documentation": "<p>Describes the options for an OpenID Connect-compatible user-identity trust\n         provider.</p>"
       }
     },
     "com.amazonaws.ec2#OnDemandAllocationStrategy": {
@@ -96442,7 +96484,7 @@
           "target": "com.amazonaws.ec2#OidcOptions",
           "traits": {
             "aws.protocols#ec2QueryName": "OidcOptions",
-            "smithy.api#documentation": "<p>The OpenID Connect details for an <code>oidc</code>-type, user-identity based trust provider.</p>",
+            "smithy.api#documentation": "<p>The options for an OpenID Connect-compatible user-identity trust provider.</p>",
             "smithy.api#xmlName": "oidcOptions"
           }
         },
@@ -96450,7 +96492,7 @@
           "target": "com.amazonaws.ec2#DeviceOptions",
           "traits": {
             "aws.protocols#ec2QueryName": "DeviceOptions",
-            "smithy.api#documentation": "<p>The options for device-identity type trust provider.</p>",
+            "smithy.api#documentation": "<p>The options for device-identity trust provider.</p>",
             "smithy.api#xmlName": "deviceOptions"
           }
         },