CfnTemplateGroupAccessControlEntryPropsMixin

class aws_cdk.mixins_preview.aws_pcaconnectorad.mixins.CfnTemplateGroupAccessControlEntryPropsMixin(props, *, strategy=None)

Bases: Mixin

Create a group access control entry.

Allow or deny Active Directory groups from enrolling and/or autoenrolling with the template based on the group security identifiers (SIDs).

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-pcaconnectorad-templategroupaccesscontrolentry.html

CloudformationResource:

AWS::PCAConnectorAD::TemplateGroupAccessControlEntry

Mixin:

true

ExampleMetadata:

fixture=_generated

Example:

# The code below shows an example of how to instantiate this type.
# The values are placeholders you should change.
from aws_cdk.mixins_preview import mixins
from aws_cdk.mixins_preview.aws_pcaconnectorad import mixins as pcaconnectorad_mixins

cfn_template_group_access_control_entry_props_mixin = pcaconnectorad_mixins.CfnTemplateGroupAccessControlEntryPropsMixin(pcaconnectorad_mixins.CfnTemplateGroupAccessControlEntryMixinProps(
    access_rights=pcaconnectorad_mixins.CfnTemplateGroupAccessControlEntryPropsMixin.AccessRightsProperty(
        auto_enroll="autoEnroll",
        enroll="enroll"
    ),
    group_display_name="groupDisplayName",
    group_security_identifier="groupSecurityIdentifier",
    template_arn="templateArn"
),
    strategy=mixins.PropertyMergeStrategy.OVERRIDE
)

Create a mixin to apply properties to AWS::PCAConnectorAD::TemplateGroupAccessControlEntry.

Parameters:

Methods

apply_to(construct)

Apply the mixin properties to the construct.

Parameters:

construct (IConstruct)

Return type:

IConstruct

supports(construct)

Check if this mixin supports the given construct.

Parameters:

construct (IConstruct)

Return type:

bool

Attributes

CFN_PROPERTY_KEYS = ['accessRights', 'groupDisplayName', 'groupSecurityIdentifier', 'templateArn']

Static Methods

classmethod is_mixin(x)

(experimental) Checks if x is a Mixin.

Parameters:

x (Any) – Any object.

Return type:

bool

Returns:

true if x is an object created from a class which extends Mixin.

Stability:

experimental

AccessRightsProperty

class CfnTemplateGroupAccessControlEntryPropsMixin.AccessRightsProperty(*, auto_enroll=None, enroll=None)

Bases: object

Allow or deny permissions for an Active Directory group to enroll or autoenroll certificates for a template.

Parameters:

  • auto_enroll (Optional[str]) – Allow or deny an Active Directory group from autoenrolling certificates issued against a template. The Active Directory group must be allowed to enroll to allow autoenrollment

  • enroll (Optional[str]) – Allow or deny an Active Directory group from enrolling certificates issued against a template.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-pcaconnectorad-templategroupaccesscontrolentry-accessrights.html

ExampleMetadata:

fixture=_generated

Example:

# The code below shows an example of how to instantiate this type.
# The values are placeholders you should change.
from aws_cdk.mixins_preview.aws_pcaconnectorad import mixins as pcaconnectorad_mixins

access_rights_property = pcaconnectorad_mixins.CfnTemplateGroupAccessControlEntryPropsMixin.AccessRightsProperty(
    auto_enroll="autoEnroll",
    enroll="enroll"
)

Attributes

auto_enroll

Allow or deny an Active Directory group from autoenrolling certificates issued against a template.

The Active Directory group must be allowed to enroll to allow autoenrollment

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-pcaconnectorad-templategroupaccesscontrolentry-accessrights.html#cfn-pcaconnectorad-templategroupaccesscontrolentry-accessrights-autoenroll

enroll

Allow or deny an Active Directory group from enrolling certificates issued against a template.

See:

http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-pcaconnectorad-templategroupaccesscontrolentry-accessrights.html#cfn-pcaconnectorad-templategroupaccesscontrolentry-accessrights-enroll