AWS::PCAConnectorAD::TemplateGroupAccessControlEntry AccessRights - AWS CloudFormation
SyntaxProperties
Services or capabilities described in AWS documentation might vary by Region. To see the differences applicable to the AWS European Sovereign Cloud Region, see the AWS European Sovereign Cloud User Guide.

This is the new CloudFormation Template Reference Guide. Please update your bookmarks and links. For help getting started with CloudFormation, see the AWS CloudFormation User Guide.

AWS::PCAConnectorAD::TemplateGroupAccessControlEntry AccessRights

Allow or deny permissions for an Active Directory group to enroll or autoenroll certificates for a template.

Syntax

To declare this entity in your CloudFormation template, use the following syntax:

JSON

{
  "AutoEnroll" : String,
  "Enroll" : String
}

YAML

  AutoEnroll: String
  Enroll: String

Properties

AutoEnroll

Allow or deny an Active Directory group from autoenrolling certificates issued against a template. The Active Directory group must be allowed to enroll to allow autoenrollment

Required: No

Type: String

Allowed values: ALLOW | DENY

Update requires: No interruption

Enroll

Allow or deny an Active Directory group from enrolling certificates issued against a template.

Required: No

Type: String

Allowed values: ALLOW | DENY

Update requires: No interruption