AccessControlEntrySummary - AWS Private CA Connector for Active Directory
ContentsSee Also
Services or capabilities described in AWS documentation might vary by Region. To see the differences applicable to the AWS European Sovereign Cloud Region, see the AWS European Sovereign Cloud User Guide.

AccessControlEntrySummary

Summary of group access control entries that allow or deny Active Directory groups based on their security identifiers (SIDs) from enrolling and/or autofenrolling with the template.

Contents

AccessRights

Allow or deny an Active Directory group from enrolling and autoenrolling certificates issued against a template.

Type: AccessRights object

Required: No

CreatedAt

The date and time that the Access Control Entry was created.

Type: Timestamp

Required: No

GroupDisplayName

Name of the Active Directory group. This name does not need to match the group name in Active Directory.

Type: String

Length Constraints: Minimum length of 0. Maximum length of 256.

Pattern: [\x20-\x7E]+

Required: No

GroupSecurityIdentifier

Security identifier (SID) of the group object from Active Directory. The SID starts with "S-".

Type: String

Length Constraints: Minimum length of 7. Maximum length of 256.

Pattern: S-[0-9]-([0-9]+-){1,14}[0-9]+

Required: No

TemplateArn

The Amazon Resource Name (ARN) that was returned when you called CreateTemplate.

Type: String

Length Constraints: Minimum length of 5. Maximum length of 200.

Pattern: arn:[\w-]+:pca-connector-ad:[\w-]+:[0-9]+:connector\/[0-9a-f]{8}(-[0-9a-f]{4}){3}-[0-9a-f]{12}\/template\/[0-9a-f]{8}(-[0-9a-f]{4}){3}-[0-9a-f]{12}

Required: No

UpdatedAt

The date and time that the Access Control Entry was updated.

Type: Timestamp

Required: No

See Also

For more information about using this API in one of the language-specific AWS SDKs, see the following: