Docs Home
Alibaba Cloud v3.77.0 published on Friday, May 2, 2025 by Pulumi
alicloud.cloudsso.Directory
Explore with Pulumi AI
Provides a Cloud SSO Directory resource.
For information about Cloud SSO Directory and how to use it, see What is Directory.
NOTE: Available since v1.135.0.
Example Usage
Basic Usage
import * as pulumi from "@pulumi/pulumi";
import * as alicloud from "@pulumi/alicloud";
const config = new pulumi.Config();
const name = config.get("name") || "tf-example";
const _default = new alicloud.cloudsso.Directory("default", {directoryName: name});
import pulumi
import pulumi_alicloud as alicloud
config = pulumi.Config()
name = config.get("name")
if name is None:
name = "tf-example"
default = alicloud.cloudsso.Directory("default", directory_name=name)
package main
import (
"github.com/pulumi/pulumi-alicloud/sdk/v3/go/alicloud/cloudsso"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi/config"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
cfg := config.New(ctx, "")
name := "tf-example"
if param := cfg.Get("name"); param != "" {
name = param
}
_, err := cloudsso.NewDirectory(ctx, "default", &cloudsso.DirectoryArgs{
DirectoryName: pulumi.String(name),
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AliCloud = Pulumi.AliCloud;
return await Deployment.RunAsync(() =>
{
var config = new Config();
var name = config.Get("name") ?? "tf-example";
var @default = new AliCloud.CloudSso.Directory("default", new()
{
DirectoryName = name,
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.alicloud.cloudsso.Directory;
import com.pulumi.alicloud.cloudsso.DirectoryArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
final var config = ctx.config();
final var name = config.get("name").orElse("tf-example");
var default_ = new Directory("default", DirectoryArgs.builder()
.directoryName(name)
.build());
}
}
configuration:
name:
type: string
default: tf-example
resources:
default:
type: alicloud:cloudsso:Directory
properties:
directoryName: ${name}
Create Directory Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new Directory(name: string, args?: DirectoryArgs, opts?: CustomResourceOptions);@overload
def Directory(resource_name: str,
args: Optional[DirectoryArgs] = None,
opts: Optional[ResourceOptions] = None)
@overload
def Directory(resource_name: str,
opts: Optional[ResourceOptions] = None,
directory_global_access_status: Optional[str] = None,
directory_name: Optional[str] = None,
login_preference: Optional[DirectoryLoginPreferenceArgs] = None,
mfa_authentication_setting_info: Optional[DirectoryMfaAuthenticationSettingInfoArgs] = None,
mfa_authentication_status: Optional[str] = None,
password_policy: Optional[DirectoryPasswordPolicyArgs] = None,
saml_identity_provider_configuration: Optional[DirectorySamlIdentityProviderConfigurationArgs] = None,
saml_service_provider: Optional[DirectorySamlServiceProviderArgs] = None,
scim_synchronization_status: Optional[str] = None,
user_provisioning_configuration: Optional[DirectoryUserProvisioningConfigurationArgs] = None)func NewDirectory(ctx *Context, name string, args *DirectoryArgs, opts ...ResourceOption) (*Directory, error)public Directory(string name, DirectoryArgs? args = null, CustomResourceOptions? opts = null)
public Directory(String name, DirectoryArgs args)
public Directory(String name, DirectoryArgs args, CustomResourceOptions options)
type: alicloud:cloudsso:Directory
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args DirectoryArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args DirectoryArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args DirectoryArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args DirectoryArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args DirectoryArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var directoryResource = new AliCloud.CloudSso.Directory("directoryResource", new()
{
DirectoryGlobalAccessStatus = "string",
DirectoryName = "string",
LoginPreference = new AliCloud.CloudSso.Inputs.DirectoryLoginPreferenceArgs
{
AllowUserToGetCredentials = false,
LoginNetworkMasks = "string",
},
MfaAuthenticationSettingInfo = new AliCloud.CloudSso.Inputs.DirectoryMfaAuthenticationSettingInfoArgs
{
MfaAuthenticationAdvanceSettings = "string",
OperationForRiskLogin = "string",
},
MfaAuthenticationStatus = "string",
PasswordPolicy = new AliCloud.CloudSso.Inputs.DirectoryPasswordPolicyArgs
{
HardExpire = false,
MaxLoginAttempts = 0,
MaxPasswordAge = 0,
MaxPasswordLength = 0,
MinPasswordDifferentChars = 0,
MinPasswordLength = 0,
PasswordNotContainUsername = false,
PasswordReusePrevention = 0,
RequireLowerCaseChars = false,
RequireNumbers = false,
RequireSymbols = false,
RequireUpperCaseChars = false,
},
SamlIdentityProviderConfiguration = new AliCloud.CloudSso.Inputs.DirectorySamlIdentityProviderConfigurationArgs
{
BindingType = "string",
CertificateIds = new[]
{
"string",
},
CreateTime = "string",
EncodedMetadataDocument = "string",
EntityId = "string",
LoginUrl = "string",
SsoStatus = "string",
UpdateTime = "string",
WantRequestSigned = false,
},
SamlServiceProvider = new AliCloud.CloudSso.Inputs.DirectorySamlServiceProviderArgs
{
AcsUrl = "string",
AuthnSignAlgo = "string",
CertificateType = "string",
EncodedMetadataDocument = "string",
EntityId = "string",
SupportEncryptedAssertion = false,
},
ScimSynchronizationStatus = "string",
UserProvisioningConfiguration = new AliCloud.CloudSso.Inputs.DirectoryUserProvisioningConfigurationArgs
{
DefaultLandingPage = "string",
SessionDuration = "string",
},
});
example, err := cloudsso.NewDirectory(ctx, "directoryResource", &cloudsso.DirectoryArgs{
DirectoryGlobalAccessStatus: pulumi.String("string"),
DirectoryName: pulumi.String("string"),
LoginPreference: &cloudsso.DirectoryLoginPreferenceArgs{
AllowUserToGetCredentials: pulumi.Bool(false),
LoginNetworkMasks: pulumi.String("string"),
},
MfaAuthenticationSettingInfo: &cloudsso.DirectoryMfaAuthenticationSettingInfoArgs{
MfaAuthenticationAdvanceSettings: pulumi.String("string"),
OperationForRiskLogin: pulumi.String("string"),
},
MfaAuthenticationStatus: pulumi.String("string"),
PasswordPolicy: &cloudsso.DirectoryPasswordPolicyArgs{
HardExpire: pulumi.Bool(false),
MaxLoginAttempts: pulumi.Int(0),
MaxPasswordAge: pulumi.Int(0),
MaxPasswordLength: pulumi.Int(0),
MinPasswordDifferentChars: pulumi.Int(0),
MinPasswordLength: pulumi.Int(0),
PasswordNotContainUsername: pulumi.Bool(false),
PasswordReusePrevention: pulumi.Int(0),
RequireLowerCaseChars: pulumi.Bool(false),
RequireNumbers: pulumi.Bool(false),
RequireSymbols: pulumi.Bool(false),
RequireUpperCaseChars: pulumi.Bool(false),
},
SamlIdentityProviderConfiguration: &cloudsso.DirectorySamlIdentityProviderConfigurationArgs{
BindingType: pulumi.String("string"),
CertificateIds: pulumi.StringArray{
pulumi.String("string"),
},
CreateTime: pulumi.String("string"),
EncodedMetadataDocument: pulumi.String("string"),
EntityId: pulumi.String("string"),
LoginUrl: pulumi.String("string"),
SsoStatus: pulumi.String("string"),
UpdateTime: pulumi.String("string"),
WantRequestSigned: pulumi.Bool(false),
},
SamlServiceProvider: &cloudsso.DirectorySamlServiceProviderArgs{
AcsUrl: pulumi.String("string"),
AuthnSignAlgo: pulumi.String("string"),
CertificateType: pulumi.String("string"),
EncodedMetadataDocument: pulumi.String("string"),
EntityId: pulumi.String("string"),
SupportEncryptedAssertion: pulumi.Bool(false),
},
ScimSynchronizationStatus: pulumi.String("string"),
UserProvisioningConfiguration: &cloudsso.DirectoryUserProvisioningConfigurationArgs{
DefaultLandingPage: pulumi.String("string"),
SessionDuration: pulumi.String("string"),
},
})
var directoryResource = new Directory("directoryResource", DirectoryArgs.builder()
.directoryGlobalAccessStatus("string")
.directoryName("string")
.loginPreference(DirectoryLoginPreferenceArgs.builder()
.allowUserToGetCredentials(false)
.loginNetworkMasks("string")
.build())
.mfaAuthenticationSettingInfo(DirectoryMfaAuthenticationSettingInfoArgs.builder()
.mfaAuthenticationAdvanceSettings("string")
.operationForRiskLogin("string")
.build())
.mfaAuthenticationStatus("string")
.passwordPolicy(DirectoryPasswordPolicyArgs.builder()
.hardExpire(false)
.maxLoginAttempts(0)
.maxPasswordAge(0)
.maxPasswordLength(0)
.minPasswordDifferentChars(0)
.minPasswordLength(0)
.passwordNotContainUsername(false)
.passwordReusePrevention(0)
.requireLowerCaseChars(false)
.requireNumbers(false)
.requireSymbols(false)
.requireUpperCaseChars(false)
.build())
.samlIdentityProviderConfiguration(DirectorySamlIdentityProviderConfigurationArgs.builder()
.bindingType("string")
.certificateIds("string")
.createTime("string")
.encodedMetadataDocument("string")
.entityId("string")
.loginUrl("string")
.ssoStatus("string")
.updateTime("string")
.wantRequestSigned(false)
.build())
.samlServiceProvider(DirectorySamlServiceProviderArgs.builder()
.acsUrl("string")
.authnSignAlgo("string")
.certificateType("string")
.encodedMetadataDocument("string")
.entityId("string")
.supportEncryptedAssertion(false)
.build())
.scimSynchronizationStatus("string")
.userProvisioningConfiguration(DirectoryUserProvisioningConfigurationArgs.builder()
.defaultLandingPage("string")
.sessionDuration("string")
.build())
.build());
directory_resource = alicloud.cloudsso.Directory("directoryResource",
directory_global_access_status="string",
directory_name="string",
login_preference={
"allow_user_to_get_credentials": False,
"login_network_masks": "string",
},
mfa_authentication_setting_info={
"mfa_authentication_advance_settings": "string",
"operation_for_risk_login": "string",
},
mfa_authentication_status="string",
password_policy={
"hard_expire": False,
"max_login_attempts": 0,
"max_password_age": 0,
"max_password_length": 0,
"min_password_different_chars": 0,
"min_password_length": 0,
"password_not_contain_username": False,
"password_reuse_prevention": 0,
"require_lower_case_chars": False,
"require_numbers": False,
"require_symbols": False,
"require_upper_case_chars": False,
},
saml_identity_provider_configuration={
"binding_type": "string",
"certificate_ids": ["string"],
"create_time": "string",
"encoded_metadata_document": "string",
"entity_id": "string",
"login_url": "string",
"sso_status": "string",
"update_time": "string",
"want_request_signed": False,
},
saml_service_provider={
"acs_url": "string",
"authn_sign_algo": "string",
"certificate_type": "string",
"encoded_metadata_document": "string",
"entity_id": "string",
"support_encrypted_assertion": False,
},
scim_synchronization_status="string",
user_provisioning_configuration={
"default_landing_page": "string",
"session_duration": "string",
})
const directoryResource = new alicloud.cloudsso.Directory("directoryResource", {
directoryGlobalAccessStatus: "string",
directoryName: "string",
loginPreference: {
allowUserToGetCredentials: false,
loginNetworkMasks: "string",
},
mfaAuthenticationSettingInfo: {
mfaAuthenticationAdvanceSettings: "string",
operationForRiskLogin: "string",
},
mfaAuthenticationStatus: "string",
passwordPolicy: {
hardExpire: false,
maxLoginAttempts: 0,
maxPasswordAge: 0,
maxPasswordLength: 0,
minPasswordDifferentChars: 0,
minPasswordLength: 0,
passwordNotContainUsername: false,
passwordReusePrevention: 0,
requireLowerCaseChars: false,
requireNumbers: false,
requireSymbols: false,
requireUpperCaseChars: false,
},
samlIdentityProviderConfiguration: {
bindingType: "string",
certificateIds: ["string"],
createTime: "string",
encodedMetadataDocument: "string",
entityId: "string",
loginUrl: "string",
ssoStatus: "string",
updateTime: "string",
wantRequestSigned: false,
},
samlServiceProvider: {
acsUrl: "string",
authnSignAlgo: "string",
certificateType: "string",
encodedMetadataDocument: "string",
entityId: "string",
supportEncryptedAssertion: false,
},
scimSynchronizationStatus: "string",
userProvisioningConfiguration: {
defaultLandingPage: "string",
sessionDuration: "string",
},
});
type: alicloud:cloudsso:Directory
properties:
directoryGlobalAccessStatus: string
directoryName: string
loginPreference:
allowUserToGetCredentials: false
loginNetworkMasks: string
mfaAuthenticationSettingInfo:
mfaAuthenticationAdvanceSettings: string
operationForRiskLogin: string
mfaAuthenticationStatus: string
passwordPolicy:
hardExpire: false
maxLoginAttempts: 0
maxPasswordAge: 0
maxPasswordLength: 0
minPasswordDifferentChars: 0
minPasswordLength: 0
passwordNotContainUsername: false
passwordReusePrevention: 0
requireLowerCaseChars: false
requireNumbers: false
requireSymbols: false
requireUpperCaseChars: false
samlIdentityProviderConfiguration:
bindingType: string
certificateIds:
- string
createTime: string
encodedMetadataDocument: string
entityId: string
loginUrl: string
ssoStatus: string
updateTime: string
wantRequestSigned: false
samlServiceProvider:
acsUrl: string
authnSignAlgo: string
certificateType: string
encodedMetadataDocument: string
entityId: string
supportEncryptedAssertion: false
scimSynchronizationStatus: string
userProvisioningConfiguration:
defaultLandingPage: string
sessionDuration: string
Directory Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The Directory resource accepts the following input properties:
- Directory
Global stringAccess Status - Directory Global Acceleration activation status
- Directory
Name string - DirectoryName
- Login
Preference Pulumi.Ali Cloud. Cloud Sso. Inputs. Directory Login Preference - Login preferences See
login_preferencebelow. - Mfa
Authentication Pulumi.Setting Info Ali Cloud. Cloud Sso. Inputs. Directory Mfa Authentication Setting Info - Global MFA verification configuration. See
mfa_authentication_setting_infobelow. - Mfa
Authentication stringStatus - MFA Authentication Status
- Password
Policy Pulumi.Ali Cloud. Cloud Sso. Inputs. Directory Password Policy - Password policy See
password_policybelow. - Saml
Identity Pulumi.Provider Configuration Ali Cloud. Cloud Sso. Inputs. Directory Saml Identity Provider Configuration - Identity Provider (IDP) See
saml_identity_provider_configurationbelow. - Saml
Service Pulumi.Provider Ali Cloud. Cloud Sso. Inputs. Directory Saml Service Provider - SP information. See
saml_service_providerbelow. - Scim
Synchronization stringStatus - SCIM Synchronization Status
- User
Provisioning Pulumi.Configuration Ali Cloud. Cloud Sso. Inputs. Directory User Provisioning Configuration - User Provisioning configuration See
user_provisioning_configurationbelow.
- Directory
Global stringAccess Status - Directory Global Acceleration activation status
- Directory
Name string - DirectoryName
- Login
Preference DirectoryLogin Preference Args - Login preferences See
login_preferencebelow. - Mfa
Authentication DirectorySetting Info Mfa Authentication Setting Info Args - Global MFA verification configuration. See
mfa_authentication_setting_infobelow. - Mfa
Authentication stringStatus - MFA Authentication Status
- Password
Policy DirectoryPassword Policy Args - Password policy See
password_policybelow. - Saml
Identity DirectoryProvider Configuration Saml Identity Provider Configuration Args - Identity Provider (IDP) See
saml_identity_provider_configurationbelow. - Saml
Service DirectoryProvider Saml Service Provider Args - SP information. See
saml_service_providerbelow. - Scim
Synchronization stringStatus - SCIM Synchronization Status
- User
Provisioning DirectoryConfiguration User Provisioning Configuration Args - User Provisioning configuration See
user_provisioning_configurationbelow.
- directory
Global StringAccess Status - Directory Global Acceleration activation status
- directory
Name String - DirectoryName
- login
Preference DirectoryLogin Preference - Login preferences See
login_preferencebelow. - mfa
Authentication DirectorySetting Info Mfa Authentication Setting Info - Global MFA verification configuration. See
mfa_authentication_setting_infobelow. - mfa
Authentication StringStatus - MFA Authentication Status
- password
Policy DirectoryPassword Policy - Password policy See
password_policybelow. - saml
Identity DirectoryProvider Configuration Saml Identity Provider Configuration - Identity Provider (IDP) See
saml_identity_provider_configurationbelow. - saml
Service DirectoryProvider Saml Service Provider - SP information. See
saml_service_providerbelow. - scim
Synchronization StringStatus - SCIM Synchronization Status
- user
Provisioning DirectoryConfiguration User Provisioning Configuration - User Provisioning configuration See
user_provisioning_configurationbelow.
- directory
Global stringAccess Status - Directory Global Acceleration activation status
- directory
Name string - DirectoryName
- login
Preference DirectoryLogin Preference - Login preferences See
login_preferencebelow. - mfa
Authentication DirectorySetting Info Mfa Authentication Setting Info - Global MFA verification configuration. See
mfa_authentication_setting_infobelow. - mfa
Authentication stringStatus - MFA Authentication Status
- password
Policy DirectoryPassword Policy - Password policy See
password_policybelow. - saml
Identity DirectoryProvider Configuration Saml Identity Provider Configuration - Identity Provider (IDP) See
saml_identity_provider_configurationbelow. - saml
Service DirectoryProvider Saml Service Provider - SP information. See
saml_service_providerbelow. - scim
Synchronization stringStatus - SCIM Synchronization Status
- user
Provisioning DirectoryConfiguration User Provisioning Configuration - User Provisioning configuration See
user_provisioning_configurationbelow.
- directory_
global_ straccess_ status - Directory Global Acceleration activation status
- directory_
name str - DirectoryName
- login_
preference DirectoryLogin Preference Args - Login preferences See
login_preferencebelow. - mfa_
authentication_ Directorysetting_ info Mfa Authentication Setting Info Args - Global MFA verification configuration. See
mfa_authentication_setting_infobelow. - mfa_
authentication_ strstatus - MFA Authentication Status
- password_
policy DirectoryPassword Policy Args - Password policy See
password_policybelow. - saml_
identity_ Directoryprovider_ configuration Saml Identity Provider Configuration Args - Identity Provider (IDP) See
saml_identity_provider_configurationbelow. - saml_
service_ Directoryprovider Saml Service Provider Args - SP information. See
saml_service_providerbelow. - scim_
synchronization_ strstatus - SCIM Synchronization Status
- user_
provisioning_ Directoryconfiguration User Provisioning Configuration Args - User Provisioning configuration See
user_provisioning_configurationbelow.
- directory
Global StringAccess Status - Directory Global Acceleration activation status
- directory
Name String - DirectoryName
- login
Preference Property Map - Login preferences See
login_preferencebelow. - mfa
Authentication Property MapSetting Info - Global MFA verification configuration. See
mfa_authentication_setting_infobelow. - mfa
Authentication StringStatus - MFA Authentication Status
- password
Policy Property Map - Password policy See
password_policybelow. - saml
Identity Property MapProvider Configuration - Identity Provider (IDP) See
saml_identity_provider_configurationbelow. - saml
Service Property MapProvider - SP information. See
saml_service_providerbelow. - scim
Synchronization StringStatus - SCIM Synchronization Status
- user
Provisioning Property MapConfiguration - User Provisioning configuration See
user_provisioning_configurationbelow.
Outputs
All input properties are implicitly available as output properties. Additionally, the Directory resource produces the following output properties:
- Create
Time string - CreateTime
- Id string
- The provider-assigned unique ID for this managed resource.
- Create
Time string - CreateTime
- Id string
- The provider-assigned unique ID for this managed resource.
- create
Time String - CreateTime
- id String
- The provider-assigned unique ID for this managed resource.
- create
Time string - CreateTime
- id string
- The provider-assigned unique ID for this managed resource.
- create_
time str - CreateTime
- id str
- The provider-assigned unique ID for this managed resource.
- create
Time String - CreateTime
- id String
- The provider-assigned unique ID for this managed resource.
Look up Existing Directory Resource
Get an existing Directory resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: DirectoryState, opts?: CustomResourceOptions): Directory@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
create_time: Optional[str] = None,
directory_global_access_status: Optional[str] = None,
directory_name: Optional[str] = None,
login_preference: Optional[DirectoryLoginPreferenceArgs] = None,
mfa_authentication_setting_info: Optional[DirectoryMfaAuthenticationSettingInfoArgs] = None,
mfa_authentication_status: Optional[str] = None,
password_policy: Optional[DirectoryPasswordPolicyArgs] = None,
saml_identity_provider_configuration: Optional[DirectorySamlIdentityProviderConfigurationArgs] = None,
saml_service_provider: Optional[DirectorySamlServiceProviderArgs] = None,
scim_synchronization_status: Optional[str] = None,
user_provisioning_configuration: Optional[DirectoryUserProvisioningConfigurationArgs] = None) -> Directoryfunc GetDirectory(ctx *Context, name string, id IDInput, state *DirectoryState, opts ...ResourceOption) (*Directory, error)public static Directory Get(string name, Input<string> id, DirectoryState? state, CustomResourceOptions? opts = null)public static Directory get(String name, Output<String> id, DirectoryState state, CustomResourceOptions options)resources: _: type: alicloud:cloudsso:Directory get: id: ${id}- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Create
Time string - CreateTime
- Directory
Global stringAccess Status - Directory Global Acceleration activation status
- Directory
Name string - DirectoryName
- Login
Preference Pulumi.Ali Cloud. Cloud Sso. Inputs. Directory Login Preference - Login preferences See
login_preferencebelow. - Mfa
Authentication Pulumi.Setting Info Ali Cloud. Cloud Sso. Inputs. Directory Mfa Authentication Setting Info - Global MFA verification configuration. See
mfa_authentication_setting_infobelow. - Mfa
Authentication stringStatus - MFA Authentication Status
- Password
Policy Pulumi.Ali Cloud. Cloud Sso. Inputs. Directory Password Policy - Password policy See
password_policybelow. - Saml
Identity Pulumi.Provider Configuration Ali Cloud. Cloud Sso. Inputs. Directory Saml Identity Provider Configuration - Identity Provider (IDP) See
saml_identity_provider_configurationbelow. - Saml
Service Pulumi.Provider Ali Cloud. Cloud Sso. Inputs. Directory Saml Service Provider - SP information. See
saml_service_providerbelow. - Scim
Synchronization stringStatus - SCIM Synchronization Status
- User
Provisioning Pulumi.Configuration Ali Cloud. Cloud Sso. Inputs. Directory User Provisioning Configuration - User Provisioning configuration See
user_provisioning_configurationbelow.
- Create
Time string - CreateTime
- Directory
Global stringAccess Status - Directory Global Acceleration activation status
- Directory
Name string - DirectoryName
- Login
Preference DirectoryLogin Preference Args - Login preferences See
login_preferencebelow. - Mfa
Authentication DirectorySetting Info Mfa Authentication Setting Info Args - Global MFA verification configuration. See
mfa_authentication_setting_infobelow. - Mfa
Authentication stringStatus - MFA Authentication Status
- Password
Policy DirectoryPassword Policy Args - Password policy See
password_policybelow. - Saml
Identity DirectoryProvider Configuration Saml Identity Provider Configuration Args - Identity Provider (IDP) See
saml_identity_provider_configurationbelow. - Saml
Service DirectoryProvider Saml Service Provider Args - SP information. See
saml_service_providerbelow. - Scim
Synchronization stringStatus - SCIM Synchronization Status
- User
Provisioning DirectoryConfiguration User Provisioning Configuration Args - User Provisioning configuration See
user_provisioning_configurationbelow.
- create
Time String - CreateTime
- directory
Global StringAccess Status - Directory Global Acceleration activation status
- directory
Name String - DirectoryName
- login
Preference DirectoryLogin Preference - Login preferences See
login_preferencebelow. - mfa
Authentication DirectorySetting Info Mfa Authentication Setting Info - Global MFA verification configuration. See
mfa_authentication_setting_infobelow. - mfa
Authentication StringStatus - MFA Authentication Status
- password
Policy DirectoryPassword Policy - Password policy See
password_policybelow. - saml
Identity DirectoryProvider Configuration Saml Identity Provider Configuration - Identity Provider (IDP) See
saml_identity_provider_configurationbelow. - saml
Service DirectoryProvider Saml Service Provider - SP information. See
saml_service_providerbelow. - scim
Synchronization StringStatus - SCIM Synchronization Status
- user
Provisioning DirectoryConfiguration User Provisioning Configuration - User Provisioning configuration See
user_provisioning_configurationbelow.
- create
Time string - CreateTime
- directory
Global stringAccess Status - Directory Global Acceleration activation status
- directory
Name string - DirectoryName
- login
Preference DirectoryLogin Preference - Login preferences See
login_preferencebelow. - mfa
Authentication DirectorySetting Info Mfa Authentication Setting Info - Global MFA verification configuration. See
mfa_authentication_setting_infobelow. - mfa
Authentication stringStatus - MFA Authentication Status
- password
Policy DirectoryPassword Policy - Password policy See
password_policybelow. - saml
Identity DirectoryProvider Configuration Saml Identity Provider Configuration - Identity Provider (IDP) See
saml_identity_provider_configurationbelow. - saml
Service DirectoryProvider Saml Service Provider - SP information. See
saml_service_providerbelow. - scim
Synchronization stringStatus - SCIM Synchronization Status
- user
Provisioning DirectoryConfiguration User Provisioning Configuration - User Provisioning configuration See
user_provisioning_configurationbelow.
- create_
time str - CreateTime
- directory_
global_ straccess_ status - Directory Global Acceleration activation status
- directory_
name str - DirectoryName
- login_
preference DirectoryLogin Preference Args - Login preferences See
login_preferencebelow. - mfa_
authentication_ Directorysetting_ info Mfa Authentication Setting Info Args - Global MFA verification configuration. See
mfa_authentication_setting_infobelow. - mfa_
authentication_ strstatus - MFA Authentication Status
- password_
policy DirectoryPassword Policy Args - Password policy See
password_policybelow. - saml_
identity_ Directoryprovider_ configuration Saml Identity Provider Configuration Args - Identity Provider (IDP) See
saml_identity_provider_configurationbelow. - saml_
service_ Directoryprovider Saml Service Provider Args - SP information. See
saml_service_providerbelow. - scim_
synchronization_ strstatus - SCIM Synchronization Status
- user_
provisioning_ Directoryconfiguration User Provisioning Configuration Args - User Provisioning configuration See
user_provisioning_configurationbelow.
- create
Time String - CreateTime
- directory
Global StringAccess Status - Directory Global Acceleration activation status
- directory
Name String - DirectoryName
- login
Preference Property Map - Login preferences See
login_preferencebelow. - mfa
Authentication Property MapSetting Info - Global MFA verification configuration. See
mfa_authentication_setting_infobelow. - mfa
Authentication StringStatus - MFA Authentication Status
- password
Policy Property Map - Password policy See
password_policybelow. - saml
Identity Property MapProvider Configuration - Identity Provider (IDP) See
saml_identity_provider_configurationbelow. - saml
Service Property MapProvider - SP information. See
saml_service_providerbelow. - scim
Synchronization StringStatus - SCIM Synchronization Status
- user
Provisioning Property MapConfiguration - User Provisioning configuration See
user_provisioning_configurationbelow.
Supporting Types
DirectoryLoginPreference, DirectoryLoginPreferenceArgs
- Allow
User boolTo Get Credentials - Whether the user can obtain the program access credential in the portal after logging in.
- Login
Network stringMasks - IP address whitelist
- Allow
User boolTo Get Credentials - Whether the user can obtain the program access credential in the portal after logging in.
- Login
Network stringMasks - IP address whitelist
- allow
User BooleanTo Get Credentials - Whether the user can obtain the program access credential in the portal after logging in.
- login
Network StringMasks - IP address whitelist
- allow
User booleanTo Get Credentials - Whether the user can obtain the program access credential in the portal after logging in.
- login
Network stringMasks - IP address whitelist
- allow_
user_ boolto_ get_ credentials - Whether the user can obtain the program access credential in the portal after logging in.
- login_
network_ strmasks - IP address whitelist
- allow
User BooleanTo Get Credentials - Whether the user can obtain the program access credential in the portal after logging in.
- login
Network StringMasks - IP address whitelist
DirectoryMfaAuthenticationSettingInfo, DirectoryMfaAuthenticationSettingInfoArgs
- Mfa
Authentication stringAdvance Settings - Global MFA validation policy
- Operation
For stringRisk Login - MFA verification policy for abnormal logon.
- Mfa
Authentication stringAdvance Settings - Global MFA validation policy
- Operation
For stringRisk Login - MFA verification policy for abnormal logon.
- mfa
Authentication StringAdvance Settings - Global MFA validation policy
- operation
For StringRisk Login - MFA verification policy for abnormal logon.
- mfa
Authentication stringAdvance Settings - Global MFA validation policy
- operation
For stringRisk Login - MFA verification policy for abnormal logon.
- mfa_
authentication_ stradvance_ settings - Global MFA validation policy
- operation_
for_ strrisk_ login - MFA verification policy for abnormal logon.
- mfa
Authentication StringAdvance Settings - Global MFA validation policy
- operation
For StringRisk Login - MFA verification policy for abnormal logon.
DirectoryPasswordPolicy, DirectoryPasswordPolicyArgs
- Hard
Expire bool - Whether to restrict login after Password Expiration
- Max
Login intAttempts - Number of password retries.
- Max
Password intAge - Password validity period.
- Max
Password intLength - Maximum password length.
- Min
Password intDifferent Chars - The minimum number of different characters in a password.
- Min
Password intLength - Minimum password length.
- Password
Not boolContain Username - Whether the user name is not allowed in the password.
- Password
Reuse intPrevention - Historical password check policy.
- Require
Lower boolCase Chars - Whether lowercase letters are required in the password.
- Require
Numbers bool - Whether numbers are required in the password.
- Require
Symbols bool - Whether symbols are required in the password.
- Require
Upper boolCase Chars - Whether uppercase letters are required in the password.
- Hard
Expire bool - Whether to restrict login after Password Expiration
- Max
Login intAttempts - Number of password retries.
- Max
Password intAge - Password validity period.
- Max
Password intLength - Maximum password length.
- Min
Password intDifferent Chars - The minimum number of different characters in a password.
- Min
Password intLength - Minimum password length.
- Password
Not boolContain Username - Whether the user name is not allowed in the password.
- Password
Reuse intPrevention - Historical password check policy.
- Require
Lower boolCase Chars - Whether lowercase letters are required in the password.
- Require
Numbers bool - Whether numbers are required in the password.
- Require
Symbols bool - Whether symbols are required in the password.
- Require
Upper boolCase Chars - Whether uppercase letters are required in the password.
- hard
Expire Boolean - Whether to restrict login after Password Expiration
- max
Login IntegerAttempts - Number of password retries.
- max
Password IntegerAge - Password validity period.
- max
Password IntegerLength - Maximum password length.
- min
Password IntegerDifferent Chars - The minimum number of different characters in a password.
- min
Password IntegerLength - Minimum password length.
- password
Not BooleanContain Username - Whether the user name is not allowed in the password.
- password
Reuse IntegerPrevention - Historical password check policy.
- require
Lower BooleanCase Chars - Whether lowercase letters are required in the password.
- require
Numbers Boolean - Whether numbers are required in the password.
- require
Symbols Boolean - Whether symbols are required in the password.
- require
Upper BooleanCase Chars - Whether uppercase letters are required in the password.
- hard
Expire boolean - Whether to restrict login after Password Expiration
- max
Login numberAttempts - Number of password retries.
- max
Password numberAge - Password validity period.
- max
Password numberLength - Maximum password length.
- min
Password numberDifferent Chars - The minimum number of different characters in a password.
- min
Password numberLength - Minimum password length.
- password
Not booleanContain Username - Whether the user name is not allowed in the password.
- password
Reuse numberPrevention - Historical password check policy.
- require
Lower booleanCase Chars - Whether lowercase letters are required in the password.
- require
Numbers boolean - Whether numbers are required in the password.
- require
Symbols boolean - Whether symbols are required in the password.
- require
Upper booleanCase Chars - Whether uppercase letters are required in the password.
- hard_
expire bool - Whether to restrict login after Password Expiration
- max_
login_ intattempts - Number of password retries.
- max_
password_ intage - Password validity period.
- max_
password_ intlength - Maximum password length.
- min_
password_ intdifferent_ chars - The minimum number of different characters in a password.
- min_
password_ intlength - Minimum password length.
- password_
not_ boolcontain_ username - Whether the user name is not allowed in the password.
- password_
reuse_ intprevention - Historical password check policy.
- require_
lower_ boolcase_ chars - Whether lowercase letters are required in the password.
- require_
numbers bool - Whether numbers are required in the password.
- require_
symbols bool - Whether symbols are required in the password.
- require_
upper_ boolcase_ chars - Whether uppercase letters are required in the password.
- hard
Expire Boolean - Whether to restrict login after Password Expiration
- max
Login NumberAttempts - Number of password retries.
- max
Password NumberAge - Password validity period.
- max
Password NumberLength - Maximum password length.
- min
Password NumberDifferent Chars - The minimum number of different characters in a password.
- min
Password NumberLength - Minimum password length.
- password
Not BooleanContain Username - Whether the user name is not allowed in the password.
- password
Reuse NumberPrevention - Historical password check policy.
- require
Lower BooleanCase Chars - Whether lowercase letters are required in the password.
- require
Numbers Boolean - Whether numbers are required in the password.
- require
Symbols Boolean - Whether symbols are required in the password.
- require
Upper BooleanCase Chars - Whether uppercase letters are required in the password.
DirectorySamlIdentityProviderConfiguration, DirectorySamlIdentityProviderConfigurationArgs
- Binding
Type string - The Binding method for initiating a SAML request.
- Certificate
Ids List<string> - Certificate ID list
- Create
Time string - CreateTime
- Encoded
Metadata stringDocument - EncodedMetadataDocument
- Entity
Id string - EntityId
- Login
Url string - LoginUrl
- Sso
Status string - SSOStatus
- Update
Time string - UpdateTime
- Want
Request boolSigned - SP Request whether the signature is required
- Binding
Type string - The Binding method for initiating a SAML request.
- Certificate
Ids []string - Certificate ID list
- Create
Time string - CreateTime
- Encoded
Metadata stringDocument - EncodedMetadataDocument
- Entity
Id string - EntityId
- Login
Url string - LoginUrl
- Sso
Status string - SSOStatus
- Update
Time string - UpdateTime
- Want
Request boolSigned - SP Request whether the signature is required
- binding
Type String - The Binding method for initiating a SAML request.
- certificate
Ids List<String> - Certificate ID list
- create
Time String - CreateTime
- encoded
Metadata StringDocument - EncodedMetadataDocument
- entity
Id String - EntityId
- login
Url String - LoginUrl
- sso
Status String - SSOStatus
- update
Time String - UpdateTime
- want
Request BooleanSigned - SP Request whether the signature is required
- binding
Type string - The Binding method for initiating a SAML request.
- certificate
Ids string[] - Certificate ID list
- create
Time string - CreateTime
- encoded
Metadata stringDocument - EncodedMetadataDocument
- entity
Id string - EntityId
- login
Url string - LoginUrl
- sso
Status string - SSOStatus
- update
Time string - UpdateTime
- want
Request booleanSigned - SP Request whether the signature is required
- binding_
type str - The Binding method for initiating a SAML request.
- certificate_
ids Sequence[str] - Certificate ID list
- create_
time str - CreateTime
- encoded_
metadata_ strdocument - EncodedMetadataDocument
- entity_
id str - EntityId
- login_
url str - LoginUrl
- sso_
status str - SSOStatus
- update_
time str - UpdateTime
- want_
request_ boolsigned - SP Request whether the signature is required
- binding
Type String - The Binding method for initiating a SAML request.
- certificate
Ids List<String> - Certificate ID list
- create
Time String - CreateTime
- encoded
Metadata StringDocument - EncodedMetadataDocument
- entity
Id String - EntityId
- login
Url String - LoginUrl
- sso
Status String - SSOStatus
- update
Time String - UpdateTime
- want
Request BooleanSigned - SP Request whether the signature is required
DirectorySamlServiceProvider, DirectorySamlServiceProviderArgs
- Acs
Url string - ACS URL of SP.
- Authn
Sign stringAlgo - Signature algorithms supported by AuthNRequest
- Certificate
Type string - Type of certificate used for signing in the SSO process
- Encoded
Metadata stringDocument - SP metadata document (Base64 encoding).
- Entity
Id string - SP identity.
- Support
Encrypted boolAssertion - Whether IdP-side encryption of Assertion is supported.
- Acs
Url string - ACS URL of SP.
- Authn
Sign stringAlgo - Signature algorithms supported by AuthNRequest
- Certificate
Type string - Type of certificate used for signing in the SSO process
- Encoded
Metadata stringDocument - SP metadata document (Base64 encoding).
- Entity
Id string - SP identity.
- Support
Encrypted boolAssertion - Whether IdP-side encryption of Assertion is supported.
- acs
Url String - ACS URL of SP.
- authn
Sign StringAlgo - Signature algorithms supported by AuthNRequest
- certificate
Type String - Type of certificate used for signing in the SSO process
- encoded
Metadata StringDocument - SP metadata document (Base64 encoding).
- entity
Id String - SP identity.
- support
Encrypted BooleanAssertion - Whether IdP-side encryption of Assertion is supported.
- acs
Url string - ACS URL of SP.
- authn
Sign stringAlgo - Signature algorithms supported by AuthNRequest
- certificate
Type string - Type of certificate used for signing in the SSO process
- encoded
Metadata stringDocument - SP metadata document (Base64 encoding).
- entity
Id string - SP identity.
- support
Encrypted booleanAssertion - Whether IdP-side encryption of Assertion is supported.
- acs_
url str - ACS URL of SP.
- authn_
sign_ stralgo - Signature algorithms supported by AuthNRequest
- certificate_
type str - Type of certificate used for signing in the SSO process
- encoded_
metadata_ strdocument - SP metadata document (Base64 encoding).
- entity_
id str - SP identity.
- support_
encrypted_ boolassertion - Whether IdP-side encryption of Assertion is supported.
- acs
Url String - ACS URL of SP.
- authn
Sign StringAlgo - Signature algorithms supported by AuthNRequest
- certificate
Type String - Type of certificate used for signing in the SSO process
- encoded
Metadata StringDocument - SP metadata document (Base64 encoding).
- entity
Id String - SP identity.
- support
Encrypted BooleanAssertion - Whether IdP-side encryption of Assertion is supported.
DirectoryUserProvisioningConfiguration, DirectoryUserProvisioningConfigurationArgs
- Default
Landing stringPage - The duration of the Session after the user logs in.
- Session
Duration string - The duration of the Session after the user logs in.
- Default
Landing stringPage - The duration of the Session after the user logs in.
- Session
Duration string - The duration of the Session after the user logs in.
- default
Landing StringPage - The duration of the Session after the user logs in.
- session
Duration String - The duration of the Session after the user logs in.
- default
Landing stringPage - The duration of the Session after the user logs in.
- session
Duration string - The duration of the Session after the user logs in.
- default_
landing_ strpage - The duration of the Session after the user logs in.
- session_
duration str - The duration of the Session after the user logs in.
- default
Landing StringPage - The duration of the Session after the user logs in.
- session
Duration String - The duration of the Session after the user logs in.
Import
Cloud SSO Directory can be imported using the id, e.g.
$ pulumi import alicloud:cloudsso/directory:Directory example <id>
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- Alibaba Cloud pulumi/pulumi-alicloud
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
alicloudTerraform Provider.