Rancher 2 v3.9.0, Jan 18 23

rancher2.AuthConfigFreeIpa

Provides a Rancher v2 Auth Config FreeIpa resource. This can be used to configure and enable Auth Config FreeIpa for Rancher v2 RKE clusters and retrieve their information.

In addition to the built-in local auth, only one external auth config provider can be enabled at a time.

Create AuthConfigFreeIpa Resource

new AuthConfigFreeIpa(name: string, args: AuthConfigFreeIpaArgs, opts?: CustomResourceOptions);

@overload
def AuthConfigFreeIpa(resource_name: str,
                      opts: Optional[ResourceOptions] = None,
                      access_mode: Optional[str] = None,
                      allowed_principal_ids: Optional[Sequence[str]] = None,
                      annotations: Optional[Mapping[str, Any]] = None,
                      certificate: Optional[str] = None,
                      connection_timeout: Optional[int] = None,
                      enabled: Optional[bool] = None,
                      group_dn_attribute: Optional[str] = None,
                      group_member_mapping_attribute: Optional[str] = None,
                      group_member_user_attribute: Optional[str] = None,
                      group_name_attribute: Optional[str] = None,
                      group_object_class: Optional[str] = None,
                      group_search_attribute: Optional[str] = None,
                      group_search_base: Optional[str] = None,
                      labels: Optional[Mapping[str, Any]] = None,
                      nested_group_membership_enabled: Optional[bool] = None,
                      port: Optional[int] = None,
                      servers: Optional[Sequence[str]] = None,
                      service_account_distinguished_name: Optional[str] = None,
                      service_account_password: Optional[str] = None,
                      test_password: Optional[str] = None,
                      test_username: Optional[str] = None,
                      tls: Optional[bool] = None,
                      user_disabled_bit_mask: Optional[int] = None,
                      user_enabled_attribute: Optional[str] = None,
                      user_login_attribute: Optional[str] = None,
                      user_member_attribute: Optional[str] = None,
                      user_name_attribute: Optional[str] = None,
                      user_object_class: Optional[str] = None,
                      user_search_attribute: Optional[str] = None,
                      user_search_base: Optional[str] = None)
@overload
def AuthConfigFreeIpa(resource_name: str,
                      args: AuthConfigFreeIpaArgs,
                      opts: Optional[ResourceOptions] = None)

func NewAuthConfigFreeIpa(ctx *Context, name string, args AuthConfigFreeIpaArgs, opts ...ResourceOption) (*AuthConfigFreeIpa, error)

public AuthConfigFreeIpa(string name, AuthConfigFreeIpaArgs args, CustomResourceOptions? opts = null)

public AuthConfigFreeIpa(String name, AuthConfigFreeIpaArgs args)
public AuthConfigFreeIpa(String name, AuthConfigFreeIpaArgs args, CustomResourceOptions options)

type: rancher2:AuthConfigFreeIpa
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

name string: The unique name of the resource.
args AuthConfigFreeIpaArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args AuthConfigFreeIpaArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args AuthConfigFreeIpaArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args AuthConfigFreeIpaArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args AuthConfigFreeIpaArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

AuthConfigFreeIpa Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

The AuthConfigFreeIpa resource accepts the following input properties:

Servers List<string>: FreeIpa servers list (list)
ServiceAccountDistinguishedName string: Service account DN for access FreeIpa service (string)
ServiceAccountPassword string: Service account password for access FreeIpa service (string)
TestPassword string: Password for test access to FreeIpa service (string)
TestUsername string: Username for test access to FreeIpa service (string)
UserSearchBase string: User search base DN (string)
AccessMode string: Access mode for auth. required, restricted, unrestricted are supported. Default unrestricted (string)
AllowedPrincipalIds List<string>: Allowed principal ids for auth. Required if access_mode is required or restricted. Ex: freeipa_user://<DN> freeipa_group://<DN> (list)
Annotations Dictionary<string, object>: Annotations of the resource (map)
Certificate string: Base64 encoded CA certificate for TLS if self-signed. Use filebase64() for encoding file (string)
ConnectionTimeout int: FreeIpa connection timeout. Default 5000 (int)
Enabled bool: Enable auth config provider. Default true (bool)
GroupDnAttribute string: Group DN attribute. Default entryDN (string)
GroupMemberMappingAttribute string: Group member mapping attribute. Default member (string)
GroupMemberUserAttribute string: Group member user attribute. Default entryDN (string)
GroupNameAttribute string: Group name attribute. Default cn (string)
GroupObjectClass string: Group object class. Default groupOfNames (string)
GroupSearchAttribute string: Group search attribute. Default cn (string)
GroupSearchBase string: Group search base (string)
Labels Dictionary<string, object>: Labels of the resource (map)
NestedGroupMembershipEnabled bool: Nested group membership enable. Default false (bool)
Port int: FreeIpa port. Default 389 (int)
Tls bool: Enable TLS connection (bool)
UserDisabledBitMask int: User disabled bit mask (int)
UserEnabledAttribute string: User enable attribute (string)
UserLoginAttribute string: User login attribute. Default uid (string)
UserMemberAttribute string: User member attribute. Default memberOf (string)
UserNameAttribute string: User name attribute. Default givenName (string)
UserObjectClass string: User object class. Default inetorgperson (string)
UserSearchAttribute string: User search attribute. Default uid|sn|givenName (string)

Servers []string: FreeIpa servers list (list)
ServiceAccountDistinguishedName string: Service account DN for access FreeIpa service (string)
ServiceAccountPassword string: Service account password for access FreeIpa service (string)
TestPassword string: Password for test access to FreeIpa service (string)
TestUsername string: Username for test access to FreeIpa service (string)
UserSearchBase string: User search base DN (string)
AccessMode string: Access mode for auth. required, restricted, unrestricted are supported. Default unrestricted (string)
AllowedPrincipalIds []string: Allowed principal ids for auth. Required if access_mode is required or restricted. Ex: freeipa_user://<DN> freeipa_group://<DN> (list)
Annotations map[string]interface{}: Annotations of the resource (map)
Certificate string: Base64 encoded CA certificate for TLS if self-signed. Use filebase64() for encoding file (string)
ConnectionTimeout int: FreeIpa connection timeout. Default 5000 (int)
Enabled bool: Enable auth config provider. Default true (bool)
GroupDnAttribute string: Group DN attribute. Default entryDN (string)
GroupMemberMappingAttribute string: Group member mapping attribute. Default member (string)
GroupMemberUserAttribute string: Group member user attribute. Default entryDN (string)
GroupNameAttribute string: Group name attribute. Default cn (string)
GroupObjectClass string: Group object class. Default groupOfNames (string)
GroupSearchAttribute string: Group search attribute. Default cn (string)
GroupSearchBase string: Group search base (string)
Labels map[string]interface{}: Labels of the resource (map)
NestedGroupMembershipEnabled bool: Nested group membership enable. Default false (bool)
Port int: FreeIpa port. Default 389 (int)
Tls bool: Enable TLS connection (bool)
UserDisabledBitMask int: User disabled bit mask (int)
UserEnabledAttribute string: User enable attribute (string)
UserLoginAttribute string: User login attribute. Default uid (string)
UserMemberAttribute string: User member attribute. Default memberOf (string)
UserNameAttribute string: User name attribute. Default givenName (string)
UserObjectClass string: User object class. Default inetorgperson (string)
UserSearchAttribute string: User search attribute. Default uid|sn|givenName (string)

servers List<String>: FreeIpa servers list (list)
serviceAccountDistinguishedName String: Service account DN for access FreeIpa service (string)
serviceAccountPassword String: Service account password for access FreeIpa service (string)
testPassword String: Password for test access to FreeIpa service (string)
testUsername String: Username for test access to FreeIpa service (string)
userSearchBase String: User search base DN (string)
accessMode String: Access mode for auth. required, restricted, unrestricted are supported. Default unrestricted (string)
allowedPrincipalIds List<String>: Allowed principal ids for auth. Required if access_mode is required or restricted. Ex: freeipa_user://<DN> freeipa_group://<DN> (list)
annotations Map<String,Object>: Annotations of the resource (map)
certificate String: Base64 encoded CA certificate for TLS if self-signed. Use filebase64() for encoding file (string)
connectionTimeout Integer: FreeIpa connection timeout. Default 5000 (int)
enabled Boolean: Enable auth config provider. Default true (bool)
groupDnAttribute String: Group DN attribute. Default entryDN (string)
groupMemberMappingAttribute String: Group member mapping attribute. Default member (string)
groupMemberUserAttribute String: Group member user attribute. Default entryDN (string)
groupNameAttribute String: Group name attribute. Default cn (string)
groupObjectClass String: Group object class. Default groupOfNames (string)
groupSearchAttribute String: Group search attribute. Default cn (string)
groupSearchBase String: Group search base (string)
labels Map<String,Object>: Labels of the resource (map)
nestedGroupMembershipEnabled Boolean: Nested group membership enable. Default false (bool)
port Integer: FreeIpa port. Default 389 (int)
tls Boolean: Enable TLS connection (bool)
userDisabledBitMask Integer: User disabled bit mask (int)
userEnabledAttribute String: User enable attribute (string)
userLoginAttribute String: User login attribute. Default uid (string)
userMemberAttribute String: User member attribute. Default memberOf (string)
userNameAttribute String: User name attribute. Default givenName (string)
userObjectClass String: User object class. Default inetorgperson (string)
userSearchAttribute String: User search attribute. Default uid|sn|givenName (string)

servers string[]: FreeIpa servers list (list)
serviceAccountDistinguishedName string: Service account DN for access FreeIpa service (string)
serviceAccountPassword string: Service account password for access FreeIpa service (string)
testPassword string: Password for test access to FreeIpa service (string)
testUsername string: Username for test access to FreeIpa service (string)
userSearchBase string: User search base DN (string)
accessMode string: Access mode for auth. required, restricted, unrestricted are supported. Default unrestricted (string)
allowedPrincipalIds string[]: Allowed principal ids for auth. Required if access_mode is required or restricted. Ex: freeipa_user://<DN> freeipa_group://<DN> (list)
annotations {[key: string]: any}: Annotations of the resource (map)
certificate string: Base64 encoded CA certificate for TLS if self-signed. Use filebase64() for encoding file (string)
connectionTimeout number: FreeIpa connection timeout. Default 5000 (int)
enabled boolean: Enable auth config provider. Default true (bool)
groupDnAttribute string: Group DN attribute. Default entryDN (string)
groupMemberMappingAttribute string: Group member mapping attribute. Default member (string)
groupMemberUserAttribute string: Group member user attribute. Default entryDN (string)
groupNameAttribute string: Group name attribute. Default cn (string)
groupObjectClass string: Group object class. Default groupOfNames (string)
groupSearchAttribute string: Group search attribute. Default cn (string)
groupSearchBase string: Group search base (string)
labels {[key: string]: any}: Labels of the resource (map)
nestedGroupMembershipEnabled boolean: Nested group membership enable. Default false (bool)
port number: FreeIpa port. Default 389 (int)
tls boolean: Enable TLS connection (bool)
userDisabledBitMask number: User disabled bit mask (int)
userEnabledAttribute string: User enable attribute (string)
userLoginAttribute string: User login attribute. Default uid (string)
userMemberAttribute string: User member attribute. Default memberOf (string)
userNameAttribute string: User name attribute. Default givenName (string)
userObjectClass string: User object class. Default inetorgperson (string)
userSearchAttribute string: User search attribute. Default uid|sn|givenName (string)

servers Sequence[str]: FreeIpa servers list (list)
service_account_distinguished_name str: Service account DN for access FreeIpa service (string)
service_account_password str: Service account password for access FreeIpa service (string)
test_password str: Password for test access to FreeIpa service (string)
test_username str: Username for test access to FreeIpa service (string)
user_search_base str: User search base DN (string)
access_mode str: Access mode for auth. required, restricted, unrestricted are supported. Default unrestricted (string)
allowed_principal_ids Sequence[str]: Allowed principal ids for auth. Required if access_mode is required or restricted. Ex: freeipa_user://<DN> freeipa_group://<DN> (list)
annotations Mapping[str, Any]: Annotations of the resource (map)
certificate str: Base64 encoded CA certificate for TLS if self-signed. Use filebase64() for encoding file (string)
connection_timeout int: FreeIpa connection timeout. Default 5000 (int)
enabled bool: Enable auth config provider. Default true (bool)
group_dn_attribute str: Group DN attribute. Default entryDN (string)
group_member_mapping_attribute str: Group member mapping attribute. Default member (string)
group_member_user_attribute str: Group member user attribute. Default entryDN (string)
group_name_attribute str: Group name attribute. Default cn (string)
group_object_class str: Group object class. Default groupOfNames (string)
group_search_attribute str: Group search attribute. Default cn (string)
group_search_base str: Group search base (string)
labels Mapping[str, Any]: Labels of the resource (map)
nested_group_membership_enabled bool: Nested group membership enable. Default false (bool)
port int: FreeIpa port. Default 389 (int)
tls bool: Enable TLS connection (bool)
user_disabled_bit_mask int: User disabled bit mask (int)
user_enabled_attribute str: User enable attribute (string)
user_login_attribute str: User login attribute. Default uid (string)
user_member_attribute str: User member attribute. Default memberOf (string)
user_name_attribute str: User name attribute. Default givenName (string)
user_object_class str: User object class. Default inetorgperson (string)
user_search_attribute str: User search attribute. Default uid|sn|givenName (string)

servers List<String>: FreeIpa servers list (list)
serviceAccountDistinguishedName String: Service account DN for access FreeIpa service (string)
serviceAccountPassword String: Service account password for access FreeIpa service (string)
testPassword String: Password for test access to FreeIpa service (string)
testUsername String: Username for test access to FreeIpa service (string)
userSearchBase String: User search base DN (string)
accessMode String: Access mode for auth. required, restricted, unrestricted are supported. Default unrestricted (string)
allowedPrincipalIds List<String>: Allowed principal ids for auth. Required if access_mode is required or restricted. Ex: freeipa_user://<DN> freeipa_group://<DN> (list)
annotations Map<Any>: Annotations of the resource (map)
certificate String: Base64 encoded CA certificate for TLS if self-signed. Use filebase64() for encoding file (string)
connectionTimeout Number: FreeIpa connection timeout. Default 5000 (int)
enabled Boolean: Enable auth config provider. Default true (bool)
groupDnAttribute String: Group DN attribute. Default entryDN (string)
groupMemberMappingAttribute String: Group member mapping attribute. Default member (string)
groupMemberUserAttribute String: Group member user attribute. Default entryDN (string)
groupNameAttribute String: Group name attribute. Default cn (string)
groupObjectClass String: Group object class. Default groupOfNames (string)
groupSearchAttribute String: Group search attribute. Default cn (string)
groupSearchBase String: Group search base (string)
labels Map<Any>: Labels of the resource (map)
nestedGroupMembershipEnabled Boolean: Nested group membership enable. Default false (bool)
port Number: FreeIpa port. Default 389 (int)
tls Boolean: Enable TLS connection (bool)
userDisabledBitMask Number: User disabled bit mask (int)
userEnabledAttribute String: User enable attribute (string)
userLoginAttribute String: User login attribute. Default uid (string)
userMemberAttribute String: User member attribute. Default memberOf (string)
userNameAttribute String: User name attribute. Default givenName (string)
userObjectClass String: User object class. Default inetorgperson (string)
userSearchAttribute String: User search attribute. Default uid|sn|givenName (string)

Outputs

All input properties are implicitly available as output properties. Additionally, the AuthConfigFreeIpa resource produces the following output properties:

Id string: The provider-assigned unique ID for this managed resource.
Name string: (Computed) The name of the resource (string)
Type string: (Computed) The type of the resource (string)

Id string: The provider-assigned unique ID for this managed resource.
Name string: (Computed) The name of the resource (string)
Type string: (Computed) The type of the resource (string)

id String: The provider-assigned unique ID for this managed resource.
name String: (Computed) The name of the resource (string)
type String: (Computed) The type of the resource (string)

id string: The provider-assigned unique ID for this managed resource.
name string: (Computed) The name of the resource (string)
type string: (Computed) The type of the resource (string)

id str: The provider-assigned unique ID for this managed resource.
name str: (Computed) The name of the resource (string)
type str: (Computed) The type of the resource (string)

id String: The provider-assigned unique ID for this managed resource.
name String: (Computed) The name of the resource (string)
type String: (Computed) The type of the resource (string)

Look up Existing AuthConfigFreeIpa Resource

Get an existing AuthConfigFreeIpa resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: AuthConfigFreeIpaState, opts?: CustomResourceOptions): AuthConfigFreeIpa

@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        access_mode: Optional[str] = None,
        allowed_principal_ids: Optional[Sequence[str]] = None,
        annotations: Optional[Mapping[str, Any]] = None,
        certificate: Optional[str] = None,
        connection_timeout: Optional[int] = None,
        enabled: Optional[bool] = None,
        group_dn_attribute: Optional[str] = None,
        group_member_mapping_attribute: Optional[str] = None,
        group_member_user_attribute: Optional[str] = None,
        group_name_attribute: Optional[str] = None,
        group_object_class: Optional[str] = None,
        group_search_attribute: Optional[str] = None,
        group_search_base: Optional[str] = None,
        labels: Optional[Mapping[str, Any]] = None,
        name: Optional[str] = None,
        nested_group_membership_enabled: Optional[bool] = None,
        port: Optional[int] = None,
        servers: Optional[Sequence[str]] = None,
        service_account_distinguished_name: Optional[str] = None,
        service_account_password: Optional[str] = None,
        test_password: Optional[str] = None,
        test_username: Optional[str] = None,
        tls: Optional[bool] = None,
        type: Optional[str] = None,
        user_disabled_bit_mask: Optional[int] = None,
        user_enabled_attribute: Optional[str] = None,
        user_login_attribute: Optional[str] = None,
        user_member_attribute: Optional[str] = None,
        user_name_attribute: Optional[str] = None,
        user_object_class: Optional[str] = None,
        user_search_attribute: Optional[str] = None,
        user_search_base: Optional[str] = None) -> AuthConfigFreeIpa

func GetAuthConfigFreeIpa(ctx *Context, name string, id IDInput, state *AuthConfigFreeIpaState, opts ...ResourceOption) (*AuthConfigFreeIpa, error)

public static AuthConfigFreeIpa Get(string name, Input<string> id, AuthConfigFreeIpaState? state, CustomResourceOptions? opts = null)

public static AuthConfigFreeIpa get(String name, Output<String> id, AuthConfigFreeIpaState state, CustomResourceOptions options)

Resource lookup is not supported in YAML

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

AccessMode string: Access mode for auth. required, restricted, unrestricted are supported. Default unrestricted (string)
AllowedPrincipalIds List<string>: Allowed principal ids for auth. Required if access_mode is required or restricted. Ex: freeipa_user://<DN> freeipa_group://<DN> (list)
Annotations Dictionary<string, object>: Annotations of the resource (map)
Certificate string: Base64 encoded CA certificate for TLS if self-signed. Use filebase64() for encoding file (string)
ConnectionTimeout int: FreeIpa connection timeout. Default 5000 (int)
Enabled bool: Enable auth config provider. Default true (bool)
GroupDnAttribute string: Group DN attribute. Default entryDN (string)
GroupMemberMappingAttribute string: Group member mapping attribute. Default member (string)
GroupMemberUserAttribute string: Group member user attribute. Default entryDN (string)
GroupNameAttribute string: Group name attribute. Default cn (string)
GroupObjectClass string: Group object class. Default groupOfNames (string)
GroupSearchAttribute string: Group search attribute. Default cn (string)
GroupSearchBase string: Group search base (string)
Labels Dictionary<string, object>: Labels of the resource (map)
Name string: (Computed) The name of the resource (string)
NestedGroupMembershipEnabled bool: Nested group membership enable. Default false (bool)
Port int: FreeIpa port. Default 389 (int)
Servers List<string>: FreeIpa servers list (list)
ServiceAccountDistinguishedName string: Service account DN for access FreeIpa service (string)
ServiceAccountPassword string: Service account password for access FreeIpa service (string)
TestPassword string: Password for test access to FreeIpa service (string)
TestUsername string: Username for test access to FreeIpa service (string)
Tls bool: Enable TLS connection (bool)
Type string: (Computed) The type of the resource (string)
UserDisabledBitMask int: User disabled bit mask (int)
UserEnabledAttribute string: User enable attribute (string)
UserLoginAttribute string: User login attribute. Default uid (string)
UserMemberAttribute string: User member attribute. Default memberOf (string)
UserNameAttribute string: User name attribute. Default givenName (string)
UserObjectClass string: User object class. Default inetorgperson (string)
UserSearchAttribute string: User search attribute. Default uid|sn|givenName (string)
UserSearchBase string: User search base DN (string)

AccessMode string: Access mode for auth. required, restricted, unrestricted are supported. Default unrestricted (string)
AllowedPrincipalIds []string: Allowed principal ids for auth. Required if access_mode is required or restricted. Ex: freeipa_user://<DN> freeipa_group://<DN> (list)
Annotations map[string]interface{}: Annotations of the resource (map)
Certificate string: Base64 encoded CA certificate for TLS if self-signed. Use filebase64() for encoding file (string)
ConnectionTimeout int: FreeIpa connection timeout. Default 5000 (int)
Enabled bool: Enable auth config provider. Default true (bool)
GroupDnAttribute string: Group DN attribute. Default entryDN (string)
GroupMemberMappingAttribute string: Group member mapping attribute. Default member (string)
GroupMemberUserAttribute string: Group member user attribute. Default entryDN (string)
GroupNameAttribute string: Group name attribute. Default cn (string)
GroupObjectClass string: Group object class. Default groupOfNames (string)
GroupSearchAttribute string: Group search attribute. Default cn (string)
GroupSearchBase string: Group search base (string)
Labels map[string]interface{}: Labels of the resource (map)
Name string: (Computed) The name of the resource (string)
NestedGroupMembershipEnabled bool: Nested group membership enable. Default false (bool)
Port int: FreeIpa port. Default 389 (int)
Servers []string: FreeIpa servers list (list)
ServiceAccountDistinguishedName string: Service account DN for access FreeIpa service (string)
ServiceAccountPassword string: Service account password for access FreeIpa service (string)
TestPassword string: Password for test access to FreeIpa service (string)
TestUsername string: Username for test access to FreeIpa service (string)
Tls bool: Enable TLS connection (bool)
Type string: (Computed) The type of the resource (string)
UserDisabledBitMask int: User disabled bit mask (int)
UserEnabledAttribute string: User enable attribute (string)
UserLoginAttribute string: User login attribute. Default uid (string)
UserMemberAttribute string: User member attribute. Default memberOf (string)
UserNameAttribute string: User name attribute. Default givenName (string)
UserObjectClass string: User object class. Default inetorgperson (string)
UserSearchAttribute string: User search attribute. Default uid|sn|givenName (string)
UserSearchBase string: User search base DN (string)

accessMode String: Access mode for auth. required, restricted, unrestricted are supported. Default unrestricted (string)
allowedPrincipalIds List<String>: Allowed principal ids for auth. Required if access_mode is required or restricted. Ex: freeipa_user://<DN> freeipa_group://<DN> (list)
annotations Map<String,Object>: Annotations of the resource (map)
certificate String: Base64 encoded CA certificate for TLS if self-signed. Use filebase64() for encoding file (string)
connectionTimeout Integer: FreeIpa connection timeout. Default 5000 (int)
enabled Boolean: Enable auth config provider. Default true (bool)
groupDnAttribute String: Group DN attribute. Default entryDN (string)
groupMemberMappingAttribute String: Group member mapping attribute. Default member (string)
groupMemberUserAttribute String: Group member user attribute. Default entryDN (string)
groupNameAttribute String: Group name attribute. Default cn (string)
groupObjectClass String: Group object class. Default groupOfNames (string)
groupSearchAttribute String: Group search attribute. Default cn (string)
groupSearchBase String: Group search base (string)
labels Map<String,Object>: Labels of the resource (map)
name String: (Computed) The name of the resource (string)
nestedGroupMembershipEnabled Boolean: Nested group membership enable. Default false (bool)
port Integer: FreeIpa port. Default 389 (int)
servers List<String>: FreeIpa servers list (list)
serviceAccountDistinguishedName String: Service account DN for access FreeIpa service (string)
serviceAccountPassword String: Service account password for access FreeIpa service (string)
testPassword String: Password for test access to FreeIpa service (string)
testUsername String: Username for test access to FreeIpa service (string)
tls Boolean: Enable TLS connection (bool)
type String: (Computed) The type of the resource (string)
userDisabledBitMask Integer: User disabled bit mask (int)
userEnabledAttribute String: User enable attribute (string)
userLoginAttribute String: User login attribute. Default uid (string)
userMemberAttribute String: User member attribute. Default memberOf (string)
userNameAttribute String: User name attribute. Default givenName (string)
userObjectClass String: User object class. Default inetorgperson (string)
userSearchAttribute String: User search attribute. Default uid|sn|givenName (string)
userSearchBase String: User search base DN (string)

accessMode string: Access mode for auth. required, restricted, unrestricted are supported. Default unrestricted (string)
allowedPrincipalIds string[]: Allowed principal ids for auth. Required if access_mode is required or restricted. Ex: freeipa_user://<DN> freeipa_group://<DN> (list)
annotations {[key: string]: any}: Annotations of the resource (map)
certificate string: Base64 encoded CA certificate for TLS if self-signed. Use filebase64() for encoding file (string)
connectionTimeout number: FreeIpa connection timeout. Default 5000 (int)
enabled boolean: Enable auth config provider. Default true (bool)
groupDnAttribute string: Group DN attribute. Default entryDN (string)
groupMemberMappingAttribute string: Group member mapping attribute. Default member (string)
groupMemberUserAttribute string: Group member user attribute. Default entryDN (string)
groupNameAttribute string: Group name attribute. Default cn (string)
groupObjectClass string: Group object class. Default groupOfNames (string)
groupSearchAttribute string: Group search attribute. Default cn (string)
groupSearchBase string: Group search base (string)
labels {[key: string]: any}: Labels of the resource (map)
name string: (Computed) The name of the resource (string)
nestedGroupMembershipEnabled boolean: Nested group membership enable. Default false (bool)
port number: FreeIpa port. Default 389 (int)
servers string[]: FreeIpa servers list (list)
serviceAccountDistinguishedName string: Service account DN for access FreeIpa service (string)
serviceAccountPassword string: Service account password for access FreeIpa service (string)
testPassword string: Password for test access to FreeIpa service (string)
testUsername string: Username for test access to FreeIpa service (string)
tls boolean: Enable TLS connection (bool)
type string: (Computed) The type of the resource (string)
userDisabledBitMask number: User disabled bit mask (int)
userEnabledAttribute string: User enable attribute (string)
userLoginAttribute string: User login attribute. Default uid (string)
userMemberAttribute string: User member attribute. Default memberOf (string)
userNameAttribute string: User name attribute. Default givenName (string)
userObjectClass string: User object class. Default inetorgperson (string)
userSearchAttribute string: User search attribute. Default uid|sn|givenName (string)
userSearchBase string: User search base DN (string)

access_mode str: Access mode for auth. required, restricted, unrestricted are supported. Default unrestricted (string)
allowed_principal_ids Sequence[str]: Allowed principal ids for auth. Required if access_mode is required or restricted. Ex: freeipa_user://<DN> freeipa_group://<DN> (list)
annotations Mapping[str, Any]: Annotations of the resource (map)
certificate str: Base64 encoded CA certificate for TLS if self-signed. Use filebase64() for encoding file (string)
connection_timeout int: FreeIpa connection timeout. Default 5000 (int)
enabled bool: Enable auth config provider. Default true (bool)
group_dn_attribute str: Group DN attribute. Default entryDN (string)
group_member_mapping_attribute str: Group member mapping attribute. Default member (string)
group_member_user_attribute str: Group member user attribute. Default entryDN (string)
group_name_attribute str: Group name attribute. Default cn (string)
group_object_class str: Group object class. Default groupOfNames (string)
group_search_attribute str: Group search attribute. Default cn (string)
group_search_base str: Group search base (string)
labels Mapping[str, Any]: Labels of the resource (map)
name str: (Computed) The name of the resource (string)
nested_group_membership_enabled bool: Nested group membership enable. Default false (bool)
port int: FreeIpa port. Default 389 (int)
servers Sequence[str]: FreeIpa servers list (list)
service_account_distinguished_name str: Service account DN for access FreeIpa service (string)
service_account_password str: Service account password for access FreeIpa service (string)
test_password str: Password for test access to FreeIpa service (string)
test_username str: Username for test access to FreeIpa service (string)
tls bool: Enable TLS connection (bool)
type str: (Computed) The type of the resource (string)
user_disabled_bit_mask int: User disabled bit mask (int)
user_enabled_attribute str: User enable attribute (string)
user_login_attribute str: User login attribute. Default uid (string)
user_member_attribute str: User member attribute. Default memberOf (string)
user_name_attribute str: User name attribute. Default givenName (string)
user_object_class str: User object class. Default inetorgperson (string)
user_search_attribute str: User search attribute. Default uid|sn|givenName (string)
user_search_base str: User search base DN (string)

accessMode String: Access mode for auth. required, restricted, unrestricted are supported. Default unrestricted (string)
allowedPrincipalIds List<String>: Allowed principal ids for auth. Required if access_mode is required or restricted. Ex: freeipa_user://<DN> freeipa_group://<DN> (list)
annotations Map<Any>: Annotations of the resource (map)
certificate String: Base64 encoded CA certificate for TLS if self-signed. Use filebase64() for encoding file (string)
connectionTimeout Number: FreeIpa connection timeout. Default 5000 (int)
enabled Boolean: Enable auth config provider. Default true (bool)
groupDnAttribute String: Group DN attribute. Default entryDN (string)
groupMemberMappingAttribute String: Group member mapping attribute. Default member (string)
groupMemberUserAttribute String: Group member user attribute. Default entryDN (string)
groupNameAttribute String: Group name attribute. Default cn (string)
groupObjectClass String: Group object class. Default groupOfNames (string)
groupSearchAttribute String: Group search attribute. Default cn (string)
groupSearchBase String: Group search base (string)
labels Map<Any>: Labels of the resource (map)
name String: (Computed) The name of the resource (string)
nestedGroupMembershipEnabled Boolean: Nested group membership enable. Default false (bool)
port Number: FreeIpa port. Default 389 (int)
servers List<String>: FreeIpa servers list (list)
serviceAccountDistinguishedName String: Service account DN for access FreeIpa service (string)
serviceAccountPassword String: Service account password for access FreeIpa service (string)
testPassword String: Password for test access to FreeIpa service (string)
testUsername String: Username for test access to FreeIpa service (string)
tls Boolean: Enable TLS connection (bool)
type String: (Computed) The type of the resource (string)
userDisabledBitMask Number: User disabled bit mask (int)
userEnabledAttribute String: User enable attribute (string)
userLoginAttribute String: User login attribute. Default uid (string)
userMemberAttribute String: User member attribute. Default memberOf (string)
userNameAttribute String: User name attribute. Default givenName (string)
userObjectClass String: User object class. Default inetorgperson (string)
userSearchAttribute String: User search attribute. Default uid|sn|givenName (string)
userSearchBase String: User search base DN (string)

Package Details

Repository: Rancher2 pulumi/pulumi-rancher2
License: Apache-2.0
Notes: This Pulumi package is based on the rancher2 Terraform Provider.