AI 助理
备案控制台
文档
输入文档关键字查找
首页 Terraform 资源列表 Cloud SSO Resources alicloud_cloud_sso_directory

alicloud_cloud_sso_directory

更新时间:
我的收藏

Provides a Cloud SSO Directory resource.

For information about Cloud SSO Directory and how to use it, see What is Directory.

-> NOTE: Available since v1.135.0.

-> NOTE: Cloud SSO Only Support cn-shanghai And us-west-1 Region

Example Usage

Basic Usage


variable "name" {
  default = "tf-example"
}
provider "alicloud" {
  region = "cn-shanghai"
}
data "alicloud_cloud_sso_directories" "default" {}

resource "alicloud_cloud_sso_directory" "default" {
  count          = length(data.alicloud_cloud_sso_directories.default.ids) > 0 ? 0 : 1
  directory_name = var.name
}

Argument Reference

The following arguments are supported:

  • directory_name - (Optional, Sensitive) The name of the CloudSSO directory. The length is 2-64 characters, and it can contain lowercase letters, numbers, and dashes (-). It cannot start or end with a dash and cannot have two consecutive dashes. Need to be globally unique, and capitalization is not supported. Cannot start with d-.
  • mfa_authentication_status - (Optional) The mfa authentication status. Valid values: Enabled or Disabled. Default to Enabled.
  • scim_synchronization_status - (Optional) The scim synchronization status. Valid values: Enabled or Disabled. Default to Disabled.
  • saml_identity_provider_configuration - (Optional, ForceNew) The saml identity provider configuration. See saml_identity_provider_configuration below.

-> NOTE: The saml_identity_provider_configuration will be removed automatically when the resource is deleted, please operate with caution. If there are left more configuration in the directory, please remove them before deleting the directory.

saml_identity_provider_configuration

The saml_identity_provider_configuration supports the following:

  • encoded_metadata_document - (Optional, Sensitive) Base64 encoded IdP metadata document. NOTE: If the IdP Metadata has been uploaded, no update will be made if this parameter is not specified, otherwise the update will be made according to the parameter content. If IdP Metadata has not been uploaded, and the parameter sso_status is Enabled, this parameter must be provided. If the IdP Metadata has not been uploaded, and the parameter sso_status is Disabled, this parameter can be omitted, and the IdP Metadata will remain empty.
  • sso_status - (Optional) SAML SSO login enabled status. Valid values: Enabled or Disabled. Default to Disabled.

Attributes Reference

The following attributes are exported:

  • id - The resource ID in terraform of Directory.

Import

Cloud SSO Directory can be imported using the id, e.g.

$ terraform import alicloud_cloud_sso_directory.example <id>

上一篇:alicloud_cloud_sso_access_configuration_provisioning下一篇:alicloud_cloud_sso_group
文档推荐