pulumi-aws-kotlin/com.pulumi.aws.directoryservice.kotlin/TrustArgs

TrustArgs

data class TrustArgs(val conditionalForwarderIpAddrs: Output<List<String>>? = null, val deleteAssociatedConditionalForwarder: Output<Boolean>? = null, val directoryId: Output<String>? = null, val remoteDomainName: Output<String>? = null, val selectiveAuth: Output<String>? = null, val trustDirection: Output<String>? = null, val trustPassword: Output<String>? = null, val trustType: Output<String>? = null) : ConvertibleToJava<TrustArgs>

Manages a trust relationship between two Active Directory Directories. The directories may either be both AWS Managed Microsoft AD domains or an AWS Managed Microsoft AD domain and a self-managed Active Directory Domain. The Trust relationship must be configured on both sides of the relationship. If a Trust has only been created on one side, it will be in the state VerifyFailed. Once the second Trust is created, the first will update to the correct state.

Example Usage

Two-Way Trust

package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.aws.directoryservice.Directory;
import com.pulumi.aws.directoryservice.DirectoryArgs;
import com.pulumi.aws.directoryservice.Trust;
import com.pulumi.aws.directoryservice.TrustArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }
    public static void stack(Context ctx) {
        var oneDirectory = new Directory("oneDirectory", DirectoryArgs.builder()
            .name("one.example.com")
            .type("MicrosoftAD")
            .build());
        var twoDirectory = new Directory("twoDirectory", DirectoryArgs.builder()
            .name("two.example.com")
            .type("MicrosoftAD")
            .build());
        var oneTrust = new Trust("oneTrust", TrustArgs.builder()
            .directoryId(oneDirectory.id())
            .remoteDomainName(twoDirectory.name())
            .trustDirection("Two-Way")
            .trustPassword("Some0therPassword")
            .conditionalForwarderIpAddrs(twoDirectory.dnsIpAddresses())
            .build());
        var twoTrust = new Trust("twoTrust", TrustArgs.builder()
            .directoryId(twoDirectory.id())
            .remoteDomainName(oneDirectory.name())
            .trustDirection("Two-Way")
            .trustPassword("Some0therPassword")
            .conditionalForwarderIpAddrs(oneDirectory.dnsIpAddresses())
            .build());
    }
}
Content copied to clipboard

One-Way Trust

package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.aws.directoryservice.Directory;
import com.pulumi.aws.directoryservice.DirectoryArgs;
import com.pulumi.aws.directoryservice.Trust;
import com.pulumi.aws.directoryservice.TrustArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }
    public static void stack(Context ctx) {
        var oneDirectory = new Directory("oneDirectory", DirectoryArgs.builder()
            .name("one.example.com")
            .type("MicrosoftAD")
            .build());
        var twoDirectory = new Directory("twoDirectory", DirectoryArgs.builder()
            .name("two.example.com")
            .type("MicrosoftAD")
            .build());
        var oneTrust = new Trust("oneTrust", TrustArgs.builder()
            .directoryId(oneDirectory.id())
            .remoteDomainName(twoDirectory.name())
            .trustDirection("One-Way: Incoming")
            .trustPassword("Some0therPassword")
            .conditionalForwarderIpAddrs(twoDirectory.dnsIpAddresses())
            .build());
        var twoTrust = new Trust("twoTrust", TrustArgs.builder()
            .directoryId(twoDirectory.id())
            .remoteDomainName(oneDirectory.name())
            .trustDirection("One-Way: Outgoing")
            .trustPassword("Some0therPassword")
            .conditionalForwarderIpAddrs(oneDirectory.dnsIpAddresses())
            .build());
    }
}
Content copied to clipboard

Import

Using pulumi import, import the Trust relationship using the directory ID and remote domain name, separated by a /. For example:

$ pulumi import aws:directoryservice/trust:Trust example d-926724cf57/directory.example.com
Content copied to clipboard

Constructors

Link copied to clipboard
fun TrustArgs(conditionalForwarderIpAddrs: Output<List<String>>? = null, deleteAssociatedConditionalForwarder: Output<Boolean>? = null, directoryId: Output<String>? = null, remoteDomainName: Output<String>? = null, selectiveAuth: Output<String>? = null, trustDirection: Output<String>? = null, trustPassword: Output<String>? = null, trustType: Output<String>? = null)

Functions

Link copied to clipboard
open override fun toJava(): TrustArgs

Properties

Link copied to clipboard
val conditionalForwarderIpAddrs: Output<List<String>>? = null

Set of IPv4 addresses for the DNS server associated with the remote Directory. Can contain between 1 and 4 values.

Link copied to clipboard
val deleteAssociatedConditionalForwarder: Output<Boolean>? = null

Whether to delete the conditional forwarder when deleting the Trust relationship.

Link copied to clipboard
val directoryId: Output<String>? = null

ID of the Directory.

Link copied to clipboard
val remoteDomainName: Output<String>? = null

Fully qualified domain name of the remote Directory.

Link copied to clipboard
val selectiveAuth: Output<String>? = null

Whether to enable selective authentication. Valid values are Enabled and Disabled. Default value is Disabled.

Link copied to clipboard
val trustDirection: Output<String>? = null

The direction of the Trust relationship. Valid values are One-Way: Outgoing, One-Way: Incoming, and Two-Way.

Link copied to clipboard
val trustPassword: Output<String>? = null

Password for the Trust. Does not need to match the passwords for either Directory. Can contain upper- and lower-case letters, numbers, and punctuation characters. May be up to 128 characters long.

Link copied to clipboard
val trustType: Output<String>? = null

Type of the Trust relationship. Valid values are Forest and External. Default value is Forest.