aws-cdk-lib.aws_ec2.ClientVpnAuthorizationRuleOptions

interface ClientVpnAuthorizationRuleOptions

LanguageType name
.NETAmazon.CDK.AWS.EC2.ClientVpnAuthorizationRuleOptions
Gogithub.com/aws/aws-cdk-go/awscdk/v2/awsec2#ClientVpnAuthorizationRuleOptions
Javasoftware.amazon.awscdk.services.ec2.ClientVpnAuthorizationRuleOptions
Pythonaws_cdk.aws_ec2.ClientVpnAuthorizationRuleOptions
TypeScript (source)aws-cdk-lib » aws_ec2 » ClientVpnAuthorizationRuleOptions

Options for a ClientVpnAuthorizationRule.

Example

const endpoint = vpc.addClientVpnEndpoint('Endpoint', {
  cidr: '10.100.0.0/16',
  serverCertificateArn: 'arn:aws:acm:us-east-1:123456789012:certificate/server-certificate-id',
  userBasedAuthentication: ec2.ClientVpnUserBasedAuthentication.federated(samlProvider),
  authorizeAllUsersToVpcCidr: false,
});

endpoint.addAuthorizationRule('Rule', {
  cidr: '10.0.10.0/32',
  groupId: 'group-id',
});

Properties

NameTypeDescription
cidrstringThe IPv4 address range, in CIDR notation, of the network for which access is being authorized.
description?stringA brief description of the authorization rule.
groupId?stringThe ID of the group to grant access to, for example, the Active Directory group or identity provider (IdP) group.

cidr

Type: string

The IPv4 address range, in CIDR notation, of the network for which access is being authorized.


description?

Type: string (optional, default: no description)

A brief description of the authorization rule.


groupId?

Type: string (optional, default: authorize all groups)

The ID of the group to grant access to, for example, the Active Directory group or identity provider (IdP) group.