Provides a Cloud SSO Directory resource.
For information about Cloud SSO Directory and how to use it, see What is Directory.
Basic Usage
variable "name" {
default = "tf-example"
}
provider "alicloud" {
region = "cn-shanghai"
}
data "alicloud_cloud_sso_directories" "default" {}
resource "alicloud_cloud_sso_directory" "default" {
count = length(data.alicloud_cloud_sso_directories.default.ids) > 0 ? 0 : 1
directory_name = var.name
}
The following arguments are supported:
directory_name
- (Optional, Sensitive) The name of the CloudSSO directory. The length is 2-64 characters, and it can contain lowercase letters, numbers, and dashes (-). It cannot start or end with a dash and cannot have two consecutive dashes. Need to be globally unique, and capitalization is not supported. Cannot start with d-
.mfa_authentication_status
- (Optional) The mfa authentication status. Valid values: Enabled
or Disabled
. Default to Enabled
.scim_synchronization_status
- (Optional) The scim synchronization status. Valid values: Enabled
or Disabled
. Default to Disabled
.saml_identity_provider_configuration
- (Optional, ForceNew) The saml identity provider configuration. See saml_identity_provider_configuration
below.saml_identity_provider_configuration
The saml_identity_provider_configuration supports the following:
encoded_metadata_document
- (Optional, Sensitive) Base64 encoded IdP metadata document. NOTE: If the IdP Metadata has been uploaded, no update will be made if this parameter is not specified, otherwise the update will be made according to the parameter content. If IdP Metadata has not been uploaded, and the parameter sso_status
is Enabled
, this parameter must be provided. If the IdP Metadata has not been uploaded, and the parameter sso_status
is Disabled
, this parameter can be omitted, and the IdP Metadata will remain empty.sso_status
- (Optional) SAML SSO login enabled status. Valid values: Enabled
or Disabled
. Default to Disabled
.The following attributes are exported:
id
- The resource ID in terraform of Directory.Cloud SSO Directory can be imported using the id, e.g.
$ terraform import alicloud_cloud_sso_directory.example <id>