PcaConnectorAd / Client / update_template_group_access_control_entry

update_template_group_access_control_entry#

PcaConnectorAd.Client.update_template_group_access_control_entry(**kwargs)#

Update a group access control entry you created using CreateTemplateGroupAccessControlEntry.

See also: AWS API Documentation

Request Syntax

response = client.update_template_group_access_control_entry(
    AccessRights={
        'AutoEnroll': 'ALLOW'|'DENY',
        'Enroll': 'ALLOW'|'DENY'
    },
    GroupDisplayName='string',
    GroupSecurityIdentifier='string',
    TemplateArn='string'
)
Parameters:
  • AccessRights (dict) –

    Allow or deny permissions for an Active Directory group to enroll or autoenroll certificates for a template.

    • AutoEnroll (string) –

      Allow or deny an Active Directory group from autoenrolling certificates issued against a template. The Active Directory group must be allowed to enroll to allow autoenrollment

    • Enroll (string) –

      Allow or deny an Active Directory group from enrolling certificates issued against a template.

  • GroupDisplayName (string) – Name of the Active Directory group. This name does not need to match the group name in Active Directory.

  • GroupSecurityIdentifier (string) –

    [REQUIRED]

    Security identifier (SID) of the group object from Active Directory. The SID starts with “S-“.

  • TemplateArn (string) –

    [REQUIRED]

    The Amazon Resource Name (ARN) that was returned when you called CreateTemplate.

Returns:

None

Exceptions

  • PcaConnectorAd.Client.exceptions.AccessDeniedException

  • PcaConnectorAd.Client.exceptions.ValidationException

  • PcaConnectorAd.Client.exceptions.ResourceNotFoundException

  • PcaConnectorAd.Client.exceptions.ThrottlingException

  • PcaConnectorAd.Client.exceptions.InternalServerException

  • PcaConnectorAd.Client.exceptions.ConflictException