PcaConnectorAd / Client / update_template_group_access_control_entry
update_template_group_access_control_entry#
- PcaConnectorAd.Client.update_template_group_access_control_entry(**kwargs)#
Update a group access control entry you created using CreateTemplateGroupAccessControlEntry.
See also: AWS API Documentation
Request Syntax
response = client.update_template_group_access_control_entry( AccessRights={ 'AutoEnroll': 'ALLOW'|'DENY', 'Enroll': 'ALLOW'|'DENY' }, GroupDisplayName='string', GroupSecurityIdentifier='string', TemplateArn='string' )
- Parameters:
AccessRights (dict) –
Allow or deny permissions for an Active Directory group to enroll or autoenroll certificates for a template.
AutoEnroll (string) –
Allow or deny an Active Directory group from autoenrolling certificates issued against a template. The Active Directory group must be allowed to enroll to allow autoenrollment
Enroll (string) –
Allow or deny an Active Directory group from enrolling certificates issued against a template.
GroupDisplayName (string) – Name of the Active Directory group. This name does not need to match the group name in Active Directory.
GroupSecurityIdentifier (string) –
[REQUIRED]
Security identifier (SID) of the group object from Active Directory. The SID starts with “S-“.
TemplateArn (string) –
[REQUIRED]
The Amazon Resource Name (ARN) that was returned when you called CreateTemplate.
- Returns:
None
Exceptions
PcaConnectorAd.Client.exceptions.AccessDeniedException
PcaConnectorAd.Client.exceptions.ValidationException
PcaConnectorAd.Client.exceptions.ResourceNotFoundException
PcaConnectorAd.Client.exceptions.ThrottlingException
PcaConnectorAd.Client.exceptions.InternalServerException
PcaConnectorAd.Client.exceptions.ConflictException