AwsAmazonMqBrokerLdapServerMetadataDetails - AWS Security Hub

AwsAmazonMqBrokerLdapServerMetadataDetails

The metadata of the Lightweight Directory Access Protocol (LDAP) server used to authenticate and authorize connections to the broker. This is an optional failover server.

Contents

Hosts

Specifies the location of the LDAP server, such as AWS Directory Service for Microsoft Active Directory.

Type: Array of strings

Pattern: .*\S.*

Required: No

RoleBase

The distinguished name of the node in the directory information tree (DIT) to search for roles or groups.

Type: String

Pattern: .*\S.*

Required: No

RoleName

The group name attribute in a role entry whose value is the name of that role.

Type: String

Pattern: .*\S.*

Required: No

RoleSearchMatching

The LDAP search filter used to find roles within the roleBase.

Type: String

Pattern: .*\S.*

Required: No

RoleSearchSubtree

The directory search scope for the role. If set to true, the scope is to search the entire subtree.

Type: Boolean

Required: No

ServiceAccountUsername

A username for the service account, which is an account in your LDAP server that has access to initiate a connection.

Type: String

Pattern: .*\S.*

Required: No

UserBase

Selects a particular subtree of the directory information tree (DIT) to search for user entries.

Type: String

Pattern: .*\S.*

Required: No

UserRoleName

The name of the LDAP attribute in the user's directory entry for the user's group membership.

Type: String

Pattern: .*\S.*

Required: No

UserSearchMatching

The LDAP search filter used to find users within the userBase.

Type: String

Pattern: .*\S.*

Required: No

UserSearchSubtree

The directory search scope for the user. If set to true, the scope is to search the entire subtree.

Type: Boolean

Required: No

See Also

For more information about using this API in one of the language-specific AWS SDKs, see the following: