Skip to content

/AWS1/CL_EC2=>CREATEVERIFIEDACCTRUSTPVDR()

About CreateVerifiedAccessTrustProvider

A trust provider is a third-party entity that creates, maintains, and manages identity information for users and devices. When an application request is made, the identity information sent by the trust provider is evaluated by Verified Access before allowing or denying the application request.

Method Signature

IMPORTING

Required arguments:

IV_TRUSTPROVIDERTYPE TYPE /AWS1/EC2TRUSTPROVIDERTYPE /AWS1/EC2TRUSTPROVIDERTYPE

The type of trust provider.

IV_POLICYREFERENCENAME TYPE /AWS1/EC2STRING /AWS1/EC2STRING

The identifier to be used when working with policy rules.

Optional arguments:

IV_USERTRUSTPROVIDERTYPE TYPE /AWS1/EC2USERTRUSTPROVIDERTYPE /AWS1/EC2USERTRUSTPROVIDERTYPE

The type of user-based trust provider. This parameter is required when the provider type is user.

IV_DEVICETRUSTPROVIDERTYPE TYPE /AWS1/EC2DEVICETRUSTPVDRTYPE /AWS1/EC2DEVICETRUSTPVDRTYPE

The type of device-based trust provider. This parameter is required when the provider type is device.

IO_OIDCOPTIONS TYPE REF TO /AWS1/CL_EC2CREVERIFIEDACCTR01 /AWS1/CL_EC2CREVERIFIEDACCTR01

The options for a OpenID Connect-compatible user-identity trust provider. This parameter is required when the provider type is user.

IO_DEVICEOPTIONS TYPE REF TO /AWS1/CL_EC2CREVERIFIEDACCTR02 /AWS1/CL_EC2CREVERIFIEDACCTR02

The options for a device-based trust provider. This parameter is required when the provider type is device.

IV_DESCRIPTION TYPE /AWS1/EC2STRING /AWS1/EC2STRING

A description for the Verified Access trust provider.

IT_TAGSPECIFICATIONS TYPE /AWS1/CL_EC2TAGSPECIFICATION=>TT_TAGSPECIFICATIONLIST TT_TAGSPECIFICATIONLIST

The tags to assign to the Verified Access trust provider.

IV_CLIENTTOKEN TYPE /AWS1/EC2STRING /AWS1/EC2STRING

A unique, case-sensitive token that you provide to ensure idempotency of your modification request. For more information, see Ensuring idempotency.

IV_DRYRUN TYPE /AWS1/EC2BOOLEAN /AWS1/EC2BOOLEAN

Checks whether you have the required permissions for the action, without actually making the request, and provides an error response. If you have the required permissions, the error response is DryRunOperation. Otherwise, it is UnauthorizedOperation.

IO_SSESPECIFICATION TYPE REF TO /AWS1/CL_EC2VERIFIEDACCSSESP01 /AWS1/CL_EC2VERIFIEDACCSSESP01

The options for server side encryption.

IO_NATIVEAPPLICATIONOIDCOPTS TYPE REF TO /AWS1/CL_EC2CREVERIFIEDACCNA00 /AWS1/CL_EC2CREVERIFIEDACCNA00

The OpenID Connect (OIDC) options.

RETURNING

OO_OUTPUT TYPE REF TO /AWS1/CL_EC2CREVERIFIEDACCTR03 /AWS1/CL_EC2CREVERIFIEDACCTR03