class Aws::FSx::Types::SelfManagedActiveDirectoryConfiguration

The configuration that Amazon FSx uses to join a Amazon FSx for Windows File Server file system or an ONTAP storage virtual machine (SVM) to a self-managed (including on-premises) Microsoft Active Directory (AD) directory. For more information, see [ Using Amazon FSx with your self-managed Microsoft Active Directory] or [Managing SVMs].

[1]: docs.aws.amazon.com/fsx/latest/WindowsGuide/self-managed-AD.html [2]: docs.aws.amazon.com/fsx/latest/ONTAPGuide/managing-svms.html

@note When making an API call, you may pass SelfManagedActiveDirectoryConfiguration

data as a hash:

    {
      domain_name: "ActiveDirectoryFullyQualifiedName", # required
      organizational_unit_distinguished_name: "OrganizationalUnitDistinguishedName",
      file_system_administrators_group: "FileSystemAdministratorsGroupName",
      user_name: "DirectoryUserName", # required
      password: "DirectoryPassword", # required
      dns_ips: ["IpAddress"], # required
    }

@!attribute [rw] domain_name

The fully qualified domain name of the self-managed AD directory,
such as `corp.example.com`.
@return [String]

@!attribute [rw] organizational_unit_distinguished_name

(Optional) The fully qualified distinguished name of the
organizational unit within your self-managed AD directory. Amazon
FSx only accepts OU as the direct parent of the file system. An
example is `OU=FSx,DC=yourdomain,DC=corp,DC=com`. To learn more, see
[RFC 2253][1]. If none is provided, the FSx file system is created
in the default location of your self-managed AD directory.

Only Organizational Unit (OU) objects can be the direct parent of
the file system that you're creating.

[1]: https://tools.ietf.org/html/rfc2253
@return [String]

@!attribute [rw] file_system_administrators_group

(Optional) The name of the domain group whose members are granted
administrative privileges for the file system. Administrative
privileges include taking ownership of files and folders, setting
audit controls (audit ACLs) on files and folders, and administering
the file system remotely by using the FSx Remote PowerShell. The
group that you specify must already exist in your domain. If you
don't provide one, your AD domain's Domain Admins group is used.
@return [String]

@!attribute [rw] user_name

The user name for the service account on your self-managed AD domain
that Amazon FSx will use to join to your AD domain. This account
must have the permission to join computers to the domain in the
organizational unit provided in
`OrganizationalUnitDistinguishedName`, or in the default location of
your AD domain.
@return [String]

@!attribute [rw] password

The password for the service account on your self-managed AD domain
that Amazon FSx will use to join to your AD domain.
@return [String]

@!attribute [rw] dns_ips

A list of up to two IP addresses of DNS servers or domain
controllers in the self-managed AD directory.
@return [Array<String>]

@see docs.aws.amazon.com/goto/WebAPI/fsx-2018-03-01/SelfManagedActiveDirectoryConfiguration AWS API Documentation

Constants

SENSITIVE