The configuration file schema documentation is a work in progress. Please use this draft document with caution. The deeper you browse into the hierarchy, the less accurate the definitions are likely to be.
This deployment provides a mechanism to sync identities created in the AWS MAD and use them for SSO in the organizational management acount
Title: Azs Description: Availability zones of the ADC
connect-account-key
connect-account-key:string
Title: Name of the account where the AWS MAD is deployed Description: undefined
connect-dir-id
connect-dir-id:number
Title: Connect to Directory ID Description: ID given to the MAD deployment in the operations account
deploy
deploy:boolean
Title: Deploy Description: Set to true to perform the actual deployment or to false to only define it in the accelerator
restrict_srcips
restrict_srcips:string[]
Title: Restrict_srcips Description: Restrict to these source IP addresses: ussualy the ForSSO VPC and the MAD IP address ranges
size
size:string
Title: Size Description: AD Connector comes in two sizes, small and large
subnet
subnet:string
Title: Subnet Description: Name of the subnet to deploy the ADC
vpc-name
vpc-name:string
Title: VPC Name Description: Name of the VPC to deploy the ADC. In the prescriptive architecture this is would be the ForSSO VPC in the organizational management acount. This VPC also needs a VPC peering connection (pcx) to the Central VPC in the account where MAD is deployed
This deployment provides a mechanism to sync identities created in the AWS MAD and use them for SSO in the organizational management acount