Resource Type: dsc_aadconditionalaccesspolicy

Defined in:
lib/puppet/type/dsc_aadconditionalaccesspolicy.rb

Overview

The DSC AADConditionalAccessPolicy resource type. Automatically generated from version 1.21.1222.1

Properties

  • dsc_applicationenforcedrestrictionsisenabled

    Specifies, whether Application Enforced Restrictions are enabled in the Policy.

  • dsc_applicationid

    Id of the Azure Active Directory application to authenticate with.

  • dsc_applicationsecret

    Secret of the Azure Active Directory application to authenticate with.

  • dsc_builtincontrols

    List of built-in Grant Controls to be applied by the Policy.

  • dsc_certificatethumbprint

    Thumbprint of the Azure Active Directory application’s authentication certificate to use for authentication.

  • dsc_clientapptypes

    Client App types in scope of the Policy.

  • dsc_cloudappsecurityisenabled

    Specifies, whether Cloud App Security is enforced by the Policy.

  • dsc_cloudappsecuritytype

    Specifies, what Cloud App Security control is enforced by the Policy.

  • dsc_ensure

    Specify if the Azure AD CA Policy should exist or not.

  • dsc_excludeapplications

    Cloud Apps out of scope of the Policy.

  • dsc_excludedevices

    Client Device Compliance states out of scope of the Policy.

  • dsc_excludegroups

    Groups out of scope of the Policy.

  • dsc_excludelocations

    AAD Named Locations out of scope of the Policy.

  • dsc_excludeplatforms

    Client Device Platforms out of scope of the Policy.

  • dsc_excluderoles

    AAD Admin Roles out of scope of the Policy.

  • dsc_excludeusers

    Users out of scope of the Policy.

  • dsc_grantcontroloperator

    Operator to be used for Grant Controls.

  • dsc_id

    Specifies the GUID for the Policy.

  • dsc_includeapplications

    Cloud Apps in scope of the Policy.

  • dsc_includedevices

    Client Device Compliance states in scope of the Policy.

  • dsc_includegroups

    Groups in scope of the Policy.

  • dsc_includelocations

    AAD Named Locations in scope of the Policy.

  • dsc_includeplatforms

    Client Device Platforms in scope of the Policy.

  • dsc_includeroles

    AAD Admin Roles in scope of the Policy.

  • dsc_includeuseractions

    User Actions in scope of the Policy.

  • dsc_includeusers

    Users in scope of the Policy.

  • dsc_persistentbrowserisenabled

    Specifies, whether Browser Persistence is controlled by the Policy.

  • dsc_persistentbrowsermode

    Specifies, what Browser Persistence control is enforced by the Policy.

  • dsc_signinfrequencyisenabled

    Specifies, whether sign-in frequency is enforced by the Policy.

  • dsc_signinfrequencytype

    Sign in frequency unit (days/hours) to be interpreted by the policy.

  • dsc_signinfrequencyvalue

    Sign in frequency time in the given unit to be enforced by the policy.

  • dsc_signinrisklevels

    AAD Identity Protection Sign-in Risk Levels in scope of the Policy.

  • dsc_state

    Specifies the State of the Policy.

  • dsc_tenantid

    Id of the Azure Active Directory tenant used for authentication.

  • dsc_termsofuse

    Display name of the terms of use to assign.

  • dsc_userrisklevels

    AAD Identity Protection User Risk Levels in scope of the Policy.

Parameters

  • dsc_credential

    Credentials for the Microsoft Graph delegated permissions.

  • dsc_displayname (namevar)

    DisplayName of the AAD CA Policy

  • dsc_psdscrunascredential
  • name (namevar)

    Description of the purpose for this resource declaration.

  • validation_mode (defaults to: property)

    Whether to check if the resource is in the desired state by property (default) or using Invoke-DscResource in Test mode (resource).