ClientVpnUserBasedAuthentication

class aws_cdk.aws_ec2.ClientVpnUserBasedAuthentication

Bases: object

User-based authentication for a client VPN endpoint.

ExampleMetadata

fixture=client-vpn infused

Example:

endpoint = vpc.add_client_vpn_endpoint("Endpoint",
    cidr="10.100.0.0/16",
    server_certificate_arn="arn:aws:acm:us-east-1:123456789012:certificate/server-certificate-id",
    user_based_authentication=ec2.ClientVpnUserBasedAuthentication.federated(saml_provider),
    authorize_all_users_to_vpc_cidr=False
)

endpoint.add_authorization_rule("Rule",
    cidr="10.0.10.0/32",
    group_id="group-id"
)

Methods

abstract render()

Renders the user based authentication.

Return type

Any

Static Methods

classmethod active_directory(directory_id)

Active Directory authentication.

Parameters

directory_id (str) –

Return type

ClientVpnUserBasedAuthentication

classmethod federated(saml_provider, self_service_saml_provider=None)

Federated authentication.

Parameters

• saml_provider (ISamlProvider) –

• self_service_saml_provider (Optional[ISamlProvider]) –

Return type

ClientVpnUserBasedAuthentication