Google Managed Microsoft Active Directory Domain Trust
This page shows how to write Terraform for Managed Microsoft Active Directory Domain Trust and write them securely.
google_active_directory_domain_trust (Terraform)
The Domain Trust in Managed Microsoft Active Directory can be configured in Terraform with the resource name google_active_directory_domain_trust
. The following sections describe how to use the resource and its parameters.
Example Usage from GitHub
An example could not be found in GitHub.
Parameters
-
domain
required - string
The fully qualified domain name. e.g. mydomain.myorganization.com, with the restrictions, https://cloud.google.com/managed-microsoft-ad/reference/rest/v1/projects.locations.global.domains.
-
id
optional computed - string -
project
optional computed - string -
selective_authentication
optional - bool
Whether the trusted side has forest/domain wide access or selective access to an approved set of resources.
-
target_dns_ip_addresses
required - set of string
The target DNS server IP addresses which can resolve the remote domain involved in the trust.
-
target_domain_name
required - string
The fully qualified target domain name which will be in trust with the current domain.
-
trust_direction
required - string
The trust direction, which decides if the current domain is trusted, trusting, or both. Possible values: ["INBOUND", "OUTBOUND", "BIDIRECTIONAL"]
-
trust_handshake_secret
required - string
The trust secret used for the handshake with the target domain. This will not be stored.
-
trust_type
required - string
The type of trust represented by the trust resource. Possible values: ["FOREST", "EXTERNAL"]
Explanation in Terraform Registry
Adds a trust between Active Directory domains To get more information about DomainTrust, see:
- API documentation
- How-to Guides
- Active Directory Trust
Warning: All arguments including
trust_handshake_secret
will be stored in the raw state as plain-text. Read more about sensitive data in state.