AWS Fundamentals Logo
AWS Fundamentals
AWS::PCAConnectorAD::Connector

PCAConnectorAD Connector

Represents a Connector that connects AWS PrivateCA and your directory

Properties

4 configurable properties. 3 required. Click a row to see details.

Filter:
PropertyTypeFlags
CertificateAuthorityArn
string
RequiredCreate-only
DirectoryId
string
RequiredCreate-only
VpcInformation
VpcInformation
RequiredCreate-only
Tags
Tags

Return Values

Values returned after the resource is created. Access these with Fn::GetAtt.

AttributeTypeDescription
ConnectorArnstring-

Sample CloudFormation Template

A minimal template with required properties and common optional ones.

template.yaml
AWSTemplateFormatVersion: "2010-09-09"
Description: Sample template for AWS::PCAConnectorAD::Connector

Resources:
  MyResource:
    Type: AWS::PCAConnectorAD::Connector
    Properties:
      CertificateAuthorityArn: "arn:aws:service:region:account:resource"
      DirectoryId: "my-directoryid"
      VpcInformation: "value"
      Tags:
        - Key: Environment
          Value: Production

Required IAM Permissions

Permissions CloudFormation needs in your IAM role to manage this resource.

create

acm-pca:DescribeCertificateAuthorityacm-pca:GetCertificateAuthorityCertificateacm-pca:GetCertificateacm-pca:IssueCertificateds:DescribeDirectoriesec2:CreateTagsec2:CreateVpcEndpointec2:DescribeVpcEndpoints

read

pca-connector-ad:ListTagsForResourcepca-connector-ad:GetConnector

delete

ec2:DeleteVpcEndpointsec2:DescribeVpcEndpointspca-connector-ad:GetConnectorpca-connector-ad:DeleteConnectorpca-connector-ad:UntagResource

list

pca-connector-ad:ListConnectors

update

pca-connector-ad:ListTagsForResourcepca-connector-ad:TagResourcepca-connector-ad:UntagResource

Learn AWS the Practical Way

Our bi-weekly newsletter teaches hands-on AWS fundamentals. No certification fluff - just practical knowledge.

Subscribe to Newsletter

Quick Facts

ServicePCAConnectorAD
Properties5
Required3
TaggingSupported
Primary IDConnectorArn

Supported Operations

CreateReadDeleteListUpdate

Immutable After Creation

These properties cannot be changed after the resource is created. Updating them triggers a replacement.

CertificateAuthorityArnDirectoryIdVpcInformation

Related Resources

External Links