aws-sdk-directoryservice 1.92.0 → 1.93.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 8d358ac5e8c586798c74c8237a33c3f4ad881196fb8d7808be6dc632f43b2274
-  data.tar.gz: aa43a81cc4c200e0ed412bffb8491fffd1e63316872131da82ecc35d24b9854b
+  metadata.gz: bf5479042d2fd38f695befb28d8180355a846ae18dad5a063658c6dd0f342965
+  data.tar.gz: e9fbfe8e78c1832f4d06f8bec4325376219320c37bf7881ffb389988446ce35d
 SHA512:
-  metadata.gz: ff2fc470e533d7491d015ba0556a0fc1632c56a0def3078496f7338a6af72ea4ca66a4b957cede849009788869c63136174aad885c81c3e2f177277b28477ffb
-  data.tar.gz: 5bb277cec6fbaaba013e9a977eb06aa0701acd0a5a8adb9835369742f9c02eac64e2341ba7c91a9397eeb558a3ed667f1b9e5ee190961d08f60d12ce79d1e48e
+  metadata.gz: 6dbcb0d168dc4d383407dadc1121d10f7e621b65a9e873ab0f487d373db31be02864f4b4bb1ff830d61cb359a856f88fefa31b9d0b06d5ea66d39dd2d273639a
+  data.tar.gz: 514255231925f26392a23a680ddc1269129cf6f8531989465681294c432ed14ba09521ae8bf3daec139f2aebd62583149a5e7c249b3d89d93b23ab29fc3db513

data/CHANGELOG.md

@@ -1,6 +1,11 @@
 Unreleased Changes
 ------------------
 
+1.93.0 (2025-08-27)
+------------------
+
+* Feature - Add APIs for CA AutoEnrollment support: DescribeCAEnrollmentPolicy, EnableCAEnrollmentPolicy and DisableCAEnrollmentPolicy.
+
 1.92.0 (2025-08-26)
 ------------------
 

data/VERSION

@@ -1 +1 @@
-1.92.0
+1.93.0

data/lib/aws-sdk-directoryservice/client.rb

@@ -1943,6 +1943,46 @@ module Aws::DirectoryService
       req.send_request(options)
     end
 
+    # Retrieves detailed information about the certificate authority (CA)
+    # enrollment policy for the specified directory. This policy determines
+    # how client certificates are automatically enrolled and managed through
+    # Amazon Web Services Private Certificate Authority.
+    #
+    # @option params [required, String] :directory_id
+    #   The identifier of the directory for which to retrieve the CA
+    #   enrollment policy information.
+    #
+    # @return [Types::DescribeCAEnrollmentPolicyResult] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::DescribeCAEnrollmentPolicyResult#directory_id #directory_id} => String
+    #   * {Types::DescribeCAEnrollmentPolicyResult#pca_connector_arn #pca_connector_arn} => String
+    #   * {Types::DescribeCAEnrollmentPolicyResult#ca_enrollment_policy_status #ca_enrollment_policy_status} => String
+    #   * {Types::DescribeCAEnrollmentPolicyResult#last_updated_date_time #last_updated_date_time} => Time
+    #   * {Types::DescribeCAEnrollmentPolicyResult#ca_enrollment_policy_status_reason #ca_enrollment_policy_status_reason} => String
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.describe_ca_enrollment_policy({
+    #     directory_id: "DirectoryId", # required
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.directory_id #=> String
+    #   resp.pca_connector_arn #=> String
+    #   resp.ca_enrollment_policy_status #=> String, one of "InProgress", "Success", "Failed", "Disabling", "Disabled", "Impaired"
+    #   resp.last_updated_date_time #=> Time
+    #   resp.ca_enrollment_policy_status_reason #=> String
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ds-2015-04-16/DescribeCAEnrollmentPolicy AWS API Documentation
+    #
+    # @overload describe_ca_enrollment_policy(params = {})
+    # @param [Hash] params ({})
+    def describe_ca_enrollment_policy(params = {}, options = {})
+      req = build_request(:describe_ca_enrollment_policy, params)
+      req.send_request(options)
+    end
+
     # Displays information about the certificate registered for secure LDAP
     # or client certificate authentication.
     #
@@ -2964,6 +3004,36 @@ module Aws::DirectoryService
       req.send_request(options)
     end
 
+    # Disables the certificate authority (CA) enrollment policy for the
+    # specified directory. This stops automatic certificate enrollment and
+    # management for domain-joined clients, but does not affect existing
+    # certificates.
+    #
+    # Disabling the CA enrollment policy prevents new certificates from
+    # being automatically enrolled, but existing certificates remain valid
+    # and functional until they expire.
+    #
+    # @option params [required, String] :directory_id
+    #   The identifier of the directory for which to disable the CA enrollment
+    #   policy.
+    #
+    # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.disable_ca_enrollment_policy({
+    #     directory_id: "DirectoryId", # required
+    #   })
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ds-2015-04-16/DisableCAEnrollmentPolicy AWS API Documentation
+    #
+    # @overload disable_ca_enrollment_policy(params = {})
+    # @param [Hash] params ({})
+    def disable_ca_enrollment_policy(params = {}, options = {})
+      req = build_request(:disable_ca_enrollment_policy, params)
+      req.send_request(options)
+    end
+
     # Disables alternative client authentication methods for the specified
     # directory.
     #
@@ -3140,6 +3210,48 @@ module Aws::DirectoryService
       req.send_request(options)
     end
 
+    # Enables certificate authority (CA) enrollment policy for the specified
+    # directory. This allows domain-joined clients to automatically request
+    # and receive certificates from the specified Amazon Web Services
+    # Private Certificate Authority.
+    #
+    # <note markdown="1"> Before enabling CA enrollment, ensure that the PCA connector is
+    # properly configured and accessible from the directory. The connector
+    # must be in an active state and have the necessary permissions.
+    #
+    #  </note>
+    #
+    # @option params [required, String] :directory_id
+    #   The identifier of the directory for which to enable the CA enrollment
+    #   policy.
+    #
+    # @option params [required, String] :pca_connector_arn
+    #   The Amazon Resource Name (ARN) of the Private Certificate Authority
+    #   (PCA) connector to use for automatic certificate enrollment. This
+    #   connector must be properly configured and accessible from the
+    #   directory.
+    #
+    #   The ARN format is:
+    #   `arn:aws:pca-connector-ad:region:account-id:connector/connector-id `
+    #
+    # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.enable_ca_enrollment_policy({
+    #     directory_id: "DirectoryId", # required
+    #     pca_connector_arn: "PcaConnectorArn", # required
+    #   })
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ds-2015-04-16/EnableCAEnrollmentPolicy AWS API Documentation
+    #
+    # @overload enable_ca_enrollment_policy(params = {})
+    # @param [Hash] params ({})
+    def enable_ca_enrollment_policy(params = {}, options = {})
+      req = build_request(:enable_ca_enrollment_policy, params)
+      req.send_request(options)
+    end
+
     # Enables alternative client authentication methods for the specified
     # directory.
     #
@@ -4770,7 +4882,7 @@ module Aws::DirectoryService
         tracer: tracer
       )
       context[:gem_name] = 'aws-sdk-directoryservice'
-      context[:gem_version] = '1.92.0'
+      context[:gem_version] = '1.93.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-directoryservice/client_api.rb

@@ -59,6 +59,8 @@ module Aws::DirectoryService
     AuthenticationFailedException = Shapes::StructureShape.new(name: 'AuthenticationFailedException')
     AvailabilityZone = Shapes::StringShape.new(name: 'AvailabilityZone')
     AvailabilityZones = Shapes::ListShape.new(name: 'AvailabilityZones')
+    CaEnrollmentPolicyStatus = Shapes::StringShape.new(name: 'CaEnrollmentPolicyStatus')
+    CaEnrollmentPolicyStatusReason = Shapes::StringShape.new(name: 'CaEnrollmentPolicyStatusReason')
     CancelSchemaExtensionRequest = Shapes::StructureShape.new(name: 'CancelSchemaExtensionRequest')
     CancelSchemaExtensionResult = Shapes::StructureShape.new(name: 'CancelSchemaExtensionResult')
     Certificate = Shapes::StructureShape.new(name: 'Certificate')
@@ -138,6 +140,8 @@ module Aws::DirectoryService
     DeregisterEventTopicResult = Shapes::StructureShape.new(name: 'DeregisterEventTopicResult')
     DescribeADAssessmentRequest = Shapes::StructureShape.new(name: 'DescribeADAssessmentRequest')
     DescribeADAssessmentResult = Shapes::StructureShape.new(name: 'DescribeADAssessmentResult')
+    DescribeCAEnrollmentPolicyRequest = Shapes::StructureShape.new(name: 'DescribeCAEnrollmentPolicyRequest')
+    DescribeCAEnrollmentPolicyResult = Shapes::StructureShape.new(name: 'DescribeCAEnrollmentPolicyResult')
     DescribeCertificateRequest = Shapes::StructureShape.new(name: 'DescribeCertificateRequest')
     DescribeCertificateResult = Shapes::StructureShape.new(name: 'DescribeCertificateResult')
     DescribeClientAuthenticationSettingsRequest = Shapes::StructureShape.new(name: 'DescribeClientAuthenticationSettingsRequest')
@@ -202,6 +206,9 @@ module Aws::DirectoryService
     DirectoryUnavailableException = Shapes::StructureShape.new(name: 'DirectoryUnavailableException')
     DirectoryVpcSettings = Shapes::StructureShape.new(name: 'DirectoryVpcSettings')
     DirectoryVpcSettingsDescription = Shapes::StructureShape.new(name: 'DirectoryVpcSettingsDescription')
+    DisableAlreadyInProgressException = Shapes::StructureShape.new(name: 'DisableAlreadyInProgressException')
+    DisableCAEnrollmentPolicyRequest = Shapes::StructureShape.new(name: 'DisableCAEnrollmentPolicyRequest')
+    DisableCAEnrollmentPolicyResult = Shapes::StructureShape.new(name: 'DisableCAEnrollmentPolicyResult')
     DisableClientAuthenticationRequest = Shapes::StructureShape.new(name: 'DisableClientAuthenticationRequest')
     DisableClientAuthenticationResult = Shapes::StructureShape.new(name: 'DisableClientAuthenticationResult')
     DisableDirectoryDataAccessRequest = Shapes::StructureShape.new(name: 'DisableDirectoryDataAccessRequest')
@@ -220,6 +227,9 @@ module Aws::DirectoryService
     DomainControllerStatus = Shapes::StringShape.new(name: 'DomainControllerStatus')
     DomainControllerStatusReason = Shapes::StringShape.new(name: 'DomainControllerStatusReason')
     DomainControllers = Shapes::ListShape.new(name: 'DomainControllers')
+    EnableAlreadyInProgressException = Shapes::StructureShape.new(name: 'EnableAlreadyInProgressException')
+    EnableCAEnrollmentPolicyRequest = Shapes::StructureShape.new(name: 'EnableCAEnrollmentPolicyRequest')
+    EnableCAEnrollmentPolicyResult = Shapes::StructureShape.new(name: 'EnableCAEnrollmentPolicyResult')
     EnableClientAuthenticationRequest = Shapes::StructureShape.new(name: 'EnableClientAuthenticationRequest')
     EnableClientAuthenticationResult = Shapes::StructureShape.new(name: 'EnableClientAuthenticationResult')
     EnableDirectoryDataAccessRequest = Shapes::StructureShape.new(name: 'EnableDirectoryDataAccessRequest')
@@ -304,6 +314,7 @@ module Aws::DirectoryService
     OwnerDirectoryDescription = Shapes::StructureShape.new(name: 'OwnerDirectoryDescription')
     PageLimit = Shapes::IntegerShape.new(name: 'PageLimit')
     Password = Shapes::StringShape.new(name: 'Password')
+    PcaConnectorArn = Shapes::StringShape.new(name: 'PcaConnectorArn')
     PortNumber = Shapes::IntegerShape.new(name: 'PortNumber')
     RadiusAuthenticationProtocol = Shapes::StringShape.new(name: 'RadiusAuthenticationProtocol')
     RadiusDisplayLabel = Shapes::StringShape.new(name: 'RadiusDisplayLabel')
@@ -763,6 +774,16 @@ module Aws::DirectoryService
     DescribeADAssessmentResult.add_member(:assessment_reports, Shapes::ShapeRef.new(shape: AssessmentReports, location_name: "AssessmentReports"))
     DescribeADAssessmentResult.struct_class = Types::DescribeADAssessmentResult
 
+    DescribeCAEnrollmentPolicyRequest.add_member(:directory_id, Shapes::ShapeRef.new(shape: DirectoryId, required: true, location_name: "DirectoryId"))
+    DescribeCAEnrollmentPolicyRequest.struct_class = Types::DescribeCAEnrollmentPolicyRequest
+
+    DescribeCAEnrollmentPolicyResult.add_member(:directory_id, Shapes::ShapeRef.new(shape: DirectoryId, location_name: "DirectoryId"))
+    DescribeCAEnrollmentPolicyResult.add_member(:pca_connector_arn, Shapes::ShapeRef.new(shape: PcaConnectorArn, location_name: "PcaConnectorArn"))
+    DescribeCAEnrollmentPolicyResult.add_member(:ca_enrollment_policy_status, Shapes::ShapeRef.new(shape: CaEnrollmentPolicyStatus, location_name: "CaEnrollmentPolicyStatus"))
+    DescribeCAEnrollmentPolicyResult.add_member(:last_updated_date_time, Shapes::ShapeRef.new(shape: LastUpdatedDateTime, location_name: "LastUpdatedDateTime"))
+    DescribeCAEnrollmentPolicyResult.add_member(:ca_enrollment_policy_status_reason, Shapes::ShapeRef.new(shape: CaEnrollmentPolicyStatusReason, location_name: "CaEnrollmentPolicyStatusReason"))
+    DescribeCAEnrollmentPolicyResult.struct_class = Types::DescribeCAEnrollmentPolicyResult
+
     DescribeCertificateRequest.add_member(:directory_id, Shapes::ShapeRef.new(shape: DirectoryId, required: true, location_name: "DirectoryId"))
     DescribeCertificateRequest.add_member(:certificate_id, Shapes::ShapeRef.new(shape: CertificateId, required: true, location_name: "CertificateId"))
     DescribeCertificateRequest.struct_class = Types::DescribeCertificateRequest
@@ -996,6 +1017,15 @@ module Aws::DirectoryService
     DirectoryVpcSettingsDescription.add_member(:availability_zones, Shapes::ShapeRef.new(shape: AvailabilityZones, location_name: "AvailabilityZones"))
     DirectoryVpcSettingsDescription.struct_class = Types::DirectoryVpcSettingsDescription
 
+    DisableAlreadyInProgressException.add_member(:message, Shapes::ShapeRef.new(shape: ExceptionMessage, location_name: "Message"))
+    DisableAlreadyInProgressException.add_member(:request_id, Shapes::ShapeRef.new(shape: RequestId, location_name: "RequestId"))
+    DisableAlreadyInProgressException.struct_class = Types::DisableAlreadyInProgressException
+
+    DisableCAEnrollmentPolicyRequest.add_member(:directory_id, Shapes::ShapeRef.new(shape: DirectoryId, required: true, location_name: "DirectoryId"))
+    DisableCAEnrollmentPolicyRequest.struct_class = Types::DisableCAEnrollmentPolicyRequest
+
+    DisableCAEnrollmentPolicyResult.struct_class = Types::DisableCAEnrollmentPolicyResult
+
     DisableClientAuthenticationRequest.add_member(:directory_id, Shapes::ShapeRef.new(shape: DirectoryId, required: true, location_name: "DirectoryId"))
     DisableClientAuthenticationRequest.add_member(:type, Shapes::ShapeRef.new(shape: ClientAuthenticationType, required: true, location_name: "Type"))
     DisableClientAuthenticationRequest.struct_class = Types::DisableClientAuthenticationRequest
@@ -1047,6 +1077,16 @@ module Aws::DirectoryService
 
     DomainControllers.member = Shapes::ShapeRef.new(shape: DomainController)
 
+    EnableAlreadyInProgressException.add_member(:message, Shapes::ShapeRef.new(shape: ExceptionMessage, location_name: "Message"))
+    EnableAlreadyInProgressException.add_member(:request_id, Shapes::ShapeRef.new(shape: RequestId, location_name: "RequestId"))
+    EnableAlreadyInProgressException.struct_class = Types::EnableAlreadyInProgressException
+
+    EnableCAEnrollmentPolicyRequest.add_member(:directory_id, Shapes::ShapeRef.new(shape: DirectoryId, required: true, location_name: "DirectoryId"))
+    EnableCAEnrollmentPolicyRequest.add_member(:pca_connector_arn, Shapes::ShapeRef.new(shape: PcaConnectorArn, required: true, location_name: "PcaConnectorArn"))
+    EnableCAEnrollmentPolicyRequest.struct_class = Types::EnableCAEnrollmentPolicyRequest
+
+    EnableCAEnrollmentPolicyResult.struct_class = Types::EnableCAEnrollmentPolicyResult
+
     EnableClientAuthenticationRequest.add_member(:directory_id, Shapes::ShapeRef.new(shape: DirectoryId, required: true, location_name: "DirectoryId"))
     EnableClientAuthenticationRequest.add_member(:type, Shapes::ShapeRef.new(shape: ClientAuthenticationType, required: true, location_name: "Type"))
     EnableClientAuthenticationRequest.struct_class = Types::EnableClientAuthenticationRequest
@@ -1943,6 +1983,18 @@ module Aws::DirectoryService
         o.errors << Shapes::ShapeRef.new(shape: EntityDoesNotExistException)
       end)
 
+      api.add_operation(:describe_ca_enrollment_policy, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "DescribeCAEnrollmentPolicy"
+        o.http_method = "POST"
+        o.http_request_uri = "/"
+        o.input = Shapes::ShapeRef.new(shape: DescribeCAEnrollmentPolicyRequest)
+        o.output = Shapes::ShapeRef.new(shape: DescribeCAEnrollmentPolicyResult)
+        o.errors << Shapes::ShapeRef.new(shape: DirectoryDoesNotExistException)
+        o.errors << Shapes::ShapeRef.new(shape: UnsupportedOperationException)
+        o.errors << Shapes::ShapeRef.new(shape: ClientException)
+        o.errors << Shapes::ShapeRef.new(shape: ServiceException)
+      end)
+
       api.add_operation(:describe_certificate, Seahorse::Model::Operation.new.tap do |o|
         o.name = "DescribeCertificate"
         o.http_method = "POST"
@@ -2201,6 +2253,22 @@ module Aws::DirectoryService
         )
       end)
 
+      api.add_operation(:disable_ca_enrollment_policy, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "DisableCAEnrollmentPolicy"
+        o.http_method = "POST"
+        o.http_request_uri = "/"
+        o.input = Shapes::ShapeRef.new(shape: DisableCAEnrollmentPolicyRequest)
+        o.output = Shapes::ShapeRef.new(shape: DisableCAEnrollmentPolicyResult)
+        o.errors << Shapes::ShapeRef.new(shape: DirectoryDoesNotExistException)
+        o.errors << Shapes::ShapeRef.new(shape: DirectoryUnavailableException)
+        o.errors << Shapes::ShapeRef.new(shape: InvalidParameterException)
+        o.errors << Shapes::ShapeRef.new(shape: DisableAlreadyInProgressException)
+        o.errors << Shapes::ShapeRef.new(shape: EntityDoesNotExistException)
+        o.errors << Shapes::ShapeRef.new(shape: AccessDeniedException)
+        o.errors << Shapes::ShapeRef.new(shape: ClientException)
+        o.errors << Shapes::ShapeRef.new(shape: ServiceException)
+      end)
+
       api.add_operation(:disable_client_authentication, Seahorse::Model::Operation.new.tap do |o|
         o.name = "DisableClientAuthentication"
         o.http_method = "POST"
@@ -2269,6 +2337,23 @@ module Aws::DirectoryService
         o.errors << Shapes::ShapeRef.new(shape: ServiceException)
       end)
 
+      api.add_operation(:enable_ca_enrollment_policy, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "EnableCAEnrollmentPolicy"
+        o.http_method = "POST"
+        o.http_request_uri = "/"
+        o.input = Shapes::ShapeRef.new(shape: EnableCAEnrollmentPolicyRequest)
+        o.output = Shapes::ShapeRef.new(shape: EnableCAEnrollmentPolicyResult)
+        o.errors << Shapes::ShapeRef.new(shape: DirectoryDoesNotExistException)
+        o.errors << Shapes::ShapeRef.new(shape: DirectoryUnavailableException)
+        o.errors << Shapes::ShapeRef.new(shape: InvalidParameterException)
+        o.errors << Shapes::ShapeRef.new(shape: EntityAlreadyExistsException)
+        o.errors << Shapes::ShapeRef.new(shape: EntityDoesNotExistException)
+        o.errors << Shapes::ShapeRef.new(shape: EnableAlreadyInProgressException)
+        o.errors << Shapes::ShapeRef.new(shape: ClientException)
+        o.errors << Shapes::ShapeRef.new(shape: ServiceException)
+        o.errors << Shapes::ShapeRef.new(shape: AccessDeniedException)
+      end)
+
       api.add_operation(:enable_client_authentication, Seahorse::Model::Operation.new.tap do |o|
         o.name = "EnableClientAuthentication"
         o.http_method = "POST"

data/lib/aws-sdk-directoryservice/errors.rb

@@ -42,7 +42,9 @@ module Aws::DirectoryService
   # * {DirectoryLimitExceededException}
   # * {DirectoryNotSharedException}
   # * {DirectoryUnavailableException}
+  # * {DisableAlreadyInProgressException}
   # * {DomainControllerLimitExceededException}
+  # * {EnableAlreadyInProgressException}
   # * {EntityAlreadyExistsException}
   # * {EntityDoesNotExistException}
   # * {IncompatibleSettingsException}
@@ -372,6 +374,26 @@ module Aws::DirectoryService
       end
     end
 
+    class DisableAlreadyInProgressException < ServiceError
+
+      # @param [Seahorse::Client::RequestContext] context
+      # @param [String] message
+      # @param [Aws::DirectoryService::Types::DisableAlreadyInProgressException] data
+      def initialize(context, message, data = Aws::EmptyStructure.new)
+        super(context, message, data)
+      end
+
+      # @return [String]
+      def message
+        @message || @data[:message]
+      end
+
+      # @return [String]
+      def request_id
+        @data[:request_id]
+      end
+    end
+
     class DomainControllerLimitExceededException < ServiceError
 
       # @param [Seahorse::Client::RequestContext] context
@@ -392,6 +414,26 @@ module Aws::DirectoryService
       end
     end
 
+    class EnableAlreadyInProgressException < ServiceError
+
+      # @param [Seahorse::Client::RequestContext] context
+      # @param [String] message
+      # @param [Aws::DirectoryService::Types::EnableAlreadyInProgressException] data
+      def initialize(context, message, data = Aws::EmptyStructure.new)
+        super(context, message, data)
+      end
+
+      # @return [String]
+      def message
+        @message || @data[:message]
+      end
+
+      # @return [String]
+      def request_id
+        @data[:request_id]
+      end
+    end
+
     class EntityAlreadyExistsException < ServiceError
 
       # @param [Seahorse::Client::RequestContext] context

data/lib/aws-sdk-directoryservice/types.rb

@@ -1613,6 +1613,79 @@ module Aws::DirectoryService
       include Aws::Structure
     end
 
+    # Contains the inputs for the DescribeCAEnrollmentPolicy operation.
+    #
+    # @!attribute [rw] directory_id
+    #   The identifier of the directory for which to retrieve the CA
+    #   enrollment policy information.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ds-2015-04-16/DescribeCAEnrollmentPolicyRequest AWS API Documentation
+    #
+    class DescribeCAEnrollmentPolicyRequest < Struct.new(
+      :directory_id)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Contains the results of the DescribeCAEnrollmentPolicy operation.
+    #
+    # @!attribute [rw] directory_id
+    #   The identifier of the directory associated with this CA enrollment
+    #   policy.
+    #   @return [String]
+    #
+    # @!attribute [rw] pca_connector_arn
+    #   The Amazon Resource Name (ARN) of the Amazon Web Services Private
+    #   Certificate Authority (PCA) connector that is configured for
+    #   automatic certificate enrollment in this directory.
+    #   @return [String]
+    #
+    # @!attribute [rw] ca_enrollment_policy_status
+    #   The current status of the CA enrollment policy. This indicates if
+    #   automatic certificate enrollment is currently active, inactive, or
+    #   in a transitional state.
+    #
+    #   Valid values:
+    #
+    #   * `IN_PROGRESS` - The policy is being activated T
+    #
+    #   * `SUCCESS` - The policy is active and automatic certificate
+    #     enrollment is operational
+    #
+    #   * `FAILED` - The policy activation or deactivation failed
+    #
+    #   * `DISABLING` - The policy is being deactivated
+    #
+    #   * `DISABLED` - The policy is inactive and automatic certificate
+    #     enrollment is not available
+    #
+    #   * `IMPAIRED` - Network connectivity is impaired.
+    #   @return [String]
+    #
+    # @!attribute [rw] last_updated_date_time
+    #   The date and time when the CA enrollment policy was last modified or
+    #   updated.
+    #   @return [Time]
+    #
+    # @!attribute [rw] ca_enrollment_policy_status_reason
+    #   Additional information explaining the current status of the CA
+    #   enrollment policy, particularly useful when the policy is in an
+    #   error or transitional state.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ds-2015-04-16/DescribeCAEnrollmentPolicyResult AWS API Documentation
+    #
+    class DescribeCAEnrollmentPolicyResult < Struct.new(
+      :directory_id,
+      :pca_connector_arn,
+      :ca_enrollment_policy_status,
+      :last_updated_date_time,
+      :ca_enrollment_policy_status_reason)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
     # @!attribute [rw] directory_id
     #   The identifier of the directory.
     #   @return [String]
@@ -2816,6 +2889,47 @@ module Aws::DirectoryService
       include Aws::Structure
     end
 
+    # A disable operation for CA enrollment policy is already in progress
+    # for this directory.
+    #
+    # @!attribute [rw] message
+    #   The descriptive message for the exception.
+    #   @return [String]
+    #
+    # @!attribute [rw] request_id
+    #   The Amazon Web Services request identifier.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ds-2015-04-16/DisableAlreadyInProgressException AWS API Documentation
+    #
+    class DisableAlreadyInProgressException < Struct.new(
+      :message,
+      :request_id)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Contains the inputs for the DisableCAEnrollmentPolicy operation.
+    #
+    # @!attribute [rw] directory_id
+    #   The identifier of the directory for which to disable the CA
+    #   enrollment policy.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ds-2015-04-16/DisableCAEnrollmentPolicyRequest AWS API Documentation
+    #
+    class DisableCAEnrollmentPolicyRequest < Struct.new(
+      :directory_id)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Contains the results of the DisableCAEnrollmentPolicy operation.
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ds-2015-04-16/DisableCAEnrollmentPolicyResult AWS API Documentation
+    #
+    class DisableCAEnrollmentPolicyResult < Aws::EmptyStructure; end
+
     # @!attribute [rw] directory_id
     #   The identifier of the directory
     #   @return [String]
@@ -3018,6 +3132,58 @@ module Aws::DirectoryService
       include Aws::Structure
     end
 
+    # An enable operation for CA enrollment policy is already in progress
+    # for this directory.
+    #
+    # @!attribute [rw] message
+    #   The descriptive message for the exception.
+    #   @return [String]
+    #
+    # @!attribute [rw] request_id
+    #   The Amazon Web Services request identifier.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ds-2015-04-16/EnableAlreadyInProgressException AWS API Documentation
+    #
+    class EnableAlreadyInProgressException < Struct.new(
+      :message,
+      :request_id)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Contains the inputs for the EnableCAEnrollmentPolicy operation.
+    #
+    # @!attribute [rw] directory_id
+    #   The identifier of the directory for which to enable the CA
+    #   enrollment policy.
+    #   @return [String]
+    #
+    # @!attribute [rw] pca_connector_arn
+    #   The Amazon Resource Name (ARN) of the Private Certificate Authority
+    #   (PCA) connector to use for automatic certificate enrollment. This
+    #   connector must be properly configured and accessible from the
+    #   directory.
+    #
+    #   The ARN format is:
+    #   `arn:aws:pca-connector-ad:region:account-id:connector/connector-id `
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ds-2015-04-16/EnableCAEnrollmentPolicyRequest AWS API Documentation
+    #
+    class EnableCAEnrollmentPolicyRequest < Struct.new(
+      :directory_id,
+      :pca_connector_arn)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+
+    # Contains the results of the EnableCAEnrollmentPolicy operation.
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/ds-2015-04-16/EnableCAEnrollmentPolicyResult AWS API Documentation
+    #
+    class EnableCAEnrollmentPolicyResult < Aws::EmptyStructure; end
+
     # @!attribute [rw] directory_id
     #   The identifier of the specified directory.
     #   @return [String]

data/lib/aws-sdk-directoryservice.rb

@@ -55,7 +55,7 @@ module Aws::DirectoryService
   autoload :EndpointProvider, 'aws-sdk-directoryservice/endpoint_provider'
   autoload :Endpoints, 'aws-sdk-directoryservice/endpoints'
 
-  GEM_VERSION = '1.92.0'
+  GEM_VERSION = '1.93.0'
 
 end
 

data/sig/client.rbs

@@ -405,6 +405,20 @@ module Aws
                                   ) -> _DescribeADAssessmentResponseSuccess
                                 | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _DescribeADAssessmentResponseSuccess
 
+      interface _DescribeCAEnrollmentPolicyResponseSuccess
+        include ::Seahorse::Client::_ResponseSuccess[Types::DescribeCAEnrollmentPolicyResult]
+        def directory_id: () -> ::String
+        def pca_connector_arn: () -> ::String
+        def ca_enrollment_policy_status: () -> ("InProgress" | "Success" | "Failed" | "Disabling" | "Disabled" | "Impaired")
+        def last_updated_date_time: () -> ::Time
+        def ca_enrollment_policy_status_reason: () -> ::String
+      end
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/DirectoryService/Client.html#describe_ca_enrollment_policy-instance_method
+      def describe_ca_enrollment_policy: (
+                                           directory_id: ::String
+                                         ) -> _DescribeCAEnrollmentPolicyResponseSuccess
+                                       | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _DescribeCAEnrollmentPolicyResponseSuccess
+
       interface _DescribeCertificateResponseSuccess
         include ::Seahorse::Client::_ResponseSuccess[Types::DescribeCertificateResult]
         def certificate: () -> Types::Certificate
@@ -599,6 +613,15 @@ module Aws
                                      ) -> _DescribeUpdateDirectoryResponseSuccess
                                    | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _DescribeUpdateDirectoryResponseSuccess
 
+      interface _DisableCAEnrollmentPolicyResponseSuccess
+        include ::Seahorse::Client::_ResponseSuccess[Types::DisableCAEnrollmentPolicyResult]
+      end
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/DirectoryService/Client.html#disable_ca_enrollment_policy-instance_method
+      def disable_ca_enrollment_policy: (
+                                          directory_id: ::String
+                                        ) -> _DisableCAEnrollmentPolicyResponseSuccess
+                                      | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _DisableCAEnrollmentPolicyResponseSuccess
+
       interface _DisableClientAuthenticationResponseSuccess
         include ::Seahorse::Client::_ResponseSuccess[Types::DisableClientAuthenticationResult]
       end
@@ -648,6 +671,16 @@ module Aws
                        ) -> _DisableSsoResponseSuccess
                      | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _DisableSsoResponseSuccess
 
+      interface _EnableCAEnrollmentPolicyResponseSuccess
+        include ::Seahorse::Client::_ResponseSuccess[Types::EnableCAEnrollmentPolicyResult]
+      end
+      # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/DirectoryService/Client.html#enable_ca_enrollment_policy-instance_method
+      def enable_ca_enrollment_policy: (
+                                         directory_id: ::String,
+                                         pca_connector_arn: ::String
+                                       ) -> _EnableCAEnrollmentPolicyResponseSuccess
+                                     | (Hash[Symbol, untyped] params, ?Hash[Symbol, untyped] options) -> _EnableCAEnrollmentPolicyResponseSuccess
+
       interface _EnableClientAuthenticationResponseSuccess
         include ::Seahorse::Client::_ResponseSuccess[Types::EnableClientAuthenticationResult]
       end

data/sig/errors.rbs

@@ -71,10 +71,18 @@ module Aws
         def message: () -> ::String
         def request_id: () -> ::String
       end
+      class DisableAlreadyInProgressException < ::Aws::Errors::ServiceError
+        def message: () -> ::String
+        def request_id: () -> ::String
+      end
       class DomainControllerLimitExceededException < ::Aws::Errors::ServiceError
         def message: () -> ::String
         def request_id: () -> ::String
       end
+      class EnableAlreadyInProgressException < ::Aws::Errors::ServiceError
+        def message: () -> ::String
+        def request_id: () -> ::String
+      end
       class EntityAlreadyExistsException < ::Aws::Errors::ServiceError
         def message: () -> ::String
         def request_id: () -> ::String

data/sig/types.rbs

@@ -433,6 +433,20 @@ module Aws::DirectoryService
       SENSITIVE: []
     end
 
+    class DescribeCAEnrollmentPolicyRequest
+      attr_accessor directory_id: ::String
+      SENSITIVE: []
+    end
+
+    class DescribeCAEnrollmentPolicyResult
+      attr_accessor directory_id: ::String
+      attr_accessor pca_connector_arn: ::String
+      attr_accessor ca_enrollment_policy_status: ("InProgress" | "Success" | "Failed" | "Disabling" | "Disabled" | "Impaired")
+      attr_accessor last_updated_date_time: ::Time
+      attr_accessor ca_enrollment_policy_status_reason: ::String
+      SENSITIVE: []
+    end
+
     class DescribeCertificateRequest
       attr_accessor directory_id: ::String
       attr_accessor certificate_id: ::String
@@ -745,6 +759,20 @@ module Aws::DirectoryService
       SENSITIVE: []
     end
 
+    class DisableAlreadyInProgressException
+      attr_accessor message: ::String
+      attr_accessor request_id: ::String
+      SENSITIVE: []
+    end
+
+    class DisableCAEnrollmentPolicyRequest
+      attr_accessor directory_id: ::String
+      SENSITIVE: []
+    end
+
+    class DisableCAEnrollmentPolicyResult < Aws::EmptyStructure
+    end
+
     class DisableClientAuthenticationRequest
       attr_accessor directory_id: ::String
       attr_accessor type: ("SmartCard" | "SmartCardOrPassword")
@@ -809,6 +837,21 @@ module Aws::DirectoryService
       SENSITIVE: []
     end
 
+    class EnableAlreadyInProgressException
+      attr_accessor message: ::String
+      attr_accessor request_id: ::String
+      SENSITIVE: []
+    end
+
+    class EnableCAEnrollmentPolicyRequest
+      attr_accessor directory_id: ::String
+      attr_accessor pca_connector_arn: ::String
+      SENSITIVE: []
+    end
+
+    class EnableCAEnrollmentPolicyResult < Aws::EmptyStructure
+    end
+
     class EnableClientAuthenticationRequest
       attr_accessor directory_id: ::String
       attr_accessor type: ("SmartCard" | "SmartCardOrPassword")

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-directoryservice
 version: !ruby/object:Gem::Version
-  version: 1.92.0
+  version: 1.93.0
 platform: ruby
 authors:
 - Amazon Web Services