@pulumi/juniper-mist 0.1.3 → 0.1.4

package/types/output.d.ts

@@ -4690,7 +4690,7 @@ export declare namespace org {
         /**
          * List of additional email string to deliver the alarms via emails
          */
-        additionalEmails?: string[];
+        additionalEmails: string[];
         /**
          * Whether to enable the alarm delivery via emails or not
          */
@@ -10176,7 +10176,7 @@ Please update your configurations.
         /**
          * SAE anti-clogging token threshold
          */
-        anticlogThreshold: number;
+        anticlogThreshold?: number;
         /**
          * whether to trigger EAP reauth when the session ends
          */
@@ -10200,7 +10200,7 @@ Please update your configurations.
         /**
          * if `type`==`open`. enum: `disabled`, `enabled` (means transition mode), `required`
          */
-        owe: string;
+        owe?: string;
         /**
          * when `type`=`psk` or `type`=`eap`, one or more of `wpa1-ccmp`, `wpa1-tkip`, `wpa2-ccmp`, `wpa2-tkip`, `wpa3`
          */
@@ -10220,7 +10220,7 @@ Please update your configurations.
         /**
          * enable WEP as secondary auth
          */
-        wepAsSecondaryAuth: boolean;
+        wepAsSecondaryAuth?: boolean;
     }
     interface WlanAuthServer {
         /**
@@ -10329,7 +10329,6 @@ Please update your configurations.
          * enum: `cloudPsks`, `radius`
          */
         source: string;
-        vlanIds?: string[];
     }
     interface WlanDynamicVlan {
         /**
@@ -10337,7 +10336,7 @@ Please update your configurations.
          */
         defaultVlanIds: string[];
         /**
-         * whether to enable dynamic vlan
+         * Requires `vlanEnabled`==`true` to be set to `true`. Whether to enable dynamic vlan
          */
         enabled: boolean;
         /**
@@ -10404,19 +10403,19 @@ Please update your configurations.
     }
     interface WlanPortal {
         /**
-         * whether to allow guest to connect to other Guest WLANs (with different `WLAN.ssid`) of same org without reauthentication (disable randomMac for seamless roaming)
+         * Optional if `amazonEnabled`==`true`. Whether to allow guest to connect to other Guest WLANs (with different `WLAN.ssid`) of same org without reauthentication (disable randomMac for seamless roaming)
          */
-        allowWlanIdRoam: boolean;
+        allowWlanIdRoam?: boolean;
         /**
-         * amazon OAuth2 client id. This is optional. If not provided, it will use a default one.
+         * Optional if `amazonEnabled`==`true`. Amazon OAuth2 client id. This is optional. If not provided, it will use a default one.
          */
         amazonClientId: string;
         /**
-         * amazon OAuth2 client secret. If amazonClientId was provided, provide a correspoinding value. Else leave blank.
+         * Optional if `amazonEnabled`==`true`. Amazon OAuth2 client secret. If amazonClientId was provided, provide a correspoinding value. Else leave blank.
          */
         amazonClientSecret: string;
         /**
-         * Matches authenticated user email against provided domains. If null or [], all authenticated emails will be allowed.
+         * Optional if `amazonEnabled`==`true`. Matches authenticated user email against provided domains. If null or [], all authenticated emails will be allowed.
          */
         amazonEmailDomains: string[];
         /**
@@ -10424,21 +10423,19 @@ Please update your configurations.
          */
         amazonEnabled: boolean;
         /**
-         * interval for which guest remains authorized using amazon auth (in minutes), if not provided, uses expire`
+         * Optional if `amazonEnabled`==`true`. Interval for which guest remains authorized using amazon auth (in minutes), if not provided, uses expire`
          */
-        amazonExpire: number;
+        amazonExpire?: number;
         /**
-         * authentication scheme. enum: `external`, `none`, `sso`
+         * authentication scheme. enum: `amazon`, `azure`, `email`, `external`, `facebook`, `google`, `microsoft`, `multi`, `none`, `password`, `sponsor`, `sso`
          */
         auth: string;
         /**
-         * Required if `azureEnabled`==`true`.
-         * Azure active directory app client id
+         * Required if `azureEnabled`==`true`. Azure active directory app client id
          */
         azureClientId: string;
         /**
-         * Required if `azureEnabled`==`true`.
-         * Azure active directory app client secret
+         * Required if `azureEnabled`==`true`. Azure active directory app client secret
          */
         azureClientSecret: string;
         /**
@@ -10448,36 +10445,35 @@ Please update your configurations.
         /**
          * interval for which guest remains authorized using azure auth (in minutes), if not provided, uses expire`
          */
-        azureExpire: number;
+        azureExpire?: number;
         /**
-         * Required if `azureEnabled`==`true`.
-         * Azure active directory tenant id.
+         * Required if `azureEnabled`==`true`. Azure active directory tenant id.
          */
         azureTenantId: string;
         /**
-         * when `smsProvider`==`broadnet`
+         * Required if `smsProvider`==`broadnet`
          */
         broadnetPassword: string;
         /**
-         * when `smsProvider`==`broadnet`
+         * Required if `smsProvider`==`broadnet`
          */
-        broadnetSid: string;
+        broadnetSid?: string;
         /**
-         * when `smsProvider`==`broadnet`
+         * Required if `smsProvider`==`broadnet`
          */
-        broadnetUserId: string;
+        broadnetUserId?: string;
         /**
          * whether to bypass the guest portal when cloud not reachable (and apply the default policies)
          */
         bypassWhenCloudDown: boolean;
         /**
-         * when `smsProvider`==`clickatell`
+         * Required if `smsProvider`==`clickatell`
          */
-        clickatellApiKey: string;
+        clickatellApiKey?: string;
         /**
          * whether to allow guest to roam between WLANs (with same `WLAN.ssid`, regardless of variables) of different sites of same org without reauthentication (disable randomMac for seamless roaming)
          */
-        crossSite: boolean;
+        crossSite?: boolean;
         /**
          * whether email (access code verification) is enabled as a login method
          */
@@ -10491,21 +10487,19 @@ Please update your configurations.
          */
         expire: number;
         /**
-         * external portal URL (e.g. https://host/url) where we can append our query parameters to
+         * Required if `wlanPortalAuth`==`external`. External portal URL (e.g. https://host/url) where we can append our query parameters to
          */
         externalPortalUrl: string;
         /**
-         * Required if `facebookEnabled`==`true`.
-         * Facebook OAuth2 app id. This is optional. If not provided, it will use a default one.
+         * Required if `facebookEnabled`==`true`. Facebook OAuth2 app id. This is optional. If not provided, it will use a default one.
          */
         facebookClientId: string;
         /**
-         * Required if `facebookEnabled`==`true`.
-         * Facebook OAuth2 app secret. If facebookClientId was provided, provide a correspoinding value. Else leave blank.
+         * Required if `facebookEnabled`==`true`. Facebook OAuth2 app secret. If facebookClientId was provided, provide a correspoinding value. Else leave blank.
          */
         facebookClientSecret: string;
         /**
-         * Matches authenticated user email against provided domains. If null or [], all authenticated emails will be allowed.
+         * Optional if `facebookEnabled`==`true`. Matches authenticated user email against provided domains. If null or [], all authenticated emails will be allowed.
          */
         facebookEmailDomains: string[];
         /**
@@ -10513,9 +10507,9 @@ Please update your configurations.
          */
         facebookEnabled: boolean;
         /**
-         * interval for which guest remains authorized using facebook auth (in minutes), if not provided, uses expire`
+         * Optional if `facebookEnabled`==`true`. Interval for which guest remains authorized using facebook auth (in minutes), if not provided, uses expire`
          */
-        facebookExpire: number;
+        facebookExpire?: number;
         /**
          * whether to forward the user to another URL after authorized
          */
@@ -10529,11 +10523,11 @@ Please update your configurations.
          */
         googleClientId: string;
         /**
-         * Google OAuth2 app secret. If googleClientId was provided, provide a correspoinding value. Else leave blank.
+         * Optional if `googleEnabled`==`true`. Google OAuth2 app secret. If googleClientId was provided, provide a correspoinding value. Else leave blank.
          */
         googleClientSecret: string;
         /**
-         * Matches authenticated user email against provided domains. If null or [], all authenticated emails will be allowed.
+         * Optional if `googleEnabled`==`true`. Matches authenticated user email against provided domains. If null or [], all authenticated emails will be allowed.
          */
         googleEmailDomains: string[];
         /**
@@ -10541,27 +10535,27 @@ Please update your configurations.
          */
         googleEnabled: boolean;
         /**
-         * interval for which guest remains authorized using google auth (in minutes), if not provided, uses expire`
+         * Optional if `googleEnabled`==`true`. Interval for which guest remains authorized using google auth (in minutes), if not provided, uses expire`
          */
-        googleExpire: number;
+        googleExpire?: number;
         /**
-         * when `smsProvider`==`gupshup`
+         * Required if `smsProvider`==`gupshup`
          */
-        gupshupPassword: string;
+        gupshupPassword?: string;
         /**
-         * when `smsProvider`==`gupshup`
+         * Required if `smsProvider`==`gupshup`
          */
-        gupshupUserid: string;
+        gupshupUserid?: string;
         /**
-         * microsoft 365 OAuth2 client id. This is optional. If not provided, it will use a default one.
+         * Optional if `microsoftEnabled`==`true`. Microsoft 365 OAuth2 client id. This is optional. If not provided, it will use a default one.
          */
         microsoftClientId: string;
         /**
-         * microsoft 365 OAuth2 client secret. If microsoftClientId was provided, provide a correspoinding value. Else leave blank.
+         * Optional if `microsoftEnabled`==`true`. Microsoft 365 OAuth2 client secret. If microsoftClientId was provided, provide a correspoinding value. Else leave blank.
          */
         microsoftClientSecret: string;
         /**
-         * Matches authenticated user email against provided domains. If null or [], all authenticated emails will be allowed.
+         * Optional if `microsoftEnabled`==`true`. Matches authenticated user email against provided domains. If null or [], all authenticated emails will be allowed.
          */
         microsoftEmailDomains: string[];
         /**
@@ -10569,19 +10563,19 @@ Please update your configurations.
          */
         microsoftEnabled: boolean;
         /**
-         * interval for which guest remains authorized using microsoft auth (in minutes), if not provided, uses expire`
+         * Optional if `microsoftEnabled`==`true`. Interval for which guest remains authorized using microsoft auth (in minutes), if not provided, uses expire`
          */
-        microsoftExpire: number;
+        microsoftExpire?: number;
         /**
-         * whether password is enabled
+         * Whether password is enabled
          */
         passphraseEnabled: boolean;
         /**
-         * interval for which guest remains authorized using passphrase auth (in minutes), if not provided, uses `expire`
+         * Optional if `passphraseEnabled`==`true`. Interval for which guest remains authorized using passphrase auth (in minutes), if not provided, uses `expire`
          */
-        passphraseExpire: number;
+        passphraseExpire?: number;
         /**
-         * passphrase
+         * Required if `passphraseEnabled`==`true`.
          */
         password: string;
         /**
@@ -10594,34 +10588,37 @@ Please update your configurations.
         predefinedSponsorsHideEmail: boolean;
         privacy: boolean;
         /**
-         * when `smsProvider`==`puzzel`
+         * Required if `smsProvider`==`puzzel`
          */
-        puzzelPassword: string;
+        puzzelPassword?: string;
         /**
-         * when `smsProvider`==`puzzel`
+         * Required if `smsProvider`==`puzzel`
          */
-        puzzelServiceId: string;
+        puzzelServiceId?: string;
         /**
-         * when `smsProvider`==`puzzel`
+         * Required if `smsProvider`==`puzzel`
          */
-        puzzelUsername: string;
+        puzzelUsername?: string;
         /**
          * whether sms is enabled as a login method
          */
         smsEnabled: boolean;
         /**
-         * interval for which guest remains authorized using sms auth (in minutes), if not provided, uses expire`
+         * Optional if `smsEnabled`==`true`. Interval for which guest remains authorized using sms auth (in minutes), if not provided, uses expire`
+         */
+        smsExpire?: number;
+        /**
+         * Optional if `smsEnabled`==`true`. SMS Message format
          */
-        smsExpire: number;
         smsMessageFormat: string;
         /**
-         * enum: `broadnet`, `clickatell`, `gupshup`, `manual`, `puzzel`, `telstra`, `twilio`
+         * Optioanl if `smsEnabled`==`true`. enum: `broadnet`, `clickatell`, `gupshup`, `manual`, `puzzel`, `telstra`, `twilio`
          */
         smsProvider: string;
         /**
-         * whether to automatically approve guest and allow sponsor to revoke guest access, needs predefinedSponsorsEnabled enabled and sponsorNotifyAll disabled
+         * Optional if `sponsorEnabled`==`true`. Whether to automatically approve guest and allow sponsor to revoke guest access, needs predefinedSponsorsEnabled enabled and sponsorNotifyAll disabled
          */
-        sponsorAutoApprove: boolean;
+        sponsorAutoApprove?: boolean;
         /**
          * list of domain allowed for sponsor email. Required if `sponsorEnabled` is `true` and `sponsors` is empty.
          */
@@ -10631,19 +10628,19 @@ Please update your configurations.
          */
         sponsorEnabled: boolean;
         /**
-         * interval for which guest remains authorized using sponsor auth (in minutes), if not provided, uses expire`
+         * Optional if `sponsorEnabled`==`true`. Interval for which guest remains authorized using sponsor auth (in minutes), if not provided, uses expire`
          */
-        sponsorExpire: number;
+        sponsorExpire?: number;
         /**
-         * how long to remain valid sponsored guest request approve/deny link received in email, in minutes.
+         * Optional if `sponsorEnabled`==`true`. How long to remain valid sponsored guest request approve/deny link received in email, in minutes.
          */
         sponsorLinkValidityDuration: string;
         /**
-         * whether to notify all sponsors that are mentioned in `sponsors` object. Both `sponsorNotifyAll` and `predefinedSponsorsEnabled` should be true in order to notify sponsors. If true, email sent to 10 sponsors in no particular order.
+         * Optional if `sponsorEnabled`==`true`. whether to notify all sponsors that are mentioned in `sponsors` object. Both `sponsorNotifyAll` and `predefinedSponsorsEnabled` should be true in order to notify sponsors. If true, email sent to 10 sponsors in no particular order.
          */
         sponsorNotifyAll: boolean;
         /**
-         * if enabled, guest will get email about sponsor's action (approve/deny)
+         * Optional if `sponsorEnabled`==`true`. If enabled, guest will get email about sponsor's action (approve/deny)
          */
         sponsorStatusNotify: boolean;
         /**
@@ -10656,53 +10653,53 @@ Please update your configurations.
             [key: string]: string;
         };
         /**
-         * if `wlanPortalAuth`==`sso`, default role to assign if there’s no match. By default, an assertion is treated as invalid when there’s no role matched
+         * Optionl if `wlanPortalAuth`==`sso`, default role to assign if there’s no match. By default, an assertion is treated as invalid when there’s no role matched
          */
         ssoDefaultRole: string;
         /**
-         * if `wlanPortalAuth`==`sso`
+         * Optionl if `wlanPortalAuth`==`sso`
          */
         ssoForcedRole: string;
         /**
-         * if `wlanPortalAuth`==`sso`, IDP Cert (used to verify the signed response)
+         * Required if `wlanPortalAuth`==`sso`. IDP Cert (used to verify the signed response)
          */
         ssoIdpCert: string;
         /**
-         * if `wlanPortalAuth`==`sso`, Signing algorithm for SAML Assertion. enum: `sha1`, `sha256`, `sha384`, `sha512`
+         * Optioanl if `wlanPortalAuth`==`sso`, Signing algorithm for SAML Assertion. enum: `sha1`, `sha256`, `sha384`, `sha512`
          */
         ssoIdpSignAlgo: string;
         /**
-         * if `wlanPortalAuth`==`sso`, IDP Single-Sign-On URL
+         * Required if `wlanPortalAuth`==`sso`, IDP Single-Sign-On URL
          */
         ssoIdpSsoUrl: string;
         /**
-         * if `wlanPortalAuth`==`sso`, IDP issuer URL
+         * Required if `wlanPortalAuth`==`sso`, IDP issuer URL
          */
         ssoIssuer: string;
         /**
-         * if `wlanPortalAuth`==`sso`. enum: `email`, `unspecified`
+         * Optional if `wlanPortalAuth`==`sso`. enum: `email`, `unspecified`
          */
         ssoNameidFormat: string;
         /**
-         * when `smsProvider`==`telstra`, Client ID provided by Telstra
+         * Required if `smsProvider`==`telstra`, Client ID provided by Telstra
          */
-        telstraClientId: string;
+        telstraClientId?: string;
         /**
-         * when `smsProvider`==`telstra`, Client secret provided by Telstra
+         * Required if `smsProvider`==`telstra`, Client secret provided by Telstra
          */
-        telstraClientSecret: string;
+        telstraClientSecret?: string;
         /**
-         * when `smsProvider`==`twilio`, Auth token account with twilio account
+         * Required if `smsProvider`==`twilio`, Auth token account with twilio account
          */
-        twilioAuthToken: string;
+        twilioAuthToken?: string;
         /**
-         * when `smsProvider`==`twilio`, Twilio phone number associated with the account. See example for accepted format.
+         * Required if `smsProvider`==`twilio`, Twilio phone number associated with the account. See example for accepted format.
          */
-        twilioPhoneNumber: string;
+        twilioPhoneNumber?: string;
         /**
-         * when `smsProvider`==`twilio`, Account SID provided by Twilio
+         * Required if `smsProvider`==`twilio`, Account SID provided by Twilio
          */
-        twilioSid: string;
+        twilioSid?: string;
     }
     interface WlanPortalTemplatePortalTemplate {
         accessCodeAlternateEmail: string;
@@ -11425,7 +11422,7 @@ Please update your configurations.
         /**
          * Minimum RSSI for client to connect, 0 means not enforcing
          */
-        minRssi?: number;
+        minRssi: number;
         /**
          * Data Rates template to apply. enum:
          *   * `no-legacy`: no 11b
@@ -11434,7 +11431,7 @@ Please update your configurations.
          *   * `high-density`: no 11b, no low rates
          *   * `custom`: user defined
          */
-        template?: string;
+        template: string;
         /**
          * if `template`==`custom`. MCS bitmasks for 4 streams (16-bit for each stream, MCS0 is least significant bit), e.g. 03ff 01ff 00ff limits VHT rates to MCS 0-9 for 1 stream, MCS 0-8 for 2 streams, and MCS 0-7 for 3 streams.
          */
@@ -13435,7 +13432,7 @@ Please update your configurations.
         /**
          * SAE anti-clogging token threshold
          */
-        anticlogThreshold: number;
+        anticlogThreshold?: number;
         /**
          * whether to trigger EAP reauth when the session ends
          */
@@ -13459,7 +13456,7 @@ Please update your configurations.
         /**
          * if `type`==`open`. enum: `disabled`, `enabled` (means transition mode), `required`
          */
-        owe: string;
+        owe?: string;
         /**
          * when `type`=`psk` or `type`=`eap`, one or more of `wpa1-ccmp`, `wpa1-tkip`, `wpa2-ccmp`, `wpa2-tkip`, `wpa3`
          */
@@ -13479,7 +13476,7 @@ Please update your configurations.
         /**
          * enable WEP as secondary auth
          */
-        wepAsSecondaryAuth: boolean;
+        wepAsSecondaryAuth?: boolean;
     }
     interface WlanAuthServer {
         /**
@@ -13588,7 +13585,6 @@ Please update your configurations.
          * enum: `cloudPsks`, `radius`
          */
         source: string;
-        vlanIds?: string[];
     }
     interface WlanDynamicVlan {
         /**
@@ -13596,7 +13592,7 @@ Please update your configurations.
          */
         defaultVlanIds: string[];
         /**
-         * whether to enable dynamic vlan
+         * Requires `vlanEnabled`==`true` to be set to `true`. Whether to enable dynamic vlan
          */
         enabled: boolean;
         /**
@@ -13663,19 +13659,19 @@ Please update your configurations.
     }
     interface WlanPortal {
         /**
-         * whether to allow guest to connect to other Guest WLANs (with different `WLAN.ssid`) of same org without reauthentication (disable randomMac for seamless roaming)
+         * Optional if `amazonEnabled`==`true`. Whether to allow guest to connect to other Guest WLANs (with different `WLAN.ssid`) of same org without reauthentication (disable randomMac for seamless roaming)
          */
-        allowWlanIdRoam: boolean;
+        allowWlanIdRoam?: boolean;
         /**
-         * amazon OAuth2 client id. This is optional. If not provided, it will use a default one.
+         * Optional if `amazonEnabled`==`true`. Amazon OAuth2 client id. This is optional. If not provided, it will use a default one.
          */
         amazonClientId: string;
         /**
-         * amazon OAuth2 client secret. If amazonClientId was provided, provide a correspoinding value. Else leave blank.
+         * Optional if `amazonEnabled`==`true`. Amazon OAuth2 client secret. If amazonClientId was provided, provide a correspoinding value. Else leave blank.
          */
         amazonClientSecret: string;
         /**
-         * Matches authenticated user email against provided domains. If null or [], all authenticated emails will be allowed.
+         * Optional if `amazonEnabled`==`true`. Matches authenticated user email against provided domains. If null or [], all authenticated emails will be allowed.
          */
         amazonEmailDomains: string[];
         /**
@@ -13683,21 +13679,19 @@ Please update your configurations.
          */
         amazonEnabled: boolean;
         /**
-         * interval for which guest remains authorized using amazon auth (in minutes), if not provided, uses expire`
+         * Optional if `amazonEnabled`==`true`. Interval for which guest remains authorized using amazon auth (in minutes), if not provided, uses expire`
          */
-        amazonExpire: number;
+        amazonExpire?: number;
         /**
-         * authentication scheme. enum: `external`, `none`, `sso`
+         * authentication scheme. enum: `amazon`, `azure`, `email`, `external`, `facebook`, `google`, `microsoft`, `multi`, `none`, `password`, `sponsor`, `sso`
          */
         auth: string;
         /**
-         * Required if `azureEnabled`==`true`.
-         * Azure active directory app client id
+         * Required if `azureEnabled`==`true`. Azure active directory app client id
          */
         azureClientId: string;
         /**
-         * Required if `azureEnabled`==`true`.
-         * Azure active directory app client secret
+         * Required if `azureEnabled`==`true`. Azure active directory app client secret
          */
         azureClientSecret: string;
         /**
@@ -13707,36 +13701,35 @@ Please update your configurations.
         /**
          * interval for which guest remains authorized using azure auth (in minutes), if not provided, uses expire`
          */
-        azureExpire: number;
+        azureExpire?: number;
         /**
-         * Required if `azureEnabled`==`true`.
-         * Azure active directory tenant id.
+         * Required if `azureEnabled`==`true`. Azure active directory tenant id.
          */
         azureTenantId: string;
         /**
-         * when `smsProvider`==`broadnet`
+         * Required if `smsProvider`==`broadnet`
          */
         broadnetPassword: string;
         /**
-         * when `smsProvider`==`broadnet`
+         * Required if `smsProvider`==`broadnet`
          */
-        broadnetSid: string;
+        broadnetSid?: string;
         /**
-         * when `smsProvider`==`broadnet`
+         * Required if `smsProvider`==`broadnet`
          */
-        broadnetUserId: string;
+        broadnetUserId?: string;
         /**
          * whether to bypass the guest portal when cloud not reachable (and apply the default policies)
          */
         bypassWhenCloudDown: boolean;
         /**
-         * when `smsProvider`==`clickatell`
+         * Required if `smsProvider`==`clickatell`
          */
-        clickatellApiKey: string;
+        clickatellApiKey?: string;
         /**
          * whether to allow guest to roam between WLANs (with same `WLAN.ssid`, regardless of variables) of different sites of same org without reauthentication (disable randomMac for seamless roaming)
          */
-        crossSite: boolean;
+        crossSite?: boolean;
         /**
          * whether email (access code verification) is enabled as a login method
          */
@@ -13750,21 +13743,19 @@ Please update your configurations.
          */
         expire: number;
         /**
-         * external portal URL (e.g. https://host/url) where we can append our query parameters to
+         * Required if `wlanPortalAuth`==`external`. External portal URL (e.g. https://host/url) where we can append our query parameters to
          */
         externalPortalUrl: string;
         /**
-         * Required if `facebookEnabled`==`true`.
-         * Facebook OAuth2 app id. This is optional. If not provided, it will use a default one.
+         * Required if `facebookEnabled`==`true`. Facebook OAuth2 app id. This is optional. If not provided, it will use a default one.
          */
         facebookClientId: string;
         /**
-         * Required if `facebookEnabled`==`true`.
-         * Facebook OAuth2 app secret. If facebookClientId was provided, provide a correspoinding value. Else leave blank.
+         * Required if `facebookEnabled`==`true`. Facebook OAuth2 app secret. If facebookClientId was provided, provide a correspoinding value. Else leave blank.
          */
         facebookClientSecret: string;
         /**
-         * Matches authenticated user email against provided domains. If null or [], all authenticated emails will be allowed.
+         * Optional if `facebookEnabled`==`true`. Matches authenticated user email against provided domains. If null or [], all authenticated emails will be allowed.
          */
         facebookEmailDomains: string[];
         /**
@@ -13772,9 +13763,9 @@ Please update your configurations.
          */
         facebookEnabled: boolean;
         /**
-         * interval for which guest remains authorized using facebook auth (in minutes), if not provided, uses expire`
+         * Optional if `facebookEnabled`==`true`. Interval for which guest remains authorized using facebook auth (in minutes), if not provided, uses expire`
          */
-        facebookExpire: number;
+        facebookExpire?: number;
         /**
          * whether to forward the user to another URL after authorized
          */
@@ -13788,11 +13779,11 @@ Please update your configurations.
          */
         googleClientId: string;
         /**
-         * Google OAuth2 app secret. If googleClientId was provided, provide a correspoinding value. Else leave blank.
+         * Optional if `googleEnabled`==`true`. Google OAuth2 app secret. If googleClientId was provided, provide a correspoinding value. Else leave blank.
          */
         googleClientSecret: string;
         /**
-         * Matches authenticated user email against provided domains. If null or [], all authenticated emails will be allowed.
+         * Optional if `googleEnabled`==`true`. Matches authenticated user email against provided domains. If null or [], all authenticated emails will be allowed.
          */
         googleEmailDomains: string[];
         /**
@@ -13800,27 +13791,27 @@ Please update your configurations.
          */
         googleEnabled: boolean;
         /**
-         * interval for which guest remains authorized using google auth (in minutes), if not provided, uses expire`
+         * Optional if `googleEnabled`==`true`. Interval for which guest remains authorized using google auth (in minutes), if not provided, uses expire`
          */
-        googleExpire: number;
+        googleExpire?: number;
         /**
-         * when `smsProvider`==`gupshup`
+         * Required if `smsProvider`==`gupshup`
          */
-        gupshupPassword: string;
+        gupshupPassword?: string;
         /**
-         * when `smsProvider`==`gupshup`
+         * Required if `smsProvider`==`gupshup`
          */
-        gupshupUserid: string;
+        gupshupUserid?: string;
         /**
-         * microsoft 365 OAuth2 client id. This is optional. If not provided, it will use a default one.
+         * Optional if `microsoftEnabled`==`true`. Microsoft 365 OAuth2 client id. This is optional. If not provided, it will use a default one.
          */
         microsoftClientId: string;
         /**
-         * microsoft 365 OAuth2 client secret. If microsoftClientId was provided, provide a correspoinding value. Else leave blank.
+         * Optional if `microsoftEnabled`==`true`. Microsoft 365 OAuth2 client secret. If microsoftClientId was provided, provide a correspoinding value. Else leave blank.
          */
         microsoftClientSecret: string;
         /**
-         * Matches authenticated user email against provided domains. If null or [], all authenticated emails will be allowed.
+         * Optional if `microsoftEnabled`==`true`. Matches authenticated user email against provided domains. If null or [], all authenticated emails will be allowed.
          */
         microsoftEmailDomains: string[];
         /**
@@ -13828,19 +13819,19 @@ Please update your configurations.
          */
         microsoftEnabled: boolean;
         /**
-         * interval for which guest remains authorized using microsoft auth (in minutes), if not provided, uses expire`
+         * Optional if `microsoftEnabled`==`true`. Interval for which guest remains authorized using microsoft auth (in minutes), if not provided, uses expire`
          */
-        microsoftExpire: number;
+        microsoftExpire?: number;
         /**
-         * whether password is enabled
+         * Whether password is enabled
          */
         passphraseEnabled: boolean;
         /**
-         * interval for which guest remains authorized using passphrase auth (in minutes), if not provided, uses `expire`
+         * Optional if `passphraseEnabled`==`true`. Interval for which guest remains authorized using passphrase auth (in minutes), if not provided, uses `expire`
          */
-        passphraseExpire: number;
+        passphraseExpire?: number;
         /**
-         * passphrase
+         * Required if `passphraseEnabled`==`true`.
          */
         password: string;
         /**
@@ -13853,34 +13844,37 @@ Please update your configurations.
         predefinedSponsorsHideEmail: boolean;
         privacy: boolean;
         /**
-         * when `smsProvider`==`puzzel`
+         * Required if `smsProvider`==`puzzel`
          */
-        puzzelPassword: string;
+        puzzelPassword?: string;
         /**
-         * when `smsProvider`==`puzzel`
+         * Required if `smsProvider`==`puzzel`
          */
-        puzzelServiceId: string;
+        puzzelServiceId?: string;
         /**
-         * when `smsProvider`==`puzzel`
+         * Required if `smsProvider`==`puzzel`
          */
-        puzzelUsername: string;
+        puzzelUsername?: string;
         /**
          * whether sms is enabled as a login method
          */
         smsEnabled: boolean;
         /**
-         * interval for which guest remains authorized using sms auth (in minutes), if not provided, uses expire`
+         * Optional if `smsEnabled`==`true`. Interval for which guest remains authorized using sms auth (in minutes), if not provided, uses expire`
+         */
+        smsExpire?: number;
+        /**
+         * Optional if `smsEnabled`==`true`. SMS Message format
          */
-        smsExpire: number;
         smsMessageFormat: string;
         /**
-         * enum: `broadnet`, `clickatell`, `gupshup`, `manual`, `puzzel`, `telstra`, `twilio`
+         * Optioanl if `smsEnabled`==`true`. enum: `broadnet`, `clickatell`, `gupshup`, `manual`, `puzzel`, `telstra`, `twilio`
          */
         smsProvider: string;
         /**
-         * whether to automatically approve guest and allow sponsor to revoke guest access, needs predefinedSponsorsEnabled enabled and sponsorNotifyAll disabled
+         * Optional if `sponsorEnabled`==`true`. Whether to automatically approve guest and allow sponsor to revoke guest access, needs predefinedSponsorsEnabled enabled and sponsorNotifyAll disabled
          */
-        sponsorAutoApprove: boolean;
+        sponsorAutoApprove?: boolean;
         /**
          * list of domain allowed for sponsor email. Required if `sponsorEnabled` is `true` and `sponsors` is empty.
          */
@@ -13890,19 +13884,19 @@ Please update your configurations.
          */
         sponsorEnabled: boolean;
         /**
-         * interval for which guest remains authorized using sponsor auth (in minutes), if not provided, uses expire`
+         * Optional if `sponsorEnabled`==`true`. Interval for which guest remains authorized using sponsor auth (in minutes), if not provided, uses expire`
          */
-        sponsorExpire: number;
+        sponsorExpire?: number;
         /**
-         * how long to remain valid sponsored guest request approve/deny link received in email, in minutes.
+         * Optional if `sponsorEnabled`==`true`. How long to remain valid sponsored guest request approve/deny link received in email, in minutes.
          */
         sponsorLinkValidityDuration: string;
         /**
-         * whether to notify all sponsors that are mentioned in `sponsors` object. Both `sponsorNotifyAll` and `predefinedSponsorsEnabled` should be true in order to notify sponsors. If true, email sent to 10 sponsors in no particular order.
+         * Optional if `sponsorEnabled`==`true`. whether to notify all sponsors that are mentioned in `sponsors` object. Both `sponsorNotifyAll` and `predefinedSponsorsEnabled` should be true in order to notify sponsors. If true, email sent to 10 sponsors in no particular order.
          */
         sponsorNotifyAll: boolean;
         /**
-         * if enabled, guest will get email about sponsor's action (approve/deny)
+         * Optional if `sponsorEnabled`==`true`. If enabled, guest will get email about sponsor's action (approve/deny)
          */
         sponsorStatusNotify: boolean;
         /**
@@ -13915,53 +13909,53 @@ Please update your configurations.
             [key: string]: string;
         };
         /**
-         * if `wlanPortalAuth`==`sso`, default role to assign if there’s no match. By default, an assertion is treated as invalid when there’s no role matched
+         * Optionl if `wlanPortalAuth`==`sso`, default role to assign if there’s no match. By default, an assertion is treated as invalid when there’s no role matched
          */
         ssoDefaultRole: string;
         /**
-         * if `wlanPortalAuth`==`sso`
+         * Optionl if `wlanPortalAuth`==`sso`
          */
         ssoForcedRole: string;
         /**
-         * if `wlanPortalAuth`==`sso`, IDP Cert (used to verify the signed response)
+         * Required if `wlanPortalAuth`==`sso`. IDP Cert (used to verify the signed response)
          */
         ssoIdpCert: string;
         /**
-         * if `wlanPortalAuth`==`sso`, Signing algorithm for SAML Assertion. enum: `sha1`, `sha256`, `sha384`, `sha512`
+         * Optioanl if `wlanPortalAuth`==`sso`, Signing algorithm for SAML Assertion. enum: `sha1`, `sha256`, `sha384`, `sha512`
          */
         ssoIdpSignAlgo: string;
         /**
-         * if `wlanPortalAuth`==`sso`, IDP Single-Sign-On URL
+         * Required if `wlanPortalAuth`==`sso`, IDP Single-Sign-On URL
          */
         ssoIdpSsoUrl: string;
         /**
-         * if `wlanPortalAuth`==`sso`, IDP issuer URL
+         * Required if `wlanPortalAuth`==`sso`, IDP issuer URL
          */
         ssoIssuer: string;
         /**
-         * if `wlanPortalAuth`==`sso`. enum: `email`, `unspecified`
+         * Optional if `wlanPortalAuth`==`sso`. enum: `email`, `unspecified`
          */
         ssoNameidFormat: string;
         /**
-         * when `smsProvider`==`telstra`, Client ID provided by Telstra
+         * Required if `smsProvider`==`telstra`, Client ID provided by Telstra
          */
-        telstraClientId: string;
+        telstraClientId?: string;
         /**
-         * when `smsProvider`==`telstra`, Client secret provided by Telstra
+         * Required if `smsProvider`==`telstra`, Client secret provided by Telstra
          */
-        telstraClientSecret: string;
+        telstraClientSecret?: string;
         /**
-         * when `smsProvider`==`twilio`, Auth token account with twilio account
+         * Required if `smsProvider`==`twilio`, Auth token account with twilio account
          */
-        twilioAuthToken: string;
+        twilioAuthToken?: string;
         /**
-         * when `smsProvider`==`twilio`, Twilio phone number associated with the account. See example for accepted format.
+         * Required if `smsProvider`==`twilio`, Twilio phone number associated with the account. See example for accepted format.
          */
-        twilioPhoneNumber: string;
+        twilioPhoneNumber?: string;
         /**
-         * when `smsProvider`==`twilio`, Account SID provided by Twilio
+         * Required if `smsProvider`==`twilio`, Account SID provided by Twilio
          */
-        twilioSid: string;
+        twilioSid?: string;
     }
     interface WlanPortalTemplatePortalTemplate {
         accessCodeAlternateEmail: string;
@@ -14684,7 +14678,7 @@ Please update your configurations.
         /**
          * Minimum RSSI for client to connect, 0 means not enforcing
          */
-        minRssi?: number;
+        minRssi: number;
         /**
          * Data Rates template to apply. enum:
          *   * `no-legacy`: no 11b
@@ -14693,7 +14687,7 @@ Please update your configurations.
          *   * `high-density`: no 11b, no low rates
          *   * `custom`: user defined
          */
-        template?: string;
+        template: string;
         /**
          * if `template`==`custom`. MCS bitmasks for 4 streams (16-bit for each stream, MCS0 is least significant bit), e.g. 03ff 01ff 00ff limits VHT rates to MCS 0-9 for 1 stream, MCS 0-8 for 2 streams, and MCS 0-7 for 3 streams.
          */