fortimanager 1.13.0, Mar 13 25

fortimanager 1.13.0 published on Thursday, Mar 13, 2025 by fortinetdev

fortinetdev/terraform-provider-fortimanager

fortimanager.ObjectUserGroupDynamicMapping

Explore with Pulumi AI

fortimanager 1.13.0 published on Thursday, Mar 13, 2025 by fortinetdev

fortinetdev/terraform-provider-fortimanager

This resource is a sub resource for variable dynamic_mapping of resource fortimanager.ObjectUserGroup. Conflict and overwrite may occur if use both of them. The following variables have sub resource. Avoid using them together, otherwise conflicts and overwrites may occur.
guest: fortimanager_object_user_group_dynamic_mapping_guest
match: fortimanager.ObjectUserGroupDynamicMappingMatch
sslvpn_os_check_list: fortimanager_object_user_group_dynamic_mapping_sslvpnoschecklist

Create ObjectUserGroupDynamicMapping Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new ObjectUserGroupDynamicMapping(name: string, args: ObjectUserGroupDynamicMappingArgs, opts?: CustomResourceOptions);

@overload
def ObjectUserGroupDynamicMapping(resource_name: str,
                                  args: ObjectUserGroupDynamicMappingInitArgs,
                                  opts: Optional[ResourceOptions] = None)

@overload
def ObjectUserGroupDynamicMapping(resource_name: str,
                                  opts: Optional[ResourceOptions] = None,
                                  group: Optional[str] = None,
                                  _scopes: Optional[Sequence[ObjectUserGroupDynamicMapping_ScopeArgs]] = None,
                                  adom: Optional[str] = None,
                                  auth_concurrent_override: Optional[str] = None,
                                  auth_concurrent_value: Optional[float] = None,
                                  authtimeout: Optional[float] = None,
                                  company: Optional[str] = None,
                                  dynamic_sort_subtable: Optional[str] = None,
                                  email: Optional[str] = None,
                                  expire: Optional[float] = None,
                                  expire_type: Optional[str] = None,
                                  fosid: Optional[float] = None,
                                  group_type: Optional[str] = None,
                                  guests: Optional[Sequence[ObjectUserGroupDynamicMappingGuestArgs]] = None,
                                  http_digest_realm: Optional[str] = None,
                                  ldap_memberof: Optional[str] = None,
                                  logic_type: Optional[str] = None,
                                  matches: Optional[Sequence[ObjectUserGroupDynamicMappingMatchArgs]] = None,
                                  max_accounts: Optional[float] = None,
                                  member: Optional[str] = None,
                                  mobile_phone: Optional[str] = None,
                                  multiple_guest_add: Optional[str] = None,
                                  object_user_group_dynamic_mapping_id: Optional[str] = None,
                                  password: Optional[str] = None,
                                  redir_url: Optional[str] = None,
                                  scopetype: Optional[str] = None,
                                  sms_custom_server: Optional[str] = None,
                                  sms_server: Optional[str] = None,
                                  sponsor: Optional[str] = None,
                                  sslvpn_bookmarks_group: Optional[str] = None,
                                  sslvpn_cache_cleaner: Optional[str] = None,
                                  sslvpn_client_checks: Optional[Sequence[str]] = None,
                                  sslvpn_ftp: Optional[str] = None,
                                  sslvpn_http: Optional[str] = None,
                                  sslvpn_os_check: Optional[str] = None,
                                  sslvpn_os_check_list: Optional[ObjectUserGroupDynamicMappingSslvpnOsCheckListArgs] = None,
                                  sslvpn_portal: Optional[str] = None,
                                  sslvpn_portal_heading: Optional[str] = None,
                                  sslvpn_rdp: Optional[str] = None,
                                  sslvpn_samba: Optional[str] = None,
                                  sslvpn_split_tunneling: Optional[str] = None,
                                  sslvpn_ssh: Optional[str] = None,
                                  sslvpn_telnet: Optional[str] = None,
                                  sslvpn_tunnel: Optional[str] = None,
                                  sslvpn_tunnel_endip: Optional[str] = None,
                                  sslvpn_tunnel_ip_mode: Optional[str] = None,
                                  sslvpn_tunnel_startip: Optional[str] = None,
                                  sslvpn_virtual_desktop: Optional[str] = None,
                                  sslvpn_vnc: Optional[str] = None,
                                  sslvpn_webapp: Optional[str] = None,
                                  sso_attribute_value: Optional[str] = None,
                                  user_id: Optional[str] = None,
                                  user_name: Optional[str] = None)

func NewObjectUserGroupDynamicMapping(ctx *Context, name string, args ObjectUserGroupDynamicMappingArgs, opts ...ResourceOption) (*ObjectUserGroupDynamicMapping, error)

public ObjectUserGroupDynamicMapping(string name, ObjectUserGroupDynamicMappingArgs args, CustomResourceOptions? opts = null)

public ObjectUserGroupDynamicMapping(String name, ObjectUserGroupDynamicMappingArgs args)
public ObjectUserGroupDynamicMapping(String name, ObjectUserGroupDynamicMappingArgs args, CustomResourceOptions options)

type: fortimanager:ObjectUserGroupDynamicMapping
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name string: The unique name of the resource.
args ObjectUserGroupDynamicMappingArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args ObjectUserGroupDynamicMappingInitArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args ObjectUserGroupDynamicMappingArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args ObjectUserGroupDynamicMappingArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args ObjectUserGroupDynamicMappingArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

Constructor example

The following reference example uses placeholder values for all input properties.

var objectUserGroupDynamicMappingResource = new Fortimanager.ObjectUserGroupDynamicMapping("objectUserGroupDynamicMappingResource", new()
{
    Group = "string",
    _scopes = new[]
    {
        new Fortimanager.Inputs.ObjectUserGroupDynamicMapping_ScopeArgs
        {
            Name = "string",
            Vdom = "string",
        },
    },
    Adom = "string",
    AuthConcurrentOverride = "string",
    AuthConcurrentValue = 0,
    Authtimeout = 0,
    Company = "string",
    DynamicSortSubtable = "string",
    Email = "string",
    Expire = 0,
    ExpireType = "string",
    Fosid = 0,
    GroupType = "string",
    Guests = new[]
    {
        new Fortimanager.Inputs.ObjectUserGroupDynamicMappingGuestArgs
        {
            Comment = "string",
            Company = "string",
            Email = "string",
            Expiration = "string",
            Group = "string",
            Id = 0,
            MobilePhone = "string",
            Name = "string",
            Passwords = new[]
            {
                "string",
            },
            Sponsor = "string",
            UserId = "string",
        },
    },
    HttpDigestRealm = "string",
    LdapMemberof = "string",
    LogicType = "string",
    Matches = new[]
    {
        new Fortimanager.Inputs.ObjectUserGroupDynamicMappingMatchArgs
        {
            _guiMeta = "string",
            GroupName = "string",
            Id = 0,
            ServerName = "string",
        },
    },
    MaxAccounts = 0,
    Member = "string",
    MobilePhone = "string",
    MultipleGuestAdd = "string",
    ObjectUserGroupDynamicMappingId = "string",
    Password = "string",
    RedirUrl = "string",
    Scopetype = "string",
    SmsCustomServer = "string",
    SmsServer = "string",
    Sponsor = "string",
    SslvpnBookmarksGroup = "string",
    SslvpnCacheCleaner = "string",
    SslvpnClientChecks = new[]
    {
        "string",
    },
    SslvpnFtp = "string",
    SslvpnHttp = "string",
    SslvpnOsCheck = "string",
    SslvpnOsCheckList = new Fortimanager.Inputs.ObjectUserGroupDynamicMappingSslvpnOsCheckListArgs
    {
        Action = "string",
        LatestPatchLevel = "string",
        Name = "string",
        Tolerance = 0,
    },
    SslvpnPortal = "string",
    SslvpnPortalHeading = "string",
    SslvpnRdp = "string",
    SslvpnSamba = "string",
    SslvpnSplitTunneling = "string",
    SslvpnSsh = "string",
    SslvpnTelnet = "string",
    SslvpnTunnel = "string",
    SslvpnTunnelEndip = "string",
    SslvpnTunnelIpMode = "string",
    SslvpnTunnelStartip = "string",
    SslvpnVirtualDesktop = "string",
    SslvpnVnc = "string",
    SslvpnWebapp = "string",
    SsoAttributeValue = "string",
    UserId = "string",
    UserName = "string",
});

example, err := fortimanager.NewObjectUserGroupDynamicMapping(ctx, "objectUserGroupDynamicMappingResource", &fortimanager.ObjectUserGroupDynamicMappingArgs{
Group: pulumi.String("string"),
_scopes: .ObjectUserGroupDynamicMapping_ScopeArray{
&.ObjectUserGroupDynamicMapping_ScopeArgs{
Name: pulumi.String("string"),
Vdom: pulumi.String("string"),
},
},
Adom: pulumi.String("string"),
AuthConcurrentOverride: pulumi.String("string"),
AuthConcurrentValue: pulumi.Float64(0),
Authtimeout: pulumi.Float64(0),
Company: pulumi.String("string"),
DynamicSortSubtable: pulumi.String("string"),
Email: pulumi.String("string"),
Expire: pulumi.Float64(0),
ExpireType: pulumi.String("string"),
Fosid: pulumi.Float64(0),
GroupType: pulumi.String("string"),
Guests: .ObjectUserGroupDynamicMappingGuestArray{
&.ObjectUserGroupDynamicMappingGuestArgs{
Comment: pulumi.String("string"),
Company: pulumi.String("string"),
Email: pulumi.String("string"),
Expiration: pulumi.String("string"),
Group: pulumi.String("string"),
Id: pulumi.Float64(0),
MobilePhone: pulumi.String("string"),
Name: pulumi.String("string"),
Passwords: pulumi.StringArray{
pulumi.String("string"),
},
Sponsor: pulumi.String("string"),
UserId: pulumi.String("string"),
},
},
HttpDigestRealm: pulumi.String("string"),
LdapMemberof: pulumi.String("string"),
LogicType: pulumi.String("string"),
Matches: .ObjectUserGroupDynamicMappingMatchTypeArray{
&.ObjectUserGroupDynamicMappingMatchTypeArgs{
_guiMeta: pulumi.String("string"),
GroupName: pulumi.String("string"),
Id: pulumi.Float64(0),
ServerName: pulumi.String("string"),
},
},
MaxAccounts: pulumi.Float64(0),
Member: pulumi.String("string"),
MobilePhone: pulumi.String("string"),
MultipleGuestAdd: pulumi.String("string"),
ObjectUserGroupDynamicMappingId: pulumi.String("string"),
Password: pulumi.String("string"),
RedirUrl: pulumi.String("string"),
Scopetype: pulumi.String("string"),
SmsCustomServer: pulumi.String("string"),
SmsServer: pulumi.String("string"),
Sponsor: pulumi.String("string"),
SslvpnBookmarksGroup: pulumi.String("string"),
SslvpnCacheCleaner: pulumi.String("string"),
SslvpnClientChecks: pulumi.StringArray{
pulumi.String("string"),
},
SslvpnFtp: pulumi.String("string"),
SslvpnHttp: pulumi.String("string"),
SslvpnOsCheck: pulumi.String("string"),
SslvpnOsCheckList: &.ObjectUserGroupDynamicMappingSslvpnOsCheckListArgs{
Action: pulumi.String("string"),
LatestPatchLevel: pulumi.String("string"),
Name: pulumi.String("string"),
Tolerance: pulumi.Float64(0),
},
SslvpnPortal: pulumi.String("string"),
SslvpnPortalHeading: pulumi.String("string"),
SslvpnRdp: pulumi.String("string"),
SslvpnSamba: pulumi.String("string"),
SslvpnSplitTunneling: pulumi.String("string"),
SslvpnSsh: pulumi.String("string"),
SslvpnTelnet: pulumi.String("string"),
SslvpnTunnel: pulumi.String("string"),
SslvpnTunnelEndip: pulumi.String("string"),
SslvpnTunnelIpMode: pulumi.String("string"),
SslvpnTunnelStartip: pulumi.String("string"),
SslvpnVirtualDesktop: pulumi.String("string"),
SslvpnVnc: pulumi.String("string"),
SslvpnWebapp: pulumi.String("string"),
SsoAttributeValue: pulumi.String("string"),
UserId: pulumi.String("string"),
UserName: pulumi.String("string"),
})

var objectUserGroupDynamicMappingResource = new ObjectUserGroupDynamicMapping("objectUserGroupDynamicMappingResource", ObjectUserGroupDynamicMappingArgs.builder()
    .group("string")
    ._scopes(ObjectUserGroupDynamicMapping_ScopeArgs.builder()
        .name("string")
        .vdom("string")
        .build())
    .adom("string")
    .authConcurrentOverride("string")
    .authConcurrentValue(0)
    .authtimeout(0)
    .company("string")
    .dynamicSortSubtable("string")
    .email("string")
    .expire(0)
    .expireType("string")
    .fosid(0)
    .groupType("string")
    .guests(ObjectUserGroupDynamicMappingGuestArgs.builder()
        .comment("string")
        .company("string")
        .email("string")
        .expiration("string")
        .group("string")
        .id(0)
        .mobilePhone("string")
        .name("string")
        .passwords("string")
        .sponsor("string")
        .userId("string")
        .build())
    .httpDigestRealm("string")
    .ldapMemberof("string")
    .logicType("string")
    .matches(ObjectUserGroupDynamicMappingMatchArgs.builder()
        ._guiMeta("string")
        .groupName("string")
        .id(0)
        .serverName("string")
        .build())
    .maxAccounts(0)
    .member("string")
    .mobilePhone("string")
    .multipleGuestAdd("string")
    .objectUserGroupDynamicMappingId("string")
    .password("string")
    .redirUrl("string")
    .scopetype("string")
    .smsCustomServer("string")
    .smsServer("string")
    .sponsor("string")
    .sslvpnBookmarksGroup("string")
    .sslvpnCacheCleaner("string")
    .sslvpnClientChecks("string")
    .sslvpnFtp("string")
    .sslvpnHttp("string")
    .sslvpnOsCheck("string")
    .sslvpnOsCheckList(ObjectUserGroupDynamicMappingSslvpnOsCheckListArgs.builder()
        .action("string")
        .latestPatchLevel("string")
        .name("string")
        .tolerance(0)
        .build())
    .sslvpnPortal("string")
    .sslvpnPortalHeading("string")
    .sslvpnRdp("string")
    .sslvpnSamba("string")
    .sslvpnSplitTunneling("string")
    .sslvpnSsh("string")
    .sslvpnTelnet("string")
    .sslvpnTunnel("string")
    .sslvpnTunnelEndip("string")
    .sslvpnTunnelIpMode("string")
    .sslvpnTunnelStartip("string")
    .sslvpnVirtualDesktop("string")
    .sslvpnVnc("string")
    .sslvpnWebapp("string")
    .ssoAttributeValue("string")
    .userId("string")
    .userName("string")
    .build());

object_user_group_dynamic_mapping_resource = fortimanager.ObjectUserGroupDynamicMapping("objectUserGroupDynamicMappingResource",
    group="string",
    _scopes=[{
        "name": "string",
        "vdom": "string",
    }],
    adom="string",
    auth_concurrent_override="string",
    auth_concurrent_value=0,
    authtimeout=0,
    company="string",
    dynamic_sort_subtable="string",
    email="string",
    expire=0,
    expire_type="string",
    fosid=0,
    group_type="string",
    guests=[{
        "comment": "string",
        "company": "string",
        "email": "string",
        "expiration": "string",
        "group": "string",
        "id": 0,
        "mobile_phone": "string",
        "name": "string",
        "passwords": ["string"],
        "sponsor": "string",
        "user_id": "string",
    }],
    http_digest_realm="string",
    ldap_memberof="string",
    logic_type="string",
    matches=[{
        "_gui_meta": "string",
        "group_name": "string",
        "id": 0,
        "server_name": "string",
    }],
    max_accounts=0,
    member="string",
    mobile_phone="string",
    multiple_guest_add="string",
    object_user_group_dynamic_mapping_id="string",
    password="string",
    redir_url="string",
    scopetype="string",
    sms_custom_server="string",
    sms_server="string",
    sponsor="string",
    sslvpn_bookmarks_group="string",
    sslvpn_cache_cleaner="string",
    sslvpn_client_checks=["string"],
    sslvpn_ftp="string",
    sslvpn_http="string",
    sslvpn_os_check="string",
    sslvpn_os_check_list={
        "action": "string",
        "latest_patch_level": "string",
        "name": "string",
        "tolerance": 0,
    },
    sslvpn_portal="string",
    sslvpn_portal_heading="string",
    sslvpn_rdp="string",
    sslvpn_samba="string",
    sslvpn_split_tunneling="string",
    sslvpn_ssh="string",
    sslvpn_telnet="string",
    sslvpn_tunnel="string",
    sslvpn_tunnel_endip="string",
    sslvpn_tunnel_ip_mode="string",
    sslvpn_tunnel_startip="string",
    sslvpn_virtual_desktop="string",
    sslvpn_vnc="string",
    sslvpn_webapp="string",
    sso_attribute_value="string",
    user_id="string",
    user_name="string")

const objectUserGroupDynamicMappingResource = new fortimanager.ObjectUserGroupDynamicMapping("objectUserGroupDynamicMappingResource", {
    group: "string",
    _scopes: [{
        name: "string",
        vdom: "string",
    }],
    adom: "string",
    authConcurrentOverride: "string",
    authConcurrentValue: 0,
    authtimeout: 0,
    company: "string",
    dynamicSortSubtable: "string",
    email: "string",
    expire: 0,
    expireType: "string",
    fosid: 0,
    groupType: "string",
    guests: [{
        comment: "string",
        company: "string",
        email: "string",
        expiration: "string",
        group: "string",
        id: 0,
        mobilePhone: "string",
        name: "string",
        passwords: ["string"],
        sponsor: "string",
        userId: "string",
    }],
    httpDigestRealm: "string",
    ldapMemberof: "string",
    logicType: "string",
    matches: [{
        _guiMeta: "string",
        groupName: "string",
        id: 0,
        serverName: "string",
    }],
    maxAccounts: 0,
    member: "string",
    mobilePhone: "string",
    multipleGuestAdd: "string",
    objectUserGroupDynamicMappingId: "string",
    password: "string",
    redirUrl: "string",
    scopetype: "string",
    smsCustomServer: "string",
    smsServer: "string",
    sponsor: "string",
    sslvpnBookmarksGroup: "string",
    sslvpnCacheCleaner: "string",
    sslvpnClientChecks: ["string"],
    sslvpnFtp: "string",
    sslvpnHttp: "string",
    sslvpnOsCheck: "string",
    sslvpnOsCheckList: {
        action: "string",
        latestPatchLevel: "string",
        name: "string",
        tolerance: 0,
    },
    sslvpnPortal: "string",
    sslvpnPortalHeading: "string",
    sslvpnRdp: "string",
    sslvpnSamba: "string",
    sslvpnSplitTunneling: "string",
    sslvpnSsh: "string",
    sslvpnTelnet: "string",
    sslvpnTunnel: "string",
    sslvpnTunnelEndip: "string",
    sslvpnTunnelIpMode: "string",
    sslvpnTunnelStartip: "string",
    sslvpnVirtualDesktop: "string",
    sslvpnVnc: "string",
    sslvpnWebapp: "string",
    ssoAttributeValue: "string",
    userId: "string",
    userName: "string",
});

type: fortimanager:ObjectUserGroupDynamicMapping
properties:
    _scopes:
        - name: string
          vdom: string
    adom: string
    authConcurrentOverride: string
    authConcurrentValue: 0
    authtimeout: 0
    company: string
    dynamicSortSubtable: string
    email: string
    expire: 0
    expireType: string
    fosid: 0
    group: string
    groupType: string
    guests:
        - comment: string
          company: string
          email: string
          expiration: string
          group: string
          id: 0
          mobilePhone: string
          name: string
          passwords:
            - string
          sponsor: string
          userId: string
    httpDigestRealm: string
    ldapMemberof: string
    logicType: string
    matches:
        - _guiMeta: string
          groupName: string
          id: 0
          serverName: string
    maxAccounts: 0
    member: string
    mobilePhone: string
    multipleGuestAdd: string
    objectUserGroupDynamicMappingId: string
    password: string
    redirUrl: string
    scopetype: string
    smsCustomServer: string
    smsServer: string
    sponsor: string
    sslvpnBookmarksGroup: string
    sslvpnCacheCleaner: string
    sslvpnClientChecks:
        - string
    sslvpnFtp: string
    sslvpnHttp: string
    sslvpnOsCheck: string
    sslvpnOsCheckList:
        action: string
        latestPatchLevel: string
        name: string
        tolerance: 0
    sslvpnPortal: string
    sslvpnPortalHeading: string
    sslvpnRdp: string
    sslvpnSamba: string
    sslvpnSplitTunneling: string
    sslvpnSsh: string
    sslvpnTelnet: string
    sslvpnTunnel: string
    sslvpnTunnelEndip: string
    sslvpnTunnelIpMode: string
    sslvpnTunnelStartip: string
    sslvpnVirtualDesktop: string
    sslvpnVnc: string
    sslvpnWebapp: string
    ssoAttributeValue: string
    userId: string
    userName: string

ObjectUserGroupDynamicMapping Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

The ObjectUserGroupDynamicMapping resource accepts the following input properties:

Group string: Group.
Adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
AuthConcurrentOverride string: Enable/disable overriding the global number of concurrent authentication sessions for this user group. Valid values: disable, enable.
AuthConcurrentValue double: Maximum number of concurrent authenticated connections per user (0 - 100).
Authtimeout double: Authentication timeout in minutes for this user group. 0 to use the global user setting auth-timeout.
Company string: Set the action for the company guest user field. Valid values: optional, mandatory, disabled.
DynamicSortSubtable string: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
Email string: Enable/disable the guest user email address field. Valid values: disable, enable.
Expire double: Time in seconds before guest user accounts expire. (1 - 31536000 sec)
ExpireType string: Determine when the expiration countdown begins. Valid values: immediately, first-successful-login.
Fosid double: Id.
GroupType string: Set the group to be for firewall authentication, FSSO, RSSO, or guest users. Valid values: firewall, directory-service, fsso-service, guest, rsso.
Guests List<ObjectUserGroupDynamicMappingGuest>: Guest. The structure of guest block is documented below.
HttpDigestRealm string: Realm attribute for MD5-digest authentication.
LdapMemberof string: Ldap-Memberof.
LogicType string: Logic-Type. Valid values: or, and.
Matches List<ObjectUserGroupDynamicMappingMatch>: Match. The structure of match block is documented below.
MaxAccounts double: Maximum number of guest accounts that can be created for this group (0 means unlimited).
Member string: Names of users, peers, LDAP severs, or RADIUS servers to add to the user group.
MobilePhone string: Enable/disable the guest user mobile phone number field. Valid values: disable, enable.
MultipleGuestAdd string: Enable/disable addition of multiple guests. Valid values: disable, enable.
ObjectUserGroupDynamicMappingId string: an identifier for the resource with format "{{_scope.name}} {{_scope.vdom}}".
Password string: Guest user password type. Valid values: auto-generate, specify, disable.
RedirUrl string: Redir-Url.
Scopetype string: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
SmsCustomServer string: SMS server.
SmsServer string: Send SMS through FortiGuard or other external server. Valid values: fortiguard, custom.
Sponsor string: Set the action for the sponsor guest user field. Valid values: optional, mandatory, disabled.
SslvpnBookmarksGroup string: Sslvpn-Bookmarks-Group.
SslvpnCacheCleaner string: Sslvpn-Cache-Cleaner. Valid values: disable, enable.
SslvpnClientChecks List<string>: Sslvpn-Client-Check. Valid values: forticlient, forticlient-av, forticlient-fw, 3rdAV, 3rdFW.
SslvpnFtp string: Sslvpn-Ftp. Valid values: disable, enable.
SslvpnHttp string: Sslvpn-Http. Valid values: disable, enable.
SslvpnOsCheck string: Sslvpn-Os-Check. Valid values: disable, enable.
SslvpnOsCheckList ObjectUserGroupDynamicMappingSslvpnOsCheckList: Sslvpn-Os-Check-List. The structure of sslvpn_os_check_list block is documented below.
SslvpnPortal string: Sslvpn-Portal.
SslvpnPortalHeading string: Sslvpn-Portal-Heading.
SslvpnRdp string: Sslvpn-Rdp. Valid values: disable, enable.
SslvpnSamba string: Sslvpn-Samba. Valid values: disable, enable.
SslvpnSplitTunneling string: Sslvpn-Split-Tunneling. Valid values: disable, enable.
SslvpnSsh string: Sslvpn-Ssh. Valid values: disable, enable.
SslvpnTelnet string: Sslvpn-Telnet. Valid values: disable, enable.
SslvpnTunnel string: Sslvpn-Tunnel. Valid values: disable, enable.
SslvpnTunnelEndip string: Sslvpn-Tunnel-Endip.
SslvpnTunnelIpMode string: Sslvpn-Tunnel-Ip-Mode. Valid values: range, usrgrp.
SslvpnTunnelStartip string: Sslvpn-Tunnel-Startip.
SslvpnVirtualDesktop string: Sslvpn-Virtual-Desktop. Valid values: disable, enable.
SslvpnVnc string: Sslvpn-Vnc. Valid values: disable, enable.
SslvpnWebapp string: Sslvpn-Webapp. Valid values: disable, enable.
SsoAttributeValue string: Name of the RADIUS user group that this local user group represents.
UserId string: Guest user ID type. Valid values: email, auto-generate, specify.
UserName string: Enable/disable the guest user name entry. Valid values: disable, enable.
_scopes List<ObjectUserGroupDynamicMapping_Scope>: _Scope. The structure of _scope block is documented below.

Group string: Group.
Adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
AuthConcurrentOverride string: Enable/disable overriding the global number of concurrent authentication sessions for this user group. Valid values: disable, enable.
AuthConcurrentValue float64: Maximum number of concurrent authenticated connections per user (0 - 100).
Authtimeout float64: Authentication timeout in minutes for this user group. 0 to use the global user setting auth-timeout.
Company string: Set the action for the company guest user field. Valid values: optional, mandatory, disabled.
DynamicSortSubtable string: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
Email string: Enable/disable the guest user email address field. Valid values: disable, enable.
Expire float64: Time in seconds before guest user accounts expire. (1 - 31536000 sec)
ExpireType string: Determine when the expiration countdown begins. Valid values: immediately, first-successful-login.
Fosid float64: Id.
GroupType string: Set the group to be for firewall authentication, FSSO, RSSO, or guest users. Valid values: firewall, directory-service, fsso-service, guest, rsso.
Guests []ObjectUserGroupDynamicMappingGuestArgs: Guest. The structure of guest block is documented below.
HttpDigestRealm string: Realm attribute for MD5-digest authentication.
LdapMemberof string: Ldap-Memberof.
LogicType string: Logic-Type. Valid values: or, and.
Matches []ObjectUserGroupDynamicMappingMatchTypeArgs: Match. The structure of match block is documented below.
MaxAccounts float64: Maximum number of guest accounts that can be created for this group (0 means unlimited).
Member string: Names of users, peers, LDAP severs, or RADIUS servers to add to the user group.
MobilePhone string: Enable/disable the guest user mobile phone number field. Valid values: disable, enable.
MultipleGuestAdd string: Enable/disable addition of multiple guests. Valid values: disable, enable.
ObjectUserGroupDynamicMappingId string: an identifier for the resource with format "{{_scope.name}} {{_scope.vdom}}".
Password string: Guest user password type. Valid values: auto-generate, specify, disable.
RedirUrl string: Redir-Url.
Scopetype string: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
SmsCustomServer string: SMS server.
SmsServer string: Send SMS through FortiGuard or other external server. Valid values: fortiguard, custom.
Sponsor string: Set the action for the sponsor guest user field. Valid values: optional, mandatory, disabled.
SslvpnBookmarksGroup string: Sslvpn-Bookmarks-Group.
SslvpnCacheCleaner string: Sslvpn-Cache-Cleaner. Valid values: disable, enable.
SslvpnClientChecks []string: Sslvpn-Client-Check. Valid values: forticlient, forticlient-av, forticlient-fw, 3rdAV, 3rdFW.
SslvpnFtp string: Sslvpn-Ftp. Valid values: disable, enable.
SslvpnHttp string: Sslvpn-Http. Valid values: disable, enable.
SslvpnOsCheck string: Sslvpn-Os-Check. Valid values: disable, enable.
SslvpnOsCheckList ObjectUserGroupDynamicMappingSslvpnOsCheckListArgs: Sslvpn-Os-Check-List. The structure of sslvpn_os_check_list block is documented below.
SslvpnPortal string: Sslvpn-Portal.
SslvpnPortalHeading string: Sslvpn-Portal-Heading.
SslvpnRdp string: Sslvpn-Rdp. Valid values: disable, enable.
SslvpnSamba string: Sslvpn-Samba. Valid values: disable, enable.
SslvpnSplitTunneling string: Sslvpn-Split-Tunneling. Valid values: disable, enable.
SslvpnSsh string: Sslvpn-Ssh. Valid values: disable, enable.
SslvpnTelnet string: Sslvpn-Telnet. Valid values: disable, enable.
SslvpnTunnel string: Sslvpn-Tunnel. Valid values: disable, enable.
SslvpnTunnelEndip string: Sslvpn-Tunnel-Endip.
SslvpnTunnelIpMode string: Sslvpn-Tunnel-Ip-Mode. Valid values: range, usrgrp.
SslvpnTunnelStartip string: Sslvpn-Tunnel-Startip.
SslvpnVirtualDesktop string: Sslvpn-Virtual-Desktop. Valid values: disable, enable.
SslvpnVnc string: Sslvpn-Vnc. Valid values: disable, enable.
SslvpnWebapp string: Sslvpn-Webapp. Valid values: disable, enable.
SsoAttributeValue string: Name of the RADIUS user group that this local user group represents.
UserId string: Guest user ID type. Valid values: email, auto-generate, specify.
UserName string: Enable/disable the guest user name entry. Valid values: disable, enable.
_scopes []ObjectUserGroupDynamicMapping_ScopeArgs: _Scope. The structure of _scope block is documented below.

group String: Group.
_scopes List<ObjectUserGroupDynamicMapping_Scope>: _Scope. The structure of _scope block is documented below.
adom String: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
authConcurrentOverride String: Enable/disable overriding the global number of concurrent authentication sessions for this user group. Valid values: disable, enable.
authConcurrentValue Double: Maximum number of concurrent authenticated connections per user (0 - 100).
authtimeout Double: Authentication timeout in minutes for this user group. 0 to use the global user setting auth-timeout.
company String: Set the action for the company guest user field. Valid values: optional, mandatory, disabled.
dynamicSortSubtable String: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
email String: Enable/disable the guest user email address field. Valid values: disable, enable.
expire Double: Time in seconds before guest user accounts expire. (1 - 31536000 sec)
expireType String: Determine when the expiration countdown begins. Valid values: immediately, first-successful-login.
fosid Double: Id.
groupType String: Set the group to be for firewall authentication, FSSO, RSSO, or guest users. Valid values: firewall, directory-service, fsso-service, guest, rsso.
guests List<ObjectUserGroupDynamicMappingGuest>: Guest. The structure of guest block is documented below.
httpDigestRealm String: Realm attribute for MD5-digest authentication.
ldapMemberof String: Ldap-Memberof.
logicType String: Logic-Type. Valid values: or, and.
matches List<ObjectUserGroupDynamicMappingMatch>: Match. The structure of match block is documented below.
maxAccounts Double: Maximum number of guest accounts that can be created for this group (0 means unlimited).
member String: Names of users, peers, LDAP severs, or RADIUS servers to add to the user group.
mobilePhone String: Enable/disable the guest user mobile phone number field. Valid values: disable, enable.
multipleGuestAdd String: Enable/disable addition of multiple guests. Valid values: disable, enable.
objectUserGroupDynamicMappingId String: an identifier for the resource with format "{{_scope.name}} {{_scope.vdom}}".
password String: Guest user password type. Valid values: auto-generate, specify, disable.
redirUrl String: Redir-Url.
scopetype String: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
smsCustomServer String: SMS server.
smsServer String: Send SMS through FortiGuard or other external server. Valid values: fortiguard, custom.
sponsor String: Set the action for the sponsor guest user field. Valid values: optional, mandatory, disabled.
sslvpnBookmarksGroup String: Sslvpn-Bookmarks-Group.
sslvpnCacheCleaner String: Sslvpn-Cache-Cleaner. Valid values: disable, enable.
sslvpnClientChecks List<String>: Sslvpn-Client-Check. Valid values: forticlient, forticlient-av, forticlient-fw, 3rdAV, 3rdFW.
sslvpnFtp String: Sslvpn-Ftp. Valid values: disable, enable.
sslvpnHttp String: Sslvpn-Http. Valid values: disable, enable.
sslvpnOsCheck String: Sslvpn-Os-Check. Valid values: disable, enable.
sslvpnOsCheckList ObjectUserGroupDynamicMappingSslvpnOsCheckList: Sslvpn-Os-Check-List. The structure of sslvpn_os_check_list block is documented below.
sslvpnPortal String: Sslvpn-Portal.
sslvpnPortalHeading String: Sslvpn-Portal-Heading.
sslvpnRdp String: Sslvpn-Rdp. Valid values: disable, enable.
sslvpnSamba String: Sslvpn-Samba. Valid values: disable, enable.
sslvpnSplitTunneling String: Sslvpn-Split-Tunneling. Valid values: disable, enable.
sslvpnSsh String: Sslvpn-Ssh. Valid values: disable, enable.
sslvpnTelnet String: Sslvpn-Telnet. Valid values: disable, enable.
sslvpnTunnel String: Sslvpn-Tunnel. Valid values: disable, enable.
sslvpnTunnelEndip String: Sslvpn-Tunnel-Endip.
sslvpnTunnelIpMode String: Sslvpn-Tunnel-Ip-Mode. Valid values: range, usrgrp.
sslvpnTunnelStartip String: Sslvpn-Tunnel-Startip.
sslvpnVirtualDesktop String: Sslvpn-Virtual-Desktop. Valid values: disable, enable.
sslvpnVnc String: Sslvpn-Vnc. Valid values: disable, enable.
sslvpnWebapp String: Sslvpn-Webapp. Valid values: disable, enable.
ssoAttributeValue String: Name of the RADIUS user group that this local user group represents.
userId String: Guest user ID type. Valid values: email, auto-generate, specify.
userName String: Enable/disable the guest user name entry. Valid values: disable, enable.

group string: Group.
_scopes ObjectUserGroupDynamicMapping_Scope[]: _Scope. The structure of _scope block is documented below.
adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
authConcurrentOverride string: Enable/disable overriding the global number of concurrent authentication sessions for this user group. Valid values: disable, enable.
authConcurrentValue number: Maximum number of concurrent authenticated connections per user (0 - 100).
authtimeout number: Authentication timeout in minutes for this user group. 0 to use the global user setting auth-timeout.
company string: Set the action for the company guest user field. Valid values: optional, mandatory, disabled.
dynamicSortSubtable string: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
email string: Enable/disable the guest user email address field. Valid values: disable, enable.
expire number: Time in seconds before guest user accounts expire. (1 - 31536000 sec)
expireType string: Determine when the expiration countdown begins. Valid values: immediately, first-successful-login.
fosid number: Id.
groupType string: Set the group to be for firewall authentication, FSSO, RSSO, or guest users. Valid values: firewall, directory-service, fsso-service, guest, rsso.
guests ObjectUserGroupDynamicMappingGuest[]: Guest. The structure of guest block is documented below.
httpDigestRealm string: Realm attribute for MD5-digest authentication.
ldapMemberof string: Ldap-Memberof.
logicType string: Logic-Type. Valid values: or, and.
matches ObjectUserGroupDynamicMappingMatch[]: Match. The structure of match block is documented below.
maxAccounts number: Maximum number of guest accounts that can be created for this group (0 means unlimited).
member string: Names of users, peers, LDAP severs, or RADIUS servers to add to the user group.
mobilePhone string: Enable/disable the guest user mobile phone number field. Valid values: disable, enable.
multipleGuestAdd string: Enable/disable addition of multiple guests. Valid values: disable, enable.
objectUserGroupDynamicMappingId string: an identifier for the resource with format "{{_scope.name}} {{_scope.vdom}}".
password string: Guest user password type. Valid values: auto-generate, specify, disable.
redirUrl string: Redir-Url.
scopetype string: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
smsCustomServer string: SMS server.
smsServer string: Send SMS through FortiGuard or other external server. Valid values: fortiguard, custom.
sponsor string: Set the action for the sponsor guest user field. Valid values: optional, mandatory, disabled.
sslvpnBookmarksGroup string: Sslvpn-Bookmarks-Group.
sslvpnCacheCleaner string: Sslvpn-Cache-Cleaner. Valid values: disable, enable.
sslvpnClientChecks string[]: Sslvpn-Client-Check. Valid values: forticlient, forticlient-av, forticlient-fw, 3rdAV, 3rdFW.
sslvpnFtp string: Sslvpn-Ftp. Valid values: disable, enable.
sslvpnHttp string: Sslvpn-Http. Valid values: disable, enable.
sslvpnOsCheck string: Sslvpn-Os-Check. Valid values: disable, enable.
sslvpnOsCheckList ObjectUserGroupDynamicMappingSslvpnOsCheckList: Sslvpn-Os-Check-List. The structure of sslvpn_os_check_list block is documented below.
sslvpnPortal string: Sslvpn-Portal.
sslvpnPortalHeading string: Sslvpn-Portal-Heading.
sslvpnRdp string: Sslvpn-Rdp. Valid values: disable, enable.
sslvpnSamba string: Sslvpn-Samba. Valid values: disable, enable.
sslvpnSplitTunneling string: Sslvpn-Split-Tunneling. Valid values: disable, enable.
sslvpnSsh string: Sslvpn-Ssh. Valid values: disable, enable.
sslvpnTelnet string: Sslvpn-Telnet. Valid values: disable, enable.
sslvpnTunnel string: Sslvpn-Tunnel. Valid values: disable, enable.
sslvpnTunnelEndip string: Sslvpn-Tunnel-Endip.
sslvpnTunnelIpMode string: Sslvpn-Tunnel-Ip-Mode. Valid values: range, usrgrp.
sslvpnTunnelStartip string: Sslvpn-Tunnel-Startip.
sslvpnVirtualDesktop string: Sslvpn-Virtual-Desktop. Valid values: disable, enable.
sslvpnVnc string: Sslvpn-Vnc. Valid values: disable, enable.
sslvpnWebapp string: Sslvpn-Webapp. Valid values: disable, enable.
ssoAttributeValue string: Name of the RADIUS user group that this local user group represents.
userId string: Guest user ID type. Valid values: email, auto-generate, specify.
userName string: Enable/disable the guest user name entry. Valid values: disable, enable.

group str: Group.
_scopes Sequence[ObjectUserGroupDynamicMapping_ScopeArgs]: _Scope. The structure of _scope block is documented below.
adom str: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
auth_concurrent_override str: Enable/disable overriding the global number of concurrent authentication sessions for this user group. Valid values: disable, enable.
auth_concurrent_value float: Maximum number of concurrent authenticated connections per user (0 - 100).
authtimeout float: Authentication timeout in minutes for this user group. 0 to use the global user setting auth-timeout.
company str: Set the action for the company guest user field. Valid values: optional, mandatory, disabled.
dynamic_sort_subtable str: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
email str: Enable/disable the guest user email address field. Valid values: disable, enable.
expire float: Time in seconds before guest user accounts expire. (1 - 31536000 sec)
expire_type str: Determine when the expiration countdown begins. Valid values: immediately, first-successful-login.
fosid float: Id.
group_type str: Set the group to be for firewall authentication, FSSO, RSSO, or guest users. Valid values: firewall, directory-service, fsso-service, guest, rsso.
guests Sequence[ObjectUserGroupDynamicMappingGuestArgs]: Guest. The structure of guest block is documented below.
http_digest_realm str: Realm attribute for MD5-digest authentication.
ldap_memberof str: Ldap-Memberof.
logic_type str: Logic-Type. Valid values: or, and.
matches Sequence[ObjectUserGroupDynamicMappingMatchArgs]: Match. The structure of match block is documented below.
max_accounts float: Maximum number of guest accounts that can be created for this group (0 means unlimited).
member str: Names of users, peers, LDAP severs, or RADIUS servers to add to the user group.
mobile_phone str: Enable/disable the guest user mobile phone number field. Valid values: disable, enable.
multiple_guest_add str: Enable/disable addition of multiple guests. Valid values: disable, enable.
object_user_group_dynamic_mapping_id str: an identifier for the resource with format "{{_scope.name}} {{_scope.vdom}}".
password str: Guest user password type. Valid values: auto-generate, specify, disable.
redir_url str: Redir-Url.
scopetype str: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
sms_custom_server str: SMS server.
sms_server str: Send SMS through FortiGuard or other external server. Valid values: fortiguard, custom.
sponsor str: Set the action for the sponsor guest user field. Valid values: optional, mandatory, disabled.
sslvpn_bookmarks_group str: Sslvpn-Bookmarks-Group.
sslvpn_cache_cleaner str: Sslvpn-Cache-Cleaner. Valid values: disable, enable.
sslvpn_client_checks Sequence[str]: Sslvpn-Client-Check. Valid values: forticlient, forticlient-av, forticlient-fw, 3rdAV, 3rdFW.
sslvpn_ftp str: Sslvpn-Ftp. Valid values: disable, enable.
sslvpn_http str: Sslvpn-Http. Valid values: disable, enable.
sslvpn_os_check str: Sslvpn-Os-Check. Valid values: disable, enable.
sslvpn_os_check_list ObjectUserGroupDynamicMappingSslvpnOsCheckListArgs: Sslvpn-Os-Check-List. The structure of sslvpn_os_check_list block is documented below.
sslvpn_portal str: Sslvpn-Portal.
sslvpn_portal_heading str: Sslvpn-Portal-Heading.
sslvpn_rdp str: Sslvpn-Rdp. Valid values: disable, enable.
sslvpn_samba str: Sslvpn-Samba. Valid values: disable, enable.
sslvpn_split_tunneling str: Sslvpn-Split-Tunneling. Valid values: disable, enable.
sslvpn_ssh str: Sslvpn-Ssh. Valid values: disable, enable.
sslvpn_telnet str: Sslvpn-Telnet. Valid values: disable, enable.
sslvpn_tunnel str: Sslvpn-Tunnel. Valid values: disable, enable.
sslvpn_tunnel_endip str: Sslvpn-Tunnel-Endip.
sslvpn_tunnel_ip_mode str: Sslvpn-Tunnel-Ip-Mode. Valid values: range, usrgrp.
sslvpn_tunnel_startip str: Sslvpn-Tunnel-Startip.
sslvpn_virtual_desktop str: Sslvpn-Virtual-Desktop. Valid values: disable, enable.
sslvpn_vnc str: Sslvpn-Vnc. Valid values: disable, enable.
sslvpn_webapp str: Sslvpn-Webapp. Valid values: disable, enable.
sso_attribute_value str: Name of the RADIUS user group that this local user group represents.
user_id str: Guest user ID type. Valid values: email, auto-generate, specify.
user_name str: Enable/disable the guest user name entry. Valid values: disable, enable.

group String: Group.
_scopes List<Property Map>: _Scope. The structure of _scope block is documented below.
adom String: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
authConcurrentOverride String: Enable/disable overriding the global number of concurrent authentication sessions for this user group. Valid values: disable, enable.
authConcurrentValue Number: Maximum number of concurrent authenticated connections per user (0 - 100).
authtimeout Number: Authentication timeout in minutes for this user group. 0 to use the global user setting auth-timeout.
company String: Set the action for the company guest user field. Valid values: optional, mandatory, disabled.
dynamicSortSubtable String: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
email String: Enable/disable the guest user email address field. Valid values: disable, enable.
expire Number: Time in seconds before guest user accounts expire. (1 - 31536000 sec)
expireType String: Determine when the expiration countdown begins. Valid values: immediately, first-successful-login.
fosid Number: Id.
groupType String: Set the group to be for firewall authentication, FSSO, RSSO, or guest users. Valid values: firewall, directory-service, fsso-service, guest, rsso.
guests List<Property Map>: Guest. The structure of guest block is documented below.
httpDigestRealm String: Realm attribute for MD5-digest authentication.
ldapMemberof String: Ldap-Memberof.
logicType String: Logic-Type. Valid values: or, and.
matches List<Property Map>: Match. The structure of match block is documented below.
maxAccounts Number: Maximum number of guest accounts that can be created for this group (0 means unlimited).
member String: Names of users, peers, LDAP severs, or RADIUS servers to add to the user group.
mobilePhone String: Enable/disable the guest user mobile phone number field. Valid values: disable, enable.
multipleGuestAdd String: Enable/disable addition of multiple guests. Valid values: disable, enable.
objectUserGroupDynamicMappingId String: an identifier for the resource with format "{{_scope.name}} {{_scope.vdom}}".
password String: Guest user password type. Valid values: auto-generate, specify, disable.
redirUrl String: Redir-Url.
scopetype String: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
smsCustomServer String: SMS server.
smsServer String: Send SMS through FortiGuard or other external server. Valid values: fortiguard, custom.
sponsor String: Set the action for the sponsor guest user field. Valid values: optional, mandatory, disabled.
sslvpnBookmarksGroup String: Sslvpn-Bookmarks-Group.
sslvpnCacheCleaner String: Sslvpn-Cache-Cleaner. Valid values: disable, enable.
sslvpnClientChecks List<String>: Sslvpn-Client-Check. Valid values: forticlient, forticlient-av, forticlient-fw, 3rdAV, 3rdFW.
sslvpnFtp String: Sslvpn-Ftp. Valid values: disable, enable.
sslvpnHttp String: Sslvpn-Http. Valid values: disable, enable.
sslvpnOsCheck String: Sslvpn-Os-Check. Valid values: disable, enable.
sslvpnOsCheckList Property Map: Sslvpn-Os-Check-List. The structure of sslvpn_os_check_list block is documented below.
sslvpnPortal String: Sslvpn-Portal.
sslvpnPortalHeading String: Sslvpn-Portal-Heading.
sslvpnRdp String: Sslvpn-Rdp. Valid values: disable, enable.
sslvpnSamba String: Sslvpn-Samba. Valid values: disable, enable.
sslvpnSplitTunneling String: Sslvpn-Split-Tunneling. Valid values: disable, enable.
sslvpnSsh String: Sslvpn-Ssh. Valid values: disable, enable.
sslvpnTelnet String: Sslvpn-Telnet. Valid values: disable, enable.
sslvpnTunnel String: Sslvpn-Tunnel. Valid values: disable, enable.
sslvpnTunnelEndip String: Sslvpn-Tunnel-Endip.
sslvpnTunnelIpMode String: Sslvpn-Tunnel-Ip-Mode. Valid values: range, usrgrp.
sslvpnTunnelStartip String: Sslvpn-Tunnel-Startip.
sslvpnVirtualDesktop String: Sslvpn-Virtual-Desktop. Valid values: disable, enable.
sslvpnVnc String: Sslvpn-Vnc. Valid values: disable, enable.
sslvpnWebapp String: Sslvpn-Webapp. Valid values: disable, enable.
ssoAttributeValue String: Name of the RADIUS user group that this local user group represents.
userId String: Guest user ID type. Valid values: email, auto-generate, specify.
userName String: Enable/disable the guest user name entry. Valid values: disable, enable.

Outputs

All input properties are implicitly available as output properties. Additionally, the ObjectUserGroupDynamicMapping resource produces the following output properties:

Id string: The provider-assigned unique ID for this managed resource.

Id string: The provider-assigned unique ID for this managed resource.

id String: The provider-assigned unique ID for this managed resource.

id string: The provider-assigned unique ID for this managed resource.

id str: The provider-assigned unique ID for this managed resource.

id String: The provider-assigned unique ID for this managed resource.

Look up Existing ObjectUserGroupDynamicMapping Resource

Get an existing ObjectUserGroupDynamicMapping resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: ObjectUserGroupDynamicMappingState, opts?: CustomResourceOptions): ObjectUserGroupDynamicMapping

@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        _scopes: Optional[Sequence[ObjectUserGroupDynamicMapping_ScopeArgs]] = None,
        adom: Optional[str] = None,
        auth_concurrent_override: Optional[str] = None,
        auth_concurrent_value: Optional[float] = None,
        authtimeout: Optional[float] = None,
        company: Optional[str] = None,
        dynamic_sort_subtable: Optional[str] = None,
        email: Optional[str] = None,
        expire: Optional[float] = None,
        expire_type: Optional[str] = None,
        fosid: Optional[float] = None,
        group: Optional[str] = None,
        group_type: Optional[str] = None,
        guests: Optional[Sequence[ObjectUserGroupDynamicMappingGuestArgs]] = None,
        http_digest_realm: Optional[str] = None,
        ldap_memberof: Optional[str] = None,
        logic_type: Optional[str] = None,
        matches: Optional[Sequence[ObjectUserGroupDynamicMappingMatchArgs]] = None,
        max_accounts: Optional[float] = None,
        member: Optional[str] = None,
        mobile_phone: Optional[str] = None,
        multiple_guest_add: Optional[str] = None,
        object_user_group_dynamic_mapping_id: Optional[str] = None,
        password: Optional[str] = None,
        redir_url: Optional[str] = None,
        scopetype: Optional[str] = None,
        sms_custom_server: Optional[str] = None,
        sms_server: Optional[str] = None,
        sponsor: Optional[str] = None,
        sslvpn_bookmarks_group: Optional[str] = None,
        sslvpn_cache_cleaner: Optional[str] = None,
        sslvpn_client_checks: Optional[Sequence[str]] = None,
        sslvpn_ftp: Optional[str] = None,
        sslvpn_http: Optional[str] = None,
        sslvpn_os_check: Optional[str] = None,
        sslvpn_os_check_list: Optional[ObjectUserGroupDynamicMappingSslvpnOsCheckListArgs] = None,
        sslvpn_portal: Optional[str] = None,
        sslvpn_portal_heading: Optional[str] = None,
        sslvpn_rdp: Optional[str] = None,
        sslvpn_samba: Optional[str] = None,
        sslvpn_split_tunneling: Optional[str] = None,
        sslvpn_ssh: Optional[str] = None,
        sslvpn_telnet: Optional[str] = None,
        sslvpn_tunnel: Optional[str] = None,
        sslvpn_tunnel_endip: Optional[str] = None,
        sslvpn_tunnel_ip_mode: Optional[str] = None,
        sslvpn_tunnel_startip: Optional[str] = None,
        sslvpn_virtual_desktop: Optional[str] = None,
        sslvpn_vnc: Optional[str] = None,
        sslvpn_webapp: Optional[str] = None,
        sso_attribute_value: Optional[str] = None,
        user_id: Optional[str] = None,
        user_name: Optional[str] = None) -> ObjectUserGroupDynamicMapping

func GetObjectUserGroupDynamicMapping(ctx *Context, name string, id IDInput, state *ObjectUserGroupDynamicMappingState, opts ...ResourceOption) (*ObjectUserGroupDynamicMapping, error)

public static ObjectUserGroupDynamicMapping Get(string name, Input<string> id, ObjectUserGroupDynamicMappingState? state, CustomResourceOptions? opts = null)

public static ObjectUserGroupDynamicMapping get(String name, Output<String> id, ObjectUserGroupDynamicMappingState state, CustomResourceOptions options)

resources:  _:    type: fortimanager:ObjectUserGroupDynamicMapping    get:      id: ${id}

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

Adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
AuthConcurrentOverride string: Enable/disable overriding the global number of concurrent authentication sessions for this user group. Valid values: disable, enable.
AuthConcurrentValue double: Maximum number of concurrent authenticated connections per user (0 - 100).
Authtimeout double: Authentication timeout in minutes for this user group. 0 to use the global user setting auth-timeout.
Company string: Set the action for the company guest user field. Valid values: optional, mandatory, disabled.
DynamicSortSubtable string: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
Email string: Enable/disable the guest user email address field. Valid values: disable, enable.
Expire double: Time in seconds before guest user accounts expire. (1 - 31536000 sec)
ExpireType string: Determine when the expiration countdown begins. Valid values: immediately, first-successful-login.
Fosid double: Id.
Group string: Group.
GroupType string: Set the group to be for firewall authentication, FSSO, RSSO, or guest users. Valid values: firewall, directory-service, fsso-service, guest, rsso.
Guests List<ObjectUserGroupDynamicMappingGuest>: Guest. The structure of guest block is documented below.
HttpDigestRealm string: Realm attribute for MD5-digest authentication.
LdapMemberof string: Ldap-Memberof.
LogicType string: Logic-Type. Valid values: or, and.
Matches List<ObjectUserGroupDynamicMappingMatch>: Match. The structure of match block is documented below.
MaxAccounts double: Maximum number of guest accounts that can be created for this group (0 means unlimited).
Member string: Names of users, peers, LDAP severs, or RADIUS servers to add to the user group.
MobilePhone string: Enable/disable the guest user mobile phone number field. Valid values: disable, enable.
MultipleGuestAdd string: Enable/disable addition of multiple guests. Valid values: disable, enable.
ObjectUserGroupDynamicMappingId string: an identifier for the resource with format "{{_scope.name}} {{_scope.vdom}}".
Password string: Guest user password type. Valid values: auto-generate, specify, disable.
RedirUrl string: Redir-Url.
Scopetype string: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
SmsCustomServer string: SMS server.
SmsServer string: Send SMS through FortiGuard or other external server. Valid values: fortiguard, custom.
Sponsor string: Set the action for the sponsor guest user field. Valid values: optional, mandatory, disabled.
SslvpnBookmarksGroup string: Sslvpn-Bookmarks-Group.
SslvpnCacheCleaner string: Sslvpn-Cache-Cleaner. Valid values: disable, enable.
SslvpnClientChecks List<string>: Sslvpn-Client-Check. Valid values: forticlient, forticlient-av, forticlient-fw, 3rdAV, 3rdFW.
SslvpnFtp string: Sslvpn-Ftp. Valid values: disable, enable.
SslvpnHttp string: Sslvpn-Http. Valid values: disable, enable.
SslvpnOsCheck string: Sslvpn-Os-Check. Valid values: disable, enable.
SslvpnOsCheckList ObjectUserGroupDynamicMappingSslvpnOsCheckList: Sslvpn-Os-Check-List. The structure of sslvpn_os_check_list block is documented below.
SslvpnPortal string: Sslvpn-Portal.
SslvpnPortalHeading string: Sslvpn-Portal-Heading.
SslvpnRdp string: Sslvpn-Rdp. Valid values: disable, enable.
SslvpnSamba string: Sslvpn-Samba. Valid values: disable, enable.
SslvpnSplitTunneling string: Sslvpn-Split-Tunneling. Valid values: disable, enable.
SslvpnSsh string: Sslvpn-Ssh. Valid values: disable, enable.
SslvpnTelnet string: Sslvpn-Telnet. Valid values: disable, enable.
SslvpnTunnel string: Sslvpn-Tunnel. Valid values: disable, enable.
SslvpnTunnelEndip string: Sslvpn-Tunnel-Endip.
SslvpnTunnelIpMode string: Sslvpn-Tunnel-Ip-Mode. Valid values: range, usrgrp.
SslvpnTunnelStartip string: Sslvpn-Tunnel-Startip.
SslvpnVirtualDesktop string: Sslvpn-Virtual-Desktop. Valid values: disable, enable.
SslvpnVnc string: Sslvpn-Vnc. Valid values: disable, enable.
SslvpnWebapp string: Sslvpn-Webapp. Valid values: disable, enable.
SsoAttributeValue string: Name of the RADIUS user group that this local user group represents.
UserId string: Guest user ID type. Valid values: email, auto-generate, specify.
UserName string: Enable/disable the guest user name entry. Valid values: disable, enable.
_scopes List<ObjectUserGroupDynamicMapping_Scope>: _Scope. The structure of _scope block is documented below.

Adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
AuthConcurrentOverride string: Enable/disable overriding the global number of concurrent authentication sessions for this user group. Valid values: disable, enable.
AuthConcurrentValue float64: Maximum number of concurrent authenticated connections per user (0 - 100).
Authtimeout float64: Authentication timeout in minutes for this user group. 0 to use the global user setting auth-timeout.
Company string: Set the action for the company guest user field. Valid values: optional, mandatory, disabled.
DynamicSortSubtable string: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
Email string: Enable/disable the guest user email address field. Valid values: disable, enable.
Expire float64: Time in seconds before guest user accounts expire. (1 - 31536000 sec)
ExpireType string: Determine when the expiration countdown begins. Valid values: immediately, first-successful-login.
Fosid float64: Id.
Group string: Group.
GroupType string: Set the group to be for firewall authentication, FSSO, RSSO, or guest users. Valid values: firewall, directory-service, fsso-service, guest, rsso.
Guests []ObjectUserGroupDynamicMappingGuestArgs: Guest. The structure of guest block is documented below.
HttpDigestRealm string: Realm attribute for MD5-digest authentication.
LdapMemberof string: Ldap-Memberof.
LogicType string: Logic-Type. Valid values: or, and.
Matches []ObjectUserGroupDynamicMappingMatchTypeArgs: Match. The structure of match block is documented below.
MaxAccounts float64: Maximum number of guest accounts that can be created for this group (0 means unlimited).
Member string: Names of users, peers, LDAP severs, or RADIUS servers to add to the user group.
MobilePhone string: Enable/disable the guest user mobile phone number field. Valid values: disable, enable.
MultipleGuestAdd string: Enable/disable addition of multiple guests. Valid values: disable, enable.
ObjectUserGroupDynamicMappingId string: an identifier for the resource with format "{{_scope.name}} {{_scope.vdom}}".
Password string: Guest user password type. Valid values: auto-generate, specify, disable.
RedirUrl string: Redir-Url.
Scopetype string: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
SmsCustomServer string: SMS server.
SmsServer string: Send SMS through FortiGuard or other external server. Valid values: fortiguard, custom.
Sponsor string: Set the action for the sponsor guest user field. Valid values: optional, mandatory, disabled.
SslvpnBookmarksGroup string: Sslvpn-Bookmarks-Group.
SslvpnCacheCleaner string: Sslvpn-Cache-Cleaner. Valid values: disable, enable.
SslvpnClientChecks []string: Sslvpn-Client-Check. Valid values: forticlient, forticlient-av, forticlient-fw, 3rdAV, 3rdFW.
SslvpnFtp string: Sslvpn-Ftp. Valid values: disable, enable.
SslvpnHttp string: Sslvpn-Http. Valid values: disable, enable.
SslvpnOsCheck string: Sslvpn-Os-Check. Valid values: disable, enable.
SslvpnOsCheckList ObjectUserGroupDynamicMappingSslvpnOsCheckListArgs: Sslvpn-Os-Check-List. The structure of sslvpn_os_check_list block is documented below.
SslvpnPortal string: Sslvpn-Portal.
SslvpnPortalHeading string: Sslvpn-Portal-Heading.
SslvpnRdp string: Sslvpn-Rdp. Valid values: disable, enable.
SslvpnSamba string: Sslvpn-Samba. Valid values: disable, enable.
SslvpnSplitTunneling string: Sslvpn-Split-Tunneling. Valid values: disable, enable.
SslvpnSsh string: Sslvpn-Ssh. Valid values: disable, enable.
SslvpnTelnet string: Sslvpn-Telnet. Valid values: disable, enable.
SslvpnTunnel string: Sslvpn-Tunnel. Valid values: disable, enable.
SslvpnTunnelEndip string: Sslvpn-Tunnel-Endip.
SslvpnTunnelIpMode string: Sslvpn-Tunnel-Ip-Mode. Valid values: range, usrgrp.
SslvpnTunnelStartip string: Sslvpn-Tunnel-Startip.
SslvpnVirtualDesktop string: Sslvpn-Virtual-Desktop. Valid values: disable, enable.
SslvpnVnc string: Sslvpn-Vnc. Valid values: disable, enable.
SslvpnWebapp string: Sslvpn-Webapp. Valid values: disable, enable.
SsoAttributeValue string: Name of the RADIUS user group that this local user group represents.
UserId string: Guest user ID type. Valid values: email, auto-generate, specify.
UserName string: Enable/disable the guest user name entry. Valid values: disable, enable.
_scopes []ObjectUserGroupDynamicMapping_ScopeArgs: _Scope. The structure of _scope block is documented below.

_scopes List<ObjectUserGroupDynamicMapping_Scope>: _Scope. The structure of _scope block is documented below.
adom String: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
authConcurrentOverride String: Enable/disable overriding the global number of concurrent authentication sessions for this user group. Valid values: disable, enable.
authConcurrentValue Double: Maximum number of concurrent authenticated connections per user (0 - 100).
authtimeout Double: Authentication timeout in minutes for this user group. 0 to use the global user setting auth-timeout.
company String: Set the action for the company guest user field. Valid values: optional, mandatory, disabled.
dynamicSortSubtable String: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
email String: Enable/disable the guest user email address field. Valid values: disable, enable.
expire Double: Time in seconds before guest user accounts expire. (1 - 31536000 sec)
expireType String: Determine when the expiration countdown begins. Valid values: immediately, first-successful-login.
fosid Double: Id.
group String: Group.
groupType String: Set the group to be for firewall authentication, FSSO, RSSO, or guest users. Valid values: firewall, directory-service, fsso-service, guest, rsso.
guests List<ObjectUserGroupDynamicMappingGuest>: Guest. The structure of guest block is documented below.
httpDigestRealm String: Realm attribute for MD5-digest authentication.
ldapMemberof String: Ldap-Memberof.
logicType String: Logic-Type. Valid values: or, and.
matches List<ObjectUserGroupDynamicMappingMatch>: Match. The structure of match block is documented below.
maxAccounts Double: Maximum number of guest accounts that can be created for this group (0 means unlimited).
member String: Names of users, peers, LDAP severs, or RADIUS servers to add to the user group.
mobilePhone String: Enable/disable the guest user mobile phone number field. Valid values: disable, enable.
multipleGuestAdd String: Enable/disable addition of multiple guests. Valid values: disable, enable.
objectUserGroupDynamicMappingId String: an identifier for the resource with format "{{_scope.name}} {{_scope.vdom}}".
password String: Guest user password type. Valid values: auto-generate, specify, disable.
redirUrl String: Redir-Url.
scopetype String: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
smsCustomServer String: SMS server.
smsServer String: Send SMS through FortiGuard or other external server. Valid values: fortiguard, custom.
sponsor String: Set the action for the sponsor guest user field. Valid values: optional, mandatory, disabled.
sslvpnBookmarksGroup String: Sslvpn-Bookmarks-Group.
sslvpnCacheCleaner String: Sslvpn-Cache-Cleaner. Valid values: disable, enable.
sslvpnClientChecks List<String>: Sslvpn-Client-Check. Valid values: forticlient, forticlient-av, forticlient-fw, 3rdAV, 3rdFW.
sslvpnFtp String: Sslvpn-Ftp. Valid values: disable, enable.
sslvpnHttp String: Sslvpn-Http. Valid values: disable, enable.
sslvpnOsCheck String: Sslvpn-Os-Check. Valid values: disable, enable.
sslvpnOsCheckList ObjectUserGroupDynamicMappingSslvpnOsCheckList: Sslvpn-Os-Check-List. The structure of sslvpn_os_check_list block is documented below.
sslvpnPortal String: Sslvpn-Portal.
sslvpnPortalHeading String: Sslvpn-Portal-Heading.
sslvpnRdp String: Sslvpn-Rdp. Valid values: disable, enable.
sslvpnSamba String: Sslvpn-Samba. Valid values: disable, enable.
sslvpnSplitTunneling String: Sslvpn-Split-Tunneling. Valid values: disable, enable.
sslvpnSsh String: Sslvpn-Ssh. Valid values: disable, enable.
sslvpnTelnet String: Sslvpn-Telnet. Valid values: disable, enable.
sslvpnTunnel String: Sslvpn-Tunnel. Valid values: disable, enable.
sslvpnTunnelEndip String: Sslvpn-Tunnel-Endip.
sslvpnTunnelIpMode String: Sslvpn-Tunnel-Ip-Mode. Valid values: range, usrgrp.
sslvpnTunnelStartip String: Sslvpn-Tunnel-Startip.
sslvpnVirtualDesktop String: Sslvpn-Virtual-Desktop. Valid values: disable, enable.
sslvpnVnc String: Sslvpn-Vnc. Valid values: disable, enable.
sslvpnWebapp String: Sslvpn-Webapp. Valid values: disable, enable.
ssoAttributeValue String: Name of the RADIUS user group that this local user group represents.
userId String: Guest user ID type. Valid values: email, auto-generate, specify.
userName String: Enable/disable the guest user name entry. Valid values: disable, enable.

_scopes ObjectUserGroupDynamicMapping_Scope[]: _Scope. The structure of _scope block is documented below.
adom string: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
authConcurrentOverride string: Enable/disable overriding the global number of concurrent authentication sessions for this user group. Valid values: disable, enable.
authConcurrentValue number: Maximum number of concurrent authenticated connections per user (0 - 100).
authtimeout number: Authentication timeout in minutes for this user group. 0 to use the global user setting auth-timeout.
company string: Set the action for the company guest user field. Valid values: optional, mandatory, disabled.
dynamicSortSubtable string: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
email string: Enable/disable the guest user email address field. Valid values: disable, enable.
expire number: Time in seconds before guest user accounts expire. (1 - 31536000 sec)
expireType string: Determine when the expiration countdown begins. Valid values: immediately, first-successful-login.
fosid number: Id.
group string: Group.
groupType string: Set the group to be for firewall authentication, FSSO, RSSO, or guest users. Valid values: firewall, directory-service, fsso-service, guest, rsso.
guests ObjectUserGroupDynamicMappingGuest[]: Guest. The structure of guest block is documented below.
httpDigestRealm string: Realm attribute for MD5-digest authentication.
ldapMemberof string: Ldap-Memberof.
logicType string: Logic-Type. Valid values: or, and.
matches ObjectUserGroupDynamicMappingMatch[]: Match. The structure of match block is documented below.
maxAccounts number: Maximum number of guest accounts that can be created for this group (0 means unlimited).
member string: Names of users, peers, LDAP severs, or RADIUS servers to add to the user group.
mobilePhone string: Enable/disable the guest user mobile phone number field. Valid values: disable, enable.
multipleGuestAdd string: Enable/disable addition of multiple guests. Valid values: disable, enable.
objectUserGroupDynamicMappingId string: an identifier for the resource with format "{{_scope.name}} {{_scope.vdom}}".
password string: Guest user password type. Valid values: auto-generate, specify, disable.
redirUrl string: Redir-Url.
scopetype string: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
smsCustomServer string: SMS server.
smsServer string: Send SMS through FortiGuard or other external server. Valid values: fortiguard, custom.
sponsor string: Set the action for the sponsor guest user field. Valid values: optional, mandatory, disabled.
sslvpnBookmarksGroup string: Sslvpn-Bookmarks-Group.
sslvpnCacheCleaner string: Sslvpn-Cache-Cleaner. Valid values: disable, enable.
sslvpnClientChecks string[]: Sslvpn-Client-Check. Valid values: forticlient, forticlient-av, forticlient-fw, 3rdAV, 3rdFW.
sslvpnFtp string: Sslvpn-Ftp. Valid values: disable, enable.
sslvpnHttp string: Sslvpn-Http. Valid values: disable, enable.
sslvpnOsCheck string: Sslvpn-Os-Check. Valid values: disable, enable.
sslvpnOsCheckList ObjectUserGroupDynamicMappingSslvpnOsCheckList: Sslvpn-Os-Check-List. The structure of sslvpn_os_check_list block is documented below.
sslvpnPortal string: Sslvpn-Portal.
sslvpnPortalHeading string: Sslvpn-Portal-Heading.
sslvpnRdp string: Sslvpn-Rdp. Valid values: disable, enable.
sslvpnSamba string: Sslvpn-Samba. Valid values: disable, enable.
sslvpnSplitTunneling string: Sslvpn-Split-Tunneling. Valid values: disable, enable.
sslvpnSsh string: Sslvpn-Ssh. Valid values: disable, enable.
sslvpnTelnet string: Sslvpn-Telnet. Valid values: disable, enable.
sslvpnTunnel string: Sslvpn-Tunnel. Valid values: disable, enable.
sslvpnTunnelEndip string: Sslvpn-Tunnel-Endip.
sslvpnTunnelIpMode string: Sslvpn-Tunnel-Ip-Mode. Valid values: range, usrgrp.
sslvpnTunnelStartip string: Sslvpn-Tunnel-Startip.
sslvpnVirtualDesktop string: Sslvpn-Virtual-Desktop. Valid values: disable, enable.
sslvpnVnc string: Sslvpn-Vnc. Valid values: disable, enable.
sslvpnWebapp string: Sslvpn-Webapp. Valid values: disable, enable.
ssoAttributeValue string: Name of the RADIUS user group that this local user group represents.
userId string: Guest user ID type. Valid values: email, auto-generate, specify.
userName string: Enable/disable the guest user name entry. Valid values: disable, enable.

_scopes Sequence[ObjectUserGroupDynamicMapping_ScopeArgs]: _Scope. The structure of _scope block is documented below.
adom str: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
auth_concurrent_override str: Enable/disable overriding the global number of concurrent authentication sessions for this user group. Valid values: disable, enable.
auth_concurrent_value float: Maximum number of concurrent authenticated connections per user (0 - 100).
authtimeout float: Authentication timeout in minutes for this user group. 0 to use the global user setting auth-timeout.
company str: Set the action for the company guest user field. Valid values: optional, mandatory, disabled.
dynamic_sort_subtable str: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
email str: Enable/disable the guest user email address field. Valid values: disable, enable.
expire float: Time in seconds before guest user accounts expire. (1 - 31536000 sec)
expire_type str: Determine when the expiration countdown begins. Valid values: immediately, first-successful-login.
fosid float: Id.
group str: Group.
group_type str: Set the group to be for firewall authentication, FSSO, RSSO, or guest users. Valid values: firewall, directory-service, fsso-service, guest, rsso.
guests Sequence[ObjectUserGroupDynamicMappingGuestArgs]: Guest. The structure of guest block is documented below.
http_digest_realm str: Realm attribute for MD5-digest authentication.
ldap_memberof str: Ldap-Memberof.
logic_type str: Logic-Type. Valid values: or, and.
matches Sequence[ObjectUserGroupDynamicMappingMatchArgs]: Match. The structure of match block is documented below.
max_accounts float: Maximum number of guest accounts that can be created for this group (0 means unlimited).
member str: Names of users, peers, LDAP severs, or RADIUS servers to add to the user group.
mobile_phone str: Enable/disable the guest user mobile phone number field. Valid values: disable, enable.
multiple_guest_add str: Enable/disable addition of multiple guests. Valid values: disable, enable.
object_user_group_dynamic_mapping_id str: an identifier for the resource with format "{{_scope.name}} {{_scope.vdom}}".
password str: Guest user password type. Valid values: auto-generate, specify, disable.
redir_url str: Redir-Url.
scopetype str: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
sms_custom_server str: SMS server.
sms_server str: Send SMS through FortiGuard or other external server. Valid values: fortiguard, custom.
sponsor str: Set the action for the sponsor guest user field. Valid values: optional, mandatory, disabled.
sslvpn_bookmarks_group str: Sslvpn-Bookmarks-Group.
sslvpn_cache_cleaner str: Sslvpn-Cache-Cleaner. Valid values: disable, enable.
sslvpn_client_checks Sequence[str]: Sslvpn-Client-Check. Valid values: forticlient, forticlient-av, forticlient-fw, 3rdAV, 3rdFW.
sslvpn_ftp str: Sslvpn-Ftp. Valid values: disable, enable.
sslvpn_http str: Sslvpn-Http. Valid values: disable, enable.
sslvpn_os_check str: Sslvpn-Os-Check. Valid values: disable, enable.
sslvpn_os_check_list ObjectUserGroupDynamicMappingSslvpnOsCheckListArgs: Sslvpn-Os-Check-List. The structure of sslvpn_os_check_list block is documented below.
sslvpn_portal str: Sslvpn-Portal.
sslvpn_portal_heading str: Sslvpn-Portal-Heading.
sslvpn_rdp str: Sslvpn-Rdp. Valid values: disable, enable.
sslvpn_samba str: Sslvpn-Samba. Valid values: disable, enable.
sslvpn_split_tunneling str: Sslvpn-Split-Tunneling. Valid values: disable, enable.
sslvpn_ssh str: Sslvpn-Ssh. Valid values: disable, enable.
sslvpn_telnet str: Sslvpn-Telnet. Valid values: disable, enable.
sslvpn_tunnel str: Sslvpn-Tunnel. Valid values: disable, enable.
sslvpn_tunnel_endip str: Sslvpn-Tunnel-Endip.
sslvpn_tunnel_ip_mode str: Sslvpn-Tunnel-Ip-Mode. Valid values: range, usrgrp.
sslvpn_tunnel_startip str: Sslvpn-Tunnel-Startip.
sslvpn_virtual_desktop str: Sslvpn-Virtual-Desktop. Valid values: disable, enable.
sslvpn_vnc str: Sslvpn-Vnc. Valid values: disable, enable.
sslvpn_webapp str: Sslvpn-Webapp. Valid values: disable, enable.
sso_attribute_value str: Name of the RADIUS user group that this local user group represents.
user_id str: Guest user ID type. Valid values: email, auto-generate, specify.
user_name str: Enable/disable the guest user name entry. Valid values: disable, enable.

_scopes List<Property Map>: _Scope. The structure of _scope block is documented below.
adom String: Adom. This value is valid only when the scopetype is adom, otherwise the value of adom in the provider will be inherited.
authConcurrentOverride String: Enable/disable overriding the global number of concurrent authentication sessions for this user group. Valid values: disable, enable.
authConcurrentValue Number: Maximum number of concurrent authenticated connections per user (0 - 100).
authtimeout Number: Authentication timeout in minutes for this user group. 0 to use the global user setting auth-timeout.
company String: Set the action for the company guest user field. Valid values: optional, mandatory, disabled.
dynamicSortSubtable String: true or false, set this parameter to true when using dynamic for_each + toset to configure and sort sub-tables, please do not set this parameter when configuring static sub-tables.
email String: Enable/disable the guest user email address field. Valid values: disable, enable.
expire Number: Time in seconds before guest user accounts expire. (1 - 31536000 sec)
expireType String: Determine when the expiration countdown begins. Valid values: immediately, first-successful-login.
fosid Number: Id.
group String: Group.
groupType String: Set the group to be for firewall authentication, FSSO, RSSO, or guest users. Valid values: firewall, directory-service, fsso-service, guest, rsso.
guests List<Property Map>: Guest. The structure of guest block is documented below.
httpDigestRealm String: Realm attribute for MD5-digest authentication.
ldapMemberof String: Ldap-Memberof.
logicType String: Logic-Type. Valid values: or, and.
matches List<Property Map>: Match. The structure of match block is documented below.
maxAccounts Number: Maximum number of guest accounts that can be created for this group (0 means unlimited).
member String: Names of users, peers, LDAP severs, or RADIUS servers to add to the user group.
mobilePhone String: Enable/disable the guest user mobile phone number field. Valid values: disable, enable.
multipleGuestAdd String: Enable/disable addition of multiple guests. Valid values: disable, enable.
objectUserGroupDynamicMappingId String: an identifier for the resource with format "{{_scope.name}} {{_scope.vdom}}".
password String: Guest user password type. Valid values: auto-generate, specify, disable.
redirUrl String: Redir-Url.
scopetype String: The scope of application of the resource. Valid values: inherit, adom, global. The inherit means that the scopetype of the provider will be inherited, and adom will also be inherited. The default value is inherit.
smsCustomServer String: SMS server.
smsServer String: Send SMS through FortiGuard or other external server. Valid values: fortiguard, custom.
sponsor String: Set the action for the sponsor guest user field. Valid values: optional, mandatory, disabled.
sslvpnBookmarksGroup String: Sslvpn-Bookmarks-Group.
sslvpnCacheCleaner String: Sslvpn-Cache-Cleaner. Valid values: disable, enable.
sslvpnClientChecks List<String>: Sslvpn-Client-Check. Valid values: forticlient, forticlient-av, forticlient-fw, 3rdAV, 3rdFW.
sslvpnFtp String: Sslvpn-Ftp. Valid values: disable, enable.
sslvpnHttp String: Sslvpn-Http. Valid values: disable, enable.
sslvpnOsCheck String: Sslvpn-Os-Check. Valid values: disable, enable.
sslvpnOsCheckList Property Map: Sslvpn-Os-Check-List. The structure of sslvpn_os_check_list block is documented below.
sslvpnPortal String: Sslvpn-Portal.
sslvpnPortalHeading String: Sslvpn-Portal-Heading.
sslvpnRdp String: Sslvpn-Rdp. Valid values: disable, enable.
sslvpnSamba String: Sslvpn-Samba. Valid values: disable, enable.
sslvpnSplitTunneling String: Sslvpn-Split-Tunneling. Valid values: disable, enable.
sslvpnSsh String: Sslvpn-Ssh. Valid values: disable, enable.
sslvpnTelnet String: Sslvpn-Telnet. Valid values: disable, enable.
sslvpnTunnel String: Sslvpn-Tunnel. Valid values: disable, enable.
sslvpnTunnelEndip String: Sslvpn-Tunnel-Endip.
sslvpnTunnelIpMode String: Sslvpn-Tunnel-Ip-Mode. Valid values: range, usrgrp.
sslvpnTunnelStartip String: Sslvpn-Tunnel-Startip.
sslvpnVirtualDesktop String: Sslvpn-Virtual-Desktop. Valid values: disable, enable.
sslvpnVnc String: Sslvpn-Vnc. Valid values: disable, enable.
sslvpnWebapp String: Sslvpn-Webapp. Valid values: disable, enable.
ssoAttributeValue String: Name of the RADIUS user group that this local user group represents.
userId String: Guest user ID type. Valid values: email, auto-generate, specify.
userName String: Enable/disable the guest user name entry. Valid values: disable, enable.

Supporting Types

ObjectUserGroupDynamicMappingGuest, ObjectUserGroupDynamicMappingGuestArgs

Comment string: Comment.
Company string: Set the action for the company guest user field.
Email string: Email.
Expiration string: Expire time.
Group string: Group.
Id double: Guest ID.
MobilePhone string: Mobile phone.
Name string: Guest name.
Passwords List<string>: Guest password.
Sponsor string: Set the action for the sponsor guest user field.
UserId string: Guest ID.

Comment string: Comment.
Company string: Set the action for the company guest user field.
Email string: Email.
Expiration string: Expire time.
Group string: Group.
Id float64: Guest ID.
MobilePhone string: Mobile phone.
Name string: Guest name.
Passwords []string: Guest password.
Sponsor string: Set the action for the sponsor guest user field.
UserId string: Guest ID.

comment String: Comment.
company String: Set the action for the company guest user field.
email String: Email.
expiration String: Expire time.
group String: Group.
id Double: Guest ID.
mobilePhone String: Mobile phone.
name String: Guest name.
passwords List<String>: Guest password.
sponsor String: Set the action for the sponsor guest user field.
userId String: Guest ID.

comment string: Comment.
company string: Set the action for the company guest user field.
email string: Email.
expiration string: Expire time.
group string: Group.
id number: Guest ID.
mobilePhone string: Mobile phone.
name string: Guest name.
passwords string[]: Guest password.
sponsor string: Set the action for the sponsor guest user field.
userId string: Guest ID.

comment str: Comment.
company str: Set the action for the company guest user field.
email str: Email.
expiration str: Expire time.
group str: Group.
id float: Guest ID.
mobile_phone str: Mobile phone.
name str: Guest name.
passwords Sequence[str]: Guest password.
sponsor str: Set the action for the sponsor guest user field.
user_id str: Guest ID.

comment String: Comment.
company String: Set the action for the company guest user field.
email String: Email.
expiration String: Expire time.
group String: Group.
id Number: Guest ID.
mobilePhone String: Mobile phone.
name String: Guest name.
passwords List<String>: Guest password.
sponsor String: Set the action for the sponsor guest user field.
userId String: Guest ID.

ObjectUserGroupDynamicMappingMatch, ObjectUserGroupDynamicMappingMatchArgs

GroupName string: Name of matching user or group on remote authentication server.
Id double: ID.
ServerName string: Name of remote auth server.
_guiMeta string: _Gui_Meta.

GroupName string: Name of matching user or group on remote authentication server.
Id float64: ID.
ServerName string: Name of remote auth server.
_guiMeta string: _Gui_Meta.

_guiMeta String: _Gui_Meta.
groupName String: Name of matching user or group on remote authentication server.
id Double: ID.
serverName String: Name of remote auth server.

_guiMeta string: _Gui_Meta.
groupName string: Name of matching user or group on remote authentication server.
id number: ID.
serverName string: Name of remote auth server.

_gui_meta str: _Gui_Meta.
group_name str: Name of matching user or group on remote authentication server.
id float: ID.
server_name str: Name of remote auth server.

_guiMeta String: _Gui_Meta.
groupName String: Name of matching user or group on remote authentication server.
id Number: ID.
serverName String: Name of remote auth server.

ObjectUserGroupDynamicMappingSslvpnOsCheckList, ObjectUserGroupDynamicMappingSslvpnOsCheckListArgs

Action string: Action. Valid values: allow, check-up-to-date, deny.
LatestPatchLevel string: Latest-Patch-Level.
Name string: Name.
Tolerance double: Tolerance.

Action string: Action. Valid values: allow, check-up-to-date, deny.
LatestPatchLevel string: Latest-Patch-Level.
Name string: Name.
Tolerance float64: Tolerance.

action String: Action. Valid values: allow, check-up-to-date, deny.
latestPatchLevel String: Latest-Patch-Level.
name String: Name.
tolerance Double: Tolerance.

action string: Action. Valid values: allow, check-up-to-date, deny.
latestPatchLevel string: Latest-Patch-Level.
name string: Name.
tolerance number: Tolerance.

action str: Action. Valid values: allow, check-up-to-date, deny.
latest_patch_level str: Latest-Patch-Level.
name str: Name.
tolerance float: Tolerance.

action String: Action. Valid values: allow, check-up-to-date, deny.
latestPatchLevel String: Latest-Patch-Level.
name String: Name.
tolerance Number: Tolerance.

ObjectUserGroupDynamicMapping_Scope, ObjectUserGroupDynamicMapping_ScopeArgs

Name string: Name.
Vdom string: Vdom.

Name string: Name.
Vdom string: Vdom.

name String: Name.
vdom String: Vdom.

name string: Name.
vdom string: Vdom.

name str: Name.
vdom str: Vdom.

name String: Name.
vdom String: Vdom.

Import

ObjectUser GroupDynamicMapping can be imported using any of these accepted formats:

Set import_options = [“group=YOUR_VALUE”] in the provider section.

$ export “FORTIMANAGER_IMPORT_TABLE”=“true”

$ pulumi import fortimanager:index/objectUserGroupDynamicMapping:ObjectUserGroupDynamicMapping labelname {{_scope.name}}.{{_scope.vdom}}

$ unset “FORTIMANAGER_IMPORT_TABLE”

-> Hint: The scopetype and adom for import will directly inherit the scopetype and adom configuration of the provider.

To learn more about importing existing cloud resources, see Importing resources.

Package Details

Repository: fortimanager fortinetdev/terraform-provider-fortimanager
License
Notes: This Pulumi package is based on the fortimanager Terraform Provider.

fortimanager 1.13.0 published on Thursday, Mar 13, 2025 by fortinetdev

fortinetdev/terraform-provider-fortimanager

fortimanager.ObjectUserGroupDynamicMapping

On this page

On this page

Create ObjectUserGroupDynamicMapping Resource

Constructor syntax

Parameters

Constructor example

ObjectUserGroupDynamicMapping Resource Properties

Inputs

Outputs

Look up Existing ObjectUserGroupDynamicMapping Resource

Supporting Types

ObjectUserGroupDynamicMappingGuest, ObjectUserGroupDynamicMappingGuestArgs

ObjectUserGroupDynamicMappingMatch, ObjectUserGroupDynamicMappingMatchArgs

ObjectUserGroupDynamicMappingSslvpnOsCheckList, ObjectUserGroupDynamicMappingSslvpnOsCheckListArgs

ObjectUserGroupDynamicMapping_Scope, ObjectUserGroupDynamicMapping_ScopeArgs

Import

Package Details

On this page

On this page