SecurityPreferenceProps

Properties for defining a SecurityPreference.

See https://www.alibabacloud.com/help/ros/developer-reference/aliyun-ram-securitypreference

Initializer

import com.aliyun.ros.cdk.ram.SecurityPreferenceProps;
SecurityPreferenceProps.builder()
//  .allowUserToChangePassword(java.lang.Boolean)
//  .allowUserToChangePassword(IResolvable)
//  .allowUserToManageAccessKeys(java.lang.Boolean)
//  .allowUserToManageAccessKeys(IResolvable)
//  .allowUserToManageMfaDevices(java.lang.Boolean)
//  .allowUserToManageMfaDevices(IResolvable)
//  .allowUserToManagePublicKeys(java.lang.Boolean)
//  .allowUserToManagePublicKeys(IResolvable)
//  .enableSaveMfaTicket(java.lang.Boolean)
//  .enableSaveMfaTicket(IResolvable)
//  .loginNetworkMasks(java.lang.String)
//  .loginNetworkMasks(IResolvable)
//  .loginSessionDuration(java.lang.Number)
//  .loginSessionDuration(IResolvable)
    .build();

Properties

Name	Type	Description
`allowUserToChangePassword`	`java.lang.Boolean OR com.aliyun.ros.cdk.core.IResolvable`	Property allowUserToChangePassword: Specifies whether RAM users can change their passwords.
`allowUserToManageAccessKeys`	`java.lang.Boolean OR com.aliyun.ros.cdk.core.IResolvable`	Property allowUserToManageAccessKeys: Specifies whether RAM users can manage their AccessKey pairs.
`allowUserToManageMfaDevices`	`java.lang.Boolean OR com.aliyun.ros.cdk.core.IResolvable`	Property allowUserToManageMfaDevices: Specifies whether RAM users can manage their MFA devices.
`allowUserToManagePublicKeys`	`java.lang.Boolean OR com.aliyun.ros.cdk.core.IResolvable`	Property allowUserToManagePublicKeys: Specifies whether RAM users can manage their public keys.
`enableSaveMfaTicket`	`java.lang.Boolean OR com.aliyun.ros.cdk.core.IResolvable`	Property enableSaveMfaTicket: Specifies whether RAM users can save multi-factor authentication (MFA) security codes during logon.
`loginNetworkMasks`	`java.lang.String OR com.aliyun.ros.cdk.core.IResolvable`	Property loginNetworkMasks: The subnet mask that specifies the IP addresses from which logon to the console is allowed.
`loginSessionDuration`	`java.lang.Number OR com.aliyun.ros.cdk.core.IResolvable`	Property loginSessionDuration: The validity period of the logon session of the RAM user.

`allowUserToChangePassword`^Optional

public java.lang.Object getAllowUserToChangePassword();

Type: java.lang.Boolean OR com.aliyun.ros.cdk.core.IResolvable

Property allowUserToChangePassword: Specifies whether RAM users can change their passwords.

Valid values: true: RAM users can change their passwords. This is the default value. false: RAM users cannot change their passwords.

`allowUserToManageAccessKeys`^Optional

public java.lang.Object getAllowUserToManageAccessKeys();

Type: java.lang.Boolean OR com.aliyun.ros.cdk.core.IResolvable

Property allowUserToManageAccessKeys: Specifies whether RAM users can manage their AccessKey pairs.

Valid values: true: RAM users can manage their AccessKey pairs. false: RAM users cannot manage their AccessKey pairs. This is the default value.

`allowUserToManageMfaDevices`^Optional

public java.lang.Object getAllowUserToManageMfaDevices();

Type: java.lang.Boolean OR com.aliyun.ros.cdk.core.IResolvable

Property allowUserToManageMfaDevices: Specifies whether RAM users can manage their MFA devices.

Valid values: true: RAM users can manage their MFA devices. This is the default value. false: RAM users cannot manage their MFA devices.

`allowUserToManagePublicKeys`^Optional

public java.lang.Object getAllowUserToManagePublicKeys();

Type: java.lang.Boolean OR com.aliyun.ros.cdk.core.IResolvable

Property allowUserToManagePublicKeys: Specifies whether RAM users can manage their public keys.

Valid values: true: RAM users can manage their public keys. false: RAM users cannot manage their public keys. This is the default value. Note This parameter is valid only for the Japan site.

`enableSaveMfaTicket`^Optional

public java.lang.Object getEnableSaveMfaTicket();

Type: java.lang.Boolean OR com.aliyun.ros.cdk.core.IResolvable

Property enableSaveMfaTicket: Specifies whether RAM users can save multi-factor authentication (MFA) security codes during logon.

The security codes are valid for 7 days. Valid values: true: RAM users can save MFA security codes during logon. false: RAM users cannot save MFA security codes during logon. This is the default value.

`loginNetworkMasks`^Optional

public java.lang.Object getLoginNetworkMasks();

Type: java.lang.String OR com.aliyun.ros.cdk.core.IResolvable

Property loginNetworkMasks: The subnet mask that specifies the IP addresses from which logon to the console is allowed.

This parameter applies to password-based logon and single sign-on (SSO). However, this parameter does not apply to API calls that are authenticated based on AccessKey pairs. If a subnet mask is specified, RAM users can log on to the console only by using the IP addresses in the subnet. If you do not specify a subnet mask, RAM users can log on to the console by using all IP addresses. If you want to specify multiple subnet masks, separate the subnet masks with semicolons (;). Example: 192.168.0.0/16;10.0.0.0/8. A maximum of 25 subnet masks can be set. The total length of the subnet masks can be 1 to 512 characters.

`loginSessionDuration`^Optional

public java.lang.Object getLoginSessionDuration();

Type: java.lang.Number OR com.aliyun.ros.cdk.core.IResolvable

Property loginSessionDuration: The validity period of the logon session of the RAM user.

Valid values: 6 to 24. Default value: 6. Unit: hours.

SecurityPreferenceProps

Initializer

Properties

allowUserToChangePasswordOptional

allowUserToManageAccessKeysOptional

allowUserToManageMfaDevicesOptional

allowUserToManagePublicKeysOptional

enableSaveMfaTicketOptional

loginNetworkMasksOptional

loginSessionDurationOptional