feat(client-pca-connector-ad): PrivateCA Connector for Active Directory now supports dual stack endpoints. This release adds the IpAddressType option to the VpcInformation on a Connector which determines whether the endpoint supports IPv4 only or IPv4 and IPv6 traffic.

Author: awstools

clients/client-pca-connector-ad/src/commands/CreateConnectorCommand.ts

@@ -40,6 +40,7 @@ export interface CreateConnectorCommandOutput extends CreateConnectorResponse, _
  *   DirectoryId: "STRING_VALUE", // required
  *   CertificateAuthorityArn: "STRING_VALUE", // required
  *   VpcInformation: { // VpcInformation
+ *     IpAddressType: "IPV4" || "DUALSTACK",
  *     SecurityGroupIds: [ // SecurityGroupIdList // required
  *       "STRING_VALUE",
  *     ],

clients/client-pca-connector-ad/src/commands/GetConnectorCommand.ts

@@ -48,12 +48,13 @@ export interface GetConnectorCommandOutput extends GetConnectorResponse, __Metad
  * //     CertificateEnrollmentPolicyServerEndpoint: "STRING_VALUE",
  * //     DirectoryId: "STRING_VALUE",
  * //     VpcInformation: { // VpcInformation
+ * //       IpAddressType: "IPV4" || "DUALSTACK",
  * //       SecurityGroupIds: [ // SecurityGroupIdList // required
  * //         "STRING_VALUE",
  * //       ],
  * //     },
  * //     Status: "CREATING" || "ACTIVE" || "DELETING" || "FAILED",
- * //     StatusReason: "DIRECTORY_ACCESS_DENIED" || "INTERNAL_FAILURE" || "PRIVATECA_ACCESS_DENIED" || "PRIVATECA_RESOURCE_NOT_FOUND" || "SECURITY_GROUP_NOT_IN_VPC" || "VPC_ACCESS_DENIED" || "VPC_ENDPOINT_LIMIT_EXCEEDED" || "VPC_RESOURCE_NOT_FOUND",
+ * //     StatusReason: "CA_CERTIFICATE_REGISTRATION_FAILED" || "DIRECTORY_ACCESS_DENIED" || "INTERNAL_FAILURE" || "INSUFFICIENT_FREE_ADDRESSES" || "INVALID_SUBNET_IP_PROTOCOL" || "PRIVATECA_ACCESS_DENIED" || "PRIVATECA_RESOURCE_NOT_FOUND" || "SECURITY_GROUP_NOT_IN_VPC" || "VPC_ACCESS_DENIED" || "VPC_ENDPOINT_LIMIT_EXCEEDED" || "VPC_RESOURCE_NOT_FOUND",
  * //     CreatedAt: new Date("TIMESTAMP"),
  * //     UpdatedAt: new Date("TIMESTAMP"),
  * //   },

clients/client-pca-connector-ad/src/commands/GetServicePrincipalNameCommand.ts

@@ -47,7 +47,7 @@ export interface GetServicePrincipalNameCommandOutput extends GetServicePrincipa
  * //     DirectoryRegistrationArn: "STRING_VALUE",
  * //     ConnectorArn: "STRING_VALUE",
  * //     Status: "CREATING" || "ACTIVE" || "DELETING" || "FAILED",
- * //     StatusReason: "DIRECTORY_ACCESS_DENIED" || "DIRECTORY_NOT_REACHABLE" || "DIRECTORY_RESOURCE_NOT_FOUND" || "SPN_EXISTS_ON_DIFFERENT_AD_OBJECT" || "INTERNAL_FAILURE",
+ * //     StatusReason: "DIRECTORY_ACCESS_DENIED" || "DIRECTORY_NOT_REACHABLE" || "DIRECTORY_RESOURCE_NOT_FOUND" || "SPN_EXISTS_ON_DIFFERENT_AD_OBJECT" || "SPN_LIMIT_EXCEEDED" || "INTERNAL_FAILURE",
  * //     CreatedAt: new Date("TIMESTAMP"),
  * //     UpdatedAt: new Date("TIMESTAMP"),
  * //   },

clients/client-pca-connector-ad/src/commands/ListConnectorsCommand.ts

@@ -49,12 +49,13 @@ export interface ListConnectorsCommandOutput extends ListConnectorsResponse, __M
  * //       CertificateEnrollmentPolicyServerEndpoint: "STRING_VALUE",
  * //       DirectoryId: "STRING_VALUE",
  * //       VpcInformation: { // VpcInformation
+ * //         IpAddressType: "IPV4" || "DUALSTACK",
  * //         SecurityGroupIds: [ // SecurityGroupIdList // required
  * //           "STRING_VALUE",
  * //         ],
  * //       },
  * //       Status: "CREATING" || "ACTIVE" || "DELETING" || "FAILED",
- * //       StatusReason: "DIRECTORY_ACCESS_DENIED" || "INTERNAL_FAILURE" || "PRIVATECA_ACCESS_DENIED" || "PRIVATECA_RESOURCE_NOT_FOUND" || "SECURITY_GROUP_NOT_IN_VPC" || "VPC_ACCESS_DENIED" || "VPC_ENDPOINT_LIMIT_EXCEEDED" || "VPC_RESOURCE_NOT_FOUND",
+ * //       StatusReason: "CA_CERTIFICATE_REGISTRATION_FAILED" || "DIRECTORY_ACCESS_DENIED" || "INTERNAL_FAILURE" || "INSUFFICIENT_FREE_ADDRESSES" || "INVALID_SUBNET_IP_PROTOCOL" || "PRIVATECA_ACCESS_DENIED" || "PRIVATECA_RESOURCE_NOT_FOUND" || "SECURITY_GROUP_NOT_IN_VPC" || "VPC_ACCESS_DENIED" || "VPC_ENDPOINT_LIMIT_EXCEEDED" || "VPC_RESOURCE_NOT_FOUND",
  * //       CreatedAt: new Date("TIMESTAMP"),
  * //       UpdatedAt: new Date("TIMESTAMP"),
  * //     },

clients/client-pca-connector-ad/src/commands/ListServicePrincipalNamesCommand.ts

@@ -49,7 +49,7 @@ export interface ListServicePrincipalNamesCommandOutput extends ListServicePrinc
  * //       DirectoryRegistrationArn: "STRING_VALUE",
  * //       ConnectorArn: "STRING_VALUE",
  * //       Status: "CREATING" || "ACTIVE" || "DELETING" || "FAILED",
- * //       StatusReason: "DIRECTORY_ACCESS_DENIED" || "DIRECTORY_NOT_REACHABLE" || "DIRECTORY_RESOURCE_NOT_FOUND" || "SPN_EXISTS_ON_DIFFERENT_AD_OBJECT" || "INTERNAL_FAILURE",
+ * //       StatusReason: "DIRECTORY_ACCESS_DENIED" || "DIRECTORY_NOT_REACHABLE" || "DIRECTORY_RESOURCE_NOT_FOUND" || "SPN_EXISTS_ON_DIFFERENT_AD_OBJECT" || "SPN_LIMIT_EXCEEDED" || "INTERNAL_FAILURE",
  * //       CreatedAt: new Date("TIMESTAMP"),
  * //       UpdatedAt: new Date("TIMESTAMP"),
  * //     },

clients/client-pca-connector-ad/src/models/models_0.ts

@@ -488,8 +488,11 @@ export type ConnectorStatus = (typeof ConnectorStatus)[keyof typeof ConnectorSta
  * @enum
  */
 export const ConnectorStatusReason = {
+  CA_CERTIFICATE_REGISTRATION_FAILED: "CA_CERTIFICATE_REGISTRATION_FAILED",
   DIRECTORY_ACCESS_DENIED: "DIRECTORY_ACCESS_DENIED",
+  INSUFFICIENT_FREE_ADDRESSES: "INSUFFICIENT_FREE_ADDRESSES",
   INTERNAL_FAILURE: "INTERNAL_FAILURE",
+  INVALID_SUBNET_IP_PROTOCOL: "INVALID_SUBNET_IP_PROTOCOL",
   PRIVATECA_ACCESS_DENIED: "PRIVATECA_ACCESS_DENIED",
   PRIVATECA_RESOURCE_NOT_FOUND: "PRIVATECA_RESOURCE_NOT_FOUND",
   SECURITY_GROUP_NOT_IN_VPC: "SECURITY_GROUP_NOT_IN_VPC",
@@ -503,11 +506,31 @@ export const ConnectorStatusReason = {
  */
 export type ConnectorStatusReason = (typeof ConnectorStatusReason)[keyof typeof ConnectorStatusReason];
 
+/**
+ * @public
+ * @enum
+ */
+export const IpAddressType = {
+  DUALSTACK: "DUALSTACK",
+  IPV4: "IPV4",
+} as const;
+
+/**
+ * @public
+ */
+export type IpAddressType = (typeof IpAddressType)[keyof typeof IpAddressType];
+
 /**
  * <p>Information about your VPC and security groups used with the connector.</p>
  * @public
  */
 export interface VpcInformation {
+  /**
+   * <p>The VPC IP address type.</p>
+   * @public
+   */
+  IpAddressType?: IpAddressType | undefined;
+
   /**
    * <p>The security groups used with the connector. You can use a maximum of 4 security groups
    *          with a connector.</p>
@@ -658,7 +681,7 @@ export interface CreateConnectorRequest {
   CertificateAuthorityArn: string | undefined;
 
   /**
-   * <p>Security group IDs that describe the inbound and outbound rules.</p>
+   * <p>Information about your VPC and security groups used with the connector.</p>
    * @public
    */
   VpcInformation: VpcInformation | undefined;
@@ -840,6 +863,7 @@ export class ThrottlingException extends __BaseException {
  */
 export const ValidationExceptionReason = {
   FIELD_VALIDATION_FAILED: "FIELD_VALIDATION_FAILED",
+  INVALID_CA_SUBJECT: "INVALID_CA_SUBJECT",
   INVALID_PERMISSION: "INVALID_PERMISSION",
   INVALID_STATE: "INVALID_STATE",
   MISMATCHED_CONNECTOR: "MISMATCHED_CONNECTOR",
@@ -2539,6 +2563,7 @@ export const ServicePrincipalNameStatusReason = {
   DIRECTORY_RESOURCE_NOT_FOUND: "DIRECTORY_RESOURCE_NOT_FOUND",
   INTERNAL_FAILURE: "INTERNAL_FAILURE",
   SPN_EXISTS_ON_DIFFERENT_AD_OBJECT: "SPN_EXISTS_ON_DIFFERENT_AD_OBJECT",
+  SPN_LIMIT_EXCEEDED: "SPN_LIMIT_EXCEEDED",
 } as const;
 
 /**

codegen/sdk-codegen/aws-models/pca-connector-ad.json

@@ -915,6 +915,12 @@
     "com.amazonaws.pcaconnectorad#ConnectorStatusReason": {
       "type": "enum",
       "members": {
+        "CA_CERTIFICATE_REGISTRATION_FAILED": {
+          "target": "smithy.api#Unit",
+          "traits": {
+            "smithy.api#enumValue": "CA_CERTIFICATE_REGISTRATION_FAILED"
+          }
+        },
         "DIRECTORY_ACCESS_DENIED": {
           "target": "smithy.api#Unit",
           "traits": {
@@ -927,6 +933,18 @@
             "smithy.api#enumValue": "INTERNAL_FAILURE"
           }
         },
+        "INSUFFICIENT_FREE_ADDRESSES": {
+          "target": "smithy.api#Unit",
+          "traits": {
+            "smithy.api#enumValue": "INSUFFICIENT_FREE_ADDRESSES"
+          }
+        },
+        "INVALID_SUBNET_IP_PROTOCOL": {
+          "target": "smithy.api#Unit",
+          "traits": {
+            "smithy.api#enumValue": "INVALID_SUBNET_IP_PROTOCOL"
+          }
+        },
         "PRIVATECA_ACCESS_DENIED": {
           "target": "smithy.api#Unit",
           "traits": {
@@ -1087,7 +1105,7 @@
         "VpcInformation": {
           "target": "com.amazonaws.pcaconnectorad#VpcInformation",
           "traits": {
-            "smithy.api#documentation": "<p>Security group IDs that describe the inbound and outbound rules.</p>",
+            "smithy.api#documentation": "<p>Information about your VPC and security groups used with the connector.</p>",
             "smithy.api#required": {}
           }
         },
@@ -2612,6 +2630,23 @@
         "smithy.api#retryable": {}
       }
     },
+    "com.amazonaws.pcaconnectorad#IpAddressType": {
+      "type": "enum",
+      "members": {
+        "IPV4": {
+          "target": "smithy.api#Unit",
+          "traits": {
+            "smithy.api#enumValue": "IPV4"
+          }
+        },
+        "DUALSTACK": {
+          "target": "smithy.api#Unit",
+          "traits": {
+            "smithy.api#enumValue": "DUALSTACK"
+          }
+        }
+      }
+    },
     "com.amazonaws.pcaconnectorad#KeySpec": {
       "type": "enum",
       "members": {
@@ -4426,6 +4461,12 @@
             "smithy.api#enumValue": "SPN_EXISTS_ON_DIFFERENT_AD_OBJECT"
           }
         },
+        "SPN_LIMIT_EXCEEDED": {
+          "target": "smithy.api#Unit",
+          "traits": {
+            "smithy.api#enumValue": "SPN_LIMIT_EXCEEDED"
+          }
+        },
         "INTERNAL_FAILURE": {
           "target": "smithy.api#Unit",
           "traits": {
@@ -5558,6 +5599,12 @@
             "smithy.api#enumValue": "FIELD_VALIDATION_FAILED"
           }
         },
+        "INVALID_CA_SUBJECT": {
+          "target": "smithy.api#Unit",
+          "traits": {
+            "smithy.api#enumValue": "INVALID_CA_SUBJECT"
+          }
+        },
         "INVALID_PERMISSION": {
           "target": "smithy.api#Unit",
           "traits": {
@@ -5666,6 +5713,12 @@
     "com.amazonaws.pcaconnectorad#VpcInformation": {
       "type": "structure",
       "members": {
+        "IpAddressType": {
+          "target": "com.amazonaws.pcaconnectorad#IpAddressType",
+          "traits": {
+            "smithy.api#documentation": "<p>The VPC IP address type.</p>"
+          }
+        },
         "SecurityGroupIds": {
           "target": "com.amazonaws.pcaconnectorad#SecurityGroupIdList",
           "traits": {