authMethodCreateAzureAD is a command that creates a new auth method that will be able to authenticate using Azure Active Directory credentials.
| Name | Type | Description | Notes |
|---|---|---|---|
| AccessExpires | long | Access expiration date in Unix timestamp (select 0 for access without expiry date) | [optional] [default to 0] |
| Audience | string | Deprecated (Deprecated) The audience in the JWT | [optional] [default to "https://management.azure.com/"] |
| AuditLogsClaims | List<string> | Subclaims to include in audit logs, e.g "- -audit-logs-claims email - -audit-logs-claims username" | [optional] |
| BoundGroupId | List<string> | A list of group ids that the access is restricted to | [optional] |
| BoundIps | List<string> | A CIDR whitelist with the IPs that the access is restricted to | [optional] |
| BoundProviders | List<string> | A list of resource providers that the access is restricted to (e.g, Microsoft.Compute, Microsoft.ManagedIdentity, etc) | [optional] |
| BoundResourceId | List<string> | A list of full resource ids that the access is restricted to | [optional] |
| BoundResourceNames | List<string> | A list of resource names that the access is restricted to (e.g, a virtual machine name, scale set name, etc). | [optional] |
| BoundResourceTypes | List<string> | A list of resource types that the access is restricted to (e.g, virtualMachines, userAssignedIdentities, etc) | [optional] |
| BoundRgId | List<string> | A list of resource groups that the access is restricted to | [optional] |
| BoundSpid | List<string> | A list of service principal IDs that the access is restricted to | [optional] |
| BoundSubId | List<string> | A list of subscription ids that the access is restricted to | [optional] |
| BoundTenantId | string | The Azure tenant id that the access is restricted to | |
| DeleteProtection | string | Protection from accidental deletion of this object [true/false] | [optional] |
| Description | string | Auth Method description | [optional] |
| ForceSubClaims | bool | if true: enforce role-association must include sub claims | [optional] |
| GwBoundIps | List<string> | A CIDR whitelist with the GW IPs that the access is restricted to | [optional] |
| Issuer | string | Issuer URL | [optional] [default to "https://sts.windows.net/---bound_tenant_id---"] |
| Json | bool | Set output format to JSON | [optional] [default to false] |
| JwksUri | string | The URL to the JSON Web Key Set (JWKS) that containing the public keys that should be used to verify any JSON Web Token (JWT) issued by the authorization server. | [optional] [default to "https://login.microsoftonline.com/common/discovery/keys"] |
| JwtTtl | long | Jwt TTL | [optional] [default to 0] |
| Name | string | Auth Method name | |
| ProductType | List<string> | Choose the relevant product type for the auth method [sm, sra, pm, dp, ca] | [optional] |
| Token | string | Authentication token (see `/auth` and `/configure`) | [optional] |
| UidToken | string | The universal identity token, Required only for universal_identity authentication | [optional] |
| UniqueIdentifier | string | A unique identifier (ID) value which is a "sub claim" name that contains details uniquely identifying that resource. This "sub claim" is used to distinguish between different identities. | [optional] |