community.windows.win_rds_rap (2.2.0) — module

Install collection

Install with ansible-galaxy collection install community.windows:==2.2.0

Add to requirements.yml

  collections:
    - name: community.windows
      version: 2.2.0

Description

Creates, removes and configures a Remote Desktop resource authorization policy (RD RAP).

A RD RAP allows you to specify the network resources (computers) that users can connect to remotely through a Remote Desktop Gateway server.

Requirements

• Windows Server 2008R2 (6.1) or higher.
• The Windows Feature "RDS-Gateway" must be enabled.

Usage examples

Scanned by Steampunk Spotter

• Success
  Steampunk Spotter scan finished with no errors, warnings or hints.

- name: Create a new RDS RAP
  community.windows.win_rds_rap:
    name: My RAP
    description: Allow all users to connect to any resource through ports 3389 and 3390
    user_groups:
      - BUILTIN\users
    computer_group_type: allow_any
    allowed_ports:
      - 3389
      - 3390
    state: enabled

Inputs

    
name:
    description:
    - Name of the resource authorization policy.
    required: true

state:
    choices:
    - absent
    - disabled
    - enabled
    - present
    default: present
    description:
    - The state of resource authorization policy.
    - If C(absent) will ensure the policy is removed.
    - If C(present) will ensure the policy is configured and exists.
    - If C(enabled) will ensure the policy is configured, exists and enabled.
    - If C(disabled) will ensure the policy is configured, exists, but disabled.
    type: str

description:
    description:
    - Optional description of the resource authorization policy.
    type: str

user_groups:
    description:
    - List of user groups that are associated with this resource authorization policy
      (RAP). A user must belong to one of these groups to access the RD Gateway server.
    - Required when a new RAP is created.
    elements: str
    type: list

allowed_ports:
    description:
    - List of port numbers through which connections are allowed for this policy.
    - To allow connections through any port, specify 'any'.
    elements: str
    type: list

computer_group:
    description:
    - The computer group name that is associated with this resource authorization policy
      (RAP).
    - This is required when I(computer_group_type) is C(rdg_group) or C(ad_network_resource_group).
    type: str

computer_group_type:
    choices:
    - rdg_group
    - ad_network_resource_group
    - allow_any
    description:
    - 'The computer group type:'
    - 'C(rdg_group): RD Gateway-managed group'
    - 'C(ad_network_resource_group): Active Directory Domain Services network resource
      group'
    - 'C(allow_any): Allow users to connect to any network resource.'
    type: str

See also

• community.windows.win_rds_cap
• community.windows.win_rds_rap
• community.windows.win_rds_settings