aws.elb.SslNegotiationPolicy
Explore with Pulumi AI
Provides a load balancer SSL negotiation policy, which allows an ELB to control the ciphers and protocols that are supported during SSL negotiations between a client and a load balancer.
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as aws from "@pulumi/aws";
const lb = new aws.elb.LoadBalancer("lb", {
name: "test-lb",
availabilityZones: ["us-east-1a"],
listeners: [{
instancePort: 8000,
instanceProtocol: "https",
lbPort: 443,
lbProtocol: "https",
sslCertificateId: "arn:aws:iam::123456789012:server-certificate/certName",
}],
});
const foo = new aws.elb.SslNegotiationPolicy("foo", {
name: "foo-policy",
loadBalancer: lb.id,
lbPort: 443,
attributes: [
{
name: "Protocol-TLSv1",
value: "false",
},
{
name: "Protocol-TLSv1.1",
value: "false",
},
{
name: "Protocol-TLSv1.2",
value: "true",
},
{
name: "Server-Defined-Cipher-Order",
value: "true",
},
{
name: "ECDHE-RSA-AES128-GCM-SHA256",
value: "true",
},
{
name: "AES128-GCM-SHA256",
value: "true",
},
{
name: "EDH-RSA-DES-CBC3-SHA",
value: "false",
},
],
});
import pulumi
import pulumi_aws as aws
lb = aws.elb.LoadBalancer("lb",
name="test-lb",
availability_zones=["us-east-1a"],
listeners=[{
"instance_port": 8000,
"instance_protocol": "https",
"lb_port": 443,
"lb_protocol": "https",
"ssl_certificate_id": "arn:aws:iam::123456789012:server-certificate/certName",
}])
foo = aws.elb.SslNegotiationPolicy("foo",
name="foo-policy",
load_balancer=lb.id,
lb_port=443,
attributes=[
{
"name": "Protocol-TLSv1",
"value": "false",
},
{
"name": "Protocol-TLSv1.1",
"value": "false",
},
{
"name": "Protocol-TLSv1.2",
"value": "true",
},
{
"name": "Server-Defined-Cipher-Order",
"value": "true",
},
{
"name": "ECDHE-RSA-AES128-GCM-SHA256",
"value": "true",
},
{
"name": "AES128-GCM-SHA256",
"value": "true",
},
{
"name": "EDH-RSA-DES-CBC3-SHA",
"value": "false",
},
])
package main
import (
"github.com/pulumi/pulumi-aws/sdk/v6/go/aws/elb"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
lb, err := elb.NewLoadBalancer(ctx, "lb", &elb.LoadBalancerArgs{
Name: pulumi.String("test-lb"),
AvailabilityZones: pulumi.StringArray{
pulumi.String("us-east-1a"),
},
Listeners: elb.LoadBalancerListenerArray{
&elb.LoadBalancerListenerArgs{
InstancePort: pulumi.Int(8000),
InstanceProtocol: pulumi.String("https"),
LbPort: pulumi.Int(443),
LbProtocol: pulumi.String("https"),
SslCertificateId: pulumi.String("arn:aws:iam::123456789012:server-certificate/certName"),
},
},
})
if err != nil {
return err
}
_, err = elb.NewSslNegotiationPolicy(ctx, "foo", &elb.SslNegotiationPolicyArgs{
Name: pulumi.String("foo-policy"),
LoadBalancer: lb.ID(),
LbPort: pulumi.Int(443),
Attributes: elb.SslNegotiationPolicyAttributeArray{
&elb.SslNegotiationPolicyAttributeArgs{
Name: pulumi.String("Protocol-TLSv1"),
Value: pulumi.String("false"),
},
&elb.SslNegotiationPolicyAttributeArgs{
Name: pulumi.String("Protocol-TLSv1.1"),
Value: pulumi.String("false"),
},
&elb.SslNegotiationPolicyAttributeArgs{
Name: pulumi.String("Protocol-TLSv1.2"),
Value: pulumi.String("true"),
},
&elb.SslNegotiationPolicyAttributeArgs{
Name: pulumi.String("Server-Defined-Cipher-Order"),
Value: pulumi.String("true"),
},
&elb.SslNegotiationPolicyAttributeArgs{
Name: pulumi.String("ECDHE-RSA-AES128-GCM-SHA256"),
Value: pulumi.String("true"),
},
&elb.SslNegotiationPolicyAttributeArgs{
Name: pulumi.String("AES128-GCM-SHA256"),
Value: pulumi.String("true"),
},
&elb.SslNegotiationPolicyAttributeArgs{
Name: pulumi.String("EDH-RSA-DES-CBC3-SHA"),
Value: pulumi.String("false"),
},
},
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Aws = Pulumi.Aws;
return await Deployment.RunAsync(() =>
{
var lb = new Aws.Elb.LoadBalancer("lb", new()
{
Name = "test-lb",
AvailabilityZones = new[]
{
"us-east-1a",
},
Listeners = new[]
{
new Aws.Elb.Inputs.LoadBalancerListenerArgs
{
InstancePort = 8000,
InstanceProtocol = "https",
LbPort = 443,
LbProtocol = "https",
SslCertificateId = "arn:aws:iam::123456789012:server-certificate/certName",
},
},
});
var foo = new Aws.Elb.SslNegotiationPolicy("foo", new()
{
Name = "foo-policy",
LoadBalancer = lb.Id,
LbPort = 443,
Attributes = new[]
{
new Aws.Elb.Inputs.SslNegotiationPolicyAttributeArgs
{
Name = "Protocol-TLSv1",
Value = "false",
},
new Aws.Elb.Inputs.SslNegotiationPolicyAttributeArgs
{
Name = "Protocol-TLSv1.1",
Value = "false",
},
new Aws.Elb.Inputs.SslNegotiationPolicyAttributeArgs
{
Name = "Protocol-TLSv1.2",
Value = "true",
},
new Aws.Elb.Inputs.SslNegotiationPolicyAttributeArgs
{
Name = "Server-Defined-Cipher-Order",
Value = "true",
},
new Aws.Elb.Inputs.SslNegotiationPolicyAttributeArgs
{
Name = "ECDHE-RSA-AES128-GCM-SHA256",
Value = "true",
},
new Aws.Elb.Inputs.SslNegotiationPolicyAttributeArgs
{
Name = "AES128-GCM-SHA256",
Value = "true",
},
new Aws.Elb.Inputs.SslNegotiationPolicyAttributeArgs
{
Name = "EDH-RSA-DES-CBC3-SHA",
Value = "false",
},
},
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.aws.elb.LoadBalancer;
import com.pulumi.aws.elb.LoadBalancerArgs;
import com.pulumi.aws.elb.inputs.LoadBalancerListenerArgs;
import com.pulumi.aws.elb.SslNegotiationPolicy;
import com.pulumi.aws.elb.SslNegotiationPolicyArgs;
import com.pulumi.aws.elb.inputs.SslNegotiationPolicyAttributeArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var lb = new LoadBalancer("lb", LoadBalancerArgs.builder()
.name("test-lb")
.availabilityZones("us-east-1a")
.listeners(LoadBalancerListenerArgs.builder()
.instancePort(8000)
.instanceProtocol("https")
.lbPort(443)
.lbProtocol("https")
.sslCertificateId("arn:aws:iam::123456789012:server-certificate/certName")
.build())
.build());
var foo = new SslNegotiationPolicy("foo", SslNegotiationPolicyArgs.builder()
.name("foo-policy")
.loadBalancer(lb.id())
.lbPort(443)
.attributes(
SslNegotiationPolicyAttributeArgs.builder()
.name("Protocol-TLSv1")
.value("false")
.build(),
SslNegotiationPolicyAttributeArgs.builder()
.name("Protocol-TLSv1.1")
.value("false")
.build(),
SslNegotiationPolicyAttributeArgs.builder()
.name("Protocol-TLSv1.2")
.value("true")
.build(),
SslNegotiationPolicyAttributeArgs.builder()
.name("Server-Defined-Cipher-Order")
.value("true")
.build(),
SslNegotiationPolicyAttributeArgs.builder()
.name("ECDHE-RSA-AES128-GCM-SHA256")
.value("true")
.build(),
SslNegotiationPolicyAttributeArgs.builder()
.name("AES128-GCM-SHA256")
.value("true")
.build(),
SslNegotiationPolicyAttributeArgs.builder()
.name("EDH-RSA-DES-CBC3-SHA")
.value("false")
.build())
.build());
}
}
resources:
lb:
type: aws:elb:LoadBalancer
properties:
name: test-lb
availabilityZones:
- us-east-1a
listeners:
- instancePort: 8000
instanceProtocol: https
lbPort: 443
lbProtocol: https
sslCertificateId: arn:aws:iam::123456789012:server-certificate/certName
foo:
type: aws:elb:SslNegotiationPolicy
properties:
name: foo-policy
loadBalancer: ${lb.id}
lbPort: 443
attributes:
- name: Protocol-TLSv1
value: 'false'
- name: Protocol-TLSv1.1
value: 'false'
- name: Protocol-TLSv1.2
value: 'true'
- name: Server-Defined-Cipher-Order
value: 'true'
- name: ECDHE-RSA-AES128-GCM-SHA256
value: 'true'
- name: AES128-GCM-SHA256
value: 'true'
- name: EDH-RSA-DES-CBC3-SHA
value: 'false'
Create SslNegotiationPolicy Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new SslNegotiationPolicy(name: string, args: SslNegotiationPolicyArgs, opts?: CustomResourceOptions);
@overload
def SslNegotiationPolicy(resource_name: str,
args: SslNegotiationPolicyArgs,
opts: Optional[ResourceOptions] = None)
@overload
def SslNegotiationPolicy(resource_name: str,
opts: Optional[ResourceOptions] = None,
lb_port: Optional[int] = None,
load_balancer: Optional[str] = None,
attributes: Optional[Sequence[SslNegotiationPolicyAttributeArgs]] = None,
name: Optional[str] = None,
triggers: Optional[Mapping[str, str]] = None)
func NewSslNegotiationPolicy(ctx *Context, name string, args SslNegotiationPolicyArgs, opts ...ResourceOption) (*SslNegotiationPolicy, error)
public SslNegotiationPolicy(string name, SslNegotiationPolicyArgs args, CustomResourceOptions? opts = null)
public SslNegotiationPolicy(String name, SslNegotiationPolicyArgs args)
public SslNegotiationPolicy(String name, SslNegotiationPolicyArgs args, CustomResourceOptions options)
type: aws:elb:SslNegotiationPolicy
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args SslNegotiationPolicyArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args SslNegotiationPolicyArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args SslNegotiationPolicyArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args SslNegotiationPolicyArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args SslNegotiationPolicyArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var sslNegotiationPolicyResource = new Aws.Elb.SslNegotiationPolicy("sslNegotiationPolicyResource", new()
{
LbPort = 0,
LoadBalancer = "string",
Attributes = new[]
{
new Aws.Elb.Inputs.SslNegotiationPolicyAttributeArgs
{
Name = "string",
Value = "string",
},
},
Name = "string",
Triggers =
{
{ "string", "string" },
},
});
example, err := elb.NewSslNegotiationPolicy(ctx, "sslNegotiationPolicyResource", &elb.SslNegotiationPolicyArgs{
LbPort: pulumi.Int(0),
LoadBalancer: pulumi.String("string"),
Attributes: elb.SslNegotiationPolicyAttributeArray{
&elb.SslNegotiationPolicyAttributeArgs{
Name: pulumi.String("string"),
Value: pulumi.String("string"),
},
},
Name: pulumi.String("string"),
Triggers: pulumi.StringMap{
"string": pulumi.String("string"),
},
})
var sslNegotiationPolicyResource = new SslNegotiationPolicy("sslNegotiationPolicyResource", SslNegotiationPolicyArgs.builder()
.lbPort(0)
.loadBalancer("string")
.attributes(SslNegotiationPolicyAttributeArgs.builder()
.name("string")
.value("string")
.build())
.name("string")
.triggers(Map.of("string", "string"))
.build());
ssl_negotiation_policy_resource = aws.elb.SslNegotiationPolicy("sslNegotiationPolicyResource",
lb_port=0,
load_balancer="string",
attributes=[{
"name": "string",
"value": "string",
}],
name="string",
triggers={
"string": "string",
})
const sslNegotiationPolicyResource = new aws.elb.SslNegotiationPolicy("sslNegotiationPolicyResource", {
lbPort: 0,
loadBalancer: "string",
attributes: [{
name: "string",
value: "string",
}],
name: "string",
triggers: {
string: "string",
},
});
type: aws:elb:SslNegotiationPolicy
properties:
attributes:
- name: string
value: string
lbPort: 0
loadBalancer: string
name: string
triggers:
string: string
SslNegotiationPolicy Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The SslNegotiationPolicy resource accepts the following input properties:
- Lb
Port int - The load balancer port to which the policy should be applied. This must be an active listener on the load balancer.
- Load
Balancer string - The load balancer to which the policy should be attached.
- Attributes
List<Ssl
Negotiation Policy Attribute> - An SSL Negotiation policy attribute. Each has two properties:
- Name string
- The name of the SSL negotiation policy.
- Triggers Dictionary<string, string>
Map of arbitrary keys and values that, when changed, will trigger a redeployment.
To set your attributes, please see the AWS Elastic Load Balancing Developer Guide for a listing of the supported SSL protocols, SSL options, and SSL ciphers.
NOTE: The AWS documentation references Server Order Preference, which the AWS Elastic Load Balancing API refers to as
Server-Defined-Cipher-Order
. If you wish to set Server Order Preference, use this value instead.
- Lb
Port int - The load balancer port to which the policy should be applied. This must be an active listener on the load balancer.
- Load
Balancer string - The load balancer to which the policy should be attached.
- Attributes
[]Ssl
Negotiation Policy Attribute Args - An SSL Negotiation policy attribute. Each has two properties:
- Name string
- The name of the SSL negotiation policy.
- Triggers map[string]string
Map of arbitrary keys and values that, when changed, will trigger a redeployment.
To set your attributes, please see the AWS Elastic Load Balancing Developer Guide for a listing of the supported SSL protocols, SSL options, and SSL ciphers.
NOTE: The AWS documentation references Server Order Preference, which the AWS Elastic Load Balancing API refers to as
Server-Defined-Cipher-Order
. If you wish to set Server Order Preference, use this value instead.
- lb
Port Integer - The load balancer port to which the policy should be applied. This must be an active listener on the load balancer.
- load
Balancer String - The load balancer to which the policy should be attached.
- attributes
List<Ssl
Negotiation Policy Attribute> - An SSL Negotiation policy attribute. Each has two properties:
- name String
- The name of the SSL negotiation policy.
- triggers Map<String,String>
Map of arbitrary keys and values that, when changed, will trigger a redeployment.
To set your attributes, please see the AWS Elastic Load Balancing Developer Guide for a listing of the supported SSL protocols, SSL options, and SSL ciphers.
NOTE: The AWS documentation references Server Order Preference, which the AWS Elastic Load Balancing API refers to as
Server-Defined-Cipher-Order
. If you wish to set Server Order Preference, use this value instead.
- lb
Port number - The load balancer port to which the policy should be applied. This must be an active listener on the load balancer.
- load
Balancer string - The load balancer to which the policy should be attached.
- attributes
Ssl
Negotiation Policy Attribute[] - An SSL Negotiation policy attribute. Each has two properties:
- name string
- The name of the SSL negotiation policy.
- triggers {[key: string]: string}
Map of arbitrary keys and values that, when changed, will trigger a redeployment.
To set your attributes, please see the AWS Elastic Load Balancing Developer Guide for a listing of the supported SSL protocols, SSL options, and SSL ciphers.
NOTE: The AWS documentation references Server Order Preference, which the AWS Elastic Load Balancing API refers to as
Server-Defined-Cipher-Order
. If you wish to set Server Order Preference, use this value instead.
- lb_
port int - The load balancer port to which the policy should be applied. This must be an active listener on the load balancer.
- load_
balancer str - The load balancer to which the policy should be attached.
- attributes
Sequence[Ssl
Negotiation Policy Attribute Args] - An SSL Negotiation policy attribute. Each has two properties:
- name str
- The name of the SSL negotiation policy.
- triggers Mapping[str, str]
Map of arbitrary keys and values that, when changed, will trigger a redeployment.
To set your attributes, please see the AWS Elastic Load Balancing Developer Guide for a listing of the supported SSL protocols, SSL options, and SSL ciphers.
NOTE: The AWS documentation references Server Order Preference, which the AWS Elastic Load Balancing API refers to as
Server-Defined-Cipher-Order
. If you wish to set Server Order Preference, use this value instead.
- lb
Port Number - The load balancer port to which the policy should be applied. This must be an active listener on the load balancer.
- load
Balancer String - The load balancer to which the policy should be attached.
- attributes List<Property Map>
- An SSL Negotiation policy attribute. Each has two properties:
- name String
- The name of the SSL negotiation policy.
- triggers Map<String>
Map of arbitrary keys and values that, when changed, will trigger a redeployment.
To set your attributes, please see the AWS Elastic Load Balancing Developer Guide for a listing of the supported SSL protocols, SSL options, and SSL ciphers.
NOTE: The AWS documentation references Server Order Preference, which the AWS Elastic Load Balancing API refers to as
Server-Defined-Cipher-Order
. If you wish to set Server Order Preference, use this value instead.
Outputs
All input properties are implicitly available as output properties. Additionally, the SslNegotiationPolicy resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Id string
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id str
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
Look up Existing SslNegotiationPolicy Resource
Get an existing SslNegotiationPolicy resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: SslNegotiationPolicyState, opts?: CustomResourceOptions): SslNegotiationPolicy
@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
attributes: Optional[Sequence[SslNegotiationPolicyAttributeArgs]] = None,
lb_port: Optional[int] = None,
load_balancer: Optional[str] = None,
name: Optional[str] = None,
triggers: Optional[Mapping[str, str]] = None) -> SslNegotiationPolicy
func GetSslNegotiationPolicy(ctx *Context, name string, id IDInput, state *SslNegotiationPolicyState, opts ...ResourceOption) (*SslNegotiationPolicy, error)
public static SslNegotiationPolicy Get(string name, Input<string> id, SslNegotiationPolicyState? state, CustomResourceOptions? opts = null)
public static SslNegotiationPolicy get(String name, Output<String> id, SslNegotiationPolicyState state, CustomResourceOptions options)
Resource lookup is not supported in YAML
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Attributes
List<Ssl
Negotiation Policy Attribute> - An SSL Negotiation policy attribute. Each has two properties:
- Lb
Port int - The load balancer port to which the policy should be applied. This must be an active listener on the load balancer.
- Load
Balancer string - The load balancer to which the policy should be attached.
- Name string
- The name of the SSL negotiation policy.
- Triggers Dictionary<string, string>
Map of arbitrary keys and values that, when changed, will trigger a redeployment.
To set your attributes, please see the AWS Elastic Load Balancing Developer Guide for a listing of the supported SSL protocols, SSL options, and SSL ciphers.
NOTE: The AWS documentation references Server Order Preference, which the AWS Elastic Load Balancing API refers to as
Server-Defined-Cipher-Order
. If you wish to set Server Order Preference, use this value instead.
- Attributes
[]Ssl
Negotiation Policy Attribute Args - An SSL Negotiation policy attribute. Each has two properties:
- Lb
Port int - The load balancer port to which the policy should be applied. This must be an active listener on the load balancer.
- Load
Balancer string - The load balancer to which the policy should be attached.
- Name string
- The name of the SSL negotiation policy.
- Triggers map[string]string
Map of arbitrary keys and values that, when changed, will trigger a redeployment.
To set your attributes, please see the AWS Elastic Load Balancing Developer Guide for a listing of the supported SSL protocols, SSL options, and SSL ciphers.
NOTE: The AWS documentation references Server Order Preference, which the AWS Elastic Load Balancing API refers to as
Server-Defined-Cipher-Order
. If you wish to set Server Order Preference, use this value instead.
- attributes
List<Ssl
Negotiation Policy Attribute> - An SSL Negotiation policy attribute. Each has two properties:
- lb
Port Integer - The load balancer port to which the policy should be applied. This must be an active listener on the load balancer.
- load
Balancer String - The load balancer to which the policy should be attached.
- name String
- The name of the SSL negotiation policy.
- triggers Map<String,String>
Map of arbitrary keys and values that, when changed, will trigger a redeployment.
To set your attributes, please see the AWS Elastic Load Balancing Developer Guide for a listing of the supported SSL protocols, SSL options, and SSL ciphers.
NOTE: The AWS documentation references Server Order Preference, which the AWS Elastic Load Balancing API refers to as
Server-Defined-Cipher-Order
. If you wish to set Server Order Preference, use this value instead.
- attributes
Ssl
Negotiation Policy Attribute[] - An SSL Negotiation policy attribute. Each has two properties:
- lb
Port number - The load balancer port to which the policy should be applied. This must be an active listener on the load balancer.
- load
Balancer string - The load balancer to which the policy should be attached.
- name string
- The name of the SSL negotiation policy.
- triggers {[key: string]: string}
Map of arbitrary keys and values that, when changed, will trigger a redeployment.
To set your attributes, please see the AWS Elastic Load Balancing Developer Guide for a listing of the supported SSL protocols, SSL options, and SSL ciphers.
NOTE: The AWS documentation references Server Order Preference, which the AWS Elastic Load Balancing API refers to as
Server-Defined-Cipher-Order
. If you wish to set Server Order Preference, use this value instead.
- attributes
Sequence[Ssl
Negotiation Policy Attribute Args] - An SSL Negotiation policy attribute. Each has two properties:
- lb_
port int - The load balancer port to which the policy should be applied. This must be an active listener on the load balancer.
- load_
balancer str - The load balancer to which the policy should be attached.
- name str
- The name of the SSL negotiation policy.
- triggers Mapping[str, str]
Map of arbitrary keys and values that, when changed, will trigger a redeployment.
To set your attributes, please see the AWS Elastic Load Balancing Developer Guide for a listing of the supported SSL protocols, SSL options, and SSL ciphers.
NOTE: The AWS documentation references Server Order Preference, which the AWS Elastic Load Balancing API refers to as
Server-Defined-Cipher-Order
. If you wish to set Server Order Preference, use this value instead.
- attributes List<Property Map>
- An SSL Negotiation policy attribute. Each has two properties:
- lb
Port Number - The load balancer port to which the policy should be applied. This must be an active listener on the load balancer.
- load
Balancer String - The load balancer to which the policy should be attached.
- name String
- The name of the SSL negotiation policy.
- triggers Map<String>
Map of arbitrary keys and values that, when changed, will trigger a redeployment.
To set your attributes, please see the AWS Elastic Load Balancing Developer Guide for a listing of the supported SSL protocols, SSL options, and SSL ciphers.
NOTE: The AWS documentation references Server Order Preference, which the AWS Elastic Load Balancing API refers to as
Server-Defined-Cipher-Order
. If you wish to set Server Order Preference, use this value instead.
Supporting Types
SslNegotiationPolicyAttribute, SslNegotiationPolicyAttributeArgs
Package Details
- Repository
- AWS Classic pulumi/pulumi-aws
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
aws
Terraform Provider.