azure-native.keyvault.ManagedHsm
Explore with Pulumi AI
Resource information with extended details. Azure REST API version: 2023-02-01. Prior API version in Azure Native 1.x: 2021-06-01-preview.
Other available API versions: 2023-07-01, 2024-04-01-preview.
Example Usage
Create a new managed HSM Pool or update an existing managed HSM Pool
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var managedHsm = new AzureNative.KeyVault.ManagedHsm("managedHsm", new()
{
Location = "westus",
Name = "hsm1",
Properties = new AzureNative.KeyVault.Inputs.ManagedHsmPropertiesArgs
{
EnablePurgeProtection = false,
EnableSoftDelete = true,
InitialAdminObjectIds = new[]
{
"00000000-0000-0000-0000-000000000000",
},
SoftDeleteRetentionInDays = 90,
TenantId = "00000000-0000-0000-0000-000000000000",
},
ResourceGroupName = "hsm-group",
Sku = new AzureNative.KeyVault.Inputs.ManagedHsmSkuArgs
{
Family = AzureNative.KeyVault.ManagedHsmSkuFamily.B,
Name = AzureNative.KeyVault.ManagedHsmSkuName.Standard_B1,
},
Tags =
{
{ "Dept", "hsm" },
{ "Environment", "dogfood" },
},
});
});
package main
import (
keyvault "github.com/pulumi/pulumi-azure-native-sdk/keyvault/v2"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := keyvault.NewManagedHsm(ctx, "managedHsm", &keyvault.ManagedHsmArgs{
Location: pulumi.String("westus"),
Name: pulumi.String("hsm1"),
Properties: &keyvault.ManagedHsmPropertiesArgs{
EnablePurgeProtection: pulumi.Bool(false),
EnableSoftDelete: pulumi.Bool(true),
InitialAdminObjectIds: pulumi.StringArray{
pulumi.String("00000000-0000-0000-0000-000000000000"),
},
SoftDeleteRetentionInDays: pulumi.Int(90),
TenantId: pulumi.String("00000000-0000-0000-0000-000000000000"),
},
ResourceGroupName: pulumi.String("hsm-group"),
Sku: &keyvault.ManagedHsmSkuArgs{
Family: pulumi.String(keyvault.ManagedHsmSkuFamilyB),
Name: keyvault.ManagedHsmSkuName_Standard_B1,
},
Tags: pulumi.StringMap{
"Dept": pulumi.String("hsm"),
"Environment": pulumi.String("dogfood"),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.keyvault.ManagedHsm;
import com.pulumi.azurenative.keyvault.ManagedHsmArgs;
import com.pulumi.azurenative.keyvault.inputs.ManagedHsmPropertiesArgs;
import com.pulumi.azurenative.keyvault.inputs.ManagedHsmSkuArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var managedHsm = new ManagedHsm("managedHsm", ManagedHsmArgs.builder()
.location("westus")
.name("hsm1")
.properties(ManagedHsmPropertiesArgs.builder()
.enablePurgeProtection(false)
.enableSoftDelete(true)
.initialAdminObjectIds("00000000-0000-0000-0000-000000000000")
.softDeleteRetentionInDays(90)
.tenantId("00000000-0000-0000-0000-000000000000")
.build())
.resourceGroupName("hsm-group")
.sku(ManagedHsmSkuArgs.builder()
.family("B")
.name("Standard_B1")
.build())
.tags(Map.ofEntries(
Map.entry("Dept", "hsm"),
Map.entry("Environment", "dogfood")
))
.build());
}
}
import pulumi
import pulumi_azure_native as azure_native
managed_hsm = azure_native.keyvault.ManagedHsm("managedHsm",
location="westus",
name="hsm1",
properties={
"enable_purge_protection": False,
"enable_soft_delete": True,
"initial_admin_object_ids": ["00000000-0000-0000-0000-000000000000"],
"soft_delete_retention_in_days": 90,
"tenant_id": "00000000-0000-0000-0000-000000000000",
},
resource_group_name="hsm-group",
sku={
"family": azure_native.keyvault.ManagedHsmSkuFamily.B,
"name": azure_native.keyvault.ManagedHsmSkuName.STANDARD_B1,
},
tags={
"Dept": "hsm",
"Environment": "dogfood",
})
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const managedHsm = new azure_native.keyvault.ManagedHsm("managedHsm", {
location: "westus",
name: "hsm1",
properties: {
enablePurgeProtection: false,
enableSoftDelete: true,
initialAdminObjectIds: ["00000000-0000-0000-0000-000000000000"],
softDeleteRetentionInDays: 90,
tenantId: "00000000-0000-0000-0000-000000000000",
},
resourceGroupName: "hsm-group",
sku: {
family: azure_native.keyvault.ManagedHsmSkuFamily.B,
name: azure_native.keyvault.ManagedHsmSkuName.Standard_B1,
},
tags: {
Dept: "hsm",
Environment: "dogfood",
},
});
resources:
managedHsm:
type: azure-native:keyvault:ManagedHsm
properties:
location: westus
name: hsm1
properties:
enablePurgeProtection: false
enableSoftDelete: true
initialAdminObjectIds:
- 00000000-0000-0000-0000-000000000000
softDeleteRetentionInDays: 90
tenantId: 00000000-0000-0000-0000-000000000000
resourceGroupName: hsm-group
sku:
family: B
name: Standard_B1
tags:
Dept: hsm
Environment: dogfood
Create ManagedHsm Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new ManagedHsm(name: string, args: ManagedHsmArgs, opts?: CustomResourceOptions);
@overload
def ManagedHsm(resource_name: str,
args: ManagedHsmArgs,
opts: Optional[ResourceOptions] = None)
@overload
def ManagedHsm(resource_name: str,
opts: Optional[ResourceOptions] = None,
resource_group_name: Optional[str] = None,
location: Optional[str] = None,
name: Optional[str] = None,
properties: Optional[ManagedHsmPropertiesArgs] = None,
sku: Optional[ManagedHsmSkuArgs] = None,
tags: Optional[Mapping[str, str]] = None)
func NewManagedHsm(ctx *Context, name string, args ManagedHsmArgs, opts ...ResourceOption) (*ManagedHsm, error)
public ManagedHsm(string name, ManagedHsmArgs args, CustomResourceOptions? opts = null)
public ManagedHsm(String name, ManagedHsmArgs args)
public ManagedHsm(String name, ManagedHsmArgs args, CustomResourceOptions options)
type: azure-native:keyvault:ManagedHsm
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args ManagedHsmArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args ManagedHsmArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args ManagedHsmArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args ManagedHsmArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args ManagedHsmArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var managedHsmResource = new AzureNative.KeyVault.ManagedHsm("managedHsmResource", new()
{
ResourceGroupName = "string",
Location = "string",
Name = "string",
Properties = new AzureNative.KeyVault.Inputs.ManagedHsmPropertiesArgs
{
CreateMode = AzureNative.KeyVault.CreateMode.Recover,
EnablePurgeProtection = false,
EnableSoftDelete = false,
InitialAdminObjectIds = new[]
{
"string",
},
NetworkAcls = new AzureNative.KeyVault.Inputs.MHSMNetworkRuleSetArgs
{
Bypass = "string",
DefaultAction = "string",
IpRules = new[]
{
new AzureNative.KeyVault.Inputs.MHSMIPRuleArgs
{
Value = "string",
},
},
VirtualNetworkRules = new[]
{
new AzureNative.KeyVault.Inputs.MHSMVirtualNetworkRuleArgs
{
Id = "string",
},
},
},
PublicNetworkAccess = "string",
Regions = new[]
{
new AzureNative.KeyVault.Inputs.MHSMGeoReplicatedRegionArgs
{
IsPrimary = false,
Name = "string",
},
},
SoftDeleteRetentionInDays = 0,
TenantId = "string",
},
Sku = new AzureNative.KeyVault.Inputs.ManagedHsmSkuArgs
{
Family = "string",
Name = AzureNative.KeyVault.ManagedHsmSkuName.Standard_B1,
},
Tags =
{
{ "string", "string" },
},
});
example, err := keyvault.NewManagedHsm(ctx, "managedHsmResource", &keyvault.ManagedHsmArgs{
ResourceGroupName: pulumi.String("string"),
Location: pulumi.String("string"),
Name: pulumi.String("string"),
Properties: &keyvault.ManagedHsmPropertiesArgs{
CreateMode: keyvault.CreateModeRecover,
EnablePurgeProtection: pulumi.Bool(false),
EnableSoftDelete: pulumi.Bool(false),
InitialAdminObjectIds: pulumi.StringArray{
pulumi.String("string"),
},
NetworkAcls: &keyvault.MHSMNetworkRuleSetArgs{
Bypass: pulumi.String("string"),
DefaultAction: pulumi.String("string"),
IpRules: keyvault.MHSMIPRuleArray{
&keyvault.MHSMIPRuleArgs{
Value: pulumi.String("string"),
},
},
VirtualNetworkRules: keyvault.MHSMVirtualNetworkRuleArray{
&keyvault.MHSMVirtualNetworkRuleArgs{
Id: pulumi.String("string"),
},
},
},
PublicNetworkAccess: pulumi.String("string"),
Regions: keyvault.MHSMGeoReplicatedRegionArray{
&keyvault.MHSMGeoReplicatedRegionArgs{
IsPrimary: pulumi.Bool(false),
Name: pulumi.String("string"),
},
},
SoftDeleteRetentionInDays: pulumi.Int(0),
TenantId: pulumi.String("string"),
},
Sku: &keyvault.ManagedHsmSkuArgs{
Family: pulumi.String("string"),
Name: keyvault.ManagedHsmSkuName_Standard_B1,
},
Tags: pulumi.StringMap{
"string": pulumi.String("string"),
},
})
var managedHsmResource = new ManagedHsm("managedHsmResource", ManagedHsmArgs.builder()
.resourceGroupName("string")
.location("string")
.name("string")
.properties(ManagedHsmPropertiesArgs.builder()
.createMode("recover")
.enablePurgeProtection(false)
.enableSoftDelete(false)
.initialAdminObjectIds("string")
.networkAcls(MHSMNetworkRuleSetArgs.builder()
.bypass("string")
.defaultAction("string")
.ipRules(MHSMIPRuleArgs.builder()
.value("string")
.build())
.virtualNetworkRules(MHSMVirtualNetworkRuleArgs.builder()
.id("string")
.build())
.build())
.publicNetworkAccess("string")
.regions(MHSMGeoReplicatedRegionArgs.builder()
.isPrimary(false)
.name("string")
.build())
.softDeleteRetentionInDays(0)
.tenantId("string")
.build())
.sku(ManagedHsmSkuArgs.builder()
.family("string")
.name("Standard_B1")
.build())
.tags(Map.of("string", "string"))
.build());
managed_hsm_resource = azure_native.keyvault.ManagedHsm("managedHsmResource",
resource_group_name="string",
location="string",
name="string",
properties={
"create_mode": azure_native.keyvault.CreateMode.RECOVER,
"enable_purge_protection": False,
"enable_soft_delete": False,
"initial_admin_object_ids": ["string"],
"network_acls": {
"bypass": "string",
"default_action": "string",
"ip_rules": [{
"value": "string",
}],
"virtual_network_rules": [{
"id": "string",
}],
},
"public_network_access": "string",
"regions": [{
"is_primary": False,
"name": "string",
}],
"soft_delete_retention_in_days": 0,
"tenant_id": "string",
},
sku={
"family": "string",
"name": azure_native.keyvault.ManagedHsmSkuName.STANDARD_B1,
},
tags={
"string": "string",
})
const managedHsmResource = new azure_native.keyvault.ManagedHsm("managedHsmResource", {
resourceGroupName: "string",
location: "string",
name: "string",
properties: {
createMode: azure_native.keyvault.CreateMode.Recover,
enablePurgeProtection: false,
enableSoftDelete: false,
initialAdminObjectIds: ["string"],
networkAcls: {
bypass: "string",
defaultAction: "string",
ipRules: [{
value: "string",
}],
virtualNetworkRules: [{
id: "string",
}],
},
publicNetworkAccess: "string",
regions: [{
isPrimary: false,
name: "string",
}],
softDeleteRetentionInDays: 0,
tenantId: "string",
},
sku: {
family: "string",
name: azure_native.keyvault.ManagedHsmSkuName.Standard_B1,
},
tags: {
string: "string",
},
});
type: azure-native:keyvault:ManagedHsm
properties:
location: string
name: string
properties:
createMode: recover
enablePurgeProtection: false
enableSoftDelete: false
initialAdminObjectIds:
- string
networkAcls:
bypass: string
defaultAction: string
ipRules:
- value: string
virtualNetworkRules:
- id: string
publicNetworkAccess: string
regions:
- isPrimary: false
name: string
softDeleteRetentionInDays: 0
tenantId: string
resourceGroupName: string
sku:
family: string
name: Standard_B1
tags:
string: string
ManagedHsm Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The ManagedHsm resource accepts the following input properties:
- Resource
Group stringName - Name of the resource group that contains the managed HSM pool.
- Location string
- The supported Azure location where the managed HSM Pool should be created.
- Name string
- Name of the managed HSM Pool
- Properties
Pulumi.
Azure Native. Key Vault. Inputs. Managed Hsm Properties - Properties of the managed HSM
- Sku
Pulumi.
Azure Native. Key Vault. Inputs. Managed Hsm Sku - SKU details
- Dictionary<string, string>
- Resource tags
- Resource
Group stringName - Name of the resource group that contains the managed HSM pool.
- Location string
- The supported Azure location where the managed HSM Pool should be created.
- Name string
- Name of the managed HSM Pool
- Properties
Managed
Hsm Properties Args - Properties of the managed HSM
- Sku
Managed
Hsm Sku Args - SKU details
- map[string]string
- Resource tags
- resource
Group StringName - Name of the resource group that contains the managed HSM pool.
- location String
- The supported Azure location where the managed HSM Pool should be created.
- name String
- Name of the managed HSM Pool
- properties
Managed
Hsm Properties - Properties of the managed HSM
- sku
Managed
Hsm Sku - SKU details
- Map<String,String>
- Resource tags
- resource
Group stringName - Name of the resource group that contains the managed HSM pool.
- location string
- The supported Azure location where the managed HSM Pool should be created.
- name string
- Name of the managed HSM Pool
- properties
Managed
Hsm Properties - Properties of the managed HSM
- sku
Managed
Hsm Sku - SKU details
- {[key: string]: string}
- Resource tags
- resource_
group_ strname - Name of the resource group that contains the managed HSM pool.
- location str
- The supported Azure location where the managed HSM Pool should be created.
- name str
- Name of the managed HSM Pool
- properties
Managed
Hsm Properties Args - Properties of the managed HSM
- sku
Managed
Hsm Sku Args - SKU details
- Mapping[str, str]
- Resource tags
- resource
Group StringName - Name of the resource group that contains the managed HSM pool.
- location String
- The supported Azure location where the managed HSM Pool should be created.
- name String
- Name of the managed HSM Pool
- properties Property Map
- Properties of the managed HSM
- sku Property Map
- SKU details
- Map<String>
- Resource tags
Outputs
All input properties are implicitly available as output properties. Additionally, the ManagedHsm resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- System
Data Pulumi.Azure Native. Key Vault. Outputs. System Data Response - Metadata pertaining to creation and last modification of the key vault resource.
- Type string
- The resource type of the managed HSM Pool.
- Id string
- The provider-assigned unique ID for this managed resource.
- System
Data SystemData Response - Metadata pertaining to creation and last modification of the key vault resource.
- Type string
- The resource type of the managed HSM Pool.
- id String
- The provider-assigned unique ID for this managed resource.
- system
Data SystemData Response - Metadata pertaining to creation and last modification of the key vault resource.
- type String
- The resource type of the managed HSM Pool.
- id string
- The provider-assigned unique ID for this managed resource.
- system
Data SystemData Response - Metadata pertaining to creation and last modification of the key vault resource.
- type string
- The resource type of the managed HSM Pool.
- id str
- The provider-assigned unique ID for this managed resource.
- system_
data SystemData Response - Metadata pertaining to creation and last modification of the key vault resource.
- type str
- The resource type of the managed HSM Pool.
- id String
- The provider-assigned unique ID for this managed resource.
- system
Data Property Map - Metadata pertaining to creation and last modification of the key vault resource.
- type String
- The resource type of the managed HSM Pool.
Supporting Types
CreateMode, CreateModeArgs
- Recover
- recover
- @Default
- default
- Create
Mode Recover - recover
- Create
Mode Default - default
- Recover
- recover
- Default_
- default
- Recover
- recover
- Default
- default
- RECOVER
- recover
- DEFAULT
- default
- "recover"
- recover
- "default"
- default
MHSMGeoReplicatedRegion, MHSMGeoReplicatedRegionArgs
- is_
primary bool - A boolean value that indicates whether the region is the primary region or a secondary region.
- name str
- Name of the geo replicated region.
MHSMGeoReplicatedRegionResponse, MHSMGeoReplicatedRegionResponseArgs
- Provisioning
State string - Provisioning state of the geo replicated region.
- Is
Primary bool - A boolean value that indicates whether the region is the primary region or a secondary region.
- Name string
- Name of the geo replicated region.
- Provisioning
State string - Provisioning state of the geo replicated region.
- Is
Primary bool - A boolean value that indicates whether the region is the primary region or a secondary region.
- Name string
- Name of the geo replicated region.
- provisioning
State String - Provisioning state of the geo replicated region.
- is
Primary Boolean - A boolean value that indicates whether the region is the primary region or a secondary region.
- name String
- Name of the geo replicated region.
- provisioning
State string - Provisioning state of the geo replicated region.
- is
Primary boolean - A boolean value that indicates whether the region is the primary region or a secondary region.
- name string
- Name of the geo replicated region.
- provisioning_
state str - Provisioning state of the geo replicated region.
- is_
primary bool - A boolean value that indicates whether the region is the primary region or a secondary region.
- name str
- Name of the geo replicated region.
- provisioning
State String - Provisioning state of the geo replicated region.
- is
Primary Boolean - A boolean value that indicates whether the region is the primary region or a secondary region.
- name String
- Name of the geo replicated region.
MHSMIPRule, MHSMIPRuleArgs
- Value string
- An IPv4 address range in CIDR notation, such as '124.56.78.91' (simple IP address) or '124.56.78.0/24' (all addresses that start with 124.56.78).
- Value string
- An IPv4 address range in CIDR notation, such as '124.56.78.91' (simple IP address) or '124.56.78.0/24' (all addresses that start with 124.56.78).
- value String
- An IPv4 address range in CIDR notation, such as '124.56.78.91' (simple IP address) or '124.56.78.0/24' (all addresses that start with 124.56.78).
- value string
- An IPv4 address range in CIDR notation, such as '124.56.78.91' (simple IP address) or '124.56.78.0/24' (all addresses that start with 124.56.78).
- value str
- An IPv4 address range in CIDR notation, such as '124.56.78.91' (simple IP address) or '124.56.78.0/24' (all addresses that start with 124.56.78).
- value String
- An IPv4 address range in CIDR notation, such as '124.56.78.91' (simple IP address) or '124.56.78.0/24' (all addresses that start with 124.56.78).
MHSMIPRuleResponse, MHSMIPRuleResponseArgs
- Value string
- An IPv4 address range in CIDR notation, such as '124.56.78.91' (simple IP address) or '124.56.78.0/24' (all addresses that start with 124.56.78).
- Value string
- An IPv4 address range in CIDR notation, such as '124.56.78.91' (simple IP address) or '124.56.78.0/24' (all addresses that start with 124.56.78).
- value String
- An IPv4 address range in CIDR notation, such as '124.56.78.91' (simple IP address) or '124.56.78.0/24' (all addresses that start with 124.56.78).
- value string
- An IPv4 address range in CIDR notation, such as '124.56.78.91' (simple IP address) or '124.56.78.0/24' (all addresses that start with 124.56.78).
- value str
- An IPv4 address range in CIDR notation, such as '124.56.78.91' (simple IP address) or '124.56.78.0/24' (all addresses that start with 124.56.78).
- value String
- An IPv4 address range in CIDR notation, such as '124.56.78.91' (simple IP address) or '124.56.78.0/24' (all addresses that start with 124.56.78).
MHSMNetworkRuleSet, MHSMNetworkRuleSetArgs
- Bypass
string | Pulumi.
Azure Native. Key Vault. Network Rule Bypass Options - Tells what traffic can bypass network rules. This can be 'AzureServices' or 'None'. If not specified the default is 'AzureServices'.
- Default
Action string | Pulumi.Azure Native. Key Vault. Network Rule Action - The default action when no rule from ipRules and from virtualNetworkRules match. This is only used after the bypass property has been evaluated.
- Ip
Rules List<Pulumi.Azure Native. Key Vault. Inputs. MHSMIPRule> - The list of IP address rules.
- Virtual
Network List<Pulumi.Rules Azure Native. Key Vault. Inputs. MHSMVirtual Network Rule> - The list of virtual network rules.
- Bypass
string | Network
Rule Bypass Options - Tells what traffic can bypass network rules. This can be 'AzureServices' or 'None'. If not specified the default is 'AzureServices'.
- Default
Action string | NetworkRule Action - The default action when no rule from ipRules and from virtualNetworkRules match. This is only used after the bypass property has been evaluated.
- Ip
Rules []MHSMIPRule - The list of IP address rules.
- Virtual
Network []MHSMVirtualRules Network Rule - The list of virtual network rules.
- bypass
String | Network
Rule Bypass Options - Tells what traffic can bypass network rules. This can be 'AzureServices' or 'None'. If not specified the default is 'AzureServices'.
- default
Action String | NetworkRule Action - The default action when no rule from ipRules and from virtualNetworkRules match. This is only used after the bypass property has been evaluated.
- ip
Rules List<MHSMIPRule> - The list of IP address rules.
- virtual
Network List<MHSMVirtualRules Network Rule> - The list of virtual network rules.
- bypass
string | Network
Rule Bypass Options - Tells what traffic can bypass network rules. This can be 'AzureServices' or 'None'. If not specified the default is 'AzureServices'.
- default
Action string | NetworkRule Action - The default action when no rule from ipRules and from virtualNetworkRules match. This is only used after the bypass property has been evaluated.
- ip
Rules MHSMIPRule[] - The list of IP address rules.
- virtual
Network MHSMVirtualRules Network Rule[] - The list of virtual network rules.
- bypass
str | Network
Rule Bypass Options - Tells what traffic can bypass network rules. This can be 'AzureServices' or 'None'. If not specified the default is 'AzureServices'.
- default_
action str | NetworkRule Action - The default action when no rule from ipRules and from virtualNetworkRules match. This is only used after the bypass property has been evaluated.
- ip_
rules Sequence[MHSMIPRule] - The list of IP address rules.
- virtual_
network_ Sequence[MHSMVirtualrules Network Rule] - The list of virtual network rules.
- bypass
String | "Azure
Services" | "None" - Tells what traffic can bypass network rules. This can be 'AzureServices' or 'None'. If not specified the default is 'AzureServices'.
- default
Action String | "Allow" | "Deny" - The default action when no rule from ipRules and from virtualNetworkRules match. This is only used after the bypass property has been evaluated.
- ip
Rules List<Property Map> - The list of IP address rules.
- virtual
Network List<Property Map>Rules - The list of virtual network rules.
MHSMNetworkRuleSetResponse, MHSMNetworkRuleSetResponseArgs
- Bypass string
- Tells what traffic can bypass network rules. This can be 'AzureServices' or 'None'. If not specified the default is 'AzureServices'.
- Default
Action string - The default action when no rule from ipRules and from virtualNetworkRules match. This is only used after the bypass property has been evaluated.
- Ip
Rules List<Pulumi.Azure Native. Key Vault. Inputs. MHSMIPRule Response> - The list of IP address rules.
- Virtual
Network List<Pulumi.Rules Azure Native. Key Vault. Inputs. MHSMVirtual Network Rule Response> - The list of virtual network rules.
- Bypass string
- Tells what traffic can bypass network rules. This can be 'AzureServices' or 'None'. If not specified the default is 'AzureServices'.
- Default
Action string - The default action when no rule from ipRules and from virtualNetworkRules match. This is only used after the bypass property has been evaluated.
- Ip
Rules []MHSMIPRuleResponse - The list of IP address rules.
- Virtual
Network []MHSMVirtualRules Network Rule Response - The list of virtual network rules.
- bypass String
- Tells what traffic can bypass network rules. This can be 'AzureServices' or 'None'. If not specified the default is 'AzureServices'.
- default
Action String - The default action when no rule from ipRules and from virtualNetworkRules match. This is only used after the bypass property has been evaluated.
- ip
Rules List<MHSMIPRuleResponse> - The list of IP address rules.
- virtual
Network List<MHSMVirtualRules Network Rule Response> - The list of virtual network rules.
- bypass string
- Tells what traffic can bypass network rules. This can be 'AzureServices' or 'None'. If not specified the default is 'AzureServices'.
- default
Action string - The default action when no rule from ipRules and from virtualNetworkRules match. This is only used after the bypass property has been evaluated.
- ip
Rules MHSMIPRuleResponse[] - The list of IP address rules.
- virtual
Network MHSMVirtualRules Network Rule Response[] - The list of virtual network rules.
- bypass str
- Tells what traffic can bypass network rules. This can be 'AzureServices' or 'None'. If not specified the default is 'AzureServices'.
- default_
action str - The default action when no rule from ipRules and from virtualNetworkRules match. This is only used after the bypass property has been evaluated.
- ip_
rules Sequence[MHSMIPRuleResponse] - The list of IP address rules.
- virtual_
network_ Sequence[MHSMVirtualrules Network Rule Response] - The list of virtual network rules.
- bypass String
- Tells what traffic can bypass network rules. This can be 'AzureServices' or 'None'. If not specified the default is 'AzureServices'.
- default
Action String - The default action when no rule from ipRules and from virtualNetworkRules match. This is only used after the bypass property has been evaluated.
- ip
Rules List<Property Map> - The list of IP address rules.
- virtual
Network List<Property Map>Rules - The list of virtual network rules.
MHSMPrivateEndpointConnectionItemResponse, MHSMPrivateEndpointConnectionItemResponseArgs
- Provisioning
State string - Provisioning state of the private endpoint connection.
- Etag string
- Modified whenever there is a change in the state of private endpoint connection.
- Id string
- Id of private endpoint connection.
- Private
Endpoint Pulumi.Azure Native. Key Vault. Inputs. MHSMPrivate Endpoint Response - Properties of the private endpoint object.
- Private
Link Pulumi.Service Connection State Azure Native. Key Vault. Inputs. MHSMPrivate Link Service Connection State Response - Approval state of the private link connection.
- Provisioning
State string - Provisioning state of the private endpoint connection.
- Etag string
- Modified whenever there is a change in the state of private endpoint connection.
- Id string
- Id of private endpoint connection.
- Private
Endpoint MHSMPrivateEndpoint Response - Properties of the private endpoint object.
- Private
Link MHSMPrivateService Connection State Link Service Connection State Response - Approval state of the private link connection.
- provisioning
State String - Provisioning state of the private endpoint connection.
- etag String
- Modified whenever there is a change in the state of private endpoint connection.
- id String
- Id of private endpoint connection.
- private
Endpoint MHSMPrivateEndpoint Response - Properties of the private endpoint object.
- private
Link MHSMPrivateService Connection State Link Service Connection State Response - Approval state of the private link connection.
- provisioning
State string - Provisioning state of the private endpoint connection.
- etag string
- Modified whenever there is a change in the state of private endpoint connection.
- id string
- Id of private endpoint connection.
- private
Endpoint MHSMPrivateEndpoint Response - Properties of the private endpoint object.
- private
Link MHSMPrivateService Connection State Link Service Connection State Response - Approval state of the private link connection.
- provisioning_
state str - Provisioning state of the private endpoint connection.
- etag str
- Modified whenever there is a change in the state of private endpoint connection.
- id str
- Id of private endpoint connection.
- private_
endpoint MHSMPrivateEndpoint Response - Properties of the private endpoint object.
- private_
link_ MHSMPrivateservice_ connection_ state Link Service Connection State Response - Approval state of the private link connection.
- provisioning
State String - Provisioning state of the private endpoint connection.
- etag String
- Modified whenever there is a change in the state of private endpoint connection.
- id String
- Id of private endpoint connection.
- private
Endpoint Property Map - Properties of the private endpoint object.
- private
Link Property MapService Connection State - Approval state of the private link connection.
MHSMPrivateEndpointResponse, MHSMPrivateEndpointResponseArgs
- Id string
- Full identifier of the private endpoint resource.
- Id string
- Full identifier of the private endpoint resource.
- id String
- Full identifier of the private endpoint resource.
- id string
- Full identifier of the private endpoint resource.
- id str
- Full identifier of the private endpoint resource.
- id String
- Full identifier of the private endpoint resource.
MHSMPrivateLinkServiceConnectionStateResponse, MHSMPrivateLinkServiceConnectionStateResponseArgs
- Actions
Required string - A message indicating if changes on the service provider require any updates on the consumer.
- Description string
- The reason for approval or rejection.
- Status string
- Indicates whether the connection has been approved, rejected or removed by the key vault owner.
- Actions
Required string - A message indicating if changes on the service provider require any updates on the consumer.
- Description string
- The reason for approval or rejection.
- Status string
- Indicates whether the connection has been approved, rejected or removed by the key vault owner.
- actions
Required String - A message indicating if changes on the service provider require any updates on the consumer.
- description String
- The reason for approval or rejection.
- status String
- Indicates whether the connection has been approved, rejected or removed by the key vault owner.
- actions
Required string - A message indicating if changes on the service provider require any updates on the consumer.
- description string
- The reason for approval or rejection.
- status string
- Indicates whether the connection has been approved, rejected or removed by the key vault owner.
- actions_
required str - A message indicating if changes on the service provider require any updates on the consumer.
- description str
- The reason for approval or rejection.
- status str
- Indicates whether the connection has been approved, rejected or removed by the key vault owner.
- actions
Required String - A message indicating if changes on the service provider require any updates on the consumer.
- description String
- The reason for approval or rejection.
- status String
- Indicates whether the connection has been approved, rejected or removed by the key vault owner.
MHSMVirtualNetworkRule, MHSMVirtualNetworkRuleArgs
- Id string
- Full resource id of a vnet subnet, such as '/subscriptions/subid/resourceGroups/rg1/providers/Microsoft.Network/virtualNetworks/test-vnet/subnets/subnet1'.
- Id string
- Full resource id of a vnet subnet, such as '/subscriptions/subid/resourceGroups/rg1/providers/Microsoft.Network/virtualNetworks/test-vnet/subnets/subnet1'.
- id String
- Full resource id of a vnet subnet, such as '/subscriptions/subid/resourceGroups/rg1/providers/Microsoft.Network/virtualNetworks/test-vnet/subnets/subnet1'.
- id string
- Full resource id of a vnet subnet, such as '/subscriptions/subid/resourceGroups/rg1/providers/Microsoft.Network/virtualNetworks/test-vnet/subnets/subnet1'.
- id str
- Full resource id of a vnet subnet, such as '/subscriptions/subid/resourceGroups/rg1/providers/Microsoft.Network/virtualNetworks/test-vnet/subnets/subnet1'.
- id String
- Full resource id of a vnet subnet, such as '/subscriptions/subid/resourceGroups/rg1/providers/Microsoft.Network/virtualNetworks/test-vnet/subnets/subnet1'.
MHSMVirtualNetworkRuleResponse, MHSMVirtualNetworkRuleResponseArgs
- Id string
- Full resource id of a vnet subnet, such as '/subscriptions/subid/resourceGroups/rg1/providers/Microsoft.Network/virtualNetworks/test-vnet/subnets/subnet1'.
- Id string
- Full resource id of a vnet subnet, such as '/subscriptions/subid/resourceGroups/rg1/providers/Microsoft.Network/virtualNetworks/test-vnet/subnets/subnet1'.
- id String
- Full resource id of a vnet subnet, such as '/subscriptions/subid/resourceGroups/rg1/providers/Microsoft.Network/virtualNetworks/test-vnet/subnets/subnet1'.
- id string
- Full resource id of a vnet subnet, such as '/subscriptions/subid/resourceGroups/rg1/providers/Microsoft.Network/virtualNetworks/test-vnet/subnets/subnet1'.
- id str
- Full resource id of a vnet subnet, such as '/subscriptions/subid/resourceGroups/rg1/providers/Microsoft.Network/virtualNetworks/test-vnet/subnets/subnet1'.
- id String
- Full resource id of a vnet subnet, such as '/subscriptions/subid/resourceGroups/rg1/providers/Microsoft.Network/virtualNetworks/test-vnet/subnets/subnet1'.
ManagedHSMSecurityDomainPropertiesResponse, ManagedHSMSecurityDomainPropertiesResponseArgs
- Activation
Status string - Activation Status
- Activation
Status stringMessage - Activation Status Message.
- Activation
Status string - Activation Status
- Activation
Status stringMessage - Activation Status Message.
- activation
Status String - Activation Status
- activation
Status StringMessage - Activation Status Message.
- activation
Status string - Activation Status
- activation
Status stringMessage - Activation Status Message.
- activation_
status str - Activation Status
- activation_
status_ strmessage - Activation Status Message.
- activation
Status String - Activation Status
- activation
Status StringMessage - Activation Status Message.
ManagedHsmProperties, ManagedHsmPropertiesArgs
- Create
Mode Pulumi.Azure Native. Key Vault. Create Mode - The create mode to indicate whether the resource is being created or is being recovered from a deleted resource.
- Enable
Purge boolProtection - Property specifying whether protection against purge is enabled for this managed HSM pool. Setting this property to true activates protection against purge for this managed HSM pool and its content - only the Managed HSM service may initiate a hard, irrecoverable deletion. Enabling this functionality is irreversible.
- Enable
Soft boolDelete - Property to specify whether the 'soft delete' functionality is enabled for this managed HSM pool. Soft delete is enabled by default for all managed HSMs and is immutable.
- Initial
Admin List<string>Object Ids - Array of initial administrators object ids for this managed hsm pool.
- Network
Acls Pulumi.Azure Native. Key Vault. Inputs. MHSMNetwork Rule Set - Rules governing the accessibility of the key vault from specific network locations.
- Public
Network string | Pulumi.Access Azure Native. Key Vault. Public Network Access - Control permission to the managed HSM from public networks.
- Regions
List<Pulumi.
Azure Native. Key Vault. Inputs. MHSMGeo Replicated Region> - List of all regions associated with the managed hsm pool.
- Soft
Delete intRetention In Days - Soft deleted data retention days. When you delete an HSM or a key, it will remain recoverable for the configured retention period or for a default period of 90 days. It accepts values between 7 and 90.
- Tenant
Id string - The Azure Active Directory tenant ID that should be used for authenticating requests to the managed HSM pool.
- Create
Mode CreateMode - The create mode to indicate whether the resource is being created or is being recovered from a deleted resource.
- Enable
Purge boolProtection - Property specifying whether protection against purge is enabled for this managed HSM pool. Setting this property to true activates protection against purge for this managed HSM pool and its content - only the Managed HSM service may initiate a hard, irrecoverable deletion. Enabling this functionality is irreversible.
- Enable
Soft boolDelete - Property to specify whether the 'soft delete' functionality is enabled for this managed HSM pool. Soft delete is enabled by default for all managed HSMs and is immutable.
- Initial
Admin []stringObject Ids - Array of initial administrators object ids for this managed hsm pool.
- Network
Acls MHSMNetworkRule Set - Rules governing the accessibility of the key vault from specific network locations.
- Public
Network string | PublicAccess Network Access - Control permission to the managed HSM from public networks.
- Regions
[]MHSMGeo
Replicated Region - List of all regions associated with the managed hsm pool.
- Soft
Delete intRetention In Days - Soft deleted data retention days. When you delete an HSM or a key, it will remain recoverable for the configured retention period or for a default period of 90 days. It accepts values between 7 and 90.
- Tenant
Id string - The Azure Active Directory tenant ID that should be used for authenticating requests to the managed HSM pool.
- create
Mode CreateMode - The create mode to indicate whether the resource is being created or is being recovered from a deleted resource.
- enable
Purge BooleanProtection - Property specifying whether protection against purge is enabled for this managed HSM pool. Setting this property to true activates protection against purge for this managed HSM pool and its content - only the Managed HSM service may initiate a hard, irrecoverable deletion. Enabling this functionality is irreversible.
- enable
Soft BooleanDelete - Property to specify whether the 'soft delete' functionality is enabled for this managed HSM pool. Soft delete is enabled by default for all managed HSMs and is immutable.
- initial
Admin List<String>Object Ids - Array of initial administrators object ids for this managed hsm pool.
- network
Acls MHSMNetworkRule Set - Rules governing the accessibility of the key vault from specific network locations.
- public
Network String | PublicAccess Network Access - Control permission to the managed HSM from public networks.
- regions
List<MHSMGeo
Replicated Region> - List of all regions associated with the managed hsm pool.
- soft
Delete IntegerRetention In Days - Soft deleted data retention days. When you delete an HSM or a key, it will remain recoverable for the configured retention period or for a default period of 90 days. It accepts values between 7 and 90.
- tenant
Id String - The Azure Active Directory tenant ID that should be used for authenticating requests to the managed HSM pool.
- create
Mode CreateMode - The create mode to indicate whether the resource is being created or is being recovered from a deleted resource.
- enable
Purge booleanProtection - Property specifying whether protection against purge is enabled for this managed HSM pool. Setting this property to true activates protection against purge for this managed HSM pool and its content - only the Managed HSM service may initiate a hard, irrecoverable deletion. Enabling this functionality is irreversible.
- enable
Soft booleanDelete - Property to specify whether the 'soft delete' functionality is enabled for this managed HSM pool. Soft delete is enabled by default for all managed HSMs and is immutable.
- initial
Admin string[]Object Ids - Array of initial administrators object ids for this managed hsm pool.
- network
Acls MHSMNetworkRule Set - Rules governing the accessibility of the key vault from specific network locations.
- public
Network string | PublicAccess Network Access - Control permission to the managed HSM from public networks.
- regions
MHSMGeo
Replicated Region[] - List of all regions associated with the managed hsm pool.
- soft
Delete numberRetention In Days - Soft deleted data retention days. When you delete an HSM or a key, it will remain recoverable for the configured retention period or for a default period of 90 days. It accepts values between 7 and 90.
- tenant
Id string - The Azure Active Directory tenant ID that should be used for authenticating requests to the managed HSM pool.
- create_
mode CreateMode - The create mode to indicate whether the resource is being created or is being recovered from a deleted resource.
- enable_
purge_ boolprotection - Property specifying whether protection against purge is enabled for this managed HSM pool. Setting this property to true activates protection against purge for this managed HSM pool and its content - only the Managed HSM service may initiate a hard, irrecoverable deletion. Enabling this functionality is irreversible.
- enable_
soft_ booldelete - Property to specify whether the 'soft delete' functionality is enabled for this managed HSM pool. Soft delete is enabled by default for all managed HSMs and is immutable.
- initial_
admin_ Sequence[str]object_ ids - Array of initial administrators object ids for this managed hsm pool.
- network_
acls MHSMNetworkRule Set - Rules governing the accessibility of the key vault from specific network locations.
- public_
network_ str | Publicaccess Network Access - Control permission to the managed HSM from public networks.
- regions
Sequence[MHSMGeo
Replicated Region] - List of all regions associated with the managed hsm pool.
- soft_
delete_ intretention_ in_ days - Soft deleted data retention days. When you delete an HSM or a key, it will remain recoverable for the configured retention period or for a default period of 90 days. It accepts values between 7 and 90.
- tenant_
id str - The Azure Active Directory tenant ID that should be used for authenticating requests to the managed HSM pool.
- create
Mode "recover" | "default" - The create mode to indicate whether the resource is being created or is being recovered from a deleted resource.
- enable
Purge BooleanProtection - Property specifying whether protection against purge is enabled for this managed HSM pool. Setting this property to true activates protection against purge for this managed HSM pool and its content - only the Managed HSM service may initiate a hard, irrecoverable deletion. Enabling this functionality is irreversible.
- enable
Soft BooleanDelete - Property to specify whether the 'soft delete' functionality is enabled for this managed HSM pool. Soft delete is enabled by default for all managed HSMs and is immutable.
- initial
Admin List<String>Object Ids - Array of initial administrators object ids for this managed hsm pool.
- network
Acls Property Map - Rules governing the accessibility of the key vault from specific network locations.
- public
Network String | "Enabled" | "Disabled"Access - Control permission to the managed HSM from public networks.
- regions List<Property Map>
- List of all regions associated with the managed hsm pool.
- soft
Delete NumberRetention In Days - Soft deleted data retention days. When you delete an HSM or a key, it will remain recoverable for the configured retention period or for a default period of 90 days. It accepts values between 7 and 90.
- tenant
Id String - The Azure Active Directory tenant ID that should be used for authenticating requests to the managed HSM pool.
ManagedHsmPropertiesResponse, ManagedHsmPropertiesResponseArgs
- Hsm
Uri string - The URI of the managed hsm pool for performing operations on keys.
- Private
Endpoint List<Pulumi.Connections Azure Native. Key Vault. Inputs. MHSMPrivate Endpoint Connection Item Response> - List of private endpoint connections associated with the managed hsm pool.
- Provisioning
State string - Provisioning state.
- Scheduled
Purge stringDate - The scheduled purge date in UTC.
- Security
Domain Pulumi.Properties Azure Native. Key Vault. Inputs. Managed HSMSecurity Domain Properties Response - Managed HSM security domain properties.
- Status
Message string - Resource Status Message.
- Enable
Purge boolProtection - Property specifying whether protection against purge is enabled for this managed HSM pool. Setting this property to true activates protection against purge for this managed HSM pool and its content - only the Managed HSM service may initiate a hard, irrecoverable deletion. Enabling this functionality is irreversible.
- Enable
Soft boolDelete - Property to specify whether the 'soft delete' functionality is enabled for this managed HSM pool. Soft delete is enabled by default for all managed HSMs and is immutable.
- Initial
Admin List<string>Object Ids - Array of initial administrators object ids for this managed hsm pool.
- Network
Acls Pulumi.Azure Native. Key Vault. Inputs. MHSMNetwork Rule Set Response - Rules governing the accessibility of the key vault from specific network locations.
- Public
Network stringAccess - Control permission to the managed HSM from public networks.
- Regions
List<Pulumi.
Azure Native. Key Vault. Inputs. MHSMGeo Replicated Region Response> - List of all regions associated with the managed hsm pool.
- Soft
Delete intRetention In Days - Soft deleted data retention days. When you delete an HSM or a key, it will remain recoverable for the configured retention period or for a default period of 90 days. It accepts values between 7 and 90.
- Tenant
Id string - The Azure Active Directory tenant ID that should be used for authenticating requests to the managed HSM pool.
- Hsm
Uri string - The URI of the managed hsm pool for performing operations on keys.
- Private
Endpoint []MHSMPrivateConnections Endpoint Connection Item Response - List of private endpoint connections associated with the managed hsm pool.
- Provisioning
State string - Provisioning state.
- Scheduled
Purge stringDate - The scheduled purge date in UTC.
- Security
Domain ManagedProperties HSMSecurity Domain Properties Response - Managed HSM security domain properties.
- Status
Message string - Resource Status Message.
- Enable
Purge boolProtection - Property specifying whether protection against purge is enabled for this managed HSM pool. Setting this property to true activates protection against purge for this managed HSM pool and its content - only the Managed HSM service may initiate a hard, irrecoverable deletion. Enabling this functionality is irreversible.
- Enable
Soft boolDelete - Property to specify whether the 'soft delete' functionality is enabled for this managed HSM pool. Soft delete is enabled by default for all managed HSMs and is immutable.
- Initial
Admin []stringObject Ids - Array of initial administrators object ids for this managed hsm pool.
- Network
Acls MHSMNetworkRule Set Response - Rules governing the accessibility of the key vault from specific network locations.
- Public
Network stringAccess - Control permission to the managed HSM from public networks.
- Regions
[]MHSMGeo
Replicated Region Response - List of all regions associated with the managed hsm pool.
- Soft
Delete intRetention In Days - Soft deleted data retention days. When you delete an HSM or a key, it will remain recoverable for the configured retention period or for a default period of 90 days. It accepts values between 7 and 90.
- Tenant
Id string - The Azure Active Directory tenant ID that should be used for authenticating requests to the managed HSM pool.
- hsm
Uri String - The URI of the managed hsm pool for performing operations on keys.
- private
Endpoint List<MHSMPrivateConnections Endpoint Connection Item Response> - List of private endpoint connections associated with the managed hsm pool.
- provisioning
State String - Provisioning state.
- scheduled
Purge StringDate - The scheduled purge date in UTC.
- security
Domain ManagedProperties HSMSecurity Domain Properties Response - Managed HSM security domain properties.
- status
Message String - Resource Status Message.
- enable
Purge BooleanProtection - Property specifying whether protection against purge is enabled for this managed HSM pool. Setting this property to true activates protection against purge for this managed HSM pool and its content - only the Managed HSM service may initiate a hard, irrecoverable deletion. Enabling this functionality is irreversible.
- enable
Soft BooleanDelete - Property to specify whether the 'soft delete' functionality is enabled for this managed HSM pool. Soft delete is enabled by default for all managed HSMs and is immutable.
- initial
Admin List<String>Object Ids - Array of initial administrators object ids for this managed hsm pool.
- network
Acls MHSMNetworkRule Set Response - Rules governing the accessibility of the key vault from specific network locations.
- public
Network StringAccess - Control permission to the managed HSM from public networks.
- regions
List<MHSMGeo
Replicated Region Response> - List of all regions associated with the managed hsm pool.
- soft
Delete IntegerRetention In Days - Soft deleted data retention days. When you delete an HSM or a key, it will remain recoverable for the configured retention period or for a default period of 90 days. It accepts values between 7 and 90.
- tenant
Id String - The Azure Active Directory tenant ID that should be used for authenticating requests to the managed HSM pool.
- hsm
Uri string - The URI of the managed hsm pool for performing operations on keys.
- private
Endpoint MHSMPrivateConnections Endpoint Connection Item Response[] - List of private endpoint connections associated with the managed hsm pool.
- provisioning
State string - Provisioning state.
- scheduled
Purge stringDate - The scheduled purge date in UTC.
- security
Domain ManagedProperties HSMSecurity Domain Properties Response - Managed HSM security domain properties.
- status
Message string - Resource Status Message.
- enable
Purge booleanProtection - Property specifying whether protection against purge is enabled for this managed HSM pool. Setting this property to true activates protection against purge for this managed HSM pool and its content - only the Managed HSM service may initiate a hard, irrecoverable deletion. Enabling this functionality is irreversible.
- enable
Soft booleanDelete - Property to specify whether the 'soft delete' functionality is enabled for this managed HSM pool. Soft delete is enabled by default for all managed HSMs and is immutable.
- initial
Admin string[]Object Ids - Array of initial administrators object ids for this managed hsm pool.
- network
Acls MHSMNetworkRule Set Response - Rules governing the accessibility of the key vault from specific network locations.
- public
Network stringAccess - Control permission to the managed HSM from public networks.
- regions
MHSMGeo
Replicated Region Response[] - List of all regions associated with the managed hsm pool.
- soft
Delete numberRetention In Days - Soft deleted data retention days. When you delete an HSM or a key, it will remain recoverable for the configured retention period or for a default period of 90 days. It accepts values between 7 and 90.
- tenant
Id string - The Azure Active Directory tenant ID that should be used for authenticating requests to the managed HSM pool.
- hsm_
uri str - The URI of the managed hsm pool for performing operations on keys.
- private_
endpoint_ Sequence[MHSMPrivateconnections Endpoint Connection Item Response] - List of private endpoint connections associated with the managed hsm pool.
- provisioning_
state str - Provisioning state.
- scheduled_
purge_ strdate - The scheduled purge date in UTC.
- security_
domain_ Managedproperties HSMSecurity Domain Properties Response - Managed HSM security domain properties.
- status_
message str - Resource Status Message.
- enable_
purge_ boolprotection - Property specifying whether protection against purge is enabled for this managed HSM pool. Setting this property to true activates protection against purge for this managed HSM pool and its content - only the Managed HSM service may initiate a hard, irrecoverable deletion. Enabling this functionality is irreversible.
- enable_
soft_ booldelete - Property to specify whether the 'soft delete' functionality is enabled for this managed HSM pool. Soft delete is enabled by default for all managed HSMs and is immutable.
- initial_
admin_ Sequence[str]object_ ids - Array of initial administrators object ids for this managed hsm pool.
- network_
acls MHSMNetworkRule Set Response - Rules governing the accessibility of the key vault from specific network locations.
- public_
network_ straccess - Control permission to the managed HSM from public networks.
- regions
Sequence[MHSMGeo
Replicated Region Response] - List of all regions associated with the managed hsm pool.
- soft_
delete_ intretention_ in_ days - Soft deleted data retention days. When you delete an HSM or a key, it will remain recoverable for the configured retention period or for a default period of 90 days. It accepts values between 7 and 90.
- tenant_
id str - The Azure Active Directory tenant ID that should be used for authenticating requests to the managed HSM pool.
- hsm
Uri String - The URI of the managed hsm pool for performing operations on keys.
- private
Endpoint List<Property Map>Connections - List of private endpoint connections associated with the managed hsm pool.
- provisioning
State String - Provisioning state.
- scheduled
Purge StringDate - The scheduled purge date in UTC.
- security
Domain Property MapProperties - Managed HSM security domain properties.
- status
Message String - Resource Status Message.
- enable
Purge BooleanProtection - Property specifying whether protection against purge is enabled for this managed HSM pool. Setting this property to true activates protection against purge for this managed HSM pool and its content - only the Managed HSM service may initiate a hard, irrecoverable deletion. Enabling this functionality is irreversible.
- enable
Soft BooleanDelete - Property to specify whether the 'soft delete' functionality is enabled for this managed HSM pool. Soft delete is enabled by default for all managed HSMs and is immutable.
- initial
Admin List<String>Object Ids - Array of initial administrators object ids for this managed hsm pool.
- network
Acls Property Map - Rules governing the accessibility of the key vault from specific network locations.
- public
Network StringAccess - Control permission to the managed HSM from public networks.
- regions List<Property Map>
- List of all regions associated with the managed hsm pool.
- soft
Delete NumberRetention In Days - Soft deleted data retention days. When you delete an HSM or a key, it will remain recoverable for the configured retention period or for a default period of 90 days. It accepts values between 7 and 90.
- tenant
Id String - The Azure Active Directory tenant ID that should be used for authenticating requests to the managed HSM pool.
ManagedHsmSku, ManagedHsmSkuArgs
- Family
string | Pulumi.
Azure Native. Key Vault. Managed Hsm Sku Family - SKU Family of the managed HSM Pool
- Name
Pulumi.
Azure Native. Key Vault. Managed Hsm Sku Name - SKU of the managed HSM Pool
- Family
string | Managed
Hsm Sku Family - SKU Family of the managed HSM Pool
- Name
Managed
Hsm Sku Name - SKU of the managed HSM Pool
- family
String | Managed
Hsm Sku Family - SKU Family of the managed HSM Pool
- name
Managed
Hsm Sku Name - SKU of the managed HSM Pool
- family
string | Managed
Hsm Sku Family - SKU Family of the managed HSM Pool
- name
Managed
Hsm Sku Name - SKU of the managed HSM Pool
- family
str | Managed
Hsm Sku Family - SKU Family of the managed HSM Pool
- name
Managed
Hsm Sku Name - SKU of the managed HSM Pool
- family String | "B"
- SKU Family of the managed HSM Pool
- name "Standard_B1" | "Custom_B32" | "Custom_B6"
- SKU of the managed HSM Pool
ManagedHsmSkuFamily, ManagedHsmSkuFamilyArgs
- B
- B
- Managed
Hsm Sku Family B - B
- B
- B
- B
- B
- B
- B
- "B"
- B
ManagedHsmSkuName, ManagedHsmSkuNameArgs
- Standard_B1
- Standard_B1
- Custom_B32
- Custom_B32
- Custom_B6
- Custom_B6
- Managed
Hsm Sku Name_Standard_B1 - Standard_B1
- Managed
Hsm Sku Name_Custom_B32 - Custom_B32
- Managed
Hsm Sku Name_Custom_B6 - Custom_B6
- Standard_B1
- Standard_B1
- Custom_B32
- Custom_B32
- Custom_B6
- Custom_B6
- Standard_B1
- Standard_B1
- Custom_B32
- Custom_B32
- Custom_B6
- Custom_B6
- STANDARD_B1
- Standard_B1
- CUSTOM_B32
- Custom_B32
- CUSTOM_B6
- Custom_B6
- "Standard_B1"
- Standard_B1
- "Custom_B32"
- Custom_B32
- "Custom_B6"
- Custom_B6
ManagedHsmSkuResponse, ManagedHsmSkuResponseArgs
NetworkRuleAction, NetworkRuleActionArgs
- Allow
- Allow
- Deny
- Deny
- Network
Rule Action Allow - Allow
- Network
Rule Action Deny - Deny
- Allow
- Allow
- Deny
- Deny
- Allow
- Allow
- Deny
- Deny
- ALLOW
- Allow
- DENY
- Deny
- "Allow"
- Allow
- "Deny"
- Deny
NetworkRuleBypassOptions, NetworkRuleBypassOptionsArgs
- Azure
Services - AzureServices
- None
- None
- Network
Rule Bypass Options Azure Services - AzureServices
- Network
Rule Bypass Options None - None
- Azure
Services - AzureServices
- None
- None
- Azure
Services - AzureServices
- None
- None
- AZURE_SERVICES
- AzureServices
- NONE
- None
- "Azure
Services" - AzureServices
- "None"
- None
PublicNetworkAccess, PublicNetworkAccessArgs
- Enabled
- Enabled
- Disabled
- Disabled
- Public
Network Access Enabled - Enabled
- Public
Network Access Disabled - Disabled
- Enabled
- Enabled
- Disabled
- Disabled
- Enabled
- Enabled
- Disabled
- Disabled
- ENABLED
- Enabled
- DISABLED
- Disabled
- "Enabled"
- Enabled
- "Disabled"
- Disabled
SystemDataResponse, SystemDataResponseArgs
- Created
At string - The timestamp of the key vault resource creation (UTC).
- Created
By string - The identity that created the key vault resource.
- Created
By stringType - The type of identity that created the key vault resource.
- Last
Modified stringAt - The timestamp of the key vault resource last modification (UTC).
- Last
Modified stringBy - The identity that last modified the key vault resource.
- Last
Modified stringBy Type - The type of identity that last modified the key vault resource.
- Created
At string - The timestamp of the key vault resource creation (UTC).
- Created
By string - The identity that created the key vault resource.
- Created
By stringType - The type of identity that created the key vault resource.
- Last
Modified stringAt - The timestamp of the key vault resource last modification (UTC).
- Last
Modified stringBy - The identity that last modified the key vault resource.
- Last
Modified stringBy Type - The type of identity that last modified the key vault resource.
- created
At String - The timestamp of the key vault resource creation (UTC).
- created
By String - The identity that created the key vault resource.
- created
By StringType - The type of identity that created the key vault resource.
- last
Modified StringAt - The timestamp of the key vault resource last modification (UTC).
- last
Modified StringBy - The identity that last modified the key vault resource.
- last
Modified StringBy Type - The type of identity that last modified the key vault resource.
- created
At string - The timestamp of the key vault resource creation (UTC).
- created
By string - The identity that created the key vault resource.
- created
By stringType - The type of identity that created the key vault resource.
- last
Modified stringAt - The timestamp of the key vault resource last modification (UTC).
- last
Modified stringBy - The identity that last modified the key vault resource.
- last
Modified stringBy Type - The type of identity that last modified the key vault resource.
- created_
at str - The timestamp of the key vault resource creation (UTC).
- created_
by str - The identity that created the key vault resource.
- created_
by_ strtype - The type of identity that created the key vault resource.
- last_
modified_ strat - The timestamp of the key vault resource last modification (UTC).
- last_
modified_ strby - The identity that last modified the key vault resource.
- last_
modified_ strby_ type - The type of identity that last modified the key vault resource.
- created
At String - The timestamp of the key vault resource creation (UTC).
- created
By String - The identity that created the key vault resource.
- created
By StringType - The type of identity that created the key vault resource.
- last
Modified StringAt - The timestamp of the key vault resource last modification (UTC).
- last
Modified StringBy - The identity that last modified the key vault resource.
- last
Modified StringBy Type - The type of identity that last modified the key vault resource.
Import
An existing resource can be imported using its type token, name, and identifier, e.g.
$ pulumi import azure-native:keyvault:ManagedHsm hsm1 /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.KeyVault/managedHSMs/{name}
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- Azure Native pulumi/pulumi-azure-native
- License
- Apache-2.0