We recommend using Azure Native.
azure.storage.Account
Explore with Pulumi AI
Manages an Azure Storage Account.
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as azure from "@pulumi/azure";
const example = new azure.core.ResourceGroup("example", {
name: "example-resources",
location: "West Europe",
});
const exampleAccount = new azure.storage.Account("example", {
name: "storageaccountname",
resourceGroupName: example.name,
location: example.location,
accountTier: "Standard",
accountReplicationType: "GRS",
tags: {
environment: "staging",
},
});
import pulumi
import pulumi_azure as azure
example = azure.core.ResourceGroup("example",
name="example-resources",
location="West Europe")
example_account = azure.storage.Account("example",
name="storageaccountname",
resource_group_name=example.name,
location=example.location,
account_tier="Standard",
account_replication_type="GRS",
tags={
"environment": "staging",
})
package main
import (
"github.com/pulumi/pulumi-azure/sdk/v6/go/azure/core"
"github.com/pulumi/pulumi-azure/sdk/v6/go/azure/storage"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
example, err := core.NewResourceGroup(ctx, "example", &core.ResourceGroupArgs{
Name: pulumi.String("example-resources"),
Location: pulumi.String("West Europe"),
})
if err != nil {
return err
}
_, err = storage.NewAccount(ctx, "example", &storage.AccountArgs{
Name: pulumi.String("storageaccountname"),
ResourceGroupName: example.Name,
Location: example.Location,
AccountTier: pulumi.String("Standard"),
AccountReplicationType: pulumi.String("GRS"),
Tags: pulumi.StringMap{
"environment": pulumi.String("staging"),
},
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Azure = Pulumi.Azure;
return await Deployment.RunAsync(() =>
{
var example = new Azure.Core.ResourceGroup("example", new()
{
Name = "example-resources",
Location = "West Europe",
});
var exampleAccount = new Azure.Storage.Account("example", new()
{
Name = "storageaccountname",
ResourceGroupName = example.Name,
Location = example.Location,
AccountTier = "Standard",
AccountReplicationType = "GRS",
Tags =
{
{ "environment", "staging" },
},
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azure.core.ResourceGroup;
import com.pulumi.azure.core.ResourceGroupArgs;
import com.pulumi.azure.storage.Account;
import com.pulumi.azure.storage.AccountArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var example = new ResourceGroup("example", ResourceGroupArgs.builder()
.name("example-resources")
.location("West Europe")
.build());
var exampleAccount = new Account("exampleAccount", AccountArgs.builder()
.name("storageaccountname")
.resourceGroupName(example.name())
.location(example.location())
.accountTier("Standard")
.accountReplicationType("GRS")
.tags(Map.of("environment", "staging"))
.build());
}
}
resources:
example:
type: azure:core:ResourceGroup
properties:
name: example-resources
location: West Europe
exampleAccount:
type: azure:storage:Account
name: example
properties:
name: storageaccountname
resourceGroupName: ${example.name}
location: ${example.location}
accountTier: Standard
accountReplicationType: GRS
tags:
environment: staging
With Network Rules
import * as pulumi from "@pulumi/pulumi";
import * as azure from "@pulumi/azure";
const example = new azure.core.ResourceGroup("example", {
name: "example-resources",
location: "West Europe",
});
const exampleVirtualNetwork = new azure.network.VirtualNetwork("example", {
name: "virtnetname",
addressSpaces: ["10.0.0.0/16"],
location: example.location,
resourceGroupName: example.name,
});
const exampleSubnet = new azure.network.Subnet("example", {
name: "subnetname",
resourceGroupName: example.name,
virtualNetworkName: exampleVirtualNetwork.name,
addressPrefixes: ["10.0.2.0/24"],
serviceEndpoints: [
"Microsoft.Sql",
"Microsoft.Storage",
],
});
const exampleAccount = new azure.storage.Account("example", {
name: "storageaccountname",
resourceGroupName: example.name,
location: example.location,
accountTier: "Standard",
accountReplicationType: "LRS",
networkRules: {
defaultAction: "Deny",
ipRules: ["100.0.0.1"],
virtualNetworkSubnetIds: [exampleSubnet.id],
},
tags: {
environment: "staging",
},
});
import pulumi
import pulumi_azure as azure
example = azure.core.ResourceGroup("example",
name="example-resources",
location="West Europe")
example_virtual_network = azure.network.VirtualNetwork("example",
name="virtnetname",
address_spaces=["10.0.0.0/16"],
location=example.location,
resource_group_name=example.name)
example_subnet = azure.network.Subnet("example",
name="subnetname",
resource_group_name=example.name,
virtual_network_name=example_virtual_network.name,
address_prefixes=["10.0.2.0/24"],
service_endpoints=[
"Microsoft.Sql",
"Microsoft.Storage",
])
example_account = azure.storage.Account("example",
name="storageaccountname",
resource_group_name=example.name,
location=example.location,
account_tier="Standard",
account_replication_type="LRS",
network_rules={
"default_action": "Deny",
"ip_rules": ["100.0.0.1"],
"virtual_network_subnet_ids": [example_subnet.id],
},
tags={
"environment": "staging",
})
package main
import (
"github.com/pulumi/pulumi-azure/sdk/v6/go/azure/core"
"github.com/pulumi/pulumi-azure/sdk/v6/go/azure/network"
"github.com/pulumi/pulumi-azure/sdk/v6/go/azure/storage"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
example, err := core.NewResourceGroup(ctx, "example", &core.ResourceGroupArgs{
Name: pulumi.String("example-resources"),
Location: pulumi.String("West Europe"),
})
if err != nil {
return err
}
exampleVirtualNetwork, err := network.NewVirtualNetwork(ctx, "example", &network.VirtualNetworkArgs{
Name: pulumi.String("virtnetname"),
AddressSpaces: pulumi.StringArray{
pulumi.String("10.0.0.0/16"),
},
Location: example.Location,
ResourceGroupName: example.Name,
})
if err != nil {
return err
}
exampleSubnet, err := network.NewSubnet(ctx, "example", &network.SubnetArgs{
Name: pulumi.String("subnetname"),
ResourceGroupName: example.Name,
VirtualNetworkName: exampleVirtualNetwork.Name,
AddressPrefixes: pulumi.StringArray{
pulumi.String("10.0.2.0/24"),
},
ServiceEndpoints: pulumi.StringArray{
pulumi.String("Microsoft.Sql"),
pulumi.String("Microsoft.Storage"),
},
})
if err != nil {
return err
}
_, err = storage.NewAccount(ctx, "example", &storage.AccountArgs{
Name: pulumi.String("storageaccountname"),
ResourceGroupName: example.Name,
Location: example.Location,
AccountTier: pulumi.String("Standard"),
AccountReplicationType: pulumi.String("LRS"),
NetworkRules: &storage.AccountNetworkRulesTypeArgs{
DefaultAction: pulumi.String("Deny"),
IpRules: pulumi.StringArray{
pulumi.String("100.0.0.1"),
},
VirtualNetworkSubnetIds: pulumi.StringArray{
exampleSubnet.ID(),
},
},
Tags: pulumi.StringMap{
"environment": pulumi.String("staging"),
},
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Azure = Pulumi.Azure;
return await Deployment.RunAsync(() =>
{
var example = new Azure.Core.ResourceGroup("example", new()
{
Name = "example-resources",
Location = "West Europe",
});
var exampleVirtualNetwork = new Azure.Network.VirtualNetwork("example", new()
{
Name = "virtnetname",
AddressSpaces = new[]
{
"10.0.0.0/16",
},
Location = example.Location,
ResourceGroupName = example.Name,
});
var exampleSubnet = new Azure.Network.Subnet("example", new()
{
Name = "subnetname",
ResourceGroupName = example.Name,
VirtualNetworkName = exampleVirtualNetwork.Name,
AddressPrefixes = new[]
{
"10.0.2.0/24",
},
ServiceEndpoints = new[]
{
"Microsoft.Sql",
"Microsoft.Storage",
},
});
var exampleAccount = new Azure.Storage.Account("example", new()
{
Name = "storageaccountname",
ResourceGroupName = example.Name,
Location = example.Location,
AccountTier = "Standard",
AccountReplicationType = "LRS",
NetworkRules = new Azure.Storage.Inputs.AccountNetworkRulesArgs
{
DefaultAction = "Deny",
IpRules = new[]
{
"100.0.0.1",
},
VirtualNetworkSubnetIds = new[]
{
exampleSubnet.Id,
},
},
Tags =
{
{ "environment", "staging" },
},
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azure.core.ResourceGroup;
import com.pulumi.azure.core.ResourceGroupArgs;
import com.pulumi.azure.network.VirtualNetwork;
import com.pulumi.azure.network.VirtualNetworkArgs;
import com.pulumi.azure.network.Subnet;
import com.pulumi.azure.network.SubnetArgs;
import com.pulumi.azure.storage.Account;
import com.pulumi.azure.storage.AccountArgs;
import com.pulumi.azure.storage.inputs.AccountNetworkRulesArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var example = new ResourceGroup("example", ResourceGroupArgs.builder()
.name("example-resources")
.location("West Europe")
.build());
var exampleVirtualNetwork = new VirtualNetwork("exampleVirtualNetwork", VirtualNetworkArgs.builder()
.name("virtnetname")
.addressSpaces("10.0.0.0/16")
.location(example.location())
.resourceGroupName(example.name())
.build());
var exampleSubnet = new Subnet("exampleSubnet", SubnetArgs.builder()
.name("subnetname")
.resourceGroupName(example.name())
.virtualNetworkName(exampleVirtualNetwork.name())
.addressPrefixes("10.0.2.0/24")
.serviceEndpoints(
"Microsoft.Sql",
"Microsoft.Storage")
.build());
var exampleAccount = new Account("exampleAccount", AccountArgs.builder()
.name("storageaccountname")
.resourceGroupName(example.name())
.location(example.location())
.accountTier("Standard")
.accountReplicationType("LRS")
.networkRules(AccountNetworkRulesArgs.builder()
.defaultAction("Deny")
.ipRules("100.0.0.1")
.virtualNetworkSubnetIds(exampleSubnet.id())
.build())
.tags(Map.of("environment", "staging"))
.build());
}
}
resources:
example:
type: azure:core:ResourceGroup
properties:
name: example-resources
location: West Europe
exampleVirtualNetwork:
type: azure:network:VirtualNetwork
name: example
properties:
name: virtnetname
addressSpaces:
- 10.0.0.0/16
location: ${example.location}
resourceGroupName: ${example.name}
exampleSubnet:
type: azure:network:Subnet
name: example
properties:
name: subnetname
resourceGroupName: ${example.name}
virtualNetworkName: ${exampleVirtualNetwork.name}
addressPrefixes:
- 10.0.2.0/24
serviceEndpoints:
- Microsoft.Sql
- Microsoft.Storage
exampleAccount:
type: azure:storage:Account
name: example
properties:
name: storageaccountname
resourceGroupName: ${example.name}
location: ${example.location}
accountTier: Standard
accountReplicationType: LRS
networkRules:
defaultAction: Deny
ipRules:
- 100.0.0.1
virtualNetworkSubnetIds:
- ${exampleSubnet.id}
tags:
environment: staging
Create Account Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new Account(name: string, args: AccountArgs, opts?: CustomResourceOptions);
@overload
def Account(resource_name: str,
args: AccountArgs,
opts: Optional[ResourceOptions] = None)
@overload
def Account(resource_name: str,
opts: Optional[ResourceOptions] = None,
account_tier: Optional[str] = None,
resource_group_name: Optional[str] = None,
account_replication_type: Optional[str] = None,
is_hns_enabled: Optional[bool] = None,
azure_files_authentication: Optional[AccountAzureFilesAuthenticationArgs] = None,
allowed_copy_scope: Optional[str] = None,
local_user_enabled: Optional[bool] = None,
blob_properties: Optional[AccountBlobPropertiesArgs] = None,
location: Optional[str] = None,
custom_domain: Optional[AccountCustomDomainArgs] = None,
customer_managed_key: Optional[AccountCustomerManagedKeyArgs] = None,
default_to_oauth_authentication: Optional[bool] = None,
dns_endpoint_type: Optional[str] = None,
edge_zone: Optional[str] = None,
https_traffic_only_enabled: Optional[bool] = None,
identity: Optional[AccountIdentityArgs] = None,
immutability_policy: Optional[AccountImmutabilityPolicyArgs] = None,
infrastructure_encryption_enabled: Optional[bool] = None,
access_tier: Optional[str] = None,
table_encryption_key_type: Optional[str] = None,
allow_nested_items_to_be_public: Optional[bool] = None,
cross_tenant_replication_enabled: Optional[bool] = None,
min_tls_version: Optional[str] = None,
name: Optional[str] = None,
network_rules: Optional[AccountNetworkRulesArgs] = None,
nfsv3_enabled: Optional[bool] = None,
public_network_access_enabled: Optional[bool] = None,
queue_encryption_key_type: Optional[str] = None,
queue_properties: Optional[AccountQueuePropertiesArgs] = None,
account_kind: Optional[str] = None,
routing: Optional[AccountRoutingArgs] = None,
sas_policy: Optional[AccountSasPolicyArgs] = None,
sftp_enabled: Optional[bool] = None,
share_properties: Optional[AccountSharePropertiesArgs] = None,
shared_access_key_enabled: Optional[bool] = None,
static_website: Optional[AccountStaticWebsiteArgs] = None,
large_file_share_enabled: Optional[bool] = None,
tags: Optional[Mapping[str, str]] = None)
func NewAccount(ctx *Context, name string, args AccountArgs, opts ...ResourceOption) (*Account, error)
public Account(string name, AccountArgs args, CustomResourceOptions? opts = null)
public Account(String name, AccountArgs args)
public Account(String name, AccountArgs args, CustomResourceOptions options)
type: azure:storage:Account
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args AccountArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args AccountArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args AccountArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args AccountArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args AccountArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var exampleaccountResourceResourceFromStorageaccount = new Azure.Storage.Account("exampleaccountResourceResourceFromStorageaccount", new()
{
AccountTier = "string",
ResourceGroupName = "string",
AccountReplicationType = "string",
IsHnsEnabled = false,
AzureFilesAuthentication = new Azure.Storage.Inputs.AccountAzureFilesAuthenticationArgs
{
DirectoryType = "string",
ActiveDirectory = new Azure.Storage.Inputs.AccountAzureFilesAuthenticationActiveDirectoryArgs
{
DomainGuid = "string",
DomainName = "string",
DomainSid = "string",
ForestName = "string",
NetbiosDomainName = "string",
StorageSid = "string",
},
DefaultShareLevelPermission = "string",
},
AllowedCopyScope = "string",
LocalUserEnabled = false,
BlobProperties = new Azure.Storage.Inputs.AccountBlobPropertiesArgs
{
ChangeFeedEnabled = false,
ChangeFeedRetentionInDays = 0,
ContainerDeleteRetentionPolicy = new Azure.Storage.Inputs.AccountBlobPropertiesContainerDeleteRetentionPolicyArgs
{
Days = 0,
},
CorsRules = new[]
{
new Azure.Storage.Inputs.AccountBlobPropertiesCorsRuleArgs
{
AllowedHeaders = new[]
{
"string",
},
AllowedMethods = new[]
{
"string",
},
AllowedOrigins = new[]
{
"string",
},
ExposedHeaders = new[]
{
"string",
},
MaxAgeInSeconds = 0,
},
},
DefaultServiceVersion = "string",
DeleteRetentionPolicy = new Azure.Storage.Inputs.AccountBlobPropertiesDeleteRetentionPolicyArgs
{
Days = 0,
PermanentDeleteEnabled = false,
},
LastAccessTimeEnabled = false,
RestorePolicy = new Azure.Storage.Inputs.AccountBlobPropertiesRestorePolicyArgs
{
Days = 0,
},
VersioningEnabled = false,
},
Location = "string",
CustomDomain = new Azure.Storage.Inputs.AccountCustomDomainArgs
{
Name = "string",
UseSubdomain = false,
},
CustomerManagedKey = new Azure.Storage.Inputs.AccountCustomerManagedKeyArgs
{
UserAssignedIdentityId = "string",
KeyVaultKeyId = "string",
ManagedHsmKeyId = "string",
},
DefaultToOauthAuthentication = false,
DnsEndpointType = "string",
EdgeZone = "string",
HttpsTrafficOnlyEnabled = false,
Identity = new Azure.Storage.Inputs.AccountIdentityArgs
{
Type = "string",
IdentityIds = new[]
{
"string",
},
PrincipalId = "string",
TenantId = "string",
},
ImmutabilityPolicy = new Azure.Storage.Inputs.AccountImmutabilityPolicyArgs
{
AllowProtectedAppendWrites = false,
PeriodSinceCreationInDays = 0,
State = "string",
},
InfrastructureEncryptionEnabled = false,
AccessTier = "string",
TableEncryptionKeyType = "string",
AllowNestedItemsToBePublic = false,
CrossTenantReplicationEnabled = false,
MinTlsVersion = "string",
Name = "string",
NetworkRules = new Azure.Storage.Inputs.AccountNetworkRulesArgs
{
DefaultAction = "string",
Bypasses = new[]
{
"string",
},
IpRules = new[]
{
"string",
},
PrivateLinkAccesses = new[]
{
new Azure.Storage.Inputs.AccountNetworkRulesPrivateLinkAccessArgs
{
EndpointResourceId = "string",
EndpointTenantId = "string",
},
},
VirtualNetworkSubnetIds = new[]
{
"string",
},
},
Nfsv3Enabled = false,
PublicNetworkAccessEnabled = false,
QueueEncryptionKeyType = "string",
AccountKind = "string",
Routing = new Azure.Storage.Inputs.AccountRoutingArgs
{
Choice = "string",
PublishInternetEndpoints = false,
PublishMicrosoftEndpoints = false,
},
SasPolicy = new Azure.Storage.Inputs.AccountSasPolicyArgs
{
ExpirationPeriod = "string",
ExpirationAction = "string",
},
SftpEnabled = false,
ShareProperties = new Azure.Storage.Inputs.AccountSharePropertiesArgs
{
CorsRules = new[]
{
new Azure.Storage.Inputs.AccountSharePropertiesCorsRuleArgs
{
AllowedHeaders = new[]
{
"string",
},
AllowedMethods = new[]
{
"string",
},
AllowedOrigins = new[]
{
"string",
},
ExposedHeaders = new[]
{
"string",
},
MaxAgeInSeconds = 0,
},
},
RetentionPolicy = new Azure.Storage.Inputs.AccountSharePropertiesRetentionPolicyArgs
{
Days = 0,
},
Smb = new Azure.Storage.Inputs.AccountSharePropertiesSmbArgs
{
AuthenticationTypes = new[]
{
"string",
},
ChannelEncryptionTypes = new[]
{
"string",
},
KerberosTicketEncryptionTypes = new[]
{
"string",
},
MultichannelEnabled = false,
Versions = new[]
{
"string",
},
},
},
SharedAccessKeyEnabled = false,
LargeFileShareEnabled = false,
Tags =
{
{ "string", "string" },
},
});
example, err := storage.NewAccount(ctx, "exampleaccountResourceResourceFromStorageaccount", &storage.AccountArgs{
AccountTier: pulumi.String("string"),
ResourceGroupName: pulumi.String("string"),
AccountReplicationType: pulumi.String("string"),
IsHnsEnabled: pulumi.Bool(false),
AzureFilesAuthentication: &storage.AccountAzureFilesAuthenticationArgs{
DirectoryType: pulumi.String("string"),
ActiveDirectory: &storage.AccountAzureFilesAuthenticationActiveDirectoryArgs{
DomainGuid: pulumi.String("string"),
DomainName: pulumi.String("string"),
DomainSid: pulumi.String("string"),
ForestName: pulumi.String("string"),
NetbiosDomainName: pulumi.String("string"),
StorageSid: pulumi.String("string"),
},
DefaultShareLevelPermission: pulumi.String("string"),
},
AllowedCopyScope: pulumi.String("string"),
LocalUserEnabled: pulumi.Bool(false),
BlobProperties: &storage.AccountBlobPropertiesArgs{
ChangeFeedEnabled: pulumi.Bool(false),
ChangeFeedRetentionInDays: pulumi.Int(0),
ContainerDeleteRetentionPolicy: &storage.AccountBlobPropertiesContainerDeleteRetentionPolicyArgs{
Days: pulumi.Int(0),
},
CorsRules: storage.AccountBlobPropertiesCorsRuleArray{
&storage.AccountBlobPropertiesCorsRuleArgs{
AllowedHeaders: pulumi.StringArray{
pulumi.String("string"),
},
AllowedMethods: pulumi.StringArray{
pulumi.String("string"),
},
AllowedOrigins: pulumi.StringArray{
pulumi.String("string"),
},
ExposedHeaders: pulumi.StringArray{
pulumi.String("string"),
},
MaxAgeInSeconds: pulumi.Int(0),
},
},
DefaultServiceVersion: pulumi.String("string"),
DeleteRetentionPolicy: &storage.AccountBlobPropertiesDeleteRetentionPolicyArgs{
Days: pulumi.Int(0),
PermanentDeleteEnabled: pulumi.Bool(false),
},
LastAccessTimeEnabled: pulumi.Bool(false),
RestorePolicy: &storage.AccountBlobPropertiesRestorePolicyArgs{
Days: pulumi.Int(0),
},
VersioningEnabled: pulumi.Bool(false),
},
Location: pulumi.String("string"),
CustomDomain: &storage.AccountCustomDomainArgs{
Name: pulumi.String("string"),
UseSubdomain: pulumi.Bool(false),
},
CustomerManagedKey: &storage.AccountCustomerManagedKeyArgs{
UserAssignedIdentityId: pulumi.String("string"),
KeyVaultKeyId: pulumi.String("string"),
ManagedHsmKeyId: pulumi.String("string"),
},
DefaultToOauthAuthentication: pulumi.Bool(false),
DnsEndpointType: pulumi.String("string"),
EdgeZone: pulumi.String("string"),
HttpsTrafficOnlyEnabled: pulumi.Bool(false),
Identity: &storage.AccountIdentityArgs{
Type: pulumi.String("string"),
IdentityIds: pulumi.StringArray{
pulumi.String("string"),
},
PrincipalId: pulumi.String("string"),
TenantId: pulumi.String("string"),
},
ImmutabilityPolicy: &storage.AccountImmutabilityPolicyArgs{
AllowProtectedAppendWrites: pulumi.Bool(false),
PeriodSinceCreationInDays: pulumi.Int(0),
State: pulumi.String("string"),
},
InfrastructureEncryptionEnabled: pulumi.Bool(false),
AccessTier: pulumi.String("string"),
TableEncryptionKeyType: pulumi.String("string"),
AllowNestedItemsToBePublic: pulumi.Bool(false),
CrossTenantReplicationEnabled: pulumi.Bool(false),
MinTlsVersion: pulumi.String("string"),
Name: pulumi.String("string"),
NetworkRules: &storage.AccountNetworkRulesTypeArgs{
DefaultAction: pulumi.String("string"),
Bypasses: pulumi.StringArray{
pulumi.String("string"),
},
IpRules: pulumi.StringArray{
pulumi.String("string"),
},
PrivateLinkAccesses: storage.AccountNetworkRulesPrivateLinkAccessArray{
&storage.AccountNetworkRulesPrivateLinkAccessArgs{
EndpointResourceId: pulumi.String("string"),
EndpointTenantId: pulumi.String("string"),
},
},
VirtualNetworkSubnetIds: pulumi.StringArray{
pulumi.String("string"),
},
},
Nfsv3Enabled: pulumi.Bool(false),
PublicNetworkAccessEnabled: pulumi.Bool(false),
QueueEncryptionKeyType: pulumi.String("string"),
AccountKind: pulumi.String("string"),
Routing: &storage.AccountRoutingArgs{
Choice: pulumi.String("string"),
PublishInternetEndpoints: pulumi.Bool(false),
PublishMicrosoftEndpoints: pulumi.Bool(false),
},
SasPolicy: &storage.AccountSasPolicyArgs{
ExpirationPeriod: pulumi.String("string"),
ExpirationAction: pulumi.String("string"),
},
SftpEnabled: pulumi.Bool(false),
ShareProperties: &storage.AccountSharePropertiesArgs{
CorsRules: storage.AccountSharePropertiesCorsRuleArray{
&storage.AccountSharePropertiesCorsRuleArgs{
AllowedHeaders: pulumi.StringArray{
pulumi.String("string"),
},
AllowedMethods: pulumi.StringArray{
pulumi.String("string"),
},
AllowedOrigins: pulumi.StringArray{
pulumi.String("string"),
},
ExposedHeaders: pulumi.StringArray{
pulumi.String("string"),
},
MaxAgeInSeconds: pulumi.Int(0),
},
},
RetentionPolicy: &storage.AccountSharePropertiesRetentionPolicyArgs{
Days: pulumi.Int(0),
},
Smb: &storage.AccountSharePropertiesSmbArgs{
AuthenticationTypes: pulumi.StringArray{
pulumi.String("string"),
},
ChannelEncryptionTypes: pulumi.StringArray{
pulumi.String("string"),
},
KerberosTicketEncryptionTypes: pulumi.StringArray{
pulumi.String("string"),
},
MultichannelEnabled: pulumi.Bool(false),
Versions: pulumi.StringArray{
pulumi.String("string"),
},
},
},
SharedAccessKeyEnabled: pulumi.Bool(false),
LargeFileShareEnabled: pulumi.Bool(false),
Tags: pulumi.StringMap{
"string": pulumi.String("string"),
},
})
var exampleaccountResourceResourceFromStorageaccount = new Account("exampleaccountResourceResourceFromStorageaccount", AccountArgs.builder()
.accountTier("string")
.resourceGroupName("string")
.accountReplicationType("string")
.isHnsEnabled(false)
.azureFilesAuthentication(AccountAzureFilesAuthenticationArgs.builder()
.directoryType("string")
.activeDirectory(AccountAzureFilesAuthenticationActiveDirectoryArgs.builder()
.domainGuid("string")
.domainName("string")
.domainSid("string")
.forestName("string")
.netbiosDomainName("string")
.storageSid("string")
.build())
.defaultShareLevelPermission("string")
.build())
.allowedCopyScope("string")
.localUserEnabled(false)
.blobProperties(AccountBlobPropertiesArgs.builder()
.changeFeedEnabled(false)
.changeFeedRetentionInDays(0)
.containerDeleteRetentionPolicy(AccountBlobPropertiesContainerDeleteRetentionPolicyArgs.builder()
.days(0)
.build())
.corsRules(AccountBlobPropertiesCorsRuleArgs.builder()
.allowedHeaders("string")
.allowedMethods("string")
.allowedOrigins("string")
.exposedHeaders("string")
.maxAgeInSeconds(0)
.build())
.defaultServiceVersion("string")
.deleteRetentionPolicy(AccountBlobPropertiesDeleteRetentionPolicyArgs.builder()
.days(0)
.permanentDeleteEnabled(false)
.build())
.lastAccessTimeEnabled(false)
.restorePolicy(AccountBlobPropertiesRestorePolicyArgs.builder()
.days(0)
.build())
.versioningEnabled(false)
.build())
.location("string")
.customDomain(AccountCustomDomainArgs.builder()
.name("string")
.useSubdomain(false)
.build())
.customerManagedKey(AccountCustomerManagedKeyArgs.builder()
.userAssignedIdentityId("string")
.keyVaultKeyId("string")
.managedHsmKeyId("string")
.build())
.defaultToOauthAuthentication(false)
.dnsEndpointType("string")
.edgeZone("string")
.httpsTrafficOnlyEnabled(false)
.identity(AccountIdentityArgs.builder()
.type("string")
.identityIds("string")
.principalId("string")
.tenantId("string")
.build())
.immutabilityPolicy(AccountImmutabilityPolicyArgs.builder()
.allowProtectedAppendWrites(false)
.periodSinceCreationInDays(0)
.state("string")
.build())
.infrastructureEncryptionEnabled(false)
.accessTier("string")
.tableEncryptionKeyType("string")
.allowNestedItemsToBePublic(false)
.crossTenantReplicationEnabled(false)
.minTlsVersion("string")
.name("string")
.networkRules(AccountNetworkRulesArgs.builder()
.defaultAction("string")
.bypasses("string")
.ipRules("string")
.privateLinkAccesses(AccountNetworkRulesPrivateLinkAccessArgs.builder()
.endpointResourceId("string")
.endpointTenantId("string")
.build())
.virtualNetworkSubnetIds("string")
.build())
.nfsv3Enabled(false)
.publicNetworkAccessEnabled(false)
.queueEncryptionKeyType("string")
.accountKind("string")
.routing(AccountRoutingArgs.builder()
.choice("string")
.publishInternetEndpoints(false)
.publishMicrosoftEndpoints(false)
.build())
.sasPolicy(AccountSasPolicyArgs.builder()
.expirationPeriod("string")
.expirationAction("string")
.build())
.sftpEnabled(false)
.shareProperties(AccountSharePropertiesArgs.builder()
.corsRules(AccountSharePropertiesCorsRuleArgs.builder()
.allowedHeaders("string")
.allowedMethods("string")
.allowedOrigins("string")
.exposedHeaders("string")
.maxAgeInSeconds(0)
.build())
.retentionPolicy(AccountSharePropertiesRetentionPolicyArgs.builder()
.days(0)
.build())
.smb(AccountSharePropertiesSmbArgs.builder()
.authenticationTypes("string")
.channelEncryptionTypes("string")
.kerberosTicketEncryptionTypes("string")
.multichannelEnabled(false)
.versions("string")
.build())
.build())
.sharedAccessKeyEnabled(false)
.largeFileShareEnabled(false)
.tags(Map.of("string", "string"))
.build());
exampleaccount_resource_resource_from_storageaccount = azure.storage.Account("exampleaccountResourceResourceFromStorageaccount",
account_tier="string",
resource_group_name="string",
account_replication_type="string",
is_hns_enabled=False,
azure_files_authentication={
"directory_type": "string",
"active_directory": {
"domain_guid": "string",
"domain_name": "string",
"domain_sid": "string",
"forest_name": "string",
"netbios_domain_name": "string",
"storage_sid": "string",
},
"default_share_level_permission": "string",
},
allowed_copy_scope="string",
local_user_enabled=False,
blob_properties={
"change_feed_enabled": False,
"change_feed_retention_in_days": 0,
"container_delete_retention_policy": {
"days": 0,
},
"cors_rules": [{
"allowed_headers": ["string"],
"allowed_methods": ["string"],
"allowed_origins": ["string"],
"exposed_headers": ["string"],
"max_age_in_seconds": 0,
}],
"default_service_version": "string",
"delete_retention_policy": {
"days": 0,
"permanent_delete_enabled": False,
},
"last_access_time_enabled": False,
"restore_policy": {
"days": 0,
},
"versioning_enabled": False,
},
location="string",
custom_domain={
"name": "string",
"use_subdomain": False,
},
customer_managed_key={
"user_assigned_identity_id": "string",
"key_vault_key_id": "string",
"managed_hsm_key_id": "string",
},
default_to_oauth_authentication=False,
dns_endpoint_type="string",
edge_zone="string",
https_traffic_only_enabled=False,
identity={
"type": "string",
"identity_ids": ["string"],
"principal_id": "string",
"tenant_id": "string",
},
immutability_policy={
"allow_protected_append_writes": False,
"period_since_creation_in_days": 0,
"state": "string",
},
infrastructure_encryption_enabled=False,
access_tier="string",
table_encryption_key_type="string",
allow_nested_items_to_be_public=False,
cross_tenant_replication_enabled=False,
min_tls_version="string",
name="string",
network_rules={
"default_action": "string",
"bypasses": ["string"],
"ip_rules": ["string"],
"private_link_accesses": [{
"endpoint_resource_id": "string",
"endpoint_tenant_id": "string",
}],
"virtual_network_subnet_ids": ["string"],
},
nfsv3_enabled=False,
public_network_access_enabled=False,
queue_encryption_key_type="string",
account_kind="string",
routing={
"choice": "string",
"publish_internet_endpoints": False,
"publish_microsoft_endpoints": False,
},
sas_policy={
"expiration_period": "string",
"expiration_action": "string",
},
sftp_enabled=False,
share_properties={
"cors_rules": [{
"allowed_headers": ["string"],
"allowed_methods": ["string"],
"allowed_origins": ["string"],
"exposed_headers": ["string"],
"max_age_in_seconds": 0,
}],
"retention_policy": {
"days": 0,
},
"smb": {
"authentication_types": ["string"],
"channel_encryption_types": ["string"],
"kerberos_ticket_encryption_types": ["string"],
"multichannel_enabled": False,
"versions": ["string"],
},
},
shared_access_key_enabled=False,
large_file_share_enabled=False,
tags={
"string": "string",
})
const exampleaccountResourceResourceFromStorageaccount = new azure.storage.Account("exampleaccountResourceResourceFromStorageaccount", {
accountTier: "string",
resourceGroupName: "string",
accountReplicationType: "string",
isHnsEnabled: false,
azureFilesAuthentication: {
directoryType: "string",
activeDirectory: {
domainGuid: "string",
domainName: "string",
domainSid: "string",
forestName: "string",
netbiosDomainName: "string",
storageSid: "string",
},
defaultShareLevelPermission: "string",
},
allowedCopyScope: "string",
localUserEnabled: false,
blobProperties: {
changeFeedEnabled: false,
changeFeedRetentionInDays: 0,
containerDeleteRetentionPolicy: {
days: 0,
},
corsRules: [{
allowedHeaders: ["string"],
allowedMethods: ["string"],
allowedOrigins: ["string"],
exposedHeaders: ["string"],
maxAgeInSeconds: 0,
}],
defaultServiceVersion: "string",
deleteRetentionPolicy: {
days: 0,
permanentDeleteEnabled: false,
},
lastAccessTimeEnabled: false,
restorePolicy: {
days: 0,
},
versioningEnabled: false,
},
location: "string",
customDomain: {
name: "string",
useSubdomain: false,
},
customerManagedKey: {
userAssignedIdentityId: "string",
keyVaultKeyId: "string",
managedHsmKeyId: "string",
},
defaultToOauthAuthentication: false,
dnsEndpointType: "string",
edgeZone: "string",
httpsTrafficOnlyEnabled: false,
identity: {
type: "string",
identityIds: ["string"],
principalId: "string",
tenantId: "string",
},
immutabilityPolicy: {
allowProtectedAppendWrites: false,
periodSinceCreationInDays: 0,
state: "string",
},
infrastructureEncryptionEnabled: false,
accessTier: "string",
tableEncryptionKeyType: "string",
allowNestedItemsToBePublic: false,
crossTenantReplicationEnabled: false,
minTlsVersion: "string",
name: "string",
networkRules: {
defaultAction: "string",
bypasses: ["string"],
ipRules: ["string"],
privateLinkAccesses: [{
endpointResourceId: "string",
endpointTenantId: "string",
}],
virtualNetworkSubnetIds: ["string"],
},
nfsv3Enabled: false,
publicNetworkAccessEnabled: false,
queueEncryptionKeyType: "string",
accountKind: "string",
routing: {
choice: "string",
publishInternetEndpoints: false,
publishMicrosoftEndpoints: false,
},
sasPolicy: {
expirationPeriod: "string",
expirationAction: "string",
},
sftpEnabled: false,
shareProperties: {
corsRules: [{
allowedHeaders: ["string"],
allowedMethods: ["string"],
allowedOrigins: ["string"],
exposedHeaders: ["string"],
maxAgeInSeconds: 0,
}],
retentionPolicy: {
days: 0,
},
smb: {
authenticationTypes: ["string"],
channelEncryptionTypes: ["string"],
kerberosTicketEncryptionTypes: ["string"],
multichannelEnabled: false,
versions: ["string"],
},
},
sharedAccessKeyEnabled: false,
largeFileShareEnabled: false,
tags: {
string: "string",
},
});
type: azure:storage:Account
properties:
accessTier: string
accountKind: string
accountReplicationType: string
accountTier: string
allowNestedItemsToBePublic: false
allowedCopyScope: string
azureFilesAuthentication:
activeDirectory:
domainGuid: string
domainName: string
domainSid: string
forestName: string
netbiosDomainName: string
storageSid: string
defaultShareLevelPermission: string
directoryType: string
blobProperties:
changeFeedEnabled: false
changeFeedRetentionInDays: 0
containerDeleteRetentionPolicy:
days: 0
corsRules:
- allowedHeaders:
- string
allowedMethods:
- string
allowedOrigins:
- string
exposedHeaders:
- string
maxAgeInSeconds: 0
defaultServiceVersion: string
deleteRetentionPolicy:
days: 0
permanentDeleteEnabled: false
lastAccessTimeEnabled: false
restorePolicy:
days: 0
versioningEnabled: false
crossTenantReplicationEnabled: false
customDomain:
name: string
useSubdomain: false
customerManagedKey:
keyVaultKeyId: string
managedHsmKeyId: string
userAssignedIdentityId: string
defaultToOauthAuthentication: false
dnsEndpointType: string
edgeZone: string
httpsTrafficOnlyEnabled: false
identity:
identityIds:
- string
principalId: string
tenantId: string
type: string
immutabilityPolicy:
allowProtectedAppendWrites: false
periodSinceCreationInDays: 0
state: string
infrastructureEncryptionEnabled: false
isHnsEnabled: false
largeFileShareEnabled: false
localUserEnabled: false
location: string
minTlsVersion: string
name: string
networkRules:
bypasses:
- string
defaultAction: string
ipRules:
- string
privateLinkAccesses:
- endpointResourceId: string
endpointTenantId: string
virtualNetworkSubnetIds:
- string
nfsv3Enabled: false
publicNetworkAccessEnabled: false
queueEncryptionKeyType: string
resourceGroupName: string
routing:
choice: string
publishInternetEndpoints: false
publishMicrosoftEndpoints: false
sasPolicy:
expirationAction: string
expirationPeriod: string
sftpEnabled: false
shareProperties:
corsRules:
- allowedHeaders:
- string
allowedMethods:
- string
allowedOrigins:
- string
exposedHeaders:
- string
maxAgeInSeconds: 0
retentionPolicy:
days: 0
smb:
authenticationTypes:
- string
channelEncryptionTypes:
- string
kerberosTicketEncryptionTypes:
- string
multichannelEnabled: false
versions:
- string
sharedAccessKeyEnabled: false
tableEncryptionKeyType: string
tags:
string: string
Account Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The Account resource accepts the following input properties:
- Account
Replication stringType - Defines the type of replication to use for this storage account. Valid options are
LRS
,GRS
,RAGRS
,ZRS
,GZRS
andRAGZRS
. Changing this forces a new resource to be created when typesLRS
,GRS
andRAGRS
are changed toZRS
,GZRS
orRAGZRS
and vice versa. - Account
Tier string Defines the Tier to use for this storage account. Valid options are
Standard
andPremium
. ForBlockBlobStorage
andFileStorage
accounts onlyPremium
is valid. Changing this forces a new resource to be created.Note: Blobs with a tier of
Premium
are of account kindStorageV2
.- Resource
Group stringName - The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.
- Access
Tier string - Defines the access tier for
BlobStorage
,FileStorage
andStorageV2
accounts. Valid options areHot
andCool
, defaults toHot
. - Account
Kind string Defines the Kind of account. Valid options are
BlobStorage
,BlockBlobStorage
,FileStorage
,Storage
andStorageV2
. Defaults toStorageV2
.Note: Changing the
account_kind
value fromStorage
toStorageV2
will not trigger a force new on the storage account, it will only upgrade the existing storage account fromStorage
toStorageV2
keeping the existing storage account in place.- Allow
Nested boolItems To Be Public Allow or disallow nested items within this Account to opt into being public. Defaults to
true
.Note: At this time
allow_nested_items_to_be_public
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- Allowed
Copy stringScope - Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are
AAD
andPrivateLink
. - Azure
Files AccountAuthentication Azure Files Authentication - A
azure_files_authentication
block as defined below. - Blob
Properties AccountBlob Properties - A
blob_properties
block as defined below. - Cross
Tenant boolReplication Enabled - Should cross Tenant replication be enabled? Defaults to
false
. - Custom
Domain AccountCustom Domain - A
custom_domain
block as documented below. - Customer
Managed AccountKey Customer Managed Key A
customer_managed_key
block as documented below.Note: It's possible to define a Customer Managed Key both within either the
customer_managed_key
block or by using theazure.storage.CustomerManagedKey
resource. However, it's not possible to use both methods to manage a Customer Managed Key for a Storage Account, since these will conflict. When using theazure.storage.CustomerManagedKey
resource, you will need to useignore_changes
on thecustomer_managed_key
block.- Default
To boolOauth Authentication - Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is
false
- Dns
Endpoint stringType Specifies which DNS endpoint type to use. Possible values are
Standard
andAzureDnsZone
. Defaults toStandard
. Changing this forces a new resource to be created.Note: Azure DNS zone support requires
PartitionedDns
feature to be enabled. To enable this feature for your subscription, use the following command:az feature register --namespace "Microsoft.Storage" --name "PartitionedDns"
.- Edge
Zone string - Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.
- Https
Traffic boolOnly Enabled - Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to
true
. - Identity
Account
Identity - An
identity
block as defined below. - Immutability
Policy AccountImmutability Policy - An
immutability_policy
block as defined below. Changing this forces a new resource to be created. - Infrastructure
Encryption boolEnabled Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_kind
isStorageV2
or whenaccount_tier
isPremium
andaccount_kind
is one ofBlockBlobStorage
orFileStorage
.- Is
Hns boolEnabled Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.
Note: This can only be
true
whenaccount_tier
isStandard
or whenaccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
- bool
Are Large File Shares Enabled? Defaults to
false
.Note: Large File Shares are enabled by default when using an
account_kind
ofFileStorage
.- Local
User boolEnabled - Is Local User Enabled? Defaults to
true
. - Location string
- Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.
- Min
Tls stringVersion The minimum supported TLS version for the storage account. Possible values are
TLS1_0
,TLS1_1
, andTLS1_2
. Defaults toTLS1_2
for new storage accounts.Note: At this time
min_tls_version
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- Name string
- Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.
- Network
Rules AccountNetwork Rules - A
network_rules
block as documented below. - Nfsv3Enabled bool
Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_tier
isStandard
andaccount_kind
isStorageV2
, oraccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
. Additionally, theis_hns_enabled
istrue
andaccount_replication_type
must beLRS
orRAGRS
.- Public
Network boolAccess Enabled - Whether the public network access is enabled? Defaults to
true
. - Queue
Encryption stringKey Type - The encryption type of the queue service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
. - Queue
Properties AccountQueue Properties A
queue_properties
block as defined below.Note:
queue_properties
can only be configured whenaccount_tier
is set toStandard
andaccount_kind
is set to eitherStorage
orStorageV2
.- Routing
Account
Routing - A
routing
block as defined below. - Sas
Policy AccountSas Policy - A
sas_policy
block as defined below. - Sftp
Enabled bool Boolean, enable SFTP for the storage account
Note: SFTP support requires
is_hns_enabled
set totrue
. More information on SFTP support can be found here. Defaults tofalse
- Account
Share Properties A
share_properties
block as defined below.Note:
share_properties
can only be configured when eitheraccount_tier
isStandard
andaccount_kind
is eitherStorage
orStorageV2
- or whenaccount_tier
isPremium
andaccount_kind
isFileStorage
.- bool
- Static
Website AccountStatic Website A
static_website
block as defined below.Note:
static_website
can only be set when theaccount_kind
is set toStorageV2
orBlockBlobStorage
.Note: If
static_website
is specified, the service will automatically create aazure.storage.Container
named$web
.- Table
Encryption stringKey Type The encryption type of the table service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.Note:
queue_encryption_key_type
andtable_encryption_key_type
cannot be set toAccount
whenaccount_kind
is setStorage
- Dictionary<string, string>
- A mapping of tags to assign to the resource.
- Account
Replication stringType - Defines the type of replication to use for this storage account. Valid options are
LRS
,GRS
,RAGRS
,ZRS
,GZRS
andRAGZRS
. Changing this forces a new resource to be created when typesLRS
,GRS
andRAGRS
are changed toZRS
,GZRS
orRAGZRS
and vice versa. - Account
Tier string Defines the Tier to use for this storage account. Valid options are
Standard
andPremium
. ForBlockBlobStorage
andFileStorage
accounts onlyPremium
is valid. Changing this forces a new resource to be created.Note: Blobs with a tier of
Premium
are of account kindStorageV2
.- Resource
Group stringName - The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.
- Access
Tier string - Defines the access tier for
BlobStorage
,FileStorage
andStorageV2
accounts. Valid options areHot
andCool
, defaults toHot
. - Account
Kind string Defines the Kind of account. Valid options are
BlobStorage
,BlockBlobStorage
,FileStorage
,Storage
andStorageV2
. Defaults toStorageV2
.Note: Changing the
account_kind
value fromStorage
toStorageV2
will not trigger a force new on the storage account, it will only upgrade the existing storage account fromStorage
toStorageV2
keeping the existing storage account in place.- Allow
Nested boolItems To Be Public Allow or disallow nested items within this Account to opt into being public. Defaults to
true
.Note: At this time
allow_nested_items_to_be_public
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- Allowed
Copy stringScope - Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are
AAD
andPrivateLink
. - Azure
Files AccountAuthentication Azure Files Authentication Args - A
azure_files_authentication
block as defined below. - Blob
Properties AccountBlob Properties Args - A
blob_properties
block as defined below. - Cross
Tenant boolReplication Enabled - Should cross Tenant replication be enabled? Defaults to
false
. - Custom
Domain AccountCustom Domain Args - A
custom_domain
block as documented below. - Customer
Managed AccountKey Customer Managed Key Args A
customer_managed_key
block as documented below.Note: It's possible to define a Customer Managed Key both within either the
customer_managed_key
block or by using theazure.storage.CustomerManagedKey
resource. However, it's not possible to use both methods to manage a Customer Managed Key for a Storage Account, since these will conflict. When using theazure.storage.CustomerManagedKey
resource, you will need to useignore_changes
on thecustomer_managed_key
block.- Default
To boolOauth Authentication - Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is
false
- Dns
Endpoint stringType Specifies which DNS endpoint type to use. Possible values are
Standard
andAzureDnsZone
. Defaults toStandard
. Changing this forces a new resource to be created.Note: Azure DNS zone support requires
PartitionedDns
feature to be enabled. To enable this feature for your subscription, use the following command:az feature register --namespace "Microsoft.Storage" --name "PartitionedDns"
.- Edge
Zone string - Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.
- Https
Traffic boolOnly Enabled - Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to
true
. - Identity
Account
Identity Args - An
identity
block as defined below. - Immutability
Policy AccountImmutability Policy Args - An
immutability_policy
block as defined below. Changing this forces a new resource to be created. - Infrastructure
Encryption boolEnabled Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_kind
isStorageV2
or whenaccount_tier
isPremium
andaccount_kind
is one ofBlockBlobStorage
orFileStorage
.- Is
Hns boolEnabled Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.
Note: This can only be
true
whenaccount_tier
isStandard
or whenaccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
- bool
Are Large File Shares Enabled? Defaults to
false
.Note: Large File Shares are enabled by default when using an
account_kind
ofFileStorage
.- Local
User boolEnabled - Is Local User Enabled? Defaults to
true
. - Location string
- Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.
- Min
Tls stringVersion The minimum supported TLS version for the storage account. Possible values are
TLS1_0
,TLS1_1
, andTLS1_2
. Defaults toTLS1_2
for new storage accounts.Note: At this time
min_tls_version
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- Name string
- Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.
- Network
Rules AccountNetwork Rules Type Args - A
network_rules
block as documented below. - Nfsv3Enabled bool
Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_tier
isStandard
andaccount_kind
isStorageV2
, oraccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
. Additionally, theis_hns_enabled
istrue
andaccount_replication_type
must beLRS
orRAGRS
.- Public
Network boolAccess Enabled - Whether the public network access is enabled? Defaults to
true
. - Queue
Encryption stringKey Type - The encryption type of the queue service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
. - Queue
Properties AccountQueue Properties Type Args A
queue_properties
block as defined below.Note:
queue_properties
can only be configured whenaccount_tier
is set toStandard
andaccount_kind
is set to eitherStorage
orStorageV2
.- Routing
Account
Routing Args - A
routing
block as defined below. - Sas
Policy AccountSas Policy Args - A
sas_policy
block as defined below. - Sftp
Enabled bool Boolean, enable SFTP for the storage account
Note: SFTP support requires
is_hns_enabled
set totrue
. More information on SFTP support can be found here. Defaults tofalse
- Account
Share Properties Args A
share_properties
block as defined below.Note:
share_properties
can only be configured when eitheraccount_tier
isStandard
andaccount_kind
is eitherStorage
orStorageV2
- or whenaccount_tier
isPremium
andaccount_kind
isFileStorage
.- bool
- Static
Website AccountStatic Website Type Args A
static_website
block as defined below.Note:
static_website
can only be set when theaccount_kind
is set toStorageV2
orBlockBlobStorage
.Note: If
static_website
is specified, the service will automatically create aazure.storage.Container
named$web
.- Table
Encryption stringKey Type The encryption type of the table service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.Note:
queue_encryption_key_type
andtable_encryption_key_type
cannot be set toAccount
whenaccount_kind
is setStorage
- map[string]string
- A mapping of tags to assign to the resource.
- account
Replication StringType - Defines the type of replication to use for this storage account. Valid options are
LRS
,GRS
,RAGRS
,ZRS
,GZRS
andRAGZRS
. Changing this forces a new resource to be created when typesLRS
,GRS
andRAGRS
are changed toZRS
,GZRS
orRAGZRS
and vice versa. - account
Tier String Defines the Tier to use for this storage account. Valid options are
Standard
andPremium
. ForBlockBlobStorage
andFileStorage
accounts onlyPremium
is valid. Changing this forces a new resource to be created.Note: Blobs with a tier of
Premium
are of account kindStorageV2
.- resource
Group StringName - The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.
- access
Tier String - Defines the access tier for
BlobStorage
,FileStorage
andStorageV2
accounts. Valid options areHot
andCool
, defaults toHot
. - account
Kind String Defines the Kind of account. Valid options are
BlobStorage
,BlockBlobStorage
,FileStorage
,Storage
andStorageV2
. Defaults toStorageV2
.Note: Changing the
account_kind
value fromStorage
toStorageV2
will not trigger a force new on the storage account, it will only upgrade the existing storage account fromStorage
toStorageV2
keeping the existing storage account in place.- allow
Nested BooleanItems To Be Public Allow or disallow nested items within this Account to opt into being public. Defaults to
true
.Note: At this time
allow_nested_items_to_be_public
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- allowed
Copy StringScope - Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are
AAD
andPrivateLink
. - azure
Files AccountAuthentication Azure Files Authentication - A
azure_files_authentication
block as defined below. - blob
Properties AccountBlob Properties - A
blob_properties
block as defined below. - cross
Tenant BooleanReplication Enabled - Should cross Tenant replication be enabled? Defaults to
false
. - custom
Domain AccountCustom Domain - A
custom_domain
block as documented below. - customer
Managed AccountKey Customer Managed Key A
customer_managed_key
block as documented below.Note: It's possible to define a Customer Managed Key both within either the
customer_managed_key
block or by using theazure.storage.CustomerManagedKey
resource. However, it's not possible to use both methods to manage a Customer Managed Key for a Storage Account, since these will conflict. When using theazure.storage.CustomerManagedKey
resource, you will need to useignore_changes
on thecustomer_managed_key
block.- default
To BooleanOauth Authentication - Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is
false
- dns
Endpoint StringType Specifies which DNS endpoint type to use. Possible values are
Standard
andAzureDnsZone
. Defaults toStandard
. Changing this forces a new resource to be created.Note: Azure DNS zone support requires
PartitionedDns
feature to be enabled. To enable this feature for your subscription, use the following command:az feature register --namespace "Microsoft.Storage" --name "PartitionedDns"
.- edge
Zone String - Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.
- https
Traffic BooleanOnly Enabled - Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to
true
. - identity
Account
Identity - An
identity
block as defined below. - immutability
Policy AccountImmutability Policy - An
immutability_policy
block as defined below. Changing this forces a new resource to be created. - infrastructure
Encryption BooleanEnabled Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_kind
isStorageV2
or whenaccount_tier
isPremium
andaccount_kind
is one ofBlockBlobStorage
orFileStorage
.- is
Hns BooleanEnabled Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.
Note: This can only be
true
whenaccount_tier
isStandard
or whenaccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
- Boolean
Are Large File Shares Enabled? Defaults to
false
.Note: Large File Shares are enabled by default when using an
account_kind
ofFileStorage
.- local
User BooleanEnabled - Is Local User Enabled? Defaults to
true
. - location String
- Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.
- min
Tls StringVersion The minimum supported TLS version for the storage account. Possible values are
TLS1_0
,TLS1_1
, andTLS1_2
. Defaults toTLS1_2
for new storage accounts.Note: At this time
min_tls_version
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- name String
- Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.
- network
Rules AccountNetwork Rules - A
network_rules
block as documented below. - nfsv3Enabled Boolean
Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_tier
isStandard
andaccount_kind
isStorageV2
, oraccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
. Additionally, theis_hns_enabled
istrue
andaccount_replication_type
must beLRS
orRAGRS
.- public
Network BooleanAccess Enabled - Whether the public network access is enabled? Defaults to
true
. - queue
Encryption StringKey Type - The encryption type of the queue service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
. - queue
Properties AccountQueue Properties A
queue_properties
block as defined below.Note:
queue_properties
can only be configured whenaccount_tier
is set toStandard
andaccount_kind
is set to eitherStorage
orStorageV2
.- routing
Account
Routing - A
routing
block as defined below. - sas
Policy AccountSas Policy - A
sas_policy
block as defined below. - sftp
Enabled Boolean Boolean, enable SFTP for the storage account
Note: SFTP support requires
is_hns_enabled
set totrue
. More information on SFTP support can be found here. Defaults tofalse
- Account
Share Properties A
share_properties
block as defined below.Note:
share_properties
can only be configured when eitheraccount_tier
isStandard
andaccount_kind
is eitherStorage
orStorageV2
- or whenaccount_tier
isPremium
andaccount_kind
isFileStorage
.- Boolean
- static
Website AccountStatic Website A
static_website
block as defined below.Note:
static_website
can only be set when theaccount_kind
is set toStorageV2
orBlockBlobStorage
.Note: If
static_website
is specified, the service will automatically create aazure.storage.Container
named$web
.- table
Encryption StringKey Type The encryption type of the table service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.Note:
queue_encryption_key_type
andtable_encryption_key_type
cannot be set toAccount
whenaccount_kind
is setStorage
- Map<String,String>
- A mapping of tags to assign to the resource.
- account
Replication stringType - Defines the type of replication to use for this storage account. Valid options are
LRS
,GRS
,RAGRS
,ZRS
,GZRS
andRAGZRS
. Changing this forces a new resource to be created when typesLRS
,GRS
andRAGRS
are changed toZRS
,GZRS
orRAGZRS
and vice versa. - account
Tier string Defines the Tier to use for this storage account. Valid options are
Standard
andPremium
. ForBlockBlobStorage
andFileStorage
accounts onlyPremium
is valid. Changing this forces a new resource to be created.Note: Blobs with a tier of
Premium
are of account kindStorageV2
.- resource
Group stringName - The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.
- access
Tier string - Defines the access tier for
BlobStorage
,FileStorage
andStorageV2
accounts. Valid options areHot
andCool
, defaults toHot
. - account
Kind string Defines the Kind of account. Valid options are
BlobStorage
,BlockBlobStorage
,FileStorage
,Storage
andStorageV2
. Defaults toStorageV2
.Note: Changing the
account_kind
value fromStorage
toStorageV2
will not trigger a force new on the storage account, it will only upgrade the existing storage account fromStorage
toStorageV2
keeping the existing storage account in place.- allow
Nested booleanItems To Be Public Allow or disallow nested items within this Account to opt into being public. Defaults to
true
.Note: At this time
allow_nested_items_to_be_public
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- allowed
Copy stringScope - Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are
AAD
andPrivateLink
. - azure
Files AccountAuthentication Azure Files Authentication - A
azure_files_authentication
block as defined below. - blob
Properties AccountBlob Properties - A
blob_properties
block as defined below. - cross
Tenant booleanReplication Enabled - Should cross Tenant replication be enabled? Defaults to
false
. - custom
Domain AccountCustom Domain - A
custom_domain
block as documented below. - customer
Managed AccountKey Customer Managed Key A
customer_managed_key
block as documented below.Note: It's possible to define a Customer Managed Key both within either the
customer_managed_key
block or by using theazure.storage.CustomerManagedKey
resource. However, it's not possible to use both methods to manage a Customer Managed Key for a Storage Account, since these will conflict. When using theazure.storage.CustomerManagedKey
resource, you will need to useignore_changes
on thecustomer_managed_key
block.- default
To booleanOauth Authentication - Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is
false
- dns
Endpoint stringType Specifies which DNS endpoint type to use. Possible values are
Standard
andAzureDnsZone
. Defaults toStandard
. Changing this forces a new resource to be created.Note: Azure DNS zone support requires
PartitionedDns
feature to be enabled. To enable this feature for your subscription, use the following command:az feature register --namespace "Microsoft.Storage" --name "PartitionedDns"
.- edge
Zone string - Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.
- https
Traffic booleanOnly Enabled - Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to
true
. - identity
Account
Identity - An
identity
block as defined below. - immutability
Policy AccountImmutability Policy - An
immutability_policy
block as defined below. Changing this forces a new resource to be created. - infrastructure
Encryption booleanEnabled Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_kind
isStorageV2
or whenaccount_tier
isPremium
andaccount_kind
is one ofBlockBlobStorage
orFileStorage
.- is
Hns booleanEnabled Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.
Note: This can only be
true
whenaccount_tier
isStandard
or whenaccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
- boolean
Are Large File Shares Enabled? Defaults to
false
.Note: Large File Shares are enabled by default when using an
account_kind
ofFileStorage
.- local
User booleanEnabled - Is Local User Enabled? Defaults to
true
. - location string
- Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.
- min
Tls stringVersion The minimum supported TLS version for the storage account. Possible values are
TLS1_0
,TLS1_1
, andTLS1_2
. Defaults toTLS1_2
for new storage accounts.Note: At this time
min_tls_version
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- name string
- Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.
- network
Rules AccountNetwork Rules - A
network_rules
block as documented below. - nfsv3Enabled boolean
Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_tier
isStandard
andaccount_kind
isStorageV2
, oraccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
. Additionally, theis_hns_enabled
istrue
andaccount_replication_type
must beLRS
orRAGRS
.- public
Network booleanAccess Enabled - Whether the public network access is enabled? Defaults to
true
. - queue
Encryption stringKey Type - The encryption type of the queue service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
. - queue
Properties AccountQueue Properties A
queue_properties
block as defined below.Note:
queue_properties
can only be configured whenaccount_tier
is set toStandard
andaccount_kind
is set to eitherStorage
orStorageV2
.- routing
Account
Routing - A
routing
block as defined below. - sas
Policy AccountSas Policy - A
sas_policy
block as defined below. - sftp
Enabled boolean Boolean, enable SFTP for the storage account
Note: SFTP support requires
is_hns_enabled
set totrue
. More information on SFTP support can be found here. Defaults tofalse
- Account
Share Properties A
share_properties
block as defined below.Note:
share_properties
can only be configured when eitheraccount_tier
isStandard
andaccount_kind
is eitherStorage
orStorageV2
- or whenaccount_tier
isPremium
andaccount_kind
isFileStorage
.- boolean
- static
Website AccountStatic Website A
static_website
block as defined below.Note:
static_website
can only be set when theaccount_kind
is set toStorageV2
orBlockBlobStorage
.Note: If
static_website
is specified, the service will automatically create aazure.storage.Container
named$web
.- table
Encryption stringKey Type The encryption type of the table service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.Note:
queue_encryption_key_type
andtable_encryption_key_type
cannot be set toAccount
whenaccount_kind
is setStorage
- {[key: string]: string}
- A mapping of tags to assign to the resource.
- account_
replication_ strtype - Defines the type of replication to use for this storage account. Valid options are
LRS
,GRS
,RAGRS
,ZRS
,GZRS
andRAGZRS
. Changing this forces a new resource to be created when typesLRS
,GRS
andRAGRS
are changed toZRS
,GZRS
orRAGZRS
and vice versa. - account_
tier str Defines the Tier to use for this storage account. Valid options are
Standard
andPremium
. ForBlockBlobStorage
andFileStorage
accounts onlyPremium
is valid. Changing this forces a new resource to be created.Note: Blobs with a tier of
Premium
are of account kindStorageV2
.- resource_
group_ strname - The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.
- access_
tier str - Defines the access tier for
BlobStorage
,FileStorage
andStorageV2
accounts. Valid options areHot
andCool
, defaults toHot
. - account_
kind str Defines the Kind of account. Valid options are
BlobStorage
,BlockBlobStorage
,FileStorage
,Storage
andStorageV2
. Defaults toStorageV2
.Note: Changing the
account_kind
value fromStorage
toStorageV2
will not trigger a force new on the storage account, it will only upgrade the existing storage account fromStorage
toStorageV2
keeping the existing storage account in place.- allow_
nested_ boolitems_ to_ be_ public Allow or disallow nested items within this Account to opt into being public. Defaults to
true
.Note: At this time
allow_nested_items_to_be_public
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- allowed_
copy_ strscope - Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are
AAD
andPrivateLink
. - azure_
files_ Accountauthentication Azure Files Authentication Args - A
azure_files_authentication
block as defined below. - blob_
properties AccountBlob Properties Args - A
blob_properties
block as defined below. - cross_
tenant_ boolreplication_ enabled - Should cross Tenant replication be enabled? Defaults to
false
. - custom_
domain AccountCustom Domain Args - A
custom_domain
block as documented below. - customer_
managed_ Accountkey Customer Managed Key Args A
customer_managed_key
block as documented below.Note: It's possible to define a Customer Managed Key both within either the
customer_managed_key
block or by using theazure.storage.CustomerManagedKey
resource. However, it's not possible to use both methods to manage a Customer Managed Key for a Storage Account, since these will conflict. When using theazure.storage.CustomerManagedKey
resource, you will need to useignore_changes
on thecustomer_managed_key
block.- default_
to_ booloauth_ authentication - Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is
false
- dns_
endpoint_ strtype Specifies which DNS endpoint type to use. Possible values are
Standard
andAzureDnsZone
. Defaults toStandard
. Changing this forces a new resource to be created.Note: Azure DNS zone support requires
PartitionedDns
feature to be enabled. To enable this feature for your subscription, use the following command:az feature register --namespace "Microsoft.Storage" --name "PartitionedDns"
.- edge_
zone str - Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.
- https_
traffic_ boolonly_ enabled - Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to
true
. - identity
Account
Identity Args - An
identity
block as defined below. - immutability_
policy AccountImmutability Policy Args - An
immutability_policy
block as defined below. Changing this forces a new resource to be created. - infrastructure_
encryption_ boolenabled Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_kind
isStorageV2
or whenaccount_tier
isPremium
andaccount_kind
is one ofBlockBlobStorage
orFileStorage
.- is_
hns_ boolenabled Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.
Note: This can only be
true
whenaccount_tier
isStandard
or whenaccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
- bool
Are Large File Shares Enabled? Defaults to
false
.Note: Large File Shares are enabled by default when using an
account_kind
ofFileStorage
.- local_
user_ boolenabled - Is Local User Enabled? Defaults to
true
. - location str
- Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.
- min_
tls_ strversion The minimum supported TLS version for the storage account. Possible values are
TLS1_0
,TLS1_1
, andTLS1_2
. Defaults toTLS1_2
for new storage accounts.Note: At this time
min_tls_version
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- name str
- Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.
- network_
rules AccountNetwork Rules Args - A
network_rules
block as documented below. - nfsv3_
enabled bool Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_tier
isStandard
andaccount_kind
isStorageV2
, oraccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
. Additionally, theis_hns_enabled
istrue
andaccount_replication_type
must beLRS
orRAGRS
.- public_
network_ boolaccess_ enabled - Whether the public network access is enabled? Defaults to
true
. - queue_
encryption_ strkey_ type - The encryption type of the queue service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
. - queue_
properties AccountQueue Properties Args A
queue_properties
block as defined below.Note:
queue_properties
can only be configured whenaccount_tier
is set toStandard
andaccount_kind
is set to eitherStorage
orStorageV2
.- routing
Account
Routing Args - A
routing
block as defined below. - sas_
policy AccountSas Policy Args - A
sas_policy
block as defined below. - sftp_
enabled bool Boolean, enable SFTP for the storage account
Note: SFTP support requires
is_hns_enabled
set totrue
. More information on SFTP support can be found here. Defaults tofalse
- Account
Share Properties Args A
share_properties
block as defined below.Note:
share_properties
can only be configured when eitheraccount_tier
isStandard
andaccount_kind
is eitherStorage
orStorageV2
- or whenaccount_tier
isPremium
andaccount_kind
isFileStorage
.- bool
- static_
website AccountStatic Website Args A
static_website
block as defined below.Note:
static_website
can only be set when theaccount_kind
is set toStorageV2
orBlockBlobStorage
.Note: If
static_website
is specified, the service will automatically create aazure.storage.Container
named$web
.- table_
encryption_ strkey_ type The encryption type of the table service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.Note:
queue_encryption_key_type
andtable_encryption_key_type
cannot be set toAccount
whenaccount_kind
is setStorage
- Mapping[str, str]
- A mapping of tags to assign to the resource.
- account
Replication StringType - Defines the type of replication to use for this storage account. Valid options are
LRS
,GRS
,RAGRS
,ZRS
,GZRS
andRAGZRS
. Changing this forces a new resource to be created when typesLRS
,GRS
andRAGRS
are changed toZRS
,GZRS
orRAGZRS
and vice versa. - account
Tier String Defines the Tier to use for this storage account. Valid options are
Standard
andPremium
. ForBlockBlobStorage
andFileStorage
accounts onlyPremium
is valid. Changing this forces a new resource to be created.Note: Blobs with a tier of
Premium
are of account kindStorageV2
.- resource
Group StringName - The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.
- access
Tier String - Defines the access tier for
BlobStorage
,FileStorage
andStorageV2
accounts. Valid options areHot
andCool
, defaults toHot
. - account
Kind String Defines the Kind of account. Valid options are
BlobStorage
,BlockBlobStorage
,FileStorage
,Storage
andStorageV2
. Defaults toStorageV2
.Note: Changing the
account_kind
value fromStorage
toStorageV2
will not trigger a force new on the storage account, it will only upgrade the existing storage account fromStorage
toStorageV2
keeping the existing storage account in place.- allow
Nested BooleanItems To Be Public Allow or disallow nested items within this Account to opt into being public. Defaults to
true
.Note: At this time
allow_nested_items_to_be_public
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- allowed
Copy StringScope - Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are
AAD
andPrivateLink
. - azure
Files Property MapAuthentication - A
azure_files_authentication
block as defined below. - blob
Properties Property Map - A
blob_properties
block as defined below. - cross
Tenant BooleanReplication Enabled - Should cross Tenant replication be enabled? Defaults to
false
. - custom
Domain Property Map - A
custom_domain
block as documented below. - customer
Managed Property MapKey A
customer_managed_key
block as documented below.Note: It's possible to define a Customer Managed Key both within either the
customer_managed_key
block or by using theazure.storage.CustomerManagedKey
resource. However, it's not possible to use both methods to manage a Customer Managed Key for a Storage Account, since these will conflict. When using theazure.storage.CustomerManagedKey
resource, you will need to useignore_changes
on thecustomer_managed_key
block.- default
To BooleanOauth Authentication - Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is
false
- dns
Endpoint StringType Specifies which DNS endpoint type to use. Possible values are
Standard
andAzureDnsZone
. Defaults toStandard
. Changing this forces a new resource to be created.Note: Azure DNS zone support requires
PartitionedDns
feature to be enabled. To enable this feature for your subscription, use the following command:az feature register --namespace "Microsoft.Storage" --name "PartitionedDns"
.- edge
Zone String - Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.
- https
Traffic BooleanOnly Enabled - Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to
true
. - identity Property Map
- An
identity
block as defined below. - immutability
Policy Property Map - An
immutability_policy
block as defined below. Changing this forces a new resource to be created. - infrastructure
Encryption BooleanEnabled Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_kind
isStorageV2
or whenaccount_tier
isPremium
andaccount_kind
is one ofBlockBlobStorage
orFileStorage
.- is
Hns BooleanEnabled Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.
Note: This can only be
true
whenaccount_tier
isStandard
or whenaccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
- Boolean
Are Large File Shares Enabled? Defaults to
false
.Note: Large File Shares are enabled by default when using an
account_kind
ofFileStorage
.- local
User BooleanEnabled - Is Local User Enabled? Defaults to
true
. - location String
- Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.
- min
Tls StringVersion The minimum supported TLS version for the storage account. Possible values are
TLS1_0
,TLS1_1
, andTLS1_2
. Defaults toTLS1_2
for new storage accounts.Note: At this time
min_tls_version
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- name String
- Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.
- network
Rules Property Map - A
network_rules
block as documented below. - nfsv3Enabled Boolean
Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_tier
isStandard
andaccount_kind
isStorageV2
, oraccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
. Additionally, theis_hns_enabled
istrue
andaccount_replication_type
must beLRS
orRAGRS
.- public
Network BooleanAccess Enabled - Whether the public network access is enabled? Defaults to
true
. - queue
Encryption StringKey Type - The encryption type of the queue service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
. - queue
Properties Property Map A
queue_properties
block as defined below.Note:
queue_properties
can only be configured whenaccount_tier
is set toStandard
andaccount_kind
is set to eitherStorage
orStorageV2
.- routing Property Map
- A
routing
block as defined below. - sas
Policy Property Map - A
sas_policy
block as defined below. - sftp
Enabled Boolean Boolean, enable SFTP for the storage account
Note: SFTP support requires
is_hns_enabled
set totrue
. More information on SFTP support can be found here. Defaults tofalse
- Property Map
A
share_properties
block as defined below.Note:
share_properties
can only be configured when eitheraccount_tier
isStandard
andaccount_kind
is eitherStorage
orStorageV2
- or whenaccount_tier
isPremium
andaccount_kind
isFileStorage
.- Boolean
- static
Website Property Map A
static_website
block as defined below.Note:
static_website
can only be set when theaccount_kind
is set toStorageV2
orBlockBlobStorage
.Note: If
static_website
is specified, the service will automatically create aazure.storage.Container
named$web
.- table
Encryption StringKey Type The encryption type of the table service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.Note:
queue_encryption_key_type
andtable_encryption_key_type
cannot be set toAccount
whenaccount_kind
is setStorage
- Map<String>
- A mapping of tags to assign to the resource.
Outputs
All input properties are implicitly available as output properties. Additionally, the Account resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Primary
Access stringKey - The primary access key for the storage account.
- Primary
Blob stringConnection String - The connection string associated with the primary blob location.
- Primary
Blob stringEndpoint - The endpoint URL for blob storage in the primary location.
- Primary
Blob stringHost - The hostname with port if applicable for blob storage in the primary location.
- Primary
Blob stringInternet Endpoint - The internet routing endpoint URL for blob storage in the primary location.
- Primary
Blob stringInternet Host - The internet routing hostname with port if applicable for blob storage in the primary location.
- Primary
Blob stringMicrosoft Endpoint - The microsoft routing endpoint URL for blob storage in the primary location.
- Primary
Blob stringMicrosoft Host - The microsoft routing hostname with port if applicable for blob storage in the primary location.
- Primary
Connection stringString - The connection string associated with the primary location.
- Primary
Dfs stringEndpoint - The endpoint URL for DFS storage in the primary location.
- Primary
Dfs stringHost - The hostname with port if applicable for DFS storage in the primary location.
- Primary
Dfs stringInternet Endpoint - The internet routing endpoint URL for DFS storage in the primary location.
- Primary
Dfs stringInternet Host - The internet routing hostname with port if applicable for DFS storage in the primary location.
- Primary
Dfs stringMicrosoft Endpoint - The microsoft routing endpoint URL for DFS storage in the primary location.
- Primary
Dfs stringMicrosoft Host - The microsoft routing hostname with port if applicable for DFS storage in the primary location.
- Primary
File stringEndpoint - The endpoint URL for file storage in the primary location.
- Primary
File stringHost - The hostname with port if applicable for file storage in the primary location.
- Primary
File stringInternet Endpoint - The internet routing endpoint URL for file storage in the primary location.
- Primary
File stringInternet Host - The internet routing hostname with port if applicable for file storage in the primary location.
- Primary
File stringMicrosoft Endpoint - The microsoft routing endpoint URL for file storage in the primary location.
- Primary
File stringMicrosoft Host - The microsoft routing hostname with port if applicable for file storage in the primary location.
- Primary
Location string - The primary location of the storage account.
- Primary
Queue stringEndpoint - The endpoint URL for queue storage in the primary location.
- Primary
Queue stringHost - The hostname with port if applicable for queue storage in the primary location.
- Primary
Queue stringMicrosoft Endpoint - The microsoft routing endpoint URL for queue storage in the primary location.
- Primary
Queue stringMicrosoft Host - The microsoft routing hostname with port if applicable for queue storage in the primary location.
- Primary
Table stringEndpoint - The endpoint URL for table storage in the primary location.
- Primary
Table stringHost - The hostname with port if applicable for table storage in the primary location.
- Primary
Table stringMicrosoft Endpoint - The microsoft routing endpoint URL for table storage in the primary location.
- Primary
Table stringMicrosoft Host - The microsoft routing hostname with port if applicable for table storage in the primary location.
- Primary
Web stringEndpoint - The endpoint URL for web storage in the primary location.
- Primary
Web stringHost - The hostname with port if applicable for web storage in the primary location.
- Primary
Web stringInternet Endpoint - The internet routing endpoint URL for web storage in the primary location.
- Primary
Web stringInternet Host - The internet routing hostname with port if applicable for web storage in the primary location.
- Primary
Web stringMicrosoft Endpoint - The microsoft routing endpoint URL for web storage in the primary location.
- Primary
Web stringMicrosoft Host - The microsoft routing hostname with port if applicable for web storage in the primary location.
- Secondary
Access stringKey - The secondary access key for the storage account.
- Secondary
Blob stringConnection String - The connection string associated with the secondary blob location.
- Secondary
Blob stringEndpoint - The endpoint URL for blob storage in the secondary location.
- Secondary
Blob stringHost - The hostname with port if applicable for blob storage in the secondary location.
- Secondary
Blob stringInternet Endpoint - The internet routing endpoint URL for blob storage in the secondary location.
- Secondary
Blob stringInternet Host - The internet routing hostname with port if applicable for blob storage in the secondary location.
- Secondary
Blob stringMicrosoft Endpoint - The microsoft routing endpoint URL for blob storage in the secondary location.
- Secondary
Blob stringMicrosoft Host - The microsoft routing hostname with port if applicable for blob storage in the secondary location.
- Secondary
Connection stringString - The connection string associated with the secondary location.
- Secondary
Dfs stringEndpoint - The endpoint URL for DFS storage in the secondary location.
- Secondary
Dfs stringHost - The hostname with port if applicable for DFS storage in the secondary location.
- Secondary
Dfs stringInternet Endpoint - The internet routing endpoint URL for DFS storage in the secondary location.
- Secondary
Dfs stringInternet Host - The internet routing hostname with port if applicable for DFS storage in the secondary location.
- Secondary
Dfs stringMicrosoft Endpoint - The microsoft routing endpoint URL for DFS storage in the secondary location.
- Secondary
Dfs stringMicrosoft Host - The microsoft routing hostname with port if applicable for DFS storage in the secondary location.
- Secondary
File stringEndpoint - The endpoint URL for file storage in the secondary location.
- Secondary
File stringHost - The hostname with port if applicable for file storage in the secondary location.
- Secondary
File stringInternet Endpoint - The internet routing endpoint URL for file storage in the secondary location.
- Secondary
File stringInternet Host - The internet routing hostname with port if applicable for file storage in the secondary location.
- Secondary
File stringMicrosoft Endpoint - The microsoft routing endpoint URL for file storage in the secondary location.
- Secondary
File stringMicrosoft Host - The microsoft routing hostname with port if applicable for file storage in the secondary location.
- Secondary
Location string - The secondary location of the storage account.
- Secondary
Queue stringEndpoint - The endpoint URL for queue storage in the secondary location.
- Secondary
Queue stringHost - The hostname with port if applicable for queue storage in the secondary location.
- Secondary
Queue stringMicrosoft Endpoint - The microsoft routing endpoint URL for queue storage in the secondary location.
- Secondary
Queue stringMicrosoft Host - The microsoft routing hostname with port if applicable for queue storage in the secondary location.
- Secondary
Table stringEndpoint - The endpoint URL for table storage in the secondary location.
- Secondary
Table stringHost - The hostname with port if applicable for table storage in the secondary location.
- Secondary
Table stringMicrosoft Endpoint - The microsoft routing endpoint URL for table storage in the secondary location.
- Secondary
Table stringMicrosoft Host - The microsoft routing hostname with port if applicable for table storage in the secondary location.
- Secondary
Web stringEndpoint - The endpoint URL for web storage in the secondary location.
- Secondary
Web stringHost - The hostname with port if applicable for web storage in the secondary location.
- Secondary
Web stringInternet Endpoint - The internet routing endpoint URL for web storage in the secondary location.
- Secondary
Web stringInternet Host - The internet routing hostname with port if applicable for web storage in the secondary location.
- Secondary
Web stringMicrosoft Endpoint - The microsoft routing endpoint URL for web storage in the secondary location.
- Secondary
Web stringMicrosoft Host - The microsoft routing hostname with port if applicable for web storage in the secondary location.
- Id string
- The provider-assigned unique ID for this managed resource.
- Primary
Access stringKey - The primary access key for the storage account.
- Primary
Blob stringConnection String - The connection string associated with the primary blob location.
- Primary
Blob stringEndpoint - The endpoint URL for blob storage in the primary location.
- Primary
Blob stringHost - The hostname with port if applicable for blob storage in the primary location.
- Primary
Blob stringInternet Endpoint - The internet routing endpoint URL for blob storage in the primary location.
- Primary
Blob stringInternet Host - The internet routing hostname with port if applicable for blob storage in the primary location.
- Primary
Blob stringMicrosoft Endpoint - The microsoft routing endpoint URL for blob storage in the primary location.
- Primary
Blob stringMicrosoft Host - The microsoft routing hostname with port if applicable for blob storage in the primary location.
- Primary
Connection stringString - The connection string associated with the primary location.
- Primary
Dfs stringEndpoint - The endpoint URL for DFS storage in the primary location.
- Primary
Dfs stringHost - The hostname with port if applicable for DFS storage in the primary location.
- Primary
Dfs stringInternet Endpoint - The internet routing endpoint URL for DFS storage in the primary location.
- Primary
Dfs stringInternet Host - The internet routing hostname with port if applicable for DFS storage in the primary location.
- Primary
Dfs stringMicrosoft Endpoint - The microsoft routing endpoint URL for DFS storage in the primary location.
- Primary
Dfs stringMicrosoft Host - The microsoft routing hostname with port if applicable for DFS storage in the primary location.
- Primary
File stringEndpoint - The endpoint URL for file storage in the primary location.
- Primary
File stringHost - The hostname with port if applicable for file storage in the primary location.
- Primary
File stringInternet Endpoint - The internet routing endpoint URL for file storage in the primary location.
- Primary
File stringInternet Host - The internet routing hostname with port if applicable for file storage in the primary location.
- Primary
File stringMicrosoft Endpoint - The microsoft routing endpoint URL for file storage in the primary location.
- Primary
File stringMicrosoft Host - The microsoft routing hostname with port if applicable for file storage in the primary location.
- Primary
Location string - The primary location of the storage account.
- Primary
Queue stringEndpoint - The endpoint URL for queue storage in the primary location.
- Primary
Queue stringHost - The hostname with port if applicable for queue storage in the primary location.
- Primary
Queue stringMicrosoft Endpoint - The microsoft routing endpoint URL for queue storage in the primary location.
- Primary
Queue stringMicrosoft Host - The microsoft routing hostname with port if applicable for queue storage in the primary location.
- Primary
Table stringEndpoint - The endpoint URL for table storage in the primary location.
- Primary
Table stringHost - The hostname with port if applicable for table storage in the primary location.
- Primary
Table stringMicrosoft Endpoint - The microsoft routing endpoint URL for table storage in the primary location.
- Primary
Table stringMicrosoft Host - The microsoft routing hostname with port if applicable for table storage in the primary location.
- Primary
Web stringEndpoint - The endpoint URL for web storage in the primary location.
- Primary
Web stringHost - The hostname with port if applicable for web storage in the primary location.
- Primary
Web stringInternet Endpoint - The internet routing endpoint URL for web storage in the primary location.
- Primary
Web stringInternet Host - The internet routing hostname with port if applicable for web storage in the primary location.
- Primary
Web stringMicrosoft Endpoint - The microsoft routing endpoint URL for web storage in the primary location.
- Primary
Web stringMicrosoft Host - The microsoft routing hostname with port if applicable for web storage in the primary location.
- Secondary
Access stringKey - The secondary access key for the storage account.
- Secondary
Blob stringConnection String - The connection string associated with the secondary blob location.
- Secondary
Blob stringEndpoint - The endpoint URL for blob storage in the secondary location.
- Secondary
Blob stringHost - The hostname with port if applicable for blob storage in the secondary location.
- Secondary
Blob stringInternet Endpoint - The internet routing endpoint URL for blob storage in the secondary location.
- Secondary
Blob stringInternet Host - The internet routing hostname with port if applicable for blob storage in the secondary location.
- Secondary
Blob stringMicrosoft Endpoint - The microsoft routing endpoint URL for blob storage in the secondary location.
- Secondary
Blob stringMicrosoft Host - The microsoft routing hostname with port if applicable for blob storage in the secondary location.
- Secondary
Connection stringString - The connection string associated with the secondary location.
- Secondary
Dfs stringEndpoint - The endpoint URL for DFS storage in the secondary location.
- Secondary
Dfs stringHost - The hostname with port if applicable for DFS storage in the secondary location.
- Secondary
Dfs stringInternet Endpoint - The internet routing endpoint URL for DFS storage in the secondary location.
- Secondary
Dfs stringInternet Host - The internet routing hostname with port if applicable for DFS storage in the secondary location.
- Secondary
Dfs stringMicrosoft Endpoint - The microsoft routing endpoint URL for DFS storage in the secondary location.
- Secondary
Dfs stringMicrosoft Host - The microsoft routing hostname with port if applicable for DFS storage in the secondary location.
- Secondary
File stringEndpoint - The endpoint URL for file storage in the secondary location.
- Secondary
File stringHost - The hostname with port if applicable for file storage in the secondary location.
- Secondary
File stringInternet Endpoint - The internet routing endpoint URL for file storage in the secondary location.
- Secondary
File stringInternet Host - The internet routing hostname with port if applicable for file storage in the secondary location.
- Secondary
File stringMicrosoft Endpoint - The microsoft routing endpoint URL for file storage in the secondary location.
- Secondary
File stringMicrosoft Host - The microsoft routing hostname with port if applicable for file storage in the secondary location.
- Secondary
Location string - The secondary location of the storage account.
- Secondary
Queue stringEndpoint - The endpoint URL for queue storage in the secondary location.
- Secondary
Queue stringHost - The hostname with port if applicable for queue storage in the secondary location.
- Secondary
Queue stringMicrosoft Endpoint - The microsoft routing endpoint URL for queue storage in the secondary location.
- Secondary
Queue stringMicrosoft Host - The microsoft routing hostname with port if applicable for queue storage in the secondary location.
- Secondary
Table stringEndpoint - The endpoint URL for table storage in the secondary location.
- Secondary
Table stringHost - The hostname with port if applicable for table storage in the secondary location.
- Secondary
Table stringMicrosoft Endpoint - The microsoft routing endpoint URL for table storage in the secondary location.
- Secondary
Table stringMicrosoft Host - The microsoft routing hostname with port if applicable for table storage in the secondary location.
- Secondary
Web stringEndpoint - The endpoint URL for web storage in the secondary location.
- Secondary
Web stringHost - The hostname with port if applicable for web storage in the secondary location.
- Secondary
Web stringInternet Endpoint - The internet routing endpoint URL for web storage in the secondary location.
- Secondary
Web stringInternet Host - The internet routing hostname with port if applicable for web storage in the secondary location.
- Secondary
Web stringMicrosoft Endpoint - The microsoft routing endpoint URL for web storage in the secondary location.
- Secondary
Web stringMicrosoft Host - The microsoft routing hostname with port if applicable for web storage in the secondary location.
- id String
- The provider-assigned unique ID for this managed resource.
- primary
Access StringKey - The primary access key for the storage account.
- primary
Blob StringConnection String - The connection string associated with the primary blob location.
- primary
Blob StringEndpoint - The endpoint URL for blob storage in the primary location.
- primary
Blob StringHost - The hostname with port if applicable for blob storage in the primary location.
- primary
Blob StringInternet Endpoint - The internet routing endpoint URL for blob storage in the primary location.
- primary
Blob StringInternet Host - The internet routing hostname with port if applicable for blob storage in the primary location.
- primary
Blob StringMicrosoft Endpoint - The microsoft routing endpoint URL for blob storage in the primary location.
- primary
Blob StringMicrosoft Host - The microsoft routing hostname with port if applicable for blob storage in the primary location.
- primary
Connection StringString - The connection string associated with the primary location.
- primary
Dfs StringEndpoint - The endpoint URL for DFS storage in the primary location.
- primary
Dfs StringHost - The hostname with port if applicable for DFS storage in the primary location.
- primary
Dfs StringInternet Endpoint - The internet routing endpoint URL for DFS storage in the primary location.
- primary
Dfs StringInternet Host - The internet routing hostname with port if applicable for DFS storage in the primary location.
- primary
Dfs StringMicrosoft Endpoint - The microsoft routing endpoint URL for DFS storage in the primary location.
- primary
Dfs StringMicrosoft Host - The microsoft routing hostname with port if applicable for DFS storage in the primary location.
- primary
File StringEndpoint - The endpoint URL for file storage in the primary location.
- primary
File StringHost - The hostname with port if applicable for file storage in the primary location.
- primary
File StringInternet Endpoint - The internet routing endpoint URL for file storage in the primary location.
- primary
File StringInternet Host - The internet routing hostname with port if applicable for file storage in the primary location.
- primary
File StringMicrosoft Endpoint - The microsoft routing endpoint URL for file storage in the primary location.
- primary
File StringMicrosoft Host - The microsoft routing hostname with port if applicable for file storage in the primary location.
- primary
Location String - The primary location of the storage account.
- primary
Queue StringEndpoint - The endpoint URL for queue storage in the primary location.
- primary
Queue StringHost - The hostname with port if applicable for queue storage in the primary location.
- primary
Queue StringMicrosoft Endpoint - The microsoft routing endpoint URL for queue storage in the primary location.
- primary
Queue StringMicrosoft Host - The microsoft routing hostname with port if applicable for queue storage in the primary location.
- primary
Table StringEndpoint - The endpoint URL for table storage in the primary location.
- primary
Table StringHost - The hostname with port if applicable for table storage in the primary location.
- primary
Table StringMicrosoft Endpoint - The microsoft routing endpoint URL for table storage in the primary location.
- primary
Table StringMicrosoft Host - The microsoft routing hostname with port if applicable for table storage in the primary location.
- primary
Web StringEndpoint - The endpoint URL for web storage in the primary location.
- primary
Web StringHost - The hostname with port if applicable for web storage in the primary location.
- primary
Web StringInternet Endpoint - The internet routing endpoint URL for web storage in the primary location.
- primary
Web StringInternet Host - The internet routing hostname with port if applicable for web storage in the primary location.
- primary
Web StringMicrosoft Endpoint - The microsoft routing endpoint URL for web storage in the primary location.
- primary
Web StringMicrosoft Host - The microsoft routing hostname with port if applicable for web storage in the primary location.
- secondary
Access StringKey - The secondary access key for the storage account.
- secondary
Blob StringConnection String - The connection string associated with the secondary blob location.
- secondary
Blob StringEndpoint - The endpoint URL for blob storage in the secondary location.
- secondary
Blob StringHost - The hostname with port if applicable for blob storage in the secondary location.
- secondary
Blob StringInternet Endpoint - The internet routing endpoint URL for blob storage in the secondary location.
- secondary
Blob StringInternet Host - The internet routing hostname with port if applicable for blob storage in the secondary location.
- secondary
Blob StringMicrosoft Endpoint - The microsoft routing endpoint URL for blob storage in the secondary location.
- secondary
Blob StringMicrosoft Host - The microsoft routing hostname with port if applicable for blob storage in the secondary location.
- secondary
Connection StringString - The connection string associated with the secondary location.
- secondary
Dfs StringEndpoint - The endpoint URL for DFS storage in the secondary location.
- secondary
Dfs StringHost - The hostname with port if applicable for DFS storage in the secondary location.
- secondary
Dfs StringInternet Endpoint - The internet routing endpoint URL for DFS storage in the secondary location.
- secondary
Dfs StringInternet Host - The internet routing hostname with port if applicable for DFS storage in the secondary location.
- secondary
Dfs StringMicrosoft Endpoint - The microsoft routing endpoint URL for DFS storage in the secondary location.
- secondary
Dfs StringMicrosoft Host - The microsoft routing hostname with port if applicable for DFS storage in the secondary location.
- secondary
File StringEndpoint - The endpoint URL for file storage in the secondary location.
- secondary
File StringHost - The hostname with port if applicable for file storage in the secondary location.
- secondary
File StringInternet Endpoint - The internet routing endpoint URL for file storage in the secondary location.
- secondary
File StringInternet Host - The internet routing hostname with port if applicable for file storage in the secondary location.
- secondary
File StringMicrosoft Endpoint - The microsoft routing endpoint URL for file storage in the secondary location.
- secondary
File StringMicrosoft Host - The microsoft routing hostname with port if applicable for file storage in the secondary location.
- secondary
Location String - The secondary location of the storage account.
- secondary
Queue StringEndpoint - The endpoint URL for queue storage in the secondary location.
- secondary
Queue StringHost - The hostname with port if applicable for queue storage in the secondary location.
- secondary
Queue StringMicrosoft Endpoint - The microsoft routing endpoint URL for queue storage in the secondary location.
- secondary
Queue StringMicrosoft Host - The microsoft routing hostname with port if applicable for queue storage in the secondary location.
- secondary
Table StringEndpoint - The endpoint URL for table storage in the secondary location.
- secondary
Table StringHost - The hostname with port if applicable for table storage in the secondary location.
- secondary
Table StringMicrosoft Endpoint - The microsoft routing endpoint URL for table storage in the secondary location.
- secondary
Table StringMicrosoft Host - The microsoft routing hostname with port if applicable for table storage in the secondary location.
- secondary
Web StringEndpoint - The endpoint URL for web storage in the secondary location.
- secondary
Web StringHost - The hostname with port if applicable for web storage in the secondary location.
- secondary
Web StringInternet Endpoint - The internet routing endpoint URL for web storage in the secondary location.
- secondary
Web StringInternet Host - The internet routing hostname with port if applicable for web storage in the secondary location.
- secondary
Web StringMicrosoft Endpoint - The microsoft routing endpoint URL for web storage in the secondary location.
- secondary
Web StringMicrosoft Host - The microsoft routing hostname with port if applicable for web storage in the secondary location.
- id string
- The provider-assigned unique ID for this managed resource.
- primary
Access stringKey - The primary access key for the storage account.
- primary
Blob stringConnection String - The connection string associated with the primary blob location.
- primary
Blob stringEndpoint - The endpoint URL for blob storage in the primary location.
- primary
Blob stringHost - The hostname with port if applicable for blob storage in the primary location.
- primary
Blob stringInternet Endpoint - The internet routing endpoint URL for blob storage in the primary location.
- primary
Blob stringInternet Host - The internet routing hostname with port if applicable for blob storage in the primary location.
- primary
Blob stringMicrosoft Endpoint - The microsoft routing endpoint URL for blob storage in the primary location.
- primary
Blob stringMicrosoft Host - The microsoft routing hostname with port if applicable for blob storage in the primary location.
- primary
Connection stringString - The connection string associated with the primary location.
- primary
Dfs stringEndpoint - The endpoint URL for DFS storage in the primary location.
- primary
Dfs stringHost - The hostname with port if applicable for DFS storage in the primary location.
- primary
Dfs stringInternet Endpoint - The internet routing endpoint URL for DFS storage in the primary location.
- primary
Dfs stringInternet Host - The internet routing hostname with port if applicable for DFS storage in the primary location.
- primary
Dfs stringMicrosoft Endpoint - The microsoft routing endpoint URL for DFS storage in the primary location.
- primary
Dfs stringMicrosoft Host - The microsoft routing hostname with port if applicable for DFS storage in the primary location.
- primary
File stringEndpoint - The endpoint URL for file storage in the primary location.
- primary
File stringHost - The hostname with port if applicable for file storage in the primary location.
- primary
File stringInternet Endpoint - The internet routing endpoint URL for file storage in the primary location.
- primary
File stringInternet Host - The internet routing hostname with port if applicable for file storage in the primary location.
- primary
File stringMicrosoft Endpoint - The microsoft routing endpoint URL for file storage in the primary location.
- primary
File stringMicrosoft Host - The microsoft routing hostname with port if applicable for file storage in the primary location.
- primary
Location string - The primary location of the storage account.
- primary
Queue stringEndpoint - The endpoint URL for queue storage in the primary location.
- primary
Queue stringHost - The hostname with port if applicable for queue storage in the primary location.
- primary
Queue stringMicrosoft Endpoint - The microsoft routing endpoint URL for queue storage in the primary location.
- primary
Queue stringMicrosoft Host - The microsoft routing hostname with port if applicable for queue storage in the primary location.
- primary
Table stringEndpoint - The endpoint URL for table storage in the primary location.
- primary
Table stringHost - The hostname with port if applicable for table storage in the primary location.
- primary
Table stringMicrosoft Endpoint - The microsoft routing endpoint URL for table storage in the primary location.
- primary
Table stringMicrosoft Host - The microsoft routing hostname with port if applicable for table storage in the primary location.
- primary
Web stringEndpoint - The endpoint URL for web storage in the primary location.
- primary
Web stringHost - The hostname with port if applicable for web storage in the primary location.
- primary
Web stringInternet Endpoint - The internet routing endpoint URL for web storage in the primary location.
- primary
Web stringInternet Host - The internet routing hostname with port if applicable for web storage in the primary location.
- primary
Web stringMicrosoft Endpoint - The microsoft routing endpoint URL for web storage in the primary location.
- primary
Web stringMicrosoft Host - The microsoft routing hostname with port if applicable for web storage in the primary location.
- secondary
Access stringKey - The secondary access key for the storage account.
- secondary
Blob stringConnection String - The connection string associated with the secondary blob location.
- secondary
Blob stringEndpoint - The endpoint URL for blob storage in the secondary location.
- secondary
Blob stringHost - The hostname with port if applicable for blob storage in the secondary location.
- secondary
Blob stringInternet Endpoint - The internet routing endpoint URL for blob storage in the secondary location.
- secondary
Blob stringInternet Host - The internet routing hostname with port if applicable for blob storage in the secondary location.
- secondary
Blob stringMicrosoft Endpoint - The microsoft routing endpoint URL for blob storage in the secondary location.
- secondary
Blob stringMicrosoft Host - The microsoft routing hostname with port if applicable for blob storage in the secondary location.
- secondary
Connection stringString - The connection string associated with the secondary location.
- secondary
Dfs stringEndpoint - The endpoint URL for DFS storage in the secondary location.
- secondary
Dfs stringHost - The hostname with port if applicable for DFS storage in the secondary location.
- secondary
Dfs stringInternet Endpoint - The internet routing endpoint URL for DFS storage in the secondary location.
- secondary
Dfs stringInternet Host - The internet routing hostname with port if applicable for DFS storage in the secondary location.
- secondary
Dfs stringMicrosoft Endpoint - The microsoft routing endpoint URL for DFS storage in the secondary location.
- secondary
Dfs stringMicrosoft Host - The microsoft routing hostname with port if applicable for DFS storage in the secondary location.
- secondary
File stringEndpoint - The endpoint URL for file storage in the secondary location.
- secondary
File stringHost - The hostname with port if applicable for file storage in the secondary location.
- secondary
File stringInternet Endpoint - The internet routing endpoint URL for file storage in the secondary location.
- secondary
File stringInternet Host - The internet routing hostname with port if applicable for file storage in the secondary location.
- secondary
File stringMicrosoft Endpoint - The microsoft routing endpoint URL for file storage in the secondary location.
- secondary
File stringMicrosoft Host - The microsoft routing hostname with port if applicable for file storage in the secondary location.
- secondary
Location string - The secondary location of the storage account.
- secondary
Queue stringEndpoint - The endpoint URL for queue storage in the secondary location.
- secondary
Queue stringHost - The hostname with port if applicable for queue storage in the secondary location.
- secondary
Queue stringMicrosoft Endpoint - The microsoft routing endpoint URL for queue storage in the secondary location.
- secondary
Queue stringMicrosoft Host - The microsoft routing hostname with port if applicable for queue storage in the secondary location.
- secondary
Table stringEndpoint - The endpoint URL for table storage in the secondary location.
- secondary
Table stringHost - The hostname with port if applicable for table storage in the secondary location.
- secondary
Table stringMicrosoft Endpoint - The microsoft routing endpoint URL for table storage in the secondary location.
- secondary
Table stringMicrosoft Host - The microsoft routing hostname with port if applicable for table storage in the secondary location.
- secondary
Web stringEndpoint - The endpoint URL for web storage in the secondary location.
- secondary
Web stringHost - The hostname with port if applicable for web storage in the secondary location.
- secondary
Web stringInternet Endpoint - The internet routing endpoint URL for web storage in the secondary location.
- secondary
Web stringInternet Host - The internet routing hostname with port if applicable for web storage in the secondary location.
- secondary
Web stringMicrosoft Endpoint - The microsoft routing endpoint URL for web storage in the secondary location.
- secondary
Web stringMicrosoft Host - The microsoft routing hostname with port if applicable for web storage in the secondary location.
- id str
- The provider-assigned unique ID for this managed resource.
- primary_
access_ strkey - The primary access key for the storage account.
- primary_
blob_ strconnection_ string - The connection string associated with the primary blob location.
- primary_
blob_ strendpoint - The endpoint URL for blob storage in the primary location.
- primary_
blob_ strhost - The hostname with port if applicable for blob storage in the primary location.
- primary_
blob_ strinternet_ endpoint - The internet routing endpoint URL for blob storage in the primary location.
- primary_
blob_ strinternet_ host - The internet routing hostname with port if applicable for blob storage in the primary location.
- primary_
blob_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for blob storage in the primary location.
- primary_
blob_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for blob storage in the primary location.
- primary_
connection_ strstring - The connection string associated with the primary location.
- primary_
dfs_ strendpoint - The endpoint URL for DFS storage in the primary location.
- primary_
dfs_ strhost - The hostname with port if applicable for DFS storage in the primary location.
- primary_
dfs_ strinternet_ endpoint - The internet routing endpoint URL for DFS storage in the primary location.
- primary_
dfs_ strinternet_ host - The internet routing hostname with port if applicable for DFS storage in the primary location.
- primary_
dfs_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for DFS storage in the primary location.
- primary_
dfs_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for DFS storage in the primary location.
- primary_
file_ strendpoint - The endpoint URL for file storage in the primary location.
- primary_
file_ strhost - The hostname with port if applicable for file storage in the primary location.
- primary_
file_ strinternet_ endpoint - The internet routing endpoint URL for file storage in the primary location.
- primary_
file_ strinternet_ host - The internet routing hostname with port if applicable for file storage in the primary location.
- primary_
file_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for file storage in the primary location.
- primary_
file_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for file storage in the primary location.
- primary_
location str - The primary location of the storage account.
- primary_
queue_ strendpoint - The endpoint URL for queue storage in the primary location.
- primary_
queue_ strhost - The hostname with port if applicable for queue storage in the primary location.
- primary_
queue_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for queue storage in the primary location.
- primary_
queue_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for queue storage in the primary location.
- primary_
table_ strendpoint - The endpoint URL for table storage in the primary location.
- primary_
table_ strhost - The hostname with port if applicable for table storage in the primary location.
- primary_
table_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for table storage in the primary location.
- primary_
table_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for table storage in the primary location.
- primary_
web_ strendpoint - The endpoint URL for web storage in the primary location.
- primary_
web_ strhost - The hostname with port if applicable for web storage in the primary location.
- primary_
web_ strinternet_ endpoint - The internet routing endpoint URL for web storage in the primary location.
- primary_
web_ strinternet_ host - The internet routing hostname with port if applicable for web storage in the primary location.
- primary_
web_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for web storage in the primary location.
- primary_
web_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for web storage in the primary location.
- secondary_
access_ strkey - The secondary access key for the storage account.
- secondary_
blob_ strconnection_ string - The connection string associated with the secondary blob location.
- secondary_
blob_ strendpoint - The endpoint URL for blob storage in the secondary location.
- secondary_
blob_ strhost - The hostname with port if applicable for blob storage in the secondary location.
- secondary_
blob_ strinternet_ endpoint - The internet routing endpoint URL for blob storage in the secondary location.
- secondary_
blob_ strinternet_ host - The internet routing hostname with port if applicable for blob storage in the secondary location.
- secondary_
blob_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for blob storage in the secondary location.
- secondary_
blob_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for blob storage in the secondary location.
- secondary_
connection_ strstring - The connection string associated with the secondary location.
- secondary_
dfs_ strendpoint - The endpoint URL for DFS storage in the secondary location.
- secondary_
dfs_ strhost - The hostname with port if applicable for DFS storage in the secondary location.
- secondary_
dfs_ strinternet_ endpoint - The internet routing endpoint URL for DFS storage in the secondary location.
- secondary_
dfs_ strinternet_ host - The internet routing hostname with port if applicable for DFS storage in the secondary location.
- secondary_
dfs_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for DFS storage in the secondary location.
- secondary_
dfs_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for DFS storage in the secondary location.
- secondary_
file_ strendpoint - The endpoint URL for file storage in the secondary location.
- secondary_
file_ strhost - The hostname with port if applicable for file storage in the secondary location.
- secondary_
file_ strinternet_ endpoint - The internet routing endpoint URL for file storage in the secondary location.
- secondary_
file_ strinternet_ host - The internet routing hostname with port if applicable for file storage in the secondary location.
- secondary_
file_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for file storage in the secondary location.
- secondary_
file_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for file storage in the secondary location.
- secondary_
location str - The secondary location of the storage account.
- secondary_
queue_ strendpoint - The endpoint URL for queue storage in the secondary location.
- secondary_
queue_ strhost - The hostname with port if applicable for queue storage in the secondary location.
- secondary_
queue_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for queue storage in the secondary location.
- secondary_
queue_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for queue storage in the secondary location.
- secondary_
table_ strendpoint - The endpoint URL for table storage in the secondary location.
- secondary_
table_ strhost - The hostname with port if applicable for table storage in the secondary location.
- secondary_
table_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for table storage in the secondary location.
- secondary_
table_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for table storage in the secondary location.
- secondary_
web_ strendpoint - The endpoint URL for web storage in the secondary location.
- secondary_
web_ strhost - The hostname with port if applicable for web storage in the secondary location.
- secondary_
web_ strinternet_ endpoint - The internet routing endpoint URL for web storage in the secondary location.
- secondary_
web_ strinternet_ host - The internet routing hostname with port if applicable for web storage in the secondary location.
- secondary_
web_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for web storage in the secondary location.
- secondary_
web_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for web storage in the secondary location.
- id String
- The provider-assigned unique ID for this managed resource.
- primary
Access StringKey - The primary access key for the storage account.
- primary
Blob StringConnection String - The connection string associated with the primary blob location.
- primary
Blob StringEndpoint - The endpoint URL for blob storage in the primary location.
- primary
Blob StringHost - The hostname with port if applicable for blob storage in the primary location.
- primary
Blob StringInternet Endpoint - The internet routing endpoint URL for blob storage in the primary location.
- primary
Blob StringInternet Host - The internet routing hostname with port if applicable for blob storage in the primary location.
- primary
Blob StringMicrosoft Endpoint - The microsoft routing endpoint URL for blob storage in the primary location.
- primary
Blob StringMicrosoft Host - The microsoft routing hostname with port if applicable for blob storage in the primary location.
- primary
Connection StringString - The connection string associated with the primary location.
- primary
Dfs StringEndpoint - The endpoint URL for DFS storage in the primary location.
- primary
Dfs StringHost - The hostname with port if applicable for DFS storage in the primary location.
- primary
Dfs StringInternet Endpoint - The internet routing endpoint URL for DFS storage in the primary location.
- primary
Dfs StringInternet Host - The internet routing hostname with port if applicable for DFS storage in the primary location.
- primary
Dfs StringMicrosoft Endpoint - The microsoft routing endpoint URL for DFS storage in the primary location.
- primary
Dfs StringMicrosoft Host - The microsoft routing hostname with port if applicable for DFS storage in the primary location.
- primary
File StringEndpoint - The endpoint URL for file storage in the primary location.
- primary
File StringHost - The hostname with port if applicable for file storage in the primary location.
- primary
File StringInternet Endpoint - The internet routing endpoint URL for file storage in the primary location.
- primary
File StringInternet Host - The internet routing hostname with port if applicable for file storage in the primary location.
- primary
File StringMicrosoft Endpoint - The microsoft routing endpoint URL for file storage in the primary location.
- primary
File StringMicrosoft Host - The microsoft routing hostname with port if applicable for file storage in the primary location.
- primary
Location String - The primary location of the storage account.
- primary
Queue StringEndpoint - The endpoint URL for queue storage in the primary location.
- primary
Queue StringHost - The hostname with port if applicable for queue storage in the primary location.
- primary
Queue StringMicrosoft Endpoint - The microsoft routing endpoint URL for queue storage in the primary location.
- primary
Queue StringMicrosoft Host - The microsoft routing hostname with port if applicable for queue storage in the primary location.
- primary
Table StringEndpoint - The endpoint URL for table storage in the primary location.
- primary
Table StringHost - The hostname with port if applicable for table storage in the primary location.
- primary
Table StringMicrosoft Endpoint - The microsoft routing endpoint URL for table storage in the primary location.
- primary
Table StringMicrosoft Host - The microsoft routing hostname with port if applicable for table storage in the primary location.
- primary
Web StringEndpoint - The endpoint URL for web storage in the primary location.
- primary
Web StringHost - The hostname with port if applicable for web storage in the primary location.
- primary
Web StringInternet Endpoint - The internet routing endpoint URL for web storage in the primary location.
- primary
Web StringInternet Host - The internet routing hostname with port if applicable for web storage in the primary location.
- primary
Web StringMicrosoft Endpoint - The microsoft routing endpoint URL for web storage in the primary location.
- primary
Web StringMicrosoft Host - The microsoft routing hostname with port if applicable for web storage in the primary location.
- secondary
Access StringKey - The secondary access key for the storage account.
- secondary
Blob StringConnection String - The connection string associated with the secondary blob location.
- secondary
Blob StringEndpoint - The endpoint URL for blob storage in the secondary location.
- secondary
Blob StringHost - The hostname with port if applicable for blob storage in the secondary location.
- secondary
Blob StringInternet Endpoint - The internet routing endpoint URL for blob storage in the secondary location.
- secondary
Blob StringInternet Host - The internet routing hostname with port if applicable for blob storage in the secondary location.
- secondary
Blob StringMicrosoft Endpoint - The microsoft routing endpoint URL for blob storage in the secondary location.
- secondary
Blob StringMicrosoft Host - The microsoft routing hostname with port if applicable for blob storage in the secondary location.
- secondary
Connection StringString - The connection string associated with the secondary location.
- secondary
Dfs StringEndpoint - The endpoint URL for DFS storage in the secondary location.
- secondary
Dfs StringHost - The hostname with port if applicable for DFS storage in the secondary location.
- secondary
Dfs StringInternet Endpoint - The internet routing endpoint URL for DFS storage in the secondary location.
- secondary
Dfs StringInternet Host - The internet routing hostname with port if applicable for DFS storage in the secondary location.
- secondary
Dfs StringMicrosoft Endpoint - The microsoft routing endpoint URL for DFS storage in the secondary location.
- secondary
Dfs StringMicrosoft Host - The microsoft routing hostname with port if applicable for DFS storage in the secondary location.
- secondary
File StringEndpoint - The endpoint URL for file storage in the secondary location.
- secondary
File StringHost - The hostname with port if applicable for file storage in the secondary location.
- secondary
File StringInternet Endpoint - The internet routing endpoint URL for file storage in the secondary location.
- secondary
File StringInternet Host - The internet routing hostname with port if applicable for file storage in the secondary location.
- secondary
File StringMicrosoft Endpoint - The microsoft routing endpoint URL for file storage in the secondary location.
- secondary
File StringMicrosoft Host - The microsoft routing hostname with port if applicable for file storage in the secondary location.
- secondary
Location String - The secondary location of the storage account.
- secondary
Queue StringEndpoint - The endpoint URL for queue storage in the secondary location.
- secondary
Queue StringHost - The hostname with port if applicable for queue storage in the secondary location.
- secondary
Queue StringMicrosoft Endpoint - The microsoft routing endpoint URL for queue storage in the secondary location.
- secondary
Queue StringMicrosoft Host - The microsoft routing hostname with port if applicable for queue storage in the secondary location.
- secondary
Table StringEndpoint - The endpoint URL for table storage in the secondary location.
- secondary
Table StringHost - The hostname with port if applicable for table storage in the secondary location.
- secondary
Table StringMicrosoft Endpoint - The microsoft routing endpoint URL for table storage in the secondary location.
- secondary
Table StringMicrosoft Host - The microsoft routing hostname with port if applicable for table storage in the secondary location.
- secondary
Web StringEndpoint - The endpoint URL for web storage in the secondary location.
- secondary
Web StringHost - The hostname with port if applicable for web storage in the secondary location.
- secondary
Web StringInternet Endpoint - The internet routing endpoint URL for web storage in the secondary location.
- secondary
Web StringInternet Host - The internet routing hostname with port if applicable for web storage in the secondary location.
- secondary
Web StringMicrosoft Endpoint - The microsoft routing endpoint URL for web storage in the secondary location.
- secondary
Web StringMicrosoft Host - The microsoft routing hostname with port if applicable for web storage in the secondary location.
Look up Existing Account Resource
Get an existing Account resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: AccountState, opts?: CustomResourceOptions): Account
@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
access_tier: Optional[str] = None,
account_kind: Optional[str] = None,
account_replication_type: Optional[str] = None,
account_tier: Optional[str] = None,
allow_nested_items_to_be_public: Optional[bool] = None,
allowed_copy_scope: Optional[str] = None,
azure_files_authentication: Optional[AccountAzureFilesAuthenticationArgs] = None,
blob_properties: Optional[AccountBlobPropertiesArgs] = None,
cross_tenant_replication_enabled: Optional[bool] = None,
custom_domain: Optional[AccountCustomDomainArgs] = None,
customer_managed_key: Optional[AccountCustomerManagedKeyArgs] = None,
default_to_oauth_authentication: Optional[bool] = None,
dns_endpoint_type: Optional[str] = None,
edge_zone: Optional[str] = None,
https_traffic_only_enabled: Optional[bool] = None,
identity: Optional[AccountIdentityArgs] = None,
immutability_policy: Optional[AccountImmutabilityPolicyArgs] = None,
infrastructure_encryption_enabled: Optional[bool] = None,
is_hns_enabled: Optional[bool] = None,
large_file_share_enabled: Optional[bool] = None,
local_user_enabled: Optional[bool] = None,
location: Optional[str] = None,
min_tls_version: Optional[str] = None,
name: Optional[str] = None,
network_rules: Optional[AccountNetworkRulesArgs] = None,
nfsv3_enabled: Optional[bool] = None,
primary_access_key: Optional[str] = None,
primary_blob_connection_string: Optional[str] = None,
primary_blob_endpoint: Optional[str] = None,
primary_blob_host: Optional[str] = None,
primary_blob_internet_endpoint: Optional[str] = None,
primary_blob_internet_host: Optional[str] = None,
primary_blob_microsoft_endpoint: Optional[str] = None,
primary_blob_microsoft_host: Optional[str] = None,
primary_connection_string: Optional[str] = None,
primary_dfs_endpoint: Optional[str] = None,
primary_dfs_host: Optional[str] = None,
primary_dfs_internet_endpoint: Optional[str] = None,
primary_dfs_internet_host: Optional[str] = None,
primary_dfs_microsoft_endpoint: Optional[str] = None,
primary_dfs_microsoft_host: Optional[str] = None,
primary_file_endpoint: Optional[str] = None,
primary_file_host: Optional[str] = None,
primary_file_internet_endpoint: Optional[str] = None,
primary_file_internet_host: Optional[str] = None,
primary_file_microsoft_endpoint: Optional[str] = None,
primary_file_microsoft_host: Optional[str] = None,
primary_location: Optional[str] = None,
primary_queue_endpoint: Optional[str] = None,
primary_queue_host: Optional[str] = None,
primary_queue_microsoft_endpoint: Optional[str] = None,
primary_queue_microsoft_host: Optional[str] = None,
primary_table_endpoint: Optional[str] = None,
primary_table_host: Optional[str] = None,
primary_table_microsoft_endpoint: Optional[str] = None,
primary_table_microsoft_host: Optional[str] = None,
primary_web_endpoint: Optional[str] = None,
primary_web_host: Optional[str] = None,
primary_web_internet_endpoint: Optional[str] = None,
primary_web_internet_host: Optional[str] = None,
primary_web_microsoft_endpoint: Optional[str] = None,
primary_web_microsoft_host: Optional[str] = None,
public_network_access_enabled: Optional[bool] = None,
queue_encryption_key_type: Optional[str] = None,
queue_properties: Optional[AccountQueuePropertiesArgs] = None,
resource_group_name: Optional[str] = None,
routing: Optional[AccountRoutingArgs] = None,
sas_policy: Optional[AccountSasPolicyArgs] = None,
secondary_access_key: Optional[str] = None,
secondary_blob_connection_string: Optional[str] = None,
secondary_blob_endpoint: Optional[str] = None,
secondary_blob_host: Optional[str] = None,
secondary_blob_internet_endpoint: Optional[str] = None,
secondary_blob_internet_host: Optional[str] = None,
secondary_blob_microsoft_endpoint: Optional[str] = None,
secondary_blob_microsoft_host: Optional[str] = None,
secondary_connection_string: Optional[str] = None,
secondary_dfs_endpoint: Optional[str] = None,
secondary_dfs_host: Optional[str] = None,
secondary_dfs_internet_endpoint: Optional[str] = None,
secondary_dfs_internet_host: Optional[str] = None,
secondary_dfs_microsoft_endpoint: Optional[str] = None,
secondary_dfs_microsoft_host: Optional[str] = None,
secondary_file_endpoint: Optional[str] = None,
secondary_file_host: Optional[str] = None,
secondary_file_internet_endpoint: Optional[str] = None,
secondary_file_internet_host: Optional[str] = None,
secondary_file_microsoft_endpoint: Optional[str] = None,
secondary_file_microsoft_host: Optional[str] = None,
secondary_location: Optional[str] = None,
secondary_queue_endpoint: Optional[str] = None,
secondary_queue_host: Optional[str] = None,
secondary_queue_microsoft_endpoint: Optional[str] = None,
secondary_queue_microsoft_host: Optional[str] = None,
secondary_table_endpoint: Optional[str] = None,
secondary_table_host: Optional[str] = None,
secondary_table_microsoft_endpoint: Optional[str] = None,
secondary_table_microsoft_host: Optional[str] = None,
secondary_web_endpoint: Optional[str] = None,
secondary_web_host: Optional[str] = None,
secondary_web_internet_endpoint: Optional[str] = None,
secondary_web_internet_host: Optional[str] = None,
secondary_web_microsoft_endpoint: Optional[str] = None,
secondary_web_microsoft_host: Optional[str] = None,
sftp_enabled: Optional[bool] = None,
share_properties: Optional[AccountSharePropertiesArgs] = None,
shared_access_key_enabled: Optional[bool] = None,
static_website: Optional[AccountStaticWebsiteArgs] = None,
table_encryption_key_type: Optional[str] = None,
tags: Optional[Mapping[str, str]] = None) -> Account
func GetAccount(ctx *Context, name string, id IDInput, state *AccountState, opts ...ResourceOption) (*Account, error)
public static Account Get(string name, Input<string> id, AccountState? state, CustomResourceOptions? opts = null)
public static Account get(String name, Output<String> id, AccountState state, CustomResourceOptions options)
Resource lookup is not supported in YAML
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Access
Tier string - Defines the access tier for
BlobStorage
,FileStorage
andStorageV2
accounts. Valid options areHot
andCool
, defaults toHot
. - Account
Kind string Defines the Kind of account. Valid options are
BlobStorage
,BlockBlobStorage
,FileStorage
,Storage
andStorageV2
. Defaults toStorageV2
.Note: Changing the
account_kind
value fromStorage
toStorageV2
will not trigger a force new on the storage account, it will only upgrade the existing storage account fromStorage
toStorageV2
keeping the existing storage account in place.- Account
Replication stringType - Defines the type of replication to use for this storage account. Valid options are
LRS
,GRS
,RAGRS
,ZRS
,GZRS
andRAGZRS
. Changing this forces a new resource to be created when typesLRS
,GRS
andRAGRS
are changed toZRS
,GZRS
orRAGZRS
and vice versa. - Account
Tier string Defines the Tier to use for this storage account. Valid options are
Standard
andPremium
. ForBlockBlobStorage
andFileStorage
accounts onlyPremium
is valid. Changing this forces a new resource to be created.Note: Blobs with a tier of
Premium
are of account kindStorageV2
.- Allow
Nested boolItems To Be Public Allow or disallow nested items within this Account to opt into being public. Defaults to
true
.Note: At this time
allow_nested_items_to_be_public
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- Allowed
Copy stringScope - Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are
AAD
andPrivateLink
. - Azure
Files AccountAuthentication Azure Files Authentication - A
azure_files_authentication
block as defined below. - Blob
Properties AccountBlob Properties - A
blob_properties
block as defined below. - Cross
Tenant boolReplication Enabled - Should cross Tenant replication be enabled? Defaults to
false
. - Custom
Domain AccountCustom Domain - A
custom_domain
block as documented below. - Customer
Managed AccountKey Customer Managed Key A
customer_managed_key
block as documented below.Note: It's possible to define a Customer Managed Key both within either the
customer_managed_key
block or by using theazure.storage.CustomerManagedKey
resource. However, it's not possible to use both methods to manage a Customer Managed Key for a Storage Account, since these will conflict. When using theazure.storage.CustomerManagedKey
resource, you will need to useignore_changes
on thecustomer_managed_key
block.- Default
To boolOauth Authentication - Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is
false
- Dns
Endpoint stringType Specifies which DNS endpoint type to use. Possible values are
Standard
andAzureDnsZone
. Defaults toStandard
. Changing this forces a new resource to be created.Note: Azure DNS zone support requires
PartitionedDns
feature to be enabled. To enable this feature for your subscription, use the following command:az feature register --namespace "Microsoft.Storage" --name "PartitionedDns"
.- Edge
Zone string - Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.
- Https
Traffic boolOnly Enabled - Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to
true
. - Identity
Account
Identity - An
identity
block as defined below. - Immutability
Policy AccountImmutability Policy - An
immutability_policy
block as defined below. Changing this forces a new resource to be created. - Infrastructure
Encryption boolEnabled Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_kind
isStorageV2
or whenaccount_tier
isPremium
andaccount_kind
is one ofBlockBlobStorage
orFileStorage
.- Is
Hns boolEnabled Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.
Note: This can only be
true
whenaccount_tier
isStandard
or whenaccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
- bool
Are Large File Shares Enabled? Defaults to
false
.Note: Large File Shares are enabled by default when using an
account_kind
ofFileStorage
.- Local
User boolEnabled - Is Local User Enabled? Defaults to
true
. - Location string
- Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.
- Min
Tls stringVersion The minimum supported TLS version for the storage account. Possible values are
TLS1_0
,TLS1_1
, andTLS1_2
. Defaults toTLS1_2
for new storage accounts.Note: At this time
min_tls_version
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- Name string
- Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.
- Network
Rules AccountNetwork Rules - A
network_rules
block as documented below. - Nfsv3Enabled bool
Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_tier
isStandard
andaccount_kind
isStorageV2
, oraccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
. Additionally, theis_hns_enabled
istrue
andaccount_replication_type
must beLRS
orRAGRS
.- Primary
Access stringKey - The primary access key for the storage account.
- Primary
Blob stringConnection String - The connection string associated with the primary blob location.
- Primary
Blob stringEndpoint - The endpoint URL for blob storage in the primary location.
- Primary
Blob stringHost - The hostname with port if applicable for blob storage in the primary location.
- Primary
Blob stringInternet Endpoint - The internet routing endpoint URL for blob storage in the primary location.
- Primary
Blob stringInternet Host - The internet routing hostname with port if applicable for blob storage in the primary location.
- Primary
Blob stringMicrosoft Endpoint - The microsoft routing endpoint URL for blob storage in the primary location.
- Primary
Blob stringMicrosoft Host - The microsoft routing hostname with port if applicable for blob storage in the primary location.
- Primary
Connection stringString - The connection string associated with the primary location.
- Primary
Dfs stringEndpoint - The endpoint URL for DFS storage in the primary location.
- Primary
Dfs stringHost - The hostname with port if applicable for DFS storage in the primary location.
- Primary
Dfs stringInternet Endpoint - The internet routing endpoint URL for DFS storage in the primary location.
- Primary
Dfs stringInternet Host - The internet routing hostname with port if applicable for DFS storage in the primary location.
- Primary
Dfs stringMicrosoft Endpoint - The microsoft routing endpoint URL for DFS storage in the primary location.
- Primary
Dfs stringMicrosoft Host - The microsoft routing hostname with port if applicable for DFS storage in the primary location.
- Primary
File stringEndpoint - The endpoint URL for file storage in the primary location.
- Primary
File stringHost - The hostname with port if applicable for file storage in the primary location.
- Primary
File stringInternet Endpoint - The internet routing endpoint URL for file storage in the primary location.
- Primary
File stringInternet Host - The internet routing hostname with port if applicable for file storage in the primary location.
- Primary
File stringMicrosoft Endpoint - The microsoft routing endpoint URL for file storage in the primary location.
- Primary
File stringMicrosoft Host - The microsoft routing hostname with port if applicable for file storage in the primary location.
- Primary
Location string - The primary location of the storage account.
- Primary
Queue stringEndpoint - The endpoint URL for queue storage in the primary location.
- Primary
Queue stringHost - The hostname with port if applicable for queue storage in the primary location.
- Primary
Queue stringMicrosoft Endpoint - The microsoft routing endpoint URL for queue storage in the primary location.
- Primary
Queue stringMicrosoft Host - The microsoft routing hostname with port if applicable for queue storage in the primary location.
- Primary
Table stringEndpoint - The endpoint URL for table storage in the primary location.
- Primary
Table stringHost - The hostname with port if applicable for table storage in the primary location.
- Primary
Table stringMicrosoft Endpoint - The microsoft routing endpoint URL for table storage in the primary location.
- Primary
Table stringMicrosoft Host - The microsoft routing hostname with port if applicable for table storage in the primary location.
- Primary
Web stringEndpoint - The endpoint URL for web storage in the primary location.
- Primary
Web stringHost - The hostname with port if applicable for web storage in the primary location.
- Primary
Web stringInternet Endpoint - The internet routing endpoint URL for web storage in the primary location.
- Primary
Web stringInternet Host - The internet routing hostname with port if applicable for web storage in the primary location.
- Primary
Web stringMicrosoft Endpoint - The microsoft routing endpoint URL for web storage in the primary location.
- Primary
Web stringMicrosoft Host - The microsoft routing hostname with port if applicable for web storage in the primary location.
- Public
Network boolAccess Enabled - Whether the public network access is enabled? Defaults to
true
. - Queue
Encryption stringKey Type - The encryption type of the queue service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
. - Queue
Properties AccountQueue Properties A
queue_properties
block as defined below.Note:
queue_properties
can only be configured whenaccount_tier
is set toStandard
andaccount_kind
is set to eitherStorage
orStorageV2
.- Resource
Group stringName - The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.
- Routing
Account
Routing - A
routing
block as defined below. - Sas
Policy AccountSas Policy - A
sas_policy
block as defined below. - Secondary
Access stringKey - The secondary access key for the storage account.
- Secondary
Blob stringConnection String - The connection string associated with the secondary blob location.
- Secondary
Blob stringEndpoint - The endpoint URL for blob storage in the secondary location.
- Secondary
Blob stringHost - The hostname with port if applicable for blob storage in the secondary location.
- Secondary
Blob stringInternet Endpoint - The internet routing endpoint URL for blob storage in the secondary location.
- Secondary
Blob stringInternet Host - The internet routing hostname with port if applicable for blob storage in the secondary location.
- Secondary
Blob stringMicrosoft Endpoint - The microsoft routing endpoint URL for blob storage in the secondary location.
- Secondary
Blob stringMicrosoft Host - The microsoft routing hostname with port if applicable for blob storage in the secondary location.
- Secondary
Connection stringString - The connection string associated with the secondary location.
- Secondary
Dfs stringEndpoint - The endpoint URL for DFS storage in the secondary location.
- Secondary
Dfs stringHost - The hostname with port if applicable for DFS storage in the secondary location.
- Secondary
Dfs stringInternet Endpoint - The internet routing endpoint URL for DFS storage in the secondary location.
- Secondary
Dfs stringInternet Host - The internet routing hostname with port if applicable for DFS storage in the secondary location.
- Secondary
Dfs stringMicrosoft Endpoint - The microsoft routing endpoint URL for DFS storage in the secondary location.
- Secondary
Dfs stringMicrosoft Host - The microsoft routing hostname with port if applicable for DFS storage in the secondary location.
- Secondary
File stringEndpoint - The endpoint URL for file storage in the secondary location.
- Secondary
File stringHost - The hostname with port if applicable for file storage in the secondary location.
- Secondary
File stringInternet Endpoint - The internet routing endpoint URL for file storage in the secondary location.
- Secondary
File stringInternet Host - The internet routing hostname with port if applicable for file storage in the secondary location.
- Secondary
File stringMicrosoft Endpoint - The microsoft routing endpoint URL for file storage in the secondary location.
- Secondary
File stringMicrosoft Host - The microsoft routing hostname with port if applicable for file storage in the secondary location.
- Secondary
Location string - The secondary location of the storage account.
- Secondary
Queue stringEndpoint - The endpoint URL for queue storage in the secondary location.
- Secondary
Queue stringHost - The hostname with port if applicable for queue storage in the secondary location.
- Secondary
Queue stringMicrosoft Endpoint - The microsoft routing endpoint URL for queue storage in the secondary location.
- Secondary
Queue stringMicrosoft Host - The microsoft routing hostname with port if applicable for queue storage in the secondary location.
- Secondary
Table stringEndpoint - The endpoint URL for table storage in the secondary location.
- Secondary
Table stringHost - The hostname with port if applicable for table storage in the secondary location.
- Secondary
Table stringMicrosoft Endpoint - The microsoft routing endpoint URL for table storage in the secondary location.
- Secondary
Table stringMicrosoft Host - The microsoft routing hostname with port if applicable for table storage in the secondary location.
- Secondary
Web stringEndpoint - The endpoint URL for web storage in the secondary location.
- Secondary
Web stringHost - The hostname with port if applicable for web storage in the secondary location.
- Secondary
Web stringInternet Endpoint - The internet routing endpoint URL for web storage in the secondary location.
- Secondary
Web stringInternet Host - The internet routing hostname with port if applicable for web storage in the secondary location.
- Secondary
Web stringMicrosoft Endpoint - The microsoft routing endpoint URL for web storage in the secondary location.
- Secondary
Web stringMicrosoft Host - The microsoft routing hostname with port if applicable for web storage in the secondary location.
- Sftp
Enabled bool Boolean, enable SFTP for the storage account
Note: SFTP support requires
is_hns_enabled
set totrue
. More information on SFTP support can be found here. Defaults tofalse
- Account
Share Properties A
share_properties
block as defined below.Note:
share_properties
can only be configured when eitheraccount_tier
isStandard
andaccount_kind
is eitherStorage
orStorageV2
- or whenaccount_tier
isPremium
andaccount_kind
isFileStorage
.- bool
- Static
Website AccountStatic Website A
static_website
block as defined below.Note:
static_website
can only be set when theaccount_kind
is set toStorageV2
orBlockBlobStorage
.Note: If
static_website
is specified, the service will automatically create aazure.storage.Container
named$web
.- Table
Encryption stringKey Type The encryption type of the table service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.Note:
queue_encryption_key_type
andtable_encryption_key_type
cannot be set toAccount
whenaccount_kind
is setStorage
- Dictionary<string, string>
- A mapping of tags to assign to the resource.
- Access
Tier string - Defines the access tier for
BlobStorage
,FileStorage
andStorageV2
accounts. Valid options areHot
andCool
, defaults toHot
. - Account
Kind string Defines the Kind of account. Valid options are
BlobStorage
,BlockBlobStorage
,FileStorage
,Storage
andStorageV2
. Defaults toStorageV2
.Note: Changing the
account_kind
value fromStorage
toStorageV2
will not trigger a force new on the storage account, it will only upgrade the existing storage account fromStorage
toStorageV2
keeping the existing storage account in place.- Account
Replication stringType - Defines the type of replication to use for this storage account. Valid options are
LRS
,GRS
,RAGRS
,ZRS
,GZRS
andRAGZRS
. Changing this forces a new resource to be created when typesLRS
,GRS
andRAGRS
are changed toZRS
,GZRS
orRAGZRS
and vice versa. - Account
Tier string Defines the Tier to use for this storage account. Valid options are
Standard
andPremium
. ForBlockBlobStorage
andFileStorage
accounts onlyPremium
is valid. Changing this forces a new resource to be created.Note: Blobs with a tier of
Premium
are of account kindStorageV2
.- Allow
Nested boolItems To Be Public Allow or disallow nested items within this Account to opt into being public. Defaults to
true
.Note: At this time
allow_nested_items_to_be_public
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- Allowed
Copy stringScope - Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are
AAD
andPrivateLink
. - Azure
Files AccountAuthentication Azure Files Authentication Args - A
azure_files_authentication
block as defined below. - Blob
Properties AccountBlob Properties Args - A
blob_properties
block as defined below. - Cross
Tenant boolReplication Enabled - Should cross Tenant replication be enabled? Defaults to
false
. - Custom
Domain AccountCustom Domain Args - A
custom_domain
block as documented below. - Customer
Managed AccountKey Customer Managed Key Args A
customer_managed_key
block as documented below.Note: It's possible to define a Customer Managed Key both within either the
customer_managed_key
block or by using theazure.storage.CustomerManagedKey
resource. However, it's not possible to use both methods to manage a Customer Managed Key for a Storage Account, since these will conflict. When using theazure.storage.CustomerManagedKey
resource, you will need to useignore_changes
on thecustomer_managed_key
block.- Default
To boolOauth Authentication - Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is
false
- Dns
Endpoint stringType Specifies which DNS endpoint type to use. Possible values are
Standard
andAzureDnsZone
. Defaults toStandard
. Changing this forces a new resource to be created.Note: Azure DNS zone support requires
PartitionedDns
feature to be enabled. To enable this feature for your subscription, use the following command:az feature register --namespace "Microsoft.Storage" --name "PartitionedDns"
.- Edge
Zone string - Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.
- Https
Traffic boolOnly Enabled - Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to
true
. - Identity
Account
Identity Args - An
identity
block as defined below. - Immutability
Policy AccountImmutability Policy Args - An
immutability_policy
block as defined below. Changing this forces a new resource to be created. - Infrastructure
Encryption boolEnabled Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_kind
isStorageV2
or whenaccount_tier
isPremium
andaccount_kind
is one ofBlockBlobStorage
orFileStorage
.- Is
Hns boolEnabled Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.
Note: This can only be
true
whenaccount_tier
isStandard
or whenaccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
- bool
Are Large File Shares Enabled? Defaults to
false
.Note: Large File Shares are enabled by default when using an
account_kind
ofFileStorage
.- Local
User boolEnabled - Is Local User Enabled? Defaults to
true
. - Location string
- Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.
- Min
Tls stringVersion The minimum supported TLS version for the storage account. Possible values are
TLS1_0
,TLS1_1
, andTLS1_2
. Defaults toTLS1_2
for new storage accounts.Note: At this time
min_tls_version
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- Name string
- Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.
- Network
Rules AccountNetwork Rules Type Args - A
network_rules
block as documented below. - Nfsv3Enabled bool
Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_tier
isStandard
andaccount_kind
isStorageV2
, oraccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
. Additionally, theis_hns_enabled
istrue
andaccount_replication_type
must beLRS
orRAGRS
.- Primary
Access stringKey - The primary access key for the storage account.
- Primary
Blob stringConnection String - The connection string associated with the primary blob location.
- Primary
Blob stringEndpoint - The endpoint URL for blob storage in the primary location.
- Primary
Blob stringHost - The hostname with port if applicable for blob storage in the primary location.
- Primary
Blob stringInternet Endpoint - The internet routing endpoint URL for blob storage in the primary location.
- Primary
Blob stringInternet Host - The internet routing hostname with port if applicable for blob storage in the primary location.
- Primary
Blob stringMicrosoft Endpoint - The microsoft routing endpoint URL for blob storage in the primary location.
- Primary
Blob stringMicrosoft Host - The microsoft routing hostname with port if applicable for blob storage in the primary location.
- Primary
Connection stringString - The connection string associated with the primary location.
- Primary
Dfs stringEndpoint - The endpoint URL for DFS storage in the primary location.
- Primary
Dfs stringHost - The hostname with port if applicable for DFS storage in the primary location.
- Primary
Dfs stringInternet Endpoint - The internet routing endpoint URL for DFS storage in the primary location.
- Primary
Dfs stringInternet Host - The internet routing hostname with port if applicable for DFS storage in the primary location.
- Primary
Dfs stringMicrosoft Endpoint - The microsoft routing endpoint URL for DFS storage in the primary location.
- Primary
Dfs stringMicrosoft Host - The microsoft routing hostname with port if applicable for DFS storage in the primary location.
- Primary
File stringEndpoint - The endpoint URL for file storage in the primary location.
- Primary
File stringHost - The hostname with port if applicable for file storage in the primary location.
- Primary
File stringInternet Endpoint - The internet routing endpoint URL for file storage in the primary location.
- Primary
File stringInternet Host - The internet routing hostname with port if applicable for file storage in the primary location.
- Primary
File stringMicrosoft Endpoint - The microsoft routing endpoint URL for file storage in the primary location.
- Primary
File stringMicrosoft Host - The microsoft routing hostname with port if applicable for file storage in the primary location.
- Primary
Location string - The primary location of the storage account.
- Primary
Queue stringEndpoint - The endpoint URL for queue storage in the primary location.
- Primary
Queue stringHost - The hostname with port if applicable for queue storage in the primary location.
- Primary
Queue stringMicrosoft Endpoint - The microsoft routing endpoint URL for queue storage in the primary location.
- Primary
Queue stringMicrosoft Host - The microsoft routing hostname with port if applicable for queue storage in the primary location.
- Primary
Table stringEndpoint - The endpoint URL for table storage in the primary location.
- Primary
Table stringHost - The hostname with port if applicable for table storage in the primary location.
- Primary
Table stringMicrosoft Endpoint - The microsoft routing endpoint URL for table storage in the primary location.
- Primary
Table stringMicrosoft Host - The microsoft routing hostname with port if applicable for table storage in the primary location.
- Primary
Web stringEndpoint - The endpoint URL for web storage in the primary location.
- Primary
Web stringHost - The hostname with port if applicable for web storage in the primary location.
- Primary
Web stringInternet Endpoint - The internet routing endpoint URL for web storage in the primary location.
- Primary
Web stringInternet Host - The internet routing hostname with port if applicable for web storage in the primary location.
- Primary
Web stringMicrosoft Endpoint - The microsoft routing endpoint URL for web storage in the primary location.
- Primary
Web stringMicrosoft Host - The microsoft routing hostname with port if applicable for web storage in the primary location.
- Public
Network boolAccess Enabled - Whether the public network access is enabled? Defaults to
true
. - Queue
Encryption stringKey Type - The encryption type of the queue service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
. - Queue
Properties AccountQueue Properties Type Args A
queue_properties
block as defined below.Note:
queue_properties
can only be configured whenaccount_tier
is set toStandard
andaccount_kind
is set to eitherStorage
orStorageV2
.- Resource
Group stringName - The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.
- Routing
Account
Routing Args - A
routing
block as defined below. - Sas
Policy AccountSas Policy Args - A
sas_policy
block as defined below. - Secondary
Access stringKey - The secondary access key for the storage account.
- Secondary
Blob stringConnection String - The connection string associated with the secondary blob location.
- Secondary
Blob stringEndpoint - The endpoint URL for blob storage in the secondary location.
- Secondary
Blob stringHost - The hostname with port if applicable for blob storage in the secondary location.
- Secondary
Blob stringInternet Endpoint - The internet routing endpoint URL for blob storage in the secondary location.
- Secondary
Blob stringInternet Host - The internet routing hostname with port if applicable for blob storage in the secondary location.
- Secondary
Blob stringMicrosoft Endpoint - The microsoft routing endpoint URL for blob storage in the secondary location.
- Secondary
Blob stringMicrosoft Host - The microsoft routing hostname with port if applicable for blob storage in the secondary location.
- Secondary
Connection stringString - The connection string associated with the secondary location.
- Secondary
Dfs stringEndpoint - The endpoint URL for DFS storage in the secondary location.
- Secondary
Dfs stringHost - The hostname with port if applicable for DFS storage in the secondary location.
- Secondary
Dfs stringInternet Endpoint - The internet routing endpoint URL for DFS storage in the secondary location.
- Secondary
Dfs stringInternet Host - The internet routing hostname with port if applicable for DFS storage in the secondary location.
- Secondary
Dfs stringMicrosoft Endpoint - The microsoft routing endpoint URL for DFS storage in the secondary location.
- Secondary
Dfs stringMicrosoft Host - The microsoft routing hostname with port if applicable for DFS storage in the secondary location.
- Secondary
File stringEndpoint - The endpoint URL for file storage in the secondary location.
- Secondary
File stringHost - The hostname with port if applicable for file storage in the secondary location.
- Secondary
File stringInternet Endpoint - The internet routing endpoint URL for file storage in the secondary location.
- Secondary
File stringInternet Host - The internet routing hostname with port if applicable for file storage in the secondary location.
- Secondary
File stringMicrosoft Endpoint - The microsoft routing endpoint URL for file storage in the secondary location.
- Secondary
File stringMicrosoft Host - The microsoft routing hostname with port if applicable for file storage in the secondary location.
- Secondary
Location string - The secondary location of the storage account.
- Secondary
Queue stringEndpoint - The endpoint URL for queue storage in the secondary location.
- Secondary
Queue stringHost - The hostname with port if applicable for queue storage in the secondary location.
- Secondary
Queue stringMicrosoft Endpoint - The microsoft routing endpoint URL for queue storage in the secondary location.
- Secondary
Queue stringMicrosoft Host - The microsoft routing hostname with port if applicable for queue storage in the secondary location.
- Secondary
Table stringEndpoint - The endpoint URL for table storage in the secondary location.
- Secondary
Table stringHost - The hostname with port if applicable for table storage in the secondary location.
- Secondary
Table stringMicrosoft Endpoint - The microsoft routing endpoint URL for table storage in the secondary location.
- Secondary
Table stringMicrosoft Host - The microsoft routing hostname with port if applicable for table storage in the secondary location.
- Secondary
Web stringEndpoint - The endpoint URL for web storage in the secondary location.
- Secondary
Web stringHost - The hostname with port if applicable for web storage in the secondary location.
- Secondary
Web stringInternet Endpoint - The internet routing endpoint URL for web storage in the secondary location.
- Secondary
Web stringInternet Host - The internet routing hostname with port if applicable for web storage in the secondary location.
- Secondary
Web stringMicrosoft Endpoint - The microsoft routing endpoint URL for web storage in the secondary location.
- Secondary
Web stringMicrosoft Host - The microsoft routing hostname with port if applicable for web storage in the secondary location.
- Sftp
Enabled bool Boolean, enable SFTP for the storage account
Note: SFTP support requires
is_hns_enabled
set totrue
. More information on SFTP support can be found here. Defaults tofalse
- Account
Share Properties Args A
share_properties
block as defined below.Note:
share_properties
can only be configured when eitheraccount_tier
isStandard
andaccount_kind
is eitherStorage
orStorageV2
- or whenaccount_tier
isPremium
andaccount_kind
isFileStorage
.- bool
- Static
Website AccountStatic Website Type Args A
static_website
block as defined below.Note:
static_website
can only be set when theaccount_kind
is set toStorageV2
orBlockBlobStorage
.Note: If
static_website
is specified, the service will automatically create aazure.storage.Container
named$web
.- Table
Encryption stringKey Type The encryption type of the table service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.Note:
queue_encryption_key_type
andtable_encryption_key_type
cannot be set toAccount
whenaccount_kind
is setStorage
- map[string]string
- A mapping of tags to assign to the resource.
- access
Tier String - Defines the access tier for
BlobStorage
,FileStorage
andStorageV2
accounts. Valid options areHot
andCool
, defaults toHot
. - account
Kind String Defines the Kind of account. Valid options are
BlobStorage
,BlockBlobStorage
,FileStorage
,Storage
andStorageV2
. Defaults toStorageV2
.Note: Changing the
account_kind
value fromStorage
toStorageV2
will not trigger a force new on the storage account, it will only upgrade the existing storage account fromStorage
toStorageV2
keeping the existing storage account in place.- account
Replication StringType - Defines the type of replication to use for this storage account. Valid options are
LRS
,GRS
,RAGRS
,ZRS
,GZRS
andRAGZRS
. Changing this forces a new resource to be created when typesLRS
,GRS
andRAGRS
are changed toZRS
,GZRS
orRAGZRS
and vice versa. - account
Tier String Defines the Tier to use for this storage account. Valid options are
Standard
andPremium
. ForBlockBlobStorage
andFileStorage
accounts onlyPremium
is valid. Changing this forces a new resource to be created.Note: Blobs with a tier of
Premium
are of account kindStorageV2
.- allow
Nested BooleanItems To Be Public Allow or disallow nested items within this Account to opt into being public. Defaults to
true
.Note: At this time
allow_nested_items_to_be_public
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- allowed
Copy StringScope - Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are
AAD
andPrivateLink
. - azure
Files AccountAuthentication Azure Files Authentication - A
azure_files_authentication
block as defined below. - blob
Properties AccountBlob Properties - A
blob_properties
block as defined below. - cross
Tenant BooleanReplication Enabled - Should cross Tenant replication be enabled? Defaults to
false
. - custom
Domain AccountCustom Domain - A
custom_domain
block as documented below. - customer
Managed AccountKey Customer Managed Key A
customer_managed_key
block as documented below.Note: It's possible to define a Customer Managed Key both within either the
customer_managed_key
block or by using theazure.storage.CustomerManagedKey
resource. However, it's not possible to use both methods to manage a Customer Managed Key for a Storage Account, since these will conflict. When using theazure.storage.CustomerManagedKey
resource, you will need to useignore_changes
on thecustomer_managed_key
block.- default
To BooleanOauth Authentication - Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is
false
- dns
Endpoint StringType Specifies which DNS endpoint type to use. Possible values are
Standard
andAzureDnsZone
. Defaults toStandard
. Changing this forces a new resource to be created.Note: Azure DNS zone support requires
PartitionedDns
feature to be enabled. To enable this feature for your subscription, use the following command:az feature register --namespace "Microsoft.Storage" --name "PartitionedDns"
.- edge
Zone String - Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.
- https
Traffic BooleanOnly Enabled - Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to
true
. - identity
Account
Identity - An
identity
block as defined below. - immutability
Policy AccountImmutability Policy - An
immutability_policy
block as defined below. Changing this forces a new resource to be created. - infrastructure
Encryption BooleanEnabled Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_kind
isStorageV2
or whenaccount_tier
isPremium
andaccount_kind
is one ofBlockBlobStorage
orFileStorage
.- is
Hns BooleanEnabled Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.
Note: This can only be
true
whenaccount_tier
isStandard
or whenaccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
- Boolean
Are Large File Shares Enabled? Defaults to
false
.Note: Large File Shares are enabled by default when using an
account_kind
ofFileStorage
.- local
User BooleanEnabled - Is Local User Enabled? Defaults to
true
. - location String
- Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.
- min
Tls StringVersion The minimum supported TLS version for the storage account. Possible values are
TLS1_0
,TLS1_1
, andTLS1_2
. Defaults toTLS1_2
for new storage accounts.Note: At this time
min_tls_version
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- name String
- Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.
- network
Rules AccountNetwork Rules - A
network_rules
block as documented below. - nfsv3Enabled Boolean
Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_tier
isStandard
andaccount_kind
isStorageV2
, oraccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
. Additionally, theis_hns_enabled
istrue
andaccount_replication_type
must beLRS
orRAGRS
.- primary
Access StringKey - The primary access key for the storage account.
- primary
Blob StringConnection String - The connection string associated with the primary blob location.
- primary
Blob StringEndpoint - The endpoint URL for blob storage in the primary location.
- primary
Blob StringHost - The hostname with port if applicable for blob storage in the primary location.
- primary
Blob StringInternet Endpoint - The internet routing endpoint URL for blob storage in the primary location.
- primary
Blob StringInternet Host - The internet routing hostname with port if applicable for blob storage in the primary location.
- primary
Blob StringMicrosoft Endpoint - The microsoft routing endpoint URL for blob storage in the primary location.
- primary
Blob StringMicrosoft Host - The microsoft routing hostname with port if applicable for blob storage in the primary location.
- primary
Connection StringString - The connection string associated with the primary location.
- primary
Dfs StringEndpoint - The endpoint URL for DFS storage in the primary location.
- primary
Dfs StringHost - The hostname with port if applicable for DFS storage in the primary location.
- primary
Dfs StringInternet Endpoint - The internet routing endpoint URL for DFS storage in the primary location.
- primary
Dfs StringInternet Host - The internet routing hostname with port if applicable for DFS storage in the primary location.
- primary
Dfs StringMicrosoft Endpoint - The microsoft routing endpoint URL for DFS storage in the primary location.
- primary
Dfs StringMicrosoft Host - The microsoft routing hostname with port if applicable for DFS storage in the primary location.
- primary
File StringEndpoint - The endpoint URL for file storage in the primary location.
- primary
File StringHost - The hostname with port if applicable for file storage in the primary location.
- primary
File StringInternet Endpoint - The internet routing endpoint URL for file storage in the primary location.
- primary
File StringInternet Host - The internet routing hostname with port if applicable for file storage in the primary location.
- primary
File StringMicrosoft Endpoint - The microsoft routing endpoint URL for file storage in the primary location.
- primary
File StringMicrosoft Host - The microsoft routing hostname with port if applicable for file storage in the primary location.
- primary
Location String - The primary location of the storage account.
- primary
Queue StringEndpoint - The endpoint URL for queue storage in the primary location.
- primary
Queue StringHost - The hostname with port if applicable for queue storage in the primary location.
- primary
Queue StringMicrosoft Endpoint - The microsoft routing endpoint URL for queue storage in the primary location.
- primary
Queue StringMicrosoft Host - The microsoft routing hostname with port if applicable for queue storage in the primary location.
- primary
Table StringEndpoint - The endpoint URL for table storage in the primary location.
- primary
Table StringHost - The hostname with port if applicable for table storage in the primary location.
- primary
Table StringMicrosoft Endpoint - The microsoft routing endpoint URL for table storage in the primary location.
- primary
Table StringMicrosoft Host - The microsoft routing hostname with port if applicable for table storage in the primary location.
- primary
Web StringEndpoint - The endpoint URL for web storage in the primary location.
- primary
Web StringHost - The hostname with port if applicable for web storage in the primary location.
- primary
Web StringInternet Endpoint - The internet routing endpoint URL for web storage in the primary location.
- primary
Web StringInternet Host - The internet routing hostname with port if applicable for web storage in the primary location.
- primary
Web StringMicrosoft Endpoint - The microsoft routing endpoint URL for web storage in the primary location.
- primary
Web StringMicrosoft Host - The microsoft routing hostname with port if applicable for web storage in the primary location.
- public
Network BooleanAccess Enabled - Whether the public network access is enabled? Defaults to
true
. - queue
Encryption StringKey Type - The encryption type of the queue service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
. - queue
Properties AccountQueue Properties A
queue_properties
block as defined below.Note:
queue_properties
can only be configured whenaccount_tier
is set toStandard
andaccount_kind
is set to eitherStorage
orStorageV2
.- resource
Group StringName - The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.
- routing
Account
Routing - A
routing
block as defined below. - sas
Policy AccountSas Policy - A
sas_policy
block as defined below. - secondary
Access StringKey - The secondary access key for the storage account.
- secondary
Blob StringConnection String - The connection string associated with the secondary blob location.
- secondary
Blob StringEndpoint - The endpoint URL for blob storage in the secondary location.
- secondary
Blob StringHost - The hostname with port if applicable for blob storage in the secondary location.
- secondary
Blob StringInternet Endpoint - The internet routing endpoint URL for blob storage in the secondary location.
- secondary
Blob StringInternet Host - The internet routing hostname with port if applicable for blob storage in the secondary location.
- secondary
Blob StringMicrosoft Endpoint - The microsoft routing endpoint URL for blob storage in the secondary location.
- secondary
Blob StringMicrosoft Host - The microsoft routing hostname with port if applicable for blob storage in the secondary location.
- secondary
Connection StringString - The connection string associated with the secondary location.
- secondary
Dfs StringEndpoint - The endpoint URL for DFS storage in the secondary location.
- secondary
Dfs StringHost - The hostname with port if applicable for DFS storage in the secondary location.
- secondary
Dfs StringInternet Endpoint - The internet routing endpoint URL for DFS storage in the secondary location.
- secondary
Dfs StringInternet Host - The internet routing hostname with port if applicable for DFS storage in the secondary location.
- secondary
Dfs StringMicrosoft Endpoint - The microsoft routing endpoint URL for DFS storage in the secondary location.
- secondary
Dfs StringMicrosoft Host - The microsoft routing hostname with port if applicable for DFS storage in the secondary location.
- secondary
File StringEndpoint - The endpoint URL for file storage in the secondary location.
- secondary
File StringHost - The hostname with port if applicable for file storage in the secondary location.
- secondary
File StringInternet Endpoint - The internet routing endpoint URL for file storage in the secondary location.
- secondary
File StringInternet Host - The internet routing hostname with port if applicable for file storage in the secondary location.
- secondary
File StringMicrosoft Endpoint - The microsoft routing endpoint URL for file storage in the secondary location.
- secondary
File StringMicrosoft Host - The microsoft routing hostname with port if applicable for file storage in the secondary location.
- secondary
Location String - The secondary location of the storage account.
- secondary
Queue StringEndpoint - The endpoint URL for queue storage in the secondary location.
- secondary
Queue StringHost - The hostname with port if applicable for queue storage in the secondary location.
- secondary
Queue StringMicrosoft Endpoint - The microsoft routing endpoint URL for queue storage in the secondary location.
- secondary
Queue StringMicrosoft Host - The microsoft routing hostname with port if applicable for queue storage in the secondary location.
- secondary
Table StringEndpoint - The endpoint URL for table storage in the secondary location.
- secondary
Table StringHost - The hostname with port if applicable for table storage in the secondary location.
- secondary
Table StringMicrosoft Endpoint - The microsoft routing endpoint URL for table storage in the secondary location.
- secondary
Table StringMicrosoft Host - The microsoft routing hostname with port if applicable for table storage in the secondary location.
- secondary
Web StringEndpoint - The endpoint URL for web storage in the secondary location.
- secondary
Web StringHost - The hostname with port if applicable for web storage in the secondary location.
- secondary
Web StringInternet Endpoint - The internet routing endpoint URL for web storage in the secondary location.
- secondary
Web StringInternet Host - The internet routing hostname with port if applicable for web storage in the secondary location.
- secondary
Web StringMicrosoft Endpoint - The microsoft routing endpoint URL for web storage in the secondary location.
- secondary
Web StringMicrosoft Host - The microsoft routing hostname with port if applicable for web storage in the secondary location.
- sftp
Enabled Boolean Boolean, enable SFTP for the storage account
Note: SFTP support requires
is_hns_enabled
set totrue
. More information on SFTP support can be found here. Defaults tofalse
- Account
Share Properties A
share_properties
block as defined below.Note:
share_properties
can only be configured when eitheraccount_tier
isStandard
andaccount_kind
is eitherStorage
orStorageV2
- or whenaccount_tier
isPremium
andaccount_kind
isFileStorage
.- Boolean
- static
Website AccountStatic Website A
static_website
block as defined below.Note:
static_website
can only be set when theaccount_kind
is set toStorageV2
orBlockBlobStorage
.Note: If
static_website
is specified, the service will automatically create aazure.storage.Container
named$web
.- table
Encryption StringKey Type The encryption type of the table service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.Note:
queue_encryption_key_type
andtable_encryption_key_type
cannot be set toAccount
whenaccount_kind
is setStorage
- Map<String,String>
- A mapping of tags to assign to the resource.
- access
Tier string - Defines the access tier for
BlobStorage
,FileStorage
andStorageV2
accounts. Valid options areHot
andCool
, defaults toHot
. - account
Kind string Defines the Kind of account. Valid options are
BlobStorage
,BlockBlobStorage
,FileStorage
,Storage
andStorageV2
. Defaults toStorageV2
.Note: Changing the
account_kind
value fromStorage
toStorageV2
will not trigger a force new on the storage account, it will only upgrade the existing storage account fromStorage
toStorageV2
keeping the existing storage account in place.- account
Replication stringType - Defines the type of replication to use for this storage account. Valid options are
LRS
,GRS
,RAGRS
,ZRS
,GZRS
andRAGZRS
. Changing this forces a new resource to be created when typesLRS
,GRS
andRAGRS
are changed toZRS
,GZRS
orRAGZRS
and vice versa. - account
Tier string Defines the Tier to use for this storage account. Valid options are
Standard
andPremium
. ForBlockBlobStorage
andFileStorage
accounts onlyPremium
is valid. Changing this forces a new resource to be created.Note: Blobs with a tier of
Premium
are of account kindStorageV2
.- allow
Nested booleanItems To Be Public Allow or disallow nested items within this Account to opt into being public. Defaults to
true
.Note: At this time
allow_nested_items_to_be_public
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- allowed
Copy stringScope - Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are
AAD
andPrivateLink
. - azure
Files AccountAuthentication Azure Files Authentication - A
azure_files_authentication
block as defined below. - blob
Properties AccountBlob Properties - A
blob_properties
block as defined below. - cross
Tenant booleanReplication Enabled - Should cross Tenant replication be enabled? Defaults to
false
. - custom
Domain AccountCustom Domain - A
custom_domain
block as documented below. - customer
Managed AccountKey Customer Managed Key A
customer_managed_key
block as documented below.Note: It's possible to define a Customer Managed Key both within either the
customer_managed_key
block or by using theazure.storage.CustomerManagedKey
resource. However, it's not possible to use both methods to manage a Customer Managed Key for a Storage Account, since these will conflict. When using theazure.storage.CustomerManagedKey
resource, you will need to useignore_changes
on thecustomer_managed_key
block.- default
To booleanOauth Authentication - Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is
false
- dns
Endpoint stringType Specifies which DNS endpoint type to use. Possible values are
Standard
andAzureDnsZone
. Defaults toStandard
. Changing this forces a new resource to be created.Note: Azure DNS zone support requires
PartitionedDns
feature to be enabled. To enable this feature for your subscription, use the following command:az feature register --namespace "Microsoft.Storage" --name "PartitionedDns"
.- edge
Zone string - Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.
- https
Traffic booleanOnly Enabled - Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to
true
. - identity
Account
Identity - An
identity
block as defined below. - immutability
Policy AccountImmutability Policy - An
immutability_policy
block as defined below. Changing this forces a new resource to be created. - infrastructure
Encryption booleanEnabled Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_kind
isStorageV2
or whenaccount_tier
isPremium
andaccount_kind
is one ofBlockBlobStorage
orFileStorage
.- is
Hns booleanEnabled Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.
Note: This can only be
true
whenaccount_tier
isStandard
or whenaccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
- boolean
Are Large File Shares Enabled? Defaults to
false
.Note: Large File Shares are enabled by default when using an
account_kind
ofFileStorage
.- local
User booleanEnabled - Is Local User Enabled? Defaults to
true
. - location string
- Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.
- min
Tls stringVersion The minimum supported TLS version for the storage account. Possible values are
TLS1_0
,TLS1_1
, andTLS1_2
. Defaults toTLS1_2
for new storage accounts.Note: At this time
min_tls_version
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- name string
- Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.
- network
Rules AccountNetwork Rules - A
network_rules
block as documented below. - nfsv3Enabled boolean
Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_tier
isStandard
andaccount_kind
isStorageV2
, oraccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
. Additionally, theis_hns_enabled
istrue
andaccount_replication_type
must beLRS
orRAGRS
.- primary
Access stringKey - The primary access key for the storage account.
- primary
Blob stringConnection String - The connection string associated with the primary blob location.
- primary
Blob stringEndpoint - The endpoint URL for blob storage in the primary location.
- primary
Blob stringHost - The hostname with port if applicable for blob storage in the primary location.
- primary
Blob stringInternet Endpoint - The internet routing endpoint URL for blob storage in the primary location.
- primary
Blob stringInternet Host - The internet routing hostname with port if applicable for blob storage in the primary location.
- primary
Blob stringMicrosoft Endpoint - The microsoft routing endpoint URL for blob storage in the primary location.
- primary
Blob stringMicrosoft Host - The microsoft routing hostname with port if applicable for blob storage in the primary location.
- primary
Connection stringString - The connection string associated with the primary location.
- primary
Dfs stringEndpoint - The endpoint URL for DFS storage in the primary location.
- primary
Dfs stringHost - The hostname with port if applicable for DFS storage in the primary location.
- primary
Dfs stringInternet Endpoint - The internet routing endpoint URL for DFS storage in the primary location.
- primary
Dfs stringInternet Host - The internet routing hostname with port if applicable for DFS storage in the primary location.
- primary
Dfs stringMicrosoft Endpoint - The microsoft routing endpoint URL for DFS storage in the primary location.
- primary
Dfs stringMicrosoft Host - The microsoft routing hostname with port if applicable for DFS storage in the primary location.
- primary
File stringEndpoint - The endpoint URL for file storage in the primary location.
- primary
File stringHost - The hostname with port if applicable for file storage in the primary location.
- primary
File stringInternet Endpoint - The internet routing endpoint URL for file storage in the primary location.
- primary
File stringInternet Host - The internet routing hostname with port if applicable for file storage in the primary location.
- primary
File stringMicrosoft Endpoint - The microsoft routing endpoint URL for file storage in the primary location.
- primary
File stringMicrosoft Host - The microsoft routing hostname with port if applicable for file storage in the primary location.
- primary
Location string - The primary location of the storage account.
- primary
Queue stringEndpoint - The endpoint URL for queue storage in the primary location.
- primary
Queue stringHost - The hostname with port if applicable for queue storage in the primary location.
- primary
Queue stringMicrosoft Endpoint - The microsoft routing endpoint URL for queue storage in the primary location.
- primary
Queue stringMicrosoft Host - The microsoft routing hostname with port if applicable for queue storage in the primary location.
- primary
Table stringEndpoint - The endpoint URL for table storage in the primary location.
- primary
Table stringHost - The hostname with port if applicable for table storage in the primary location.
- primary
Table stringMicrosoft Endpoint - The microsoft routing endpoint URL for table storage in the primary location.
- primary
Table stringMicrosoft Host - The microsoft routing hostname with port if applicable for table storage in the primary location.
- primary
Web stringEndpoint - The endpoint URL for web storage in the primary location.
- primary
Web stringHost - The hostname with port if applicable for web storage in the primary location.
- primary
Web stringInternet Endpoint - The internet routing endpoint URL for web storage in the primary location.
- primary
Web stringInternet Host - The internet routing hostname with port if applicable for web storage in the primary location.
- primary
Web stringMicrosoft Endpoint - The microsoft routing endpoint URL for web storage in the primary location.
- primary
Web stringMicrosoft Host - The microsoft routing hostname with port if applicable for web storage in the primary location.
- public
Network booleanAccess Enabled - Whether the public network access is enabled? Defaults to
true
. - queue
Encryption stringKey Type - The encryption type of the queue service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
. - queue
Properties AccountQueue Properties A
queue_properties
block as defined below.Note:
queue_properties
can only be configured whenaccount_tier
is set toStandard
andaccount_kind
is set to eitherStorage
orStorageV2
.- resource
Group stringName - The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.
- routing
Account
Routing - A
routing
block as defined below. - sas
Policy AccountSas Policy - A
sas_policy
block as defined below. - secondary
Access stringKey - The secondary access key for the storage account.
- secondary
Blob stringConnection String - The connection string associated with the secondary blob location.
- secondary
Blob stringEndpoint - The endpoint URL for blob storage in the secondary location.
- secondary
Blob stringHost - The hostname with port if applicable for blob storage in the secondary location.
- secondary
Blob stringInternet Endpoint - The internet routing endpoint URL for blob storage in the secondary location.
- secondary
Blob stringInternet Host - The internet routing hostname with port if applicable for blob storage in the secondary location.
- secondary
Blob stringMicrosoft Endpoint - The microsoft routing endpoint URL for blob storage in the secondary location.
- secondary
Blob stringMicrosoft Host - The microsoft routing hostname with port if applicable for blob storage in the secondary location.
- secondary
Connection stringString - The connection string associated with the secondary location.
- secondary
Dfs stringEndpoint - The endpoint URL for DFS storage in the secondary location.
- secondary
Dfs stringHost - The hostname with port if applicable for DFS storage in the secondary location.
- secondary
Dfs stringInternet Endpoint - The internet routing endpoint URL for DFS storage in the secondary location.
- secondary
Dfs stringInternet Host - The internet routing hostname with port if applicable for DFS storage in the secondary location.
- secondary
Dfs stringMicrosoft Endpoint - The microsoft routing endpoint URL for DFS storage in the secondary location.
- secondary
Dfs stringMicrosoft Host - The microsoft routing hostname with port if applicable for DFS storage in the secondary location.
- secondary
File stringEndpoint - The endpoint URL for file storage in the secondary location.
- secondary
File stringHost - The hostname with port if applicable for file storage in the secondary location.
- secondary
File stringInternet Endpoint - The internet routing endpoint URL for file storage in the secondary location.
- secondary
File stringInternet Host - The internet routing hostname with port if applicable for file storage in the secondary location.
- secondary
File stringMicrosoft Endpoint - The microsoft routing endpoint URL for file storage in the secondary location.
- secondary
File stringMicrosoft Host - The microsoft routing hostname with port if applicable for file storage in the secondary location.
- secondary
Location string - The secondary location of the storage account.
- secondary
Queue stringEndpoint - The endpoint URL for queue storage in the secondary location.
- secondary
Queue stringHost - The hostname with port if applicable for queue storage in the secondary location.
- secondary
Queue stringMicrosoft Endpoint - The microsoft routing endpoint URL for queue storage in the secondary location.
- secondary
Queue stringMicrosoft Host - The microsoft routing hostname with port if applicable for queue storage in the secondary location.
- secondary
Table stringEndpoint - The endpoint URL for table storage in the secondary location.
- secondary
Table stringHost - The hostname with port if applicable for table storage in the secondary location.
- secondary
Table stringMicrosoft Endpoint - The microsoft routing endpoint URL for table storage in the secondary location.
- secondary
Table stringMicrosoft Host - The microsoft routing hostname with port if applicable for table storage in the secondary location.
- secondary
Web stringEndpoint - The endpoint URL for web storage in the secondary location.
- secondary
Web stringHost - The hostname with port if applicable for web storage in the secondary location.
- secondary
Web stringInternet Endpoint - The internet routing endpoint URL for web storage in the secondary location.
- secondary
Web stringInternet Host - The internet routing hostname with port if applicable for web storage in the secondary location.
- secondary
Web stringMicrosoft Endpoint - The microsoft routing endpoint URL for web storage in the secondary location.
- secondary
Web stringMicrosoft Host - The microsoft routing hostname with port if applicable for web storage in the secondary location.
- sftp
Enabled boolean Boolean, enable SFTP for the storage account
Note: SFTP support requires
is_hns_enabled
set totrue
. More information on SFTP support can be found here. Defaults tofalse
- Account
Share Properties A
share_properties
block as defined below.Note:
share_properties
can only be configured when eitheraccount_tier
isStandard
andaccount_kind
is eitherStorage
orStorageV2
- or whenaccount_tier
isPremium
andaccount_kind
isFileStorage
.- boolean
- static
Website AccountStatic Website A
static_website
block as defined below.Note:
static_website
can only be set when theaccount_kind
is set toStorageV2
orBlockBlobStorage
.Note: If
static_website
is specified, the service will automatically create aazure.storage.Container
named$web
.- table
Encryption stringKey Type The encryption type of the table service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.Note:
queue_encryption_key_type
andtable_encryption_key_type
cannot be set toAccount
whenaccount_kind
is setStorage
- {[key: string]: string}
- A mapping of tags to assign to the resource.
- access_
tier str - Defines the access tier for
BlobStorage
,FileStorage
andStorageV2
accounts. Valid options areHot
andCool
, defaults toHot
. - account_
kind str Defines the Kind of account. Valid options are
BlobStorage
,BlockBlobStorage
,FileStorage
,Storage
andStorageV2
. Defaults toStorageV2
.Note: Changing the
account_kind
value fromStorage
toStorageV2
will not trigger a force new on the storage account, it will only upgrade the existing storage account fromStorage
toStorageV2
keeping the existing storage account in place.- account_
replication_ strtype - Defines the type of replication to use for this storage account. Valid options are
LRS
,GRS
,RAGRS
,ZRS
,GZRS
andRAGZRS
. Changing this forces a new resource to be created when typesLRS
,GRS
andRAGRS
are changed toZRS
,GZRS
orRAGZRS
and vice versa. - account_
tier str Defines the Tier to use for this storage account. Valid options are
Standard
andPremium
. ForBlockBlobStorage
andFileStorage
accounts onlyPremium
is valid. Changing this forces a new resource to be created.Note: Blobs with a tier of
Premium
are of account kindStorageV2
.- allow_
nested_ boolitems_ to_ be_ public Allow or disallow nested items within this Account to opt into being public. Defaults to
true
.Note: At this time
allow_nested_items_to_be_public
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- allowed_
copy_ strscope - Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are
AAD
andPrivateLink
. - azure_
files_ Accountauthentication Azure Files Authentication Args - A
azure_files_authentication
block as defined below. - blob_
properties AccountBlob Properties Args - A
blob_properties
block as defined below. - cross_
tenant_ boolreplication_ enabled - Should cross Tenant replication be enabled? Defaults to
false
. - custom_
domain AccountCustom Domain Args - A
custom_domain
block as documented below. - customer_
managed_ Accountkey Customer Managed Key Args A
customer_managed_key
block as documented below.Note: It's possible to define a Customer Managed Key both within either the
customer_managed_key
block or by using theazure.storage.CustomerManagedKey
resource. However, it's not possible to use both methods to manage a Customer Managed Key for a Storage Account, since these will conflict. When using theazure.storage.CustomerManagedKey
resource, you will need to useignore_changes
on thecustomer_managed_key
block.- default_
to_ booloauth_ authentication - Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is
false
- dns_
endpoint_ strtype Specifies which DNS endpoint type to use. Possible values are
Standard
andAzureDnsZone
. Defaults toStandard
. Changing this forces a new resource to be created.Note: Azure DNS zone support requires
PartitionedDns
feature to be enabled. To enable this feature for your subscription, use the following command:az feature register --namespace "Microsoft.Storage" --name "PartitionedDns"
.- edge_
zone str - Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.
- https_
traffic_ boolonly_ enabled - Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to
true
. - identity
Account
Identity Args - An
identity
block as defined below. - immutability_
policy AccountImmutability Policy Args - An
immutability_policy
block as defined below. Changing this forces a new resource to be created. - infrastructure_
encryption_ boolenabled Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_kind
isStorageV2
or whenaccount_tier
isPremium
andaccount_kind
is one ofBlockBlobStorage
orFileStorage
.- is_
hns_ boolenabled Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.
Note: This can only be
true
whenaccount_tier
isStandard
or whenaccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
- bool
Are Large File Shares Enabled? Defaults to
false
.Note: Large File Shares are enabled by default when using an
account_kind
ofFileStorage
.- local_
user_ boolenabled - Is Local User Enabled? Defaults to
true
. - location str
- Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.
- min_
tls_ strversion The minimum supported TLS version for the storage account. Possible values are
TLS1_0
,TLS1_1
, andTLS1_2
. Defaults toTLS1_2
for new storage accounts.Note: At this time
min_tls_version
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- name str
- Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.
- network_
rules AccountNetwork Rules Args - A
network_rules
block as documented below. - nfsv3_
enabled bool Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_tier
isStandard
andaccount_kind
isStorageV2
, oraccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
. Additionally, theis_hns_enabled
istrue
andaccount_replication_type
must beLRS
orRAGRS
.- primary_
access_ strkey - The primary access key for the storage account.
- primary_
blob_ strconnection_ string - The connection string associated with the primary blob location.
- primary_
blob_ strendpoint - The endpoint URL for blob storage in the primary location.
- primary_
blob_ strhost - The hostname with port if applicable for blob storage in the primary location.
- primary_
blob_ strinternet_ endpoint - The internet routing endpoint URL for blob storage in the primary location.
- primary_
blob_ strinternet_ host - The internet routing hostname with port if applicable for blob storage in the primary location.
- primary_
blob_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for blob storage in the primary location.
- primary_
blob_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for blob storage in the primary location.
- primary_
connection_ strstring - The connection string associated with the primary location.
- primary_
dfs_ strendpoint - The endpoint URL for DFS storage in the primary location.
- primary_
dfs_ strhost - The hostname with port if applicable for DFS storage in the primary location.
- primary_
dfs_ strinternet_ endpoint - The internet routing endpoint URL for DFS storage in the primary location.
- primary_
dfs_ strinternet_ host - The internet routing hostname with port if applicable for DFS storage in the primary location.
- primary_
dfs_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for DFS storage in the primary location.
- primary_
dfs_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for DFS storage in the primary location.
- primary_
file_ strendpoint - The endpoint URL for file storage in the primary location.
- primary_
file_ strhost - The hostname with port if applicable for file storage in the primary location.
- primary_
file_ strinternet_ endpoint - The internet routing endpoint URL for file storage in the primary location.
- primary_
file_ strinternet_ host - The internet routing hostname with port if applicable for file storage in the primary location.
- primary_
file_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for file storage in the primary location.
- primary_
file_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for file storage in the primary location.
- primary_
location str - The primary location of the storage account.
- primary_
queue_ strendpoint - The endpoint URL for queue storage in the primary location.
- primary_
queue_ strhost - The hostname with port if applicable for queue storage in the primary location.
- primary_
queue_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for queue storage in the primary location.
- primary_
queue_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for queue storage in the primary location.
- primary_
table_ strendpoint - The endpoint URL for table storage in the primary location.
- primary_
table_ strhost - The hostname with port if applicable for table storage in the primary location.
- primary_
table_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for table storage in the primary location.
- primary_
table_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for table storage in the primary location.
- primary_
web_ strendpoint - The endpoint URL for web storage in the primary location.
- primary_
web_ strhost - The hostname with port if applicable for web storage in the primary location.
- primary_
web_ strinternet_ endpoint - The internet routing endpoint URL for web storage in the primary location.
- primary_
web_ strinternet_ host - The internet routing hostname with port if applicable for web storage in the primary location.
- primary_
web_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for web storage in the primary location.
- primary_
web_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for web storage in the primary location.
- public_
network_ boolaccess_ enabled - Whether the public network access is enabled? Defaults to
true
. - queue_
encryption_ strkey_ type - The encryption type of the queue service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
. - queue_
properties AccountQueue Properties Args A
queue_properties
block as defined below.Note:
queue_properties
can only be configured whenaccount_tier
is set toStandard
andaccount_kind
is set to eitherStorage
orStorageV2
.- resource_
group_ strname - The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.
- routing
Account
Routing Args - A
routing
block as defined below. - sas_
policy AccountSas Policy Args - A
sas_policy
block as defined below. - secondary_
access_ strkey - The secondary access key for the storage account.
- secondary_
blob_ strconnection_ string - The connection string associated with the secondary blob location.
- secondary_
blob_ strendpoint - The endpoint URL for blob storage in the secondary location.
- secondary_
blob_ strhost - The hostname with port if applicable for blob storage in the secondary location.
- secondary_
blob_ strinternet_ endpoint - The internet routing endpoint URL for blob storage in the secondary location.
- secondary_
blob_ strinternet_ host - The internet routing hostname with port if applicable for blob storage in the secondary location.
- secondary_
blob_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for blob storage in the secondary location.
- secondary_
blob_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for blob storage in the secondary location.
- secondary_
connection_ strstring - The connection string associated with the secondary location.
- secondary_
dfs_ strendpoint - The endpoint URL for DFS storage in the secondary location.
- secondary_
dfs_ strhost - The hostname with port if applicable for DFS storage in the secondary location.
- secondary_
dfs_ strinternet_ endpoint - The internet routing endpoint URL for DFS storage in the secondary location.
- secondary_
dfs_ strinternet_ host - The internet routing hostname with port if applicable for DFS storage in the secondary location.
- secondary_
dfs_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for DFS storage in the secondary location.
- secondary_
dfs_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for DFS storage in the secondary location.
- secondary_
file_ strendpoint - The endpoint URL for file storage in the secondary location.
- secondary_
file_ strhost - The hostname with port if applicable for file storage in the secondary location.
- secondary_
file_ strinternet_ endpoint - The internet routing endpoint URL for file storage in the secondary location.
- secondary_
file_ strinternet_ host - The internet routing hostname with port if applicable for file storage in the secondary location.
- secondary_
file_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for file storage in the secondary location.
- secondary_
file_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for file storage in the secondary location.
- secondary_
location str - The secondary location of the storage account.
- secondary_
queue_ strendpoint - The endpoint URL for queue storage in the secondary location.
- secondary_
queue_ strhost - The hostname with port if applicable for queue storage in the secondary location.
- secondary_
queue_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for queue storage in the secondary location.
- secondary_
queue_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for queue storage in the secondary location.
- secondary_
table_ strendpoint - The endpoint URL for table storage in the secondary location.
- secondary_
table_ strhost - The hostname with port if applicable for table storage in the secondary location.
- secondary_
table_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for table storage in the secondary location.
- secondary_
table_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for table storage in the secondary location.
- secondary_
web_ strendpoint - The endpoint URL for web storage in the secondary location.
- secondary_
web_ strhost - The hostname with port if applicable for web storage in the secondary location.
- secondary_
web_ strinternet_ endpoint - The internet routing endpoint URL for web storage in the secondary location.
- secondary_
web_ strinternet_ host - The internet routing hostname with port if applicable for web storage in the secondary location.
- secondary_
web_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for web storage in the secondary location.
- secondary_
web_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for web storage in the secondary location.
- sftp_
enabled bool Boolean, enable SFTP for the storage account
Note: SFTP support requires
is_hns_enabled
set totrue
. More information on SFTP support can be found here. Defaults tofalse
- Account
Share Properties Args A
share_properties
block as defined below.Note:
share_properties
can only be configured when eitheraccount_tier
isStandard
andaccount_kind
is eitherStorage
orStorageV2
- or whenaccount_tier
isPremium
andaccount_kind
isFileStorage
.- bool
- static_
website AccountStatic Website Args A
static_website
block as defined below.Note:
static_website
can only be set when theaccount_kind
is set toStorageV2
orBlockBlobStorage
.Note: If
static_website
is specified, the service will automatically create aazure.storage.Container
named$web
.- table_
encryption_ strkey_ type The encryption type of the table service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.Note:
queue_encryption_key_type
andtable_encryption_key_type
cannot be set toAccount
whenaccount_kind
is setStorage
- Mapping[str, str]
- A mapping of tags to assign to the resource.
- access
Tier String - Defines the access tier for
BlobStorage
,FileStorage
andStorageV2
accounts. Valid options areHot
andCool
, defaults toHot
. - account
Kind String Defines the Kind of account. Valid options are
BlobStorage
,BlockBlobStorage
,FileStorage
,Storage
andStorageV2
. Defaults toStorageV2
.Note: Changing the
account_kind
value fromStorage
toStorageV2
will not trigger a force new on the storage account, it will only upgrade the existing storage account fromStorage
toStorageV2
keeping the existing storage account in place.- account
Replication StringType - Defines the type of replication to use for this storage account. Valid options are
LRS
,GRS
,RAGRS
,ZRS
,GZRS
andRAGZRS
. Changing this forces a new resource to be created when typesLRS
,GRS
andRAGRS
are changed toZRS
,GZRS
orRAGZRS
and vice versa. - account
Tier String Defines the Tier to use for this storage account. Valid options are
Standard
andPremium
. ForBlockBlobStorage
andFileStorage
accounts onlyPremium
is valid. Changing this forces a new resource to be created.Note: Blobs with a tier of
Premium
are of account kindStorageV2
.- allow
Nested BooleanItems To Be Public Allow or disallow nested items within this Account to opt into being public. Defaults to
true
.Note: At this time
allow_nested_items_to_be_public
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- allowed
Copy StringScope - Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are
AAD
andPrivateLink
. - azure
Files Property MapAuthentication - A
azure_files_authentication
block as defined below. - blob
Properties Property Map - A
blob_properties
block as defined below. - cross
Tenant BooleanReplication Enabled - Should cross Tenant replication be enabled? Defaults to
false
. - custom
Domain Property Map - A
custom_domain
block as documented below. - customer
Managed Property MapKey A
customer_managed_key
block as documented below.Note: It's possible to define a Customer Managed Key both within either the
customer_managed_key
block or by using theazure.storage.CustomerManagedKey
resource. However, it's not possible to use both methods to manage a Customer Managed Key for a Storage Account, since these will conflict. When using theazure.storage.CustomerManagedKey
resource, you will need to useignore_changes
on thecustomer_managed_key
block.- default
To BooleanOauth Authentication - Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is
false
- dns
Endpoint StringType Specifies which DNS endpoint type to use. Possible values are
Standard
andAzureDnsZone
. Defaults toStandard
. Changing this forces a new resource to be created.Note: Azure DNS zone support requires
PartitionedDns
feature to be enabled. To enable this feature for your subscription, use the following command:az feature register --namespace "Microsoft.Storage" --name "PartitionedDns"
.- edge
Zone String - Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.
- https
Traffic BooleanOnly Enabled - Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to
true
. - identity Property Map
- An
identity
block as defined below. - immutability
Policy Property Map - An
immutability_policy
block as defined below. Changing this forces a new resource to be created. - infrastructure
Encryption BooleanEnabled Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_kind
isStorageV2
or whenaccount_tier
isPremium
andaccount_kind
is one ofBlockBlobStorage
orFileStorage
.- is
Hns BooleanEnabled Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.
Note: This can only be
true
whenaccount_tier
isStandard
or whenaccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
- Boolean
Are Large File Shares Enabled? Defaults to
false
.Note: Large File Shares are enabled by default when using an
account_kind
ofFileStorage
.- local
User BooleanEnabled - Is Local User Enabled? Defaults to
true
. - location String
- Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.
- min
Tls StringVersion The minimum supported TLS version for the storage account. Possible values are
TLS1_0
,TLS1_1
, andTLS1_2
. Defaults toTLS1_2
for new storage accounts.Note: At this time
min_tls_version
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- name String
- Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.
- network
Rules Property Map - A
network_rules
block as documented below. - nfsv3Enabled Boolean
Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_tier
isStandard
andaccount_kind
isStorageV2
, oraccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
. Additionally, theis_hns_enabled
istrue
andaccount_replication_type
must beLRS
orRAGRS
.- primary
Access StringKey - The primary access key for the storage account.
- primary
Blob StringConnection String - The connection string associated with the primary blob location.
- primary
Blob StringEndpoint - The endpoint URL for blob storage in the primary location.
- primary
Blob StringHost - The hostname with port if applicable for blob storage in the primary location.
- primary
Blob StringInternet Endpoint - The internet routing endpoint URL for blob storage in the primary location.
- primary
Blob StringInternet Host - The internet routing hostname with port if applicable for blob storage in the primary location.
- primary
Blob StringMicrosoft Endpoint - The microsoft routing endpoint URL for blob storage in the primary location.
- primary
Blob StringMicrosoft Host - The microsoft routing hostname with port if applicable for blob storage in the primary location.
- primary
Connection StringString - The connection string associated with the primary location.
- primary
Dfs StringEndpoint - The endpoint URL for DFS storage in the primary location.
- primary
Dfs StringHost - The hostname with port if applicable for DFS storage in the primary location.
- primary
Dfs StringInternet Endpoint - The internet routing endpoint URL for DFS storage in the primary location.
- primary
Dfs StringInternet Host - The internet routing hostname with port if applicable for DFS storage in the primary location.
- primary
Dfs StringMicrosoft Endpoint - The microsoft routing endpoint URL for DFS storage in the primary location.
- primary
Dfs StringMicrosoft Host - The microsoft routing hostname with port if applicable for DFS storage in the primary location.
- primary
File StringEndpoint - The endpoint URL for file storage in the primary location.
- primary
File StringHost - The hostname with port if applicable for file storage in the primary location.
- primary
File StringInternet Endpoint - The internet routing endpoint URL for file storage in the primary location.
- primary
File StringInternet Host - The internet routing hostname with port if applicable for file storage in the primary location.
- primary
File StringMicrosoft Endpoint - The microsoft routing endpoint URL for file storage in the primary location.
- primary
File StringMicrosoft Host - The microsoft routing hostname with port if applicable for file storage in the primary location.
- primary
Location String - The primary location of the storage account.
- primary
Queue StringEndpoint - The endpoint URL for queue storage in the primary location.
- primary
Queue StringHost - The hostname with port if applicable for queue storage in the primary location.
- primary
Queue StringMicrosoft Endpoint - The microsoft routing endpoint URL for queue storage in the primary location.
- primary
Queue StringMicrosoft Host - The microsoft routing hostname with port if applicable for queue storage in the primary location.
- primary
Table StringEndpoint - The endpoint URL for table storage in the primary location.
- primary
Table StringHost - The hostname with port if applicable for table storage in the primary location.
- primary
Table StringMicrosoft Endpoint - The microsoft routing endpoint URL for table storage in the primary location.
- primary
Table StringMicrosoft Host - The microsoft routing hostname with port if applicable for table storage in the primary location.
- primary
Web StringEndpoint - The endpoint URL for web storage in the primary location.
- primary
Web StringHost - The hostname with port if applicable for web storage in the primary location.
- primary
Web StringInternet Endpoint - The internet routing endpoint URL for web storage in the primary location.
- primary
Web StringInternet Host - The internet routing hostname with port if applicable for web storage in the primary location.
- primary
Web StringMicrosoft Endpoint - The microsoft routing endpoint URL for web storage in the primary location.
- primary
Web StringMicrosoft Host - The microsoft routing hostname with port if applicable for web storage in the primary location.
- public
Network BooleanAccess Enabled - Whether the public network access is enabled? Defaults to
true
. - queue
Encryption StringKey Type - The encryption type of the queue service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
. - queue
Properties Property Map A
queue_properties
block as defined below.Note:
queue_properties
can only be configured whenaccount_tier
is set toStandard
andaccount_kind
is set to eitherStorage
orStorageV2
.- resource
Group StringName - The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.
- routing Property Map
- A
routing
block as defined below. - sas
Policy Property Map - A
sas_policy
block as defined below. - secondary
Access StringKey - The secondary access key for the storage account.
- secondary
Blob StringConnection String - The connection string associated with the secondary blob location.
- secondary
Blob StringEndpoint - The endpoint URL for blob storage in the secondary location.
- secondary
Blob StringHost - The hostname with port if applicable for blob storage in the secondary location.
- secondary
Blob StringInternet Endpoint - The internet routing endpoint URL for blob storage in the secondary location.
- secondary
Blob StringInternet Host - The internet routing hostname with port if applicable for blob storage in the secondary location.
- secondary
Blob StringMicrosoft Endpoint - The microsoft routing endpoint URL for blob storage in the secondary location.
- secondary
Blob StringMicrosoft Host - The microsoft routing hostname with port if applicable for blob storage in the secondary location.
- secondary
Connection StringString - The connection string associated with the secondary location.
- secondary
Dfs StringEndpoint - The endpoint URL for DFS storage in the secondary location.
- secondary
Dfs StringHost - The hostname with port if applicable for DFS storage in the secondary location.
- secondary
Dfs StringInternet Endpoint - The internet routing endpoint URL for DFS storage in the secondary location.
- secondary
Dfs StringInternet Host - The internet routing hostname with port if applicable for DFS storage in the secondary location.
- secondary
Dfs StringMicrosoft Endpoint - The microsoft routing endpoint URL for DFS storage in the secondary location.
- secondary
Dfs StringMicrosoft Host - The microsoft routing hostname with port if applicable for DFS storage in the secondary location.
- secondary
File StringEndpoint - The endpoint URL for file storage in the secondary location.
- secondary
File StringHost - The hostname with port if applicable for file storage in the secondary location.
- secondary
File StringInternet Endpoint - The internet routing endpoint URL for file storage in the secondary location.
- secondary
File StringInternet Host - The internet routing hostname with port if applicable for file storage in the secondary location.
- secondary
File StringMicrosoft Endpoint - The microsoft routing endpoint URL for file storage in the secondary location.
- secondary
File StringMicrosoft Host - The microsoft routing hostname with port if applicable for file storage in the secondary location.
- secondary
Location String - The secondary location of the storage account.
- secondary
Queue StringEndpoint - The endpoint URL for queue storage in the secondary location.
- secondary
Queue StringHost - The hostname with port if applicable for queue storage in the secondary location.
- secondary
Queue StringMicrosoft Endpoint - The microsoft routing endpoint URL for queue storage in the secondary location.
- secondary
Queue StringMicrosoft Host - The microsoft routing hostname with port if applicable for queue storage in the secondary location.
- secondary
Table StringEndpoint - The endpoint URL for table storage in the secondary location.
- secondary
Table StringHost - The hostname with port if applicable for table storage in the secondary location.
- secondary
Table StringMicrosoft Endpoint - The microsoft routing endpoint URL for table storage in the secondary location.
- secondary
Table StringMicrosoft Host - The microsoft routing hostname with port if applicable for table storage in the secondary location.
- secondary
Web StringEndpoint - The endpoint URL for web storage in the secondary location.
- secondary
Web StringHost - The hostname with port if applicable for web storage in the secondary location.
- secondary
Web StringInternet Endpoint - The internet routing endpoint URL for web storage in the secondary location.
- secondary
Web StringInternet Host - The internet routing hostname with port if applicable for web storage in the secondary location.
- secondary
Web StringMicrosoft Endpoint - The microsoft routing endpoint URL for web storage in the secondary location.
- secondary
Web StringMicrosoft Host - The microsoft routing hostname with port if applicable for web storage in the secondary location.
- sftp
Enabled Boolean Boolean, enable SFTP for the storage account
Note: SFTP support requires
is_hns_enabled
set totrue
. More information on SFTP support can be found here. Defaults tofalse
- Property Map
A
share_properties
block as defined below.Note:
share_properties
can only be configured when eitheraccount_tier
isStandard
andaccount_kind
is eitherStorage
orStorageV2
- or whenaccount_tier
isPremium
andaccount_kind
isFileStorage
.- Boolean
- static
Website Property Map A
static_website
block as defined below.Note:
static_website
can only be set when theaccount_kind
is set toStorageV2
orBlockBlobStorage
.Note: If
static_website
is specified, the service will automatically create aazure.storage.Container
named$web
.- table
Encryption StringKey Type The encryption type of the table service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.Note:
queue_encryption_key_type
andtable_encryption_key_type
cannot be set toAccount
whenaccount_kind
is setStorage
- Map<String>
- A mapping of tags to assign to the resource.
Supporting Types
AccountAzureFilesAuthentication, AccountAzureFilesAuthenticationArgs
- Directory
Type string - Specifies the directory service used. Possible values are
AADDS
,AD
andAADKERB
. - Active
Directory AccountAzure Files Authentication Active Directory - A
active_directory
block as defined below. Required whendirectory_type
isAD
. - string
- Specifies the default share level permissions applied to all users. Possible values are
StorageFileDataSmbShareReader
,StorageFileDataSmbShareContributor
,StorageFileDataSmbShareElevatedContributor
, orNone
.
- Directory
Type string - Specifies the directory service used. Possible values are
AADDS
,AD
andAADKERB
. - Active
Directory AccountAzure Files Authentication Active Directory - A
active_directory
block as defined below. Required whendirectory_type
isAD
. - string
- Specifies the default share level permissions applied to all users. Possible values are
StorageFileDataSmbShareReader
,StorageFileDataSmbShareContributor
,StorageFileDataSmbShareElevatedContributor
, orNone
.
- directory
Type String - Specifies the directory service used. Possible values are
AADDS
,AD
andAADKERB
. - active
Directory AccountAzure Files Authentication Active Directory - A
active_directory
block as defined below. Required whendirectory_type
isAD
. - String
- Specifies the default share level permissions applied to all users. Possible values are
StorageFileDataSmbShareReader
,StorageFileDataSmbShareContributor
,StorageFileDataSmbShareElevatedContributor
, orNone
.
- directory
Type string - Specifies the directory service used. Possible values are
AADDS
,AD
andAADKERB
. - active
Directory AccountAzure Files Authentication Active Directory - A
active_directory
block as defined below. Required whendirectory_type
isAD
. - string
- Specifies the default share level permissions applied to all users. Possible values are
StorageFileDataSmbShareReader
,StorageFileDataSmbShareContributor
,StorageFileDataSmbShareElevatedContributor
, orNone
.
- directory_
type str - Specifies the directory service used. Possible values are
AADDS
,AD
andAADKERB
. - active_
directory AccountAzure Files Authentication Active Directory - A
active_directory
block as defined below. Required whendirectory_type
isAD
. - str
- Specifies the default share level permissions applied to all users. Possible values are
StorageFileDataSmbShareReader
,StorageFileDataSmbShareContributor
,StorageFileDataSmbShareElevatedContributor
, orNone
.
- directory
Type String - Specifies the directory service used. Possible values are
AADDS
,AD
andAADKERB
. - active
Directory Property Map - A
active_directory
block as defined below. Required whendirectory_type
isAD
. - String
- Specifies the default share level permissions applied to all users. Possible values are
StorageFileDataSmbShareReader
,StorageFileDataSmbShareContributor
,StorageFileDataSmbShareElevatedContributor
, orNone
.
AccountAzureFilesAuthenticationActiveDirectory, AccountAzureFilesAuthenticationActiveDirectoryArgs
- Domain
Guid string - Specifies the domain GUID.
- Domain
Name string - Specifies the primary domain that the AD DNS server is authoritative for.
- Domain
Sid string - Specifies the security identifier (SID). This is required when
directory_type
is set toAD
. - Forest
Name string - Specifies the Active Directory forest. This is required when
directory_type
is set toAD
. - Netbios
Domain stringName - Specifies the NetBIOS domain name. This is required when
directory_type
is set toAD
. - Storage
Sid string - Specifies the security identifier (SID) for Azure Storage. This is required when
directory_type
is set toAD
.
- Domain
Guid string - Specifies the domain GUID.
- Domain
Name string - Specifies the primary domain that the AD DNS server is authoritative for.
- Domain
Sid string - Specifies the security identifier (SID). This is required when
directory_type
is set toAD
. - Forest
Name string - Specifies the Active Directory forest. This is required when
directory_type
is set toAD
. - Netbios
Domain stringName - Specifies the NetBIOS domain name. This is required when
directory_type
is set toAD
. - Storage
Sid string - Specifies the security identifier (SID) for Azure Storage. This is required when
directory_type
is set toAD
.
- domain
Guid String - Specifies the domain GUID.
- domain
Name String - Specifies the primary domain that the AD DNS server is authoritative for.
- domain
Sid String - Specifies the security identifier (SID). This is required when
directory_type
is set toAD
. - forest
Name String - Specifies the Active Directory forest. This is required when
directory_type
is set toAD
. - netbios
Domain StringName - Specifies the NetBIOS domain name. This is required when
directory_type
is set toAD
. - storage
Sid String - Specifies the security identifier (SID) for Azure Storage. This is required when
directory_type
is set toAD
.
- domain
Guid string - Specifies the domain GUID.
- domain
Name string - Specifies the primary domain that the AD DNS server is authoritative for.
- domain
Sid string - Specifies the security identifier (SID). This is required when
directory_type
is set toAD
. - forest
Name string - Specifies the Active Directory forest. This is required when
directory_type
is set toAD
. - netbios
Domain stringName - Specifies the NetBIOS domain name. This is required when
directory_type
is set toAD
. - storage
Sid string - Specifies the security identifier (SID) for Azure Storage. This is required when
directory_type
is set toAD
.
- domain_
guid str - Specifies the domain GUID.
- domain_
name str - Specifies the primary domain that the AD DNS server is authoritative for.
- domain_
sid str - Specifies the security identifier (SID). This is required when
directory_type
is set toAD
. - forest_
name str - Specifies the Active Directory forest. This is required when
directory_type
is set toAD
. - netbios_
domain_ strname - Specifies the NetBIOS domain name. This is required when
directory_type
is set toAD
. - storage_
sid str - Specifies the security identifier (SID) for Azure Storage. This is required when
directory_type
is set toAD
.
- domain
Guid String - Specifies the domain GUID.
- domain
Name String - Specifies the primary domain that the AD DNS server is authoritative for.
- domain
Sid String - Specifies the security identifier (SID). This is required when
directory_type
is set toAD
. - forest
Name String - Specifies the Active Directory forest. This is required when
directory_type
is set toAD
. - netbios
Domain StringName - Specifies the NetBIOS domain name. This is required when
directory_type
is set toAD
. - storage
Sid String - Specifies the security identifier (SID) for Azure Storage. This is required when
directory_type
is set toAD
.
AccountBlobProperties, AccountBlobPropertiesArgs
- Change
Feed boolEnabled Is the blob service properties for change feed events enabled? Default to
false
.Note: This field cannot be configured when
kind
is set toStorage
(V1).- Change
Feed intRetention In Days The duration of change feed events retention in days. The possible values are between 1 and 146000 days (400 years). Setting this to null (or omit this in the configuration file) indicates an infinite retention of the change feed.
Note: This field cannot be configured when
kind
is set toStorage
(V1).- Container
Delete AccountRetention Policy Blob Properties Container Delete Retention Policy - A
container_delete_retention_policy
block as defined below. - Cors
Rules List<AccountBlob Properties Cors Rule> - A
cors_rule
block as defined below. - Default
Service stringVersion - The API Version which should be used by default for requests to the Data Plane API if an incoming request doesn't specify an API Version.
- Delete
Retention AccountPolicy Blob Properties Delete Retention Policy - A
delete_retention_policy
block as defined below. - Last
Access boolTime Enabled Is the last access time based tracking enabled? Default to
false
.Note: This field cannot be configured when
kind
is set toStorage
(V1).- Restore
Policy AccountBlob Properties Restore Policy A
restore_policy
block as defined below. This must be used together withdelete_retention_policy
set,versioning_enabled
andchange_feed_enabled
set totrue
.Note: This field cannot be configured when
kind
is set toStorage
(V1).Note:
restore_policy
can not be configured whendns_endpoint_type
isAzureDnsZone
.- Versioning
Enabled bool Is versioning enabled? Default to
false
.Note: This field cannot be configured when
kind
is set toStorage
(V1).
- Change
Feed boolEnabled Is the blob service properties for change feed events enabled? Default to
false
.Note: This field cannot be configured when
kind
is set toStorage
(V1).- Change
Feed intRetention In Days The duration of change feed events retention in days. The possible values are between 1 and 146000 days (400 years). Setting this to null (or omit this in the configuration file) indicates an infinite retention of the change feed.
Note: This field cannot be configured when
kind
is set toStorage
(V1).- Container
Delete AccountRetention Policy Blob Properties Container Delete Retention Policy - A
container_delete_retention_policy
block as defined below. - Cors
Rules []AccountBlob Properties Cors Rule - A
cors_rule
block as defined below. - Default
Service stringVersion - The API Version which should be used by default for requests to the Data Plane API if an incoming request doesn't specify an API Version.
- Delete
Retention AccountPolicy Blob Properties Delete Retention Policy - A
delete_retention_policy
block as defined below. - Last
Access boolTime Enabled Is the last access time based tracking enabled? Default to
false
.Note: This field cannot be configured when
kind
is set toStorage
(V1).- Restore
Policy AccountBlob Properties Restore Policy A
restore_policy
block as defined below. This must be used together withdelete_retention_policy
set,versioning_enabled
andchange_feed_enabled
set totrue
.Note: This field cannot be configured when
kind
is set toStorage
(V1).Note:
restore_policy
can not be configured whendns_endpoint_type
isAzureDnsZone
.- Versioning
Enabled bool Is versioning enabled? Default to
false
.Note: This field cannot be configured when
kind
is set toStorage
(V1).
- change
Feed BooleanEnabled Is the blob service properties for change feed events enabled? Default to
false
.Note: This field cannot be configured when
kind
is set toStorage
(V1).- change
Feed IntegerRetention In Days The duration of change feed events retention in days. The possible values are between 1 and 146000 days (400 years). Setting this to null (or omit this in the configuration file) indicates an infinite retention of the change feed.
Note: This field cannot be configured when
kind
is set toStorage
(V1).- container
Delete AccountRetention Policy Blob Properties Container Delete Retention Policy - A
container_delete_retention_policy
block as defined below. - cors
Rules List<AccountBlob Properties Cors Rule> - A
cors_rule
block as defined below. - default
Service StringVersion - The API Version which should be used by default for requests to the Data Plane API if an incoming request doesn't specify an API Version.
- delete
Retention AccountPolicy Blob Properties Delete Retention Policy - A
delete_retention_policy
block as defined below. - last
Access BooleanTime Enabled Is the last access time based tracking enabled? Default to
false
.Note: This field cannot be configured when
kind
is set toStorage
(V1).- restore
Policy AccountBlob Properties Restore Policy A
restore_policy
block as defined below. This must be used together withdelete_retention_policy
set,versioning_enabled
andchange_feed_enabled
set totrue
.Note: This field cannot be configured when
kind
is set toStorage
(V1).Note:
restore_policy
can not be configured whendns_endpoint_type
isAzureDnsZone
.- versioning
Enabled Boolean Is versioning enabled? Default to
false
.Note: This field cannot be configured when
kind
is set toStorage
(V1).
- change
Feed booleanEnabled Is the blob service properties for change feed events enabled? Default to
false
.Note: This field cannot be configured when
kind
is set toStorage
(V1).- change
Feed numberRetention In Days The duration of change feed events retention in days. The possible values are between 1 and 146000 days (400 years). Setting this to null (or omit this in the configuration file) indicates an infinite retention of the change feed.
Note: This field cannot be configured when
kind
is set toStorage
(V1).- container
Delete AccountRetention Policy Blob Properties Container Delete Retention Policy - A
container_delete_retention_policy
block as defined below. - cors
Rules AccountBlob Properties Cors Rule[] - A
cors_rule
block as defined below. - default
Service stringVersion - The API Version which should be used by default for requests to the Data Plane API if an incoming request doesn't specify an API Version.
- delete
Retention AccountPolicy Blob Properties Delete Retention Policy - A
delete_retention_policy
block as defined below. - last
Access booleanTime Enabled Is the last access time based tracking enabled? Default to
false
.Note: This field cannot be configured when
kind
is set toStorage
(V1).- restore
Policy AccountBlob Properties Restore Policy A
restore_policy
block as defined below. This must be used together withdelete_retention_policy
set,versioning_enabled
andchange_feed_enabled
set totrue
.Note: This field cannot be configured when
kind
is set toStorage
(V1).Note:
restore_policy
can not be configured whendns_endpoint_type
isAzureDnsZone
.- versioning
Enabled boolean Is versioning enabled? Default to
false
.Note: This field cannot be configured when
kind
is set toStorage
(V1).
- change_
feed_ boolenabled Is the blob service properties for change feed events enabled? Default to
false
.Note: This field cannot be configured when
kind
is set toStorage
(V1).- change_
feed_ intretention_ in_ days The duration of change feed events retention in days. The possible values are between 1 and 146000 days (400 years). Setting this to null (or omit this in the configuration file) indicates an infinite retention of the change feed.
Note: This field cannot be configured when
kind
is set toStorage
(V1).- container_
delete_ Accountretention_ policy Blob Properties Container Delete Retention Policy - A
container_delete_retention_policy
block as defined below. - cors_
rules Sequence[AccountBlob Properties Cors Rule] - A
cors_rule
block as defined below. - default_
service_ strversion - The API Version which should be used by default for requests to the Data Plane API if an incoming request doesn't specify an API Version.
- delete_
retention_ Accountpolicy Blob Properties Delete Retention Policy - A
delete_retention_policy
block as defined below. - last_
access_ booltime_ enabled Is the last access time based tracking enabled? Default to
false
.Note: This field cannot be configured when
kind
is set toStorage
(V1).- restore_
policy AccountBlob Properties Restore Policy A
restore_policy
block as defined below. This must be used together withdelete_retention_policy
set,versioning_enabled
andchange_feed_enabled
set totrue
.Note: This field cannot be configured when
kind
is set toStorage
(V1).Note:
restore_policy
can not be configured whendns_endpoint_type
isAzureDnsZone
.- versioning_
enabled bool Is versioning enabled? Default to
false
.Note: This field cannot be configured when
kind
is set toStorage
(V1).
- change
Feed BooleanEnabled Is the blob service properties for change feed events enabled? Default to
false
.Note: This field cannot be configured when
kind
is set toStorage
(V1).- change
Feed NumberRetention In Days The duration of change feed events retention in days. The possible values are between 1 and 146000 days (400 years). Setting this to null (or omit this in the configuration file) indicates an infinite retention of the change feed.
Note: This field cannot be configured when
kind
is set toStorage
(V1).- container
Delete Property MapRetention Policy - A
container_delete_retention_policy
block as defined below. - cors
Rules List<Property Map> - A
cors_rule
block as defined below. - default
Service StringVersion - The API Version which should be used by default for requests to the Data Plane API if an incoming request doesn't specify an API Version.
- delete
Retention Property MapPolicy - A
delete_retention_policy
block as defined below. - last
Access BooleanTime Enabled Is the last access time based tracking enabled? Default to
false
.Note: This field cannot be configured when
kind
is set toStorage
(V1).- restore
Policy Property Map A
restore_policy
block as defined below. This must be used together withdelete_retention_policy
set,versioning_enabled
andchange_feed_enabled
set totrue
.Note: This field cannot be configured when
kind
is set toStorage
(V1).Note:
restore_policy
can not be configured whendns_endpoint_type
isAzureDnsZone
.- versioning
Enabled Boolean Is versioning enabled? Default to
false
.Note: This field cannot be configured when
kind
is set toStorage
(V1).
AccountBlobPropertiesContainerDeleteRetentionPolicy, AccountBlobPropertiesContainerDeleteRetentionPolicyArgs
- Days int
- Specifies the number of days that the container should be retained, between
1
and365
days. Defaults to7
.
- Days int
- Specifies the number of days that the container should be retained, between
1
and365
days. Defaults to7
.
- days Integer
- Specifies the number of days that the container should be retained, between
1
and365
days. Defaults to7
.
- days number
- Specifies the number of days that the container should be retained, between
1
and365
days. Defaults to7
.
- days int
- Specifies the number of days that the container should be retained, between
1
and365
days. Defaults to7
.
- days Number
- Specifies the number of days that the container should be retained, between
1
and365
days. Defaults to7
.
AccountBlobPropertiesCorsRule, AccountBlobPropertiesCorsRuleArgs
- Allowed
Headers List<string> - A list of headers that are allowed to be a part of the cross-origin request.
- Allowed
Methods List<string> - A list of HTTP methods that are allowed to be executed by the origin. Valid options are
DELETE
,GET
,HEAD
,MERGE
,POST
,OPTIONS
,PUT
orPATCH
. - Allowed
Origins List<string> - A list of origin domains that will be allowed by CORS.
- Exposed
Headers List<string> - A list of response headers that are exposed to CORS clients.
- Max
Age intIn Seconds - The number of seconds the client should cache a preflight response.
- Allowed
Headers []string - A list of headers that are allowed to be a part of the cross-origin request.
- Allowed
Methods []string - A list of HTTP methods that are allowed to be executed by the origin. Valid options are
DELETE
,GET
,HEAD
,MERGE
,POST
,OPTIONS
,PUT
orPATCH
. - Allowed
Origins []string - A list of origin domains that will be allowed by CORS.
- Exposed
Headers []string - A list of response headers that are exposed to CORS clients.
- Max
Age intIn Seconds - The number of seconds the client should cache a preflight response.
- allowed
Headers List<String> - A list of headers that are allowed to be a part of the cross-origin request.
- allowed
Methods List<String> - A list of HTTP methods that are allowed to be executed by the origin. Valid options are
DELETE
,GET
,HEAD
,MERGE
,POST
,OPTIONS
,PUT
orPATCH
. - allowed
Origins List<String> - A list of origin domains that will be allowed by CORS.
- exposed
Headers List<String> - A list of response headers that are exposed to CORS clients.
- max
Age IntegerIn Seconds - The number of seconds the client should cache a preflight response.
- allowed
Headers string[] - A list of headers that are allowed to be a part of the cross-origin request.
- allowed
Methods string[] - A list of HTTP methods that are allowed to be executed by the origin. Valid options are
DELETE
,GET
,HEAD
,MERGE
,POST
,OPTIONS
,PUT
orPATCH
. - allowed
Origins string[] - A list of origin domains that will be allowed by CORS.
- exposed
Headers string[] - A list of response headers that are exposed to CORS clients.
- max
Age numberIn Seconds - The number of seconds the client should cache a preflight response.
- allowed_
headers Sequence[str] - A list of headers that are allowed to be a part of the cross-origin request.
- allowed_
methods Sequence[str] - A list of HTTP methods that are allowed to be executed by the origin. Valid options are
DELETE
,GET
,HEAD
,MERGE
,POST
,OPTIONS
,PUT
orPATCH
. - allowed_
origins Sequence[str] - A list of origin domains that will be allowed by CORS.
- exposed_
headers Sequence[str] - A list of response headers that are exposed to CORS clients.
- max_
age_ intin_ seconds - The number of seconds the client should cache a preflight response.
- allowed
Headers List<String> - A list of headers that are allowed to be a part of the cross-origin request.
- allowed
Methods List<String> - A list of HTTP methods that are allowed to be executed by the origin. Valid options are
DELETE
,GET
,HEAD
,MERGE
,POST
,OPTIONS
,PUT
orPATCH
. - allowed
Origins List<String> - A list of origin domains that will be allowed by CORS.
- exposed
Headers List<String> - A list of response headers that are exposed to CORS clients.
- max
Age NumberIn Seconds - The number of seconds the client should cache a preflight response.
AccountBlobPropertiesDeleteRetentionPolicy, AccountBlobPropertiesDeleteRetentionPolicyArgs
- Days int
- Specifies the number of days that the blob should be retained, between
1
and365
days. Defaults to7
. - Permanent
Delete boolEnabled Indicates whether permanent deletion of the soft deleted blob versions and snapshots is allowed. Defaults to
false
.Note:
permanent_delete_enabled
cannot be set to true if arestore_policy
block is defined.
- Days int
- Specifies the number of days that the blob should be retained, between
1
and365
days. Defaults to7
. - Permanent
Delete boolEnabled Indicates whether permanent deletion of the soft deleted blob versions and snapshots is allowed. Defaults to
false
.Note:
permanent_delete_enabled
cannot be set to true if arestore_policy
block is defined.
- days Integer
- Specifies the number of days that the blob should be retained, between
1
and365
days. Defaults to7
. - permanent
Delete BooleanEnabled Indicates whether permanent deletion of the soft deleted blob versions and snapshots is allowed. Defaults to
false
.Note:
permanent_delete_enabled
cannot be set to true if arestore_policy
block is defined.
- days number
- Specifies the number of days that the blob should be retained, between
1
and365
days. Defaults to7
. - permanent
Delete booleanEnabled Indicates whether permanent deletion of the soft deleted blob versions and snapshots is allowed. Defaults to
false
.Note:
permanent_delete_enabled
cannot be set to true if arestore_policy
block is defined.
- days int
- Specifies the number of days that the blob should be retained, between
1
and365
days. Defaults to7
. - permanent_
delete_ boolenabled Indicates whether permanent deletion of the soft deleted blob versions and snapshots is allowed. Defaults to
false
.Note:
permanent_delete_enabled
cannot be set to true if arestore_policy
block is defined.
- days Number
- Specifies the number of days that the blob should be retained, between
1
and365
days. Defaults to7
. - permanent
Delete BooleanEnabled Indicates whether permanent deletion of the soft deleted blob versions and snapshots is allowed. Defaults to
false
.Note:
permanent_delete_enabled
cannot be set to true if arestore_policy
block is defined.
AccountBlobPropertiesRestorePolicy, AccountBlobPropertiesRestorePolicyArgs
- Days int
- Specifies the number of days that the blob can be restored, between
1
and365
days. This must be less than thedays
specified fordelete_retention_policy
.
- Days int
- Specifies the number of days that the blob can be restored, between
1
and365
days. This must be less than thedays
specified fordelete_retention_policy
.
- days Integer
- Specifies the number of days that the blob can be restored, between
1
and365
days. This must be less than thedays
specified fordelete_retention_policy
.
- days number
- Specifies the number of days that the blob can be restored, between
1
and365
days. This must be less than thedays
specified fordelete_retention_policy
.
- days int
- Specifies the number of days that the blob can be restored, between
1
and365
days. This must be less than thedays
specified fordelete_retention_policy
.
- days Number
- Specifies the number of days that the blob can be restored, between
1
and365
days. This must be less than thedays
specified fordelete_retention_policy
.
AccountCustomDomain, AccountCustomDomainArgs
- Name string
- The Custom Domain Name to use for the Storage Account, which will be validated by Azure.
- Use
Subdomain bool - Should the Custom Domain Name be validated by using indirect CNAME validation?
- Name string
- The Custom Domain Name to use for the Storage Account, which will be validated by Azure.
- Use
Subdomain bool - Should the Custom Domain Name be validated by using indirect CNAME validation?
- name String
- The Custom Domain Name to use for the Storage Account, which will be validated by Azure.
- use
Subdomain Boolean - Should the Custom Domain Name be validated by using indirect CNAME validation?
- name string
- The Custom Domain Name to use for the Storage Account, which will be validated by Azure.
- use
Subdomain boolean - Should the Custom Domain Name be validated by using indirect CNAME validation?
- name str
- The Custom Domain Name to use for the Storage Account, which will be validated by Azure.
- use_
subdomain bool - Should the Custom Domain Name be validated by using indirect CNAME validation?
- name String
- The Custom Domain Name to use for the Storage Account, which will be validated by Azure.
- use
Subdomain Boolean - Should the Custom Domain Name be validated by using indirect CNAME validation?
AccountCustomerManagedKey, AccountCustomerManagedKeyArgs
- User
Assigned stringIdentity Id The ID of a user assigned identity.
Note:
customer_managed_key
can only be set when theaccount_kind
is set toStorageV2
oraccount_tier
set toPremium
, and the identity type isUserAssigned
.- Key
Vault stringKey Id - The ID of the Key Vault Key, supplying a version-less key ID will enable auto-rotation of this key. Exactly one of
key_vault_key_id
andmanaged_hsm_key_id
may be specified. - Managed
Hsm stringKey Id - The ID of the managed HSM Key. Exactly one of
key_vault_key_id
andmanaged_hsm_key_id
may be specified.
- User
Assigned stringIdentity Id The ID of a user assigned identity.
Note:
customer_managed_key
can only be set when theaccount_kind
is set toStorageV2
oraccount_tier
set toPremium
, and the identity type isUserAssigned
.- Key
Vault stringKey Id - The ID of the Key Vault Key, supplying a version-less key ID will enable auto-rotation of this key. Exactly one of
key_vault_key_id
andmanaged_hsm_key_id
may be specified. - Managed
Hsm stringKey Id - The ID of the managed HSM Key. Exactly one of
key_vault_key_id
andmanaged_hsm_key_id
may be specified.
- user
Assigned StringIdentity Id The ID of a user assigned identity.
Note:
customer_managed_key
can only be set when theaccount_kind
is set toStorageV2
oraccount_tier
set toPremium
, and the identity type isUserAssigned
.- key
Vault StringKey Id - The ID of the Key Vault Key, supplying a version-less key ID will enable auto-rotation of this key. Exactly one of
key_vault_key_id
andmanaged_hsm_key_id
may be specified. - managed
Hsm StringKey Id - The ID of the managed HSM Key. Exactly one of
key_vault_key_id
andmanaged_hsm_key_id
may be specified.
- user
Assigned stringIdentity Id The ID of a user assigned identity.
Note:
customer_managed_key
can only be set when theaccount_kind
is set toStorageV2
oraccount_tier
set toPremium
, and the identity type isUserAssigned
.- key
Vault stringKey Id - The ID of the Key Vault Key, supplying a version-less key ID will enable auto-rotation of this key. Exactly one of
key_vault_key_id
andmanaged_hsm_key_id
may be specified. - managed
Hsm stringKey Id - The ID of the managed HSM Key. Exactly one of
key_vault_key_id
andmanaged_hsm_key_id
may be specified.
- user_
assigned_ stridentity_ id The ID of a user assigned identity.
Note:
customer_managed_key
can only be set when theaccount_kind
is set toStorageV2
oraccount_tier
set toPremium
, and the identity type isUserAssigned
.- key_
vault_ strkey_ id - The ID of the Key Vault Key, supplying a version-less key ID will enable auto-rotation of this key. Exactly one of
key_vault_key_id
andmanaged_hsm_key_id
may be specified. - managed_
hsm_ strkey_ id - The ID of the managed HSM Key. Exactly one of
key_vault_key_id
andmanaged_hsm_key_id
may be specified.
- user
Assigned StringIdentity Id The ID of a user assigned identity.
Note:
customer_managed_key
can only be set when theaccount_kind
is set toStorageV2
oraccount_tier
set toPremium
, and the identity type isUserAssigned
.- key
Vault StringKey Id - The ID of the Key Vault Key, supplying a version-less key ID will enable auto-rotation of this key. Exactly one of
key_vault_key_id
andmanaged_hsm_key_id
may be specified. - managed
Hsm StringKey Id - The ID of the managed HSM Key. Exactly one of
key_vault_key_id
andmanaged_hsm_key_id
may be specified.
AccountIdentity, AccountIdentityArgs
- Type string
- Specifies the type of Managed Service Identity that should be configured on this Storage Account. Possible values are
SystemAssigned
,UserAssigned
,SystemAssigned, UserAssigned
(to enable both). - Identity
Ids List<string> Specifies a list of User Assigned Managed Identity IDs to be assigned to this Storage Account.
Note: This is required when
type
is set toUserAssigned
orSystemAssigned, UserAssigned
.The assigned
principal_id
andtenant_id
can be retrieved after the identitytype
has been set toSystemAssigned
and Storage Account has been created. More details are available below.- Principal
Id string - The Principal ID for the Service Principal associated with the Identity of this Storage Account.
- Tenant
Id string - The Tenant ID for the Service Principal associated with the Identity of this Storage Account.
- Type string
- Specifies the type of Managed Service Identity that should be configured on this Storage Account. Possible values are
SystemAssigned
,UserAssigned
,SystemAssigned, UserAssigned
(to enable both). - Identity
Ids []string Specifies a list of User Assigned Managed Identity IDs to be assigned to this Storage Account.
Note: This is required when
type
is set toUserAssigned
orSystemAssigned, UserAssigned
.The assigned
principal_id
andtenant_id
can be retrieved after the identitytype
has been set toSystemAssigned
and Storage Account has been created. More details are available below.- Principal
Id string - The Principal ID for the Service Principal associated with the Identity of this Storage Account.
- Tenant
Id string - The Tenant ID for the Service Principal associated with the Identity of this Storage Account.
- type String
- Specifies the type of Managed Service Identity that should be configured on this Storage Account. Possible values are
SystemAssigned
,UserAssigned
,SystemAssigned, UserAssigned
(to enable both). - identity
Ids List<String> Specifies a list of User Assigned Managed Identity IDs to be assigned to this Storage Account.
Note: This is required when
type
is set toUserAssigned
orSystemAssigned, UserAssigned
.The assigned
principal_id
andtenant_id
can be retrieved after the identitytype
has been set toSystemAssigned
and Storage Account has been created. More details are available below.- principal
Id String - The Principal ID for the Service Principal associated with the Identity of this Storage Account.
- tenant
Id String - The Tenant ID for the Service Principal associated with the Identity of this Storage Account.
- type string
- Specifies the type of Managed Service Identity that should be configured on this Storage Account. Possible values are
SystemAssigned
,UserAssigned
,SystemAssigned, UserAssigned
(to enable both). - identity
Ids string[] Specifies a list of User Assigned Managed Identity IDs to be assigned to this Storage Account.
Note: This is required when
type
is set toUserAssigned
orSystemAssigned, UserAssigned
.The assigned
principal_id
andtenant_id
can be retrieved after the identitytype
has been set toSystemAssigned
and Storage Account has been created. More details are available below.- principal
Id string - The Principal ID for the Service Principal associated with the Identity of this Storage Account.
- tenant
Id string - The Tenant ID for the Service Principal associated with the Identity of this Storage Account.
- type str
- Specifies the type of Managed Service Identity that should be configured on this Storage Account. Possible values are
SystemAssigned
,UserAssigned
,SystemAssigned, UserAssigned
(to enable both). - identity_
ids Sequence[str] Specifies a list of User Assigned Managed Identity IDs to be assigned to this Storage Account.
Note: This is required when
type
is set toUserAssigned
orSystemAssigned, UserAssigned
.The assigned
principal_id
andtenant_id
can be retrieved after the identitytype
has been set toSystemAssigned
and Storage Account has been created. More details are available below.- principal_
id str - The Principal ID for the Service Principal associated with the Identity of this Storage Account.
- tenant_
id str - The Tenant ID for the Service Principal associated with the Identity of this Storage Account.
- type String
- Specifies the type of Managed Service Identity that should be configured on this Storage Account. Possible values are
SystemAssigned
,UserAssigned
,SystemAssigned, UserAssigned
(to enable both). - identity
Ids List<String> Specifies a list of User Assigned Managed Identity IDs to be assigned to this Storage Account.
Note: This is required when
type
is set toUserAssigned
orSystemAssigned, UserAssigned
.The assigned
principal_id
andtenant_id
can be retrieved after the identitytype
has been set toSystemAssigned
and Storage Account has been created. More details are available below.- principal
Id String - The Principal ID for the Service Principal associated with the Identity of this Storage Account.
- tenant
Id String - The Tenant ID for the Service Principal associated with the Identity of this Storage Account.
AccountImmutabilityPolicy, AccountImmutabilityPolicyArgs
- Allow
Protected boolAppend Writes - When enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted.
- Period
Since intCreation In Days - The immutability period for the blobs in the container since the policy creation, in days.
- State string
- Defines the mode of the policy.
Disabled
state disables the policy,Unlocked
state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property,Locked
state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted.
- Allow
Protected boolAppend Writes - When enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted.
- Period
Since intCreation In Days - The immutability period for the blobs in the container since the policy creation, in days.
- State string
- Defines the mode of the policy.
Disabled
state disables the policy,Unlocked
state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property,Locked
state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted.
- allow
Protected BooleanAppend Writes - When enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted.
- period
Since IntegerCreation In Days - The immutability period for the blobs in the container since the policy creation, in days.
- state String
- Defines the mode of the policy.
Disabled
state disables the policy,Unlocked
state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property,Locked
state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted.
- allow
Protected booleanAppend Writes - When enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted.
- period
Since numberCreation In Days - The immutability period for the blobs in the container since the policy creation, in days.
- state string
- Defines the mode of the policy.
Disabled
state disables the policy,Unlocked
state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property,Locked
state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted.
- allow_
protected_ boolappend_ writes - When enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted.
- period_
since_ intcreation_ in_ days - The immutability period for the blobs in the container since the policy creation, in days.
- state str
- Defines the mode of the policy.
Disabled
state disables the policy,Unlocked
state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property,Locked
state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted.
- allow
Protected BooleanAppend Writes - When enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted.
- period
Since NumberCreation In Days - The immutability period for the blobs in the container since the policy creation, in days.
- state String
- Defines the mode of the policy.
Disabled
state disables the policy,Unlocked
state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property,Locked
state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted.
AccountNetworkRules, AccountNetworkRulesArgs
- Default
Action string - Specifies the default action of allow or deny when no other rules match. Valid options are
Deny
orAllow
. - Bypasses List<string>
- Specifies whether traffic is bypassed for Logging/Metrics/AzureServices. Valid options are any combination of
Logging
,Metrics
,AzureServices
, orNone
. - Ip
Rules List<string> - List of public IP or IP ranges in CIDR Format. Only IPv4 addresses are allowed. /31 CIDRs, /32 CIDRs, and Private IP address ranges (as defined in RFC 1918), are not allowed.
- Private
Link List<AccountAccesses Network Rules Private Link Access> One or more
private_link_access
block as defined below.Note: If specifying
network_rules
, one of eitherip_rules
orvirtual_network_subnet_ids
must be specified anddefault_action
must be set toDeny
.Note: Network Rules can be defined either directly on the
azure.storage.Account
resource, or using theazure.storage.AccountNetworkRules
resource - but the two cannot be used together. If both are used against the same Storage Account, spurious changes will occur. When managing Network Rules using this resource, to change from adefault_action
ofDeny
toAllow
requires defining, rather than removing, the block.Note: The prefix of
ip_rules
must be between 0 and 30 and only supports public IP addresses.- Virtual
Network List<string>Subnet Ids - A list of resource ids for subnets.
- Default
Action string - Specifies the default action of allow or deny when no other rules match. Valid options are
Deny
orAllow
. - Bypasses []string
- Specifies whether traffic is bypassed for Logging/Metrics/AzureServices. Valid options are any combination of
Logging
,Metrics
,AzureServices
, orNone
. - Ip
Rules []string - List of public IP or IP ranges in CIDR Format. Only IPv4 addresses are allowed. /31 CIDRs, /32 CIDRs, and Private IP address ranges (as defined in RFC 1918), are not allowed.
- Private
Link []AccountAccesses Network Rules Private Link Access One or more
private_link_access
block as defined below.Note: If specifying
network_rules
, one of eitherip_rules
orvirtual_network_subnet_ids
must be specified anddefault_action
must be set toDeny
.Note: Network Rules can be defined either directly on the
azure.storage.Account
resource, or using theazure.storage.AccountNetworkRules
resource - but the two cannot be used together. If both are used against the same Storage Account, spurious changes will occur. When managing Network Rules using this resource, to change from adefault_action
ofDeny
toAllow
requires defining, rather than removing, the block.Note: The prefix of
ip_rules
must be between 0 and 30 and only supports public IP addresses.- Virtual
Network []stringSubnet Ids - A list of resource ids for subnets.
- default
Action String - Specifies the default action of allow or deny when no other rules match. Valid options are
Deny
orAllow
. - bypasses List<String>
- Specifies whether traffic is bypassed for Logging/Metrics/AzureServices. Valid options are any combination of
Logging
,Metrics
,AzureServices
, orNone
. - ip
Rules List<String> - List of public IP or IP ranges in CIDR Format. Only IPv4 addresses are allowed. /31 CIDRs, /32 CIDRs, and Private IP address ranges (as defined in RFC 1918), are not allowed.
- private
Link List<AccountAccesses Network Rules Private Link Access> One or more
private_link_access
block as defined below.Note: If specifying
network_rules
, one of eitherip_rules
orvirtual_network_subnet_ids
must be specified anddefault_action
must be set toDeny
.Note: Network Rules can be defined either directly on the
azure.storage.Account
resource, or using theazure.storage.AccountNetworkRules
resource - but the two cannot be used together. If both are used against the same Storage Account, spurious changes will occur. When managing Network Rules using this resource, to change from adefault_action
ofDeny
toAllow
requires defining, rather than removing, the block.Note: The prefix of
ip_rules
must be between 0 and 30 and only supports public IP addresses.- virtual
Network List<String>Subnet Ids - A list of resource ids for subnets.
- default
Action string - Specifies the default action of allow or deny when no other rules match. Valid options are
Deny
orAllow
. - bypasses string[]
- Specifies whether traffic is bypassed for Logging/Metrics/AzureServices. Valid options are any combination of
Logging
,Metrics
,AzureServices
, orNone
. - ip
Rules string[] - List of public IP or IP ranges in CIDR Format. Only IPv4 addresses are allowed. /31 CIDRs, /32 CIDRs, and Private IP address ranges (as defined in RFC 1918), are not allowed.
- private
Link AccountAccesses Network Rules Private Link Access[] One or more
private_link_access
block as defined below.Note: If specifying
network_rules
, one of eitherip_rules
orvirtual_network_subnet_ids
must be specified anddefault_action
must be set toDeny
.Note: Network Rules can be defined either directly on the
azure.storage.Account
resource, or using theazure.storage.AccountNetworkRules
resource - but the two cannot be used together. If both are used against the same Storage Account, spurious changes will occur. When managing Network Rules using this resource, to change from adefault_action
ofDeny
toAllow
requires defining, rather than removing, the block.Note: The prefix of
ip_rules
must be between 0 and 30 and only supports public IP addresses.- virtual
Network string[]Subnet Ids - A list of resource ids for subnets.
- default_
action str - Specifies the default action of allow or deny when no other rules match. Valid options are
Deny
orAllow
. - bypasses Sequence[str]
- Specifies whether traffic is bypassed for Logging/Metrics/AzureServices. Valid options are any combination of
Logging
,Metrics
,AzureServices
, orNone
. - ip_
rules Sequence[str] - List of public IP or IP ranges in CIDR Format. Only IPv4 addresses are allowed. /31 CIDRs, /32 CIDRs, and Private IP address ranges (as defined in RFC 1918), are not allowed.
- private_
link_ Sequence[Accountaccesses Network Rules Private Link Access] One or more
private_link_access
block as defined below.Note: If specifying
network_rules
, one of eitherip_rules
orvirtual_network_subnet_ids
must be specified anddefault_action
must be set toDeny
.Note: Network Rules can be defined either directly on the
azure.storage.Account
resource, or using theazure.storage.AccountNetworkRules
resource - but the two cannot be used together. If both are used against the same Storage Account, spurious changes will occur. When managing Network Rules using this resource, to change from adefault_action
ofDeny
toAllow
requires defining, rather than removing, the block.Note: The prefix of
ip_rules
must be between 0 and 30 and only supports public IP addresses.- virtual_
network_ Sequence[str]subnet_ ids - A list of resource ids for subnets.
- default
Action String - Specifies the default action of allow or deny when no other rules match. Valid options are
Deny
orAllow
. - bypasses List<String>
- Specifies whether traffic is bypassed for Logging/Metrics/AzureServices. Valid options are any combination of
Logging
,Metrics
,AzureServices
, orNone
. - ip
Rules List<String> - List of public IP or IP ranges in CIDR Format. Only IPv4 addresses are allowed. /31 CIDRs, /32 CIDRs, and Private IP address ranges (as defined in RFC 1918), are not allowed.
- private
Link List<Property Map>Accesses One or more
private_link_access
block as defined below.Note: If specifying
network_rules
, one of eitherip_rules
orvirtual_network_subnet_ids
must be specified anddefault_action
must be set toDeny
.Note: Network Rules can be defined either directly on the
azure.storage.Account
resource, or using theazure.storage.AccountNetworkRules
resource - but the two cannot be used together. If both are used against the same Storage Account, spurious changes will occur. When managing Network Rules using this resource, to change from adefault_action
ofDeny
toAllow
requires defining, rather than removing, the block.Note: The prefix of
ip_rules
must be between 0 and 30 and only supports public IP addresses.- virtual
Network List<String>Subnet Ids - A list of resource ids for subnets.
AccountNetworkRulesPrivateLinkAccess, AccountNetworkRulesPrivateLinkAccessArgs
- Endpoint
Resource stringId - The ID of the Azure resource that should be allowed access to the target storage account.
- Endpoint
Tenant stringId - The tenant id of the resource of the resource access rule to be granted access. Defaults to the current tenant id.
- Endpoint
Resource stringId - The ID of the Azure resource that should be allowed access to the target storage account.
- Endpoint
Tenant stringId - The tenant id of the resource of the resource access rule to be granted access. Defaults to the current tenant id.
- endpoint
Resource StringId - The ID of the Azure resource that should be allowed access to the target storage account.
- endpoint
Tenant StringId - The tenant id of the resource of the resource access rule to be granted access. Defaults to the current tenant id.
- endpoint
Resource stringId - The ID of the Azure resource that should be allowed access to the target storage account.
- endpoint
Tenant stringId - The tenant id of the resource of the resource access rule to be granted access. Defaults to the current tenant id.
- endpoint_
resource_ strid - The ID of the Azure resource that should be allowed access to the target storage account.
- endpoint_
tenant_ strid - The tenant id of the resource of the resource access rule to be granted access. Defaults to the current tenant id.
- endpoint
Resource StringId - The ID of the Azure resource that should be allowed access to the target storage account.
- endpoint
Tenant StringId - The tenant id of the resource of the resource access rule to be granted access. Defaults to the current tenant id.
AccountQueueProperties, AccountQueuePropertiesArgs
- Cors
Rules List<AccountQueue Properties Cors Rule> - A
cors_rule
block as defined above. - Hour
Metrics AccountQueue Properties Hour Metrics - A
hour_metrics
block as defined below. - Logging
Account
Queue Properties Logging - A
logging
block as defined below. - Minute
Metrics AccountQueue Properties Minute Metrics - A
minute_metrics
block as defined below.
- Cors
Rules []AccountQueue Properties Cors Rule - A
cors_rule
block as defined above. - Hour
Metrics AccountQueue Properties Hour Metrics - A
hour_metrics
block as defined below. - Logging
Account
Queue Properties Logging - A
logging
block as defined below. - Minute
Metrics AccountQueue Properties Minute Metrics - A
minute_metrics
block as defined below.
- cors
Rules List<AccountQueue Properties Cors Rule> - A
cors_rule
block as defined above. - hour
Metrics AccountQueue Properties Hour Metrics - A
hour_metrics
block as defined below. - logging
Account
Queue Properties Logging - A
logging
block as defined below. - minute
Metrics AccountQueue Properties Minute Metrics - A
minute_metrics
block as defined below.
- cors
Rules AccountQueue Properties Cors Rule[] - A
cors_rule
block as defined above. - hour
Metrics AccountQueue Properties Hour Metrics - A
hour_metrics
block as defined below. - logging
Account
Queue Properties Logging - A
logging
block as defined below. - minute
Metrics AccountQueue Properties Minute Metrics - A
minute_metrics
block as defined below.
- cors_
rules Sequence[AccountQueue Properties Cors Rule] - A
cors_rule
block as defined above. - hour_
metrics AccountQueue Properties Hour Metrics - A
hour_metrics
block as defined below. - logging
Account
Queue Properties Logging - A
logging
block as defined below. - minute_
metrics AccountQueue Properties Minute Metrics - A
minute_metrics
block as defined below.
- cors
Rules List<Property Map> - A
cors_rule
block as defined above. - hour
Metrics Property Map - A
hour_metrics
block as defined below. - logging Property Map
- A
logging
block as defined below. - minute
Metrics Property Map - A
minute_metrics
block as defined below.
AccountQueuePropertiesCorsRule, AccountQueuePropertiesCorsRuleArgs
- Allowed
Headers List<string> - A list of headers that are allowed to be a part of the cross-origin request.
- Allowed
Methods List<string> - A list of HTTP methods that are allowed to be executed by the origin. Valid options are
DELETE
,GET
,HEAD
,MERGE
,POST
,OPTIONS
,PUT
orPATCH
. - Allowed
Origins List<string> - A list of origin domains that will be allowed by CORS.
- Exposed
Headers List<string> - A list of response headers that are exposed to CORS clients.
- Max
Age intIn Seconds - The number of seconds the client should cache a preflight response.
- Allowed
Headers []string - A list of headers that are allowed to be a part of the cross-origin request.
- Allowed
Methods []string - A list of HTTP methods that are allowed to be executed by the origin. Valid options are
DELETE
,GET
,HEAD
,MERGE
,POST
,OPTIONS
,PUT
orPATCH
. - Allowed
Origins []string - A list of origin domains that will be allowed by CORS.
- Exposed
Headers []string - A list of response headers that are exposed to CORS clients.
- Max
Age intIn Seconds - The number of seconds the client should cache a preflight response.
- allowed
Headers List<String> - A list of headers that are allowed to be a part of the cross-origin request.
- allowed
Methods List<String> - A list of HTTP methods that are allowed to be executed by the origin. Valid options are
DELETE
,GET
,HEAD
,MERGE
,POST
,OPTIONS
,PUT
orPATCH
. - allowed
Origins List<String> - A list of origin domains that will be allowed by CORS.
- exposed
Headers List<String> - A list of response headers that are exposed to CORS clients.
- max
Age IntegerIn Seconds - The number of seconds the client should cache a preflight response.
- allowed
Headers string[] - A list of headers that are allowed to be a part of the cross-origin request.
- allowed
Methods string[] - A list of HTTP methods that are allowed to be executed by the origin. Valid options are
DELETE
,GET
,HEAD
,MERGE
,POST
,OPTIONS
,PUT
orPATCH
. - allowed
Origins string[] - A list of origin domains that will be allowed by CORS.
- exposed
Headers string[] - A list of response headers that are exposed to CORS clients.
- max
Age numberIn Seconds - The number of seconds the client should cache a preflight response.
- allowed_
headers Sequence[str] - A list of headers that are allowed to be a part of the cross-origin request.
- allowed_
methods Sequence[str] - A list of HTTP methods that are allowed to be executed by the origin. Valid options are
DELETE
,GET
,HEAD
,MERGE
,POST
,OPTIONS
,PUT
orPATCH
. - allowed_
origins Sequence[str] - A list of origin domains that will be allowed by CORS.
- exposed_
headers Sequence[str] - A list of response headers that are exposed to CORS clients.
- max_
age_ intin_ seconds - The number of seconds the client should cache a preflight response.
- allowed
Headers List<String> - A list of headers that are allowed to be a part of the cross-origin request.
- allowed
Methods List<String> - A list of HTTP methods that are allowed to be executed by the origin. Valid options are
DELETE
,GET
,HEAD
,MERGE
,POST
,OPTIONS
,PUT
orPATCH
. - allowed
Origins List<String> - A list of origin domains that will be allowed by CORS.
- exposed
Headers List<String> - A list of response headers that are exposed to CORS clients.
- max
Age NumberIn Seconds - The number of seconds the client should cache a preflight response.
AccountQueuePropertiesHourMetrics, AccountQueuePropertiesHourMetricsArgs
- Version string
- The version of storage analytics to configure.
- Include
Apis bool - Indicates whether metrics should generate summary statistics for called API operations.
- Retention
Policy intDays - Specifies the number of days that logs will be retained.
- Version string
- The version of storage analytics to configure.
- Include
Apis bool - Indicates whether metrics should generate summary statistics for called API operations.
- Retention
Policy intDays - Specifies the number of days that logs will be retained.
- version String
- The version of storage analytics to configure.
- include
Apis Boolean - Indicates whether metrics should generate summary statistics for called API operations.
- retention
Policy IntegerDays - Specifies the number of days that logs will be retained.
- version string
- The version of storage analytics to configure.
- include
Apis boolean - Indicates whether metrics should generate summary statistics for called API operations.
- retention
Policy numberDays - Specifies the number of days that logs will be retained.
- version str
- The version of storage analytics to configure.
- include_
apis bool - Indicates whether metrics should generate summary statistics for called API operations.
- retention_
policy_ intdays - Specifies the number of days that logs will be retained.
- version String
- The version of storage analytics to configure.
- include
Apis Boolean - Indicates whether metrics should generate summary statistics for called API operations.
- retention
Policy NumberDays - Specifies the number of days that logs will be retained.
AccountQueuePropertiesLogging, AccountQueuePropertiesLoggingArgs
- Delete bool
- Indicates whether all delete requests should be logged.
- Read bool
- Indicates whether all read requests should be logged.
- Version string
- The version of storage analytics to configure.
- Write bool
- Indicates whether all write requests should be logged.
- Retention
Policy intDays - Specifies the number of days that logs will be retained.
- Delete bool
- Indicates whether all delete requests should be logged.
- Read bool
- Indicates whether all read requests should be logged.
- Version string
- The version of storage analytics to configure.
- Write bool
- Indicates whether all write requests should be logged.
- Retention
Policy intDays - Specifies the number of days that logs will be retained.
- delete Boolean
- Indicates whether all delete requests should be logged.
- read Boolean
- Indicates whether all read requests should be logged.
- version String
- The version of storage analytics to configure.
- write Boolean
- Indicates whether all write requests should be logged.
- retention
Policy IntegerDays - Specifies the number of days that logs will be retained.
- delete boolean
- Indicates whether all delete requests should be logged.
- read boolean
- Indicates whether all read requests should be logged.
- version string
- The version of storage analytics to configure.
- write boolean
- Indicates whether all write requests should be logged.
- retention
Policy numberDays - Specifies the number of days that logs will be retained.
- delete bool
- Indicates whether all delete requests should be logged.
- read bool
- Indicates whether all read requests should be logged.
- version str
- The version of storage analytics to configure.
- write bool
- Indicates whether all write requests should be logged.
- retention_
policy_ intdays - Specifies the number of days that logs will be retained.
- delete Boolean
- Indicates whether all delete requests should be logged.
- read Boolean
- Indicates whether all read requests should be logged.
- version String
- The version of storage analytics to configure.
- write Boolean
- Indicates whether all write requests should be logged.
- retention
Policy NumberDays - Specifies the number of days that logs will be retained.
AccountQueuePropertiesMinuteMetrics, AccountQueuePropertiesMinuteMetricsArgs
- Version string
- The version of storage analytics to configure.
- Include
Apis bool - Indicates whether metrics should generate summary statistics for called API operations.
- Retention
Policy intDays - Specifies the number of days that logs will be retained.
- Version string
- The version of storage analytics to configure.
- Include
Apis bool - Indicates whether metrics should generate summary statistics for called API operations.
- Retention
Policy intDays - Specifies the number of days that logs will be retained.
- version String
- The version of storage analytics to configure.
- include
Apis Boolean - Indicates whether metrics should generate summary statistics for called API operations.
- retention
Policy IntegerDays - Specifies the number of days that logs will be retained.
- version string
- The version of storage analytics to configure.
- include
Apis boolean - Indicates whether metrics should generate summary statistics for called API operations.
- retention
Policy numberDays - Specifies the number of days that logs will be retained.
- version str
- The version of storage analytics to configure.
- include_
apis bool - Indicates whether metrics should generate summary statistics for called API operations.
- retention_
policy_ intdays - Specifies the number of days that logs will be retained.
- version String
- The version of storage analytics to configure.
- include
Apis Boolean - Indicates whether metrics should generate summary statistics for called API operations.
- retention
Policy NumberDays - Specifies the number of days that logs will be retained.
AccountRouting, AccountRoutingArgs
- Choice string
- Specifies the kind of network routing opted by the user. Possible values are
InternetRouting
andMicrosoftRouting
. Defaults toMicrosoftRouting
. - Publish
Internet boolEndpoints - Should internet routing storage endpoints be published? Defaults to
false
. - Publish
Microsoft boolEndpoints - Should Microsoft routing storage endpoints be published? Defaults to
false
.
- Choice string
- Specifies the kind of network routing opted by the user. Possible values are
InternetRouting
andMicrosoftRouting
. Defaults toMicrosoftRouting
. - Publish
Internet boolEndpoints - Should internet routing storage endpoints be published? Defaults to
false
. - Publish
Microsoft boolEndpoints - Should Microsoft routing storage endpoints be published? Defaults to
false
.
- choice String
- Specifies the kind of network routing opted by the user. Possible values are
InternetRouting
andMicrosoftRouting
. Defaults toMicrosoftRouting
. - publish
Internet BooleanEndpoints - Should internet routing storage endpoints be published? Defaults to
false
. - publish
Microsoft BooleanEndpoints - Should Microsoft routing storage endpoints be published? Defaults to
false
.
- choice string
- Specifies the kind of network routing opted by the user. Possible values are
InternetRouting
andMicrosoftRouting
. Defaults toMicrosoftRouting
. - publish
Internet booleanEndpoints - Should internet routing storage endpoints be published? Defaults to
false
. - publish
Microsoft booleanEndpoints - Should Microsoft routing storage endpoints be published? Defaults to
false
.
- choice str
- Specifies the kind of network routing opted by the user. Possible values are
InternetRouting
andMicrosoftRouting
. Defaults toMicrosoftRouting
. - publish_
internet_ boolendpoints - Should internet routing storage endpoints be published? Defaults to
false
. - publish_
microsoft_ boolendpoints - Should Microsoft routing storage endpoints be published? Defaults to
false
.
- choice String
- Specifies the kind of network routing opted by the user. Possible values are
InternetRouting
andMicrosoftRouting
. Defaults toMicrosoftRouting
. - publish
Internet BooleanEndpoints - Should internet routing storage endpoints be published? Defaults to
false
. - publish
Microsoft BooleanEndpoints - Should Microsoft routing storage endpoints be published? Defaults to
false
.
AccountSasPolicy, AccountSasPolicyArgs
- Expiration
Period string - The SAS expiration period in format of
DD.HH:MM:SS
. - Expiration
Action string - The SAS expiration action. The only possible value is
Log
at this moment. Defaults toLog
.
- Expiration
Period string - The SAS expiration period in format of
DD.HH:MM:SS
. - Expiration
Action string - The SAS expiration action. The only possible value is
Log
at this moment. Defaults toLog
.
- expiration
Period String - The SAS expiration period in format of
DD.HH:MM:SS
. - expiration
Action String - The SAS expiration action. The only possible value is
Log
at this moment. Defaults toLog
.
- expiration
Period string - The SAS expiration period in format of
DD.HH:MM:SS
. - expiration
Action string - The SAS expiration action. The only possible value is
Log
at this moment. Defaults toLog
.
- expiration_
period str - The SAS expiration period in format of
DD.HH:MM:SS
. - expiration_
action str - The SAS expiration action. The only possible value is
Log
at this moment. Defaults toLog
.
- expiration
Period String - The SAS expiration period in format of
DD.HH:MM:SS
. - expiration
Action String - The SAS expiration action. The only possible value is
Log
at this moment. Defaults toLog
.
AccountShareProperties, AccountSharePropertiesArgs
- Cors
Rules List<AccountShare Properties Cors Rule> - A
cors_rule
block as defined below. - Retention
Policy AccountShare Properties Retention Policy - A
retention_policy
block as defined below. - Smb
Account
Share Properties Smb - A
smb
block as defined below.
- Cors
Rules []AccountShare Properties Cors Rule - A
cors_rule
block as defined below. - Retention
Policy AccountShare Properties Retention Policy - A
retention_policy
block as defined below. - Smb
Account
Share Properties Smb - A
smb
block as defined below.
- cors
Rules List<AccountShare Properties Cors Rule> - A
cors_rule
block as defined below. - retention
Policy AccountShare Properties Retention Policy - A
retention_policy
block as defined below. - smb
Account
Share Properties Smb - A
smb
block as defined below.
- cors
Rules AccountShare Properties Cors Rule[] - A
cors_rule
block as defined below. - retention
Policy AccountShare Properties Retention Policy - A
retention_policy
block as defined below. - smb
Account
Share Properties Smb - A
smb
block as defined below.
- cors_
rules Sequence[AccountShare Properties Cors Rule] - A
cors_rule
block as defined below. - retention_
policy AccountShare Properties Retention Policy - A
retention_policy
block as defined below. - smb
Account
Share Properties Smb - A
smb
block as defined below.
- cors
Rules List<Property Map> - A
cors_rule
block as defined below. - retention
Policy Property Map - A
retention_policy
block as defined below. - smb Property Map
- A
smb
block as defined below.
AccountSharePropertiesCorsRule, AccountSharePropertiesCorsRuleArgs
- Allowed
Headers List<string> - A list of headers that are allowed to be a part of the cross-origin request.
- Allowed
Methods List<string> - A list of HTTP methods that are allowed to be executed by the origin. Valid options are
DELETE
,GET
,HEAD
,MERGE
,POST
,OPTIONS
,PUT
orPATCH
. - Allowed
Origins List<string> - A list of origin domains that will be allowed by CORS.
- Exposed
Headers List<string> - A list of response headers that are exposed to CORS clients.
- Max
Age intIn Seconds - The number of seconds the client should cache a preflight response.
- Allowed
Headers []string - A list of headers that are allowed to be a part of the cross-origin request.
- Allowed
Methods []string - A list of HTTP methods that are allowed to be executed by the origin. Valid options are
DELETE
,GET
,HEAD
,MERGE
,POST
,OPTIONS
,PUT
orPATCH
. - Allowed
Origins []string - A list of origin domains that will be allowed by CORS.
- Exposed
Headers []string - A list of response headers that are exposed to CORS clients.
- Max
Age intIn Seconds - The number of seconds the client should cache a preflight response.
- allowed
Headers List<String> - A list of headers that are allowed to be a part of the cross-origin request.
- allowed
Methods List<String> - A list of HTTP methods that are allowed to be executed by the origin. Valid options are
DELETE
,GET
,HEAD
,MERGE
,POST
,OPTIONS
,PUT
orPATCH
. - allowed
Origins List<String> - A list of origin domains that will be allowed by CORS.
- exposed
Headers List<String> - A list of response headers that are exposed to CORS clients.
- max
Age IntegerIn Seconds - The number of seconds the client should cache a preflight response.
- allowed
Headers string[] - A list of headers that are allowed to be a part of the cross-origin request.
- allowed
Methods string[] - A list of HTTP methods that are allowed to be executed by the origin. Valid options are
DELETE
,GET
,HEAD
,MERGE
,POST
,OPTIONS
,PUT
orPATCH
. - allowed
Origins string[] - A list of origin domains that will be allowed by CORS.
- exposed
Headers string[] - A list of response headers that are exposed to CORS clients.
- max
Age numberIn Seconds - The number of seconds the client should cache a preflight response.
- allowed_
headers Sequence[str] - A list of headers that are allowed to be a part of the cross-origin request.
- allowed_
methods Sequence[str] - A list of HTTP methods that are allowed to be executed by the origin. Valid options are
DELETE
,GET
,HEAD
,MERGE
,POST
,OPTIONS
,PUT
orPATCH
. - allowed_
origins Sequence[str] - A list of origin domains that will be allowed by CORS.
- exposed_
headers Sequence[str] - A list of response headers that are exposed to CORS clients.
- max_
age_ intin_ seconds - The number of seconds the client should cache a preflight response.
- allowed
Headers List<String> - A list of headers that are allowed to be a part of the cross-origin request.
- allowed
Methods List<String> - A list of HTTP methods that are allowed to be executed by the origin. Valid options are
DELETE
,GET
,HEAD
,MERGE
,POST
,OPTIONS
,PUT
orPATCH
. - allowed
Origins List<String> - A list of origin domains that will be allowed by CORS.
- exposed
Headers List<String> - A list of response headers that are exposed to CORS clients.
- max
Age NumberIn Seconds - The number of seconds the client should cache a preflight response.
AccountSharePropertiesRetentionPolicy, AccountSharePropertiesRetentionPolicyArgs
- Days int
- Specifies the number of days that the
azure.storage.Share
should be retained, between1
and365
days. Defaults to7
.
- Days int
- Specifies the number of days that the
azure.storage.Share
should be retained, between1
and365
days. Defaults to7
.
- days Integer
- Specifies the number of days that the
azure.storage.Share
should be retained, between1
and365
days. Defaults to7
.
- days number
- Specifies the number of days that the
azure.storage.Share
should be retained, between1
and365
days. Defaults to7
.
- days int
- Specifies the number of days that the
azure.storage.Share
should be retained, between1
and365
days. Defaults to7
.
- days Number
- Specifies the number of days that the
azure.storage.Share
should be retained, between1
and365
days. Defaults to7
.
AccountSharePropertiesSmb, AccountSharePropertiesSmbArgs
- Authentication
Types List<string> - A set of SMB authentication methods. Possible values are
NTLMv2
, andKerberos
. - Channel
Encryption List<string>Types - A set of SMB channel encryption. Possible values are
AES-128-CCM
,AES-128-GCM
, andAES-256-GCM
. - Kerberos
Ticket List<string>Encryption Types - A set of Kerberos ticket encryption. Possible values are
RC4-HMAC
, andAES-256
. - Multichannel
Enabled bool - Indicates whether multichannel is enabled. Defaults to
false
. This is only supported on Premium storage accounts. - Versions List<string>
- A set of SMB protocol versions. Possible values are
SMB2.1
,SMB3.0
, andSMB3.1.1
.
- Authentication
Types []string - A set of SMB authentication methods. Possible values are
NTLMv2
, andKerberos
. - Channel
Encryption []stringTypes - A set of SMB channel encryption. Possible values are
AES-128-CCM
,AES-128-GCM
, andAES-256-GCM
. - Kerberos
Ticket []stringEncryption Types - A set of Kerberos ticket encryption. Possible values are
RC4-HMAC
, andAES-256
. - Multichannel
Enabled bool - Indicates whether multichannel is enabled. Defaults to
false
. This is only supported on Premium storage accounts. - Versions []string
- A set of SMB protocol versions. Possible values are
SMB2.1
,SMB3.0
, andSMB3.1.1
.
- authentication
Types List<String> - A set of SMB authentication methods. Possible values are
NTLMv2
, andKerberos
. - channel
Encryption List<String>Types - A set of SMB channel encryption. Possible values are
AES-128-CCM
,AES-128-GCM
, andAES-256-GCM
. - kerberos
Ticket List<String>Encryption Types - A set of Kerberos ticket encryption. Possible values are
RC4-HMAC
, andAES-256
. - multichannel
Enabled Boolean - Indicates whether multichannel is enabled. Defaults to
false
. This is only supported on Premium storage accounts. - versions List<String>
- A set of SMB protocol versions. Possible values are
SMB2.1
,SMB3.0
, andSMB3.1.1
.
- authentication
Types string[] - A set of SMB authentication methods. Possible values are
NTLMv2
, andKerberos
. - channel
Encryption string[]Types - A set of SMB channel encryption. Possible values are
AES-128-CCM
,AES-128-GCM
, andAES-256-GCM
. - kerberos
Ticket string[]Encryption Types - A set of Kerberos ticket encryption. Possible values are
RC4-HMAC
, andAES-256
. - multichannel
Enabled boolean - Indicates whether multichannel is enabled. Defaults to
false
. This is only supported on Premium storage accounts. - versions string[]
- A set of SMB protocol versions. Possible values are
SMB2.1
,SMB3.0
, andSMB3.1.1
.
- authentication_
types Sequence[str] - A set of SMB authentication methods. Possible values are
NTLMv2
, andKerberos
. - channel_
encryption_ Sequence[str]types - A set of SMB channel encryption. Possible values are
AES-128-CCM
,AES-128-GCM
, andAES-256-GCM
. - kerberos_
ticket_ Sequence[str]encryption_ types - A set of Kerberos ticket encryption. Possible values are
RC4-HMAC
, andAES-256
. - multichannel_
enabled bool - Indicates whether multichannel is enabled. Defaults to
false
. This is only supported on Premium storage accounts. - versions Sequence[str]
- A set of SMB protocol versions. Possible values are
SMB2.1
,SMB3.0
, andSMB3.1.1
.
- authentication
Types List<String> - A set of SMB authentication methods. Possible values are
NTLMv2
, andKerberos
. - channel
Encryption List<String>Types - A set of SMB channel encryption. Possible values are
AES-128-CCM
,AES-128-GCM
, andAES-256-GCM
. - kerberos
Ticket List<String>Encryption Types - A set of Kerberos ticket encryption. Possible values are
RC4-HMAC
, andAES-256
. - multichannel
Enabled Boolean - Indicates whether multichannel is enabled. Defaults to
false
. This is only supported on Premium storage accounts. - versions List<String>
- A set of SMB protocol versions. Possible values are
SMB2.1
,SMB3.0
, andSMB3.1.1
.
AccountStaticWebsite, AccountStaticWebsiteArgs
- Error404Document string
- The absolute path to a custom webpage that should be used when a request is made which does not correspond to an existing file.
- Index
Document string - The webpage that Azure Storage serves for requests to the root of a website or any subfolder. For example, index.html. The value is case-sensitive.
- Error404Document string
- The absolute path to a custom webpage that should be used when a request is made which does not correspond to an existing file.
- Index
Document string - The webpage that Azure Storage serves for requests to the root of a website or any subfolder. For example, index.html. The value is case-sensitive.
- error404Document String
- The absolute path to a custom webpage that should be used when a request is made which does not correspond to an existing file.
- index
Document String - The webpage that Azure Storage serves for requests to the root of a website or any subfolder. For example, index.html. The value is case-sensitive.
- error404Document string
- The absolute path to a custom webpage that should be used when a request is made which does not correspond to an existing file.
- index
Document string - The webpage that Azure Storage serves for requests to the root of a website or any subfolder. For example, index.html. The value is case-sensitive.
- error404_
document str - The absolute path to a custom webpage that should be used when a request is made which does not correspond to an existing file.
- index_
document str - The webpage that Azure Storage serves for requests to the root of a website or any subfolder. For example, index.html. The value is case-sensitive.
- error404Document String
- The absolute path to a custom webpage that should be used when a request is made which does not correspond to an existing file.
- index
Document String - The webpage that Azure Storage serves for requests to the root of a website or any subfolder. For example, index.html. The value is case-sensitive.
Import
Storage Accounts can be imported using the resource id
, e.g.
$ pulumi import azure:storage/account:Account storageAcc1 /subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/myresourcegroup/providers/Microsoft.Storage/storageAccounts/myaccount
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- Azure Classic pulumi/pulumi-azure
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
azurerm
Terraform Provider.