azuread.Provider
Explore with Pulumi AI
The provider type for the azuread package. By default, resources use package-wide configuration
settings, however an explicit Provider
instance may be created and passed during resource
construction to achieve fine-grained programmatic control over provider settings. See the
documentation for more information.
Create Provider Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new Provider(name: string, args?: ProviderArgs, opts?: CustomResourceOptions);
@overload
def Provider(resource_name: str,
args: Optional[ProviderArgs] = None,
opts: Optional[ResourceOptions] = None)
@overload
def Provider(resource_name: str,
opts: Optional[ResourceOptions] = None,
client_certificate: Optional[str] = None,
client_certificate_password: Optional[str] = None,
client_certificate_path: Optional[str] = None,
client_id: Optional[str] = None,
client_id_file_path: Optional[str] = None,
client_secret: Optional[str] = None,
client_secret_file_path: Optional[str] = None,
disable_terraform_partner_id: Optional[bool] = None,
environment: Optional[str] = None,
metadata_host: Optional[str] = None,
msi_endpoint: Optional[str] = None,
oidc_request_token: Optional[str] = None,
oidc_request_url: Optional[str] = None,
oidc_token: Optional[str] = None,
oidc_token_file_path: Optional[str] = None,
partner_id: Optional[str] = None,
tenant_id: Optional[str] = None,
use_aks_workload_identity: Optional[bool] = None,
use_cli: Optional[bool] = None,
use_msi: Optional[bool] = None,
use_oidc: Optional[bool] = None)
func NewProvider(ctx *Context, name string, args *ProviderArgs, opts ...ResourceOption) (*Provider, error)
public Provider(string name, ProviderArgs? args = null, CustomResourceOptions? opts = null)
public Provider(String name, ProviderArgs args)
public Provider(String name, ProviderArgs args, CustomResourceOptions options)
type: pulumi:providers:azuread
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args ProviderArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args ProviderArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args ProviderArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args ProviderArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args ProviderArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Provider Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The Provider resource accepts the following input properties:
- Client
Certificate string - Base64 encoded PKCS#12 certificate bundle to use when authenticating as a Service Principal using a Client Certificate
- Client
Certificate stringPassword - The password to decrypt the Client Certificate. For use when authenticating as a Service Principal using a Client Certificate
- Client
Certificate stringPath - The path to the Client Certificate associated with the Service Principal for use when authenticating as a Service Principal using a Client Certificate
- Client
Id string - The Client ID which should be used for service principal authentication
- Client
Id stringFile Path - The path to a file containing the Client ID which should be used for service principal authentication
- Client
Secret string - The application password to use when authenticating as a Service Principal using a Client Secret
- Client
Secret stringFile Path - The path to a file containing the application password to use when authenticating as a Service Principal using a Client Secret
- Disable
Terraform boolPartner Id - Environment string
- The cloud environment which should be used. Possible values are:
global
(alsopublic
),usgovernmentl4
(alsousgovernment
),usgovernmentl5
(alsodod
), andchina
. Defaults toglobal
. Not used and should not be specified whenmetadata_host
is specified. It can also be sourced from the following environment variable:ARM_ENVIRONMENT
- Metadata
Host string - The Hostname which should be used for the Azure Metadata Service.
- Msi
Endpoint string - The path to a custom endpoint for Managed Identity - in most circumstances this should be detected automatically
It can also be sourced from the following environment variable:
ARM_MSI_ENDPOINT
- Oidc
Request stringToken - The bearer token for the request to the OIDC provider. For use when authenticating as a Service Principal using OpenID Connect.
- Oidc
Request stringUrl - The URL for the OIDC provider from which to request an ID token. For use when authenticating as a Service Principal using OpenID Connect.
- Oidc
Token string - The ID token for use when authenticating as a Service Principal using OpenID Connect.
- Oidc
Token stringFile Path - The path to a file containing an ID token for use when authenticating as a Service Principal using OpenID Connect.
- Partner
Id string - A GUID/UUID that is registered with Microsoft to facilitate partner resource usage attribution
- Tenant
Id string - The Tenant ID which should be used. Works with all authentication methods except Managed Identity
- Use
Aks boolWorkload Identity - Allow Azure AKS Workload Identity to be used for Authentication.
- Use
Cli bool - Allow Azure CLI to be used for Authentication
- Use
Msi bool - Allow Managed Identity to be used for Authentication
It can also be sourced from the following environment variable:
ARM_USE_MSI
- Use
Oidc bool - Allow OpenID Connect to be used for authentication
- Client
Certificate string - Base64 encoded PKCS#12 certificate bundle to use when authenticating as a Service Principal using a Client Certificate
- Client
Certificate stringPassword - The password to decrypt the Client Certificate. For use when authenticating as a Service Principal using a Client Certificate
- Client
Certificate stringPath - The path to the Client Certificate associated with the Service Principal for use when authenticating as a Service Principal using a Client Certificate
- Client
Id string - The Client ID which should be used for service principal authentication
- Client
Id stringFile Path - The path to a file containing the Client ID which should be used for service principal authentication
- Client
Secret string - The application password to use when authenticating as a Service Principal using a Client Secret
- Client
Secret stringFile Path - The path to a file containing the application password to use when authenticating as a Service Principal using a Client Secret
- Disable
Terraform boolPartner Id - Environment string
- The cloud environment which should be used. Possible values are:
global
(alsopublic
),usgovernmentl4
(alsousgovernment
),usgovernmentl5
(alsodod
), andchina
. Defaults toglobal
. Not used and should not be specified whenmetadata_host
is specified. It can also be sourced from the following environment variable:ARM_ENVIRONMENT
- Metadata
Host string - The Hostname which should be used for the Azure Metadata Service.
- Msi
Endpoint string - The path to a custom endpoint for Managed Identity - in most circumstances this should be detected automatically
It can also be sourced from the following environment variable:
ARM_MSI_ENDPOINT
- Oidc
Request stringToken - The bearer token for the request to the OIDC provider. For use when authenticating as a Service Principal using OpenID Connect.
- Oidc
Request stringUrl - The URL for the OIDC provider from which to request an ID token. For use when authenticating as a Service Principal using OpenID Connect.
- Oidc
Token string - The ID token for use when authenticating as a Service Principal using OpenID Connect.
- Oidc
Token stringFile Path - The path to a file containing an ID token for use when authenticating as a Service Principal using OpenID Connect.
- Partner
Id string - A GUID/UUID that is registered with Microsoft to facilitate partner resource usage attribution
- Tenant
Id string - The Tenant ID which should be used. Works with all authentication methods except Managed Identity
- Use
Aks boolWorkload Identity - Allow Azure AKS Workload Identity to be used for Authentication.
- Use
Cli bool - Allow Azure CLI to be used for Authentication
- Use
Msi bool - Allow Managed Identity to be used for Authentication
It can also be sourced from the following environment variable:
ARM_USE_MSI
- Use
Oidc bool - Allow OpenID Connect to be used for authentication
- client
Certificate String - Base64 encoded PKCS#12 certificate bundle to use when authenticating as a Service Principal using a Client Certificate
- client
Certificate StringPassword - The password to decrypt the Client Certificate. For use when authenticating as a Service Principal using a Client Certificate
- client
Certificate StringPath - The path to the Client Certificate associated with the Service Principal for use when authenticating as a Service Principal using a Client Certificate
- client
Id String - The Client ID which should be used for service principal authentication
- client
Id StringFile Path - The path to a file containing the Client ID which should be used for service principal authentication
- client
Secret String - The application password to use when authenticating as a Service Principal using a Client Secret
- client
Secret StringFile Path - The path to a file containing the application password to use when authenticating as a Service Principal using a Client Secret
- disable
Terraform BooleanPartner Id - environment String
- The cloud environment which should be used. Possible values are:
global
(alsopublic
),usgovernmentl4
(alsousgovernment
),usgovernmentl5
(alsodod
), andchina
. Defaults toglobal
. Not used and should not be specified whenmetadata_host
is specified. It can also be sourced from the following environment variable:ARM_ENVIRONMENT
- metadata
Host String - The Hostname which should be used for the Azure Metadata Service.
- msi
Endpoint String - The path to a custom endpoint for Managed Identity - in most circumstances this should be detected automatically
It can also be sourced from the following environment variable:
ARM_MSI_ENDPOINT
- oidc
Request StringToken - The bearer token for the request to the OIDC provider. For use when authenticating as a Service Principal using OpenID Connect.
- oidc
Request StringUrl - The URL for the OIDC provider from which to request an ID token. For use when authenticating as a Service Principal using OpenID Connect.
- oidc
Token String - The ID token for use when authenticating as a Service Principal using OpenID Connect.
- oidc
Token StringFile Path - The path to a file containing an ID token for use when authenticating as a Service Principal using OpenID Connect.
- partner
Id String - A GUID/UUID that is registered with Microsoft to facilitate partner resource usage attribution
- tenant
Id String - The Tenant ID which should be used. Works with all authentication methods except Managed Identity
- use
Aks BooleanWorkload Identity - Allow Azure AKS Workload Identity to be used for Authentication.
- use
Cli Boolean - Allow Azure CLI to be used for Authentication
- use
Msi Boolean - Allow Managed Identity to be used for Authentication
It can also be sourced from the following environment variable:
ARM_USE_MSI
- use
Oidc Boolean - Allow OpenID Connect to be used for authentication
- client
Certificate string - Base64 encoded PKCS#12 certificate bundle to use when authenticating as a Service Principal using a Client Certificate
- client
Certificate stringPassword - The password to decrypt the Client Certificate. For use when authenticating as a Service Principal using a Client Certificate
- client
Certificate stringPath - The path to the Client Certificate associated with the Service Principal for use when authenticating as a Service Principal using a Client Certificate
- client
Id string - The Client ID which should be used for service principal authentication
- client
Id stringFile Path - The path to a file containing the Client ID which should be used for service principal authentication
- client
Secret string - The application password to use when authenticating as a Service Principal using a Client Secret
- client
Secret stringFile Path - The path to a file containing the application password to use when authenticating as a Service Principal using a Client Secret
- disable
Terraform booleanPartner Id - environment string
- The cloud environment which should be used. Possible values are:
global
(alsopublic
),usgovernmentl4
(alsousgovernment
),usgovernmentl5
(alsodod
), andchina
. Defaults toglobal
. Not used and should not be specified whenmetadata_host
is specified. It can also be sourced from the following environment variable:ARM_ENVIRONMENT
- metadata
Host string - The Hostname which should be used for the Azure Metadata Service.
- msi
Endpoint string - The path to a custom endpoint for Managed Identity - in most circumstances this should be detected automatically
It can also be sourced from the following environment variable:
ARM_MSI_ENDPOINT
- oidc
Request stringToken - The bearer token for the request to the OIDC provider. For use when authenticating as a Service Principal using OpenID Connect.
- oidc
Request stringUrl - The URL for the OIDC provider from which to request an ID token. For use when authenticating as a Service Principal using OpenID Connect.
- oidc
Token string - The ID token for use when authenticating as a Service Principal using OpenID Connect.
- oidc
Token stringFile Path - The path to a file containing an ID token for use when authenticating as a Service Principal using OpenID Connect.
- partner
Id string - A GUID/UUID that is registered with Microsoft to facilitate partner resource usage attribution
- tenant
Id string - The Tenant ID which should be used. Works with all authentication methods except Managed Identity
- use
Aks booleanWorkload Identity - Allow Azure AKS Workload Identity to be used for Authentication.
- use
Cli boolean - Allow Azure CLI to be used for Authentication
- use
Msi boolean - Allow Managed Identity to be used for Authentication
It can also be sourced from the following environment variable:
ARM_USE_MSI
- use
Oidc boolean - Allow OpenID Connect to be used for authentication
- client_
certificate str - Base64 encoded PKCS#12 certificate bundle to use when authenticating as a Service Principal using a Client Certificate
- client_
certificate_ strpassword - The password to decrypt the Client Certificate. For use when authenticating as a Service Principal using a Client Certificate
- client_
certificate_ strpath - The path to the Client Certificate associated with the Service Principal for use when authenticating as a Service Principal using a Client Certificate
- client_
id str - The Client ID which should be used for service principal authentication
- client_
id_ strfile_ path - The path to a file containing the Client ID which should be used for service principal authentication
- client_
secret str - The application password to use when authenticating as a Service Principal using a Client Secret
- client_
secret_ strfile_ path - The path to a file containing the application password to use when authenticating as a Service Principal using a Client Secret
- disable_
terraform_ boolpartner_ id - environment str
- The cloud environment which should be used. Possible values are:
global
(alsopublic
),usgovernmentl4
(alsousgovernment
),usgovernmentl5
(alsodod
), andchina
. Defaults toglobal
. Not used and should not be specified whenmetadata_host
is specified. It can also be sourced from the following environment variable:ARM_ENVIRONMENT
- metadata_
host str - The Hostname which should be used for the Azure Metadata Service.
- msi_
endpoint str - The path to a custom endpoint for Managed Identity - in most circumstances this should be detected automatically
It can also be sourced from the following environment variable:
ARM_MSI_ENDPOINT
- oidc_
request_ strtoken - The bearer token for the request to the OIDC provider. For use when authenticating as a Service Principal using OpenID Connect.
- oidc_
request_ strurl - The URL for the OIDC provider from which to request an ID token. For use when authenticating as a Service Principal using OpenID Connect.
- oidc_
token str - The ID token for use when authenticating as a Service Principal using OpenID Connect.
- oidc_
token_ strfile_ path - The path to a file containing an ID token for use when authenticating as a Service Principal using OpenID Connect.
- partner_
id str - A GUID/UUID that is registered with Microsoft to facilitate partner resource usage attribution
- tenant_
id str - The Tenant ID which should be used. Works with all authentication methods except Managed Identity
- use_
aks_ boolworkload_ identity - Allow Azure AKS Workload Identity to be used for Authentication.
- use_
cli bool - Allow Azure CLI to be used for Authentication
- use_
msi bool - Allow Managed Identity to be used for Authentication
It can also be sourced from the following environment variable:
ARM_USE_MSI
- use_
oidc bool - Allow OpenID Connect to be used for authentication
- client
Certificate String - Base64 encoded PKCS#12 certificate bundle to use when authenticating as a Service Principal using a Client Certificate
- client
Certificate StringPassword - The password to decrypt the Client Certificate. For use when authenticating as a Service Principal using a Client Certificate
- client
Certificate StringPath - The path to the Client Certificate associated with the Service Principal for use when authenticating as a Service Principal using a Client Certificate
- client
Id String - The Client ID which should be used for service principal authentication
- client
Id StringFile Path - The path to a file containing the Client ID which should be used for service principal authentication
- client
Secret String - The application password to use when authenticating as a Service Principal using a Client Secret
- client
Secret StringFile Path - The path to a file containing the application password to use when authenticating as a Service Principal using a Client Secret
- disable
Terraform BooleanPartner Id - environment String
- The cloud environment which should be used. Possible values are:
global
(alsopublic
),usgovernmentl4
(alsousgovernment
),usgovernmentl5
(alsodod
), andchina
. Defaults toglobal
. Not used and should not be specified whenmetadata_host
is specified. It can also be sourced from the following environment variable:ARM_ENVIRONMENT
- metadata
Host String - The Hostname which should be used for the Azure Metadata Service.
- msi
Endpoint String - The path to a custom endpoint for Managed Identity - in most circumstances this should be detected automatically
It can also be sourced from the following environment variable:
ARM_MSI_ENDPOINT
- oidc
Request StringToken - The bearer token for the request to the OIDC provider. For use when authenticating as a Service Principal using OpenID Connect.
- oidc
Request StringUrl - The URL for the OIDC provider from which to request an ID token. For use when authenticating as a Service Principal using OpenID Connect.
- oidc
Token String - The ID token for use when authenticating as a Service Principal using OpenID Connect.
- oidc
Token StringFile Path - The path to a file containing an ID token for use when authenticating as a Service Principal using OpenID Connect.
- partner
Id String - A GUID/UUID that is registered with Microsoft to facilitate partner resource usage attribution
- tenant
Id String - The Tenant ID which should be used. Works with all authentication methods except Managed Identity
- use
Aks BooleanWorkload Identity - Allow Azure AKS Workload Identity to be used for Authentication.
- use
Cli Boolean - Allow Azure CLI to be used for Authentication
- use
Msi Boolean - Allow Managed Identity to be used for Authentication
It can also be sourced from the following environment variable:
ARM_USE_MSI
- use
Oidc Boolean - Allow OpenID Connect to be used for authentication
Outputs
All input properties are implicitly available as output properties. Additionally, the Provider resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Id string
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id str
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
Package Details
- Repository
- Azure Active Directory (Azure AD) pulumi/pulumi-azuread
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
azuread
Terraform Provider.