fortios.authentication.Scheme
Explore with Pulumi AI
Configure Authentication Schemes.
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as fortios from "@pulumiverse/fortios";
const trname3 = new fortios.user.Fsso("trname3", {
port: 8000,
port2: 8000,
port3: 8000,
port4: 8000,
port5: 8000,
server: "1.1.1.1",
sourceIp: "0.0.0.0",
sourceIp6: "::",
});
const trname = new fortios.authentication.Scheme("trname", {
fssoAgentForNtlm: trname3.name,
fssoGuest: "disable",
method: "ntlm",
negotiateNtlm: "enable",
requireTfa: "disable",
});
import pulumi
import pulumiverse_fortios as fortios
trname3 = fortios.user.Fsso("trname3",
port=8000,
port2=8000,
port3=8000,
port4=8000,
port5=8000,
server="1.1.1.1",
source_ip="0.0.0.0",
source_ip6="::")
trname = fortios.authentication.Scheme("trname",
fsso_agent_for_ntlm=trname3.name,
fsso_guest="disable",
method="ntlm",
negotiate_ntlm="enable",
require_tfa="disable")
package main
import (
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
"github.com/pulumiverse/pulumi-fortios/sdk/go/fortios/authentication"
"github.com/pulumiverse/pulumi-fortios/sdk/go/fortios/user"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
trname3, err := user.NewFsso(ctx, "trname3", &user.FssoArgs{
Port: pulumi.Int(8000),
Port2: pulumi.Int(8000),
Port3: pulumi.Int(8000),
Port4: pulumi.Int(8000),
Port5: pulumi.Int(8000),
Server: pulumi.String("1.1.1.1"),
SourceIp: pulumi.String("0.0.0.0"),
SourceIp6: pulumi.String("::"),
})
if err != nil {
return err
}
_, err = authentication.NewScheme(ctx, "trname", &authentication.SchemeArgs{
FssoAgentForNtlm: trname3.Name,
FssoGuest: pulumi.String("disable"),
Method: pulumi.String("ntlm"),
NegotiateNtlm: pulumi.String("enable"),
RequireTfa: pulumi.String("disable"),
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Fortios = Pulumiverse.Fortios;
return await Deployment.RunAsync(() =>
{
var trname3 = new Fortios.User.Fsso("trname3", new()
{
Port = 8000,
Port2 = 8000,
Port3 = 8000,
Port4 = 8000,
Port5 = 8000,
Server = "1.1.1.1",
SourceIp = "0.0.0.0",
SourceIp6 = "::",
});
var trname = new Fortios.Authentication.Scheme("trname", new()
{
FssoAgentForNtlm = trname3.Name,
FssoGuest = "disable",
Method = "ntlm",
NegotiateNtlm = "enable",
RequireTfa = "disable",
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.fortios.user.Fsso;
import com.pulumi.fortios.user.FssoArgs;
import com.pulumi.fortios.authentication.Scheme;
import com.pulumi.fortios.authentication.SchemeArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var trname3 = new Fsso("trname3", FssoArgs.builder()
.port(8000)
.port2(8000)
.port3(8000)
.port4(8000)
.port5(8000)
.server("1.1.1.1")
.sourceIp("0.0.0.0")
.sourceIp6("::")
.build());
var trname = new Scheme("trname", SchemeArgs.builder()
.fssoAgentForNtlm(trname3.name())
.fssoGuest("disable")
.method("ntlm")
.negotiateNtlm("enable")
.requireTfa("disable")
.build());
}
}
resources:
trname3:
type: fortios:user:Fsso
properties:
port: 8000
port2: 8000
port3: 8000
port4: 8000
port5: 8000
server: 1.1.1.1
sourceIp: 0.0.0.0
sourceIp6: '::'
trname:
type: fortios:authentication:Scheme
properties:
fssoAgentForNtlm: ${trname3.name}
fssoGuest: disable
method: ntlm
negotiateNtlm: enable
requireTfa: disable
Create Scheme Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new Scheme(name: string, args: SchemeArgs, opts?: CustomResourceOptions);
@overload
def Scheme(resource_name: str,
args: SchemeArgs,
opts: Optional[ResourceOptions] = None)
@overload
def Scheme(resource_name: str,
opts: Optional[ResourceOptions] = None,
method: Optional[str] = None,
negotiate_ntlm: Optional[str] = None,
require_tfa: Optional[str] = None,
fsso_guest: Optional[str] = None,
get_all_tables: Optional[str] = None,
kerberos_keytab: Optional[str] = None,
dynamic_sort_subtable: Optional[str] = None,
fsso_agent_for_ntlm: Optional[str] = None,
domain_controller: Optional[str] = None,
name: Optional[str] = None,
saml_server: Optional[str] = None,
saml_timeout: Optional[int] = None,
ssh_ca: Optional[str] = None,
user_cert: Optional[str] = None,
user_databases: Optional[Sequence[SchemeUserDatabaseArgs]] = None,
vdomparam: Optional[str] = None)
func NewScheme(ctx *Context, name string, args SchemeArgs, opts ...ResourceOption) (*Scheme, error)
public Scheme(string name, SchemeArgs args, CustomResourceOptions? opts = null)
public Scheme(String name, SchemeArgs args)
public Scheme(String name, SchemeArgs args, CustomResourceOptions options)
type: fortios:authentication:Scheme
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args SchemeArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args SchemeArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args SchemeArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args SchemeArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args SchemeArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var schemeResource = new Fortios.Authentication.Scheme("schemeResource", new()
{
Method = "string",
NegotiateNtlm = "string",
RequireTfa = "string",
FssoGuest = "string",
GetAllTables = "string",
KerberosKeytab = "string",
DynamicSortSubtable = "string",
FssoAgentForNtlm = "string",
DomainController = "string",
Name = "string",
SamlServer = "string",
SamlTimeout = 0,
SshCa = "string",
UserCert = "string",
UserDatabases = new[]
{
new Fortios.Authentication.Inputs.SchemeUserDatabaseArgs
{
Name = "string",
},
},
Vdomparam = "string",
});
example, err := authentication.NewScheme(ctx, "schemeResource", &authentication.SchemeArgs{
Method: pulumi.String("string"),
NegotiateNtlm: pulumi.String("string"),
RequireTfa: pulumi.String("string"),
FssoGuest: pulumi.String("string"),
GetAllTables: pulumi.String("string"),
KerberosKeytab: pulumi.String("string"),
DynamicSortSubtable: pulumi.String("string"),
FssoAgentForNtlm: pulumi.String("string"),
DomainController: pulumi.String("string"),
Name: pulumi.String("string"),
SamlServer: pulumi.String("string"),
SamlTimeout: pulumi.Int(0),
SshCa: pulumi.String("string"),
UserCert: pulumi.String("string"),
UserDatabases: authentication.SchemeUserDatabaseArray{
&authentication.SchemeUserDatabaseArgs{
Name: pulumi.String("string"),
},
},
Vdomparam: pulumi.String("string"),
})
var schemeResource = new Scheme("schemeResource", SchemeArgs.builder()
.method("string")
.negotiateNtlm("string")
.requireTfa("string")
.fssoGuest("string")
.getAllTables("string")
.kerberosKeytab("string")
.dynamicSortSubtable("string")
.fssoAgentForNtlm("string")
.domainController("string")
.name("string")
.samlServer("string")
.samlTimeout(0)
.sshCa("string")
.userCert("string")
.userDatabases(SchemeUserDatabaseArgs.builder()
.name("string")
.build())
.vdomparam("string")
.build());
scheme_resource = fortios.authentication.Scheme("schemeResource",
method="string",
negotiate_ntlm="string",
require_tfa="string",
fsso_guest="string",
get_all_tables="string",
kerberos_keytab="string",
dynamic_sort_subtable="string",
fsso_agent_for_ntlm="string",
domain_controller="string",
name="string",
saml_server="string",
saml_timeout=0,
ssh_ca="string",
user_cert="string",
user_databases=[{
"name": "string",
}],
vdomparam="string")
const schemeResource = new fortios.authentication.Scheme("schemeResource", {
method: "string",
negotiateNtlm: "string",
requireTfa: "string",
fssoGuest: "string",
getAllTables: "string",
kerberosKeytab: "string",
dynamicSortSubtable: "string",
fssoAgentForNtlm: "string",
domainController: "string",
name: "string",
samlServer: "string",
samlTimeout: 0,
sshCa: "string",
userCert: "string",
userDatabases: [{
name: "string",
}],
vdomparam: "string",
});
type: fortios:authentication:Scheme
properties:
domainController: string
dynamicSortSubtable: string
fssoAgentForNtlm: string
fssoGuest: string
getAllTables: string
kerberosKeytab: string
method: string
name: string
negotiateNtlm: string
requireTfa: string
samlServer: string
samlTimeout: 0
sshCa: string
userCert: string
userDatabases:
- name: string
vdomparam: string
Scheme Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The Scheme resource accepts the following input properties:
- Method string
- Authentication methods (default = basic).
- Domain
Controller string - Domain controller setting.
- Dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- Fsso
Agent stringFor Ntlm - FSSO agent to use for NTLM authentication.
- Fsso
Guest string - Enable/disable user fsso-guest authentication (default = disable). Valid values:
enable
,disable
. - Get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- Kerberos
Keytab string - Kerberos keytab setting.
- Name string
- Authentication scheme name.
- Negotiate
Ntlm string - Enable/disable negotiate authentication for NTLM (default = disable). Valid values:
enable
,disable
. - Require
Tfa string - Enable/disable two-factor authentication (default = disable). Valid values:
enable
,disable
. - Saml
Server string - SAML configuration.
- Saml
Timeout int - SAML authentication timeout in seconds.
- Ssh
Ca string - SSH CA name.
- User
Cert string - Enable/disable authentication with user certificate (default = disable). Valid values:
enable
,disable
. - User
Databases List<Pulumiverse.Fortios. Authentication. Inputs. Scheme User Database> - Authentication server to contain user information; "local" (default) or "123" (for LDAP). The structure of
user_database
block is documented below. - Vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- Method string
- Authentication methods (default = basic).
- Domain
Controller string - Domain controller setting.
- Dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- Fsso
Agent stringFor Ntlm - FSSO agent to use for NTLM authentication.
- Fsso
Guest string - Enable/disable user fsso-guest authentication (default = disable). Valid values:
enable
,disable
. - Get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- Kerberos
Keytab string - Kerberos keytab setting.
- Name string
- Authentication scheme name.
- Negotiate
Ntlm string - Enable/disable negotiate authentication for NTLM (default = disable). Valid values:
enable
,disable
. - Require
Tfa string - Enable/disable two-factor authentication (default = disable). Valid values:
enable
,disable
. - Saml
Server string - SAML configuration.
- Saml
Timeout int - SAML authentication timeout in seconds.
- Ssh
Ca string - SSH CA name.
- User
Cert string - Enable/disable authentication with user certificate (default = disable). Valid values:
enable
,disable
. - User
Databases []SchemeUser Database Args - Authentication server to contain user information; "local" (default) or "123" (for LDAP). The structure of
user_database
block is documented below. - Vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- method String
- Authentication methods (default = basic).
- domain
Controller String - Domain controller setting.
- dynamic
Sort StringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- fsso
Agent StringFor Ntlm - FSSO agent to use for NTLM authentication.
- fsso
Guest String - Enable/disable user fsso-guest authentication (default = disable). Valid values:
enable
,disable
. - get
All StringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- kerberos
Keytab String - Kerberos keytab setting.
- name String
- Authentication scheme name.
- negotiate
Ntlm String - Enable/disable negotiate authentication for NTLM (default = disable). Valid values:
enable
,disable
. - require
Tfa String - Enable/disable two-factor authentication (default = disable). Valid values:
enable
,disable
. - saml
Server String - SAML configuration.
- saml
Timeout Integer - SAML authentication timeout in seconds.
- ssh
Ca String - SSH CA name.
- user
Cert String - Enable/disable authentication with user certificate (default = disable). Valid values:
enable
,disable
. - user
Databases List<SchemeUser Database> - Authentication server to contain user information; "local" (default) or "123" (for LDAP). The structure of
user_database
block is documented below. - vdomparam String
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- method string
- Authentication methods (default = basic).
- domain
Controller string - Domain controller setting.
- dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- fsso
Agent stringFor Ntlm - FSSO agent to use for NTLM authentication.
- fsso
Guest string - Enable/disable user fsso-guest authentication (default = disable). Valid values:
enable
,disable
. - get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- kerberos
Keytab string - Kerberos keytab setting.
- name string
- Authentication scheme name.
- negotiate
Ntlm string - Enable/disable negotiate authentication for NTLM (default = disable). Valid values:
enable
,disable
. - require
Tfa string - Enable/disable two-factor authentication (default = disable). Valid values:
enable
,disable
. - saml
Server string - SAML configuration.
- saml
Timeout number - SAML authentication timeout in seconds.
- ssh
Ca string - SSH CA name.
- user
Cert string - Enable/disable authentication with user certificate (default = disable). Valid values:
enable
,disable
. - user
Databases SchemeUser Database[] - Authentication server to contain user information; "local" (default) or "123" (for LDAP). The structure of
user_database
block is documented below. - vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- method str
- Authentication methods (default = basic).
- domain_
controller str - Domain controller setting.
- dynamic_
sort_ strsubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- fsso_
agent_ strfor_ ntlm - FSSO agent to use for NTLM authentication.
- fsso_
guest str - Enable/disable user fsso-guest authentication (default = disable). Valid values:
enable
,disable
. - get_
all_ strtables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- kerberos_
keytab str - Kerberos keytab setting.
- name str
- Authentication scheme name.
- negotiate_
ntlm str - Enable/disable negotiate authentication for NTLM (default = disable). Valid values:
enable
,disable
. - require_
tfa str - Enable/disable two-factor authentication (default = disable). Valid values:
enable
,disable
. - saml_
server str - SAML configuration.
- saml_
timeout int - SAML authentication timeout in seconds.
- ssh_
ca str - SSH CA name.
- user_
cert str - Enable/disable authentication with user certificate (default = disable). Valid values:
enable
,disable
. - user_
databases Sequence[SchemeUser Database Args] - Authentication server to contain user information; "local" (default) or "123" (for LDAP). The structure of
user_database
block is documented below. - vdomparam str
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- method String
- Authentication methods (default = basic).
- domain
Controller String - Domain controller setting.
- dynamic
Sort StringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- fsso
Agent StringFor Ntlm - FSSO agent to use for NTLM authentication.
- fsso
Guest String - Enable/disable user fsso-guest authentication (default = disable). Valid values:
enable
,disable
. - get
All StringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- kerberos
Keytab String - Kerberos keytab setting.
- name String
- Authentication scheme name.
- negotiate
Ntlm String - Enable/disable negotiate authentication for NTLM (default = disable). Valid values:
enable
,disable
. - require
Tfa String - Enable/disable two-factor authentication (default = disable). Valid values:
enable
,disable
. - saml
Server String - SAML configuration.
- saml
Timeout Number - SAML authentication timeout in seconds.
- ssh
Ca String - SSH CA name.
- user
Cert String - Enable/disable authentication with user certificate (default = disable). Valid values:
enable
,disable
. - user
Databases List<Property Map> - Authentication server to contain user information; "local" (default) or "123" (for LDAP). The structure of
user_database
block is documented below. - vdomparam String
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
Outputs
All input properties are implicitly available as output properties. Additionally, the Scheme resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Id string
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id str
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
Look up Existing Scheme Resource
Get an existing Scheme resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: SchemeState, opts?: CustomResourceOptions): Scheme
@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
domain_controller: Optional[str] = None,
dynamic_sort_subtable: Optional[str] = None,
fsso_agent_for_ntlm: Optional[str] = None,
fsso_guest: Optional[str] = None,
get_all_tables: Optional[str] = None,
kerberos_keytab: Optional[str] = None,
method: Optional[str] = None,
name: Optional[str] = None,
negotiate_ntlm: Optional[str] = None,
require_tfa: Optional[str] = None,
saml_server: Optional[str] = None,
saml_timeout: Optional[int] = None,
ssh_ca: Optional[str] = None,
user_cert: Optional[str] = None,
user_databases: Optional[Sequence[SchemeUserDatabaseArgs]] = None,
vdomparam: Optional[str] = None) -> Scheme
func GetScheme(ctx *Context, name string, id IDInput, state *SchemeState, opts ...ResourceOption) (*Scheme, error)
public static Scheme Get(string name, Input<string> id, SchemeState? state, CustomResourceOptions? opts = null)
public static Scheme get(String name, Output<String> id, SchemeState state, CustomResourceOptions options)
Resource lookup is not supported in YAML
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Domain
Controller string - Domain controller setting.
- Dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- Fsso
Agent stringFor Ntlm - FSSO agent to use for NTLM authentication.
- Fsso
Guest string - Enable/disable user fsso-guest authentication (default = disable). Valid values:
enable
,disable
. - Get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- Kerberos
Keytab string - Kerberos keytab setting.
- Method string
- Authentication methods (default = basic).
- Name string
- Authentication scheme name.
- Negotiate
Ntlm string - Enable/disable negotiate authentication for NTLM (default = disable). Valid values:
enable
,disable
. - Require
Tfa string - Enable/disable two-factor authentication (default = disable). Valid values:
enable
,disable
. - Saml
Server string - SAML configuration.
- Saml
Timeout int - SAML authentication timeout in seconds.
- Ssh
Ca string - SSH CA name.
- User
Cert string - Enable/disable authentication with user certificate (default = disable). Valid values:
enable
,disable
. - User
Databases List<Pulumiverse.Fortios. Authentication. Inputs. Scheme User Database> - Authentication server to contain user information; "local" (default) or "123" (for LDAP). The structure of
user_database
block is documented below. - Vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- Domain
Controller string - Domain controller setting.
- Dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- Fsso
Agent stringFor Ntlm - FSSO agent to use for NTLM authentication.
- Fsso
Guest string - Enable/disable user fsso-guest authentication (default = disable). Valid values:
enable
,disable
. - Get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- Kerberos
Keytab string - Kerberos keytab setting.
- Method string
- Authentication methods (default = basic).
- Name string
- Authentication scheme name.
- Negotiate
Ntlm string - Enable/disable negotiate authentication for NTLM (default = disable). Valid values:
enable
,disable
. - Require
Tfa string - Enable/disable two-factor authentication (default = disable). Valid values:
enable
,disable
. - Saml
Server string - SAML configuration.
- Saml
Timeout int - SAML authentication timeout in seconds.
- Ssh
Ca string - SSH CA name.
- User
Cert string - Enable/disable authentication with user certificate (default = disable). Valid values:
enable
,disable
. - User
Databases []SchemeUser Database Args - Authentication server to contain user information; "local" (default) or "123" (for LDAP). The structure of
user_database
block is documented below. - Vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- domain
Controller String - Domain controller setting.
- dynamic
Sort StringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- fsso
Agent StringFor Ntlm - FSSO agent to use for NTLM authentication.
- fsso
Guest String - Enable/disable user fsso-guest authentication (default = disable). Valid values:
enable
,disable
. - get
All StringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- kerberos
Keytab String - Kerberos keytab setting.
- method String
- Authentication methods (default = basic).
- name String
- Authentication scheme name.
- negotiate
Ntlm String - Enable/disable negotiate authentication for NTLM (default = disable). Valid values:
enable
,disable
. - require
Tfa String - Enable/disable two-factor authentication (default = disable). Valid values:
enable
,disable
. - saml
Server String - SAML configuration.
- saml
Timeout Integer - SAML authentication timeout in seconds.
- ssh
Ca String - SSH CA name.
- user
Cert String - Enable/disable authentication with user certificate (default = disable). Valid values:
enable
,disable
. - user
Databases List<SchemeUser Database> - Authentication server to contain user information; "local" (default) or "123" (for LDAP). The structure of
user_database
block is documented below. - vdomparam String
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- domain
Controller string - Domain controller setting.
- dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- fsso
Agent stringFor Ntlm - FSSO agent to use for NTLM authentication.
- fsso
Guest string - Enable/disable user fsso-guest authentication (default = disable). Valid values:
enable
,disable
. - get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- kerberos
Keytab string - Kerberos keytab setting.
- method string
- Authentication methods (default = basic).
- name string
- Authentication scheme name.
- negotiate
Ntlm string - Enable/disable negotiate authentication for NTLM (default = disable). Valid values:
enable
,disable
. - require
Tfa string - Enable/disable two-factor authentication (default = disable). Valid values:
enable
,disable
. - saml
Server string - SAML configuration.
- saml
Timeout number - SAML authentication timeout in seconds.
- ssh
Ca string - SSH CA name.
- user
Cert string - Enable/disable authentication with user certificate (default = disable). Valid values:
enable
,disable
. - user
Databases SchemeUser Database[] - Authentication server to contain user information; "local" (default) or "123" (for LDAP). The structure of
user_database
block is documented below. - vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- domain_
controller str - Domain controller setting.
- dynamic_
sort_ strsubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- fsso_
agent_ strfor_ ntlm - FSSO agent to use for NTLM authentication.
- fsso_
guest str - Enable/disable user fsso-guest authentication (default = disable). Valid values:
enable
,disable
. - get_
all_ strtables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- kerberos_
keytab str - Kerberos keytab setting.
- method str
- Authentication methods (default = basic).
- name str
- Authentication scheme name.
- negotiate_
ntlm str - Enable/disable negotiate authentication for NTLM (default = disable). Valid values:
enable
,disable
. - require_
tfa str - Enable/disable two-factor authentication (default = disable). Valid values:
enable
,disable
. - saml_
server str - SAML configuration.
- saml_
timeout int - SAML authentication timeout in seconds.
- ssh_
ca str - SSH CA name.
- user_
cert str - Enable/disable authentication with user certificate (default = disable). Valid values:
enable
,disable
. - user_
databases Sequence[SchemeUser Database Args] - Authentication server to contain user information; "local" (default) or "123" (for LDAP). The structure of
user_database
block is documented below. - vdomparam str
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- domain
Controller String - Domain controller setting.
- dynamic
Sort StringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- fsso
Agent StringFor Ntlm - FSSO agent to use for NTLM authentication.
- fsso
Guest String - Enable/disable user fsso-guest authentication (default = disable). Valid values:
enable
,disable
. - get
All StringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- kerberos
Keytab String - Kerberos keytab setting.
- method String
- Authentication methods (default = basic).
- name String
- Authentication scheme name.
- negotiate
Ntlm String - Enable/disable negotiate authentication for NTLM (default = disable). Valid values:
enable
,disable
. - require
Tfa String - Enable/disable two-factor authentication (default = disable). Valid values:
enable
,disable
. - saml
Server String - SAML configuration.
- saml
Timeout Number - SAML authentication timeout in seconds.
- ssh
Ca String - SSH CA name.
- user
Cert String - Enable/disable authentication with user certificate (default = disable). Valid values:
enable
,disable
. - user
Databases List<Property Map> - Authentication server to contain user information; "local" (default) or "123" (for LDAP). The structure of
user_database
block is documented below. - vdomparam String
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
Supporting Types
SchemeUserDatabase, SchemeUserDatabaseArgs
- Name string
- Authentication server name.
- Name string
- Authentication server name.
- name String
- Authentication server name.
- name string
- Authentication server name.
- name str
- Authentication server name.
- name String
- Authentication server name.
Import
Authentication Scheme can be imported using any of these accepted formats:
$ pulumi import fortios:authentication/scheme:Scheme labelname {{name}}
If you do not want to import arguments of block:
$ export “FORTIOS_IMPORT_TABLE”=“false”
$ pulumi import fortios:authentication/scheme:Scheme labelname {{name}}
$ unset “FORTIOS_IMPORT_TABLE”
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- fortios pulumiverse/pulumi-fortios
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
fortios
Terraform Provider.