1. Packages
  2. Fortios
  3. API Docs
  4. dlp
  5. Profile
Fortios v0.0.6 published on Tuesday, Jul 9, 2024 by pulumiverse

fortios.dlp.Profile

Explore with Pulumi AI

fortios logo
Fortios v0.0.6 published on Tuesday, Jul 9, 2024 by pulumiverse

    Configure DLP profiles. Applies to FortiOS Version >= 7.2.0.

    Create Profile Resource

    Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

    Constructor syntax

    new Profile(name: string, args?: ProfileArgs, opts?: CustomResourceOptions);
    @overload
    def Profile(resource_name: str,
                args: Optional[ProfileArgs] = None,
                opts: Optional[ResourceOptions] = None)
    
    @overload
    def Profile(resource_name: str,
                opts: Optional[ResourceOptions] = None,
                comment: Optional[str] = None,
                dlp_log: Optional[str] = None,
                dynamic_sort_subtable: Optional[str] = None,
                extended_log: Optional[str] = None,
                feature_set: Optional[str] = None,
                full_archive_proto: Optional[str] = None,
                get_all_tables: Optional[str] = None,
                nac_quar_log: Optional[str] = None,
                name: Optional[str] = None,
                replacemsg_group: Optional[str] = None,
                rules: Optional[Sequence[ProfileRuleArgs]] = None,
                summary_proto: Optional[str] = None,
                vdomparam: Optional[str] = None)
    func NewProfile(ctx *Context, name string, args *ProfileArgs, opts ...ResourceOption) (*Profile, error)
    public Profile(string name, ProfileArgs? args = null, CustomResourceOptions? opts = null)
    public Profile(String name, ProfileArgs args)
    public Profile(String name, ProfileArgs args, CustomResourceOptions options)
    
    type: fortios:dlp:Profile
    properties: # The arguments to resource properties.
    options: # Bag of options to control resource's behavior.
    
    

    Parameters

    name string
    The unique name of the resource.
    args ProfileArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    resource_name str
    The unique name of the resource.
    args ProfileArgs
    The arguments to resource properties.
    opts ResourceOptions
    Bag of options to control resource's behavior.
    ctx Context
    Context object for the current deployment.
    name string
    The unique name of the resource.
    args ProfileArgs
    The arguments to resource properties.
    opts ResourceOption
    Bag of options to control resource's behavior.
    name string
    The unique name of the resource.
    args ProfileArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    name String
    The unique name of the resource.
    args ProfileArgs
    The arguments to resource properties.
    options CustomResourceOptions
    Bag of options to control resource's behavior.

    Constructor example

    The following reference example uses placeholder values for all input properties.

    var exampleprofileResourceResourceFromDlpprofile = new Fortios.Dlp.Profile("exampleprofileResourceResourceFromDlpprofile", new()
    {
        Comment = "string",
        DlpLog = "string",
        DynamicSortSubtable = "string",
        ExtendedLog = "string",
        FeatureSet = "string",
        FullArchiveProto = "string",
        GetAllTables = "string",
        NacQuarLog = "string",
        Name = "string",
        ReplacemsgGroup = "string",
        Rules = new[]
        {
            new Fortios.Dlp.Inputs.ProfileRuleArgs
            {
                Action = "string",
                Archive = "string",
                Expiry = "string",
                FileSize = 0,
                FileType = 0,
                FilterBy = "string",
                Id = 0,
                Label = "string",
                MatchPercentage = 0,
                Name = "string",
                Proto = "string",
                Sensitivities = new[]
                {
                    new Fortios.Dlp.Inputs.ProfileRuleSensitivityArgs
                    {
                        Name = "string",
                    },
                },
                Sensors = new[]
                {
                    new Fortios.Dlp.Inputs.ProfileRuleSensorArgs
                    {
                        Name = "string",
                    },
                },
                Severity = "string",
                Type = "string",
            },
        },
        SummaryProto = "string",
        Vdomparam = "string",
    });
    
    example, err := dlp.NewProfile(ctx, "exampleprofileResourceResourceFromDlpprofile", &dlp.ProfileArgs{
    	Comment:             pulumi.String("string"),
    	DlpLog:              pulumi.String("string"),
    	DynamicSortSubtable: pulumi.String("string"),
    	ExtendedLog:         pulumi.String("string"),
    	FeatureSet:          pulumi.String("string"),
    	FullArchiveProto:    pulumi.String("string"),
    	GetAllTables:        pulumi.String("string"),
    	NacQuarLog:          pulumi.String("string"),
    	Name:                pulumi.String("string"),
    	ReplacemsgGroup:     pulumi.String("string"),
    	Rules: dlp.ProfileRuleArray{
    		&dlp.ProfileRuleArgs{
    			Action:          pulumi.String("string"),
    			Archive:         pulumi.String("string"),
    			Expiry:          pulumi.String("string"),
    			FileSize:        pulumi.Int(0),
    			FileType:        pulumi.Int(0),
    			FilterBy:        pulumi.String("string"),
    			Id:              pulumi.Int(0),
    			Label:           pulumi.String("string"),
    			MatchPercentage: pulumi.Int(0),
    			Name:            pulumi.String("string"),
    			Proto:           pulumi.String("string"),
    			Sensitivities: dlp.ProfileRuleSensitivityArray{
    				&dlp.ProfileRuleSensitivityArgs{
    					Name: pulumi.String("string"),
    				},
    			},
    			Sensors: dlp.ProfileRuleSensorArray{
    				&dlp.ProfileRuleSensorArgs{
    					Name: pulumi.String("string"),
    				},
    			},
    			Severity: pulumi.String("string"),
    			Type:     pulumi.String("string"),
    		},
    	},
    	SummaryProto: pulumi.String("string"),
    	Vdomparam:    pulumi.String("string"),
    })
    
    var exampleprofileResourceResourceFromDlpprofile = new Profile("exampleprofileResourceResourceFromDlpprofile", ProfileArgs.builder()
        .comment("string")
        .dlpLog("string")
        .dynamicSortSubtable("string")
        .extendedLog("string")
        .featureSet("string")
        .fullArchiveProto("string")
        .getAllTables("string")
        .nacQuarLog("string")
        .name("string")
        .replacemsgGroup("string")
        .rules(ProfileRuleArgs.builder()
            .action("string")
            .archive("string")
            .expiry("string")
            .fileSize(0)
            .fileType(0)
            .filterBy("string")
            .id(0)
            .label("string")
            .matchPercentage(0)
            .name("string")
            .proto("string")
            .sensitivities(ProfileRuleSensitivityArgs.builder()
                .name("string")
                .build())
            .sensors(ProfileRuleSensorArgs.builder()
                .name("string")
                .build())
            .severity("string")
            .type("string")
            .build())
        .summaryProto("string")
        .vdomparam("string")
        .build());
    
    exampleprofile_resource_resource_from_dlpprofile = fortios.dlp.Profile("exampleprofileResourceResourceFromDlpprofile",
        comment="string",
        dlp_log="string",
        dynamic_sort_subtable="string",
        extended_log="string",
        feature_set="string",
        full_archive_proto="string",
        get_all_tables="string",
        nac_quar_log="string",
        name="string",
        replacemsg_group="string",
        rules=[{
            "action": "string",
            "archive": "string",
            "expiry": "string",
            "file_size": 0,
            "file_type": 0,
            "filter_by": "string",
            "id": 0,
            "label": "string",
            "match_percentage": 0,
            "name": "string",
            "proto": "string",
            "sensitivities": [{
                "name": "string",
            }],
            "sensors": [{
                "name": "string",
            }],
            "severity": "string",
            "type": "string",
        }],
        summary_proto="string",
        vdomparam="string")
    
    const exampleprofileResourceResourceFromDlpprofile = new fortios.dlp.Profile("exampleprofileResourceResourceFromDlpprofile", {
        comment: "string",
        dlpLog: "string",
        dynamicSortSubtable: "string",
        extendedLog: "string",
        featureSet: "string",
        fullArchiveProto: "string",
        getAllTables: "string",
        nacQuarLog: "string",
        name: "string",
        replacemsgGroup: "string",
        rules: [{
            action: "string",
            archive: "string",
            expiry: "string",
            fileSize: 0,
            fileType: 0,
            filterBy: "string",
            id: 0,
            label: "string",
            matchPercentage: 0,
            name: "string",
            proto: "string",
            sensitivities: [{
                name: "string",
            }],
            sensors: [{
                name: "string",
            }],
            severity: "string",
            type: "string",
        }],
        summaryProto: "string",
        vdomparam: "string",
    });
    
    type: fortios:dlp:Profile
    properties:
        comment: string
        dlpLog: string
        dynamicSortSubtable: string
        extendedLog: string
        featureSet: string
        fullArchiveProto: string
        getAllTables: string
        nacQuarLog: string
        name: string
        replacemsgGroup: string
        rules:
            - action: string
              archive: string
              expiry: string
              fileSize: 0
              fileType: 0
              filterBy: string
              id: 0
              label: string
              matchPercentage: 0
              name: string
              proto: string
              sensitivities:
                - name: string
              sensors:
                - name: string
              severity: string
              type: string
        summaryProto: string
        vdomparam: string
    

    Profile Resource Properties

    To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

    Inputs

    In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

    The Profile resource accepts the following input properties:

    Comment string
    Comment.
    DlpLog string
    Enable/disable DLP logging. Valid values: enable, disable.
    DynamicSortSubtable string
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    ExtendedLog string
    Enable/disable extended logging for data leak prevention. Valid values: enable, disable.
    FeatureSet string
    Flow/proxy feature set. Valid values: flow, proxy.
    FullArchiveProto string
    Protocols to always content archive. Valid values: smtp, pop3, imap, http-get, http-post, ftp, nntp, mapi, ssh, cifs.
    GetAllTables string
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    NacQuarLog string
    Enable/disable NAC quarantine logging. Valid values: enable, disable.
    Name string
    Name of the DLP profile.
    ReplacemsgGroup string
    Replacement message group used by this DLP profile.
    Rules List<Pulumiverse.Fortios.Dlp.Inputs.ProfileRule>
    Set up DLP rules for this profile. The structure of rule block is documented below.
    SummaryProto string
    Protocols to always log summary. Valid values: smtp, pop3, imap, http-get, http-post, ftp, nntp, mapi, ssh, cifs.
    Vdomparam string
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    Comment string
    Comment.
    DlpLog string
    Enable/disable DLP logging. Valid values: enable, disable.
    DynamicSortSubtable string
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    ExtendedLog string
    Enable/disable extended logging for data leak prevention. Valid values: enable, disable.
    FeatureSet string
    Flow/proxy feature set. Valid values: flow, proxy.
    FullArchiveProto string
    Protocols to always content archive. Valid values: smtp, pop3, imap, http-get, http-post, ftp, nntp, mapi, ssh, cifs.
    GetAllTables string
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    NacQuarLog string
    Enable/disable NAC quarantine logging. Valid values: enable, disable.
    Name string
    Name of the DLP profile.
    ReplacemsgGroup string
    Replacement message group used by this DLP profile.
    Rules []ProfileRuleArgs
    Set up DLP rules for this profile. The structure of rule block is documented below.
    SummaryProto string
    Protocols to always log summary. Valid values: smtp, pop3, imap, http-get, http-post, ftp, nntp, mapi, ssh, cifs.
    Vdomparam string
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    comment String
    Comment.
    dlpLog String
    Enable/disable DLP logging. Valid values: enable, disable.
    dynamicSortSubtable String
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    extendedLog String
    Enable/disable extended logging for data leak prevention. Valid values: enable, disable.
    featureSet String
    Flow/proxy feature set. Valid values: flow, proxy.
    fullArchiveProto String
    Protocols to always content archive. Valid values: smtp, pop3, imap, http-get, http-post, ftp, nntp, mapi, ssh, cifs.
    getAllTables String
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    nacQuarLog String
    Enable/disable NAC quarantine logging. Valid values: enable, disable.
    name String
    Name of the DLP profile.
    replacemsgGroup String
    Replacement message group used by this DLP profile.
    rules List<ProfileRule>
    Set up DLP rules for this profile. The structure of rule block is documented below.
    summaryProto String
    Protocols to always log summary. Valid values: smtp, pop3, imap, http-get, http-post, ftp, nntp, mapi, ssh, cifs.
    vdomparam String
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    comment string
    Comment.
    dlpLog string
    Enable/disable DLP logging. Valid values: enable, disable.
    dynamicSortSubtable string
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    extendedLog string
    Enable/disable extended logging for data leak prevention. Valid values: enable, disable.
    featureSet string
    Flow/proxy feature set. Valid values: flow, proxy.
    fullArchiveProto string
    Protocols to always content archive. Valid values: smtp, pop3, imap, http-get, http-post, ftp, nntp, mapi, ssh, cifs.
    getAllTables string
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    nacQuarLog string
    Enable/disable NAC quarantine logging. Valid values: enable, disable.
    name string
    Name of the DLP profile.
    replacemsgGroup string
    Replacement message group used by this DLP profile.
    rules ProfileRule[]
    Set up DLP rules for this profile. The structure of rule block is documented below.
    summaryProto string
    Protocols to always log summary. Valid values: smtp, pop3, imap, http-get, http-post, ftp, nntp, mapi, ssh, cifs.
    vdomparam string
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    comment str
    Comment.
    dlp_log str
    Enable/disable DLP logging. Valid values: enable, disable.
    dynamic_sort_subtable str
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    extended_log str
    Enable/disable extended logging for data leak prevention. Valid values: enable, disable.
    feature_set str
    Flow/proxy feature set. Valid values: flow, proxy.
    full_archive_proto str
    Protocols to always content archive. Valid values: smtp, pop3, imap, http-get, http-post, ftp, nntp, mapi, ssh, cifs.
    get_all_tables str
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    nac_quar_log str
    Enable/disable NAC quarantine logging. Valid values: enable, disable.
    name str
    Name of the DLP profile.
    replacemsg_group str
    Replacement message group used by this DLP profile.
    rules Sequence[ProfileRuleArgs]
    Set up DLP rules for this profile. The structure of rule block is documented below.
    summary_proto str
    Protocols to always log summary. Valid values: smtp, pop3, imap, http-get, http-post, ftp, nntp, mapi, ssh, cifs.
    vdomparam str
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    comment String
    Comment.
    dlpLog String
    Enable/disable DLP logging. Valid values: enable, disable.
    dynamicSortSubtable String
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    extendedLog String
    Enable/disable extended logging for data leak prevention. Valid values: enable, disable.
    featureSet String
    Flow/proxy feature set. Valid values: flow, proxy.
    fullArchiveProto String
    Protocols to always content archive. Valid values: smtp, pop3, imap, http-get, http-post, ftp, nntp, mapi, ssh, cifs.
    getAllTables String
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    nacQuarLog String
    Enable/disable NAC quarantine logging. Valid values: enable, disable.
    name String
    Name of the DLP profile.
    replacemsgGroup String
    Replacement message group used by this DLP profile.
    rules List<Property Map>
    Set up DLP rules for this profile. The structure of rule block is documented below.
    summaryProto String
    Protocols to always log summary. Valid values: smtp, pop3, imap, http-get, http-post, ftp, nntp, mapi, ssh, cifs.
    vdomparam String
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.

    Outputs

    All input properties are implicitly available as output properties. Additionally, the Profile resource produces the following output properties:

    Id string
    The provider-assigned unique ID for this managed resource.
    Id string
    The provider-assigned unique ID for this managed resource.
    id String
    The provider-assigned unique ID for this managed resource.
    id string
    The provider-assigned unique ID for this managed resource.
    id str
    The provider-assigned unique ID for this managed resource.
    id String
    The provider-assigned unique ID for this managed resource.

    Look up Existing Profile Resource

    Get an existing Profile resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

    public static get(name: string, id: Input<ID>, state?: ProfileState, opts?: CustomResourceOptions): Profile
    @staticmethod
    def get(resource_name: str,
            id: str,
            opts: Optional[ResourceOptions] = None,
            comment: Optional[str] = None,
            dlp_log: Optional[str] = None,
            dynamic_sort_subtable: Optional[str] = None,
            extended_log: Optional[str] = None,
            feature_set: Optional[str] = None,
            full_archive_proto: Optional[str] = None,
            get_all_tables: Optional[str] = None,
            nac_quar_log: Optional[str] = None,
            name: Optional[str] = None,
            replacemsg_group: Optional[str] = None,
            rules: Optional[Sequence[ProfileRuleArgs]] = None,
            summary_proto: Optional[str] = None,
            vdomparam: Optional[str] = None) -> Profile
    func GetProfile(ctx *Context, name string, id IDInput, state *ProfileState, opts ...ResourceOption) (*Profile, error)
    public static Profile Get(string name, Input<string> id, ProfileState? state, CustomResourceOptions? opts = null)
    public static Profile get(String name, Output<String> id, ProfileState state, CustomResourceOptions options)
    Resource lookup is not supported in YAML
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    resource_name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    The following state arguments are supported:
    Comment string
    Comment.
    DlpLog string
    Enable/disable DLP logging. Valid values: enable, disable.
    DynamicSortSubtable string
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    ExtendedLog string
    Enable/disable extended logging for data leak prevention. Valid values: enable, disable.
    FeatureSet string
    Flow/proxy feature set. Valid values: flow, proxy.
    FullArchiveProto string
    Protocols to always content archive. Valid values: smtp, pop3, imap, http-get, http-post, ftp, nntp, mapi, ssh, cifs.
    GetAllTables string
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    NacQuarLog string
    Enable/disable NAC quarantine logging. Valid values: enable, disable.
    Name string
    Name of the DLP profile.
    ReplacemsgGroup string
    Replacement message group used by this DLP profile.
    Rules List<Pulumiverse.Fortios.Dlp.Inputs.ProfileRule>
    Set up DLP rules for this profile. The structure of rule block is documented below.
    SummaryProto string
    Protocols to always log summary. Valid values: smtp, pop3, imap, http-get, http-post, ftp, nntp, mapi, ssh, cifs.
    Vdomparam string
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    Comment string
    Comment.
    DlpLog string
    Enable/disable DLP logging. Valid values: enable, disable.
    DynamicSortSubtable string
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    ExtendedLog string
    Enable/disable extended logging for data leak prevention. Valid values: enable, disable.
    FeatureSet string
    Flow/proxy feature set. Valid values: flow, proxy.
    FullArchiveProto string
    Protocols to always content archive. Valid values: smtp, pop3, imap, http-get, http-post, ftp, nntp, mapi, ssh, cifs.
    GetAllTables string
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    NacQuarLog string
    Enable/disable NAC quarantine logging. Valid values: enable, disable.
    Name string
    Name of the DLP profile.
    ReplacemsgGroup string
    Replacement message group used by this DLP profile.
    Rules []ProfileRuleArgs
    Set up DLP rules for this profile. The structure of rule block is documented below.
    SummaryProto string
    Protocols to always log summary. Valid values: smtp, pop3, imap, http-get, http-post, ftp, nntp, mapi, ssh, cifs.
    Vdomparam string
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    comment String
    Comment.
    dlpLog String
    Enable/disable DLP logging. Valid values: enable, disable.
    dynamicSortSubtable String
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    extendedLog String
    Enable/disable extended logging for data leak prevention. Valid values: enable, disable.
    featureSet String
    Flow/proxy feature set. Valid values: flow, proxy.
    fullArchiveProto String
    Protocols to always content archive. Valid values: smtp, pop3, imap, http-get, http-post, ftp, nntp, mapi, ssh, cifs.
    getAllTables String
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    nacQuarLog String
    Enable/disable NAC quarantine logging. Valid values: enable, disable.
    name String
    Name of the DLP profile.
    replacemsgGroup String
    Replacement message group used by this DLP profile.
    rules List<ProfileRule>
    Set up DLP rules for this profile. The structure of rule block is documented below.
    summaryProto String
    Protocols to always log summary. Valid values: smtp, pop3, imap, http-get, http-post, ftp, nntp, mapi, ssh, cifs.
    vdomparam String
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    comment string
    Comment.
    dlpLog string
    Enable/disable DLP logging. Valid values: enable, disable.
    dynamicSortSubtable string
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    extendedLog string
    Enable/disable extended logging for data leak prevention. Valid values: enable, disable.
    featureSet string
    Flow/proxy feature set. Valid values: flow, proxy.
    fullArchiveProto string
    Protocols to always content archive. Valid values: smtp, pop3, imap, http-get, http-post, ftp, nntp, mapi, ssh, cifs.
    getAllTables string
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    nacQuarLog string
    Enable/disable NAC quarantine logging. Valid values: enable, disable.
    name string
    Name of the DLP profile.
    replacemsgGroup string
    Replacement message group used by this DLP profile.
    rules ProfileRule[]
    Set up DLP rules for this profile. The structure of rule block is documented below.
    summaryProto string
    Protocols to always log summary. Valid values: smtp, pop3, imap, http-get, http-post, ftp, nntp, mapi, ssh, cifs.
    vdomparam string
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    comment str
    Comment.
    dlp_log str
    Enable/disable DLP logging. Valid values: enable, disable.
    dynamic_sort_subtable str
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    extended_log str
    Enable/disable extended logging for data leak prevention. Valid values: enable, disable.
    feature_set str
    Flow/proxy feature set. Valid values: flow, proxy.
    full_archive_proto str
    Protocols to always content archive. Valid values: smtp, pop3, imap, http-get, http-post, ftp, nntp, mapi, ssh, cifs.
    get_all_tables str
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    nac_quar_log str
    Enable/disable NAC quarantine logging. Valid values: enable, disable.
    name str
    Name of the DLP profile.
    replacemsg_group str
    Replacement message group used by this DLP profile.
    rules Sequence[ProfileRuleArgs]
    Set up DLP rules for this profile. The structure of rule block is documented below.
    summary_proto str
    Protocols to always log summary. Valid values: smtp, pop3, imap, http-get, http-post, ftp, nntp, mapi, ssh, cifs.
    vdomparam str
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
    comment String
    Comment.
    dlpLog String
    Enable/disable DLP logging. Valid values: enable, disable.
    dynamicSortSubtable String
    Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
    extendedLog String
    Enable/disable extended logging for data leak prevention. Valid values: enable, disable.
    featureSet String
    Flow/proxy feature set. Valid values: flow, proxy.
    fullArchiveProto String
    Protocols to always content archive. Valid values: smtp, pop3, imap, http-get, http-post, ftp, nntp, mapi, ssh, cifs.
    getAllTables String
    Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
    nacQuarLog String
    Enable/disable NAC quarantine logging. Valid values: enable, disable.
    name String
    Name of the DLP profile.
    replacemsgGroup String
    Replacement message group used by this DLP profile.
    rules List<Property Map>
    Set up DLP rules for this profile. The structure of rule block is documented below.
    summaryProto String
    Protocols to always log summary. Valid values: smtp, pop3, imap, http-get, http-post, ftp, nntp, mapi, ssh, cifs.
    vdomparam String
    Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.

    Supporting Types

    ProfileRule, ProfileRuleArgs

    Action string
    Action to take with content that this DLP profile matches. Valid values: allow, log-only, block, quarantine-ip.
    Archive string
    Enable/disable DLP archiving. Valid values: disable, enable.
    Expiry string
    Quarantine duration in days, hours, minutes (format = dddhhmm).
    FileSize int
    Match files greater than or equal to this size (KB).
    FileType int
    Select the number of a DLP file pattern table to match.
    FilterBy string
    Select the type of content to match. Valid values: sensor, mip, fingerprint, encrypted, none.
    Id int
    ID.
    Label string
    MIP label dictionary.
    MatchPercentage int
    Percentage of fingerprints in the fingerprint databases designated with the selected sensitivity to match.
    Name string
    Filter name.
    Proto string
    Check messages or files over one or more of these protocols. Valid values: smtp, pop3, imap, http-get, http-post, ftp, nntp, mapi, ssh, cifs.
    Sensitivities List<Pulumiverse.Fortios.Dlp.Inputs.ProfileRuleSensitivity>
    Select a DLP file pattern sensitivity to match. The structure of sensitivity block is documented below.
    Sensors List<Pulumiverse.Fortios.Dlp.Inputs.ProfileRuleSensor>
    Select DLP sensors. The structure of sensor block is documented below.
    Severity string
    Select the severity or threat level that matches this filter. Valid values: info, low, medium, high, critical.
    Type string
    Select whether to check the content of messages (an email message) or files (downloaded files or email attachments). Valid values: file, message.
    Action string
    Action to take with content that this DLP profile matches. Valid values: allow, log-only, block, quarantine-ip.
    Archive string
    Enable/disable DLP archiving. Valid values: disable, enable.
    Expiry string
    Quarantine duration in days, hours, minutes (format = dddhhmm).
    FileSize int
    Match files greater than or equal to this size (KB).
    FileType int
    Select the number of a DLP file pattern table to match.
    FilterBy string
    Select the type of content to match. Valid values: sensor, mip, fingerprint, encrypted, none.
    Id int
    ID.
    Label string
    MIP label dictionary.
    MatchPercentage int
    Percentage of fingerprints in the fingerprint databases designated with the selected sensitivity to match.
    Name string
    Filter name.
    Proto string
    Check messages or files over one or more of these protocols. Valid values: smtp, pop3, imap, http-get, http-post, ftp, nntp, mapi, ssh, cifs.
    Sensitivities []ProfileRuleSensitivity
    Select a DLP file pattern sensitivity to match. The structure of sensitivity block is documented below.
    Sensors []ProfileRuleSensor
    Select DLP sensors. The structure of sensor block is documented below.
    Severity string
    Select the severity or threat level that matches this filter. Valid values: info, low, medium, high, critical.
    Type string
    Select whether to check the content of messages (an email message) or files (downloaded files or email attachments). Valid values: file, message.
    action String
    Action to take with content that this DLP profile matches. Valid values: allow, log-only, block, quarantine-ip.
    archive String
    Enable/disable DLP archiving. Valid values: disable, enable.
    expiry String
    Quarantine duration in days, hours, minutes (format = dddhhmm).
    fileSize Integer
    Match files greater than or equal to this size (KB).
    fileType Integer
    Select the number of a DLP file pattern table to match.
    filterBy String
    Select the type of content to match. Valid values: sensor, mip, fingerprint, encrypted, none.
    id Integer
    ID.
    label String
    MIP label dictionary.
    matchPercentage Integer
    Percentage of fingerprints in the fingerprint databases designated with the selected sensitivity to match.
    name String
    Filter name.
    proto String
    Check messages or files over one or more of these protocols. Valid values: smtp, pop3, imap, http-get, http-post, ftp, nntp, mapi, ssh, cifs.
    sensitivities List<ProfileRuleSensitivity>
    Select a DLP file pattern sensitivity to match. The structure of sensitivity block is documented below.
    sensors List<ProfileRuleSensor>
    Select DLP sensors. The structure of sensor block is documented below.
    severity String
    Select the severity or threat level that matches this filter. Valid values: info, low, medium, high, critical.
    type String
    Select whether to check the content of messages (an email message) or files (downloaded files or email attachments). Valid values: file, message.
    action string
    Action to take with content that this DLP profile matches. Valid values: allow, log-only, block, quarantine-ip.
    archive string
    Enable/disable DLP archiving. Valid values: disable, enable.
    expiry string
    Quarantine duration in days, hours, minutes (format = dddhhmm).
    fileSize number
    Match files greater than or equal to this size (KB).
    fileType number
    Select the number of a DLP file pattern table to match.
    filterBy string
    Select the type of content to match. Valid values: sensor, mip, fingerprint, encrypted, none.
    id number
    ID.
    label string
    MIP label dictionary.
    matchPercentage number
    Percentage of fingerprints in the fingerprint databases designated with the selected sensitivity to match.
    name string
    Filter name.
    proto string
    Check messages or files over one or more of these protocols. Valid values: smtp, pop3, imap, http-get, http-post, ftp, nntp, mapi, ssh, cifs.
    sensitivities ProfileRuleSensitivity[]
    Select a DLP file pattern sensitivity to match. The structure of sensitivity block is documented below.
    sensors ProfileRuleSensor[]
    Select DLP sensors. The structure of sensor block is documented below.
    severity string
    Select the severity or threat level that matches this filter. Valid values: info, low, medium, high, critical.
    type string
    Select whether to check the content of messages (an email message) or files (downloaded files or email attachments). Valid values: file, message.
    action str
    Action to take with content that this DLP profile matches. Valid values: allow, log-only, block, quarantine-ip.
    archive str
    Enable/disable DLP archiving. Valid values: disable, enable.
    expiry str
    Quarantine duration in days, hours, minutes (format = dddhhmm).
    file_size int
    Match files greater than or equal to this size (KB).
    file_type int
    Select the number of a DLP file pattern table to match.
    filter_by str
    Select the type of content to match. Valid values: sensor, mip, fingerprint, encrypted, none.
    id int
    ID.
    label str
    MIP label dictionary.
    match_percentage int
    Percentage of fingerprints in the fingerprint databases designated with the selected sensitivity to match.
    name str
    Filter name.
    proto str
    Check messages or files over one or more of these protocols. Valid values: smtp, pop3, imap, http-get, http-post, ftp, nntp, mapi, ssh, cifs.
    sensitivities Sequence[ProfileRuleSensitivity]
    Select a DLP file pattern sensitivity to match. The structure of sensitivity block is documented below.
    sensors Sequence[ProfileRuleSensor]
    Select DLP sensors. The structure of sensor block is documented below.
    severity str
    Select the severity or threat level that matches this filter. Valid values: info, low, medium, high, critical.
    type str
    Select whether to check the content of messages (an email message) or files (downloaded files or email attachments). Valid values: file, message.
    action String
    Action to take with content that this DLP profile matches. Valid values: allow, log-only, block, quarantine-ip.
    archive String
    Enable/disable DLP archiving. Valid values: disable, enable.
    expiry String
    Quarantine duration in days, hours, minutes (format = dddhhmm).
    fileSize Number
    Match files greater than or equal to this size (KB).
    fileType Number
    Select the number of a DLP file pattern table to match.
    filterBy String
    Select the type of content to match. Valid values: sensor, mip, fingerprint, encrypted, none.
    id Number
    ID.
    label String
    MIP label dictionary.
    matchPercentage Number
    Percentage of fingerprints in the fingerprint databases designated with the selected sensitivity to match.
    name String
    Filter name.
    proto String
    Check messages or files over one or more of these protocols. Valid values: smtp, pop3, imap, http-get, http-post, ftp, nntp, mapi, ssh, cifs.
    sensitivities List<Property Map>
    Select a DLP file pattern sensitivity to match. The structure of sensitivity block is documented below.
    sensors List<Property Map>
    Select DLP sensors. The structure of sensor block is documented below.
    severity String
    Select the severity or threat level that matches this filter. Valid values: info, low, medium, high, critical.
    type String
    Select whether to check the content of messages (an email message) or files (downloaded files or email attachments). Valid values: file, message.

    ProfileRuleSensitivity, ProfileRuleSensitivityArgs

    Name string
    Select a DLP sensitivity.
    Name string
    Select a DLP sensitivity.
    name String
    Select a DLP sensitivity.
    name string
    Select a DLP sensitivity.
    name str
    Select a DLP sensitivity.
    name String
    Select a DLP sensitivity.

    ProfileRuleSensor, ProfileRuleSensorArgs

    Name string
    Address name.
    Name string
    Address name.
    name String
    Address name.
    name string
    Address name.
    name str
    Address name.
    name String
    Address name.

    Import

    Dlp Profile can be imported using any of these accepted formats:

    $ pulumi import fortios:dlp/profile:Profile labelname {{name}}
    

    If you do not want to import arguments of block:

    $ export “FORTIOS_IMPORT_TABLE”=“false”

    $ pulumi import fortios:dlp/profile:Profile labelname {{name}}
    

    $ unset “FORTIOS_IMPORT_TABLE”

    To learn more about importing existing cloud resources, see Importing resources.

    Package Details

    Repository
    fortios pulumiverse/pulumi-fortios
    License
    Apache-2.0
    Notes
    This Pulumi package is based on the fortios Terraform Provider.
    fortios logo
    Fortios v0.0.6 published on Tuesday, Jul 9, 2024 by pulumiverse