fortios.dlp.Profile
Explore with Pulumi AI
Configure DLP profiles. Applies to FortiOS Version >= 7.2.0
.
Create Profile Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new Profile(name: string, args?: ProfileArgs, opts?: CustomResourceOptions);
@overload
def Profile(resource_name: str,
args: Optional[ProfileArgs] = None,
opts: Optional[ResourceOptions] = None)
@overload
def Profile(resource_name: str,
opts: Optional[ResourceOptions] = None,
comment: Optional[str] = None,
dlp_log: Optional[str] = None,
dynamic_sort_subtable: Optional[str] = None,
extended_log: Optional[str] = None,
feature_set: Optional[str] = None,
full_archive_proto: Optional[str] = None,
get_all_tables: Optional[str] = None,
nac_quar_log: Optional[str] = None,
name: Optional[str] = None,
replacemsg_group: Optional[str] = None,
rules: Optional[Sequence[ProfileRuleArgs]] = None,
summary_proto: Optional[str] = None,
vdomparam: Optional[str] = None)
func NewProfile(ctx *Context, name string, args *ProfileArgs, opts ...ResourceOption) (*Profile, error)
public Profile(string name, ProfileArgs? args = null, CustomResourceOptions? opts = null)
public Profile(String name, ProfileArgs args)
public Profile(String name, ProfileArgs args, CustomResourceOptions options)
type: fortios:dlp:Profile
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args ProfileArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args ProfileArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args ProfileArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args ProfileArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args ProfileArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var exampleprofileResourceResourceFromDlpprofile = new Fortios.Dlp.Profile("exampleprofileResourceResourceFromDlpprofile", new()
{
Comment = "string",
DlpLog = "string",
DynamicSortSubtable = "string",
ExtendedLog = "string",
FeatureSet = "string",
FullArchiveProto = "string",
GetAllTables = "string",
NacQuarLog = "string",
Name = "string",
ReplacemsgGroup = "string",
Rules = new[]
{
new Fortios.Dlp.Inputs.ProfileRuleArgs
{
Action = "string",
Archive = "string",
Expiry = "string",
FileSize = 0,
FileType = 0,
FilterBy = "string",
Id = 0,
Label = "string",
MatchPercentage = 0,
Name = "string",
Proto = "string",
Sensitivities = new[]
{
new Fortios.Dlp.Inputs.ProfileRuleSensitivityArgs
{
Name = "string",
},
},
Sensors = new[]
{
new Fortios.Dlp.Inputs.ProfileRuleSensorArgs
{
Name = "string",
},
},
Severity = "string",
Type = "string",
},
},
SummaryProto = "string",
Vdomparam = "string",
});
example, err := dlp.NewProfile(ctx, "exampleprofileResourceResourceFromDlpprofile", &dlp.ProfileArgs{
Comment: pulumi.String("string"),
DlpLog: pulumi.String("string"),
DynamicSortSubtable: pulumi.String("string"),
ExtendedLog: pulumi.String("string"),
FeatureSet: pulumi.String("string"),
FullArchiveProto: pulumi.String("string"),
GetAllTables: pulumi.String("string"),
NacQuarLog: pulumi.String("string"),
Name: pulumi.String("string"),
ReplacemsgGroup: pulumi.String("string"),
Rules: dlp.ProfileRuleArray{
&dlp.ProfileRuleArgs{
Action: pulumi.String("string"),
Archive: pulumi.String("string"),
Expiry: pulumi.String("string"),
FileSize: pulumi.Int(0),
FileType: pulumi.Int(0),
FilterBy: pulumi.String("string"),
Id: pulumi.Int(0),
Label: pulumi.String("string"),
MatchPercentage: pulumi.Int(0),
Name: pulumi.String("string"),
Proto: pulumi.String("string"),
Sensitivities: dlp.ProfileRuleSensitivityArray{
&dlp.ProfileRuleSensitivityArgs{
Name: pulumi.String("string"),
},
},
Sensors: dlp.ProfileRuleSensorArray{
&dlp.ProfileRuleSensorArgs{
Name: pulumi.String("string"),
},
},
Severity: pulumi.String("string"),
Type: pulumi.String("string"),
},
},
SummaryProto: pulumi.String("string"),
Vdomparam: pulumi.String("string"),
})
var exampleprofileResourceResourceFromDlpprofile = new Profile("exampleprofileResourceResourceFromDlpprofile", ProfileArgs.builder()
.comment("string")
.dlpLog("string")
.dynamicSortSubtable("string")
.extendedLog("string")
.featureSet("string")
.fullArchiveProto("string")
.getAllTables("string")
.nacQuarLog("string")
.name("string")
.replacemsgGroup("string")
.rules(ProfileRuleArgs.builder()
.action("string")
.archive("string")
.expiry("string")
.fileSize(0)
.fileType(0)
.filterBy("string")
.id(0)
.label("string")
.matchPercentage(0)
.name("string")
.proto("string")
.sensitivities(ProfileRuleSensitivityArgs.builder()
.name("string")
.build())
.sensors(ProfileRuleSensorArgs.builder()
.name("string")
.build())
.severity("string")
.type("string")
.build())
.summaryProto("string")
.vdomparam("string")
.build());
exampleprofile_resource_resource_from_dlpprofile = fortios.dlp.Profile("exampleprofileResourceResourceFromDlpprofile",
comment="string",
dlp_log="string",
dynamic_sort_subtable="string",
extended_log="string",
feature_set="string",
full_archive_proto="string",
get_all_tables="string",
nac_quar_log="string",
name="string",
replacemsg_group="string",
rules=[{
"action": "string",
"archive": "string",
"expiry": "string",
"file_size": 0,
"file_type": 0,
"filter_by": "string",
"id": 0,
"label": "string",
"match_percentage": 0,
"name": "string",
"proto": "string",
"sensitivities": [{
"name": "string",
}],
"sensors": [{
"name": "string",
}],
"severity": "string",
"type": "string",
}],
summary_proto="string",
vdomparam="string")
const exampleprofileResourceResourceFromDlpprofile = new fortios.dlp.Profile("exampleprofileResourceResourceFromDlpprofile", {
comment: "string",
dlpLog: "string",
dynamicSortSubtable: "string",
extendedLog: "string",
featureSet: "string",
fullArchiveProto: "string",
getAllTables: "string",
nacQuarLog: "string",
name: "string",
replacemsgGroup: "string",
rules: [{
action: "string",
archive: "string",
expiry: "string",
fileSize: 0,
fileType: 0,
filterBy: "string",
id: 0,
label: "string",
matchPercentage: 0,
name: "string",
proto: "string",
sensitivities: [{
name: "string",
}],
sensors: [{
name: "string",
}],
severity: "string",
type: "string",
}],
summaryProto: "string",
vdomparam: "string",
});
type: fortios:dlp:Profile
properties:
comment: string
dlpLog: string
dynamicSortSubtable: string
extendedLog: string
featureSet: string
fullArchiveProto: string
getAllTables: string
nacQuarLog: string
name: string
replacemsgGroup: string
rules:
- action: string
archive: string
expiry: string
fileSize: 0
fileType: 0
filterBy: string
id: 0
label: string
matchPercentage: 0
name: string
proto: string
sensitivities:
- name: string
sensors:
- name: string
severity: string
type: string
summaryProto: string
vdomparam: string
Profile Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The Profile resource accepts the following input properties:
- Comment string
- Comment.
- Dlp
Log string - Enable/disable DLP logging. Valid values:
enable
,disable
. - Dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- Extended
Log string - Enable/disable extended logging for data leak prevention. Valid values:
enable
,disable
. - Feature
Set string - Flow/proxy feature set. Valid values:
flow
,proxy
. - Full
Archive stringProto - Protocols to always content archive. Valid values:
smtp
,pop3
,imap
,http-get
,http-post
,ftp
,nntp
,mapi
,ssh
,cifs
. - Get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- Nac
Quar stringLog - Enable/disable NAC quarantine logging. Valid values:
enable
,disable
. - Name string
- Name of the DLP profile.
- Replacemsg
Group string - Replacement message group used by this DLP profile.
- Rules
List<Pulumiverse.
Fortios. Dlp. Inputs. Profile Rule> - Set up DLP rules for this profile. The structure of
rule
block is documented below. - Summary
Proto string - Protocols to always log summary. Valid values:
smtp
,pop3
,imap
,http-get
,http-post
,ftp
,nntp
,mapi
,ssh
,cifs
. - Vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- Comment string
- Comment.
- Dlp
Log string - Enable/disable DLP logging. Valid values:
enable
,disable
. - Dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- Extended
Log string - Enable/disable extended logging for data leak prevention. Valid values:
enable
,disable
. - Feature
Set string - Flow/proxy feature set. Valid values:
flow
,proxy
. - Full
Archive stringProto - Protocols to always content archive. Valid values:
smtp
,pop3
,imap
,http-get
,http-post
,ftp
,nntp
,mapi
,ssh
,cifs
. - Get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- Nac
Quar stringLog - Enable/disable NAC quarantine logging. Valid values:
enable
,disable
. - Name string
- Name of the DLP profile.
- Replacemsg
Group string - Replacement message group used by this DLP profile.
- Rules
[]Profile
Rule Args - Set up DLP rules for this profile. The structure of
rule
block is documented below. - Summary
Proto string - Protocols to always log summary. Valid values:
smtp
,pop3
,imap
,http-get
,http-post
,ftp
,nntp
,mapi
,ssh
,cifs
. - Vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- comment String
- Comment.
- dlp
Log String - Enable/disable DLP logging. Valid values:
enable
,disable
. - dynamic
Sort StringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- extended
Log String - Enable/disable extended logging for data leak prevention. Valid values:
enable
,disable
. - feature
Set String - Flow/proxy feature set. Valid values:
flow
,proxy
. - full
Archive StringProto - Protocols to always content archive. Valid values:
smtp
,pop3
,imap
,http-get
,http-post
,ftp
,nntp
,mapi
,ssh
,cifs
. - get
All StringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- nac
Quar StringLog - Enable/disable NAC quarantine logging. Valid values:
enable
,disable
. - name String
- Name of the DLP profile.
- replacemsg
Group String - Replacement message group used by this DLP profile.
- rules
List<Profile
Rule> - Set up DLP rules for this profile. The structure of
rule
block is documented below. - summary
Proto String - Protocols to always log summary. Valid values:
smtp
,pop3
,imap
,http-get
,http-post
,ftp
,nntp
,mapi
,ssh
,cifs
. - vdomparam String
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- comment string
- Comment.
- dlp
Log string - Enable/disable DLP logging. Valid values:
enable
,disable
. - dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- extended
Log string - Enable/disable extended logging for data leak prevention. Valid values:
enable
,disable
. - feature
Set string - Flow/proxy feature set. Valid values:
flow
,proxy
. - full
Archive stringProto - Protocols to always content archive. Valid values:
smtp
,pop3
,imap
,http-get
,http-post
,ftp
,nntp
,mapi
,ssh
,cifs
. - get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- nac
Quar stringLog - Enable/disable NAC quarantine logging. Valid values:
enable
,disable
. - name string
- Name of the DLP profile.
- replacemsg
Group string - Replacement message group used by this DLP profile.
- rules
Profile
Rule[] - Set up DLP rules for this profile. The structure of
rule
block is documented below. - summary
Proto string - Protocols to always log summary. Valid values:
smtp
,pop3
,imap
,http-get
,http-post
,ftp
,nntp
,mapi
,ssh
,cifs
. - vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- comment str
- Comment.
- dlp_
log str - Enable/disable DLP logging. Valid values:
enable
,disable
. - dynamic_
sort_ strsubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- extended_
log str - Enable/disable extended logging for data leak prevention. Valid values:
enable
,disable
. - feature_
set str - Flow/proxy feature set. Valid values:
flow
,proxy
. - full_
archive_ strproto - Protocols to always content archive. Valid values:
smtp
,pop3
,imap
,http-get
,http-post
,ftp
,nntp
,mapi
,ssh
,cifs
. - get_
all_ strtables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- nac_
quar_ strlog - Enable/disable NAC quarantine logging. Valid values:
enable
,disable
. - name str
- Name of the DLP profile.
- replacemsg_
group str - Replacement message group used by this DLP profile.
- rules
Sequence[Profile
Rule Args] - Set up DLP rules for this profile. The structure of
rule
block is documented below. - summary_
proto str - Protocols to always log summary. Valid values:
smtp
,pop3
,imap
,http-get
,http-post
,ftp
,nntp
,mapi
,ssh
,cifs
. - vdomparam str
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- comment String
- Comment.
- dlp
Log String - Enable/disable DLP logging. Valid values:
enable
,disable
. - dynamic
Sort StringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- extended
Log String - Enable/disable extended logging for data leak prevention. Valid values:
enable
,disable
. - feature
Set String - Flow/proxy feature set. Valid values:
flow
,proxy
. - full
Archive StringProto - Protocols to always content archive. Valid values:
smtp
,pop3
,imap
,http-get
,http-post
,ftp
,nntp
,mapi
,ssh
,cifs
. - get
All StringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- nac
Quar StringLog - Enable/disable NAC quarantine logging. Valid values:
enable
,disable
. - name String
- Name of the DLP profile.
- replacemsg
Group String - Replacement message group used by this DLP profile.
- rules List<Property Map>
- Set up DLP rules for this profile. The structure of
rule
block is documented below. - summary
Proto String - Protocols to always log summary. Valid values:
smtp
,pop3
,imap
,http-get
,http-post
,ftp
,nntp
,mapi
,ssh
,cifs
. - vdomparam String
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
Outputs
All input properties are implicitly available as output properties. Additionally, the Profile resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Id string
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id str
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
Look up Existing Profile Resource
Get an existing Profile resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: ProfileState, opts?: CustomResourceOptions): Profile
@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
comment: Optional[str] = None,
dlp_log: Optional[str] = None,
dynamic_sort_subtable: Optional[str] = None,
extended_log: Optional[str] = None,
feature_set: Optional[str] = None,
full_archive_proto: Optional[str] = None,
get_all_tables: Optional[str] = None,
nac_quar_log: Optional[str] = None,
name: Optional[str] = None,
replacemsg_group: Optional[str] = None,
rules: Optional[Sequence[ProfileRuleArgs]] = None,
summary_proto: Optional[str] = None,
vdomparam: Optional[str] = None) -> Profile
func GetProfile(ctx *Context, name string, id IDInput, state *ProfileState, opts ...ResourceOption) (*Profile, error)
public static Profile Get(string name, Input<string> id, ProfileState? state, CustomResourceOptions? opts = null)
public static Profile get(String name, Output<String> id, ProfileState state, CustomResourceOptions options)
Resource lookup is not supported in YAML
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Comment string
- Comment.
- Dlp
Log string - Enable/disable DLP logging. Valid values:
enable
,disable
. - Dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- Extended
Log string - Enable/disable extended logging for data leak prevention. Valid values:
enable
,disable
. - Feature
Set string - Flow/proxy feature set. Valid values:
flow
,proxy
. - Full
Archive stringProto - Protocols to always content archive. Valid values:
smtp
,pop3
,imap
,http-get
,http-post
,ftp
,nntp
,mapi
,ssh
,cifs
. - Get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- Nac
Quar stringLog - Enable/disable NAC quarantine logging. Valid values:
enable
,disable
. - Name string
- Name of the DLP profile.
- Replacemsg
Group string - Replacement message group used by this DLP profile.
- Rules
List<Pulumiverse.
Fortios. Dlp. Inputs. Profile Rule> - Set up DLP rules for this profile. The structure of
rule
block is documented below. - Summary
Proto string - Protocols to always log summary. Valid values:
smtp
,pop3
,imap
,http-get
,http-post
,ftp
,nntp
,mapi
,ssh
,cifs
. - Vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- Comment string
- Comment.
- Dlp
Log string - Enable/disable DLP logging. Valid values:
enable
,disable
. - Dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- Extended
Log string - Enable/disable extended logging for data leak prevention. Valid values:
enable
,disable
. - Feature
Set string - Flow/proxy feature set. Valid values:
flow
,proxy
. - Full
Archive stringProto - Protocols to always content archive. Valid values:
smtp
,pop3
,imap
,http-get
,http-post
,ftp
,nntp
,mapi
,ssh
,cifs
. - Get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- Nac
Quar stringLog - Enable/disable NAC quarantine logging. Valid values:
enable
,disable
. - Name string
- Name of the DLP profile.
- Replacemsg
Group string - Replacement message group used by this DLP profile.
- Rules
[]Profile
Rule Args - Set up DLP rules for this profile. The structure of
rule
block is documented below. - Summary
Proto string - Protocols to always log summary. Valid values:
smtp
,pop3
,imap
,http-get
,http-post
,ftp
,nntp
,mapi
,ssh
,cifs
. - Vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- comment String
- Comment.
- dlp
Log String - Enable/disable DLP logging. Valid values:
enable
,disable
. - dynamic
Sort StringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- extended
Log String - Enable/disable extended logging for data leak prevention. Valid values:
enable
,disable
. - feature
Set String - Flow/proxy feature set. Valid values:
flow
,proxy
. - full
Archive StringProto - Protocols to always content archive. Valid values:
smtp
,pop3
,imap
,http-get
,http-post
,ftp
,nntp
,mapi
,ssh
,cifs
. - get
All StringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- nac
Quar StringLog - Enable/disable NAC quarantine logging. Valid values:
enable
,disable
. - name String
- Name of the DLP profile.
- replacemsg
Group String - Replacement message group used by this DLP profile.
- rules
List<Profile
Rule> - Set up DLP rules for this profile. The structure of
rule
block is documented below. - summary
Proto String - Protocols to always log summary. Valid values:
smtp
,pop3
,imap
,http-get
,http-post
,ftp
,nntp
,mapi
,ssh
,cifs
. - vdomparam String
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- comment string
- Comment.
- dlp
Log string - Enable/disable DLP logging. Valid values:
enable
,disable
. - dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- extended
Log string - Enable/disable extended logging for data leak prevention. Valid values:
enable
,disable
. - feature
Set string - Flow/proxy feature set. Valid values:
flow
,proxy
. - full
Archive stringProto - Protocols to always content archive. Valid values:
smtp
,pop3
,imap
,http-get
,http-post
,ftp
,nntp
,mapi
,ssh
,cifs
. - get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- nac
Quar stringLog - Enable/disable NAC quarantine logging. Valid values:
enable
,disable
. - name string
- Name of the DLP profile.
- replacemsg
Group string - Replacement message group used by this DLP profile.
- rules
Profile
Rule[] - Set up DLP rules for this profile. The structure of
rule
block is documented below. - summary
Proto string - Protocols to always log summary. Valid values:
smtp
,pop3
,imap
,http-get
,http-post
,ftp
,nntp
,mapi
,ssh
,cifs
. - vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- comment str
- Comment.
- dlp_
log str - Enable/disable DLP logging. Valid values:
enable
,disable
. - dynamic_
sort_ strsubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- extended_
log str - Enable/disable extended logging for data leak prevention. Valid values:
enable
,disable
. - feature_
set str - Flow/proxy feature set. Valid values:
flow
,proxy
. - full_
archive_ strproto - Protocols to always content archive. Valid values:
smtp
,pop3
,imap
,http-get
,http-post
,ftp
,nntp
,mapi
,ssh
,cifs
. - get_
all_ strtables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- nac_
quar_ strlog - Enable/disable NAC quarantine logging. Valid values:
enable
,disable
. - name str
- Name of the DLP profile.
- replacemsg_
group str - Replacement message group used by this DLP profile.
- rules
Sequence[Profile
Rule Args] - Set up DLP rules for this profile. The structure of
rule
block is documented below. - summary_
proto str - Protocols to always log summary. Valid values:
smtp
,pop3
,imap
,http-get
,http-post
,ftp
,nntp
,mapi
,ssh
,cifs
. - vdomparam str
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- comment String
- Comment.
- dlp
Log String - Enable/disable DLP logging. Valid values:
enable
,disable
. - dynamic
Sort StringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- extended
Log String - Enable/disable extended logging for data leak prevention. Valid values:
enable
,disable
. - feature
Set String - Flow/proxy feature set. Valid values:
flow
,proxy
. - full
Archive StringProto - Protocols to always content archive. Valid values:
smtp
,pop3
,imap
,http-get
,http-post
,ftp
,nntp
,mapi
,ssh
,cifs
. - get
All StringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- nac
Quar StringLog - Enable/disable NAC quarantine logging. Valid values:
enable
,disable
. - name String
- Name of the DLP profile.
- replacemsg
Group String - Replacement message group used by this DLP profile.
- rules List<Property Map>
- Set up DLP rules for this profile. The structure of
rule
block is documented below. - summary
Proto String - Protocols to always log summary. Valid values:
smtp
,pop3
,imap
,http-get
,http-post
,ftp
,nntp
,mapi
,ssh
,cifs
. - vdomparam String
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
Supporting Types
ProfileRule, ProfileRuleArgs
- Action string
- Action to take with content that this DLP profile matches. Valid values:
allow
,log-only
,block
,quarantine-ip
. - Archive string
- Enable/disable DLP archiving. Valid values:
disable
,enable
. - Expiry string
- Quarantine duration in days, hours, minutes (format = dddhhmm).
- File
Size int - Match files greater than or equal to this size (KB).
- File
Type int - Select the number of a DLP file pattern table to match.
- Filter
By string - Select the type of content to match. Valid values:
sensor
,mip
,fingerprint
,encrypted
,none
. - Id int
- ID.
- Label string
- MIP label dictionary.
- Match
Percentage int - Percentage of fingerprints in the fingerprint databases designated with the selected sensitivity to match.
- Name string
- Filter name.
- Proto string
- Check messages or files over one or more of these protocols. Valid values:
smtp
,pop3
,imap
,http-get
,http-post
,ftp
,nntp
,mapi
,ssh
,cifs
. - Sensitivities
List<Pulumiverse.
Fortios. Dlp. Inputs. Profile Rule Sensitivity> - Select a DLP file pattern sensitivity to match. The structure of
sensitivity
block is documented below. - Sensors
List<Pulumiverse.
Fortios. Dlp. Inputs. Profile Rule Sensor> - Select DLP sensors. The structure of
sensor
block is documented below. - Severity string
- Select the severity or threat level that matches this filter. Valid values:
info
,low
,medium
,high
,critical
. - Type string
- Select whether to check the content of messages (an email message) or files (downloaded files or email attachments). Valid values:
file
,message
.
- Action string
- Action to take with content that this DLP profile matches. Valid values:
allow
,log-only
,block
,quarantine-ip
. - Archive string
- Enable/disable DLP archiving. Valid values:
disable
,enable
. - Expiry string
- Quarantine duration in days, hours, minutes (format = dddhhmm).
- File
Size int - Match files greater than or equal to this size (KB).
- File
Type int - Select the number of a DLP file pattern table to match.
- Filter
By string - Select the type of content to match. Valid values:
sensor
,mip
,fingerprint
,encrypted
,none
. - Id int
- ID.
- Label string
- MIP label dictionary.
- Match
Percentage int - Percentage of fingerprints in the fingerprint databases designated with the selected sensitivity to match.
- Name string
- Filter name.
- Proto string
- Check messages or files over one or more of these protocols. Valid values:
smtp
,pop3
,imap
,http-get
,http-post
,ftp
,nntp
,mapi
,ssh
,cifs
. - Sensitivities
[]Profile
Rule Sensitivity - Select a DLP file pattern sensitivity to match. The structure of
sensitivity
block is documented below. - Sensors
[]Profile
Rule Sensor - Select DLP sensors. The structure of
sensor
block is documented below. - Severity string
- Select the severity or threat level that matches this filter. Valid values:
info
,low
,medium
,high
,critical
. - Type string
- Select whether to check the content of messages (an email message) or files (downloaded files or email attachments). Valid values:
file
,message
.
- action String
- Action to take with content that this DLP profile matches. Valid values:
allow
,log-only
,block
,quarantine-ip
. - archive String
- Enable/disable DLP archiving. Valid values:
disable
,enable
. - expiry String
- Quarantine duration in days, hours, minutes (format = dddhhmm).
- file
Size Integer - Match files greater than or equal to this size (KB).
- file
Type Integer - Select the number of a DLP file pattern table to match.
- filter
By String - Select the type of content to match. Valid values:
sensor
,mip
,fingerprint
,encrypted
,none
. - id Integer
- ID.
- label String
- MIP label dictionary.
- match
Percentage Integer - Percentage of fingerprints in the fingerprint databases designated with the selected sensitivity to match.
- name String
- Filter name.
- proto String
- Check messages or files over one or more of these protocols. Valid values:
smtp
,pop3
,imap
,http-get
,http-post
,ftp
,nntp
,mapi
,ssh
,cifs
. - sensitivities
List<Profile
Rule Sensitivity> - Select a DLP file pattern sensitivity to match. The structure of
sensitivity
block is documented below. - sensors
List<Profile
Rule Sensor> - Select DLP sensors. The structure of
sensor
block is documented below. - severity String
- Select the severity or threat level that matches this filter. Valid values:
info
,low
,medium
,high
,critical
. - type String
- Select whether to check the content of messages (an email message) or files (downloaded files or email attachments). Valid values:
file
,message
.
- action string
- Action to take with content that this DLP profile matches. Valid values:
allow
,log-only
,block
,quarantine-ip
. - archive string
- Enable/disable DLP archiving. Valid values:
disable
,enable
. - expiry string
- Quarantine duration in days, hours, minutes (format = dddhhmm).
- file
Size number - Match files greater than or equal to this size (KB).
- file
Type number - Select the number of a DLP file pattern table to match.
- filter
By string - Select the type of content to match. Valid values:
sensor
,mip
,fingerprint
,encrypted
,none
. - id number
- ID.
- label string
- MIP label dictionary.
- match
Percentage number - Percentage of fingerprints in the fingerprint databases designated with the selected sensitivity to match.
- name string
- Filter name.
- proto string
- Check messages or files over one or more of these protocols. Valid values:
smtp
,pop3
,imap
,http-get
,http-post
,ftp
,nntp
,mapi
,ssh
,cifs
. - sensitivities
Profile
Rule Sensitivity[] - Select a DLP file pattern sensitivity to match. The structure of
sensitivity
block is documented below. - sensors
Profile
Rule Sensor[] - Select DLP sensors. The structure of
sensor
block is documented below. - severity string
- Select the severity or threat level that matches this filter. Valid values:
info
,low
,medium
,high
,critical
. - type string
- Select whether to check the content of messages (an email message) or files (downloaded files or email attachments). Valid values:
file
,message
.
- action str
- Action to take with content that this DLP profile matches. Valid values:
allow
,log-only
,block
,quarantine-ip
. - archive str
- Enable/disable DLP archiving. Valid values:
disable
,enable
. - expiry str
- Quarantine duration in days, hours, minutes (format = dddhhmm).
- file_
size int - Match files greater than or equal to this size (KB).
- file_
type int - Select the number of a DLP file pattern table to match.
- filter_
by str - Select the type of content to match. Valid values:
sensor
,mip
,fingerprint
,encrypted
,none
. - id int
- ID.
- label str
- MIP label dictionary.
- match_
percentage int - Percentage of fingerprints in the fingerprint databases designated with the selected sensitivity to match.
- name str
- Filter name.
- proto str
- Check messages or files over one or more of these protocols. Valid values:
smtp
,pop3
,imap
,http-get
,http-post
,ftp
,nntp
,mapi
,ssh
,cifs
. - sensitivities
Sequence[Profile
Rule Sensitivity] - Select a DLP file pattern sensitivity to match. The structure of
sensitivity
block is documented below. - sensors
Sequence[Profile
Rule Sensor] - Select DLP sensors. The structure of
sensor
block is documented below. - severity str
- Select the severity or threat level that matches this filter. Valid values:
info
,low
,medium
,high
,critical
. - type str
- Select whether to check the content of messages (an email message) or files (downloaded files or email attachments). Valid values:
file
,message
.
- action String
- Action to take with content that this DLP profile matches. Valid values:
allow
,log-only
,block
,quarantine-ip
. - archive String
- Enable/disable DLP archiving. Valid values:
disable
,enable
. - expiry String
- Quarantine duration in days, hours, minutes (format = dddhhmm).
- file
Size Number - Match files greater than or equal to this size (KB).
- file
Type Number - Select the number of a DLP file pattern table to match.
- filter
By String - Select the type of content to match. Valid values:
sensor
,mip
,fingerprint
,encrypted
,none
. - id Number
- ID.
- label String
- MIP label dictionary.
- match
Percentage Number - Percentage of fingerprints in the fingerprint databases designated with the selected sensitivity to match.
- name String
- Filter name.
- proto String
- Check messages or files over one or more of these protocols. Valid values:
smtp
,pop3
,imap
,http-get
,http-post
,ftp
,nntp
,mapi
,ssh
,cifs
. - sensitivities List<Property Map>
- Select a DLP file pattern sensitivity to match. The structure of
sensitivity
block is documented below. - sensors List<Property Map>
- Select DLP sensors. The structure of
sensor
block is documented below. - severity String
- Select the severity or threat level that matches this filter. Valid values:
info
,low
,medium
,high
,critical
. - type String
- Select whether to check the content of messages (an email message) or files (downloaded files or email attachments). Valid values:
file
,message
.
ProfileRuleSensitivity, ProfileRuleSensitivityArgs
- Name string
- Select a DLP sensitivity.
- Name string
- Select a DLP sensitivity.
- name String
- Select a DLP sensitivity.
- name string
- Select a DLP sensitivity.
- name str
- Select a DLP sensitivity.
- name String
- Select a DLP sensitivity.
ProfileRuleSensor, ProfileRuleSensorArgs
- Name string
- Address name.
- Name string
- Address name.
- name String
- Address name.
- name string
- Address name.
- name str
- Address name.
- name String
- Address name.
Import
Dlp Profile can be imported using any of these accepted formats:
$ pulumi import fortios:dlp/profile:Profile labelname {{name}}
If you do not want to import arguments of block:
$ export “FORTIOS_IMPORT_TABLE”=“false”
$ pulumi import fortios:dlp/profile:Profile labelname {{name}}
$ unset “FORTIOS_IMPORT_TABLE”
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- fortios pulumiverse/pulumi-fortios
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
fortios
Terraform Provider.