fortios.system.Admin
Explore with Pulumi AI
Configure admin users.
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as fortios from "@pulumiverse/fortios";
const trname = new fortios.system.Admin("trname", {
accprofile: "super_admin",
accprofileOverride: "disable",
allowRemoveAdminSession: "enable",
forcePasswordChange: "disable",
guestAuth: "disable",
hidden: 0,
password: "fdafdace",
passwordExpire: "0000-00-00 00:00:00",
peerAuth: "disable",
radiusVdomOverride: "disable",
remoteAuth: "disable",
twoFactor: "disable",
vdoms: [{
name: "root",
}],
wildcard: "disable",
});
import pulumi
import pulumiverse_fortios as fortios
trname = fortios.system.Admin("trname",
accprofile="super_admin",
accprofile_override="disable",
allow_remove_admin_session="enable",
force_password_change="disable",
guest_auth="disable",
hidden=0,
password="fdafdace",
password_expire="0000-00-00 00:00:00",
peer_auth="disable",
radius_vdom_override="disable",
remote_auth="disable",
two_factor="disable",
vdoms=[fortios.system.AdminVdomArgs(
name="root",
)],
wildcard="disable")
package main
import (
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
"github.com/pulumiverse/pulumi-fortios/sdk/go/fortios/system"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := system.NewAdmin(ctx, "trname", &system.AdminArgs{
Accprofile: pulumi.String("super_admin"),
AccprofileOverride: pulumi.String("disable"),
AllowRemoveAdminSession: pulumi.String("enable"),
ForcePasswordChange: pulumi.String("disable"),
GuestAuth: pulumi.String("disable"),
Hidden: pulumi.Int(0),
Password: pulumi.String("fdafdace"),
PasswordExpire: pulumi.String("0000-00-00 00:00:00"),
PeerAuth: pulumi.String("disable"),
RadiusVdomOverride: pulumi.String("disable"),
RemoteAuth: pulumi.String("disable"),
TwoFactor: pulumi.String("disable"),
Vdoms: system.AdminVdomArray{
&system.AdminVdomArgs{
Name: pulumi.String("root"),
},
},
Wildcard: pulumi.String("disable"),
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Fortios = Pulumiverse.Fortios;
return await Deployment.RunAsync(() =>
{
var trname = new Fortios.System.Admin("trname", new()
{
Accprofile = "super_admin",
AccprofileOverride = "disable",
AllowRemoveAdminSession = "enable",
ForcePasswordChange = "disable",
GuestAuth = "disable",
Hidden = 0,
Password = "fdafdace",
PasswordExpire = "0000-00-00 00:00:00",
PeerAuth = "disable",
RadiusVdomOverride = "disable",
RemoteAuth = "disable",
TwoFactor = "disable",
Vdoms = new[]
{
new Fortios.System.Inputs.AdminVdomArgs
{
Name = "root",
},
},
Wildcard = "disable",
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.fortios.system.Admin;
import com.pulumi.fortios.system.AdminArgs;
import com.pulumi.fortios.system.inputs.AdminVdomArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var trname = new Admin("trname", AdminArgs.builder()
.accprofile("super_admin")
.accprofileOverride("disable")
.allowRemoveAdminSession("enable")
.forcePasswordChange("disable")
.guestAuth("disable")
.hidden(0)
.password("fdafdace")
.passwordExpire("0000-00-00 00:00:00")
.peerAuth("disable")
.radiusVdomOverride("disable")
.remoteAuth("disable")
.twoFactor("disable")
.vdoms(AdminVdomArgs.builder()
.name("root")
.build())
.wildcard("disable")
.build());
}
}
resources:
trname:
type: fortios:system:Admin
properties:
accprofile: super_admin
accprofileOverride: disable
allowRemoveAdminSession: enable
forcePasswordChange: disable
guestAuth: disable
hidden: 0
password: fdafdace
passwordExpire: 0000-00-00 00:00:00
peerAuth: disable
radiusVdomOverride: disable
remoteAuth: disable
twoFactor: disable
vdoms:
- name: root
wildcard: disable
Create Admin Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new Admin(name: string, args?: AdminArgs, opts?: CustomResourceOptions);
@overload
def Admin(resource_name: str,
args: Optional[AdminArgs] = None,
opts: Optional[ResourceOptions] = None)
@overload
def Admin(resource_name: str,
opts: Optional[ResourceOptions] = None,
accprofile: Optional[str] = None,
accprofile_override: Optional[str] = None,
allow_remove_admin_session: Optional[str] = None,
comments: Optional[str] = None,
dynamic_sort_subtable: Optional[str] = None,
email_to: Optional[str] = None,
force_password_change: Optional[str] = None,
fortitoken: Optional[str] = None,
get_all_tables: Optional[str] = None,
guest_auth: Optional[str] = None,
guest_lang: Optional[str] = None,
guest_usergroups: Optional[Sequence[AdminGuestUsergroupArgs]] = None,
gui_dashboards: Optional[Sequence[AdminGuiDashboardArgs]] = None,
gui_global_menu_favorites: Optional[Sequence[AdminGuiGlobalMenuFavoriteArgs]] = None,
gui_new_feature_acknowledges: Optional[Sequence[AdminGuiNewFeatureAcknowledgeArgs]] = None,
gui_vdom_menu_favorites: Optional[Sequence[AdminGuiVdomMenuFavoriteArgs]] = None,
hidden: Optional[int] = None,
history0: Optional[str] = None,
history1: Optional[str] = None,
ip6_trusthost1: Optional[str] = None,
ip6_trusthost10: Optional[str] = None,
ip6_trusthost2: Optional[str] = None,
ip6_trusthost3: Optional[str] = None,
ip6_trusthost4: Optional[str] = None,
ip6_trusthost5: Optional[str] = None,
ip6_trusthost6: Optional[str] = None,
ip6_trusthost7: Optional[str] = None,
ip6_trusthost8: Optional[str] = None,
ip6_trusthost9: Optional[str] = None,
login_times: Optional[Sequence[AdminLoginTimeArgs]] = None,
name: Optional[str] = None,
password: Optional[str] = None,
password_expire: Optional[str] = None,
peer_auth: Optional[str] = None,
peer_group: Optional[str] = None,
radius_vdom_override: Optional[str] = None,
remote_auth: Optional[str] = None,
remote_group: Optional[str] = None,
schedule: Optional[str] = None,
sms_custom_server: Optional[str] = None,
sms_phone: Optional[str] = None,
sms_server: Optional[str] = None,
ssh_certificate: Optional[str] = None,
ssh_public_key1: Optional[str] = None,
ssh_public_key2: Optional[str] = None,
ssh_public_key3: Optional[str] = None,
trusthost1: Optional[str] = None,
trusthost10: Optional[str] = None,
trusthost2: Optional[str] = None,
trusthost3: Optional[str] = None,
trusthost4: Optional[str] = None,
trusthost5: Optional[str] = None,
trusthost6: Optional[str] = None,
trusthost7: Optional[str] = None,
trusthost8: Optional[str] = None,
trusthost9: Optional[str] = None,
two_factor: Optional[str] = None,
two_factor_authentication: Optional[str] = None,
two_factor_notification: Optional[str] = None,
vdom_override: Optional[str] = None,
vdomparam: Optional[str] = None,
vdoms: Optional[Sequence[AdminVdomArgs]] = None,
wildcard: Optional[str] = None)
func NewAdmin(ctx *Context, name string, args *AdminArgs, opts ...ResourceOption) (*Admin, error)
public Admin(string name, AdminArgs? args = null, CustomResourceOptions? opts = null)
type: fortios:system:Admin
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args AdminArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args AdminArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args AdminArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args AdminArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args AdminArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var adminResource = new Fortios.System.Admin("adminResource", new()
{
Accprofile = "string",
AccprofileOverride = "string",
AllowRemoveAdminSession = "string",
Comments = "string",
DynamicSortSubtable = "string",
EmailTo = "string",
ForcePasswordChange = "string",
Fortitoken = "string",
GetAllTables = "string",
GuestAuth = "string",
GuestLang = "string",
GuestUsergroups = new[]
{
new Fortios.System.Inputs.AdminGuestUsergroupArgs
{
Name = "string",
},
},
GuiDashboards = new[]
{
new Fortios.System.Inputs.AdminGuiDashboardArgs
{
Columns = 0,
Id = 0,
LayoutType = "string",
Name = "string",
Scope = "string",
Widgets = new[]
{
new Fortios.System.Inputs.AdminGuiDashboardWidgetArgs
{
FabricDevice = "string",
Filters = new[]
{
new Fortios.System.Inputs.AdminGuiDashboardWidgetFilterArgs
{
Id = 0,
Key = "string",
Value = "string",
},
},
Height = 0,
Id = 0,
Industry = "string",
Interface = "string",
Region = "string",
ReportBy = "string",
SortBy = "string",
Timeframe = "string",
Title = "string",
Type = "string",
Visualization = "string",
Width = 0,
XPos = 0,
YPos = 0,
},
},
},
},
GuiGlobalMenuFavorites = new[]
{
new Fortios.System.Inputs.AdminGuiGlobalMenuFavoriteArgs
{
Id = "string",
},
},
GuiNewFeatureAcknowledges = new[]
{
new Fortios.System.Inputs.AdminGuiNewFeatureAcknowledgeArgs
{
Id = "string",
},
},
GuiVdomMenuFavorites = new[]
{
new Fortios.System.Inputs.AdminGuiVdomMenuFavoriteArgs
{
Id = "string",
},
},
Hidden = 0,
History0 = "string",
History1 = "string",
Ip6Trusthost1 = "string",
Ip6Trusthost10 = "string",
Ip6Trusthost2 = "string",
Ip6Trusthost3 = "string",
Ip6Trusthost4 = "string",
Ip6Trusthost5 = "string",
Ip6Trusthost6 = "string",
Ip6Trusthost7 = "string",
Ip6Trusthost8 = "string",
Ip6Trusthost9 = "string",
LoginTimes = new[]
{
new Fortios.System.Inputs.AdminLoginTimeArgs
{
LastFailedLogin = "string",
LastLogin = "string",
UsrName = "string",
},
},
Name = "string",
Password = "string",
PasswordExpire = "string",
PeerAuth = "string",
PeerGroup = "string",
RadiusVdomOverride = "string",
RemoteAuth = "string",
RemoteGroup = "string",
Schedule = "string",
SmsCustomServer = "string",
SmsPhone = "string",
SmsServer = "string",
SshCertificate = "string",
SshPublicKey1 = "string",
SshPublicKey2 = "string",
SshPublicKey3 = "string",
Trusthost1 = "string",
Trusthost10 = "string",
Trusthost2 = "string",
Trusthost3 = "string",
Trusthost4 = "string",
Trusthost5 = "string",
Trusthost6 = "string",
Trusthost7 = "string",
Trusthost8 = "string",
Trusthost9 = "string",
TwoFactor = "string",
TwoFactorAuthentication = "string",
TwoFactorNotification = "string",
VdomOverride = "string",
Vdomparam = "string",
Vdoms = new[]
{
new Fortios.System.Inputs.AdminVdomArgs
{
Name = "string",
},
},
Wildcard = "string",
});
example, err := system.NewAdmin(ctx, "adminResource", &system.AdminArgs{
Accprofile: pulumi.String("string"),
AccprofileOverride: pulumi.String("string"),
AllowRemoveAdminSession: pulumi.String("string"),
Comments: pulumi.String("string"),
DynamicSortSubtable: pulumi.String("string"),
EmailTo: pulumi.String("string"),
ForcePasswordChange: pulumi.String("string"),
Fortitoken: pulumi.String("string"),
GetAllTables: pulumi.String("string"),
GuestAuth: pulumi.String("string"),
GuestLang: pulumi.String("string"),
GuestUsergroups: system.AdminGuestUsergroupArray{
&system.AdminGuestUsergroupArgs{
Name: pulumi.String("string"),
},
},
GuiDashboards: system.AdminGuiDashboardArray{
&system.AdminGuiDashboardArgs{
Columns: pulumi.Int(0),
Id: pulumi.Int(0),
LayoutType: pulumi.String("string"),
Name: pulumi.String("string"),
Scope: pulumi.String("string"),
Widgets: system.AdminGuiDashboardWidgetArray{
&system.AdminGuiDashboardWidgetArgs{
FabricDevice: pulumi.String("string"),
Filters: system.AdminGuiDashboardWidgetFilterArray{
&system.AdminGuiDashboardWidgetFilterArgs{
Id: pulumi.Int(0),
Key: pulumi.String("string"),
Value: pulumi.String("string"),
},
},
Height: pulumi.Int(0),
Id: pulumi.Int(0),
Industry: pulumi.String("string"),
Interface: pulumi.String("string"),
Region: pulumi.String("string"),
ReportBy: pulumi.String("string"),
SortBy: pulumi.String("string"),
Timeframe: pulumi.String("string"),
Title: pulumi.String("string"),
Type: pulumi.String("string"),
Visualization: pulumi.String("string"),
Width: pulumi.Int(0),
XPos: pulumi.Int(0),
YPos: pulumi.Int(0),
},
},
},
},
GuiGlobalMenuFavorites: system.AdminGuiGlobalMenuFavoriteArray{
&system.AdminGuiGlobalMenuFavoriteArgs{
Id: pulumi.String("string"),
},
},
GuiNewFeatureAcknowledges: system.AdminGuiNewFeatureAcknowledgeArray{
&system.AdminGuiNewFeatureAcknowledgeArgs{
Id: pulumi.String("string"),
},
},
GuiVdomMenuFavorites: system.AdminGuiVdomMenuFavoriteArray{
&system.AdminGuiVdomMenuFavoriteArgs{
Id: pulumi.String("string"),
},
},
Hidden: pulumi.Int(0),
History0: pulumi.String("string"),
History1: pulumi.String("string"),
Ip6Trusthost1: pulumi.String("string"),
Ip6Trusthost10: pulumi.String("string"),
Ip6Trusthost2: pulumi.String("string"),
Ip6Trusthost3: pulumi.String("string"),
Ip6Trusthost4: pulumi.String("string"),
Ip6Trusthost5: pulumi.String("string"),
Ip6Trusthost6: pulumi.String("string"),
Ip6Trusthost7: pulumi.String("string"),
Ip6Trusthost8: pulumi.String("string"),
Ip6Trusthost9: pulumi.String("string"),
LoginTimes: system.AdminLoginTimeArray{
&system.AdminLoginTimeArgs{
LastFailedLogin: pulumi.String("string"),
LastLogin: pulumi.String("string"),
UsrName: pulumi.String("string"),
},
},
Name: pulumi.String("string"),
Password: pulumi.String("string"),
PasswordExpire: pulumi.String("string"),
PeerAuth: pulumi.String("string"),
PeerGroup: pulumi.String("string"),
RadiusVdomOverride: pulumi.String("string"),
RemoteAuth: pulumi.String("string"),
RemoteGroup: pulumi.String("string"),
Schedule: pulumi.String("string"),
SmsCustomServer: pulumi.String("string"),
SmsPhone: pulumi.String("string"),
SmsServer: pulumi.String("string"),
SshCertificate: pulumi.String("string"),
SshPublicKey1: pulumi.String("string"),
SshPublicKey2: pulumi.String("string"),
SshPublicKey3: pulumi.String("string"),
Trusthost1: pulumi.String("string"),
Trusthost10: pulumi.String("string"),
Trusthost2: pulumi.String("string"),
Trusthost3: pulumi.String("string"),
Trusthost4: pulumi.String("string"),
Trusthost5: pulumi.String("string"),
Trusthost6: pulumi.String("string"),
Trusthost7: pulumi.String("string"),
Trusthost8: pulumi.String("string"),
Trusthost9: pulumi.String("string"),
TwoFactor: pulumi.String("string"),
TwoFactorAuthentication: pulumi.String("string"),
TwoFactorNotification: pulumi.String("string"),
VdomOverride: pulumi.String("string"),
Vdomparam: pulumi.String("string"),
Vdoms: system.AdminVdomArray{
&system.AdminVdomArgs{
Name: pulumi.String("string"),
},
},
Wildcard: pulumi.String("string"),
})
var adminResource = new Admin("adminResource", AdminArgs.builder()
.accprofile("string")
.accprofileOverride("string")
.allowRemoveAdminSession("string")
.comments("string")
.dynamicSortSubtable("string")
.emailTo("string")
.forcePasswordChange("string")
.fortitoken("string")
.getAllTables("string")
.guestAuth("string")
.guestLang("string")
.guestUsergroups(AdminGuestUsergroupArgs.builder()
.name("string")
.build())
.guiDashboards(AdminGuiDashboardArgs.builder()
.columns(0)
.id(0)
.layoutType("string")
.name("string")
.scope("string")
.widgets(AdminGuiDashboardWidgetArgs.builder()
.fabricDevice("string")
.filters(AdminGuiDashboardWidgetFilterArgs.builder()
.id(0)
.key("string")
.value("string")
.build())
.height(0)
.id(0)
.industry("string")
.interface_("string")
.region("string")
.reportBy("string")
.sortBy("string")
.timeframe("string")
.title("string")
.type("string")
.visualization("string")
.width(0)
.xPos(0)
.yPos(0)
.build())
.build())
.guiGlobalMenuFavorites(AdminGuiGlobalMenuFavoriteArgs.builder()
.id("string")
.build())
.guiNewFeatureAcknowledges(AdminGuiNewFeatureAcknowledgeArgs.builder()
.id("string")
.build())
.guiVdomMenuFavorites(AdminGuiVdomMenuFavoriteArgs.builder()
.id("string")
.build())
.hidden(0)
.history0("string")
.history1("string")
.ip6Trusthost1("string")
.ip6Trusthost10("string")
.ip6Trusthost2("string")
.ip6Trusthost3("string")
.ip6Trusthost4("string")
.ip6Trusthost5("string")
.ip6Trusthost6("string")
.ip6Trusthost7("string")
.ip6Trusthost8("string")
.ip6Trusthost9("string")
.loginTimes(AdminLoginTimeArgs.builder()
.lastFailedLogin("string")
.lastLogin("string")
.usrName("string")
.build())
.name("string")
.password("string")
.passwordExpire("string")
.peerAuth("string")
.peerGroup("string")
.radiusVdomOverride("string")
.remoteAuth("string")
.remoteGroup("string")
.schedule("string")
.smsCustomServer("string")
.smsPhone("string")
.smsServer("string")
.sshCertificate("string")
.sshPublicKey1("string")
.sshPublicKey2("string")
.sshPublicKey3("string")
.trusthost1("string")
.trusthost10("string")
.trusthost2("string")
.trusthost3("string")
.trusthost4("string")
.trusthost5("string")
.trusthost6("string")
.trusthost7("string")
.trusthost8("string")
.trusthost9("string")
.twoFactor("string")
.twoFactorAuthentication("string")
.twoFactorNotification("string")
.vdomOverride("string")
.vdomparam("string")
.vdoms(AdminVdomArgs.builder()
.name("string")
.build())
.wildcard("string")
.build());
admin_resource = fortios.system.Admin("adminResource",
accprofile="string",
accprofile_override="string",
allow_remove_admin_session="string",
comments="string",
dynamic_sort_subtable="string",
email_to="string",
force_password_change="string",
fortitoken="string",
get_all_tables="string",
guest_auth="string",
guest_lang="string",
guest_usergroups=[{
"name": "string",
}],
gui_dashboards=[{
"columns": 0,
"id": 0,
"layout_type": "string",
"name": "string",
"scope": "string",
"widgets": [{
"fabric_device": "string",
"filters": [{
"id": 0,
"key": "string",
"value": "string",
}],
"height": 0,
"id": 0,
"industry": "string",
"interface": "string",
"region": "string",
"report_by": "string",
"sort_by": "string",
"timeframe": "string",
"title": "string",
"type": "string",
"visualization": "string",
"width": 0,
"x_pos": 0,
"y_pos": 0,
}],
}],
gui_global_menu_favorites=[{
"id": "string",
}],
gui_new_feature_acknowledges=[{
"id": "string",
}],
gui_vdom_menu_favorites=[{
"id": "string",
}],
hidden=0,
history0="string",
history1="string",
ip6_trusthost1="string",
ip6_trusthost10="string",
ip6_trusthost2="string",
ip6_trusthost3="string",
ip6_trusthost4="string",
ip6_trusthost5="string",
ip6_trusthost6="string",
ip6_trusthost7="string",
ip6_trusthost8="string",
ip6_trusthost9="string",
login_times=[{
"last_failed_login": "string",
"last_login": "string",
"usr_name": "string",
}],
name="string",
password="string",
password_expire="string",
peer_auth="string",
peer_group="string",
radius_vdom_override="string",
remote_auth="string",
remote_group="string",
schedule="string",
sms_custom_server="string",
sms_phone="string",
sms_server="string",
ssh_certificate="string",
ssh_public_key1="string",
ssh_public_key2="string",
ssh_public_key3="string",
trusthost1="string",
trusthost10="string",
trusthost2="string",
trusthost3="string",
trusthost4="string",
trusthost5="string",
trusthost6="string",
trusthost7="string",
trusthost8="string",
trusthost9="string",
two_factor="string",
two_factor_authentication="string",
two_factor_notification="string",
vdom_override="string",
vdomparam="string",
vdoms=[{
"name": "string",
}],
wildcard="string")
const adminResource = new fortios.system.Admin("adminResource", {
accprofile: "string",
accprofileOverride: "string",
allowRemoveAdminSession: "string",
comments: "string",
dynamicSortSubtable: "string",
emailTo: "string",
forcePasswordChange: "string",
fortitoken: "string",
getAllTables: "string",
guestAuth: "string",
guestLang: "string",
guestUsergroups: [{
name: "string",
}],
guiDashboards: [{
columns: 0,
id: 0,
layoutType: "string",
name: "string",
scope: "string",
widgets: [{
fabricDevice: "string",
filters: [{
id: 0,
key: "string",
value: "string",
}],
height: 0,
id: 0,
industry: "string",
"interface": "string",
region: "string",
reportBy: "string",
sortBy: "string",
timeframe: "string",
title: "string",
type: "string",
visualization: "string",
width: 0,
xPos: 0,
yPos: 0,
}],
}],
guiGlobalMenuFavorites: [{
id: "string",
}],
guiNewFeatureAcknowledges: [{
id: "string",
}],
guiVdomMenuFavorites: [{
id: "string",
}],
hidden: 0,
history0: "string",
history1: "string",
ip6Trusthost1: "string",
ip6Trusthost10: "string",
ip6Trusthost2: "string",
ip6Trusthost3: "string",
ip6Trusthost4: "string",
ip6Trusthost5: "string",
ip6Trusthost6: "string",
ip6Trusthost7: "string",
ip6Trusthost8: "string",
ip6Trusthost9: "string",
loginTimes: [{
lastFailedLogin: "string",
lastLogin: "string",
usrName: "string",
}],
name: "string",
password: "string",
passwordExpire: "string",
peerAuth: "string",
peerGroup: "string",
radiusVdomOverride: "string",
remoteAuth: "string",
remoteGroup: "string",
schedule: "string",
smsCustomServer: "string",
smsPhone: "string",
smsServer: "string",
sshCertificate: "string",
sshPublicKey1: "string",
sshPublicKey2: "string",
sshPublicKey3: "string",
trusthost1: "string",
trusthost10: "string",
trusthost2: "string",
trusthost3: "string",
trusthost4: "string",
trusthost5: "string",
trusthost6: "string",
trusthost7: "string",
trusthost8: "string",
trusthost9: "string",
twoFactor: "string",
twoFactorAuthentication: "string",
twoFactorNotification: "string",
vdomOverride: "string",
vdomparam: "string",
vdoms: [{
name: "string",
}],
wildcard: "string",
});
type: fortios:system:Admin
properties:
accprofile: string
accprofileOverride: string
allowRemoveAdminSession: string
comments: string
dynamicSortSubtable: string
emailTo: string
forcePasswordChange: string
fortitoken: string
getAllTables: string
guestAuth: string
guestLang: string
guestUsergroups:
- name: string
guiDashboards:
- columns: 0
id: 0
layoutType: string
name: string
scope: string
widgets:
- fabricDevice: string
filters:
- id: 0
key: string
value: string
height: 0
id: 0
industry: string
interface: string
region: string
reportBy: string
sortBy: string
timeframe: string
title: string
type: string
visualization: string
width: 0
xPos: 0
yPos: 0
guiGlobalMenuFavorites:
- id: string
guiNewFeatureAcknowledges:
- id: string
guiVdomMenuFavorites:
- id: string
hidden: 0
history0: string
history1: string
ip6Trusthost1: string
ip6Trusthost2: string
ip6Trusthost3: string
ip6Trusthost4: string
ip6Trusthost5: string
ip6Trusthost6: string
ip6Trusthost7: string
ip6Trusthost8: string
ip6Trusthost9: string
ip6Trusthost10: string
loginTimes:
- lastFailedLogin: string
lastLogin: string
usrName: string
name: string
password: string
passwordExpire: string
peerAuth: string
peerGroup: string
radiusVdomOverride: string
remoteAuth: string
remoteGroup: string
schedule: string
smsCustomServer: string
smsPhone: string
smsServer: string
sshCertificate: string
sshPublicKey1: string
sshPublicKey2: string
sshPublicKey3: string
trusthost1: string
trusthost2: string
trusthost3: string
trusthost4: string
trusthost5: string
trusthost6: string
trusthost7: string
trusthost8: string
trusthost9: string
trusthost10: string
twoFactor: string
twoFactorAuthentication: string
twoFactorNotification: string
vdomOverride: string
vdomparam: string
vdoms:
- name: string
wildcard: string
Admin Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The Admin resource accepts the following input properties:
- Accprofile string
- Access profile for this administrator. Access profiles control administrator access to FortiGate features.
- Accprofile
Override string - Enable to use the name of an access profile provided by the remote authentication server to control the FortiGate features that this administrator can access. Valid values:
enable
,disable
. - Allow
Remove stringAdmin Session - Enable/disable allow admin session to be removed by privileged admin users. Valid values:
enable
,disable
. - Comments string
- Comment.
- Dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- Email
To string - This administrator's email address.
- Force
Password stringChange - Enable/disable force password change on next login. Valid values:
enable
,disable
. - Fortitoken string
- This administrator's FortiToken serial number.
- Get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- Guest
Auth string - Enable/disable guest authentication. Valid values:
disable
,enable
. - Guest
Lang string - Guest management portal language.
- Guest
Usergroups List<Pulumiverse.Fortios. System. Inputs. Admin Guest Usergroup> - Select guest user groups. The structure of
guest_usergroups
block is documented below. - Gui
Dashboards List<Pulumiverse.Fortios. System. Inputs. Admin Gui Dashboard> - GUI dashboards. The structure of
gui_dashboard
block is documented below. - List<Pulumiverse.
Fortios. System. Inputs. Admin Gui Global Menu Favorite> - Favorite GUI menu IDs for the global VDOM. The structure of
gui_global_menu_favorites
block is documented below. - Gui
New List<Pulumiverse.Feature Acknowledges Fortios. System. Inputs. Admin Gui New Feature Acknowledge> - Acknowledgement of new features. The structure of
gui_new_feature_acknowledge
block is documented below. - List<Pulumiverse.
Fortios. System. Inputs. Admin Gui Vdom Menu Favorite> - Favorite GUI menu IDs for VDOMs. The structure of
gui_vdom_menu_favorites
block is documented below. - int
- Admin user hidden attribute.
- History0 string
- history0
- History1 string
- history1
- Ip6Trusthost1 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- Ip6Trusthost10 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- Ip6Trusthost2 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- Ip6Trusthost3 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- Ip6Trusthost4 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- Ip6Trusthost5 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- Ip6Trusthost6 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- Ip6Trusthost7 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- Ip6Trusthost8 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- Ip6Trusthost9 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- Login
Times List<Pulumiverse.Fortios. System. Inputs. Admin Login Time> - Record user login time. The structure of
login_time
block is documented below. - Name string
- User name.
- Password string
- Admin user password. :warning: Due security reason and API's design, you need to use Generic resource with the monitor API /api/v2/monitor/system/change-password/select to update the password for existing admin user.
Create
andDelete
operation will works using this resource. - Password
Expire string - Password expire time.
- Peer
Auth string - Set to enable peer certificate authentication (for HTTPS admin access). Valid values:
enable
,disable
. - Peer
Group string - Name of peer group defined under config user group which has PKI members. Used for peer certificate authentication (for HTTPS admin access).
- Radius
Vdom stringOverride - Enable to use the names of VDOMs provided by the remote authentication server to control the VDOMs that this administrator can access. Valid values:
enable
,disable
. - Remote
Auth string - Enable/disable authentication using a remote RADIUS, LDAP, or TACACS+ server. Valid values:
enable
,disable
. - Remote
Group string - User group name used for remote auth.
- Schedule string
- Firewall schedule used to restrict when the administrator can log in. No schedule means no restrictions.
- Sms
Custom stringServer - Custom SMS server to send SMS messages to.
- Sms
Phone string - Phone number on which the administrator receives SMS messages.
- Sms
Server string - Send SMS messages using the FortiGuard SMS server or a custom server. Valid values:
fortiguard
,custom
. - Ssh
Certificate string - Select the certificate to be used by the FortiGate for authentication with an SSH client.
- Ssh
Public stringKey1 - Public key of an SSH client. The client is authenticated without being asked for credentials. Create the public-private key pair in the SSH client application.
- Ssh
Public stringKey2 - Public key of an SSH client. The client is authenticated without being asked for credentials. Create the public-private key pair in the SSH client application.
- Ssh
Public stringKey3 - Public key of an SSH client. The client is authenticated without being asked for credentials. Create the public-private key pair in the SSH client application.
- Trusthost1 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- Trusthost10 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- Trusthost2 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- Trusthost3 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- Trusthost4 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- Trusthost5 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- Trusthost6 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- Trusthost7 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- Trusthost8 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- Trusthost9 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- Two
Factor string - Enable/disable two-factor authentication.
- Two
Factor stringAuthentication - Authentication method by FortiToken Cloud. Valid values:
fortitoken
,email
,sms
. - Two
Factor stringNotification - Notification method for user activation by FortiToken Cloud. Valid values:
email
,sms
. - Vdom
Override string - Enable to use the names of VDOMs provided by the remote authentication server to control the VDOMs that this administrator can access. Valid values:
enable
,disable
. - Vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- Vdoms
List<Pulumiverse.
Fortios. System. Inputs. Admin Vdom> - Virtual domain(s) that the administrator can access. The structure of
vdom
block is documented below. - Wildcard string
- Enable/disable wildcard RADIUS authentication. Valid values:
enable
,disable
.
- Accprofile string
- Access profile for this administrator. Access profiles control administrator access to FortiGate features.
- Accprofile
Override string - Enable to use the name of an access profile provided by the remote authentication server to control the FortiGate features that this administrator can access. Valid values:
enable
,disable
. - Allow
Remove stringAdmin Session - Enable/disable allow admin session to be removed by privileged admin users. Valid values:
enable
,disable
. - Comments string
- Comment.
- Dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- Email
To string - This administrator's email address.
- Force
Password stringChange - Enable/disable force password change on next login. Valid values:
enable
,disable
. - Fortitoken string
- This administrator's FortiToken serial number.
- Get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- Guest
Auth string - Enable/disable guest authentication. Valid values:
disable
,enable
. - Guest
Lang string - Guest management portal language.
- Guest
Usergroups []AdminGuest Usergroup Args - Select guest user groups. The structure of
guest_usergroups
block is documented below. - Gui
Dashboards []AdminGui Dashboard Args - GUI dashboards. The structure of
gui_dashboard
block is documented below. - []Admin
Gui Global Menu Favorite Args - Favorite GUI menu IDs for the global VDOM. The structure of
gui_global_menu_favorites
block is documented below. - Gui
New []AdminFeature Acknowledges Gui New Feature Acknowledge Args - Acknowledgement of new features. The structure of
gui_new_feature_acknowledge
block is documented below. - []Admin
Gui Vdom Menu Favorite Args - Favorite GUI menu IDs for VDOMs. The structure of
gui_vdom_menu_favorites
block is documented below. - int
- Admin user hidden attribute.
- History0 string
- history0
- History1 string
- history1
- Ip6Trusthost1 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- Ip6Trusthost10 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- Ip6Trusthost2 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- Ip6Trusthost3 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- Ip6Trusthost4 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- Ip6Trusthost5 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- Ip6Trusthost6 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- Ip6Trusthost7 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- Ip6Trusthost8 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- Ip6Trusthost9 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- Login
Times []AdminLogin Time Args - Record user login time. The structure of
login_time
block is documented below. - Name string
- User name.
- Password string
- Admin user password. :warning: Due security reason and API's design, you need to use Generic resource with the monitor API /api/v2/monitor/system/change-password/select to update the password for existing admin user.
Create
andDelete
operation will works using this resource. - Password
Expire string - Password expire time.
- Peer
Auth string - Set to enable peer certificate authentication (for HTTPS admin access). Valid values:
enable
,disable
. - Peer
Group string - Name of peer group defined under config user group which has PKI members. Used for peer certificate authentication (for HTTPS admin access).
- Radius
Vdom stringOverride - Enable to use the names of VDOMs provided by the remote authentication server to control the VDOMs that this administrator can access. Valid values:
enable
,disable
. - Remote
Auth string - Enable/disable authentication using a remote RADIUS, LDAP, or TACACS+ server. Valid values:
enable
,disable
. - Remote
Group string - User group name used for remote auth.
- Schedule string
- Firewall schedule used to restrict when the administrator can log in. No schedule means no restrictions.
- Sms
Custom stringServer - Custom SMS server to send SMS messages to.
- Sms
Phone string - Phone number on which the administrator receives SMS messages.
- Sms
Server string - Send SMS messages using the FortiGuard SMS server or a custom server. Valid values:
fortiguard
,custom
. - Ssh
Certificate string - Select the certificate to be used by the FortiGate for authentication with an SSH client.
- Ssh
Public stringKey1 - Public key of an SSH client. The client is authenticated without being asked for credentials. Create the public-private key pair in the SSH client application.
- Ssh
Public stringKey2 - Public key of an SSH client. The client is authenticated without being asked for credentials. Create the public-private key pair in the SSH client application.
- Ssh
Public stringKey3 - Public key of an SSH client. The client is authenticated without being asked for credentials. Create the public-private key pair in the SSH client application.
- Trusthost1 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- Trusthost10 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- Trusthost2 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- Trusthost3 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- Trusthost4 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- Trusthost5 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- Trusthost6 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- Trusthost7 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- Trusthost8 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- Trusthost9 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- Two
Factor string - Enable/disable two-factor authentication.
- Two
Factor stringAuthentication - Authentication method by FortiToken Cloud. Valid values:
fortitoken
,email
,sms
. - Two
Factor stringNotification - Notification method for user activation by FortiToken Cloud. Valid values:
email
,sms
. - Vdom
Override string - Enable to use the names of VDOMs provided by the remote authentication server to control the VDOMs that this administrator can access. Valid values:
enable
,disable
. - Vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- Vdoms
[]Admin
Vdom Args - Virtual domain(s) that the administrator can access. The structure of
vdom
block is documented below. - Wildcard string
- Enable/disable wildcard RADIUS authentication. Valid values:
enable
,disable
.
- accprofile String
- Access profile for this administrator. Access profiles control administrator access to FortiGate features.
- accprofile
Override String - Enable to use the name of an access profile provided by the remote authentication server to control the FortiGate features that this administrator can access. Valid values:
enable
,disable
. - allow
Remove StringAdmin Session - Enable/disable allow admin session to be removed by privileged admin users. Valid values:
enable
,disable
. - comments String
- Comment.
- dynamic
Sort StringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- email
To String - This administrator's email address.
- force
Password StringChange - Enable/disable force password change on next login. Valid values:
enable
,disable
. - fortitoken String
- This administrator's FortiToken serial number.
- get
All StringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- guest
Auth String - Enable/disable guest authentication. Valid values:
disable
,enable
. - guest
Lang String - Guest management portal language.
- guest
Usergroups List<AdminGuest Usergroup> - Select guest user groups. The structure of
guest_usergroups
block is documented below. - gui
Dashboards List<AdminGui Dashboard> - GUI dashboards. The structure of
gui_dashboard
block is documented below. - List<Admin
Gui Global Menu Favorite> - Favorite GUI menu IDs for the global VDOM. The structure of
gui_global_menu_favorites
block is documented below. - gui
New List<AdminFeature Acknowledges Gui New Feature Acknowledge> - Acknowledgement of new features. The structure of
gui_new_feature_acknowledge
block is documented below. - List<Admin
Gui Vdom Menu Favorite> - Favorite GUI menu IDs for VDOMs. The structure of
gui_vdom_menu_favorites
block is documented below. - Integer
- Admin user hidden attribute.
- history0 String
- history0
- history1 String
- history1
- ip6Trusthost1 String
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost10 String
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost2 String
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost3 String
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost4 String
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost5 String
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost6 String
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost7 String
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost8 String
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost9 String
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- login
Times List<AdminLogin Time> - Record user login time. The structure of
login_time
block is documented below. - name String
- User name.
- password String
- Admin user password. :warning: Due security reason and API's design, you need to use Generic resource with the monitor API /api/v2/monitor/system/change-password/select to update the password for existing admin user.
Create
andDelete
operation will works using this resource. - password
Expire String - Password expire time.
- peer
Auth String - Set to enable peer certificate authentication (for HTTPS admin access). Valid values:
enable
,disable
. - peer
Group String - Name of peer group defined under config user group which has PKI members. Used for peer certificate authentication (for HTTPS admin access).
- radius
Vdom StringOverride - Enable to use the names of VDOMs provided by the remote authentication server to control the VDOMs that this administrator can access. Valid values:
enable
,disable
. - remote
Auth String - Enable/disable authentication using a remote RADIUS, LDAP, or TACACS+ server. Valid values:
enable
,disable
. - remote
Group String - User group name used for remote auth.
- schedule String
- Firewall schedule used to restrict when the administrator can log in. No schedule means no restrictions.
- sms
Custom StringServer - Custom SMS server to send SMS messages to.
- sms
Phone String - Phone number on which the administrator receives SMS messages.
- sms
Server String - Send SMS messages using the FortiGuard SMS server or a custom server. Valid values:
fortiguard
,custom
. - ssh
Certificate String - Select the certificate to be used by the FortiGate for authentication with an SSH client.
- ssh
Public StringKey1 - Public key of an SSH client. The client is authenticated without being asked for credentials. Create the public-private key pair in the SSH client application.
- ssh
Public StringKey2 - Public key of an SSH client. The client is authenticated without being asked for credentials. Create the public-private key pair in the SSH client application.
- ssh
Public StringKey3 - Public key of an SSH client. The client is authenticated without being asked for credentials. Create the public-private key pair in the SSH client application.
- trusthost1 String
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost10 String
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost2 String
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost3 String
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost4 String
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost5 String
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost6 String
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost7 String
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost8 String
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost9 String
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- two
Factor String - Enable/disable two-factor authentication.
- two
Factor StringAuthentication - Authentication method by FortiToken Cloud. Valid values:
fortitoken
,email
,sms
. - two
Factor StringNotification - Notification method for user activation by FortiToken Cloud. Valid values:
email
,sms
. - vdom
Override String - Enable to use the names of VDOMs provided by the remote authentication server to control the VDOMs that this administrator can access. Valid values:
enable
,disable
. - vdomparam String
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- vdoms
List<Admin
Vdom> - Virtual domain(s) that the administrator can access. The structure of
vdom
block is documented below. - wildcard String
- Enable/disable wildcard RADIUS authentication. Valid values:
enable
,disable
.
- accprofile string
- Access profile for this administrator. Access profiles control administrator access to FortiGate features.
- accprofile
Override string - Enable to use the name of an access profile provided by the remote authentication server to control the FortiGate features that this administrator can access. Valid values:
enable
,disable
. - allow
Remove stringAdmin Session - Enable/disable allow admin session to be removed by privileged admin users. Valid values:
enable
,disable
. - comments string
- Comment.
- dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- email
To string - This administrator's email address.
- force
Password stringChange - Enable/disable force password change on next login. Valid values:
enable
,disable
. - fortitoken string
- This administrator's FortiToken serial number.
- get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- guest
Auth string - Enable/disable guest authentication. Valid values:
disable
,enable
. - guest
Lang string - Guest management portal language.
- guest
Usergroups AdminGuest Usergroup[] - Select guest user groups. The structure of
guest_usergroups
block is documented below. - gui
Dashboards AdminGui Dashboard[] - GUI dashboards. The structure of
gui_dashboard
block is documented below. - Admin
Gui Global Menu Favorite[] - Favorite GUI menu IDs for the global VDOM. The structure of
gui_global_menu_favorites
block is documented below. - gui
New AdminFeature Acknowledges Gui New Feature Acknowledge[] - Acknowledgement of new features. The structure of
gui_new_feature_acknowledge
block is documented below. - Admin
Gui Vdom Menu Favorite[] - Favorite GUI menu IDs for VDOMs. The structure of
gui_vdom_menu_favorites
block is documented below. - number
- Admin user hidden attribute.
- history0 string
- history0
- history1 string
- history1
- ip6Trusthost1 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost10 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost2 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost3 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost4 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost5 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost6 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost7 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost8 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost9 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- login
Times AdminLogin Time[] - Record user login time. The structure of
login_time
block is documented below. - name string
- User name.
- password string
- Admin user password. :warning: Due security reason and API's design, you need to use Generic resource with the monitor API /api/v2/monitor/system/change-password/select to update the password for existing admin user.
Create
andDelete
operation will works using this resource. - password
Expire string - Password expire time.
- peer
Auth string - Set to enable peer certificate authentication (for HTTPS admin access). Valid values:
enable
,disable
. - peer
Group string - Name of peer group defined under config user group which has PKI members. Used for peer certificate authentication (for HTTPS admin access).
- radius
Vdom stringOverride - Enable to use the names of VDOMs provided by the remote authentication server to control the VDOMs that this administrator can access. Valid values:
enable
,disable
. - remote
Auth string - Enable/disable authentication using a remote RADIUS, LDAP, or TACACS+ server. Valid values:
enable
,disable
. - remote
Group string - User group name used for remote auth.
- schedule string
- Firewall schedule used to restrict when the administrator can log in. No schedule means no restrictions.
- sms
Custom stringServer - Custom SMS server to send SMS messages to.
- sms
Phone string - Phone number on which the administrator receives SMS messages.
- sms
Server string - Send SMS messages using the FortiGuard SMS server or a custom server. Valid values:
fortiguard
,custom
. - ssh
Certificate string - Select the certificate to be used by the FortiGate for authentication with an SSH client.
- ssh
Public stringKey1 - Public key of an SSH client. The client is authenticated without being asked for credentials. Create the public-private key pair in the SSH client application.
- ssh
Public stringKey2 - Public key of an SSH client. The client is authenticated without being asked for credentials. Create the public-private key pair in the SSH client application.
- ssh
Public stringKey3 - Public key of an SSH client. The client is authenticated without being asked for credentials. Create the public-private key pair in the SSH client application.
- trusthost1 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost10 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost2 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost3 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost4 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost5 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost6 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost7 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost8 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost9 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- two
Factor string - Enable/disable two-factor authentication.
- two
Factor stringAuthentication - Authentication method by FortiToken Cloud. Valid values:
fortitoken
,email
,sms
. - two
Factor stringNotification - Notification method for user activation by FortiToken Cloud. Valid values:
email
,sms
. - vdom
Override string - Enable to use the names of VDOMs provided by the remote authentication server to control the VDOMs that this administrator can access. Valid values:
enable
,disable
. - vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- vdoms
Admin
Vdom[] - Virtual domain(s) that the administrator can access. The structure of
vdom
block is documented below. - wildcard string
- Enable/disable wildcard RADIUS authentication. Valid values:
enable
,disable
.
- accprofile str
- Access profile for this administrator. Access profiles control administrator access to FortiGate features.
- accprofile_
override str - Enable to use the name of an access profile provided by the remote authentication server to control the FortiGate features that this administrator can access. Valid values:
enable
,disable
. - allow_
remove_ stradmin_ session - Enable/disable allow admin session to be removed by privileged admin users. Valid values:
enable
,disable
. - comments str
- Comment.
- dynamic_
sort_ strsubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- email_
to str - This administrator's email address.
- force_
password_ strchange - Enable/disable force password change on next login. Valid values:
enable
,disable
. - fortitoken str
- This administrator's FortiToken serial number.
- get_
all_ strtables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- guest_
auth str - Enable/disable guest authentication. Valid values:
disable
,enable
. - guest_
lang str - Guest management portal language.
- guest_
usergroups Sequence[AdminGuest Usergroup Args] - Select guest user groups. The structure of
guest_usergroups
block is documented below. - gui_
dashboards Sequence[AdminGui Dashboard Args] - GUI dashboards. The structure of
gui_dashboard
block is documented below. - Sequence[Admin
Gui Global Menu Favorite Args] - Favorite GUI menu IDs for the global VDOM. The structure of
gui_global_menu_favorites
block is documented below. - gui_
new_ Sequence[Adminfeature_ acknowledges Gui New Feature Acknowledge Args] - Acknowledgement of new features. The structure of
gui_new_feature_acknowledge
block is documented below. - Sequence[Admin
Gui Vdom Menu Favorite Args] - Favorite GUI menu IDs for VDOMs. The structure of
gui_vdom_menu_favorites
block is documented below. - int
- Admin user hidden attribute.
- history0 str
- history0
- history1 str
- history1
- ip6_
trusthost1 str - Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6_
trusthost10 str - Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6_
trusthost2 str - Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6_
trusthost3 str - Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6_
trusthost4 str - Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6_
trusthost5 str - Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6_
trusthost6 str - Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6_
trusthost7 str - Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6_
trusthost8 str - Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6_
trusthost9 str - Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- login_
times Sequence[AdminLogin Time Args] - Record user login time. The structure of
login_time
block is documented below. - name str
- User name.
- password str
- Admin user password. :warning: Due security reason and API's design, you need to use Generic resource with the monitor API /api/v2/monitor/system/change-password/select to update the password for existing admin user.
Create
andDelete
operation will works using this resource. - password_
expire str - Password expire time.
- peer_
auth str - Set to enable peer certificate authentication (for HTTPS admin access). Valid values:
enable
,disable
. - peer_
group str - Name of peer group defined under config user group which has PKI members. Used for peer certificate authentication (for HTTPS admin access).
- radius_
vdom_ stroverride - Enable to use the names of VDOMs provided by the remote authentication server to control the VDOMs that this administrator can access. Valid values:
enable
,disable
. - remote_
auth str - Enable/disable authentication using a remote RADIUS, LDAP, or TACACS+ server. Valid values:
enable
,disable
. - remote_
group str - User group name used for remote auth.
- schedule str
- Firewall schedule used to restrict when the administrator can log in. No schedule means no restrictions.
- sms_
custom_ strserver - Custom SMS server to send SMS messages to.
- sms_
phone str - Phone number on which the administrator receives SMS messages.
- sms_
server str - Send SMS messages using the FortiGuard SMS server or a custom server. Valid values:
fortiguard
,custom
. - ssh_
certificate str - Select the certificate to be used by the FortiGate for authentication with an SSH client.
- ssh_
public_ strkey1 - Public key of an SSH client. The client is authenticated without being asked for credentials. Create the public-private key pair in the SSH client application.
- ssh_
public_ strkey2 - Public key of an SSH client. The client is authenticated without being asked for credentials. Create the public-private key pair in the SSH client application.
- ssh_
public_ strkey3 - Public key of an SSH client. The client is authenticated without being asked for credentials. Create the public-private key pair in the SSH client application.
- trusthost1 str
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost10 str
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost2 str
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost3 str
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost4 str
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost5 str
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost6 str
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost7 str
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost8 str
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost9 str
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- two_
factor str - Enable/disable two-factor authentication.
- two_
factor_ strauthentication - Authentication method by FortiToken Cloud. Valid values:
fortitoken
,email
,sms
. - two_
factor_ strnotification - Notification method for user activation by FortiToken Cloud. Valid values:
email
,sms
. - vdom_
override str - Enable to use the names of VDOMs provided by the remote authentication server to control the VDOMs that this administrator can access. Valid values:
enable
,disable
. - vdomparam str
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- vdoms
Sequence[Admin
Vdom Args] - Virtual domain(s) that the administrator can access. The structure of
vdom
block is documented below. - wildcard str
- Enable/disable wildcard RADIUS authentication. Valid values:
enable
,disable
.
- accprofile String
- Access profile for this administrator. Access profiles control administrator access to FortiGate features.
- accprofile
Override String - Enable to use the name of an access profile provided by the remote authentication server to control the FortiGate features that this administrator can access. Valid values:
enable
,disable
. - allow
Remove StringAdmin Session - Enable/disable allow admin session to be removed by privileged admin users. Valid values:
enable
,disable
. - comments String
- Comment.
- dynamic
Sort StringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- email
To String - This administrator's email address.
- force
Password StringChange - Enable/disable force password change on next login. Valid values:
enable
,disable
. - fortitoken String
- This administrator's FortiToken serial number.
- get
All StringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- guest
Auth String - Enable/disable guest authentication. Valid values:
disable
,enable
. - guest
Lang String - Guest management portal language.
- guest
Usergroups List<Property Map> - Select guest user groups. The structure of
guest_usergroups
block is documented below. - gui
Dashboards List<Property Map> - GUI dashboards. The structure of
gui_dashboard
block is documented below. - List<Property Map>
- Favorite GUI menu IDs for the global VDOM. The structure of
gui_global_menu_favorites
block is documented below. - gui
New List<Property Map>Feature Acknowledges - Acknowledgement of new features. The structure of
gui_new_feature_acknowledge
block is documented below. - List<Property Map>
- Favorite GUI menu IDs for VDOMs. The structure of
gui_vdom_menu_favorites
block is documented below. - Number
- Admin user hidden attribute.
- history0 String
- history0
- history1 String
- history1
- ip6Trusthost1 String
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost10 String
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost2 String
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost3 String
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost4 String
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost5 String
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost6 String
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost7 String
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost8 String
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost9 String
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- login
Times List<Property Map> - Record user login time. The structure of
login_time
block is documented below. - name String
- User name.
- password String
- Admin user password. :warning: Due security reason and API's design, you need to use Generic resource with the monitor API /api/v2/monitor/system/change-password/select to update the password for existing admin user.
Create
andDelete
operation will works using this resource. - password
Expire String - Password expire time.
- peer
Auth String - Set to enable peer certificate authentication (for HTTPS admin access). Valid values:
enable
,disable
. - peer
Group String - Name of peer group defined under config user group which has PKI members. Used for peer certificate authentication (for HTTPS admin access).
- radius
Vdom StringOverride - Enable to use the names of VDOMs provided by the remote authentication server to control the VDOMs that this administrator can access. Valid values:
enable
,disable
. - remote
Auth String - Enable/disable authentication using a remote RADIUS, LDAP, or TACACS+ server. Valid values:
enable
,disable
. - remote
Group String - User group name used for remote auth.
- schedule String
- Firewall schedule used to restrict when the administrator can log in. No schedule means no restrictions.
- sms
Custom StringServer - Custom SMS server to send SMS messages to.
- sms
Phone String - Phone number on which the administrator receives SMS messages.
- sms
Server String - Send SMS messages using the FortiGuard SMS server or a custom server. Valid values:
fortiguard
,custom
. - ssh
Certificate String - Select the certificate to be used by the FortiGate for authentication with an SSH client.
- ssh
Public StringKey1 - Public key of an SSH client. The client is authenticated without being asked for credentials. Create the public-private key pair in the SSH client application.
- ssh
Public StringKey2 - Public key of an SSH client. The client is authenticated without being asked for credentials. Create the public-private key pair in the SSH client application.
- ssh
Public StringKey3 - Public key of an SSH client. The client is authenticated without being asked for credentials. Create the public-private key pair in the SSH client application.
- trusthost1 String
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost10 String
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost2 String
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost3 String
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost4 String
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost5 String
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost6 String
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost7 String
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost8 String
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost9 String
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- two
Factor String - Enable/disable two-factor authentication.
- two
Factor StringAuthentication - Authentication method by FortiToken Cloud. Valid values:
fortitoken
,email
,sms
. - two
Factor StringNotification - Notification method for user activation by FortiToken Cloud. Valid values:
email
,sms
. - vdom
Override String - Enable to use the names of VDOMs provided by the remote authentication server to control the VDOMs that this administrator can access. Valid values:
enable
,disable
. - vdomparam String
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- vdoms List<Property Map>
- Virtual domain(s) that the administrator can access. The structure of
vdom
block is documented below. - wildcard String
- Enable/disable wildcard RADIUS authentication. Valid values:
enable
,disable
.
Outputs
All input properties are implicitly available as output properties. Additionally, the Admin resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Id string
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id str
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
Look up Existing Admin Resource
Get an existing Admin resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: AdminState, opts?: CustomResourceOptions): Admin
@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
accprofile: Optional[str] = None,
accprofile_override: Optional[str] = None,
allow_remove_admin_session: Optional[str] = None,
comments: Optional[str] = None,
dynamic_sort_subtable: Optional[str] = None,
email_to: Optional[str] = None,
force_password_change: Optional[str] = None,
fortitoken: Optional[str] = None,
get_all_tables: Optional[str] = None,
guest_auth: Optional[str] = None,
guest_lang: Optional[str] = None,
guest_usergroups: Optional[Sequence[AdminGuestUsergroupArgs]] = None,
gui_dashboards: Optional[Sequence[AdminGuiDashboardArgs]] = None,
gui_global_menu_favorites: Optional[Sequence[AdminGuiGlobalMenuFavoriteArgs]] = None,
gui_new_feature_acknowledges: Optional[Sequence[AdminGuiNewFeatureAcknowledgeArgs]] = None,
gui_vdom_menu_favorites: Optional[Sequence[AdminGuiVdomMenuFavoriteArgs]] = None,
hidden: Optional[int] = None,
history0: Optional[str] = None,
history1: Optional[str] = None,
ip6_trusthost1: Optional[str] = None,
ip6_trusthost10: Optional[str] = None,
ip6_trusthost2: Optional[str] = None,
ip6_trusthost3: Optional[str] = None,
ip6_trusthost4: Optional[str] = None,
ip6_trusthost5: Optional[str] = None,
ip6_trusthost6: Optional[str] = None,
ip6_trusthost7: Optional[str] = None,
ip6_trusthost8: Optional[str] = None,
ip6_trusthost9: Optional[str] = None,
login_times: Optional[Sequence[AdminLoginTimeArgs]] = None,
name: Optional[str] = None,
password: Optional[str] = None,
password_expire: Optional[str] = None,
peer_auth: Optional[str] = None,
peer_group: Optional[str] = None,
radius_vdom_override: Optional[str] = None,
remote_auth: Optional[str] = None,
remote_group: Optional[str] = None,
schedule: Optional[str] = None,
sms_custom_server: Optional[str] = None,
sms_phone: Optional[str] = None,
sms_server: Optional[str] = None,
ssh_certificate: Optional[str] = None,
ssh_public_key1: Optional[str] = None,
ssh_public_key2: Optional[str] = None,
ssh_public_key3: Optional[str] = None,
trusthost1: Optional[str] = None,
trusthost10: Optional[str] = None,
trusthost2: Optional[str] = None,
trusthost3: Optional[str] = None,
trusthost4: Optional[str] = None,
trusthost5: Optional[str] = None,
trusthost6: Optional[str] = None,
trusthost7: Optional[str] = None,
trusthost8: Optional[str] = None,
trusthost9: Optional[str] = None,
two_factor: Optional[str] = None,
two_factor_authentication: Optional[str] = None,
two_factor_notification: Optional[str] = None,
vdom_override: Optional[str] = None,
vdomparam: Optional[str] = None,
vdoms: Optional[Sequence[AdminVdomArgs]] = None,
wildcard: Optional[str] = None) -> Admin
func GetAdmin(ctx *Context, name string, id IDInput, state *AdminState, opts ...ResourceOption) (*Admin, error)
public static Admin Get(string name, Input<string> id, AdminState? state, CustomResourceOptions? opts = null)
public static Admin get(String name, Output<String> id, AdminState state, CustomResourceOptions options)
Resource lookup is not supported in YAML
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Accprofile string
- Access profile for this administrator. Access profiles control administrator access to FortiGate features.
- Accprofile
Override string - Enable to use the name of an access profile provided by the remote authentication server to control the FortiGate features that this administrator can access. Valid values:
enable
,disable
. - Allow
Remove stringAdmin Session - Enable/disable allow admin session to be removed by privileged admin users. Valid values:
enable
,disable
. - Comments string
- Comment.
- Dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- Email
To string - This administrator's email address.
- Force
Password stringChange - Enable/disable force password change on next login. Valid values:
enable
,disable
. - Fortitoken string
- This administrator's FortiToken serial number.
- Get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- Guest
Auth string - Enable/disable guest authentication. Valid values:
disable
,enable
. - Guest
Lang string - Guest management portal language.
- Guest
Usergroups List<Pulumiverse.Fortios. System. Inputs. Admin Guest Usergroup> - Select guest user groups. The structure of
guest_usergroups
block is documented below. - Gui
Dashboards List<Pulumiverse.Fortios. System. Inputs. Admin Gui Dashboard> - GUI dashboards. The structure of
gui_dashboard
block is documented below. - List<Pulumiverse.
Fortios. System. Inputs. Admin Gui Global Menu Favorite> - Favorite GUI menu IDs for the global VDOM. The structure of
gui_global_menu_favorites
block is documented below. - Gui
New List<Pulumiverse.Feature Acknowledges Fortios. System. Inputs. Admin Gui New Feature Acknowledge> - Acknowledgement of new features. The structure of
gui_new_feature_acknowledge
block is documented below. - List<Pulumiverse.
Fortios. System. Inputs. Admin Gui Vdom Menu Favorite> - Favorite GUI menu IDs for VDOMs. The structure of
gui_vdom_menu_favorites
block is documented below. - int
- Admin user hidden attribute.
- History0 string
- history0
- History1 string
- history1
- Ip6Trusthost1 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- Ip6Trusthost10 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- Ip6Trusthost2 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- Ip6Trusthost3 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- Ip6Trusthost4 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- Ip6Trusthost5 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- Ip6Trusthost6 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- Ip6Trusthost7 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- Ip6Trusthost8 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- Ip6Trusthost9 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- Login
Times List<Pulumiverse.Fortios. System. Inputs. Admin Login Time> - Record user login time. The structure of
login_time
block is documented below. - Name string
- User name.
- Password string
- Admin user password. :warning: Due security reason and API's design, you need to use Generic resource with the monitor API /api/v2/monitor/system/change-password/select to update the password for existing admin user.
Create
andDelete
operation will works using this resource. - Password
Expire string - Password expire time.
- Peer
Auth string - Set to enable peer certificate authentication (for HTTPS admin access). Valid values:
enable
,disable
. - Peer
Group string - Name of peer group defined under config user group which has PKI members. Used for peer certificate authentication (for HTTPS admin access).
- Radius
Vdom stringOverride - Enable to use the names of VDOMs provided by the remote authentication server to control the VDOMs that this administrator can access. Valid values:
enable
,disable
. - Remote
Auth string - Enable/disable authentication using a remote RADIUS, LDAP, or TACACS+ server. Valid values:
enable
,disable
. - Remote
Group string - User group name used for remote auth.
- Schedule string
- Firewall schedule used to restrict when the administrator can log in. No schedule means no restrictions.
- Sms
Custom stringServer - Custom SMS server to send SMS messages to.
- Sms
Phone string - Phone number on which the administrator receives SMS messages.
- Sms
Server string - Send SMS messages using the FortiGuard SMS server or a custom server. Valid values:
fortiguard
,custom
. - Ssh
Certificate string - Select the certificate to be used by the FortiGate for authentication with an SSH client.
- Ssh
Public stringKey1 - Public key of an SSH client. The client is authenticated without being asked for credentials. Create the public-private key pair in the SSH client application.
- Ssh
Public stringKey2 - Public key of an SSH client. The client is authenticated without being asked for credentials. Create the public-private key pair in the SSH client application.
- Ssh
Public stringKey3 - Public key of an SSH client. The client is authenticated without being asked for credentials. Create the public-private key pair in the SSH client application.
- Trusthost1 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- Trusthost10 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- Trusthost2 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- Trusthost3 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- Trusthost4 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- Trusthost5 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- Trusthost6 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- Trusthost7 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- Trusthost8 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- Trusthost9 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- Two
Factor string - Enable/disable two-factor authentication.
- Two
Factor stringAuthentication - Authentication method by FortiToken Cloud. Valid values:
fortitoken
,email
,sms
. - Two
Factor stringNotification - Notification method for user activation by FortiToken Cloud. Valid values:
email
,sms
. - Vdom
Override string - Enable to use the names of VDOMs provided by the remote authentication server to control the VDOMs that this administrator can access. Valid values:
enable
,disable
. - Vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- Vdoms
List<Pulumiverse.
Fortios. System. Inputs. Admin Vdom> - Virtual domain(s) that the administrator can access. The structure of
vdom
block is documented below. - Wildcard string
- Enable/disable wildcard RADIUS authentication. Valid values:
enable
,disable
.
- Accprofile string
- Access profile for this administrator. Access profiles control administrator access to FortiGate features.
- Accprofile
Override string - Enable to use the name of an access profile provided by the remote authentication server to control the FortiGate features that this administrator can access. Valid values:
enable
,disable
. - Allow
Remove stringAdmin Session - Enable/disable allow admin session to be removed by privileged admin users. Valid values:
enable
,disable
. - Comments string
- Comment.
- Dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- Email
To string - This administrator's email address.
- Force
Password stringChange - Enable/disable force password change on next login. Valid values:
enable
,disable
. - Fortitoken string
- This administrator's FortiToken serial number.
- Get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- Guest
Auth string - Enable/disable guest authentication. Valid values:
disable
,enable
. - Guest
Lang string - Guest management portal language.
- Guest
Usergroups []AdminGuest Usergroup Args - Select guest user groups. The structure of
guest_usergroups
block is documented below. - Gui
Dashboards []AdminGui Dashboard Args - GUI dashboards. The structure of
gui_dashboard
block is documented below. - []Admin
Gui Global Menu Favorite Args - Favorite GUI menu IDs for the global VDOM. The structure of
gui_global_menu_favorites
block is documented below. - Gui
New []AdminFeature Acknowledges Gui New Feature Acknowledge Args - Acknowledgement of new features. The structure of
gui_new_feature_acknowledge
block is documented below. - []Admin
Gui Vdom Menu Favorite Args - Favorite GUI menu IDs for VDOMs. The structure of
gui_vdom_menu_favorites
block is documented below. - int
- Admin user hidden attribute.
- History0 string
- history0
- History1 string
- history1
- Ip6Trusthost1 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- Ip6Trusthost10 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- Ip6Trusthost2 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- Ip6Trusthost3 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- Ip6Trusthost4 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- Ip6Trusthost5 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- Ip6Trusthost6 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- Ip6Trusthost7 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- Ip6Trusthost8 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- Ip6Trusthost9 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- Login
Times []AdminLogin Time Args - Record user login time. The structure of
login_time
block is documented below. - Name string
- User name.
- Password string
- Admin user password. :warning: Due security reason and API's design, you need to use Generic resource with the monitor API /api/v2/monitor/system/change-password/select to update the password for existing admin user.
Create
andDelete
operation will works using this resource. - Password
Expire string - Password expire time.
- Peer
Auth string - Set to enable peer certificate authentication (for HTTPS admin access). Valid values:
enable
,disable
. - Peer
Group string - Name of peer group defined under config user group which has PKI members. Used for peer certificate authentication (for HTTPS admin access).
- Radius
Vdom stringOverride - Enable to use the names of VDOMs provided by the remote authentication server to control the VDOMs that this administrator can access. Valid values:
enable
,disable
. - Remote
Auth string - Enable/disable authentication using a remote RADIUS, LDAP, or TACACS+ server. Valid values:
enable
,disable
. - Remote
Group string - User group name used for remote auth.
- Schedule string
- Firewall schedule used to restrict when the administrator can log in. No schedule means no restrictions.
- Sms
Custom stringServer - Custom SMS server to send SMS messages to.
- Sms
Phone string - Phone number on which the administrator receives SMS messages.
- Sms
Server string - Send SMS messages using the FortiGuard SMS server or a custom server. Valid values:
fortiguard
,custom
. - Ssh
Certificate string - Select the certificate to be used by the FortiGate for authentication with an SSH client.
- Ssh
Public stringKey1 - Public key of an SSH client. The client is authenticated without being asked for credentials. Create the public-private key pair in the SSH client application.
- Ssh
Public stringKey2 - Public key of an SSH client. The client is authenticated without being asked for credentials. Create the public-private key pair in the SSH client application.
- Ssh
Public stringKey3 - Public key of an SSH client. The client is authenticated without being asked for credentials. Create the public-private key pair in the SSH client application.
- Trusthost1 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- Trusthost10 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- Trusthost2 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- Trusthost3 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- Trusthost4 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- Trusthost5 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- Trusthost6 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- Trusthost7 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- Trusthost8 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- Trusthost9 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- Two
Factor string - Enable/disable two-factor authentication.
- Two
Factor stringAuthentication - Authentication method by FortiToken Cloud. Valid values:
fortitoken
,email
,sms
. - Two
Factor stringNotification - Notification method for user activation by FortiToken Cloud. Valid values:
email
,sms
. - Vdom
Override string - Enable to use the names of VDOMs provided by the remote authentication server to control the VDOMs that this administrator can access. Valid values:
enable
,disable
. - Vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- Vdoms
[]Admin
Vdom Args - Virtual domain(s) that the administrator can access. The structure of
vdom
block is documented below. - Wildcard string
- Enable/disable wildcard RADIUS authentication. Valid values:
enable
,disable
.
- accprofile String
- Access profile for this administrator. Access profiles control administrator access to FortiGate features.
- accprofile
Override String - Enable to use the name of an access profile provided by the remote authentication server to control the FortiGate features that this administrator can access. Valid values:
enable
,disable
. - allow
Remove StringAdmin Session - Enable/disable allow admin session to be removed by privileged admin users. Valid values:
enable
,disable
. - comments String
- Comment.
- dynamic
Sort StringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- email
To String - This administrator's email address.
- force
Password StringChange - Enable/disable force password change on next login. Valid values:
enable
,disable
. - fortitoken String
- This administrator's FortiToken serial number.
- get
All StringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- guest
Auth String - Enable/disable guest authentication. Valid values:
disable
,enable
. - guest
Lang String - Guest management portal language.
- guest
Usergroups List<AdminGuest Usergroup> - Select guest user groups. The structure of
guest_usergroups
block is documented below. - gui
Dashboards List<AdminGui Dashboard> - GUI dashboards. The structure of
gui_dashboard
block is documented below. - List<Admin
Gui Global Menu Favorite> - Favorite GUI menu IDs for the global VDOM. The structure of
gui_global_menu_favorites
block is documented below. - gui
New List<AdminFeature Acknowledges Gui New Feature Acknowledge> - Acknowledgement of new features. The structure of
gui_new_feature_acknowledge
block is documented below. - List<Admin
Gui Vdom Menu Favorite> - Favorite GUI menu IDs for VDOMs. The structure of
gui_vdom_menu_favorites
block is documented below. - Integer
- Admin user hidden attribute.
- history0 String
- history0
- history1 String
- history1
- ip6Trusthost1 String
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost10 String
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost2 String
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost3 String
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost4 String
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost5 String
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost6 String
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost7 String
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost8 String
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost9 String
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- login
Times List<AdminLogin Time> - Record user login time. The structure of
login_time
block is documented below. - name String
- User name.
- password String
- Admin user password. :warning: Due security reason and API's design, you need to use Generic resource with the monitor API /api/v2/monitor/system/change-password/select to update the password for existing admin user.
Create
andDelete
operation will works using this resource. - password
Expire String - Password expire time.
- peer
Auth String - Set to enable peer certificate authentication (for HTTPS admin access). Valid values:
enable
,disable
. - peer
Group String - Name of peer group defined under config user group which has PKI members. Used for peer certificate authentication (for HTTPS admin access).
- radius
Vdom StringOverride - Enable to use the names of VDOMs provided by the remote authentication server to control the VDOMs that this administrator can access. Valid values:
enable
,disable
. - remote
Auth String - Enable/disable authentication using a remote RADIUS, LDAP, or TACACS+ server. Valid values:
enable
,disable
. - remote
Group String - User group name used for remote auth.
- schedule String
- Firewall schedule used to restrict when the administrator can log in. No schedule means no restrictions.
- sms
Custom StringServer - Custom SMS server to send SMS messages to.
- sms
Phone String - Phone number on which the administrator receives SMS messages.
- sms
Server String - Send SMS messages using the FortiGuard SMS server or a custom server. Valid values:
fortiguard
,custom
. - ssh
Certificate String - Select the certificate to be used by the FortiGate for authentication with an SSH client.
- ssh
Public StringKey1 - Public key of an SSH client. The client is authenticated without being asked for credentials. Create the public-private key pair in the SSH client application.
- ssh
Public StringKey2 - Public key of an SSH client. The client is authenticated without being asked for credentials. Create the public-private key pair in the SSH client application.
- ssh
Public StringKey3 - Public key of an SSH client. The client is authenticated without being asked for credentials. Create the public-private key pair in the SSH client application.
- trusthost1 String
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost10 String
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost2 String
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost3 String
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost4 String
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost5 String
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost6 String
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost7 String
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost8 String
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost9 String
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- two
Factor String - Enable/disable two-factor authentication.
- two
Factor StringAuthentication - Authentication method by FortiToken Cloud. Valid values:
fortitoken
,email
,sms
. - two
Factor StringNotification - Notification method for user activation by FortiToken Cloud. Valid values:
email
,sms
. - vdom
Override String - Enable to use the names of VDOMs provided by the remote authentication server to control the VDOMs that this administrator can access. Valid values:
enable
,disable
. - vdomparam String
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- vdoms
List<Admin
Vdom> - Virtual domain(s) that the administrator can access. The structure of
vdom
block is documented below. - wildcard String
- Enable/disable wildcard RADIUS authentication. Valid values:
enable
,disable
.
- accprofile string
- Access profile for this administrator. Access profiles control administrator access to FortiGate features.
- accprofile
Override string - Enable to use the name of an access profile provided by the remote authentication server to control the FortiGate features that this administrator can access. Valid values:
enable
,disable
. - allow
Remove stringAdmin Session - Enable/disable allow admin session to be removed by privileged admin users. Valid values:
enable
,disable
. - comments string
- Comment.
- dynamic
Sort stringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- email
To string - This administrator's email address.
- force
Password stringChange - Enable/disable force password change on next login. Valid values:
enable
,disable
. - fortitoken string
- This administrator's FortiToken serial number.
- get
All stringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- guest
Auth string - Enable/disable guest authentication. Valid values:
disable
,enable
. - guest
Lang string - Guest management portal language.
- guest
Usergroups AdminGuest Usergroup[] - Select guest user groups. The structure of
guest_usergroups
block is documented below. - gui
Dashboards AdminGui Dashboard[] - GUI dashboards. The structure of
gui_dashboard
block is documented below. - Admin
Gui Global Menu Favorite[] - Favorite GUI menu IDs for the global VDOM. The structure of
gui_global_menu_favorites
block is documented below. - gui
New AdminFeature Acknowledges Gui New Feature Acknowledge[] - Acknowledgement of new features. The structure of
gui_new_feature_acknowledge
block is documented below. - Admin
Gui Vdom Menu Favorite[] - Favorite GUI menu IDs for VDOMs. The structure of
gui_vdom_menu_favorites
block is documented below. - number
- Admin user hidden attribute.
- history0 string
- history0
- history1 string
- history1
- ip6Trusthost1 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost10 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost2 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost3 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost4 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost5 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost6 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost7 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost8 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost9 string
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- login
Times AdminLogin Time[] - Record user login time. The structure of
login_time
block is documented below. - name string
- User name.
- password string
- Admin user password. :warning: Due security reason and API's design, you need to use Generic resource with the monitor API /api/v2/monitor/system/change-password/select to update the password for existing admin user.
Create
andDelete
operation will works using this resource. - password
Expire string - Password expire time.
- peer
Auth string - Set to enable peer certificate authentication (for HTTPS admin access). Valid values:
enable
,disable
. - peer
Group string - Name of peer group defined under config user group which has PKI members. Used for peer certificate authentication (for HTTPS admin access).
- radius
Vdom stringOverride - Enable to use the names of VDOMs provided by the remote authentication server to control the VDOMs that this administrator can access. Valid values:
enable
,disable
. - remote
Auth string - Enable/disable authentication using a remote RADIUS, LDAP, or TACACS+ server. Valid values:
enable
,disable
. - remote
Group string - User group name used for remote auth.
- schedule string
- Firewall schedule used to restrict when the administrator can log in. No schedule means no restrictions.
- sms
Custom stringServer - Custom SMS server to send SMS messages to.
- sms
Phone string - Phone number on which the administrator receives SMS messages.
- sms
Server string - Send SMS messages using the FortiGuard SMS server or a custom server. Valid values:
fortiguard
,custom
. - ssh
Certificate string - Select the certificate to be used by the FortiGate for authentication with an SSH client.
- ssh
Public stringKey1 - Public key of an SSH client. The client is authenticated without being asked for credentials. Create the public-private key pair in the SSH client application.
- ssh
Public stringKey2 - Public key of an SSH client. The client is authenticated without being asked for credentials. Create the public-private key pair in the SSH client application.
- ssh
Public stringKey3 - Public key of an SSH client. The client is authenticated without being asked for credentials. Create the public-private key pair in the SSH client application.
- trusthost1 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost10 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost2 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost3 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost4 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost5 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost6 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost7 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost8 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost9 string
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- two
Factor string - Enable/disable two-factor authentication.
- two
Factor stringAuthentication - Authentication method by FortiToken Cloud. Valid values:
fortitoken
,email
,sms
. - two
Factor stringNotification - Notification method for user activation by FortiToken Cloud. Valid values:
email
,sms
. - vdom
Override string - Enable to use the names of VDOMs provided by the remote authentication server to control the VDOMs that this administrator can access. Valid values:
enable
,disable
. - vdomparam string
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- vdoms
Admin
Vdom[] - Virtual domain(s) that the administrator can access. The structure of
vdom
block is documented below. - wildcard string
- Enable/disable wildcard RADIUS authentication. Valid values:
enable
,disable
.
- accprofile str
- Access profile for this administrator. Access profiles control administrator access to FortiGate features.
- accprofile_
override str - Enable to use the name of an access profile provided by the remote authentication server to control the FortiGate features that this administrator can access. Valid values:
enable
,disable
. - allow_
remove_ stradmin_ session - Enable/disable allow admin session to be removed by privileged admin users. Valid values:
enable
,disable
. - comments str
- Comment.
- dynamic_
sort_ strsubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- email_
to str - This administrator's email address.
- force_
password_ strchange - Enable/disable force password change on next login. Valid values:
enable
,disable
. - fortitoken str
- This administrator's FortiToken serial number.
- get_
all_ strtables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- guest_
auth str - Enable/disable guest authentication. Valid values:
disable
,enable
. - guest_
lang str - Guest management portal language.
- guest_
usergroups Sequence[AdminGuest Usergroup Args] - Select guest user groups. The structure of
guest_usergroups
block is documented below. - gui_
dashboards Sequence[AdminGui Dashboard Args] - GUI dashboards. The structure of
gui_dashboard
block is documented below. - Sequence[Admin
Gui Global Menu Favorite Args] - Favorite GUI menu IDs for the global VDOM. The structure of
gui_global_menu_favorites
block is documented below. - gui_
new_ Sequence[Adminfeature_ acknowledges Gui New Feature Acknowledge Args] - Acknowledgement of new features. The structure of
gui_new_feature_acknowledge
block is documented below. - Sequence[Admin
Gui Vdom Menu Favorite Args] - Favorite GUI menu IDs for VDOMs. The structure of
gui_vdom_menu_favorites
block is documented below. - int
- Admin user hidden attribute.
- history0 str
- history0
- history1 str
- history1
- ip6_
trusthost1 str - Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6_
trusthost10 str - Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6_
trusthost2 str - Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6_
trusthost3 str - Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6_
trusthost4 str - Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6_
trusthost5 str - Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6_
trusthost6 str - Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6_
trusthost7 str - Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6_
trusthost8 str - Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6_
trusthost9 str - Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- login_
times Sequence[AdminLogin Time Args] - Record user login time. The structure of
login_time
block is documented below. - name str
- User name.
- password str
- Admin user password. :warning: Due security reason and API's design, you need to use Generic resource with the monitor API /api/v2/monitor/system/change-password/select to update the password for existing admin user.
Create
andDelete
operation will works using this resource. - password_
expire str - Password expire time.
- peer_
auth str - Set to enable peer certificate authentication (for HTTPS admin access). Valid values:
enable
,disable
. - peer_
group str - Name of peer group defined under config user group which has PKI members. Used for peer certificate authentication (for HTTPS admin access).
- radius_
vdom_ stroverride - Enable to use the names of VDOMs provided by the remote authentication server to control the VDOMs that this administrator can access. Valid values:
enable
,disable
. - remote_
auth str - Enable/disable authentication using a remote RADIUS, LDAP, or TACACS+ server. Valid values:
enable
,disable
. - remote_
group str - User group name used for remote auth.
- schedule str
- Firewall schedule used to restrict when the administrator can log in. No schedule means no restrictions.
- sms_
custom_ strserver - Custom SMS server to send SMS messages to.
- sms_
phone str - Phone number on which the administrator receives SMS messages.
- sms_
server str - Send SMS messages using the FortiGuard SMS server or a custom server. Valid values:
fortiguard
,custom
. - ssh_
certificate str - Select the certificate to be used by the FortiGate for authentication with an SSH client.
- ssh_
public_ strkey1 - Public key of an SSH client. The client is authenticated without being asked for credentials. Create the public-private key pair in the SSH client application.
- ssh_
public_ strkey2 - Public key of an SSH client. The client is authenticated without being asked for credentials. Create the public-private key pair in the SSH client application.
- ssh_
public_ strkey3 - Public key of an SSH client. The client is authenticated without being asked for credentials. Create the public-private key pair in the SSH client application.
- trusthost1 str
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost10 str
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost2 str
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost3 str
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost4 str
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost5 str
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost6 str
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost7 str
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost8 str
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost9 str
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- two_
factor str - Enable/disable two-factor authentication.
- two_
factor_ strauthentication - Authentication method by FortiToken Cloud. Valid values:
fortitoken
,email
,sms
. - two_
factor_ strnotification - Notification method for user activation by FortiToken Cloud. Valid values:
email
,sms
. - vdom_
override str - Enable to use the names of VDOMs provided by the remote authentication server to control the VDOMs that this administrator can access. Valid values:
enable
,disable
. - vdomparam str
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- vdoms
Sequence[Admin
Vdom Args] - Virtual domain(s) that the administrator can access. The structure of
vdom
block is documented below. - wildcard str
- Enable/disable wildcard RADIUS authentication. Valid values:
enable
,disable
.
- accprofile String
- Access profile for this administrator. Access profiles control administrator access to FortiGate features.
- accprofile
Override String - Enable to use the name of an access profile provided by the remote authentication server to control the FortiGate features that this administrator can access. Valid values:
enable
,disable
. - allow
Remove StringAdmin Session - Enable/disable allow admin session to be removed by privileged admin users. Valid values:
enable
,disable
. - comments String
- Comment.
- dynamic
Sort StringSubtable - Sort sub-tables, please do not set this parameter when configuring static sub-tables. Options: [ false, true, natural, alphabetical ]. false: Default value, do not sort tables; true/natural: sort tables in natural order. For example: [ a10, a2 ] -> [ a2, a10 ]; alphabetical: sort tables in alphabetical order. For example: [ a10, a2 ] -> [ a10, a2 ].
- email
To String - This administrator's email address.
- force
Password StringChange - Enable/disable force password change on next login. Valid values:
enable
,disable
. - fortitoken String
- This administrator's FortiToken serial number.
- get
All StringTables - Get all sub-tables including unconfigured tables. Do not set this variable to true if you configure sub-table in another resource, otherwise, conflicts and overwrite will occur. Options: [ false, true ]. false: Default value, do not get unconfigured tables; true: get all tables including unconfigured tables.
- guest
Auth String - Enable/disable guest authentication. Valid values:
disable
,enable
. - guest
Lang String - Guest management portal language.
- guest
Usergroups List<Property Map> - Select guest user groups. The structure of
guest_usergroups
block is documented below. - gui
Dashboards List<Property Map> - GUI dashboards. The structure of
gui_dashboard
block is documented below. - List<Property Map>
- Favorite GUI menu IDs for the global VDOM. The structure of
gui_global_menu_favorites
block is documented below. - gui
New List<Property Map>Feature Acknowledges - Acknowledgement of new features. The structure of
gui_new_feature_acknowledge
block is documented below. - List<Property Map>
- Favorite GUI menu IDs for VDOMs. The structure of
gui_vdom_menu_favorites
block is documented below. - Number
- Admin user hidden attribute.
- history0 String
- history0
- history1 String
- history1
- ip6Trusthost1 String
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost10 String
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost2 String
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost3 String
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost4 String
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost5 String
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost6 String
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost7 String
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost8 String
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- ip6Trusthost9 String
- Any IPv6 address from which the administrator can connect to the FortiGate unit. Default allows access from any IPv6 address.
- login
Times List<Property Map> - Record user login time. The structure of
login_time
block is documented below. - name String
- User name.
- password String
- Admin user password. :warning: Due security reason and API's design, you need to use Generic resource with the monitor API /api/v2/monitor/system/change-password/select to update the password for existing admin user.
Create
andDelete
operation will works using this resource. - password
Expire String - Password expire time.
- peer
Auth String - Set to enable peer certificate authentication (for HTTPS admin access). Valid values:
enable
,disable
. - peer
Group String - Name of peer group defined under config user group which has PKI members. Used for peer certificate authentication (for HTTPS admin access).
- radius
Vdom StringOverride - Enable to use the names of VDOMs provided by the remote authentication server to control the VDOMs that this administrator can access. Valid values:
enable
,disable
. - remote
Auth String - Enable/disable authentication using a remote RADIUS, LDAP, or TACACS+ server. Valid values:
enable
,disable
. - remote
Group String - User group name used for remote auth.
- schedule String
- Firewall schedule used to restrict when the administrator can log in. No schedule means no restrictions.
- sms
Custom StringServer - Custom SMS server to send SMS messages to.
- sms
Phone String - Phone number on which the administrator receives SMS messages.
- sms
Server String - Send SMS messages using the FortiGuard SMS server or a custom server. Valid values:
fortiguard
,custom
. - ssh
Certificate String - Select the certificate to be used by the FortiGate for authentication with an SSH client.
- ssh
Public StringKey1 - Public key of an SSH client. The client is authenticated without being asked for credentials. Create the public-private key pair in the SSH client application.
- ssh
Public StringKey2 - Public key of an SSH client. The client is authenticated without being asked for credentials. Create the public-private key pair in the SSH client application.
- ssh
Public StringKey3 - Public key of an SSH client. The client is authenticated without being asked for credentials. Create the public-private key pair in the SSH client application.
- trusthost1 String
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost10 String
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost2 String
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost3 String
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost4 String
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost5 String
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost6 String
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost7 String
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost8 String
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- trusthost9 String
- Any IPv4 address or subnet address and netmask from which the administrator can connect to the FortiGate unit. Default allows access from any IPv4 address.
- two
Factor String - Enable/disable two-factor authentication.
- two
Factor StringAuthentication - Authentication method by FortiToken Cloud. Valid values:
fortitoken
,email
,sms
. - two
Factor StringNotification - Notification method for user activation by FortiToken Cloud. Valid values:
email
,sms
. - vdom
Override String - Enable to use the names of VDOMs provided by the remote authentication server to control the VDOMs that this administrator can access. Valid values:
enable
,disable
. - vdomparam String
- Specifies the vdom to which the resource will be applied when the FortiGate unit is running in VDOM mode. Only one vdom can be specified. If you want to inherit the vdom configuration of the provider, please do not set this parameter.
- vdoms List<Property Map>
- Virtual domain(s) that the administrator can access. The structure of
vdom
block is documented below. - wildcard String
- Enable/disable wildcard RADIUS authentication. Valid values:
enable
,disable
.
Supporting Types
AdminGuestUsergroup, AdminGuestUsergroupArgs
- Name string
- Select guest user groups.
- Name string
- Select guest user groups.
- name String
- Select guest user groups.
- name string
- Select guest user groups.
- name str
- Select guest user groups.
- name String
- Select guest user groups.
AdminGuiDashboard, AdminGuiDashboardArgs
- Columns int
- Number of columns.
- Id int
- Dashboard ID.
- Layout
Type string - Layout type. Valid values:
responsive
,fixed
. - Name string
- Dashboard name.
- Scope string
- Dashboard scope. Valid values:
global
,vdom
. - Widgets
List<Pulumiverse.
Fortios. System. Inputs. Admin Gui Dashboard Widget> - Dashboard widgets. The structure of
widget
block is documented below.
- Columns int
- Number of columns.
- Id int
- Dashboard ID.
- Layout
Type string - Layout type. Valid values:
responsive
,fixed
. - Name string
- Dashboard name.
- Scope string
- Dashboard scope. Valid values:
global
,vdom
. - Widgets
[]Admin
Gui Dashboard Widget - Dashboard widgets. The structure of
widget
block is documented below.
- columns Integer
- Number of columns.
- id Integer
- Dashboard ID.
- layout
Type String - Layout type. Valid values:
responsive
,fixed
. - name String
- Dashboard name.
- scope String
- Dashboard scope. Valid values:
global
,vdom
. - widgets
List<Admin
Gui Dashboard Widget> - Dashboard widgets. The structure of
widget
block is documented below.
- columns number
- Number of columns.
- id number
- Dashboard ID.
- layout
Type string - Layout type. Valid values:
responsive
,fixed
. - name string
- Dashboard name.
- scope string
- Dashboard scope. Valid values:
global
,vdom
. - widgets
Admin
Gui Dashboard Widget[] - Dashboard widgets. The structure of
widget
block is documented below.
- columns int
- Number of columns.
- id int
- Dashboard ID.
- layout_
type str - Layout type. Valid values:
responsive
,fixed
. - name str
- Dashboard name.
- scope str
- Dashboard scope. Valid values:
global
,vdom
. - widgets
Sequence[Admin
Gui Dashboard Widget] - Dashboard widgets. The structure of
widget
block is documented below.
- columns Number
- Number of columns.
- id Number
- Dashboard ID.
- layout
Type String - Layout type. Valid values:
responsive
,fixed
. - name String
- Dashboard name.
- scope String
- Dashboard scope. Valid values:
global
,vdom
. - widgets List<Property Map>
- Dashboard widgets. The structure of
widget
block is documented below.
AdminGuiDashboardWidget, AdminGuiDashboardWidgetArgs
- Fabric
Device string - Fabric device to monitor.
- Filters
List<Pulumiverse.
Fortios. System. Inputs. Admin Gui Dashboard Widget Filter> - FortiView filters. The structure of
filters
block is documented below. - Height int
- Height.
- Id int
- Widget ID.
- Industry string
- Security Audit Rating industry. Valid values:
default
,custom
. - Interface string
- Interface to monitor.
- Region string
- Security Audit Rating region. Valid values:
default
,custom
. - Report
By string - Field to aggregate the data by. Valid values:
source
,destination
,country
,intfpair
,srcintf
,dstintf
,policy
,wificlient
,shaper
,endpoint-vulnerability
,endpoint-device
,application
,cloud-app
,cloud-user
,web-domain
,web-category
,web-search-phrase
,threat
,system
,unauth
,admin
,vpn
. - Sort
By string - Field to sort the data by.
- Timeframe string
- Timeframe period of reported data. Valid values:
realtime
,5min
,hour
,day
,week
. - Title string
- Widget title.
- Type string
- Widget type. Valid values:
sysinfo
,licinfo
,vminfo
,forticloud
,cpu-usage
,memory-usage
,disk-usage
,log-rate
,sessions
,session-rate
,tr-history
,analytics
,usb-modem
,admins
,security-fabric
,security-fabric-ranking
,ha-status
,vulnerability-summary
,host-scan-summary
,fortiview
,botnet-activity
,fortimail
. - Visualization string
- Visualization to use. Valid values:
table
,bubble
,country
,chord
. - Width int
- Width.
- XPos int
- X position.
- YPos int
- Y position.
- Fabric
Device string - Fabric device to monitor.
- Filters
[]Admin
Gui Dashboard Widget Filter - FortiView filters. The structure of
filters
block is documented below. - Height int
- Height.
- Id int
- Widget ID.
- Industry string
- Security Audit Rating industry. Valid values:
default
,custom
. - Interface string
- Interface to monitor.
- Region string
- Security Audit Rating region. Valid values:
default
,custom
. - Report
By string - Field to aggregate the data by. Valid values:
source
,destination
,country
,intfpair
,srcintf
,dstintf
,policy
,wificlient
,shaper
,endpoint-vulnerability
,endpoint-device
,application
,cloud-app
,cloud-user
,web-domain
,web-category
,web-search-phrase
,threat
,system
,unauth
,admin
,vpn
. - Sort
By string - Field to sort the data by.
- Timeframe string
- Timeframe period of reported data. Valid values:
realtime
,5min
,hour
,day
,week
. - Title string
- Widget title.
- Type string
- Widget type. Valid values:
sysinfo
,licinfo
,vminfo
,forticloud
,cpu-usage
,memory-usage
,disk-usage
,log-rate
,sessions
,session-rate
,tr-history
,analytics
,usb-modem
,admins
,security-fabric
,security-fabric-ranking
,ha-status
,vulnerability-summary
,host-scan-summary
,fortiview
,botnet-activity
,fortimail
. - Visualization string
- Visualization to use. Valid values:
table
,bubble
,country
,chord
. - Width int
- Width.
- XPos int
- X position.
- YPos int
- Y position.
- fabric
Device String - Fabric device to monitor.
- filters
List<Admin
Gui Dashboard Widget Filter> - FortiView filters. The structure of
filters
block is documented below. - height Integer
- Height.
- id Integer
- Widget ID.
- industry String
- Security Audit Rating industry. Valid values:
default
,custom
. - interface_ String
- Interface to monitor.
- region String
- Security Audit Rating region. Valid values:
default
,custom
. - report
By String - Field to aggregate the data by. Valid values:
source
,destination
,country
,intfpair
,srcintf
,dstintf
,policy
,wificlient
,shaper
,endpoint-vulnerability
,endpoint-device
,application
,cloud-app
,cloud-user
,web-domain
,web-category
,web-search-phrase
,threat
,system
,unauth
,admin
,vpn
. - sort
By String - Field to sort the data by.
- timeframe String
- Timeframe period of reported data. Valid values:
realtime
,5min
,hour
,day
,week
. - title String
- Widget title.
- type String
- Widget type. Valid values:
sysinfo
,licinfo
,vminfo
,forticloud
,cpu-usage
,memory-usage
,disk-usage
,log-rate
,sessions
,session-rate
,tr-history
,analytics
,usb-modem
,admins
,security-fabric
,security-fabric-ranking
,ha-status
,vulnerability-summary
,host-scan-summary
,fortiview
,botnet-activity
,fortimail
. - visualization String
- Visualization to use. Valid values:
table
,bubble
,country
,chord
. - width Integer
- Width.
- x
Pos Integer - X position.
- y
Pos Integer - Y position.
- fabric
Device string - Fabric device to monitor.
- filters
Admin
Gui Dashboard Widget Filter[] - FortiView filters. The structure of
filters
block is documented below. - height number
- Height.
- id number
- Widget ID.
- industry string
- Security Audit Rating industry. Valid values:
default
,custom
. - interface string
- Interface to monitor.
- region string
- Security Audit Rating region. Valid values:
default
,custom
. - report
By string - Field to aggregate the data by. Valid values:
source
,destination
,country
,intfpair
,srcintf
,dstintf
,policy
,wificlient
,shaper
,endpoint-vulnerability
,endpoint-device
,application
,cloud-app
,cloud-user
,web-domain
,web-category
,web-search-phrase
,threat
,system
,unauth
,admin
,vpn
. - sort
By string - Field to sort the data by.
- timeframe string
- Timeframe period of reported data. Valid values:
realtime
,5min
,hour
,day
,week
. - title string
- Widget title.
- type string
- Widget type. Valid values:
sysinfo
,licinfo
,vminfo
,forticloud
,cpu-usage
,memory-usage
,disk-usage
,log-rate
,sessions
,session-rate
,tr-history
,analytics
,usb-modem
,admins
,security-fabric
,security-fabric-ranking
,ha-status
,vulnerability-summary
,host-scan-summary
,fortiview
,botnet-activity
,fortimail
. - visualization string
- Visualization to use. Valid values:
table
,bubble
,country
,chord
. - width number
- Width.
- x
Pos number - X position.
- y
Pos number - Y position.
- fabric_
device str - Fabric device to monitor.
- filters
Sequence[Admin
Gui Dashboard Widget Filter] - FortiView filters. The structure of
filters
block is documented below. - height int
- Height.
- id int
- Widget ID.
- industry str
- Security Audit Rating industry. Valid values:
default
,custom
. - interface str
- Interface to monitor.
- region str
- Security Audit Rating region. Valid values:
default
,custom
. - report_
by str - Field to aggregate the data by. Valid values:
source
,destination
,country
,intfpair
,srcintf
,dstintf
,policy
,wificlient
,shaper
,endpoint-vulnerability
,endpoint-device
,application
,cloud-app
,cloud-user
,web-domain
,web-category
,web-search-phrase
,threat
,system
,unauth
,admin
,vpn
. - sort_
by str - Field to sort the data by.
- timeframe str
- Timeframe period of reported data. Valid values:
realtime
,5min
,hour
,day
,week
. - title str
- Widget title.
- type str
- Widget type. Valid values:
sysinfo
,licinfo
,vminfo
,forticloud
,cpu-usage
,memory-usage
,disk-usage
,log-rate
,sessions
,session-rate
,tr-history
,analytics
,usb-modem
,admins
,security-fabric
,security-fabric-ranking
,ha-status
,vulnerability-summary
,host-scan-summary
,fortiview
,botnet-activity
,fortimail
. - visualization str
- Visualization to use. Valid values:
table
,bubble
,country
,chord
. - width int
- Width.
- x_
pos int - X position.
- y_
pos int - Y position.
- fabric
Device String - Fabric device to monitor.
- filters List<Property Map>
- FortiView filters. The structure of
filters
block is documented below. - height Number
- Height.
- id Number
- Widget ID.
- industry String
- Security Audit Rating industry. Valid values:
default
,custom
. - interface String
- Interface to monitor.
- region String
- Security Audit Rating region. Valid values:
default
,custom
. - report
By String - Field to aggregate the data by. Valid values:
source
,destination
,country
,intfpair
,srcintf
,dstintf
,policy
,wificlient
,shaper
,endpoint-vulnerability
,endpoint-device
,application
,cloud-app
,cloud-user
,web-domain
,web-category
,web-search-phrase
,threat
,system
,unauth
,admin
,vpn
. - sort
By String - Field to sort the data by.
- timeframe String
- Timeframe period of reported data. Valid values:
realtime
,5min
,hour
,day
,week
. - title String
- Widget title.
- type String
- Widget type. Valid values:
sysinfo
,licinfo
,vminfo
,forticloud
,cpu-usage
,memory-usage
,disk-usage
,log-rate
,sessions
,session-rate
,tr-history
,analytics
,usb-modem
,admins
,security-fabric
,security-fabric-ranking
,ha-status
,vulnerability-summary
,host-scan-summary
,fortiview
,botnet-activity
,fortimail
. - visualization String
- Visualization to use. Valid values:
table
,bubble
,country
,chord
. - width Number
- Width.
- x
Pos Number - X position.
- y
Pos Number - Y position.
AdminGuiDashboardWidgetFilter, AdminGuiDashboardWidgetFilterArgs
AdminGuiGlobalMenuFavorite, AdminGuiGlobalMenuFavoriteArgs
- Id string
- Select menu ID.
- Id string
- Select menu ID.
- id String
- Select menu ID.
- id string
- Select menu ID.
- id str
- Select menu ID.
- id String
- Select menu ID.
AdminGuiNewFeatureAcknowledge, AdminGuiNewFeatureAcknowledgeArgs
- Id string
- Select menu ID.
- Id string
- Select menu ID.
- id String
- Select menu ID.
- id string
- Select menu ID.
- id str
- Select menu ID.
- id String
- Select menu ID.
AdminGuiVdomMenuFavorite, AdminGuiVdomMenuFavoriteArgs
- Id string
- Select menu ID.
- Id string
- Select menu ID.
- id String
- Select menu ID.
- id string
- Select menu ID.
- id str
- Select menu ID.
- id String
- Select menu ID.
AdminLoginTime, AdminLoginTimeArgs
- Last
Failed stringLogin - Last failed login time.
- Last
Login string - Last successful login time.
- Usr
Name string - User name.
- Last
Failed stringLogin - Last failed login time.
- Last
Login string - Last successful login time.
- Usr
Name string - User name.
- last
Failed StringLogin - Last failed login time.
- last
Login String - Last successful login time.
- usr
Name String - User name.
- last
Failed stringLogin - Last failed login time.
- last
Login string - Last successful login time.
- usr
Name string - User name.
- last_
failed_ strlogin - Last failed login time.
- last_
login str - Last successful login time.
- usr_
name str - User name.
- last
Failed StringLogin - Last failed login time.
- last
Login String - Last successful login time.
- usr
Name String - User name.
AdminVdom, AdminVdomArgs
- Name string
- Virtual domain name.
- Name string
- Virtual domain name.
- name String
- Virtual domain name.
- name string
- Virtual domain name.
- name str
- Virtual domain name.
- name String
- Virtual domain name.
Import
System Admin can be imported using any of these accepted formats:
$ pulumi import fortios:system/admin:Admin labelname {{name}}
If you do not want to import arguments of block:
$ export “FORTIOS_IMPORT_TABLE”=“false”
$ pulumi import fortios:system/admin:Admin labelname {{name}}
$ unset “FORTIOS_IMPORT_TABLE”
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- fortios pulumiverse/pulumi-fortios
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
fortios
Terraform Provider.