Docs Home
Juniper Mist v0.1.1 published on Monday, Nov 4, 2024 by Pulumi
junipermist.org.Nacrule
Explore with Pulumi AI
This resource manages the NAC Rules (Auth Policies). A NAC Rule defines a list of critera (NAC Tag) the network client must match to execute the Rule, an action (Allow/Deny)and a list of RADIUS Attributes (NAC Tags) to return
Example Usage
Coming soon!
Coming soon!
Coming soon!
Coming soon!
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.junipermist.org.Nacrule;
import com.pulumi.junipermist.org.NacruleArgs;
import com.pulumi.junipermist.org.inputs.NacruleMatchingArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var nacruleOne = new Nacrule("nacruleOne", NacruleArgs.builder()
.name("rule_one")
.action("allow")
.orgId(terraformTest.id())
.matching(NacruleMatchingArgs.builder()
.port_types("wired")
.auth_type("mab")
.nactags("c055c60b-351a-4311-8ee5-9b7be5e5f902")
.build())
.applyTags(
"61c11327-5e1b-40ed-bbbf-5e95642c4f59",
"3f292454-ac5f-4a36-9aff-d0518d90b47a")
.enabled(true)
.order(9)
.build());
}
}
resources:
nacruleOne:
type: junipermist:org:Nacrule
name: nacrule_one
properties:
name: rule_one
action: allow
orgId: ${terraformTest.id}
matching:
port_types:
- wired
auth_type: mab
nactags:
- c055c60b-351a-4311-8ee5-9b7be5e5f902
applyTags:
- 61c11327-5e1b-40ed-bbbf-5e95642c4f59
- 3f292454-ac5f-4a36-9aff-d0518d90b47a
enabled: true
order: 9
Create Nacrule Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new Nacrule(name: string, args: NacruleArgs, opts?: CustomResourceOptions);@overload
def Nacrule(resource_name: str,
args: NacruleArgs,
opts: Optional[ResourceOptions] = None)
@overload
def Nacrule(resource_name: str,
opts: Optional[ResourceOptions] = None,
action: Optional[str] = None,
order: Optional[int] = None,
org_id: Optional[str] = None,
apply_tags: Optional[Sequence[str]] = None,
enabled: Optional[bool] = None,
matching: Optional[NacruleMatchingArgs] = None,
name: Optional[str] = None,
not_matching: Optional[NacruleNotMatchingArgs] = None)func NewNacrule(ctx *Context, name string, args NacruleArgs, opts ...ResourceOption) (*Nacrule, error)public Nacrule(string name, NacruleArgs args, CustomResourceOptions? opts = null)
public Nacrule(String name, NacruleArgs args)
public Nacrule(String name, NacruleArgs args, CustomResourceOptions options)
type: junipermist:org:Nacrule
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args NacruleArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args NacruleArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args NacruleArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args NacruleArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args NacruleArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var nacruleResource = new JuniperMist.Org.Nacrule("nacruleResource", new()
{
Action = "string",
Order = 0,
OrgId = "string",
ApplyTags = new[]
{
"string",
},
Enabled = false,
Matching = new JuniperMist.Org.Inputs.NacruleMatchingArgs
{
AuthType = "string",
Nactags = new[]
{
"string",
},
PortTypes = new[]
{
"string",
},
SiteIds = new[]
{
"string",
},
SitegroupIds = new[]
{
"string",
},
Vendors = new[]
{
"string",
},
},
Name = "string",
NotMatching = new JuniperMist.Org.Inputs.NacruleNotMatchingArgs
{
AuthType = "string",
Nactags = new[]
{
"string",
},
PortTypes = new[]
{
"string",
},
SiteIds = new[]
{
"string",
},
SitegroupIds = new[]
{
"string",
},
Vendors = new[]
{
"string",
},
},
});
example, err := org.NewNacrule(ctx, "nacruleResource", &org.NacruleArgs{
Action: pulumi.String("string"),
Order: pulumi.Int(0),
OrgId: pulumi.String("string"),
ApplyTags: pulumi.StringArray{
pulumi.String("string"),
},
Enabled: pulumi.Bool(false),
Matching: &org.NacruleMatchingArgs{
AuthType: pulumi.String("string"),
Nactags: pulumi.StringArray{
pulumi.String("string"),
},
PortTypes: pulumi.StringArray{
pulumi.String("string"),
},
SiteIds: pulumi.StringArray{
pulumi.String("string"),
},
SitegroupIds: pulumi.StringArray{
pulumi.String("string"),
},
Vendors: pulumi.StringArray{
pulumi.String("string"),
},
},
Name: pulumi.String("string"),
NotMatching: &org.NacruleNotMatchingArgs{
AuthType: pulumi.String("string"),
Nactags: pulumi.StringArray{
pulumi.String("string"),
},
PortTypes: pulumi.StringArray{
pulumi.String("string"),
},
SiteIds: pulumi.StringArray{
pulumi.String("string"),
},
SitegroupIds: pulumi.StringArray{
pulumi.String("string"),
},
Vendors: pulumi.StringArray{
pulumi.String("string"),
},
},
})
var nacruleResource = new Nacrule("nacruleResource", NacruleArgs.builder()
.action("string")
.order(0)
.orgId("string")
.applyTags("string")
.enabled(false)
.matching(NacruleMatchingArgs.builder()
.authType("string")
.nactags("string")
.portTypes("string")
.siteIds("string")
.sitegroupIds("string")
.vendors("string")
.build())
.name("string")
.notMatching(NacruleNotMatchingArgs.builder()
.authType("string")
.nactags("string")
.portTypes("string")
.siteIds("string")
.sitegroupIds("string")
.vendors("string")
.build())
.build());
nacrule_resource = junipermist.org.Nacrule("nacruleResource",
action="string",
order=0,
org_id="string",
apply_tags=["string"],
enabled=False,
matching={
"auth_type": "string",
"nactags": ["string"],
"port_types": ["string"],
"site_ids": ["string"],
"sitegroup_ids": ["string"],
"vendors": ["string"],
},
name="string",
not_matching={
"auth_type": "string",
"nactags": ["string"],
"port_types": ["string"],
"site_ids": ["string"],
"sitegroup_ids": ["string"],
"vendors": ["string"],
})
const nacruleResource = new junipermist.org.Nacrule("nacruleResource", {
action: "string",
order: 0,
orgId: "string",
applyTags: ["string"],
enabled: false,
matching: {
authType: "string",
nactags: ["string"],
portTypes: ["string"],
siteIds: ["string"],
sitegroupIds: ["string"],
vendors: ["string"],
},
name: "string",
notMatching: {
authType: "string",
nactags: ["string"],
portTypes: ["string"],
siteIds: ["string"],
sitegroupIds: ["string"],
vendors: ["string"],
},
});
type: junipermist:org:Nacrule
properties:
action: string
applyTags:
- string
enabled: false
matching:
authType: string
nactags:
- string
portTypes:
- string
siteIds:
- string
sitegroupIds:
- string
vendors:
- string
name: string
notMatching:
authType: string
nactags:
- string
portTypes:
- string
siteIds:
- string
sitegroupIds:
- string
vendors:
- string
order: 0
orgId: string
Nacrule Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The Nacrule resource accepts the following input properties:
- Action string
- enum:
allow,block - Order int
- the order of the rule, lower value implies higher priority
- Org
Id string - List<string>
- all optional, this goes into Access-Accept
- Enabled bool
- enabled or not
- Matching
Pulumi.
Juniper Mist. Org. Inputs. Nacrule Matching - Name string
- Not
Matching Pulumi.Juniper Mist. Org. Inputs. Nacrule Not Matching
- Action string
- enum:
allow,block - Order int
- the order of the rule, lower value implies higher priority
- Org
Id string - []string
- all optional, this goes into Access-Accept
- Enabled bool
- enabled or not
- Matching
Nacrule
Matching Args - Name string
- Not
Matching NacruleNot Matching Args
- action String
- enum:
allow,block - order Integer
- the order of the rule, lower value implies higher priority
- org
Id String - List<String>
- all optional, this goes into Access-Accept
- enabled Boolean
- enabled or not
- matching
Nacrule
Matching - name String
- not
Matching NacruleNot Matching
- action string
- enum:
allow,block - order number
- the order of the rule, lower value implies higher priority
- org
Id string - string[]
- all optional, this goes into Access-Accept
- enabled boolean
- enabled or not
- matching
Nacrule
Matching - name string
- not
Matching NacruleNot Matching
- action str
- enum:
allow,block - order int
- the order of the rule, lower value implies higher priority
- org_
id str - Sequence[str]
- all optional, this goes into Access-Accept
- enabled bool
- enabled or not
- matching
Nacrule
Matching Args - name str
- not_
matching NacruleNot Matching Args
- action String
- enum:
allow,block - order Number
- the order of the rule, lower value implies higher priority
- org
Id String - List<String>
- all optional, this goes into Access-Accept
- enabled Boolean
- enabled or not
- matching Property Map
- name String
- not
Matching Property Map
Outputs
All input properties are implicitly available as output properties. Additionally, the Nacrule resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Id string
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id str
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
Look up Existing Nacrule Resource
Get an existing Nacrule resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: NacruleState, opts?: CustomResourceOptions): Nacrule@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
action: Optional[str] = None,
apply_tags: Optional[Sequence[str]] = None,
enabled: Optional[bool] = None,
matching: Optional[NacruleMatchingArgs] = None,
name: Optional[str] = None,
not_matching: Optional[NacruleNotMatchingArgs] = None,
order: Optional[int] = None,
org_id: Optional[str] = None) -> Nacrulefunc GetNacrule(ctx *Context, name string, id IDInput, state *NacruleState, opts ...ResourceOption) (*Nacrule, error)public static Nacrule Get(string name, Input<string> id, NacruleState? state, CustomResourceOptions? opts = null)public static Nacrule get(String name, Output<String> id, NacruleState state, CustomResourceOptions options)Resource lookup is not supported in YAML- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Action string
- enum:
allow,block - List<string>
- all optional, this goes into Access-Accept
- Enabled bool
- enabled or not
- Matching
Pulumi.
Juniper Mist. Org. Inputs. Nacrule Matching - Name string
- Not
Matching Pulumi.Juniper Mist. Org. Inputs. Nacrule Not Matching - Order int
- the order of the rule, lower value implies higher priority
- Org
Id string
- Action string
- enum:
allow,block - []string
- all optional, this goes into Access-Accept
- Enabled bool
- enabled or not
- Matching
Nacrule
Matching Args - Name string
- Not
Matching NacruleNot Matching Args - Order int
- the order of the rule, lower value implies higher priority
- Org
Id string
- action String
- enum:
allow,block - List<String>
- all optional, this goes into Access-Accept
- enabled Boolean
- enabled or not
- matching
Nacrule
Matching - name String
- not
Matching NacruleNot Matching - order Integer
- the order of the rule, lower value implies higher priority
- org
Id String
- action string
- enum:
allow,block - string[]
- all optional, this goes into Access-Accept
- enabled boolean
- enabled or not
- matching
Nacrule
Matching - name string
- not
Matching NacruleNot Matching - order number
- the order of the rule, lower value implies higher priority
- org
Id string
- action str
- enum:
allow,block - Sequence[str]
- all optional, this goes into Access-Accept
- enabled bool
- enabled or not
- matching
Nacrule
Matching Args - name str
- not_
matching NacruleNot Matching Args - order int
- the order of the rule, lower value implies higher priority
- org_
id str
- action String
- enum:
allow,block - List<String>
- all optional, this goes into Access-Accept
- enabled Boolean
- enabled or not
- matching Property Map
- name String
- not
Matching Property Map - order Number
- the order of the rule, lower value implies higher priority
- org
Id String
Supporting Types
NacruleMatching, NacruleMatchingArgs
- Auth
Type string - enum:
cert,device-auth,eap-teap,eap-tls,eap-ttls,idp,mab,psk - List<string>
- Port
Types List<string> - Site
Ids List<string> - list of site ids to match
- Sitegroup
Ids List<string> - list of sitegroup ids to match
- Vendors List<string>
- list of vendors to match
- Auth
Type string - enum:
cert,device-auth,eap-teap,eap-tls,eap-ttls,idp,mab,psk - []string
- Port
Types []string - Site
Ids []string - list of site ids to match
- Sitegroup
Ids []string - list of sitegroup ids to match
- Vendors []string
- list of vendors to match
- auth
Type String - enum:
cert,device-auth,eap-teap,eap-tls,eap-ttls,idp,mab,psk - List<String>
- port
Types List<String> - site
Ids List<String> - list of site ids to match
- sitegroup
Ids List<String> - list of sitegroup ids to match
- vendors List<String>
- list of vendors to match
- auth
Type string - enum:
cert,device-auth,eap-teap,eap-tls,eap-ttls,idp,mab,psk - string[]
- port
Types string[] - site
Ids string[] - list of site ids to match
- sitegroup
Ids string[] - list of sitegroup ids to match
- vendors string[]
- list of vendors to match
- auth_
type str - enum:
cert,device-auth,eap-teap,eap-tls,eap-ttls,idp,mab,psk - Sequence[str]
- port_
types Sequence[str] - site_
ids Sequence[str] - list of site ids to match
- sitegroup_
ids Sequence[str] - list of sitegroup ids to match
- vendors Sequence[str]
- list of vendors to match
- auth
Type String - enum:
cert,device-auth,eap-teap,eap-tls,eap-ttls,idp,mab,psk - List<String>
- port
Types List<String> - site
Ids List<String> - list of site ids to match
- sitegroup
Ids List<String> - list of sitegroup ids to match
- vendors List<String>
- list of vendors to match
NacruleNotMatching, NacruleNotMatchingArgs
- Auth
Type string - enum:
cert,device-auth,eap-teap,eap-tls,eap-ttls,idp,mab,psk - List<string>
- Port
Types List<string> - Site
Ids List<string> - list of site ids to match
- Sitegroup
Ids List<string> - list of sitegroup ids to match
- Vendors List<string>
- list of vendors to match
- Auth
Type string - enum:
cert,device-auth,eap-teap,eap-tls,eap-ttls,idp,mab,psk - []string
- Port
Types []string - Site
Ids []string - list of site ids to match
- Sitegroup
Ids []string - list of sitegroup ids to match
- Vendors []string
- list of vendors to match
- auth
Type String - enum:
cert,device-auth,eap-teap,eap-tls,eap-ttls,idp,mab,psk - List<String>
- port
Types List<String> - site
Ids List<String> - list of site ids to match
- sitegroup
Ids List<String> - list of sitegroup ids to match
- vendors List<String>
- list of vendors to match
- auth
Type string - enum:
cert,device-auth,eap-teap,eap-tls,eap-ttls,idp,mab,psk - string[]
- port
Types string[] - site
Ids string[] - list of site ids to match
- sitegroup
Ids string[] - list of sitegroup ids to match
- vendors string[]
- list of vendors to match
- auth_
type str - enum:
cert,device-auth,eap-teap,eap-tls,eap-ttls,idp,mab,psk - Sequence[str]
- port_
types Sequence[str] - site_
ids Sequence[str] - list of site ids to match
- sitegroup_
ids Sequence[str] - list of sitegroup ids to match
- vendors Sequence[str]
- list of vendors to match
- auth
Type String - enum:
cert,device-auth,eap-teap,eap-tls,eap-ttls,idp,mab,psk - List<String>
- port
Types List<String> - site
Ids List<String> - list of site ids to match
- sitegroup
Ids List<String> - list of sitegroup ids to match
- vendors List<String>
- list of vendors to match
Import
Using pulumi import, import mist_org_nacrule with:
NAC Rule can be imported by specifying the org_id and the nacrule_id
$ pulumi import junipermist:org/nacrule:Nacrule nacrule_one 17b46405-3a6d-4715-8bb4-6bb6d06f316a.d3c42998-9012-4859-9743-6b9bee475309
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- junipermist pulumi/pulumi-junipermist
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
mistTerraform Provider.