sdwan.SystemSecurityFeature
Explore with Pulumi AI
This resource can manage a System Security Feature.
- Minimum SD-WAN Manager version:
20.12.0
Example Usage
Coming soon!
Coming soon!
Coming soon!
Coming soon!
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.sdwan.SystemSecurityFeature;
import com.pulumi.sdwan.SystemSecurityFeatureArgs;
import com.pulumi.sdwan.inputs.SystemSecurityFeatureKeychainArgs;
import com.pulumi.sdwan.inputs.SystemSecurityFeatureKeyArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var example = new SystemSecurityFeature("example", SystemSecurityFeatureArgs.builder()
.name("Example")
.description("My Example")
.featureProfileId("f6dd22c8-0b4f-496c-9a0b-6813d1f8b8ac")
.rekey(86400)
.antiReplayWindow("512")
.extendedAntiReplayWindow(256)
.ipsecPairwiseKeying(false)
.integrityTypes("esp")
.keychains(SystemSecurityFeatureKeychainArgs.builder()
.key_chain_name("aaa")
.key_id(1)
.build())
.keys(SystemSecurityFeatureKeyArgs.builder()
.id(0)
.name("aaa")
.send_id(1)
.receiver_id(2)
.include_tcp_options(false)
.accept_ao_mismatch(false)
.crypto_algorithm("aes-128-cmac")
.key_string("abcabc")
.send_life_time_local(true)
.send_life_time_start_epoch(1659284400)
.send_life_time_infinite(true)
.accept_life_time_local(true)
.accept_life_time_start_epoch(1659284400)
.accept_life_time_infinite(true)
.build())
.build());
}
}
resources:
example:
type: sdwan:SystemSecurityFeature
properties:
name: Example
description: My Example
featureProfileId: f6dd22c8-0b4f-496c-9a0b-6813d1f8b8ac
rekey: 86400
antiReplayWindow: '512'
extendedAntiReplayWindow: 256
ipsecPairwiseKeying: false
integrityTypes:
- esp
keychains:
- key_chain_name: aaa
key_id: 1
keys:
- id: 0
name: aaa
send_id: 1
receiver_id: 2
include_tcp_options: false
accept_ao_mismatch: false
crypto_algorithm: aes-128-cmac
key_string: abcabc
send_life_time_local: true
send_life_time_start_epoch: 1.6592844e+09
send_life_time_infinite: true
accept_life_time_local: true
accept_life_time_start_epoch: 1.6592844e+09
accept_life_time_infinite: true
Create SystemSecurityFeature Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new SystemSecurityFeature(name: string, args?: SystemSecurityFeatureArgs, opts?: CustomResourceOptions);
@overload
def SystemSecurityFeature(resource_name: str,
args: Optional[SystemSecurityFeatureArgs] = None,
opts: Optional[ResourceOptions] = None)
@overload
def SystemSecurityFeature(resource_name: str,
opts: Optional[ResourceOptions] = None,
anti_replay_window: Optional[str] = None,
anti_replay_window_variable: Optional[str] = None,
description: Optional[str] = None,
extended_anti_replay_window: Optional[int] = None,
extended_anti_replay_window_variable: Optional[str] = None,
feature_profile_id: Optional[str] = None,
integrity_type_variable: Optional[str] = None,
integrity_types: Optional[Sequence[str]] = None,
ipsec_pairwise_keying: Optional[bool] = None,
ipsec_pairwise_keying_variable: Optional[str] = None,
keychains: Optional[Sequence[SystemSecurityFeatureKeychainArgs]] = None,
keys: Optional[Sequence[SystemSecurityFeatureKeyArgs]] = None,
name: Optional[str] = None,
rekey: Optional[int] = None,
rekey_variable: Optional[str] = None)
func NewSystemSecurityFeature(ctx *Context, name string, args *SystemSecurityFeatureArgs, opts ...ResourceOption) (*SystemSecurityFeature, error)
public SystemSecurityFeature(string name, SystemSecurityFeatureArgs? args = null, CustomResourceOptions? opts = null)
public SystemSecurityFeature(String name, SystemSecurityFeatureArgs args)
public SystemSecurityFeature(String name, SystemSecurityFeatureArgs args, CustomResourceOptions options)
type: sdwan:SystemSecurityFeature
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args SystemSecurityFeatureArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args SystemSecurityFeatureArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args SystemSecurityFeatureArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args SystemSecurityFeatureArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args SystemSecurityFeatureArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var systemSecurityFeatureResource = new Sdwan.SystemSecurityFeature("systemSecurityFeatureResource", new()
{
AntiReplayWindow = "string",
AntiReplayWindowVariable = "string",
Description = "string",
ExtendedAntiReplayWindow = 0,
ExtendedAntiReplayWindowVariable = "string",
FeatureProfileId = "string",
IntegrityTypeVariable = "string",
IntegrityTypes = new[]
{
"string",
},
IpsecPairwiseKeying = false,
IpsecPairwiseKeyingVariable = "string",
Keychains = new[]
{
new Sdwan.Inputs.SystemSecurityFeatureKeychainArgs
{
KeyChainName = "string",
KeyId = 0,
},
},
Keys = new[]
{
new Sdwan.Inputs.SystemSecurityFeatureKeyArgs
{
AcceptAoMismatch = false,
AcceptAoMismatchVariable = "string",
AcceptLifeTimeDuration = 0,
AcceptLifeTimeDurationVariable = "string",
AcceptLifeTimeExact = 0,
AcceptLifeTimeInfinite = false,
AcceptLifeTimeInfiniteVariable = "string",
AcceptLifeTimeLocal = false,
AcceptLifeTimeLocalVariable = "string",
AcceptLifeTimeStartEpoch = 0,
CryptoAlgorithm = "string",
Id = 0,
IncludeTcpOptions = false,
IncludeTcpOptionsVariable = "string",
KeyString = "string",
KeyStringVariable = "string",
Name = "string",
ReceiverId = 0,
ReceiverIdVariable = "string",
SendId = 0,
SendIdVariable = "string",
SendLifeTimeDuration = 0,
SendLifeTimeDurationVariable = "string",
SendLifeTimeExact = 0,
SendLifeTimeInfinite = false,
SendLifeTimeInfiniteVariable = "string",
SendLifeTimeLocal = false,
SendLifeTimeLocalVariable = "string",
SendLifeTimeStartEpoch = 0,
},
},
Name = "string",
Rekey = 0,
RekeyVariable = "string",
});
example, err := sdwan.NewSystemSecurityFeature(ctx, "systemSecurityFeatureResource", &sdwan.SystemSecurityFeatureArgs{
AntiReplayWindow: pulumi.String("string"),
AntiReplayWindowVariable: pulumi.String("string"),
Description: pulumi.String("string"),
ExtendedAntiReplayWindow: pulumi.Int(0),
ExtendedAntiReplayWindowVariable: pulumi.String("string"),
FeatureProfileId: pulumi.String("string"),
IntegrityTypeVariable: pulumi.String("string"),
IntegrityTypes: pulumi.StringArray{
pulumi.String("string"),
},
IpsecPairwiseKeying: pulumi.Bool(false),
IpsecPairwiseKeyingVariable: pulumi.String("string"),
Keychains: sdwan.SystemSecurityFeatureKeychainArray{
&sdwan.SystemSecurityFeatureKeychainArgs{
KeyChainName: pulumi.String("string"),
KeyId: pulumi.Int(0),
},
},
Keys: sdwan.SystemSecurityFeatureKeyArray{
&sdwan.SystemSecurityFeatureKeyArgs{
AcceptAoMismatch: pulumi.Bool(false),
AcceptAoMismatchVariable: pulumi.String("string"),
AcceptLifeTimeDuration: pulumi.Int(0),
AcceptLifeTimeDurationVariable: pulumi.String("string"),
AcceptLifeTimeExact: pulumi.Int(0),
AcceptLifeTimeInfinite: pulumi.Bool(false),
AcceptLifeTimeInfiniteVariable: pulumi.String("string"),
AcceptLifeTimeLocal: pulumi.Bool(false),
AcceptLifeTimeLocalVariable: pulumi.String("string"),
AcceptLifeTimeStartEpoch: pulumi.Int(0),
CryptoAlgorithm: pulumi.String("string"),
Id: pulumi.Int(0),
IncludeTcpOptions: pulumi.Bool(false),
IncludeTcpOptionsVariable: pulumi.String("string"),
KeyString: pulumi.String("string"),
KeyStringVariable: pulumi.String("string"),
Name: pulumi.String("string"),
ReceiverId: pulumi.Int(0),
ReceiverIdVariable: pulumi.String("string"),
SendId: pulumi.Int(0),
SendIdVariable: pulumi.String("string"),
SendLifeTimeDuration: pulumi.Int(0),
SendLifeTimeDurationVariable: pulumi.String("string"),
SendLifeTimeExact: pulumi.Int(0),
SendLifeTimeInfinite: pulumi.Bool(false),
SendLifeTimeInfiniteVariable: pulumi.String("string"),
SendLifeTimeLocal: pulumi.Bool(false),
SendLifeTimeLocalVariable: pulumi.String("string"),
SendLifeTimeStartEpoch: pulumi.Int(0),
},
},
Name: pulumi.String("string"),
Rekey: pulumi.Int(0),
RekeyVariable: pulumi.String("string"),
})
var systemSecurityFeatureResource = new SystemSecurityFeature("systemSecurityFeatureResource", SystemSecurityFeatureArgs.builder()
.antiReplayWindow("string")
.antiReplayWindowVariable("string")
.description("string")
.extendedAntiReplayWindow(0)
.extendedAntiReplayWindowVariable("string")
.featureProfileId("string")
.integrityTypeVariable("string")
.integrityTypes("string")
.ipsecPairwiseKeying(false)
.ipsecPairwiseKeyingVariable("string")
.keychains(SystemSecurityFeatureKeychainArgs.builder()
.keyChainName("string")
.keyId(0)
.build())
.keys(SystemSecurityFeatureKeyArgs.builder()
.acceptAoMismatch(false)
.acceptAoMismatchVariable("string")
.acceptLifeTimeDuration(0)
.acceptLifeTimeDurationVariable("string")
.acceptLifeTimeExact(0)
.acceptLifeTimeInfinite(false)
.acceptLifeTimeInfiniteVariable("string")
.acceptLifeTimeLocal(false)
.acceptLifeTimeLocalVariable("string")
.acceptLifeTimeStartEpoch(0)
.cryptoAlgorithm("string")
.id(0)
.includeTcpOptions(false)
.includeTcpOptionsVariable("string")
.keyString("string")
.keyStringVariable("string")
.name("string")
.receiverId(0)
.receiverIdVariable("string")
.sendId(0)
.sendIdVariable("string")
.sendLifeTimeDuration(0)
.sendLifeTimeDurationVariable("string")
.sendLifeTimeExact(0)
.sendLifeTimeInfinite(false)
.sendLifeTimeInfiniteVariable("string")
.sendLifeTimeLocal(false)
.sendLifeTimeLocalVariable("string")
.sendLifeTimeStartEpoch(0)
.build())
.name("string")
.rekey(0)
.rekeyVariable("string")
.build());
system_security_feature_resource = sdwan.SystemSecurityFeature("systemSecurityFeatureResource",
anti_replay_window="string",
anti_replay_window_variable="string",
description="string",
extended_anti_replay_window=0,
extended_anti_replay_window_variable="string",
feature_profile_id="string",
integrity_type_variable="string",
integrity_types=["string"],
ipsec_pairwise_keying=False,
ipsec_pairwise_keying_variable="string",
keychains=[{
"key_chain_name": "string",
"key_id": 0,
}],
keys=[{
"accept_ao_mismatch": False,
"accept_ao_mismatch_variable": "string",
"accept_life_time_duration": 0,
"accept_life_time_duration_variable": "string",
"accept_life_time_exact": 0,
"accept_life_time_infinite": False,
"accept_life_time_infinite_variable": "string",
"accept_life_time_local": False,
"accept_life_time_local_variable": "string",
"accept_life_time_start_epoch": 0,
"crypto_algorithm": "string",
"id": 0,
"include_tcp_options": False,
"include_tcp_options_variable": "string",
"key_string": "string",
"key_string_variable": "string",
"name": "string",
"receiver_id": 0,
"receiver_id_variable": "string",
"send_id": 0,
"send_id_variable": "string",
"send_life_time_duration": 0,
"send_life_time_duration_variable": "string",
"send_life_time_exact": 0,
"send_life_time_infinite": False,
"send_life_time_infinite_variable": "string",
"send_life_time_local": False,
"send_life_time_local_variable": "string",
"send_life_time_start_epoch": 0,
}],
name="string",
rekey=0,
rekey_variable="string")
const systemSecurityFeatureResource = new sdwan.SystemSecurityFeature("systemSecurityFeatureResource", {
antiReplayWindow: "string",
antiReplayWindowVariable: "string",
description: "string",
extendedAntiReplayWindow: 0,
extendedAntiReplayWindowVariable: "string",
featureProfileId: "string",
integrityTypeVariable: "string",
integrityTypes: ["string"],
ipsecPairwiseKeying: false,
ipsecPairwiseKeyingVariable: "string",
keychains: [{
keyChainName: "string",
keyId: 0,
}],
keys: [{
acceptAoMismatch: false,
acceptAoMismatchVariable: "string",
acceptLifeTimeDuration: 0,
acceptLifeTimeDurationVariable: "string",
acceptLifeTimeExact: 0,
acceptLifeTimeInfinite: false,
acceptLifeTimeInfiniteVariable: "string",
acceptLifeTimeLocal: false,
acceptLifeTimeLocalVariable: "string",
acceptLifeTimeStartEpoch: 0,
cryptoAlgorithm: "string",
id: 0,
includeTcpOptions: false,
includeTcpOptionsVariable: "string",
keyString: "string",
keyStringVariable: "string",
name: "string",
receiverId: 0,
receiverIdVariable: "string",
sendId: 0,
sendIdVariable: "string",
sendLifeTimeDuration: 0,
sendLifeTimeDurationVariable: "string",
sendLifeTimeExact: 0,
sendLifeTimeInfinite: false,
sendLifeTimeInfiniteVariable: "string",
sendLifeTimeLocal: false,
sendLifeTimeLocalVariable: "string",
sendLifeTimeStartEpoch: 0,
}],
name: "string",
rekey: 0,
rekeyVariable: "string",
});
type: sdwan:SystemSecurityFeature
properties:
antiReplayWindow: string
antiReplayWindowVariable: string
description: string
extendedAntiReplayWindow: 0
extendedAntiReplayWindowVariable: string
featureProfileId: string
integrityTypeVariable: string
integrityTypes:
- string
ipsecPairwiseKeying: false
ipsecPairwiseKeyingVariable: string
keychains:
- keyChainName: string
keyId: 0
keys:
- acceptAoMismatch: false
acceptAoMismatchVariable: string
acceptLifeTimeDuration: 0
acceptLifeTimeDurationVariable: string
acceptLifeTimeExact: 0
acceptLifeTimeInfinite: false
acceptLifeTimeInfiniteVariable: string
acceptLifeTimeLocal: false
acceptLifeTimeLocalVariable: string
acceptLifeTimeStartEpoch: 0
cryptoAlgorithm: string
id: 0
includeTcpOptions: false
includeTcpOptionsVariable: string
keyString: string
keyStringVariable: string
name: string
receiverId: 0
receiverIdVariable: string
sendId: 0
sendIdVariable: string
sendLifeTimeDuration: 0
sendLifeTimeDurationVariable: string
sendLifeTimeExact: 0
sendLifeTimeInfinite: false
sendLifeTimeInfiniteVariable: string
sendLifeTimeLocal: false
sendLifeTimeLocalVariable: string
sendLifeTimeStartEpoch: 0
name: string
rekey: 0
rekeyVariable: string
SystemSecurityFeature Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The SystemSecurityFeature resource accepts the following input properties:
- Anti
Replay stringWindow - Set the sliding replay window size - Choices:
64
,128
,256
,512
,1024
,2048
,4096
,8192
- Default value:512
- Anti
Replay stringWindow Variable - Variable name
- Description string
- The description of the Feature
- Extended
Anti intReplay Window - Extended Anti-Replay Window - Range:
10
-2048
- Default value:256
- Extended
Anti stringReplay Window Variable - Variable name
- Feature
Profile stringId - Feature Profile ID
- Integrity
Type stringVariable - Variable name
- Integrity
Types List<string> - Set the authentication type for DTLS connections
- Ipsec
Pairwise boolKeying - Enable or disable IPsec pairwise-keying - Default value:
false
- Ipsec
Pairwise stringKeying Variable - Variable name
- Keychains
List<System
Security Feature Keychain> - Configure a Keychain
- Keys
List<System
Security Feature Key> - Configure a Key
- Name string
- The name of the Feature
- Rekey int
- Set how often to change the AES key for DTLS connections - Range:
10
-1209600
- Default value:86400
- Rekey
Variable string - Variable name
- Anti
Replay stringWindow - Set the sliding replay window size - Choices:
64
,128
,256
,512
,1024
,2048
,4096
,8192
- Default value:512
- Anti
Replay stringWindow Variable - Variable name
- Description string
- The description of the Feature
- Extended
Anti intReplay Window - Extended Anti-Replay Window - Range:
10
-2048
- Default value:256
- Extended
Anti stringReplay Window Variable - Variable name
- Feature
Profile stringId - Feature Profile ID
- Integrity
Type stringVariable - Variable name
- Integrity
Types []string - Set the authentication type for DTLS connections
- Ipsec
Pairwise boolKeying - Enable or disable IPsec pairwise-keying - Default value:
false
- Ipsec
Pairwise stringKeying Variable - Variable name
- Keychains
[]System
Security Feature Keychain Args - Configure a Keychain
- Keys
[]System
Security Feature Key Args - Configure a Key
- Name string
- The name of the Feature
- Rekey int
- Set how often to change the AES key for DTLS connections - Range:
10
-1209600
- Default value:86400
- Rekey
Variable string - Variable name
- anti
Replay StringWindow - Set the sliding replay window size - Choices:
64
,128
,256
,512
,1024
,2048
,4096
,8192
- Default value:512
- anti
Replay StringWindow Variable - Variable name
- description String
- The description of the Feature
- extended
Anti IntegerReplay Window - Extended Anti-Replay Window - Range:
10
-2048
- Default value:256
- extended
Anti StringReplay Window Variable - Variable name
- feature
Profile StringId - Feature Profile ID
- integrity
Type StringVariable - Variable name
- integrity
Types List<String> - Set the authentication type for DTLS connections
- ipsec
Pairwise BooleanKeying - Enable or disable IPsec pairwise-keying - Default value:
false
- ipsec
Pairwise StringKeying Variable - Variable name
- keychains
List<System
Security Feature Keychain> - Configure a Keychain
- keys
List<System
Security Feature Key> - Configure a Key
- name String
- The name of the Feature
- rekey Integer
- Set how often to change the AES key for DTLS connections - Range:
10
-1209600
- Default value:86400
- rekey
Variable String - Variable name
- anti
Replay stringWindow - Set the sliding replay window size - Choices:
64
,128
,256
,512
,1024
,2048
,4096
,8192
- Default value:512
- anti
Replay stringWindow Variable - Variable name
- description string
- The description of the Feature
- extended
Anti numberReplay Window - Extended Anti-Replay Window - Range:
10
-2048
- Default value:256
- extended
Anti stringReplay Window Variable - Variable name
- feature
Profile stringId - Feature Profile ID
- integrity
Type stringVariable - Variable name
- integrity
Types string[] - Set the authentication type for DTLS connections
- ipsec
Pairwise booleanKeying - Enable or disable IPsec pairwise-keying - Default value:
false
- ipsec
Pairwise stringKeying Variable - Variable name
- keychains
System
Security Feature Keychain[] - Configure a Keychain
- keys
System
Security Feature Key[] - Configure a Key
- name string
- The name of the Feature
- rekey number
- Set how often to change the AES key for DTLS connections - Range:
10
-1209600
- Default value:86400
- rekey
Variable string - Variable name
- anti_
replay_ strwindow - Set the sliding replay window size - Choices:
64
,128
,256
,512
,1024
,2048
,4096
,8192
- Default value:512
- anti_
replay_ strwindow_ variable - Variable name
- description str
- The description of the Feature
- extended_
anti_ intreplay_ window - Extended Anti-Replay Window - Range:
10
-2048
- Default value:256
- extended_
anti_ strreplay_ window_ variable - Variable name
- feature_
profile_ strid - Feature Profile ID
- integrity_
type_ strvariable - Variable name
- integrity_
types Sequence[str] - Set the authentication type for DTLS connections
- ipsec_
pairwise_ boolkeying - Enable or disable IPsec pairwise-keying - Default value:
false
- ipsec_
pairwise_ strkeying_ variable - Variable name
- keychains
Sequence[System
Security Feature Keychain Args] - Configure a Keychain
- keys
Sequence[System
Security Feature Key Args] - Configure a Key
- name str
- The name of the Feature
- rekey int
- Set how often to change the AES key for DTLS connections - Range:
10
-1209600
- Default value:86400
- rekey_
variable str - Variable name
- anti
Replay StringWindow - Set the sliding replay window size - Choices:
64
,128
,256
,512
,1024
,2048
,4096
,8192
- Default value:512
- anti
Replay StringWindow Variable - Variable name
- description String
- The description of the Feature
- extended
Anti NumberReplay Window - Extended Anti-Replay Window - Range:
10
-2048
- Default value:256
- extended
Anti StringReplay Window Variable - Variable name
- feature
Profile StringId - Feature Profile ID
- integrity
Type StringVariable - Variable name
- integrity
Types List<String> - Set the authentication type for DTLS connections
- ipsec
Pairwise BooleanKeying - Enable or disable IPsec pairwise-keying - Default value:
false
- ipsec
Pairwise StringKeying Variable - Variable name
- keychains List<Property Map>
- Configure a Keychain
- keys List<Property Map>
- Configure a Key
- name String
- The name of the Feature
- rekey Number
- Set how often to change the AES key for DTLS connections - Range:
10
-1209600
- Default value:86400
- rekey
Variable String - Variable name
Outputs
All input properties are implicitly available as output properties. Additionally, the SystemSecurityFeature resource produces the following output properties:
Look up Existing SystemSecurityFeature Resource
Get an existing SystemSecurityFeature resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: SystemSecurityFeatureState, opts?: CustomResourceOptions): SystemSecurityFeature
@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
anti_replay_window: Optional[str] = None,
anti_replay_window_variable: Optional[str] = None,
description: Optional[str] = None,
extended_anti_replay_window: Optional[int] = None,
extended_anti_replay_window_variable: Optional[str] = None,
feature_profile_id: Optional[str] = None,
integrity_type_variable: Optional[str] = None,
integrity_types: Optional[Sequence[str]] = None,
ipsec_pairwise_keying: Optional[bool] = None,
ipsec_pairwise_keying_variable: Optional[str] = None,
keychains: Optional[Sequence[SystemSecurityFeatureKeychainArgs]] = None,
keys: Optional[Sequence[SystemSecurityFeatureKeyArgs]] = None,
name: Optional[str] = None,
rekey: Optional[int] = None,
rekey_variable: Optional[str] = None,
version: Optional[int] = None) -> SystemSecurityFeature
func GetSystemSecurityFeature(ctx *Context, name string, id IDInput, state *SystemSecurityFeatureState, opts ...ResourceOption) (*SystemSecurityFeature, error)
public static SystemSecurityFeature Get(string name, Input<string> id, SystemSecurityFeatureState? state, CustomResourceOptions? opts = null)
public static SystemSecurityFeature get(String name, Output<String> id, SystemSecurityFeatureState state, CustomResourceOptions options)
Resource lookup is not supported in YAML
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Anti
Replay stringWindow - Set the sliding replay window size - Choices:
64
,128
,256
,512
,1024
,2048
,4096
,8192
- Default value:512
- Anti
Replay stringWindow Variable - Variable name
- Description string
- The description of the Feature
- Extended
Anti intReplay Window - Extended Anti-Replay Window - Range:
10
-2048
- Default value:256
- Extended
Anti stringReplay Window Variable - Variable name
- Feature
Profile stringId - Feature Profile ID
- Integrity
Type stringVariable - Variable name
- Integrity
Types List<string> - Set the authentication type for DTLS connections
- Ipsec
Pairwise boolKeying - Enable or disable IPsec pairwise-keying - Default value:
false
- Ipsec
Pairwise stringKeying Variable - Variable name
- Keychains
List<System
Security Feature Keychain> - Configure a Keychain
- Keys
List<System
Security Feature Key> - Configure a Key
- Name string
- The name of the Feature
- Rekey int
- Set how often to change the AES key for DTLS connections - Range:
10
-1209600
- Default value:86400
- Rekey
Variable string - Variable name
- Version int
- The version of the Feature
- Anti
Replay stringWindow - Set the sliding replay window size - Choices:
64
,128
,256
,512
,1024
,2048
,4096
,8192
- Default value:512
- Anti
Replay stringWindow Variable - Variable name
- Description string
- The description of the Feature
- Extended
Anti intReplay Window - Extended Anti-Replay Window - Range:
10
-2048
- Default value:256
- Extended
Anti stringReplay Window Variable - Variable name
- Feature
Profile stringId - Feature Profile ID
- Integrity
Type stringVariable - Variable name
- Integrity
Types []string - Set the authentication type for DTLS connections
- Ipsec
Pairwise boolKeying - Enable or disable IPsec pairwise-keying - Default value:
false
- Ipsec
Pairwise stringKeying Variable - Variable name
- Keychains
[]System
Security Feature Keychain Args - Configure a Keychain
- Keys
[]System
Security Feature Key Args - Configure a Key
- Name string
- The name of the Feature
- Rekey int
- Set how often to change the AES key for DTLS connections - Range:
10
-1209600
- Default value:86400
- Rekey
Variable string - Variable name
- Version int
- The version of the Feature
- anti
Replay StringWindow - Set the sliding replay window size - Choices:
64
,128
,256
,512
,1024
,2048
,4096
,8192
- Default value:512
- anti
Replay StringWindow Variable - Variable name
- description String
- The description of the Feature
- extended
Anti IntegerReplay Window - Extended Anti-Replay Window - Range:
10
-2048
- Default value:256
- extended
Anti StringReplay Window Variable - Variable name
- feature
Profile StringId - Feature Profile ID
- integrity
Type StringVariable - Variable name
- integrity
Types List<String> - Set the authentication type for DTLS connections
- ipsec
Pairwise BooleanKeying - Enable or disable IPsec pairwise-keying - Default value:
false
- ipsec
Pairwise StringKeying Variable - Variable name
- keychains
List<System
Security Feature Keychain> - Configure a Keychain
- keys
List<System
Security Feature Key> - Configure a Key
- name String
- The name of the Feature
- rekey Integer
- Set how often to change the AES key for DTLS connections - Range:
10
-1209600
- Default value:86400
- rekey
Variable String - Variable name
- version Integer
- The version of the Feature
- anti
Replay stringWindow - Set the sliding replay window size - Choices:
64
,128
,256
,512
,1024
,2048
,4096
,8192
- Default value:512
- anti
Replay stringWindow Variable - Variable name
- description string
- The description of the Feature
- extended
Anti numberReplay Window - Extended Anti-Replay Window - Range:
10
-2048
- Default value:256
- extended
Anti stringReplay Window Variable - Variable name
- feature
Profile stringId - Feature Profile ID
- integrity
Type stringVariable - Variable name
- integrity
Types string[] - Set the authentication type for DTLS connections
- ipsec
Pairwise booleanKeying - Enable or disable IPsec pairwise-keying - Default value:
false
- ipsec
Pairwise stringKeying Variable - Variable name
- keychains
System
Security Feature Keychain[] - Configure a Keychain
- keys
System
Security Feature Key[] - Configure a Key
- name string
- The name of the Feature
- rekey number
- Set how often to change the AES key for DTLS connections - Range:
10
-1209600
- Default value:86400
- rekey
Variable string - Variable name
- version number
- The version of the Feature
- anti_
replay_ strwindow - Set the sliding replay window size - Choices:
64
,128
,256
,512
,1024
,2048
,4096
,8192
- Default value:512
- anti_
replay_ strwindow_ variable - Variable name
- description str
- The description of the Feature
- extended_
anti_ intreplay_ window - Extended Anti-Replay Window - Range:
10
-2048
- Default value:256
- extended_
anti_ strreplay_ window_ variable - Variable name
- feature_
profile_ strid - Feature Profile ID
- integrity_
type_ strvariable - Variable name
- integrity_
types Sequence[str] - Set the authentication type for DTLS connections
- ipsec_
pairwise_ boolkeying - Enable or disable IPsec pairwise-keying - Default value:
false
- ipsec_
pairwise_ strkeying_ variable - Variable name
- keychains
Sequence[System
Security Feature Keychain Args] - Configure a Keychain
- keys
Sequence[System
Security Feature Key Args] - Configure a Key
- name str
- The name of the Feature
- rekey int
- Set how often to change the AES key for DTLS connections - Range:
10
-1209600
- Default value:86400
- rekey_
variable str - Variable name
- version int
- The version of the Feature
- anti
Replay StringWindow - Set the sliding replay window size - Choices:
64
,128
,256
,512
,1024
,2048
,4096
,8192
- Default value:512
- anti
Replay StringWindow Variable - Variable name
- description String
- The description of the Feature
- extended
Anti NumberReplay Window - Extended Anti-Replay Window - Range:
10
-2048
- Default value:256
- extended
Anti StringReplay Window Variable - Variable name
- feature
Profile StringId - Feature Profile ID
- integrity
Type StringVariable - Variable name
- integrity
Types List<String> - Set the authentication type for DTLS connections
- ipsec
Pairwise BooleanKeying - Enable or disable IPsec pairwise-keying - Default value:
false
- ipsec
Pairwise StringKeying Variable - Variable name
- keychains List<Property Map>
- Configure a Keychain
- keys List<Property Map>
- Configure a Key
- name String
- The name of the Feature
- rekey Number
- Set how often to change the AES key for DTLS connections - Range:
10
-1209600
- Default value:86400
- rekey
Variable String - Variable name
- version Number
- The version of the Feature
Supporting Types
SystemSecurityFeatureKey, SystemSecurityFeatureKeyArgs
- Accept
Ao boolMismatch - Configure Accept AO Mismatch
- Default value:
false
- Default value:
- Accept
Ao stringMismatch Variable - Variable name
- Accept
Life intTime Duration - Send lifetime Duration (seconds)
- Range:
1
-2147483646
- Range:
- Accept
Life stringTime Duration Variable - Variable name
- Accept
Life intTime Exact - Configure Key lifetime end time
- Accept
Life boolTime Infinite - Infinite lifetime
- Accept
Life stringTime Infinite Variable - Variable name
- Accept
Life boolTime Local - Configure Send lifetime Local
- Default value:
false
- Default value:
- Accept
Life stringTime Local Variable - Variable name
- Accept
Life intTime Start Epoch - Configure Key lifetime start time
- Crypto
Algorithm string - Crypto Algorithm
- Choices:
aes-128-cmac
,hmac-sha-1
,hmac-sha-256
- Choices:
- Id int
- Select the Key ID
- Include
Tcp boolOptions - Configure Include TCP Options
- Default value:
false
- Default value:
- Include
Tcp stringOptions Variable - Variable name
- Key
String string - Specify the Key String
- Key
String stringVariable - Variable name
- Name string
- Select the chain name
- Receiver
Id int - Specify the Receiver ID
- Range:
0
-255
- Range:
- Receiver
Id stringVariable - Variable name
- Send
Id int - Specify the Send ID
- Range:
0
-255
- Range:
- Send
Id stringVariable - Variable name
- Send
Life intTime Duration - Send lifetime Duration (seconds)
- Range:
1
-2147483646
- Range:
- Send
Life stringTime Duration Variable - Variable name
- Send
Life intTime Exact - Configure Key lifetime end time
- Send
Life boolTime Infinite - Infinite lifetime
- Send
Life stringTime Infinite Variable - Variable name
- Send
Life boolTime Local - Configure Send lifetime Local
- Default value:
false
- Default value:
- Send
Life stringTime Local Variable - Variable name
- Send
Life intTime Start Epoch - Configure Key lifetime start time
- Accept
Ao boolMismatch - Configure Accept AO Mismatch
- Default value:
false
- Default value:
- Accept
Ao stringMismatch Variable - Variable name
- Accept
Life intTime Duration - Send lifetime Duration (seconds)
- Range:
1
-2147483646
- Range:
- Accept
Life stringTime Duration Variable - Variable name
- Accept
Life intTime Exact - Configure Key lifetime end time
- Accept
Life boolTime Infinite - Infinite lifetime
- Accept
Life stringTime Infinite Variable - Variable name
- Accept
Life boolTime Local - Configure Send lifetime Local
- Default value:
false
- Default value:
- Accept
Life stringTime Local Variable - Variable name
- Accept
Life intTime Start Epoch - Configure Key lifetime start time
- Crypto
Algorithm string - Crypto Algorithm
- Choices:
aes-128-cmac
,hmac-sha-1
,hmac-sha-256
- Choices:
- Id int
- Select the Key ID
- Include
Tcp boolOptions - Configure Include TCP Options
- Default value:
false
- Default value:
- Include
Tcp stringOptions Variable - Variable name
- Key
String string - Specify the Key String
- Key
String stringVariable - Variable name
- Name string
- Select the chain name
- Receiver
Id int - Specify the Receiver ID
- Range:
0
-255
- Range:
- Receiver
Id stringVariable - Variable name
- Send
Id int - Specify the Send ID
- Range:
0
-255
- Range:
- Send
Id stringVariable - Variable name
- Send
Life intTime Duration - Send lifetime Duration (seconds)
- Range:
1
-2147483646
- Range:
- Send
Life stringTime Duration Variable - Variable name
- Send
Life intTime Exact - Configure Key lifetime end time
- Send
Life boolTime Infinite - Infinite lifetime
- Send
Life stringTime Infinite Variable - Variable name
- Send
Life boolTime Local - Configure Send lifetime Local
- Default value:
false
- Default value:
- Send
Life stringTime Local Variable - Variable name
- Send
Life intTime Start Epoch - Configure Key lifetime start time
- accept
Ao BooleanMismatch - Configure Accept AO Mismatch
- Default value:
false
- Default value:
- accept
Ao StringMismatch Variable - Variable name
- accept
Life IntegerTime Duration - Send lifetime Duration (seconds)
- Range:
1
-2147483646
- Range:
- accept
Life StringTime Duration Variable - Variable name
- accept
Life IntegerTime Exact - Configure Key lifetime end time
- accept
Life BooleanTime Infinite - Infinite lifetime
- accept
Life StringTime Infinite Variable - Variable name
- accept
Life BooleanTime Local - Configure Send lifetime Local
- Default value:
false
- Default value:
- accept
Life StringTime Local Variable - Variable name
- accept
Life IntegerTime Start Epoch - Configure Key lifetime start time
- crypto
Algorithm String - Crypto Algorithm
- Choices:
aes-128-cmac
,hmac-sha-1
,hmac-sha-256
- Choices:
- id Integer
- Select the Key ID
- include
Tcp BooleanOptions - Configure Include TCP Options
- Default value:
false
- Default value:
- include
Tcp StringOptions Variable - Variable name
- key
String String - Specify the Key String
- key
String StringVariable - Variable name
- name String
- Select the chain name
- receiver
Id Integer - Specify the Receiver ID
- Range:
0
-255
- Range:
- receiver
Id StringVariable - Variable name
- send
Id Integer - Specify the Send ID
- Range:
0
-255
- Range:
- send
Id StringVariable - Variable name
- send
Life IntegerTime Duration - Send lifetime Duration (seconds)
- Range:
1
-2147483646
- Range:
- send
Life StringTime Duration Variable - Variable name
- send
Life IntegerTime Exact - Configure Key lifetime end time
- send
Life BooleanTime Infinite - Infinite lifetime
- send
Life StringTime Infinite Variable - Variable name
- send
Life BooleanTime Local - Configure Send lifetime Local
- Default value:
false
- Default value:
- send
Life StringTime Local Variable - Variable name
- send
Life IntegerTime Start Epoch - Configure Key lifetime start time
- accept
Ao booleanMismatch - Configure Accept AO Mismatch
- Default value:
false
- Default value:
- accept
Ao stringMismatch Variable - Variable name
- accept
Life numberTime Duration - Send lifetime Duration (seconds)
- Range:
1
-2147483646
- Range:
- accept
Life stringTime Duration Variable - Variable name
- accept
Life numberTime Exact - Configure Key lifetime end time
- accept
Life booleanTime Infinite - Infinite lifetime
- accept
Life stringTime Infinite Variable - Variable name
- accept
Life booleanTime Local - Configure Send lifetime Local
- Default value:
false
- Default value:
- accept
Life stringTime Local Variable - Variable name
- accept
Life numberTime Start Epoch - Configure Key lifetime start time
- crypto
Algorithm string - Crypto Algorithm
- Choices:
aes-128-cmac
,hmac-sha-1
,hmac-sha-256
- Choices:
- id number
- Select the Key ID
- include
Tcp booleanOptions - Configure Include TCP Options
- Default value:
false
- Default value:
- include
Tcp stringOptions Variable - Variable name
- key
String string - Specify the Key String
- key
String stringVariable - Variable name
- name string
- Select the chain name
- receiver
Id number - Specify the Receiver ID
- Range:
0
-255
- Range:
- receiver
Id stringVariable - Variable name
- send
Id number - Specify the Send ID
- Range:
0
-255
- Range:
- send
Id stringVariable - Variable name
- send
Life numberTime Duration - Send lifetime Duration (seconds)
- Range:
1
-2147483646
- Range:
- send
Life stringTime Duration Variable - Variable name
- send
Life numberTime Exact - Configure Key lifetime end time
- send
Life booleanTime Infinite - Infinite lifetime
- send
Life stringTime Infinite Variable - Variable name
- send
Life booleanTime Local - Configure Send lifetime Local
- Default value:
false
- Default value:
- send
Life stringTime Local Variable - Variable name
- send
Life numberTime Start Epoch - Configure Key lifetime start time
- accept_
ao_ boolmismatch - Configure Accept AO Mismatch
- Default value:
false
- Default value:
- accept_
ao_ strmismatch_ variable - Variable name
- accept_
life_ inttime_ duration - Send lifetime Duration (seconds)
- Range:
1
-2147483646
- Range:
- accept_
life_ strtime_ duration_ variable - Variable name
- accept_
life_ inttime_ exact - Configure Key lifetime end time
- accept_
life_ booltime_ infinite - Infinite lifetime
- accept_
life_ strtime_ infinite_ variable - Variable name
- accept_
life_ booltime_ local - Configure Send lifetime Local
- Default value:
false
- Default value:
- accept_
life_ strtime_ local_ variable - Variable name
- accept_
life_ inttime_ start_ epoch - Configure Key lifetime start time
- crypto_
algorithm str - Crypto Algorithm
- Choices:
aes-128-cmac
,hmac-sha-1
,hmac-sha-256
- Choices:
- id int
- Select the Key ID
- include_
tcp_ booloptions - Configure Include TCP Options
- Default value:
false
- Default value:
- include_
tcp_ stroptions_ variable - Variable name
- key_
string str - Specify the Key String
- key_
string_ strvariable - Variable name
- name str
- Select the chain name
- receiver_
id int - Specify the Receiver ID
- Range:
0
-255
- Range:
- receiver_
id_ strvariable - Variable name
- send_
id int - Specify the Send ID
- Range:
0
-255
- Range:
- send_
id_ strvariable - Variable name
- send_
life_ inttime_ duration - Send lifetime Duration (seconds)
- Range:
1
-2147483646
- Range:
- send_
life_ strtime_ duration_ variable - Variable name
- send_
life_ inttime_ exact - Configure Key lifetime end time
- send_
life_ booltime_ infinite - Infinite lifetime
- send_
life_ strtime_ infinite_ variable - Variable name
- send_
life_ booltime_ local - Configure Send lifetime Local
- Default value:
false
- Default value:
- send_
life_ strtime_ local_ variable - Variable name
- send_
life_ inttime_ start_ epoch - Configure Key lifetime start time
- accept
Ao BooleanMismatch - Configure Accept AO Mismatch
- Default value:
false
- Default value:
- accept
Ao StringMismatch Variable - Variable name
- accept
Life NumberTime Duration - Send lifetime Duration (seconds)
- Range:
1
-2147483646
- Range:
- accept
Life StringTime Duration Variable - Variable name
- accept
Life NumberTime Exact - Configure Key lifetime end time
- accept
Life BooleanTime Infinite - Infinite lifetime
- accept
Life StringTime Infinite Variable - Variable name
- accept
Life BooleanTime Local - Configure Send lifetime Local
- Default value:
false
- Default value:
- accept
Life StringTime Local Variable - Variable name
- accept
Life NumberTime Start Epoch - Configure Key lifetime start time
- crypto
Algorithm String - Crypto Algorithm
- Choices:
aes-128-cmac
,hmac-sha-1
,hmac-sha-256
- Choices:
- id Number
- Select the Key ID
- include
Tcp BooleanOptions - Configure Include TCP Options
- Default value:
false
- Default value:
- include
Tcp StringOptions Variable - Variable name
- key
String String - Specify the Key String
- key
String StringVariable - Variable name
- name String
- Select the chain name
- receiver
Id Number - Specify the Receiver ID
- Range:
0
-255
- Range:
- receiver
Id StringVariable - Variable name
- send
Id Number - Specify the Send ID
- Range:
0
-255
- Range:
- send
Id StringVariable - Variable name
- send
Life NumberTime Duration - Send lifetime Duration (seconds)
- Range:
1
-2147483646
- Range:
- send
Life StringTime Duration Variable - Variable name
- send
Life NumberTime Exact - Configure Key lifetime end time
- send
Life BooleanTime Infinite - Infinite lifetime
- send
Life StringTime Infinite Variable - Variable name
- send
Life BooleanTime Local - Configure Send lifetime Local
- Default value:
false
- Default value:
- send
Life StringTime Local Variable - Variable name
- send
Life NumberTime Start Epoch - Configure Key lifetime start time
SystemSecurityFeatureKeychain, SystemSecurityFeatureKeychainArgs
- Key
Chain stringName - Specify the name of the Keychain
- Key
Id int - Specify the Key ID
- Range:
0
-2147483647
- Range:
- Key
Chain stringName - Specify the name of the Keychain
- Key
Id int - Specify the Key ID
- Range:
0
-2147483647
- Range:
- key
Chain StringName - Specify the name of the Keychain
- key
Id Integer - Specify the Key ID
- Range:
0
-2147483647
- Range:
- key
Chain stringName - Specify the name of the Keychain
- key
Id number - Specify the Key ID
- Range:
0
-2147483647
- Range:
- key_
chain_ strname - Specify the name of the Keychain
- key_
id int - Specify the Key ID
- Range:
0
-2147483647
- Range:
- key
Chain StringName - Specify the name of the Keychain
- key
Id Number - Specify the Key ID
- Range:
0
-2147483647
- Range:
Import
Expected import identifier with the format: “system_security_feature_id,feature_profile_id”
$ pulumi import sdwan:index/systemSecurityFeature:SystemSecurityFeature example "f6b2c44c-693c-4763-b010-895aa3d236bd,f6dd22c8-0b4f-496c-9a0b-6813d1f8b8ac"
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- sdwan pulumi/pulumi-sdwan
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
sdwan
Terraform Provider.