1. Packages
  2. Cisco Catalyst SD-WAN
  3. API Docs
  4. SystemSecurityFeature
Cisco Catalyst SD-WAN v0.2.0 published on Friday, Nov 1, 2024 by Pulumi

sdwan.SystemSecurityFeature

Explore with Pulumi AI

sdwan logo
Cisco Catalyst SD-WAN v0.2.0 published on Friday, Nov 1, 2024 by Pulumi

    This resource can manage a System Security Feature.

    • Minimum SD-WAN Manager version: 20.12.0

    Example Usage

    Coming soon!
    
    Coming soon!
    
    Coming soon!
    
    Coming soon!
    
    package generated_program;
    
    import com.pulumi.Context;
    import com.pulumi.Pulumi;
    import com.pulumi.core.Output;
    import com.pulumi.sdwan.SystemSecurityFeature;
    import com.pulumi.sdwan.SystemSecurityFeatureArgs;
    import com.pulumi.sdwan.inputs.SystemSecurityFeatureKeychainArgs;
    import com.pulumi.sdwan.inputs.SystemSecurityFeatureKeyArgs;
    import java.util.List;
    import java.util.ArrayList;
    import java.util.Map;
    import java.io.File;
    import java.nio.file.Files;
    import java.nio.file.Paths;
    
    public class App {
        public static void main(String[] args) {
            Pulumi.run(App::stack);
        }
    
        public static void stack(Context ctx) {
            var example = new SystemSecurityFeature("example", SystemSecurityFeatureArgs.builder()
                .name("Example")
                .description("My Example")
                .featureProfileId("f6dd22c8-0b4f-496c-9a0b-6813d1f8b8ac")
                .rekey(86400)
                .antiReplayWindow("512")
                .extendedAntiReplayWindow(256)
                .ipsecPairwiseKeying(false)
                .integrityTypes("esp")
                .keychains(SystemSecurityFeatureKeychainArgs.builder()
                    .key_chain_name("aaa")
                    .key_id(1)
                    .build())
                .keys(SystemSecurityFeatureKeyArgs.builder()
                    .id(0)
                    .name("aaa")
                    .send_id(1)
                    .receiver_id(2)
                    .include_tcp_options(false)
                    .accept_ao_mismatch(false)
                    .crypto_algorithm("aes-128-cmac")
                    .key_string("abcabc")
                    .send_life_time_local(true)
                    .send_life_time_start_epoch(1659284400)
                    .send_life_time_infinite(true)
                    .accept_life_time_local(true)
                    .accept_life_time_start_epoch(1659284400)
                    .accept_life_time_infinite(true)
                    .build())
                .build());
    
        }
    }
    
    resources:
      example:
        type: sdwan:SystemSecurityFeature
        properties:
          name: Example
          description: My Example
          featureProfileId: f6dd22c8-0b4f-496c-9a0b-6813d1f8b8ac
          rekey: 86400
          antiReplayWindow: '512'
          extendedAntiReplayWindow: 256
          ipsecPairwiseKeying: false
          integrityTypes:
            - esp
          keychains:
            - key_chain_name: aaa
              key_id: 1
          keys:
            - id: 0
              name: aaa
              send_id: 1
              receiver_id: 2
              include_tcp_options: false
              accept_ao_mismatch: false
              crypto_algorithm: aes-128-cmac
              key_string: abcabc
              send_life_time_local: true
              send_life_time_start_epoch: 1.6592844e+09
              send_life_time_infinite: true
              accept_life_time_local: true
              accept_life_time_start_epoch: 1.6592844e+09
              accept_life_time_infinite: true
    

    Create SystemSecurityFeature Resource

    Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

    Constructor syntax

    new SystemSecurityFeature(name: string, args?: SystemSecurityFeatureArgs, opts?: CustomResourceOptions);
    @overload
    def SystemSecurityFeature(resource_name: str,
                              args: Optional[SystemSecurityFeatureArgs] = None,
                              opts: Optional[ResourceOptions] = None)
    
    @overload
    def SystemSecurityFeature(resource_name: str,
                              opts: Optional[ResourceOptions] = None,
                              anti_replay_window: Optional[str] = None,
                              anti_replay_window_variable: Optional[str] = None,
                              description: Optional[str] = None,
                              extended_anti_replay_window: Optional[int] = None,
                              extended_anti_replay_window_variable: Optional[str] = None,
                              feature_profile_id: Optional[str] = None,
                              integrity_type_variable: Optional[str] = None,
                              integrity_types: Optional[Sequence[str]] = None,
                              ipsec_pairwise_keying: Optional[bool] = None,
                              ipsec_pairwise_keying_variable: Optional[str] = None,
                              keychains: Optional[Sequence[SystemSecurityFeatureKeychainArgs]] = None,
                              keys: Optional[Sequence[SystemSecurityFeatureKeyArgs]] = None,
                              name: Optional[str] = None,
                              rekey: Optional[int] = None,
                              rekey_variable: Optional[str] = None)
    func NewSystemSecurityFeature(ctx *Context, name string, args *SystemSecurityFeatureArgs, opts ...ResourceOption) (*SystemSecurityFeature, error)
    public SystemSecurityFeature(string name, SystemSecurityFeatureArgs? args = null, CustomResourceOptions? opts = null)
    public SystemSecurityFeature(String name, SystemSecurityFeatureArgs args)
    public SystemSecurityFeature(String name, SystemSecurityFeatureArgs args, CustomResourceOptions options)
    
    type: sdwan:SystemSecurityFeature
    properties: # The arguments to resource properties.
    options: # Bag of options to control resource's behavior.
    
    

    Parameters

    name string
    The unique name of the resource.
    args SystemSecurityFeatureArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    resource_name str
    The unique name of the resource.
    args SystemSecurityFeatureArgs
    The arguments to resource properties.
    opts ResourceOptions
    Bag of options to control resource's behavior.
    ctx Context
    Context object for the current deployment.
    name string
    The unique name of the resource.
    args SystemSecurityFeatureArgs
    The arguments to resource properties.
    opts ResourceOption
    Bag of options to control resource's behavior.
    name string
    The unique name of the resource.
    args SystemSecurityFeatureArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    name String
    The unique name of the resource.
    args SystemSecurityFeatureArgs
    The arguments to resource properties.
    options CustomResourceOptions
    Bag of options to control resource's behavior.

    Constructor example

    The following reference example uses placeholder values for all input properties.

    var systemSecurityFeatureResource = new Sdwan.SystemSecurityFeature("systemSecurityFeatureResource", new()
    {
        AntiReplayWindow = "string",
        AntiReplayWindowVariable = "string",
        Description = "string",
        ExtendedAntiReplayWindow = 0,
        ExtendedAntiReplayWindowVariable = "string",
        FeatureProfileId = "string",
        IntegrityTypeVariable = "string",
        IntegrityTypes = new[]
        {
            "string",
        },
        IpsecPairwiseKeying = false,
        IpsecPairwiseKeyingVariable = "string",
        Keychains = new[]
        {
            new Sdwan.Inputs.SystemSecurityFeatureKeychainArgs
            {
                KeyChainName = "string",
                KeyId = 0,
            },
        },
        Keys = new[]
        {
            new Sdwan.Inputs.SystemSecurityFeatureKeyArgs
            {
                AcceptAoMismatch = false,
                AcceptAoMismatchVariable = "string",
                AcceptLifeTimeDuration = 0,
                AcceptLifeTimeDurationVariable = "string",
                AcceptLifeTimeExact = 0,
                AcceptLifeTimeInfinite = false,
                AcceptLifeTimeInfiniteVariable = "string",
                AcceptLifeTimeLocal = false,
                AcceptLifeTimeLocalVariable = "string",
                AcceptLifeTimeStartEpoch = 0,
                CryptoAlgorithm = "string",
                Id = 0,
                IncludeTcpOptions = false,
                IncludeTcpOptionsVariable = "string",
                KeyString = "string",
                KeyStringVariable = "string",
                Name = "string",
                ReceiverId = 0,
                ReceiverIdVariable = "string",
                SendId = 0,
                SendIdVariable = "string",
                SendLifeTimeDuration = 0,
                SendLifeTimeDurationVariable = "string",
                SendLifeTimeExact = 0,
                SendLifeTimeInfinite = false,
                SendLifeTimeInfiniteVariable = "string",
                SendLifeTimeLocal = false,
                SendLifeTimeLocalVariable = "string",
                SendLifeTimeStartEpoch = 0,
            },
        },
        Name = "string",
        Rekey = 0,
        RekeyVariable = "string",
    });
    
    example, err := sdwan.NewSystemSecurityFeature(ctx, "systemSecurityFeatureResource", &sdwan.SystemSecurityFeatureArgs{
    	AntiReplayWindow:                 pulumi.String("string"),
    	AntiReplayWindowVariable:         pulumi.String("string"),
    	Description:                      pulumi.String("string"),
    	ExtendedAntiReplayWindow:         pulumi.Int(0),
    	ExtendedAntiReplayWindowVariable: pulumi.String("string"),
    	FeatureProfileId:                 pulumi.String("string"),
    	IntegrityTypeVariable:            pulumi.String("string"),
    	IntegrityTypes: pulumi.StringArray{
    		pulumi.String("string"),
    	},
    	IpsecPairwiseKeying:         pulumi.Bool(false),
    	IpsecPairwiseKeyingVariable: pulumi.String("string"),
    	Keychains: sdwan.SystemSecurityFeatureKeychainArray{
    		&sdwan.SystemSecurityFeatureKeychainArgs{
    			KeyChainName: pulumi.String("string"),
    			KeyId:        pulumi.Int(0),
    		},
    	},
    	Keys: sdwan.SystemSecurityFeatureKeyArray{
    		&sdwan.SystemSecurityFeatureKeyArgs{
    			AcceptAoMismatch:               pulumi.Bool(false),
    			AcceptAoMismatchVariable:       pulumi.String("string"),
    			AcceptLifeTimeDuration:         pulumi.Int(0),
    			AcceptLifeTimeDurationVariable: pulumi.String("string"),
    			AcceptLifeTimeExact:            pulumi.Int(0),
    			AcceptLifeTimeInfinite:         pulumi.Bool(false),
    			AcceptLifeTimeInfiniteVariable: pulumi.String("string"),
    			AcceptLifeTimeLocal:            pulumi.Bool(false),
    			AcceptLifeTimeLocalVariable:    pulumi.String("string"),
    			AcceptLifeTimeStartEpoch:       pulumi.Int(0),
    			CryptoAlgorithm:                pulumi.String("string"),
    			Id:                             pulumi.Int(0),
    			IncludeTcpOptions:              pulumi.Bool(false),
    			IncludeTcpOptionsVariable:      pulumi.String("string"),
    			KeyString:                      pulumi.String("string"),
    			KeyStringVariable:              pulumi.String("string"),
    			Name:                           pulumi.String("string"),
    			ReceiverId:                     pulumi.Int(0),
    			ReceiverIdVariable:             pulumi.String("string"),
    			SendId:                         pulumi.Int(0),
    			SendIdVariable:                 pulumi.String("string"),
    			SendLifeTimeDuration:           pulumi.Int(0),
    			SendLifeTimeDurationVariable:   pulumi.String("string"),
    			SendLifeTimeExact:              pulumi.Int(0),
    			SendLifeTimeInfinite:           pulumi.Bool(false),
    			SendLifeTimeInfiniteVariable:   pulumi.String("string"),
    			SendLifeTimeLocal:              pulumi.Bool(false),
    			SendLifeTimeLocalVariable:      pulumi.String("string"),
    			SendLifeTimeStartEpoch:         pulumi.Int(0),
    		},
    	},
    	Name:          pulumi.String("string"),
    	Rekey:         pulumi.Int(0),
    	RekeyVariable: pulumi.String("string"),
    })
    
    var systemSecurityFeatureResource = new SystemSecurityFeature("systemSecurityFeatureResource", SystemSecurityFeatureArgs.builder()
        .antiReplayWindow("string")
        .antiReplayWindowVariable("string")
        .description("string")
        .extendedAntiReplayWindow(0)
        .extendedAntiReplayWindowVariable("string")
        .featureProfileId("string")
        .integrityTypeVariable("string")
        .integrityTypes("string")
        .ipsecPairwiseKeying(false)
        .ipsecPairwiseKeyingVariable("string")
        .keychains(SystemSecurityFeatureKeychainArgs.builder()
            .keyChainName("string")
            .keyId(0)
            .build())
        .keys(SystemSecurityFeatureKeyArgs.builder()
            .acceptAoMismatch(false)
            .acceptAoMismatchVariable("string")
            .acceptLifeTimeDuration(0)
            .acceptLifeTimeDurationVariable("string")
            .acceptLifeTimeExact(0)
            .acceptLifeTimeInfinite(false)
            .acceptLifeTimeInfiniteVariable("string")
            .acceptLifeTimeLocal(false)
            .acceptLifeTimeLocalVariable("string")
            .acceptLifeTimeStartEpoch(0)
            .cryptoAlgorithm("string")
            .id(0)
            .includeTcpOptions(false)
            .includeTcpOptionsVariable("string")
            .keyString("string")
            .keyStringVariable("string")
            .name("string")
            .receiverId(0)
            .receiverIdVariable("string")
            .sendId(0)
            .sendIdVariable("string")
            .sendLifeTimeDuration(0)
            .sendLifeTimeDurationVariable("string")
            .sendLifeTimeExact(0)
            .sendLifeTimeInfinite(false)
            .sendLifeTimeInfiniteVariable("string")
            .sendLifeTimeLocal(false)
            .sendLifeTimeLocalVariable("string")
            .sendLifeTimeStartEpoch(0)
            .build())
        .name("string")
        .rekey(0)
        .rekeyVariable("string")
        .build());
    
    system_security_feature_resource = sdwan.SystemSecurityFeature("systemSecurityFeatureResource",
        anti_replay_window="string",
        anti_replay_window_variable="string",
        description="string",
        extended_anti_replay_window=0,
        extended_anti_replay_window_variable="string",
        feature_profile_id="string",
        integrity_type_variable="string",
        integrity_types=["string"],
        ipsec_pairwise_keying=False,
        ipsec_pairwise_keying_variable="string",
        keychains=[{
            "key_chain_name": "string",
            "key_id": 0,
        }],
        keys=[{
            "accept_ao_mismatch": False,
            "accept_ao_mismatch_variable": "string",
            "accept_life_time_duration": 0,
            "accept_life_time_duration_variable": "string",
            "accept_life_time_exact": 0,
            "accept_life_time_infinite": False,
            "accept_life_time_infinite_variable": "string",
            "accept_life_time_local": False,
            "accept_life_time_local_variable": "string",
            "accept_life_time_start_epoch": 0,
            "crypto_algorithm": "string",
            "id": 0,
            "include_tcp_options": False,
            "include_tcp_options_variable": "string",
            "key_string": "string",
            "key_string_variable": "string",
            "name": "string",
            "receiver_id": 0,
            "receiver_id_variable": "string",
            "send_id": 0,
            "send_id_variable": "string",
            "send_life_time_duration": 0,
            "send_life_time_duration_variable": "string",
            "send_life_time_exact": 0,
            "send_life_time_infinite": False,
            "send_life_time_infinite_variable": "string",
            "send_life_time_local": False,
            "send_life_time_local_variable": "string",
            "send_life_time_start_epoch": 0,
        }],
        name="string",
        rekey=0,
        rekey_variable="string")
    
    const systemSecurityFeatureResource = new sdwan.SystemSecurityFeature("systemSecurityFeatureResource", {
        antiReplayWindow: "string",
        antiReplayWindowVariable: "string",
        description: "string",
        extendedAntiReplayWindow: 0,
        extendedAntiReplayWindowVariable: "string",
        featureProfileId: "string",
        integrityTypeVariable: "string",
        integrityTypes: ["string"],
        ipsecPairwiseKeying: false,
        ipsecPairwiseKeyingVariable: "string",
        keychains: [{
            keyChainName: "string",
            keyId: 0,
        }],
        keys: [{
            acceptAoMismatch: false,
            acceptAoMismatchVariable: "string",
            acceptLifeTimeDuration: 0,
            acceptLifeTimeDurationVariable: "string",
            acceptLifeTimeExact: 0,
            acceptLifeTimeInfinite: false,
            acceptLifeTimeInfiniteVariable: "string",
            acceptLifeTimeLocal: false,
            acceptLifeTimeLocalVariable: "string",
            acceptLifeTimeStartEpoch: 0,
            cryptoAlgorithm: "string",
            id: 0,
            includeTcpOptions: false,
            includeTcpOptionsVariable: "string",
            keyString: "string",
            keyStringVariable: "string",
            name: "string",
            receiverId: 0,
            receiverIdVariable: "string",
            sendId: 0,
            sendIdVariable: "string",
            sendLifeTimeDuration: 0,
            sendLifeTimeDurationVariable: "string",
            sendLifeTimeExact: 0,
            sendLifeTimeInfinite: false,
            sendLifeTimeInfiniteVariable: "string",
            sendLifeTimeLocal: false,
            sendLifeTimeLocalVariable: "string",
            sendLifeTimeStartEpoch: 0,
        }],
        name: "string",
        rekey: 0,
        rekeyVariable: "string",
    });
    
    type: sdwan:SystemSecurityFeature
    properties:
        antiReplayWindow: string
        antiReplayWindowVariable: string
        description: string
        extendedAntiReplayWindow: 0
        extendedAntiReplayWindowVariable: string
        featureProfileId: string
        integrityTypeVariable: string
        integrityTypes:
            - string
        ipsecPairwiseKeying: false
        ipsecPairwiseKeyingVariable: string
        keychains:
            - keyChainName: string
              keyId: 0
        keys:
            - acceptAoMismatch: false
              acceptAoMismatchVariable: string
              acceptLifeTimeDuration: 0
              acceptLifeTimeDurationVariable: string
              acceptLifeTimeExact: 0
              acceptLifeTimeInfinite: false
              acceptLifeTimeInfiniteVariable: string
              acceptLifeTimeLocal: false
              acceptLifeTimeLocalVariable: string
              acceptLifeTimeStartEpoch: 0
              cryptoAlgorithm: string
              id: 0
              includeTcpOptions: false
              includeTcpOptionsVariable: string
              keyString: string
              keyStringVariable: string
              name: string
              receiverId: 0
              receiverIdVariable: string
              sendId: 0
              sendIdVariable: string
              sendLifeTimeDuration: 0
              sendLifeTimeDurationVariable: string
              sendLifeTimeExact: 0
              sendLifeTimeInfinite: false
              sendLifeTimeInfiniteVariable: string
              sendLifeTimeLocal: false
              sendLifeTimeLocalVariable: string
              sendLifeTimeStartEpoch: 0
        name: string
        rekey: 0
        rekeyVariable: string
    

    SystemSecurityFeature Resource Properties

    To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

    Inputs

    In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

    The SystemSecurityFeature resource accepts the following input properties:

    AntiReplayWindow string
    Set the sliding replay window size - Choices: 64, 128, 256, 512, 1024, 2048, 4096, 8192 - Default value: 512
    AntiReplayWindowVariable string
    Variable name
    Description string
    The description of the Feature
    ExtendedAntiReplayWindow int
    Extended Anti-Replay Window - Range: 10-2048 - Default value: 256
    ExtendedAntiReplayWindowVariable string
    Variable name
    FeatureProfileId string
    Feature Profile ID
    IntegrityTypeVariable string
    Variable name
    IntegrityTypes List<string>
    Set the authentication type for DTLS connections
    IpsecPairwiseKeying bool
    Enable or disable IPsec pairwise-keying - Default value: false
    IpsecPairwiseKeyingVariable string
    Variable name
    Keychains List<SystemSecurityFeatureKeychain>
    Configure a Keychain
    Keys List<SystemSecurityFeatureKey>
    Configure a Key
    Name string
    The name of the Feature
    Rekey int
    Set how often to change the AES key for DTLS connections - Range: 10-1209600 - Default value: 86400
    RekeyVariable string
    Variable name
    AntiReplayWindow string
    Set the sliding replay window size - Choices: 64, 128, 256, 512, 1024, 2048, 4096, 8192 - Default value: 512
    AntiReplayWindowVariable string
    Variable name
    Description string
    The description of the Feature
    ExtendedAntiReplayWindow int
    Extended Anti-Replay Window - Range: 10-2048 - Default value: 256
    ExtendedAntiReplayWindowVariable string
    Variable name
    FeatureProfileId string
    Feature Profile ID
    IntegrityTypeVariable string
    Variable name
    IntegrityTypes []string
    Set the authentication type for DTLS connections
    IpsecPairwiseKeying bool
    Enable or disable IPsec pairwise-keying - Default value: false
    IpsecPairwiseKeyingVariable string
    Variable name
    Keychains []SystemSecurityFeatureKeychainArgs
    Configure a Keychain
    Keys []SystemSecurityFeatureKeyArgs
    Configure a Key
    Name string
    The name of the Feature
    Rekey int
    Set how often to change the AES key for DTLS connections - Range: 10-1209600 - Default value: 86400
    RekeyVariable string
    Variable name
    antiReplayWindow String
    Set the sliding replay window size - Choices: 64, 128, 256, 512, 1024, 2048, 4096, 8192 - Default value: 512
    antiReplayWindowVariable String
    Variable name
    description String
    The description of the Feature
    extendedAntiReplayWindow Integer
    Extended Anti-Replay Window - Range: 10-2048 - Default value: 256
    extendedAntiReplayWindowVariable String
    Variable name
    featureProfileId String
    Feature Profile ID
    integrityTypeVariable String
    Variable name
    integrityTypes List<String>
    Set the authentication type for DTLS connections
    ipsecPairwiseKeying Boolean
    Enable or disable IPsec pairwise-keying - Default value: false
    ipsecPairwiseKeyingVariable String
    Variable name
    keychains List<SystemSecurityFeatureKeychain>
    Configure a Keychain
    keys List<SystemSecurityFeatureKey>
    Configure a Key
    name String
    The name of the Feature
    rekey Integer
    Set how often to change the AES key for DTLS connections - Range: 10-1209600 - Default value: 86400
    rekeyVariable String
    Variable name
    antiReplayWindow string
    Set the sliding replay window size - Choices: 64, 128, 256, 512, 1024, 2048, 4096, 8192 - Default value: 512
    antiReplayWindowVariable string
    Variable name
    description string
    The description of the Feature
    extendedAntiReplayWindow number
    Extended Anti-Replay Window - Range: 10-2048 - Default value: 256
    extendedAntiReplayWindowVariable string
    Variable name
    featureProfileId string
    Feature Profile ID
    integrityTypeVariable string
    Variable name
    integrityTypes string[]
    Set the authentication type for DTLS connections
    ipsecPairwiseKeying boolean
    Enable or disable IPsec pairwise-keying - Default value: false
    ipsecPairwiseKeyingVariable string
    Variable name
    keychains SystemSecurityFeatureKeychain[]
    Configure a Keychain
    keys SystemSecurityFeatureKey[]
    Configure a Key
    name string
    The name of the Feature
    rekey number
    Set how often to change the AES key for DTLS connections - Range: 10-1209600 - Default value: 86400
    rekeyVariable string
    Variable name
    anti_replay_window str
    Set the sliding replay window size - Choices: 64, 128, 256, 512, 1024, 2048, 4096, 8192 - Default value: 512
    anti_replay_window_variable str
    Variable name
    description str
    The description of the Feature
    extended_anti_replay_window int
    Extended Anti-Replay Window - Range: 10-2048 - Default value: 256
    extended_anti_replay_window_variable str
    Variable name
    feature_profile_id str
    Feature Profile ID
    integrity_type_variable str
    Variable name
    integrity_types Sequence[str]
    Set the authentication type for DTLS connections
    ipsec_pairwise_keying bool
    Enable or disable IPsec pairwise-keying - Default value: false
    ipsec_pairwise_keying_variable str
    Variable name
    keychains Sequence[SystemSecurityFeatureKeychainArgs]
    Configure a Keychain
    keys Sequence[SystemSecurityFeatureKeyArgs]
    Configure a Key
    name str
    The name of the Feature
    rekey int
    Set how often to change the AES key for DTLS connections - Range: 10-1209600 - Default value: 86400
    rekey_variable str
    Variable name
    antiReplayWindow String
    Set the sliding replay window size - Choices: 64, 128, 256, 512, 1024, 2048, 4096, 8192 - Default value: 512
    antiReplayWindowVariable String
    Variable name
    description String
    The description of the Feature
    extendedAntiReplayWindow Number
    Extended Anti-Replay Window - Range: 10-2048 - Default value: 256
    extendedAntiReplayWindowVariable String
    Variable name
    featureProfileId String
    Feature Profile ID
    integrityTypeVariable String
    Variable name
    integrityTypes List<String>
    Set the authentication type for DTLS connections
    ipsecPairwiseKeying Boolean
    Enable or disable IPsec pairwise-keying - Default value: false
    ipsecPairwiseKeyingVariable String
    Variable name
    keychains List<Property Map>
    Configure a Keychain
    keys List<Property Map>
    Configure a Key
    name String
    The name of the Feature
    rekey Number
    Set how often to change the AES key for DTLS connections - Range: 10-1209600 - Default value: 86400
    rekeyVariable String
    Variable name

    Outputs

    All input properties are implicitly available as output properties. Additionally, the SystemSecurityFeature resource produces the following output properties:

    Id string
    The provider-assigned unique ID for this managed resource.
    Version int
    The version of the Feature
    Id string
    The provider-assigned unique ID for this managed resource.
    Version int
    The version of the Feature
    id String
    The provider-assigned unique ID for this managed resource.
    version Integer
    The version of the Feature
    id string
    The provider-assigned unique ID for this managed resource.
    version number
    The version of the Feature
    id str
    The provider-assigned unique ID for this managed resource.
    version int
    The version of the Feature
    id String
    The provider-assigned unique ID for this managed resource.
    version Number
    The version of the Feature

    Look up Existing SystemSecurityFeature Resource

    Get an existing SystemSecurityFeature resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

    public static get(name: string, id: Input<ID>, state?: SystemSecurityFeatureState, opts?: CustomResourceOptions): SystemSecurityFeature
    @staticmethod
    def get(resource_name: str,
            id: str,
            opts: Optional[ResourceOptions] = None,
            anti_replay_window: Optional[str] = None,
            anti_replay_window_variable: Optional[str] = None,
            description: Optional[str] = None,
            extended_anti_replay_window: Optional[int] = None,
            extended_anti_replay_window_variable: Optional[str] = None,
            feature_profile_id: Optional[str] = None,
            integrity_type_variable: Optional[str] = None,
            integrity_types: Optional[Sequence[str]] = None,
            ipsec_pairwise_keying: Optional[bool] = None,
            ipsec_pairwise_keying_variable: Optional[str] = None,
            keychains: Optional[Sequence[SystemSecurityFeatureKeychainArgs]] = None,
            keys: Optional[Sequence[SystemSecurityFeatureKeyArgs]] = None,
            name: Optional[str] = None,
            rekey: Optional[int] = None,
            rekey_variable: Optional[str] = None,
            version: Optional[int] = None) -> SystemSecurityFeature
    func GetSystemSecurityFeature(ctx *Context, name string, id IDInput, state *SystemSecurityFeatureState, opts ...ResourceOption) (*SystemSecurityFeature, error)
    public static SystemSecurityFeature Get(string name, Input<string> id, SystemSecurityFeatureState? state, CustomResourceOptions? opts = null)
    public static SystemSecurityFeature get(String name, Output<String> id, SystemSecurityFeatureState state, CustomResourceOptions options)
    Resource lookup is not supported in YAML
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    resource_name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    The following state arguments are supported:
    AntiReplayWindow string
    Set the sliding replay window size - Choices: 64, 128, 256, 512, 1024, 2048, 4096, 8192 - Default value: 512
    AntiReplayWindowVariable string
    Variable name
    Description string
    The description of the Feature
    ExtendedAntiReplayWindow int
    Extended Anti-Replay Window - Range: 10-2048 - Default value: 256
    ExtendedAntiReplayWindowVariable string
    Variable name
    FeatureProfileId string
    Feature Profile ID
    IntegrityTypeVariable string
    Variable name
    IntegrityTypes List<string>
    Set the authentication type for DTLS connections
    IpsecPairwiseKeying bool
    Enable or disable IPsec pairwise-keying - Default value: false
    IpsecPairwiseKeyingVariable string
    Variable name
    Keychains List<SystemSecurityFeatureKeychain>
    Configure a Keychain
    Keys List<SystemSecurityFeatureKey>
    Configure a Key
    Name string
    The name of the Feature
    Rekey int
    Set how often to change the AES key for DTLS connections - Range: 10-1209600 - Default value: 86400
    RekeyVariable string
    Variable name
    Version int
    The version of the Feature
    AntiReplayWindow string
    Set the sliding replay window size - Choices: 64, 128, 256, 512, 1024, 2048, 4096, 8192 - Default value: 512
    AntiReplayWindowVariable string
    Variable name
    Description string
    The description of the Feature
    ExtendedAntiReplayWindow int
    Extended Anti-Replay Window - Range: 10-2048 - Default value: 256
    ExtendedAntiReplayWindowVariable string
    Variable name
    FeatureProfileId string
    Feature Profile ID
    IntegrityTypeVariable string
    Variable name
    IntegrityTypes []string
    Set the authentication type for DTLS connections
    IpsecPairwiseKeying bool
    Enable or disable IPsec pairwise-keying - Default value: false
    IpsecPairwiseKeyingVariable string
    Variable name
    Keychains []SystemSecurityFeatureKeychainArgs
    Configure a Keychain
    Keys []SystemSecurityFeatureKeyArgs
    Configure a Key
    Name string
    The name of the Feature
    Rekey int
    Set how often to change the AES key for DTLS connections - Range: 10-1209600 - Default value: 86400
    RekeyVariable string
    Variable name
    Version int
    The version of the Feature
    antiReplayWindow String
    Set the sliding replay window size - Choices: 64, 128, 256, 512, 1024, 2048, 4096, 8192 - Default value: 512
    antiReplayWindowVariable String
    Variable name
    description String
    The description of the Feature
    extendedAntiReplayWindow Integer
    Extended Anti-Replay Window - Range: 10-2048 - Default value: 256
    extendedAntiReplayWindowVariable String
    Variable name
    featureProfileId String
    Feature Profile ID
    integrityTypeVariable String
    Variable name
    integrityTypes List<String>
    Set the authentication type for DTLS connections
    ipsecPairwiseKeying Boolean
    Enable or disable IPsec pairwise-keying - Default value: false
    ipsecPairwiseKeyingVariable String
    Variable name
    keychains List<SystemSecurityFeatureKeychain>
    Configure a Keychain
    keys List<SystemSecurityFeatureKey>
    Configure a Key
    name String
    The name of the Feature
    rekey Integer
    Set how often to change the AES key for DTLS connections - Range: 10-1209600 - Default value: 86400
    rekeyVariable String
    Variable name
    version Integer
    The version of the Feature
    antiReplayWindow string
    Set the sliding replay window size - Choices: 64, 128, 256, 512, 1024, 2048, 4096, 8192 - Default value: 512
    antiReplayWindowVariable string
    Variable name
    description string
    The description of the Feature
    extendedAntiReplayWindow number
    Extended Anti-Replay Window - Range: 10-2048 - Default value: 256
    extendedAntiReplayWindowVariable string
    Variable name
    featureProfileId string
    Feature Profile ID
    integrityTypeVariable string
    Variable name
    integrityTypes string[]
    Set the authentication type for DTLS connections
    ipsecPairwiseKeying boolean
    Enable or disable IPsec pairwise-keying - Default value: false
    ipsecPairwiseKeyingVariable string
    Variable name
    keychains SystemSecurityFeatureKeychain[]
    Configure a Keychain
    keys SystemSecurityFeatureKey[]
    Configure a Key
    name string
    The name of the Feature
    rekey number
    Set how often to change the AES key for DTLS connections - Range: 10-1209600 - Default value: 86400
    rekeyVariable string
    Variable name
    version number
    The version of the Feature
    anti_replay_window str
    Set the sliding replay window size - Choices: 64, 128, 256, 512, 1024, 2048, 4096, 8192 - Default value: 512
    anti_replay_window_variable str
    Variable name
    description str
    The description of the Feature
    extended_anti_replay_window int
    Extended Anti-Replay Window - Range: 10-2048 - Default value: 256
    extended_anti_replay_window_variable str
    Variable name
    feature_profile_id str
    Feature Profile ID
    integrity_type_variable str
    Variable name
    integrity_types Sequence[str]
    Set the authentication type for DTLS connections
    ipsec_pairwise_keying bool
    Enable or disable IPsec pairwise-keying - Default value: false
    ipsec_pairwise_keying_variable str
    Variable name
    keychains Sequence[SystemSecurityFeatureKeychainArgs]
    Configure a Keychain
    keys Sequence[SystemSecurityFeatureKeyArgs]
    Configure a Key
    name str
    The name of the Feature
    rekey int
    Set how often to change the AES key for DTLS connections - Range: 10-1209600 - Default value: 86400
    rekey_variable str
    Variable name
    version int
    The version of the Feature
    antiReplayWindow String
    Set the sliding replay window size - Choices: 64, 128, 256, 512, 1024, 2048, 4096, 8192 - Default value: 512
    antiReplayWindowVariable String
    Variable name
    description String
    The description of the Feature
    extendedAntiReplayWindow Number
    Extended Anti-Replay Window - Range: 10-2048 - Default value: 256
    extendedAntiReplayWindowVariable String
    Variable name
    featureProfileId String
    Feature Profile ID
    integrityTypeVariable String
    Variable name
    integrityTypes List<String>
    Set the authentication type for DTLS connections
    ipsecPairwiseKeying Boolean
    Enable or disable IPsec pairwise-keying - Default value: false
    ipsecPairwiseKeyingVariable String
    Variable name
    keychains List<Property Map>
    Configure a Keychain
    keys List<Property Map>
    Configure a Key
    name String
    The name of the Feature
    rekey Number
    Set how often to change the AES key for DTLS connections - Range: 10-1209600 - Default value: 86400
    rekeyVariable String
    Variable name
    version Number
    The version of the Feature

    Supporting Types

    SystemSecurityFeatureKey, SystemSecurityFeatureKeyArgs

    AcceptAoMismatch bool
    Configure Accept AO Mismatch

    • Default value: false
    AcceptAoMismatchVariable string
    Variable name
    AcceptLifeTimeDuration int
    Send lifetime Duration (seconds)

    • Range: 1-2147483646
    AcceptLifeTimeDurationVariable string
    Variable name
    AcceptLifeTimeExact int
    Configure Key lifetime end time
    AcceptLifeTimeInfinite bool
    Infinite lifetime
    AcceptLifeTimeInfiniteVariable string
    Variable name
    AcceptLifeTimeLocal bool
    Configure Send lifetime Local

    • Default value: false
    AcceptLifeTimeLocalVariable string
    Variable name
    AcceptLifeTimeStartEpoch int
    Configure Key lifetime start time
    CryptoAlgorithm string
    Crypto Algorithm

    • Choices: aes-128-cmac, hmac-sha-1, hmac-sha-256
    Id int
    Select the Key ID
    IncludeTcpOptions bool
    Configure Include TCP Options

    • Default value: false
    IncludeTcpOptionsVariable string
    Variable name
    KeyString string
    Specify the Key String
    KeyStringVariable string
    Variable name
    Name string
    Select the chain name
    ReceiverId int
    Specify the Receiver ID

    • Range: 0-255
    ReceiverIdVariable string
    Variable name
    SendId int
    Specify the Send ID

    • Range: 0-255
    SendIdVariable string
    Variable name
    SendLifeTimeDuration int
    Send lifetime Duration (seconds)

    • Range: 1-2147483646
    SendLifeTimeDurationVariable string
    Variable name
    SendLifeTimeExact int
    Configure Key lifetime end time
    SendLifeTimeInfinite bool
    Infinite lifetime
    SendLifeTimeInfiniteVariable string
    Variable name
    SendLifeTimeLocal bool
    Configure Send lifetime Local

    • Default value: false
    SendLifeTimeLocalVariable string
    Variable name
    SendLifeTimeStartEpoch int
    Configure Key lifetime start time
    AcceptAoMismatch bool
    Configure Accept AO Mismatch

    • Default value: false
    AcceptAoMismatchVariable string
    Variable name
    AcceptLifeTimeDuration int
    Send lifetime Duration (seconds)

    • Range: 1-2147483646
    AcceptLifeTimeDurationVariable string
    Variable name
    AcceptLifeTimeExact int
    Configure Key lifetime end time
    AcceptLifeTimeInfinite bool
    Infinite lifetime
    AcceptLifeTimeInfiniteVariable string
    Variable name
    AcceptLifeTimeLocal bool
    Configure Send lifetime Local

    • Default value: false
    AcceptLifeTimeLocalVariable string
    Variable name
    AcceptLifeTimeStartEpoch int
    Configure Key lifetime start time
    CryptoAlgorithm string
    Crypto Algorithm

    • Choices: aes-128-cmac, hmac-sha-1, hmac-sha-256
    Id int
    Select the Key ID
    IncludeTcpOptions bool
    Configure Include TCP Options

    • Default value: false
    IncludeTcpOptionsVariable string
    Variable name
    KeyString string
    Specify the Key String
    KeyStringVariable string
    Variable name
    Name string
    Select the chain name
    ReceiverId int
    Specify the Receiver ID

    • Range: 0-255
    ReceiverIdVariable string
    Variable name
    SendId int
    Specify the Send ID

    • Range: 0-255
    SendIdVariable string
    Variable name
    SendLifeTimeDuration int
    Send lifetime Duration (seconds)

    • Range: 1-2147483646
    SendLifeTimeDurationVariable string
    Variable name
    SendLifeTimeExact int
    Configure Key lifetime end time
    SendLifeTimeInfinite bool
    Infinite lifetime
    SendLifeTimeInfiniteVariable string
    Variable name
    SendLifeTimeLocal bool
    Configure Send lifetime Local

    • Default value: false
    SendLifeTimeLocalVariable string
    Variable name
    SendLifeTimeStartEpoch int
    Configure Key lifetime start time
    acceptAoMismatch Boolean
    Configure Accept AO Mismatch

    • Default value: false
    acceptAoMismatchVariable String
    Variable name
    acceptLifeTimeDuration Integer
    Send lifetime Duration (seconds)

    • Range: 1-2147483646
    acceptLifeTimeDurationVariable String
    Variable name
    acceptLifeTimeExact Integer
    Configure Key lifetime end time
    acceptLifeTimeInfinite Boolean
    Infinite lifetime
    acceptLifeTimeInfiniteVariable String
    Variable name
    acceptLifeTimeLocal Boolean
    Configure Send lifetime Local

    • Default value: false
    acceptLifeTimeLocalVariable String
    Variable name
    acceptLifeTimeStartEpoch Integer
    Configure Key lifetime start time
    cryptoAlgorithm String
    Crypto Algorithm

    • Choices: aes-128-cmac, hmac-sha-1, hmac-sha-256
    id Integer
    Select the Key ID
    includeTcpOptions Boolean
    Configure Include TCP Options

    • Default value: false
    includeTcpOptionsVariable String
    Variable name
    keyString String
    Specify the Key String
    keyStringVariable String
    Variable name
    name String
    Select the chain name
    receiverId Integer
    Specify the Receiver ID

    • Range: 0-255
    receiverIdVariable String
    Variable name
    sendId Integer
    Specify the Send ID

    • Range: 0-255
    sendIdVariable String
    Variable name
    sendLifeTimeDuration Integer
    Send lifetime Duration (seconds)

    • Range: 1-2147483646
    sendLifeTimeDurationVariable String
    Variable name
    sendLifeTimeExact Integer
    Configure Key lifetime end time
    sendLifeTimeInfinite Boolean
    Infinite lifetime
    sendLifeTimeInfiniteVariable String
    Variable name
    sendLifeTimeLocal Boolean
    Configure Send lifetime Local

    • Default value: false
    sendLifeTimeLocalVariable String
    Variable name
    sendLifeTimeStartEpoch Integer
    Configure Key lifetime start time
    acceptAoMismatch boolean
    Configure Accept AO Mismatch

    • Default value: false
    acceptAoMismatchVariable string
    Variable name
    acceptLifeTimeDuration number
    Send lifetime Duration (seconds)

    • Range: 1-2147483646
    acceptLifeTimeDurationVariable string
    Variable name
    acceptLifeTimeExact number
    Configure Key lifetime end time
    acceptLifeTimeInfinite boolean
    Infinite lifetime
    acceptLifeTimeInfiniteVariable string
    Variable name
    acceptLifeTimeLocal boolean
    Configure Send lifetime Local

    • Default value: false
    acceptLifeTimeLocalVariable string
    Variable name
    acceptLifeTimeStartEpoch number
    Configure Key lifetime start time
    cryptoAlgorithm string
    Crypto Algorithm

    • Choices: aes-128-cmac, hmac-sha-1, hmac-sha-256
    id number
    Select the Key ID
    includeTcpOptions boolean
    Configure Include TCP Options

    • Default value: false
    includeTcpOptionsVariable string
    Variable name
    keyString string
    Specify the Key String
    keyStringVariable string
    Variable name
    name string
    Select the chain name
    receiverId number
    Specify the Receiver ID

    • Range: 0-255
    receiverIdVariable string
    Variable name
    sendId number
    Specify the Send ID

    • Range: 0-255
    sendIdVariable string
    Variable name
    sendLifeTimeDuration number
    Send lifetime Duration (seconds)

    • Range: 1-2147483646
    sendLifeTimeDurationVariable string
    Variable name
    sendLifeTimeExact number
    Configure Key lifetime end time
    sendLifeTimeInfinite boolean
    Infinite lifetime
    sendLifeTimeInfiniteVariable string
    Variable name
    sendLifeTimeLocal boolean
    Configure Send lifetime Local

    • Default value: false
    sendLifeTimeLocalVariable string
    Variable name
    sendLifeTimeStartEpoch number
    Configure Key lifetime start time
    accept_ao_mismatch bool
    Configure Accept AO Mismatch

    • Default value: false
    accept_ao_mismatch_variable str
    Variable name
    accept_life_time_duration int
    Send lifetime Duration (seconds)

    • Range: 1-2147483646
    accept_life_time_duration_variable str
    Variable name
    accept_life_time_exact int
    Configure Key lifetime end time
    accept_life_time_infinite bool
    Infinite lifetime
    accept_life_time_infinite_variable str
    Variable name
    accept_life_time_local bool
    Configure Send lifetime Local

    • Default value: false
    accept_life_time_local_variable str
    Variable name
    accept_life_time_start_epoch int
    Configure Key lifetime start time
    crypto_algorithm str
    Crypto Algorithm

    • Choices: aes-128-cmac, hmac-sha-1, hmac-sha-256
    id int
    Select the Key ID
    include_tcp_options bool
    Configure Include TCP Options

    • Default value: false
    include_tcp_options_variable str
    Variable name
    key_string str
    Specify the Key String
    key_string_variable str
    Variable name
    name str
    Select the chain name
    receiver_id int
    Specify the Receiver ID

    • Range: 0-255
    receiver_id_variable str
    Variable name
    send_id int
    Specify the Send ID

    • Range: 0-255
    send_id_variable str
    Variable name
    send_life_time_duration int
    Send lifetime Duration (seconds)

    • Range: 1-2147483646
    send_life_time_duration_variable str
    Variable name
    send_life_time_exact int
    Configure Key lifetime end time
    send_life_time_infinite bool
    Infinite lifetime
    send_life_time_infinite_variable str
    Variable name
    send_life_time_local bool
    Configure Send lifetime Local

    • Default value: false
    send_life_time_local_variable str
    Variable name
    send_life_time_start_epoch int
    Configure Key lifetime start time
    acceptAoMismatch Boolean
    Configure Accept AO Mismatch

    • Default value: false
    acceptAoMismatchVariable String
    Variable name
    acceptLifeTimeDuration Number
    Send lifetime Duration (seconds)

    • Range: 1-2147483646
    acceptLifeTimeDurationVariable String
    Variable name
    acceptLifeTimeExact Number
    Configure Key lifetime end time
    acceptLifeTimeInfinite Boolean
    Infinite lifetime
    acceptLifeTimeInfiniteVariable String
    Variable name
    acceptLifeTimeLocal Boolean
    Configure Send lifetime Local

    • Default value: false
    acceptLifeTimeLocalVariable String
    Variable name
    acceptLifeTimeStartEpoch Number
    Configure Key lifetime start time
    cryptoAlgorithm String
    Crypto Algorithm

    • Choices: aes-128-cmac, hmac-sha-1, hmac-sha-256
    id Number
    Select the Key ID
    includeTcpOptions Boolean
    Configure Include TCP Options

    • Default value: false
    includeTcpOptionsVariable String
    Variable name
    keyString String
    Specify the Key String
    keyStringVariable String
    Variable name
    name String
    Select the chain name
    receiverId Number
    Specify the Receiver ID

    • Range: 0-255
    receiverIdVariable String
    Variable name
    sendId Number
    Specify the Send ID

    • Range: 0-255
    sendIdVariable String
    Variable name
    sendLifeTimeDuration Number
    Send lifetime Duration (seconds)

    • Range: 1-2147483646
    sendLifeTimeDurationVariable String
    Variable name
    sendLifeTimeExact Number
    Configure Key lifetime end time
    sendLifeTimeInfinite Boolean
    Infinite lifetime
    sendLifeTimeInfiniteVariable String
    Variable name
    sendLifeTimeLocal Boolean
    Configure Send lifetime Local

    • Default value: false
    sendLifeTimeLocalVariable String
    Variable name
    sendLifeTimeStartEpoch Number
    Configure Key lifetime start time

    SystemSecurityFeatureKeychain, SystemSecurityFeatureKeychainArgs

    KeyChainName string
    Specify the name of the Keychain
    KeyId int
    Specify the Key ID

    • Range: 0-2147483647
    KeyChainName string
    Specify the name of the Keychain
    KeyId int
    Specify the Key ID

    • Range: 0-2147483647
    keyChainName String
    Specify the name of the Keychain
    keyId Integer
    Specify the Key ID

    • Range: 0-2147483647
    keyChainName string
    Specify the name of the Keychain
    keyId number
    Specify the Key ID

    • Range: 0-2147483647
    key_chain_name str
    Specify the name of the Keychain
    key_id int
    Specify the Key ID

    • Range: 0-2147483647
    keyChainName String
    Specify the name of the Keychain
    keyId Number
    Specify the Key ID

    • Range: 0-2147483647

    Import

    Expected import identifier with the format: “system_security_feature_id,feature_profile_id”

    $ pulumi import sdwan:index/systemSecurityFeature:SystemSecurityFeature example "f6b2c44c-693c-4763-b010-895aa3d236bd,f6dd22c8-0b4f-496c-9a0b-6813d1f8b8ac"
    

    To learn more about importing existing cloud resources, see Importing resources.

    Package Details

    Repository
    sdwan pulumi/pulumi-sdwan
    License
    Apache-2.0
    Notes
    This Pulumi package is based on the sdwan Terraform Provider.
    sdwan logo
    Cisco Catalyst SD-WAN v0.2.0 published on Friday, Nov 1, 2024 by Pulumi