@pulumi/sdwan

import * as pulumi from "@pulumi/pulumi"; /** * This resource can manage a Policy Object Unified TLS SSL Decryption Policy_object. * - Minimum SD-WAN Manager version: `20.12.0` * * ## Example Usage * * ```typescript * import * as pulumi from "@pulumi/pulumi"; * import * as sdwan from "@pulumi/sdwan"; * * const example = new sdwan.PolicyObjectUnifiedTlsSslDecryption("example", { * name: "Example", * description: "My Example", * featureProfileId: "f6dd22c8-0b4f-496c-9a0b-6813d1f8b8ac", * expiredCertificate: "drop", * untrustedCertificate: "drop", * certificateRevocationStatus: "none", * unsupportedProtocolVersions: "drop", * unsupportedCipherSuites: "drop", * failureMode: "close", * defaultCaCertificateBundle: true, * rsaKeypairModules: "2048", * ecKeyType: "P256", * certificateLifetime: "1", * minimalTlsVer: "TLSv1", * }); * ``` * * ## Import * * The `pulumi import` command can be used, for example: * * Expected import identifier with the format: "policy_object_unified_tls_ssl_decryption_id,feature_profile_id" * * ```sh * $ pulumi import sdwan:index/policyObjectUnifiedTlsSslDecryption:PolicyObjectUnifiedTlsSslDecryption example "f6b2c44c-693c-4763-b010-895aa3d236bd,f6dd22c8-0b4f-496c-9a0b-6813d1f8b8ac" * ``` */ export declare class PolicyObjectUnifiedTlsSslDecryption extends pulumi.CustomResource { /** * Get an existing PolicyObjectUnifiedTlsSslDecryption resource's state with the given name, ID, and optional extra * properties used to qualify the lookup. * * @param name The _unique_ name of the resulting resource. * @param id The _unique_ provider ID of the resource to lookup. * @param state Any extra arguments used during the lookup. * @param opts Optional settings to control the behavior of the CustomResource. */ static get(name: string, id: pulumi.Input<pulumi.ID>, state?: PolicyObjectUnifiedTlsSslDecryptionState, opts?: pulumi.CustomResourceOptions): PolicyObjectUnifiedTlsSslDecryption; /** * Returns true if the given object is an instance of PolicyObjectUnifiedTlsSslDecryption. This is designed to work even * when multiple copies of the Pulumi SDK have been loaded into the same process. */ static isInstance(obj: any): obj is PolicyObjectUnifiedTlsSslDecryption; readonly bundleString: pulumi.Output<string | undefined>; /** * If you have vManage as CA or vManage as intermediate CA, this value should be 1 */ readonly certificateLifetime: pulumi.Output<string>; /** * If value is none unknown status not required, if value is ocsp then unknown status is required * - Choices: `ocsp`, `none` */ readonly certificateRevocationStatus: pulumi.Output<string>; readonly defaultCaCertificateBundle: pulumi.Output<boolean | undefined>; /** * The description of the Policy_object */ readonly description: pulumi.Output<string | undefined>; /** * - Choices: `P256`, `P384`, `P521` */ readonly ecKeyType: pulumi.Output<string>; /** * - Choices: `decrypt`, `drop` */ readonly expiredCertificate: pulumi.Output<string>; /** * - Choices: `close`, `open` */ readonly failureMode: pulumi.Output<string>; /** * Feature Profile ID */ readonly featureProfileId: pulumi.Output<string>; readonly fileName: pulumi.Output<string | undefined>; /** * - Choices: `TLSv1`, `TLSv1.1`, `TLSv1.2` */ readonly minimalTlsVer: pulumi.Output<string>; /** * The name of the Policy_object */ readonly name: pulumi.Output<string>; /** * - Choices: `1024`, `2048`, `4096` */ readonly rsaKeypairModules: pulumi.Output<string>; /** * Only required if certificateRevocationStatus is oscp, if value is none then field shouldn't be here, Attribute conditional on `certificateRevocationStatus` being equal to `ocsp` * - Choices: `decrypt`, `drop` */ readonly unknownRevocationStatus: pulumi.Output<string | undefined>; /** * - Choices: `no-decrypt`, `drop` */ readonly unsupportedCipherSuites: pulumi.Output<string>; /** * - Choices: `no-decrypt`, `drop` */ readonly unsupportedProtocolVersions: pulumi.Output<string>; /** * - Choices: `decrypt`, `drop` */ readonly untrustedCertificate: pulumi.Output<string>; /** * The version of the Policy_object */ readonly version: pulumi.Output<number>; /** * Create a PolicyObjectUnifiedTlsSslDecryption resource with the given unique name, arguments, and options. * * @param name The _unique_ name of the resource. * @param args The arguments to use to populate this resource's properties. * @param opts A bag of options that control this resource's behavior. */ constructor(name: string, args: PolicyObjectUnifiedTlsSslDecryptionArgs, opts?: pulumi.CustomResourceOptions); } /** * Input properties used for looking up and filtering PolicyObjectUnifiedTlsSslDecryption resources. */ export interface PolicyObjectUnifiedTlsSslDecryptionState { bundleString?: pulumi.Input<string>; /** * If you have vManage as CA or vManage as intermediate CA, this value should be 1 */ certificateLifetime?: pulumi.Input<string>; /** * If value is none unknown status not required, if value is ocsp then unknown status is required * - Choices: `ocsp`, `none` */ certificateRevocationStatus?: pulumi.Input<string>; defaultCaCertificateBundle?: pulumi.Input<boolean>; /** * The description of the Policy_object */ description?: pulumi.Input<string>; /** * - Choices: `P256`, `P384`, `P521` */ ecKeyType?: pulumi.Input<string>; /** * - Choices: `decrypt`, `drop` */ expiredCertificate?: pulumi.Input<string>; /** * - Choices: `close`, `open` */ failureMode?: pulumi.Input<string>; /** * Feature Profile ID */ featureProfileId?: pulumi.Input<string>; fileName?: pulumi.Input<string>; /** * - Choices: `TLSv1`, `TLSv1.1`, `TLSv1.2` */ minimalTlsVer?: pulumi.Input<string>; /** * The name of the Policy_object */ name?: pulumi.Input<string>; /** * - Choices: `1024`, `2048`, `4096` */ rsaKeypairModules?: pulumi.Input<string>; /** * Only required if certificateRevocationStatus is oscp, if value is none then field shouldn't be here, Attribute conditional on `certificateRevocationStatus` being equal to `ocsp` * - Choices: `decrypt`, `drop` */ unknownRevocationStatus?: pulumi.Input<string>; /** * - Choices: `no-decrypt`, `drop` */ unsupportedCipherSuites?: pulumi.Input<string>; /** * - Choices: `no-decrypt`, `drop` */ unsupportedProtocolVersions?: pulumi.Input<string>; /** * - Choices: `decrypt`, `drop` */ untrustedCertificate?: pulumi.Input<string>; /** * The version of the Policy_object */ version?: pulumi.Input<number>; } /** * The set of arguments for constructing a PolicyObjectUnifiedTlsSslDecryption resource. */ export interface PolicyObjectUnifiedTlsSslDecryptionArgs { bundleString?: pulumi.Input<string>; /** * If you have vManage as CA or vManage as intermediate CA, this value should be 1 */ certificateLifetime: pulumi.Input<string>; /** * If value is none unknown status not required, if value is ocsp then unknown status is required * - Choices: `ocsp`, `none` */ certificateRevocationStatus: pulumi.Input<string>; defaultCaCertificateBundle?: pulumi.Input<boolean>; /** * The description of the Policy_object */ description?: pulumi.Input<string>; /** * - Choices: `P256`, `P384`, `P521` */ ecKeyType: pulumi.Input<string>; /** * - Choices: `decrypt`, `drop` */ expiredCertificate: pulumi.Input<string>; /** * - Choices: `close`, `open` */ failureMode: pulumi.Input<string>; /** * Feature Profile ID */ featureProfileId: pulumi.Input<string>; fileName?: pulumi.Input<string>; /** * - Choices: `TLSv1`, `TLSv1.1`, `TLSv1.2` */ minimalTlsVer: pulumi.Input<string>; /** * The name of the Policy_object */ name?: pulumi.Input<string>; /** * - Choices: `1024`, `2048`, `4096` */ rsaKeypairModules: pulumi.Input<string>; /** * Only required if certificateRevocationStatus is oscp, if value is none then field shouldn't be here, Attribute conditional on `certificateRevocationStatus` being equal to `ocsp` * - Choices: `decrypt`, `drop` */ unknownRevocationStatus?: pulumi.Input<string>; /** * - Choices: `no-decrypt`, `drop` */ unsupportedCipherSuites: pulumi.Input<string>; /** * - Choices: `no-decrypt`, `drop` */ unsupportedProtocolVersions: pulumi.Input<string>; /** * - Choices: `decrypt`, `drop` */ untrustedCertificate: pulumi.Input<string>; }