azure-native.keyvault.getManagedHsm
Explore with Pulumi AI
Gets the specified managed HSM Pool.
Uses Azure REST API version 2024-11-01.
Other available API versions: 2023-02-01, 2023-07-01, 2024-04-01-preview, 2024-12-01-preview. These can be accessed by generating a local SDK package using the CLI command pulumi package add azure-native keyvault [ApiVersion]. See the version guide for details.
Using getManagedHsm
Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.
function getManagedHsm(args: GetManagedHsmArgs, opts?: InvokeOptions): Promise<GetManagedHsmResult>
function getManagedHsmOutput(args: GetManagedHsmOutputArgs, opts?: InvokeOptions): Output<GetManagedHsmResult>def get_managed_hsm(name: Optional[str] = None,
                    resource_group_name: Optional[str] = None,
                    opts: Optional[InvokeOptions] = None) -> GetManagedHsmResult
def get_managed_hsm_output(name: Optional[pulumi.Input[str]] = None,
                    resource_group_name: Optional[pulumi.Input[str]] = None,
                    opts: Optional[InvokeOptions] = None) -> Output[GetManagedHsmResult]func LookupManagedHsm(ctx *Context, args *LookupManagedHsmArgs, opts ...InvokeOption) (*LookupManagedHsmResult, error)
func LookupManagedHsmOutput(ctx *Context, args *LookupManagedHsmOutputArgs, opts ...InvokeOption) LookupManagedHsmResultOutput> Note: This function is named LookupManagedHsm in the Go SDK.
public static class GetManagedHsm 
{
    public static Task<GetManagedHsmResult> InvokeAsync(GetManagedHsmArgs args, InvokeOptions? opts = null)
    public static Output<GetManagedHsmResult> Invoke(GetManagedHsmInvokeArgs args, InvokeOptions? opts = null)
}public static CompletableFuture<GetManagedHsmResult> getManagedHsm(GetManagedHsmArgs args, InvokeOptions options)
public static Output<GetManagedHsmResult> getManagedHsm(GetManagedHsmArgs args, InvokeOptions options)
fn::invoke:
  function: azure-native:keyvault:getManagedHsm
  arguments:
    # arguments dictionaryThe following arguments are supported:
- Name string
- The name of the managed HSM Pool.
- ResourceGroup stringName 
- Name of the resource group that contains the managed HSM pool.
- Name string
- The name of the managed HSM Pool.
- ResourceGroup stringName 
- Name of the resource group that contains the managed HSM pool.
- name String
- The name of the managed HSM Pool.
- resourceGroup StringName 
- Name of the resource group that contains the managed HSM pool.
- name string
- The name of the managed HSM Pool.
- resourceGroup stringName 
- Name of the resource group that contains the managed HSM pool.
- name str
- The name of the managed HSM Pool.
- resource_group_ strname 
- Name of the resource group that contains the managed HSM pool.
- name String
- The name of the managed HSM Pool.
- resourceGroup StringName 
- Name of the resource group that contains the managed HSM pool.
getManagedHsm Result
The following output properties are available:
- AzureApi stringVersion 
- The Azure API version of the resource.
- Id string
- The Azure Resource Manager resource ID for the managed HSM Pool.
- Name string
- The name of the managed HSM Pool.
- Properties
Pulumi.Azure Native. Key Vault. Outputs. Managed Hsm Properties Response 
- Properties of the managed HSM
- SystemData Pulumi.Azure Native. Key Vault. Outputs. System Data Response 
- Metadata pertaining to creation and last modification of the key vault resource.
- Type string
- The resource type of the managed HSM Pool.
- Identity
Pulumi.Azure Native. Key Vault. Outputs. Managed Service Identity Response 
- Managed service identity (system assigned and/or user assigned identities)
- Location string
- The supported Azure location where the managed HSM Pool should be created.
- Sku
Pulumi.Azure Native. Key Vault. Outputs. Managed Hsm Sku Response 
- SKU details
- Dictionary<string, string>
- Resource tags
- AzureApi stringVersion 
- The Azure API version of the resource.
- Id string
- The Azure Resource Manager resource ID for the managed HSM Pool.
- Name string
- The name of the managed HSM Pool.
- Properties
ManagedHsm Properties Response 
- Properties of the managed HSM
- SystemData SystemData Response 
- Metadata pertaining to creation and last modification of the key vault resource.
- Type string
- The resource type of the managed HSM Pool.
- Identity
ManagedService Identity Response 
- Managed service identity (system assigned and/or user assigned identities)
- Location string
- The supported Azure location where the managed HSM Pool should be created.
- Sku
ManagedHsm Sku Response 
- SKU details
- map[string]string
- Resource tags
- azureApi StringVersion 
- The Azure API version of the resource.
- id String
- The Azure Resource Manager resource ID for the managed HSM Pool.
- name String
- The name of the managed HSM Pool.
- properties
ManagedHsm Properties Response 
- Properties of the managed HSM
- systemData SystemData Response 
- Metadata pertaining to creation and last modification of the key vault resource.
- type String
- The resource type of the managed HSM Pool.
- identity
ManagedService Identity Response 
- Managed service identity (system assigned and/or user assigned identities)
- location String
- The supported Azure location where the managed HSM Pool should be created.
- sku
ManagedHsm Sku Response 
- SKU details
- Map<String,String>
- Resource tags
- azureApi stringVersion 
- The Azure API version of the resource.
- id string
- The Azure Resource Manager resource ID for the managed HSM Pool.
- name string
- The name of the managed HSM Pool.
- properties
ManagedHsm Properties Response 
- Properties of the managed HSM
- systemData SystemData Response 
- Metadata pertaining to creation and last modification of the key vault resource.
- type string
- The resource type of the managed HSM Pool.
- identity
ManagedService Identity Response 
- Managed service identity (system assigned and/or user assigned identities)
- location string
- The supported Azure location where the managed HSM Pool should be created.
- sku
ManagedHsm Sku Response 
- SKU details
- {[key: string]: string}
- Resource tags
- azure_api_ strversion 
- The Azure API version of the resource.
- id str
- The Azure Resource Manager resource ID for the managed HSM Pool.
- name str
- The name of the managed HSM Pool.
- properties
ManagedHsm Properties Response 
- Properties of the managed HSM
- system_data SystemData Response 
- Metadata pertaining to creation and last modification of the key vault resource.
- type str
- The resource type of the managed HSM Pool.
- identity
ManagedService Identity Response 
- Managed service identity (system assigned and/or user assigned identities)
- location str
- The supported Azure location where the managed HSM Pool should be created.
- sku
ManagedHsm Sku Response 
- SKU details
- Mapping[str, str]
- Resource tags
- azureApi StringVersion 
- The Azure API version of the resource.
- id String
- The Azure Resource Manager resource ID for the managed HSM Pool.
- name String
- The name of the managed HSM Pool.
- properties Property Map
- Properties of the managed HSM
- systemData Property Map
- Metadata pertaining to creation and last modification of the key vault resource.
- type String
- The resource type of the managed HSM Pool.
- identity Property Map
- Managed service identity (system assigned and/or user assigned identities)
- location String
- The supported Azure location where the managed HSM Pool should be created.
- sku Property Map
- SKU details
- Map<String>
- Resource tags
Supporting Types
MHSMGeoReplicatedRegionResponse   
- ProvisioningState string
- Provisioning state of the geo replicated region.
- IsPrimary bool
- A boolean value that indicates whether the region is the primary region or a secondary region.
- Name string
- Name of the geo replicated region.
- ProvisioningState string
- Provisioning state of the geo replicated region.
- IsPrimary bool
- A boolean value that indicates whether the region is the primary region or a secondary region.
- Name string
- Name of the geo replicated region.
- provisioningState String
- Provisioning state of the geo replicated region.
- isPrimary Boolean
- A boolean value that indicates whether the region is the primary region or a secondary region.
- name String
- Name of the geo replicated region.
- provisioningState string
- Provisioning state of the geo replicated region.
- isPrimary boolean
- A boolean value that indicates whether the region is the primary region or a secondary region.
- name string
- Name of the geo replicated region.
- provisioning_state str
- Provisioning state of the geo replicated region.
- is_primary bool
- A boolean value that indicates whether the region is the primary region or a secondary region.
- name str
- Name of the geo replicated region.
- provisioningState String
- Provisioning state of the geo replicated region.
- isPrimary Boolean
- A boolean value that indicates whether the region is the primary region or a secondary region.
- name String
- Name of the geo replicated region.
MHSMIPRuleResponse 
- Value string
- An IPv4 address range in CIDR notation, such as '124.56.78.91' (simple IP address) or '124.56.78.0/24' (all addresses that start with 124.56.78).
- Value string
- An IPv4 address range in CIDR notation, such as '124.56.78.91' (simple IP address) or '124.56.78.0/24' (all addresses that start with 124.56.78).
- value String
- An IPv4 address range in CIDR notation, such as '124.56.78.91' (simple IP address) or '124.56.78.0/24' (all addresses that start with 124.56.78).
- value string
- An IPv4 address range in CIDR notation, such as '124.56.78.91' (simple IP address) or '124.56.78.0/24' (all addresses that start with 124.56.78).
- value str
- An IPv4 address range in CIDR notation, such as '124.56.78.91' (simple IP address) or '124.56.78.0/24' (all addresses that start with 124.56.78).
- value String
- An IPv4 address range in CIDR notation, such as '124.56.78.91' (simple IP address) or '124.56.78.0/24' (all addresses that start with 124.56.78).
MHSMNetworkRuleSetResponse   
- Bypass string
- Tells what traffic can bypass network rules. This can be 'AzureServices' or 'None'. If not specified the default is 'AzureServices'.
- DefaultAction string
- The default action when no rule from ipRules and from virtualNetworkRules match. This is only used after the bypass property has been evaluated.
- IpRules List<Pulumi.Azure Native. Key Vault. Inputs. MHSMIPRule Response> 
- The list of IP address rules.
- VirtualNetwork List<Pulumi.Rules Azure Native. Key Vault. Inputs. MHSMVirtual Network Rule Response> 
- The list of virtual network rules.
- Bypass string
- Tells what traffic can bypass network rules. This can be 'AzureServices' or 'None'. If not specified the default is 'AzureServices'.
- DefaultAction string
- The default action when no rule from ipRules and from virtualNetworkRules match. This is only used after the bypass property has been evaluated.
- IpRules []MHSMIPRuleResponse 
- The list of IP address rules.
- VirtualNetwork []MHSMVirtualRules Network Rule Response 
- The list of virtual network rules.
- bypass String
- Tells what traffic can bypass network rules. This can be 'AzureServices' or 'None'. If not specified the default is 'AzureServices'.
- defaultAction String
- The default action when no rule from ipRules and from virtualNetworkRules match. This is only used after the bypass property has been evaluated.
- ipRules List<MHSMIPRuleResponse> 
- The list of IP address rules.
- virtualNetwork List<MHSMVirtualRules Network Rule Response> 
- The list of virtual network rules.
- bypass string
- Tells what traffic can bypass network rules. This can be 'AzureServices' or 'None'. If not specified the default is 'AzureServices'.
- defaultAction string
- The default action when no rule from ipRules and from virtualNetworkRules match. This is only used after the bypass property has been evaluated.
- ipRules MHSMIPRuleResponse[] 
- The list of IP address rules.
- virtualNetwork MHSMVirtualRules Network Rule Response[] 
- The list of virtual network rules.
- bypass str
- Tells what traffic can bypass network rules. This can be 'AzureServices' or 'None'. If not specified the default is 'AzureServices'.
- default_action str
- The default action when no rule from ipRules and from virtualNetworkRules match. This is only used after the bypass property has been evaluated.
- ip_rules Sequence[MHSMIPRuleResponse] 
- The list of IP address rules.
- virtual_network_ Sequence[MHSMVirtualrules Network Rule Response] 
- The list of virtual network rules.
- bypass String
- Tells what traffic can bypass network rules. This can be 'AzureServices' or 'None'. If not specified the default is 'AzureServices'.
- defaultAction String
- The default action when no rule from ipRules and from virtualNetworkRules match. This is only used after the bypass property has been evaluated.
- ipRules List<Property Map>
- The list of IP address rules.
- virtualNetwork List<Property Map>Rules 
- The list of virtual network rules.
MHSMPrivateEndpointConnectionItemResponse    
- ProvisioningState string
- Provisioning state of the private endpoint connection.
- Etag string
- Modified whenever there is a change in the state of private endpoint connection.
- Id string
- Id of private endpoint connection.
- PrivateEndpoint Pulumi.Azure Native. Key Vault. Inputs. MHSMPrivate Endpoint Response 
- Properties of the private endpoint object.
- PrivateLink Pulumi.Service Connection State Azure Native. Key Vault. Inputs. MHSMPrivate Link Service Connection State Response 
- Approval state of the private link connection.
- ProvisioningState string
- Provisioning state of the private endpoint connection.
- Etag string
- Modified whenever there is a change in the state of private endpoint connection.
- Id string
- Id of private endpoint connection.
- PrivateEndpoint MHSMPrivateEndpoint Response 
- Properties of the private endpoint object.
- PrivateLink MHSMPrivateService Connection State Link Service Connection State Response 
- Approval state of the private link connection.
- provisioningState String
- Provisioning state of the private endpoint connection.
- etag String
- Modified whenever there is a change in the state of private endpoint connection.
- id String
- Id of private endpoint connection.
- privateEndpoint MHSMPrivateEndpoint Response 
- Properties of the private endpoint object.
- privateLink MHSMPrivateService Connection State Link Service Connection State Response 
- Approval state of the private link connection.
- provisioningState string
- Provisioning state of the private endpoint connection.
- etag string
- Modified whenever there is a change in the state of private endpoint connection.
- id string
- Id of private endpoint connection.
- privateEndpoint MHSMPrivateEndpoint Response 
- Properties of the private endpoint object.
- privateLink MHSMPrivateService Connection State Link Service Connection State Response 
- Approval state of the private link connection.
- provisioning_state str
- Provisioning state of the private endpoint connection.
- etag str
- Modified whenever there is a change in the state of private endpoint connection.
- id str
- Id of private endpoint connection.
- private_endpoint MHSMPrivateEndpoint Response 
- Properties of the private endpoint object.
- private_link_ MHSMPrivateservice_ connection_ state Link Service Connection State Response 
- Approval state of the private link connection.
- provisioningState String
- Provisioning state of the private endpoint connection.
- etag String
- Modified whenever there is a change in the state of private endpoint connection.
- id String
- Id of private endpoint connection.
- privateEndpoint Property Map
- Properties of the private endpoint object.
- privateLink Property MapService Connection State 
- Approval state of the private link connection.
MHSMPrivateEndpointResponse  
- Id string
- Full identifier of the private endpoint resource.
- Id string
- Full identifier of the private endpoint resource.
- id String
- Full identifier of the private endpoint resource.
- id string
- Full identifier of the private endpoint resource.
- id str
- Full identifier of the private endpoint resource.
- id String
- Full identifier of the private endpoint resource.
MHSMPrivateLinkServiceConnectionStateResponse     
- ActionsRequired string
- A message indicating if changes on the service provider require any updates on the consumer.
- Description string
- The reason for approval or rejection.
- Status string
- Indicates whether the connection has been approved, rejected or removed by the key vault owner.
- ActionsRequired string
- A message indicating if changes on the service provider require any updates on the consumer.
- Description string
- The reason for approval or rejection.
- Status string
- Indicates whether the connection has been approved, rejected or removed by the key vault owner.
- actionsRequired String
- A message indicating if changes on the service provider require any updates on the consumer.
- description String
- The reason for approval or rejection.
- status String
- Indicates whether the connection has been approved, rejected or removed by the key vault owner.
- actionsRequired string
- A message indicating if changes on the service provider require any updates on the consumer.
- description string
- The reason for approval or rejection.
- status string
- Indicates whether the connection has been approved, rejected or removed by the key vault owner.
- actions_required str
- A message indicating if changes on the service provider require any updates on the consumer.
- description str
- The reason for approval or rejection.
- status str
- Indicates whether the connection has been approved, rejected or removed by the key vault owner.
- actionsRequired String
- A message indicating if changes on the service provider require any updates on the consumer.
- description String
- The reason for approval or rejection.
- status String
- Indicates whether the connection has been approved, rejected or removed by the key vault owner.
MHSMVirtualNetworkRuleResponse   
- Id string
- Full resource id of a vnet subnet, such as '/subscriptions/subid/resourceGroups/rg1/providers/Microsoft.Network/virtualNetworks/test-vnet/subnets/subnet1'.
- Id string
- Full resource id of a vnet subnet, such as '/subscriptions/subid/resourceGroups/rg1/providers/Microsoft.Network/virtualNetworks/test-vnet/subnets/subnet1'.
- id String
- Full resource id of a vnet subnet, such as '/subscriptions/subid/resourceGroups/rg1/providers/Microsoft.Network/virtualNetworks/test-vnet/subnets/subnet1'.
- id string
- Full resource id of a vnet subnet, such as '/subscriptions/subid/resourceGroups/rg1/providers/Microsoft.Network/virtualNetworks/test-vnet/subnets/subnet1'.
- id str
- Full resource id of a vnet subnet, such as '/subscriptions/subid/resourceGroups/rg1/providers/Microsoft.Network/virtualNetworks/test-vnet/subnets/subnet1'.
- id String
- Full resource id of a vnet subnet, such as '/subscriptions/subid/resourceGroups/rg1/providers/Microsoft.Network/virtualNetworks/test-vnet/subnets/subnet1'.
ManagedHSMSecurityDomainPropertiesResponse    
- ActivationStatus string
- Activation Status
- ActivationStatus stringMessage 
- Activation Status Message.
- ActivationStatus string
- Activation Status
- ActivationStatus stringMessage 
- Activation Status Message.
- activationStatus String
- Activation Status
- activationStatus StringMessage 
- Activation Status Message.
- activationStatus string
- Activation Status
- activationStatus stringMessage 
- Activation Status Message.
- activation_status str
- Activation Status
- activation_status_ strmessage 
- Activation Status Message.
- activationStatus String
- Activation Status
- activationStatus StringMessage 
- Activation Status Message.
ManagedHsmPropertiesResponse   
- HsmUri string
- The URI of the managed hsm pool for performing operations on keys.
- PrivateEndpoint List<Pulumi.Connections Azure Native. Key Vault. Inputs. MHSMPrivate Endpoint Connection Item Response> 
- List of private endpoint connections associated with the managed hsm pool.
- ProvisioningState string
- Provisioning state.
- ScheduledPurge stringDate 
- The scheduled purge date in UTC.
- SecurityDomain Pulumi.Properties Azure Native. Key Vault. Inputs. Managed HSMSecurity Domain Properties Response 
- Managed HSM security domain properties.
- StatusMessage string
- Resource Status Message.
- EnablePurge boolProtection 
- Property specifying whether protection against purge is enabled for this managed HSM pool. Setting this property to true activates protection against purge for this managed HSM pool and its content - only the Managed HSM service may initiate a hard, irrecoverable deletion. Enabling this functionality is irreversible.
- EnableSoft boolDelete 
- Property to specify whether the 'soft delete' functionality is enabled for this managed HSM pool. Soft delete is enabled by default for all managed HSMs and is immutable.
- InitialAdmin List<string>Object Ids 
- Array of initial administrators object ids for this managed hsm pool.
- NetworkAcls Pulumi.Azure Native. Key Vault. Inputs. MHSMNetwork Rule Set Response 
- Rules governing the accessibility of the key vault from specific network locations.
- PublicNetwork stringAccess 
- Control permission to the managed HSM from public networks.
- Regions
List<Pulumi.Azure Native. Key Vault. Inputs. MHSMGeo Replicated Region Response> 
- List of all regions associated with the managed hsm pool.
- SoftDelete intRetention In Days 
- Soft deleted data retention days. When you delete an HSM or a key, it will remain recoverable for the configured retention period or for a default period of 90 days. It accepts values between 7 and 90.
- TenantId string
- The Azure Active Directory tenant ID that should be used for authenticating requests to the managed HSM pool.
- HsmUri string
- The URI of the managed hsm pool for performing operations on keys.
- PrivateEndpoint []MHSMPrivateConnections Endpoint Connection Item Response 
- List of private endpoint connections associated with the managed hsm pool.
- ProvisioningState string
- Provisioning state.
- ScheduledPurge stringDate 
- The scheduled purge date in UTC.
- SecurityDomain ManagedProperties HSMSecurity Domain Properties Response 
- Managed HSM security domain properties.
- StatusMessage string
- Resource Status Message.
- EnablePurge boolProtection 
- Property specifying whether protection against purge is enabled for this managed HSM pool. Setting this property to true activates protection against purge for this managed HSM pool and its content - only the Managed HSM service may initiate a hard, irrecoverable deletion. Enabling this functionality is irreversible.
- EnableSoft boolDelete 
- Property to specify whether the 'soft delete' functionality is enabled for this managed HSM pool. Soft delete is enabled by default for all managed HSMs and is immutable.
- InitialAdmin []stringObject Ids 
- Array of initial administrators object ids for this managed hsm pool.
- NetworkAcls MHSMNetworkRule Set Response 
- Rules governing the accessibility of the key vault from specific network locations.
- PublicNetwork stringAccess 
- Control permission to the managed HSM from public networks.
- Regions
[]MHSMGeoReplicated Region Response 
- List of all regions associated with the managed hsm pool.
- SoftDelete intRetention In Days 
- Soft deleted data retention days. When you delete an HSM or a key, it will remain recoverable for the configured retention period or for a default period of 90 days. It accepts values between 7 and 90.
- TenantId string
- The Azure Active Directory tenant ID that should be used for authenticating requests to the managed HSM pool.
- hsmUri String
- The URI of the managed hsm pool for performing operations on keys.
- privateEndpoint List<MHSMPrivateConnections Endpoint Connection Item Response> 
- List of private endpoint connections associated with the managed hsm pool.
- provisioningState String
- Provisioning state.
- scheduledPurge StringDate 
- The scheduled purge date in UTC.
- securityDomain ManagedProperties HSMSecurity Domain Properties Response 
- Managed HSM security domain properties.
- statusMessage String
- Resource Status Message.
- enablePurge BooleanProtection 
- Property specifying whether protection against purge is enabled for this managed HSM pool. Setting this property to true activates protection against purge for this managed HSM pool and its content - only the Managed HSM service may initiate a hard, irrecoverable deletion. Enabling this functionality is irreversible.
- enableSoft BooleanDelete 
- Property to specify whether the 'soft delete' functionality is enabled for this managed HSM pool. Soft delete is enabled by default for all managed HSMs and is immutable.
- initialAdmin List<String>Object Ids 
- Array of initial administrators object ids for this managed hsm pool.
- networkAcls MHSMNetworkRule Set Response 
- Rules governing the accessibility of the key vault from specific network locations.
- publicNetwork StringAccess 
- Control permission to the managed HSM from public networks.
- regions
List<MHSMGeoReplicated Region Response> 
- List of all regions associated with the managed hsm pool.
- softDelete IntegerRetention In Days 
- Soft deleted data retention days. When you delete an HSM or a key, it will remain recoverable for the configured retention period or for a default period of 90 days. It accepts values between 7 and 90.
- tenantId String
- The Azure Active Directory tenant ID that should be used for authenticating requests to the managed HSM pool.
- hsmUri string
- The URI of the managed hsm pool for performing operations on keys.
- privateEndpoint MHSMPrivateConnections Endpoint Connection Item Response[] 
- List of private endpoint connections associated with the managed hsm pool.
- provisioningState string
- Provisioning state.
- scheduledPurge stringDate 
- The scheduled purge date in UTC.
- securityDomain ManagedProperties HSMSecurity Domain Properties Response 
- Managed HSM security domain properties.
- statusMessage string
- Resource Status Message.
- enablePurge booleanProtection 
- Property specifying whether protection against purge is enabled for this managed HSM pool. Setting this property to true activates protection against purge for this managed HSM pool and its content - only the Managed HSM service may initiate a hard, irrecoverable deletion. Enabling this functionality is irreversible.
- enableSoft booleanDelete 
- Property to specify whether the 'soft delete' functionality is enabled for this managed HSM pool. Soft delete is enabled by default for all managed HSMs and is immutable.
- initialAdmin string[]Object Ids 
- Array of initial administrators object ids for this managed hsm pool.
- networkAcls MHSMNetworkRule Set Response 
- Rules governing the accessibility of the key vault from specific network locations.
- publicNetwork stringAccess 
- Control permission to the managed HSM from public networks.
- regions
MHSMGeoReplicated Region Response[] 
- List of all regions associated with the managed hsm pool.
- softDelete numberRetention In Days 
- Soft deleted data retention days. When you delete an HSM or a key, it will remain recoverable for the configured retention period or for a default period of 90 days. It accepts values between 7 and 90.
- tenantId string
- The Azure Active Directory tenant ID that should be used for authenticating requests to the managed HSM pool.
- hsm_uri str
- The URI of the managed hsm pool for performing operations on keys.
- private_endpoint_ Sequence[MHSMPrivateconnections Endpoint Connection Item Response] 
- List of private endpoint connections associated with the managed hsm pool.
- provisioning_state str
- Provisioning state.
- scheduled_purge_ strdate 
- The scheduled purge date in UTC.
- security_domain_ Managedproperties HSMSecurity Domain Properties Response 
- Managed HSM security domain properties.
- status_message str
- Resource Status Message.
- enable_purge_ boolprotection 
- Property specifying whether protection against purge is enabled for this managed HSM pool. Setting this property to true activates protection against purge for this managed HSM pool and its content - only the Managed HSM service may initiate a hard, irrecoverable deletion. Enabling this functionality is irreversible.
- enable_soft_ booldelete 
- Property to specify whether the 'soft delete' functionality is enabled for this managed HSM pool. Soft delete is enabled by default for all managed HSMs and is immutable.
- initial_admin_ Sequence[str]object_ ids 
- Array of initial administrators object ids for this managed hsm pool.
- network_acls MHSMNetworkRule Set Response 
- Rules governing the accessibility of the key vault from specific network locations.
- public_network_ straccess 
- Control permission to the managed HSM from public networks.
- regions
Sequence[MHSMGeoReplicated Region Response] 
- List of all regions associated with the managed hsm pool.
- soft_delete_ intretention_ in_ days 
- Soft deleted data retention days. When you delete an HSM or a key, it will remain recoverable for the configured retention period or for a default period of 90 days. It accepts values between 7 and 90.
- tenant_id str
- The Azure Active Directory tenant ID that should be used for authenticating requests to the managed HSM pool.
- hsmUri String
- The URI of the managed hsm pool for performing operations on keys.
- privateEndpoint List<Property Map>Connections 
- List of private endpoint connections associated with the managed hsm pool.
- provisioningState String
- Provisioning state.
- scheduledPurge StringDate 
- The scheduled purge date in UTC.
- securityDomain Property MapProperties 
- Managed HSM security domain properties.
- statusMessage String
- Resource Status Message.
- enablePurge BooleanProtection 
- Property specifying whether protection against purge is enabled for this managed HSM pool. Setting this property to true activates protection against purge for this managed HSM pool and its content - only the Managed HSM service may initiate a hard, irrecoverable deletion. Enabling this functionality is irreversible.
- enableSoft BooleanDelete 
- Property to specify whether the 'soft delete' functionality is enabled for this managed HSM pool. Soft delete is enabled by default for all managed HSMs and is immutable.
- initialAdmin List<String>Object Ids 
- Array of initial administrators object ids for this managed hsm pool.
- networkAcls Property Map
- Rules governing the accessibility of the key vault from specific network locations.
- publicNetwork StringAccess 
- Control permission to the managed HSM from public networks.
- regions List<Property Map>
- List of all regions associated with the managed hsm pool.
- softDelete NumberRetention In Days 
- Soft deleted data retention days. When you delete an HSM or a key, it will remain recoverable for the configured retention period or for a default period of 90 days. It accepts values between 7 and 90.
- tenantId String
- The Azure Active Directory tenant ID that should be used for authenticating requests to the managed HSM pool.
ManagedHsmSkuResponse   
ManagedServiceIdentityResponse   
- PrincipalId string
- The service principal ID of the system assigned identity. This property will only be provided for a system assigned identity.
- TenantId string
- The tenant ID of the system assigned identity. This property will only be provided for a system assigned identity.
- Type string
- Type of managed service identity (where both SystemAssigned and UserAssigned types are allowed).
- UserAssigned Dictionary<string, Pulumi.Identities Azure Native. Key Vault. Inputs. User Assigned Identity Response> 
- The set of user assigned identities associated with the resource. The userAssignedIdentities dictionary keys will be ARM resource ids in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}. The dictionary values can be empty objects ({}) in requests.
- PrincipalId string
- The service principal ID of the system assigned identity. This property will only be provided for a system assigned identity.
- TenantId string
- The tenant ID of the system assigned identity. This property will only be provided for a system assigned identity.
- Type string
- Type of managed service identity (where both SystemAssigned and UserAssigned types are allowed).
- UserAssigned map[string]UserIdentities Assigned Identity Response 
- The set of user assigned identities associated with the resource. The userAssignedIdentities dictionary keys will be ARM resource ids in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}. The dictionary values can be empty objects ({}) in requests.
- principalId String
- The service principal ID of the system assigned identity. This property will only be provided for a system assigned identity.
- tenantId String
- The tenant ID of the system assigned identity. This property will only be provided for a system assigned identity.
- type String
- Type of managed service identity (where both SystemAssigned and UserAssigned types are allowed).
- userAssigned Map<String,UserIdentities Assigned Identity Response> 
- The set of user assigned identities associated with the resource. The userAssignedIdentities dictionary keys will be ARM resource ids in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}. The dictionary values can be empty objects ({}) in requests.
- principalId string
- The service principal ID of the system assigned identity. This property will only be provided for a system assigned identity.
- tenantId string
- The tenant ID of the system assigned identity. This property will only be provided for a system assigned identity.
- type string
- Type of managed service identity (where both SystemAssigned and UserAssigned types are allowed).
- userAssigned {[key: string]: UserIdentities Assigned Identity Response} 
- The set of user assigned identities associated with the resource. The userAssignedIdentities dictionary keys will be ARM resource ids in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}. The dictionary values can be empty objects ({}) in requests.
- principal_id str
- The service principal ID of the system assigned identity. This property will only be provided for a system assigned identity.
- tenant_id str
- The tenant ID of the system assigned identity. This property will only be provided for a system assigned identity.
- type str
- Type of managed service identity (where both SystemAssigned and UserAssigned types are allowed).
- user_assigned_ Mapping[str, Useridentities Assigned Identity Response] 
- The set of user assigned identities associated with the resource. The userAssignedIdentities dictionary keys will be ARM resource ids in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}. The dictionary values can be empty objects ({}) in requests.
- principalId String
- The service principal ID of the system assigned identity. This property will only be provided for a system assigned identity.
- tenantId String
- The tenant ID of the system assigned identity. This property will only be provided for a system assigned identity.
- type String
- Type of managed service identity (where both SystemAssigned and UserAssigned types are allowed).
- userAssigned Map<Property Map>Identities 
- The set of user assigned identities associated with the resource. The userAssignedIdentities dictionary keys will be ARM resource ids in the form: '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.ManagedIdentity/userAssignedIdentities/{identityName}. The dictionary values can be empty objects ({}) in requests.
SystemDataResponse  
- CreatedAt string
- The timestamp of the key vault resource creation (UTC).
- CreatedBy string
- The identity that created the key vault resource.
- CreatedBy stringType 
- The type of identity that created the key vault resource.
- LastModified stringAt 
- The timestamp of the key vault resource last modification (UTC).
- LastModified stringBy 
- The identity that last modified the key vault resource.
- LastModified stringBy Type 
- The type of identity that last modified the key vault resource.
- CreatedAt string
- The timestamp of the key vault resource creation (UTC).
- CreatedBy string
- The identity that created the key vault resource.
- CreatedBy stringType 
- The type of identity that created the key vault resource.
- LastModified stringAt 
- The timestamp of the key vault resource last modification (UTC).
- LastModified stringBy 
- The identity that last modified the key vault resource.
- LastModified stringBy Type 
- The type of identity that last modified the key vault resource.
- createdAt String
- The timestamp of the key vault resource creation (UTC).
- createdBy String
- The identity that created the key vault resource.
- createdBy StringType 
- The type of identity that created the key vault resource.
- lastModified StringAt 
- The timestamp of the key vault resource last modification (UTC).
- lastModified StringBy 
- The identity that last modified the key vault resource.
- lastModified StringBy Type 
- The type of identity that last modified the key vault resource.
- createdAt string
- The timestamp of the key vault resource creation (UTC).
- createdBy string
- The identity that created the key vault resource.
- createdBy stringType 
- The type of identity that created the key vault resource.
- lastModified stringAt 
- The timestamp of the key vault resource last modification (UTC).
- lastModified stringBy 
- The identity that last modified the key vault resource.
- lastModified stringBy Type 
- The type of identity that last modified the key vault resource.
- created_at str
- The timestamp of the key vault resource creation (UTC).
- created_by str
- The identity that created the key vault resource.
- created_by_ strtype 
- The type of identity that created the key vault resource.
- last_modified_ strat 
- The timestamp of the key vault resource last modification (UTC).
- last_modified_ strby 
- The identity that last modified the key vault resource.
- last_modified_ strby_ type 
- The type of identity that last modified the key vault resource.
- createdAt String
- The timestamp of the key vault resource creation (UTC).
- createdBy String
- The identity that created the key vault resource.
- createdBy StringType 
- The type of identity that created the key vault resource.
- lastModified StringAt 
- The timestamp of the key vault resource last modification (UTC).
- lastModified StringBy 
- The identity that last modified the key vault resource.
- lastModified StringBy Type 
- The type of identity that last modified the key vault resource.
UserAssignedIdentityResponse   
- ClientId string
- The client ID of the assigned identity.
- PrincipalId string
- The principal ID of the assigned identity.
- ClientId string
- The client ID of the assigned identity.
- PrincipalId string
- The principal ID of the assigned identity.
- clientId String
- The client ID of the assigned identity.
- principalId String
- The principal ID of the assigned identity.
- clientId string
- The client ID of the assigned identity.
- principalId string
- The principal ID of the assigned identity.
- client_id str
- The client ID of the assigned identity.
- principal_id str
- The principal ID of the assigned identity.
- clientId String
- The client ID of the assigned identity.
- principalId String
- The principal ID of the assigned identity.
Package Details
- Repository
- Azure Native pulumi/pulumi-azure-native
- License
- Apache-2.0