Security
Security Standard on a resource Uses Azure REST API version 2024-08-01. In version 2.x of the Azure Native provider, it used API version 2024-08-01.
Example Usage
Create or update security standard over management group scope
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var securityStandard = new AzureNative.Security.SecurityStandard("securityStandard", new()
{
Assessments = new[]
{
new AzureNative.Security.Inputs.PartialAssessmentPropertiesArgs
{
AssessmentKey = "1195afff-c881-495e-9bc5-1486211ae03f",
},
new AzureNative.Security.Inputs.PartialAssessmentPropertiesArgs
{
AssessmentKey = "dbd0cb49-b563-45e7-9724-889e799fa648",
},
},
CloudProviders = new[]
{
AzureNative.Security.StandardSupportedCloud.GCP,
},
Description = "description of Azure Test Security Standard 1",
DisplayName = "Azure Test Security Standard 1",
PolicySetDefinitionId = "/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/providers/Microsoft.Authorization/policySetDefinitions/patchorchestration-applicationversions",
Scope = "providers/Microsoft.Management/managementGroups/contoso",
StandardId = "8bb8be0a-6010-4789-812f-e4d661c4ed0e",
});
});Content copied to clipboard
package main
import (
security "github.com/pulumi/pulumi-azure-native-sdk/security/v2"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := security.NewSecurityStandard(ctx, "securityStandard", &security.SecurityStandardArgs{
Assessments: security.PartialAssessmentPropertiesArray{
&security.PartialAssessmentPropertiesArgs{
AssessmentKey: pulumi.String("1195afff-c881-495e-9bc5-1486211ae03f"),
},
&security.PartialAssessmentPropertiesArgs{
AssessmentKey: pulumi.String("dbd0cb49-b563-45e7-9724-889e799fa648"),
},
},
CloudProviders: pulumi.StringArray{
pulumi.String(security.StandardSupportedCloudGCP),
},
Description: pulumi.String("description of Azure Test Security Standard 1"),
DisplayName: pulumi.String("Azure Test Security Standard 1"),
PolicySetDefinitionId: pulumi.String("/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/providers/Microsoft.Authorization/policySetDefinitions/patchorchestration-applicationversions"),
Scope: pulumi.String("providers/Microsoft.Management/managementGroups/contoso"),
StandardId: pulumi.String("8bb8be0a-6010-4789-812f-e4d661c4ed0e"),
})
if err != nil {
return err
}
return nil
})
}Content copied to clipboard
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.security.SecurityStandard;
import com.pulumi.azurenative.security.SecurityStandardArgs;
import com.pulumi.azurenative.security.inputs.PartialAssessmentPropertiesArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var securityStandard = new SecurityStandard("securityStandard", SecurityStandardArgs.builder()
.assessments(
PartialAssessmentPropertiesArgs.builder()
.assessmentKey("1195afff-c881-495e-9bc5-1486211ae03f")
.build(),
PartialAssessmentPropertiesArgs.builder()
.assessmentKey("dbd0cb49-b563-45e7-9724-889e799fa648")
.build())
.cloudProviders("GCP")
.description("description of Azure Test Security Standard 1")
.displayName("Azure Test Security Standard 1")
.policySetDefinitionId("/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/providers/Microsoft.Authorization/policySetDefinitions/patchorchestration-applicationversions")
.scope("providers/Microsoft.Management/managementGroups/contoso")
.standardId("8bb8be0a-6010-4789-812f-e4d661c4ed0e")
.build());
}
}Content copied to clipboard
Create or update security standard over security connector scope
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var securityStandard = new AzureNative.Security.SecurityStandard("securityStandard", new()
{
Assessments = new[]
{
new AzureNative.Security.Inputs.PartialAssessmentPropertiesArgs
{
AssessmentKey = "1195afff-c881-495e-9bc5-1486211ae03f",
},
new AzureNative.Security.Inputs.PartialAssessmentPropertiesArgs
{
AssessmentKey = "dbd0cb49-b563-45e7-9724-889e799fa648",
},
},
CloudProviders = new[]
{
AzureNative.Security.StandardSupportedCloud.GCP,
},
Description = "description of Azure Test Security Standard 1",
DisplayName = "Azure Test Security Standard 1",
Scope = "subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/gcpResourceGroup/providers/Microsoft.Security/securityConnectors/gcpconnector",
StandardId = "8bb8be0a-6010-4789-812f-e4d661c4ed0e",
});
});Content copied to clipboard
package main
import (
security "github.com/pulumi/pulumi-azure-native-sdk/security/v2"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := security.NewSecurityStandard(ctx, "securityStandard", &security.SecurityStandardArgs{
Assessments: security.PartialAssessmentPropertiesArray{
&security.PartialAssessmentPropertiesArgs{
AssessmentKey: pulumi.String("1195afff-c881-495e-9bc5-1486211ae03f"),
},
&security.PartialAssessmentPropertiesArgs{
AssessmentKey: pulumi.String("dbd0cb49-b563-45e7-9724-889e799fa648"),
},
},
CloudProviders: pulumi.StringArray{
pulumi.String(security.StandardSupportedCloudGCP),
},
Description: pulumi.String("description of Azure Test Security Standard 1"),
DisplayName: pulumi.String("Azure Test Security Standard 1"),
Scope: pulumi.String("subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/gcpResourceGroup/providers/Microsoft.Security/securityConnectors/gcpconnector"),
StandardId: pulumi.String("8bb8be0a-6010-4789-812f-e4d661c4ed0e"),
})
if err != nil {
return err
}
return nil
})
}Content copied to clipboard
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.security.SecurityStandard;
import com.pulumi.azurenative.security.SecurityStandardArgs;
import com.pulumi.azurenative.security.inputs.PartialAssessmentPropertiesArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var securityStandard = new SecurityStandard("securityStandard", SecurityStandardArgs.builder()
.assessments(
PartialAssessmentPropertiesArgs.builder()
.assessmentKey("1195afff-c881-495e-9bc5-1486211ae03f")
.build(),
PartialAssessmentPropertiesArgs.builder()
.assessmentKey("dbd0cb49-b563-45e7-9724-889e799fa648")
.build())
.cloudProviders("GCP")
.description("description of Azure Test Security Standard 1")
.displayName("Azure Test Security Standard 1")
.scope("subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/gcpResourceGroup/providers/Microsoft.Security/securityConnectors/gcpconnector")
.standardId("8bb8be0a-6010-4789-812f-e4d661c4ed0e")
.build());
}
}Content copied to clipboard
Create or update security standard over subscription scope
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var securityStandard = new AzureNative.Security.SecurityStandard("securityStandard", new()
{
Assessments = new[]
{
new AzureNative.Security.Inputs.PartialAssessmentPropertiesArgs
{
AssessmentKey = "1195afff-c881-495e-9bc5-1486211ae03f",
},
new AzureNative.Security.Inputs.PartialAssessmentPropertiesArgs
{
AssessmentKey = "dbd0cb49-b563-45e7-9724-889e799fa648",
},
},
CloudProviders = new[]
{
AzureNative.Security.StandardSupportedCloud.GCP,
},
Description = "description of Azure Test Security Standard 1",
DisplayName = "Azure Test Security Standard 1",
PolicySetDefinitionId = "/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/providers/Microsoft.Authorization/policySetDefinitions/patchorchestration-applicationversions",
Scope = "subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23",
StandardId = "8bb8be0a-6010-4789-812f-e4d661c4ed0e",
});
});Content copied to clipboard
package main
import (
security "github.com/pulumi/pulumi-azure-native-sdk/security/v2"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := security.NewSecurityStandard(ctx, "securityStandard", &security.SecurityStandardArgs{
Assessments: security.PartialAssessmentPropertiesArray{
&security.PartialAssessmentPropertiesArgs{
AssessmentKey: pulumi.String("1195afff-c881-495e-9bc5-1486211ae03f"),
},
&security.PartialAssessmentPropertiesArgs{
AssessmentKey: pulumi.String("dbd0cb49-b563-45e7-9724-889e799fa648"),
},
},
CloudProviders: pulumi.StringArray{
pulumi.String(security.StandardSupportedCloudGCP),
},
Description: pulumi.String("description of Azure Test Security Standard 1"),
DisplayName: pulumi.String("Azure Test Security Standard 1"),
PolicySetDefinitionId: pulumi.String("/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/providers/Microsoft.Authorization/policySetDefinitions/patchorchestration-applicationversions"),
Scope: pulumi.String("subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23"),
StandardId: pulumi.String("8bb8be0a-6010-4789-812f-e4d661c4ed0e"),
})
if err != nil {
return err
}
return nil
})
}Content copied to clipboard
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.security.SecurityStandard;
import com.pulumi.azurenative.security.SecurityStandardArgs;
import com.pulumi.azurenative.security.inputs.PartialAssessmentPropertiesArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var securityStandard = new SecurityStandard("securityStandard", SecurityStandardArgs.builder()
.assessments(
PartialAssessmentPropertiesArgs.builder()
.assessmentKey("1195afff-c881-495e-9bc5-1486211ae03f")
.build(),
PartialAssessmentPropertiesArgs.builder()
.assessmentKey("dbd0cb49-b563-45e7-9724-889e799fa648")
.build())
.cloudProviders("GCP")
.description("description of Azure Test Security Standard 1")
.displayName("Azure Test Security Standard 1")
.policySetDefinitionId("/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/providers/Microsoft.Authorization/policySetDefinitions/patchorchestration-applicationversions")
.scope("subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23")
.standardId("8bb8be0a-6010-4789-812f-e4d661c4ed0e")
.build());
}
}Content copied to clipboard
Import
An existing resource can be imported using its type token, name, and identifier, e.g.
$ pulumi import azure-native:security:SecurityStandard 8bb8be0a-6010-4789-812f-e4d661c4ed0e /{scope}/providers/Microsoft.Security/securityStandards/{standardId}Content copied to clipboard
Properties
Link copied to clipboard
List of assessment keys to apply to standard scope.
Link copied to clipboard
The Azure API version of the resource.
Link copied to clipboard
List of all standard supported clouds.
Link copied to clipboard
Description of the standard
Link copied to clipboard
Display name of the standard, equivalent to the standardId
Link copied to clipboard
The security standard metadata.
Link copied to clipboard
The policy set definition id associated with the standard.
Link copied to clipboard
Link copied to clipboard
Link copied to clipboard
Link copied to clipboard
Standard type (Custom or Default or Compliance only currently)