Jit
data class JitNetworkAccessPolicyArgs(val ascLocation: Output<String>? = null, val jitNetworkAccessPolicyName: Output<String>? = null, val kind: Output<String>? = null, val requests: Output<List<JitNetworkAccessRequestArgs>>? = null, val resourceGroupName: Output<String>? = null, val virtualMachines: Output<List<JitNetworkAccessPolicyVirtualMachineArgs>>? = null) : ConvertibleToJava<JitNetworkAccessPolicyArgs>
Uses Azure REST API version 2020-01-01. In version 2.x of the Azure Native provider, it used API version 2020-01-01.
Example Usage
Create JIT network access policy
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var jitNetworkAccessPolicy = new AzureNative.Security.JitNetworkAccessPolicy("jitNetworkAccessPolicy", new()
{
AscLocation = "westeurope",
JitNetworkAccessPolicyName = "default",
Kind = "Basic",
Requests = new[]
{
new AzureNative.Security.Inputs.JitNetworkAccessRequestArgs
{
Requestor = "barbara@contoso.com",
StartTimeUtc = "2018-05-17T08:06:45.5691611Z",
VirtualMachines = new[]
{
new AzureNative.Security.Inputs.JitNetworkAccessRequestVirtualMachineArgs
{
Id = "/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/myRg1/providers/Microsoft.Compute/virtualMachines/vm1",
Ports = new[]
{
new AzureNative.Security.Inputs.JitNetworkAccessRequestPortArgs
{
AllowedSourceAddressPrefix = "192.127.0.2",
EndTimeUtc = "2018-05-17T09:06:45.5691611Z",
Number = 3389,
Status = AzureNative.Security.Status.Initiated,
StatusReason = AzureNative.Security.StatusReason.UserRequested,
},
},
},
},
},
},
ResourceGroupName = "myRg1",
VirtualMachines = new[]
{
new AzureNative.Security.Inputs.JitNetworkAccessPolicyVirtualMachineArgs
{
Id = "/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/myRg1/providers/Microsoft.Compute/virtualMachines/vm1",
Ports = new[]
{
new AzureNative.Security.Inputs.JitNetworkAccessPortRuleArgs
{
AllowedSourceAddressPrefix = "*",
MaxRequestAccessDuration = "PT3H",
Number = 22,
Protocol = AzureNative.Security.Protocol.All,
},
new AzureNative.Security.Inputs.JitNetworkAccessPortRuleArgs
{
AllowedSourceAddressPrefix = "*",
MaxRequestAccessDuration = "PT3H",
Number = 3389,
Protocol = AzureNative.Security.Protocol.All,
},
},
},
},
});
});Content copied to clipboard
package main
import (
security "github.com/pulumi/pulumi-azure-native-sdk/security/v3"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := security.NewJitNetworkAccessPolicy(ctx, "jitNetworkAccessPolicy", &security.JitNetworkAccessPolicyArgs{
AscLocation: pulumi.String("westeurope"),
JitNetworkAccessPolicyName: pulumi.String("default"),
Kind: pulumi.String("Basic"),
Requests: security.JitNetworkAccessRequestArray{
&security.JitNetworkAccessRequestArgs{
Requestor: pulumi.String("barbara@contoso.com"),
StartTimeUtc: pulumi.String("2018-05-17T08:06:45.5691611Z"),
VirtualMachines: security.JitNetworkAccessRequestVirtualMachineArray{
&security.JitNetworkAccessRequestVirtualMachineArgs{
Id: pulumi.String("/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/myRg1/providers/Microsoft.Compute/virtualMachines/vm1"),
Ports: security.JitNetworkAccessRequestPortArray{
&security.JitNetworkAccessRequestPortArgs{
AllowedSourceAddressPrefix: pulumi.String("192.127.0.2"),
EndTimeUtc: pulumi.String("2018-05-17T09:06:45.5691611Z"),
Number: pulumi.Int(3389),
Status: pulumi.String(security.StatusInitiated),
StatusReason: pulumi.String(security.StatusReasonUserRequested),
},
},
},
},
},
},
ResourceGroupName: pulumi.String("myRg1"),
VirtualMachines: security.JitNetworkAccessPolicyVirtualMachineArray{
&security.JitNetworkAccessPolicyVirtualMachineArgs{
Id: pulumi.String("/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/myRg1/providers/Microsoft.Compute/virtualMachines/vm1"),
Ports: security.JitNetworkAccessPortRuleArray{
&security.JitNetworkAccessPortRuleArgs{
AllowedSourceAddressPrefix: pulumi.String("*"),
MaxRequestAccessDuration: pulumi.String("PT3H"),
Number: pulumi.Int(22),
Protocol: pulumi.String(security.ProtocolAll),
},
&security.JitNetworkAccessPortRuleArgs{
AllowedSourceAddressPrefix: pulumi.String("*"),
MaxRequestAccessDuration: pulumi.String("PT3H"),
Number: pulumi.Int(3389),
Protocol: pulumi.String(security.ProtocolAll),
},
},
},
},
})
if err != nil {
return err
}
return nil
})
}Content copied to clipboard
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.security.JitNetworkAccessPolicy;
import com.pulumi.azurenative.security.JitNetworkAccessPolicyArgs;
import com.pulumi.azurenative.security.inputs.JitNetworkAccessRequestArgs;
import com.pulumi.azurenative.security.inputs.JitNetworkAccessPolicyVirtualMachineArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var jitNetworkAccessPolicy = new JitNetworkAccessPolicy("jitNetworkAccessPolicy", JitNetworkAccessPolicyArgs.builder()
.ascLocation("westeurope")
.jitNetworkAccessPolicyName("default")
.kind("Basic")
.requests(JitNetworkAccessRequestArgs.builder()
.requestor("barbara@contoso.com")
.startTimeUtc("2018-05-17T08:06:45.5691611Z")
.virtualMachines(JitNetworkAccessRequestVirtualMachineArgs.builder()
.id("/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/myRg1/providers/Microsoft.Compute/virtualMachines/vm1")
.ports(JitNetworkAccessRequestPortArgs.builder()
.allowedSourceAddressPrefix("192.127.0.2")
.endTimeUtc("2018-05-17T09:06:45.5691611Z")
.number(3389)
.status("Initiated")
.statusReason("UserRequested")
.build())
.build())
.build())
.resourceGroupName("myRg1")
.virtualMachines(JitNetworkAccessPolicyVirtualMachineArgs.builder()
.id("/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/myRg1/providers/Microsoft.Compute/virtualMachines/vm1")
.ports(
JitNetworkAccessPortRuleArgs.builder()
.allowedSourceAddressPrefix("*")
.maxRequestAccessDuration("PT3H")
.number(22)
.protocol("*")
.build(),
JitNetworkAccessPortRuleArgs.builder()
.allowedSourceAddressPrefix("*")
.maxRequestAccessDuration("PT3H")
.number(3389)
.protocol("*")
.build())
.build())
.build());
}
}Content copied to clipboard
Import
An existing resource can be imported using its type token, name, and identifier, e.g.
$ pulumi import azure-native:security:JitNetworkAccessPolicy default /subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Security/locations/{ascLocation}/jitNetworkAccessPolicies/{jitNetworkAccessPolicyName}Content copied to clipboard
Constructors
Link copied to clipboard
constructor(ascLocation: Output<String>? = null, jitNetworkAccessPolicyName: Output<String>? = null, kind: Output<String>? = null, requests: Output<List<JitNetworkAccessRequestArgs>>? = null, resourceGroupName: Output<String>? = null, virtualMachines: Output<List<JitNetworkAccessPolicyVirtualMachineArgs>>? = null)
Properties
Link copied to clipboard
The location where ASC stores the data of the subscription. can be retrieved from Get locations
Link copied to clipboard
Name of a Just-in-Time access configuration policy.
Link copied to clipboard
Link copied to clipboard
The name of the resource group within the user's subscription. The name is case insensitive.
Link copied to clipboard
Configurations for Microsoft.Compute/virtualMachines resource type.