pulumi-azure-kotlin/com.pulumi.azure.keyvault.kotlin/ManagedHardwareSecurityModuleRoleDefinitionArgs

ManagedHardwareSecurityModuleRoleDefinitionArgs

data class ManagedHardwareSecurityModuleRoleDefinitionArgs(val description: Output<String>? = null, val managedHsmId: Output<String>? = null, val name: Output<String>? = null, val permissions: Output<List<ManagedHardwareSecurityModuleRoleDefinitionPermissionArgs>>? = null, val roleName: Output<String>? = null, val vaultBaseUrl: Output<String>? = null) : ConvertibleToJava<ManagedHardwareSecurityModuleRoleDefinitionArgs>

Manages a KeyVault Managed Hardware Security Module Role Definition. This resource works together with Managed hardware security module resource.

Example Usage

resources:
  example:
    type: azure:keyvault:ManagedHardwareSecurityModule
    properties:
      name: example
      resourceGroupName: ${exampleAzurermResourceGroup.name}
      location: ${exampleAzurermResourceGroup.location}
      skuName: Standard_B1
      tenantId: ${current.tenantId}
      adminObjectIds:
        - ${current.objectId}
      purgeProtectionEnabled: false
      activeConfig:
        - securityDomainCertificate:
            - ${cert[0].id}
            - ${cert[1].id}
            - ${cert[2].id}
          securityDomainQuorum: 2
  exampleManagedHardwareSecurityModuleRoleDefinition:
    type: azure:keyvault:ManagedHardwareSecurityModuleRoleDefinition
    name: example
    properties:
      name: 7d206142-bf01-11ed-80bc-00155d61ee9e
      vaultBaseUrl: ${example.hsmUri}
      description: desc foo
      permissions:
        - dataActions:
            - Microsoft.KeyVault/managedHsm/keys/read/action
Content copied to clipboard

Import

KeyVaults can be imported using the resource id, e.g.

$ pulumi import azure:keyvault/managedHardwareSecurityModuleRoleDefinition:ManagedHardwareSecurityModuleRoleDefinition example https://0000.managedhsm.azure.net///RoleDefinition/00000000-0000-0000-0000-000000000000
Content copied to clipboard

Constructors

constructor(description: Output<String>? = null, managedHsmId: Output<String>? = null, name: Output<String>? = null, permissions: Output<List<ManagedHardwareSecurityModuleRoleDefinitionPermissionArgs>>? = null, roleName: Output<String>? = null, vaultBaseUrl: Output<String>? = null)

Properties

Link copied to clipboard
val description: Output<String>? = null

Specifies a text description about this KeyVault Role Definition.

Link copied to clipboard
val managedHsmId: Output<String>? = null
Link copied to clipboard
val name: Output<String>? = null

The name which should be used for this KeyVault Role Definition. Changing this forces a new KeyVault Role Definition to be created.

Link copied to clipboard
val permissions: Output<List<ManagedHardwareSecurityModuleRoleDefinitionPermissionArgs>>? = null

One or more permission blocks as defined below.

Link copied to clipboard
val roleName: Output<String>? = null

Specify a name for this KeyVault Role Definition.

Link copied to clipboard
val vaultBaseUrl: Output<String>? = null

The base URL of the managed hardware security module resource. Changing this forces a new KeyVault Role Definition to be created.

Functions

Link copied to clipboard
open override fun toJava(): ManagedHardwareSecurityModuleRoleDefinitionArgs