Managed
Manages a Key Vault Managed Hardware Security Module Role Definition. This resource works together with Managed hardware security module resource.
Example Usage
resources:
example:
type: azure:keyvault:ManagedHardwareSecurityModule
properties:
name: example
resourceGroupName: ${exampleAzurermResourceGroup.name}
location: ${exampleAzurermResourceGroup.location}
skuName: Standard_B1
tenantId: ${current.tenantId}
adminObjectIds:
- ${current.objectId}
purgeProtectionEnabled: false
activeConfig:
- securityDomainCertificate:
- ${cert[0].id}
- ${cert[1].id}
- ${cert[2].id}
securityDomainQuorum: 2
exampleManagedHardwareSecurityModuleRoleDefinition:
type: azure:keyvault:ManagedHardwareSecurityModuleRoleDefinition
name: example
properties:
name: 7d206142-bf01-11ed-80bc-00155d61ee9e
managedHsmId: ${example.id}
description: desc foo
permissions:
- dataActions:
- Microsoft.KeyVault/managedHsm/keys/read/actionContent copied to clipboard
Import
Key Vault Managed Hardware Security Module Role Definitions can be imported using the resource id, e.g.
$ pulumi import azure:keyvault/managedHardwareSecurityModuleRoleDefinition:ManagedHardwareSecurityModuleRoleDefinition example https://0000.managedhsm.azure.net///RoleDefinition/00000000-0000-0000-0000-000000000000Content copied to clipboard
Properties
Link copied to clipboard
Specifies a text description about this Key Vault Managed Hardware Security Module Role Definition.
Link copied to clipboard
The ID of the Key Vault Managed Hardware Security Module. Changing this forces a new Key Vault Managed Hardware Security Module Role Definition to be created.
Link copied to clipboard
One or more permission blocks as defined below.
Link copied to clipboard
Link copied to clipboard
Link copied to clipboard
Link copied to clipboard
The ID of the role definition resource without Key Vault base URL.