pulumi-cloudflare-kotlin/com.pulumi.cloudflare.kotlin/ZeroTrustDeviceProfiles

ZeroTrustDeviceProfiles

class ZeroTrustDeviceProfiles : KotlinCustomResource

Provides a Cloudflare Device Settings Policy resource. Device policies configure settings applied to WARP devices.

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as cloudflare from "@pulumi/cloudflare";
const developerWarpPolicy = new cloudflare.ZeroTrustDeviceProfiles("developer_warp_policy", {
    accountId: "f037e56e89293a057740de681ac9abbe",
    name: "Developers WARP settings policy",
    description: "Developers WARP settings policy description",
    precedence: 10,
    match: "any(identity.groups.name[*] in {\"Developers\"})",
    "default": false,
    enabled: true,
    allowModeSwitch: true,
    allowUpdates: true,
    allowedToLeave: true,
    autoConnect: 0,
    captivePortal: 5,
    disableAutoFallback: true,
    supportUrl: "https://cloudflare.com",
    switchLocked: true,
    serviceModeV2Mode: "warp",
    serviceModeV2Port: 3000,
    excludeOfficeIps: false,
});
Content copied to clipboard
import pulumi
import pulumi_cloudflare as cloudflare
developer_warp_policy = cloudflare.ZeroTrustDeviceProfiles("developer_warp_policy",
    account_id="f037e56e89293a057740de681ac9abbe",
    name="Developers WARP settings policy",
    description="Developers WARP settings policy description",
    precedence=10,
    match="any(identity.groups.name[*] in {\"Developers\"})",
    default=False,
    enabled=True,
    allow_mode_switch=True,
    allow_updates=True,
    allowed_to_leave=True,
    auto_connect=0,
    captive_portal=5,
    disable_auto_fallback=True,
    support_url="https://cloudflare.com",
    switch_locked=True,
    service_mode_v2_mode="warp",
    service_mode_v2_port=3000,
    exclude_office_ips=False)
Content copied to clipboard
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Cloudflare = Pulumi.Cloudflare;
return await Deployment.RunAsync(() =>
{
    var developerWarpPolicy = new Cloudflare.ZeroTrustDeviceProfiles("developer_warp_policy", new()
    {
        AccountId = "f037e56e89293a057740de681ac9abbe",
        Name = "Developers WARP settings policy",
        Description = "Developers WARP settings policy description",
        Precedence = 10,
        Match = "any(identity.groups.name[*] in {\"Developers\"})",
        Default = false,
        Enabled = true,
        AllowModeSwitch = true,
        AllowUpdates = true,
        AllowedToLeave = true,
        AutoConnect = 0,
        CaptivePortal = 5,
        DisableAutoFallback = true,
        SupportUrl = "https://cloudflare.com",
        SwitchLocked = true,
        ServiceModeV2Mode = "warp",
        ServiceModeV2Port = 3000,
        ExcludeOfficeIps = false,
    });
});
Content copied to clipboard
package main
import (
	"github.com/pulumi/pulumi-cloudflare/sdk/v5/go/cloudflare"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := cloudflare.NewZeroTrustDeviceProfiles(ctx, "developer_warp_policy", &cloudflare.ZeroTrustDeviceProfilesArgs{
			AccountId:           pulumi.String("f037e56e89293a057740de681ac9abbe"),
			Name:                pulumi.String("Developers WARP settings policy"),
			Description:         pulumi.String("Developers WARP settings policy description"),
			Precedence:          pulumi.Int(10),
			Match:               pulumi.String("any(identity.groups.name[*] in {\"Developers\"})"),
			Default:             pulumi.Bool(false),
			Enabled:             pulumi.Bool(true),
			AllowModeSwitch:     pulumi.Bool(true),
			AllowUpdates:        pulumi.Bool(true),
			AllowedToLeave:      pulumi.Bool(true),
			AutoConnect:         pulumi.Int(0),
			CaptivePortal:       pulumi.Int(5),
			DisableAutoFallback: pulumi.Bool(true),
			SupportUrl:          pulumi.String("https://cloudflare.com"),
			SwitchLocked:        pulumi.Bool(true),
			ServiceModeV2Mode:   pulumi.String("warp"),
			ServiceModeV2Port:   pulumi.Int(3000),
			ExcludeOfficeIps:    pulumi.Bool(false),
		})
		if err != nil {
			return err
		}
		return nil
	})
}
Content copied to clipboard
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.cloudflare.ZeroTrustDeviceProfiles;
import com.pulumi.cloudflare.ZeroTrustDeviceProfilesArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }
    public static void stack(Context ctx) {
        var developerWarpPolicy = new ZeroTrustDeviceProfiles("developerWarpPolicy", ZeroTrustDeviceProfilesArgs.builder()
            .accountId("f037e56e89293a057740de681ac9abbe")
            .name("Developers WARP settings policy")
            .description("Developers WARP settings policy description")
            .precedence(10)
            .match("any(identity.groups.name[*] in {\"Developers\"})")
            .default_(false)
            .enabled(true)
            .allowModeSwitch(true)
            .allowUpdates(true)
            .allowedToLeave(true)
            .autoConnect(0)
            .captivePortal(5)
            .disableAutoFallback(true)
            .supportUrl("https://cloudflare.com")
            .switchLocked(true)
            .serviceModeV2Mode("warp")
            .serviceModeV2Port(3000)
            .excludeOfficeIps(false)
            .build());
    }
}
Content copied to clipboard
resources:
  developerWarpPolicy:
    type: cloudflare:ZeroTrustDeviceProfiles
    name: developer_warp_policy
    properties:
      accountId: f037e56e89293a057740de681ac9abbe
      name: Developers WARP settings policy
      description: Developers WARP settings policy description
      precedence: 10
      match: any(identity.groups.name[*] in {"Developers"})
      default: false
      enabled: true
      allowModeSwitch: true
      allowUpdates: true
      allowedToLeave: true
      autoConnect: 0
      captivePortal: 5
      disableAutoFallback: true
      supportUrl: https://cloudflare.com
      switchLocked: true
      serviceModeV2Mode: warp
      serviceModeV2Port: 3000
      excludeOfficeIps: false
Content copied to clipboard

Import

For default device settings policies you must use "default" as the policy ID.

$ pulumi import cloudflare:index/zeroTrustDeviceProfiles:ZeroTrustDeviceProfiles example <account_id>/<device_policy_id>
Content copied to clipboard

Properties

Link copied to clipboard
val accountId: Output<String>

The account identifier to target for the resource.

Link copied to clipboard
val allowedToLeave: Output<Boolean>?

Whether to allow devices to leave the organization. Defaults to true.

Link copied to clipboard
val allowModeSwitch: Output<Boolean>?

Whether to allow mode switch for this policy.

Link copied to clipboard
val allowUpdates: Output<Boolean>?

Whether to allow updates under this policy.

Link copied to clipboard
val autoConnect: Output<Int>?

The amount of time in seconds to reconnect after having been disabled.

Link copied to clipboard
val captivePortal: Output<Int>?

The captive portal value for this policy. Defaults to 180.

Link copied to clipboard
val default: Output<Boolean>?

Whether the policy refers to the default account policy.

Link copied to clipboard
val description: Output<String>

Description of Policy.

Link copied to clipboard
val disableAutoFallback: Output<Boolean>?

Whether to disable auto fallback for this policy.

Link copied to clipboard
val enabled: Output<Boolean>?

Whether the policy is enabled (cannot be set for default policies). Defaults to true.

Link copied to clipboard
val excludeOfficeIps: Output<Boolean>?

Whether to add Microsoft IPs to split tunnel exclusions.

Link copied to clipboard
val id: Output<String>
Link copied to clipboard
val match: Output<String>?

Wirefilter expression to match a device against when evaluating whether this policy should take effect for that device.

Link copied to clipboard
val name: Output<String>

Name of the policy.

Link copied to clipboard
val precedence: Output<Int>?

The precedence of the policy. Lower values indicate higher precedence.

Link copied to clipboard
val pulumiChildResources: Set<KotlinResource>
Link copied to clipboard
Link copied to clipboard
Link copied to clipboard
val serviceModeV2Mode: Output<String>?

The service mode. Available values: 1dot1, warp, proxy, posture_only, warp_tunnel_only. Defaults to warp.

Link copied to clipboard
val serviceModeV2Port: Output<Int>?

The port to use for the proxy service mode. Required when using service_mode_v2_mode.

Link copied to clipboard
val supportUrl: Output<String>?

The support URL that will be opened when sending feedback.

Link copied to clipboard
val switchLocked: Output<Boolean>?

Enablement of the ZT client switch lock.

Link copied to clipboard
val tunnelProtocol: Output<String>?

Determines which tunnel protocol to use. Available values: "", wireguard, masque. Defaults to wireguard.

Link copied to clipboard
val urn: Output<String>