pulumi-cloudflare-kotlin/com.pulumi.cloudflare.kotlin/ZeroTrustDeviceDefaultProfile

ZeroTrustDeviceDefaultProfile

class ZeroTrustDeviceDefaultProfile : KotlinCustomResource

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as cloudflare from "@pulumi/cloudflare";
const exampleZeroTrustDeviceDefaultProfile = new cloudflare.ZeroTrustDeviceDefaultProfile("example_zero_trust_device_default_profile", {
    accountId: "699d98642c564d2e855e9661899b7252",
    allowModeSwitch: true,
    allowUpdates: true,
    allowedToLeave: true,
    autoConnect: 0,
    captivePortal: 180,
    disableAutoFallback: true,
    excludes: [{
        address: "192.0.2.0/24",
        description: "Exclude testing domains from the tunnel",
        host: "*.example.com",
    }],
    excludeOfficeIps: true,
    includes: [{
        address: "192.0.2.0/24",
        description: "Exclude testing domains from the tunnel",
        host: "*.example.com",
    }],
    registerInterfaceIpWithDns: true,
    serviceModeV2: {
        mode: "proxy",
        port: 3000,
    },
    supportUrl: "https://1.1.1.1/help",
    switchLocked: true,
    tunnelProtocol: "wireguard",
});

import pulumi
import pulumi_cloudflare as cloudflare
example_zero_trust_device_default_profile = cloudflare.ZeroTrustDeviceDefaultProfile("example_zero_trust_device_default_profile",
    account_id="699d98642c564d2e855e9661899b7252",
    allow_mode_switch=True,
    allow_updates=True,
    allowed_to_leave=True,
    auto_connect=0,
    captive_portal=180,
    disable_auto_fallback=True,
    excludes=[{
        "address": "192.0.2.0/24",
        "description": "Exclude testing domains from the tunnel",
        "host": "*.example.com",
    }],
    exclude_office_ips=True,
    includes=[{
        "address": "192.0.2.0/24",
        "description": "Exclude testing domains from the tunnel",
        "host": "*.example.com",
    }],
    register_interface_ip_with_dns=True,
    service_mode_v2={
        "mode": "proxy",
        "port": 3000,
    },
    support_url="https://1.1.1.1/help",
    switch_locked=True,
    tunnel_protocol="wireguard")

using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Cloudflare = Pulumi.Cloudflare;
return await Deployment.RunAsync(() =>
{
    var exampleZeroTrustDeviceDefaultProfile = new Cloudflare.ZeroTrustDeviceDefaultProfile("example_zero_trust_device_default_profile", new()
    {
        AccountId = "699d98642c564d2e855e9661899b7252",
        AllowModeSwitch = true,
        AllowUpdates = true,
        AllowedToLeave = true,
        AutoConnect = 0,
        CaptivePortal = 180,
        DisableAutoFallback = true,
        Excludes = new[]
        {
            new Cloudflare.Inputs.ZeroTrustDeviceDefaultProfileExcludeArgs
            {
                Address = "192.0.2.0/24",
                Description = "Exclude testing domains from the tunnel",
                Host = "*.example.com",
            },
        },
        ExcludeOfficeIps = true,
        Includes = new[]
        {
            new Cloudflare.Inputs.ZeroTrustDeviceDefaultProfileIncludeArgs
            {
                Address = "192.0.2.0/24",
                Description = "Exclude testing domains from the tunnel",
                Host = "*.example.com",
            },
        },
        RegisterInterfaceIpWithDns = true,
        ServiceModeV2 = new Cloudflare.Inputs.ZeroTrustDeviceDefaultProfileServiceModeV2Args
        {
            Mode = "proxy",
            Port = 3000,
        },
        SupportUrl = "https://1.1.1.1/help",
        SwitchLocked = true,
        TunnelProtocol = "wireguard",
    });
});

package main
import (
	"github.com/pulumi/pulumi-cloudflare/sdk/v6/go/cloudflare"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := cloudflare.NewZeroTrustDeviceDefaultProfile(ctx, "example_zero_trust_device_default_profile", &cloudflare.ZeroTrustDeviceDefaultProfileArgs{
			AccountId:           pulumi.String("699d98642c564d2e855e9661899b7252"),
			AllowModeSwitch:     pulumi.Bool(true),
			AllowUpdates:        pulumi.Bool(true),
			AllowedToLeave:      pulumi.Bool(true),
			AutoConnect:         pulumi.Float64(0),
			CaptivePortal:       pulumi.Float64(180),
			DisableAutoFallback: pulumi.Bool(true),
			Excludes: cloudflare.ZeroTrustDeviceDefaultProfileExcludeArray{
				&cloudflare.ZeroTrustDeviceDefaultProfileExcludeArgs{
					Address:     pulumi.String("192.0.2.0/24"),
					Description: pulumi.String("Exclude testing domains from the tunnel"),
					Host:        pulumi.String("*.example.com"),
				},
			},
			ExcludeOfficeIps: pulumi.Bool(true),
			Includes: cloudflare.ZeroTrustDeviceDefaultProfileIncludeArray{
				&cloudflare.ZeroTrustDeviceDefaultProfileIncludeArgs{
					Address:     pulumi.String("192.0.2.0/24"),
					Description: pulumi.String("Exclude testing domains from the tunnel"),
					Host:        pulumi.String("*.example.com"),
				},
			},
			RegisterInterfaceIpWithDns: pulumi.Bool(true),
			ServiceModeV2: &cloudflare.ZeroTrustDeviceDefaultProfileServiceModeV2Args{
				Mode: pulumi.String("proxy"),
				Port: pulumi.Float64(3000),
			},
			SupportUrl:     pulumi.String("https://1.1.1.1/help"),
			SwitchLocked:   pulumi.Bool(true),
			TunnelProtocol: pulumi.String("wireguard"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.cloudflare.ZeroTrustDeviceDefaultProfile;
import com.pulumi.cloudflare.ZeroTrustDeviceDefaultProfileArgs;
import com.pulumi.cloudflare.inputs.ZeroTrustDeviceDefaultProfileExcludeArgs;
import com.pulumi.cloudflare.inputs.ZeroTrustDeviceDefaultProfileIncludeArgs;
import com.pulumi.cloudflare.inputs.ZeroTrustDeviceDefaultProfileServiceModeV2Args;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }
    public static void stack(Context ctx) {
        var exampleZeroTrustDeviceDefaultProfile = new ZeroTrustDeviceDefaultProfile("exampleZeroTrustDeviceDefaultProfile", ZeroTrustDeviceDefaultProfileArgs.builder()
            .accountId("699d98642c564d2e855e9661899b7252")
            .allowModeSwitch(true)
            .allowUpdates(true)
            .allowedToLeave(true)
            .autoConnect(0.0)
            .captivePortal(180.0)
            .disableAutoFallback(true)
            .excludes(ZeroTrustDeviceDefaultProfileExcludeArgs.builder()
                .address("192.0.2.0/24")
                .description("Exclude testing domains from the tunnel")
                .host("*.example.com")
                .build())
            .excludeOfficeIps(true)
            .includes(ZeroTrustDeviceDefaultProfileIncludeArgs.builder()
                .address("192.0.2.0/24")
                .description("Exclude testing domains from the tunnel")
                .host("*.example.com")
                .build())
            .registerInterfaceIpWithDns(true)
            .serviceModeV2(ZeroTrustDeviceDefaultProfileServiceModeV2Args.builder()
                .mode("proxy")
                .port(3000.0)
                .build())
            .supportUrl("https://1.1.1.1/help")
            .switchLocked(true)
            .tunnelProtocol("wireguard")
            .build());
    }
}

resources:
  exampleZeroTrustDeviceDefaultProfile:
    type: cloudflare:ZeroTrustDeviceDefaultProfile
    name: example_zero_trust_device_default_profile
    properties:
      accountId: 699d98642c564d2e855e9661899b7252
      allowModeSwitch: true
      allowUpdates: true
      allowedToLeave: true
      autoConnect: 0
      captivePortal: 180
      disableAutoFallback: true
      excludes:
        - address: 192.0.2.0/24
          description: Exclude testing domains from the tunnel
          host: '*.example.com'
      excludeOfficeIps: true
      includes:
        - address: 192.0.2.0/24
          description: Exclude testing domains from the tunnel
          host: '*.example.com'
      registerInterfaceIpWithDns: true
      serviceModeV2:
        mode: proxy
        port: 3000
      supportUrl: https://1.1.1.1/help
      switchLocked: true
      tunnelProtocol: wireguard

Import

$ pulumi import cloudflare:index/zeroTrustDeviceDefaultProfile:ZeroTrustDeviceDefaultProfile example '<account_id>'

Properties

accountId

val accountId: Output<String>

allowedToLeave

val allowedToLeave: Output<Boolean>?

Whether to allow devices to leave the organization.

allowModeSwitch

val allowModeSwitch: Output<Boolean>?

Whether to allow the user to switch WARP between modes.

allowUpdates

val allowUpdates: Output<Boolean>?

Whether to receive update notifications when a new version of the client is available.

autoConnect

val autoConnect: Output<Double>?

The amount of time in seconds to reconnect after having been disabled.

captivePortal

val captivePortal: Output<Double>?

Turn on the captive portal after the specified amount of time.

default

val default: Output<Boolean>

Whether the policy will be applied to matching devices.

disableAutoFallback

val disableAutoFallback: Output<Boolean>?

If the dns_server field of a fallback domain is not present, the client will fall back to a best guess of the default/system DNS resolvers unless this policy option is set to true.

enabled

val enabled: Output<Boolean>

Whether the policy will be applied to matching devices.

excludeOfficeIps

val excludeOfficeIps: Output<Boolean>?

Whether to add Microsoft IPs to Split Tunnel exclusions.

excludes