Docs
Packages
This is the latest version of Azure Native. Use the Azure Native v1 docs if using the v1 version of this package.
Azure Native v2.39.0 published on Monday, Apr 29, 2024 by Pulumi
azure-native.security.DefenderForStorage
Explore with Pulumi AI
This is the latest version of Azure Native. Use the Azure Native v1 docs if using the v1 version of this package.
Azure Native v2.39.0 published on Monday, Apr 29, 2024 by Pulumi
The Defender for Storage resource. Azure REST API version: 2022-12-01-preview.
Example Usage
Creates or updates the Defender for Storage settings on a specified resource.
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var defenderForStorage = new AzureNative.Security.DefenderForStorage("defenderForStorage", new()
{
IsEnabled = true,
MalwareScanning = new AzureNative.Security.Inputs.MalwareScanningPropertiesArgs
{
CapGBPerMonth = -1,
IsEnabled = true,
ScanResultsEventGridTopicResourceId = "/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/SampleRG/providers/Microsoft.EventGrid/topics/sampletopic",
},
OverrideSubscriptionLevelSettings = true,
ResourceId = "subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/SampleRG/providers/Microsoft.Storage/storageAccounts/samplestorageaccount",
SensitiveDataDiscovery = new AzureNative.Security.Inputs.SensitiveDataDiscoveryPropertiesArgs
{
IsEnabled = true,
},
SettingName = "current",
});
});
package main
import (
"github.com/pulumi/pulumi-azure-native-sdk/security/v2"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := security.NewDefenderForStorage(ctx, "defenderForStorage", &security.DefenderForStorageArgs{
IsEnabled: pulumi.Bool(true),
MalwareScanning: &security.MalwareScanningPropertiesArgs{
CapGBPerMonth: -1,
IsEnabled: pulumi.Bool(true),
ScanResultsEventGridTopicResourceId: pulumi.String("/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/SampleRG/providers/Microsoft.EventGrid/topics/sampletopic"),
},
OverrideSubscriptionLevelSettings: pulumi.Bool(true),
ResourceId: pulumi.String("subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/SampleRG/providers/Microsoft.Storage/storageAccounts/samplestorageaccount"),
SensitiveDataDiscovery: &security.SensitiveDataDiscoveryPropertiesArgs{
IsEnabled: pulumi.Bool(true),
},
SettingName: pulumi.String("current"),
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.security.DefenderForStorage;
import com.pulumi.azurenative.security.DefenderForStorageArgs;
import com.pulumi.azurenative.security.inputs.MalwareScanningPropertiesArgs;
import com.pulumi.azurenative.security.inputs.SensitiveDataDiscoveryPropertiesArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var defenderForStorage = new DefenderForStorage("defenderForStorage", DefenderForStorageArgs.builder()
.isEnabled(true)
.malwareScanning(MalwareScanningPropertiesArgs.builder()
.capGBPerMonth("TODO: GenUnaryOpExpression")
.isEnabled(true)
.scanResultsEventGridTopicResourceId("/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/SampleRG/providers/Microsoft.EventGrid/topics/sampletopic")
.build())
.overrideSubscriptionLevelSettings(true)
.resourceId("subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/SampleRG/providers/Microsoft.Storage/storageAccounts/samplestorageaccount")
.sensitiveDataDiscovery(SensitiveDataDiscoveryPropertiesArgs.builder()
.isEnabled(true)
.build())
.settingName("current")
.build());
}
}
import pulumi
import pulumi_azure_native as azure_native
defender_for_storage = azure_native.security.DefenderForStorage("defenderForStorage",
is_enabled=True,
malware_scanning=azure_native.security.MalwareScanningPropertiesArgs(
cap_gb_per_month=-1,
is_enabled=True,
scan_results_event_grid_topic_resource_id="/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/SampleRG/providers/Microsoft.EventGrid/topics/sampletopic",
),
override_subscription_level_settings=True,
resource_id="subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/SampleRG/providers/Microsoft.Storage/storageAccounts/samplestorageaccount",
sensitive_data_discovery=azure_native.security.SensitiveDataDiscoveryPropertiesArgs(
is_enabled=True,
),
setting_name="current")
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const defenderForStorage = new azure_native.security.DefenderForStorage("defenderForStorage", {
isEnabled: true,
malwareScanning: {
capGBPerMonth: -1,
isEnabled: true,
scanResultsEventGridTopicResourceId: "/subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/SampleRG/providers/Microsoft.EventGrid/topics/sampletopic",
},
overrideSubscriptionLevelSettings: true,
resourceId: "subscriptions/20ff7fc3-e762-44dd-bd96-b71116dcdc23/resourceGroups/SampleRG/providers/Microsoft.Storage/storageAccounts/samplestorageaccount",
sensitiveDataDiscovery: {
isEnabled: true,
},
settingName: "current",
});
Create DefenderForStorage Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new DefenderForStorage(name: string, args: DefenderForStorageArgs, opts?: CustomResourceOptions);@overload
def DefenderForStorage(resource_name: str,
args: DefenderForStorageArgs,
opts: Optional[ResourceOptions] = None)
@overload
def DefenderForStorage(resource_name: str,
opts: Optional[ResourceOptions] = None,
resource_id: Optional[str] = None,
is_enabled: Optional[bool] = None,
malware_scanning: Optional[MalwareScanningPropertiesArgs] = None,
override_subscription_level_settings: Optional[bool] = None,
sensitive_data_discovery: Optional[SensitiveDataDiscoveryPropertiesArgs] = None,
setting_name: Optional[str] = None)func NewDefenderForStorage(ctx *Context, name string, args DefenderForStorageArgs, opts ...ResourceOption) (*DefenderForStorage, error)public DefenderForStorage(string name, DefenderForStorageArgs args, CustomResourceOptions? opts = null)
public DefenderForStorage(String name, DefenderForStorageArgs args)
public DefenderForStorage(String name, DefenderForStorageArgs args, CustomResourceOptions options)
type: azure-native:security:DefenderForStorage
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args DefenderForStorageArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args DefenderForStorageArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args DefenderForStorageArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args DefenderForStorageArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args DefenderForStorageArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Example
The following reference example uses placeholder values for all input properties.
var defenderForStorageResource = new AzureNative.Security.DefenderForStorage("defenderForStorageResource", new()
{
ResourceId = "string",
IsEnabled = false,
MalwareScanning = new AzureNative.Security.Inputs.MalwareScanningPropertiesArgs
{
CapGBPerMonth = 0,
IsEnabled = false,
ScanResultsEventGridTopicResourceId = "string",
},
OverrideSubscriptionLevelSettings = false,
SensitiveDataDiscovery = new AzureNative.Security.Inputs.SensitiveDataDiscoveryPropertiesArgs
{
IsEnabled = false,
},
SettingName = "string",
});
example, err := security.NewDefenderForStorage(ctx, "defenderForStorageResource", &security.DefenderForStorageArgs{
ResourceId: pulumi.String("string"),
IsEnabled: pulumi.Bool(false),
MalwareScanning: &security.MalwareScanningPropertiesArgs{
CapGBPerMonth: pulumi.Int(0),
IsEnabled: pulumi.Bool(false),
ScanResultsEventGridTopicResourceId: pulumi.String("string"),
},
OverrideSubscriptionLevelSettings: pulumi.Bool(false),
SensitiveDataDiscovery: &security.SensitiveDataDiscoveryPropertiesArgs{
IsEnabled: pulumi.Bool(false),
},
SettingName: pulumi.String("string"),
})
var defenderForStorageResource = new DefenderForStorage("defenderForStorageResource", DefenderForStorageArgs.builder()
.resourceId("string")
.isEnabled(false)
.malwareScanning(MalwareScanningPropertiesArgs.builder()
.capGBPerMonth(0)
.isEnabled(false)
.scanResultsEventGridTopicResourceId("string")
.build())
.overrideSubscriptionLevelSettings(false)
.sensitiveDataDiscovery(SensitiveDataDiscoveryPropertiesArgs.builder()
.isEnabled(false)
.build())
.settingName("string")
.build());
defender_for_storage_resource = azure_native.security.DefenderForStorage("defenderForStorageResource",
resource_id="string",
is_enabled=False,
malware_scanning=azure_native.security.MalwareScanningPropertiesArgs(
cap_gb_per_month=0,
is_enabled=False,
scan_results_event_grid_topic_resource_id="string",
),
override_subscription_level_settings=False,
sensitive_data_discovery=azure_native.security.SensitiveDataDiscoveryPropertiesArgs(
is_enabled=False,
),
setting_name="string")
const defenderForStorageResource = new azure_native.security.DefenderForStorage("defenderForStorageResource", {
resourceId: "string",
isEnabled: false,
malwareScanning: {
capGBPerMonth: 0,
isEnabled: false,
scanResultsEventGridTopicResourceId: "string",
},
overrideSubscriptionLevelSettings: false,
sensitiveDataDiscovery: {
isEnabled: false,
},
settingName: "string",
});
type: azure-native:security:DefenderForStorage
properties:
isEnabled: false
malwareScanning:
capGBPerMonth: 0
isEnabled: false
scanResultsEventGridTopicResourceId: string
overrideSubscriptionLevelSettings: false
resourceId: string
sensitiveDataDiscovery:
isEnabled: false
settingName: string
DefenderForStorage Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
The DefenderForStorage resource accepts the following input properties:
- Resource
Id string - The identifier of the resource.
- Is
Enabled bool - Indicates whether Defender for Storage is enabled on this storage account.
- Malware
Scanning Pulumi.Azure Native. Security. Inputs. Malware Scanning Properties - Properties of Malware Scanning.
- Override
Subscription boolLevel Settings - Indicates whether the settings defined for this storage account should override the settings defined for the subscription.
- Sensitive
Data Pulumi.Discovery Azure Native. Security. Inputs. Sensitive Data Discovery Properties - Properties of Sensitive Data Discovery.
- Setting
Name string - Defender for Storage setting name.
- Resource
Id string - The identifier of the resource.
- Is
Enabled bool - Indicates whether Defender for Storage is enabled on this storage account.
- Malware
Scanning MalwareScanning Properties Args - Properties of Malware Scanning.
- Override
Subscription boolLevel Settings - Indicates whether the settings defined for this storage account should override the settings defined for the subscription.
- Sensitive
Data SensitiveDiscovery Data Discovery Properties Args - Properties of Sensitive Data Discovery.
- Setting
Name string - Defender for Storage setting name.
- resource
Id String - The identifier of the resource.
- is
Enabled Boolean - Indicates whether Defender for Storage is enabled on this storage account.
- malware
Scanning MalwareScanning Properties - Properties of Malware Scanning.
- override
Subscription BooleanLevel Settings - Indicates whether the settings defined for this storage account should override the settings defined for the subscription.
- sensitive
Data SensitiveDiscovery Data Discovery Properties - Properties of Sensitive Data Discovery.
- setting
Name String - Defender for Storage setting name.
- resource
Id string - The identifier of the resource.
- is
Enabled boolean - Indicates whether Defender for Storage is enabled on this storage account.
- malware
Scanning MalwareScanning Properties - Properties of Malware Scanning.
- override
Subscription booleanLevel Settings - Indicates whether the settings defined for this storage account should override the settings defined for the subscription.
- sensitive
Data SensitiveDiscovery Data Discovery Properties - Properties of Sensitive Data Discovery.
- setting
Name string - Defender for Storage setting name.
- resource_
id str - The identifier of the resource.
- is_
enabled bool - Indicates whether Defender for Storage is enabled on this storage account.
- malware_
scanning MalwareScanning Properties Args - Properties of Malware Scanning.
- override_
subscription_ boollevel_ settings - Indicates whether the settings defined for this storage account should override the settings defined for the subscription.
- sensitive_
data_ Sensitivediscovery Data Discovery Properties Args - Properties of Sensitive Data Discovery.
- setting_
name str - Defender for Storage setting name.
- resource
Id String - The identifier of the resource.
- is
Enabled Boolean - Indicates whether Defender for Storage is enabled on this storage account.
- malware
Scanning Property Map - Properties of Malware Scanning.
- override
Subscription BooleanLevel Settings - Indicates whether the settings defined for this storage account should override the settings defined for the subscription.
- sensitive
Data Property MapDiscovery - Properties of Sensitive Data Discovery.
- setting
Name String - Defender for Storage setting name.
Outputs
All input properties are implicitly available as output properties. Additionally, the DefenderForStorage resource produces the following output properties:
Supporting Types
MalwareScanningProperties, MalwareScanningPropertiesArgs
- Cap
GBPer intMonth - Defines the max GB to be scanned per Month. Set to -1 if no capping is needed.
- Is
Enabled bool - Indicates whether On Upload malware scanning should be enabled.
- Scan
Results stringEvent Grid Topic Resource Id - Optional. Resource id of an Event Grid Topic to send scan results to.
- Cap
GBPer intMonth - Defines the max GB to be scanned per Month. Set to -1 if no capping is needed.
- Is
Enabled bool - Indicates whether On Upload malware scanning should be enabled.
- Scan
Results stringEvent Grid Topic Resource Id - Optional. Resource id of an Event Grid Topic to send scan results to.
- cap
GBPer IntegerMonth - Defines the max GB to be scanned per Month. Set to -1 if no capping is needed.
- is
Enabled Boolean - Indicates whether On Upload malware scanning should be enabled.
- scan
Results StringEvent Grid Topic Resource Id - Optional. Resource id of an Event Grid Topic to send scan results to.
- cap
GBPer numberMonth - Defines the max GB to be scanned per Month. Set to -1 if no capping is needed.
- is
Enabled boolean - Indicates whether On Upload malware scanning should be enabled.
- scan
Results stringEvent Grid Topic Resource Id - Optional. Resource id of an Event Grid Topic to send scan results to.
- cap_
gb_ intper_ month - Defines the max GB to be scanned per Month. Set to -1 if no capping is needed.
- is_
enabled bool - Indicates whether On Upload malware scanning should be enabled.
- scan_
results_ strevent_ grid_ topic_ resource_ id - Optional. Resource id of an Event Grid Topic to send scan results to.
- cap
GBPer NumberMonth - Defines the max GB to be scanned per Month. Set to -1 if no capping is needed.
- is
Enabled Boolean - Indicates whether On Upload malware scanning should be enabled.
- scan
Results StringEvent Grid Topic Resource Id - Optional. Resource id of an Event Grid Topic to send scan results to.
MalwareScanningPropertiesResponse, MalwareScanningPropertiesResponseArgs
- Operation
Status Pulumi.Azure Native. Security. Inputs. Operation Status Response - Upon failure or partial success. Additional data describing Malware Scanning enable/disable operation.
- Cap
GBPer intMonth - Defines the max GB to be scanned per Month. Set to -1 if no capping is needed.
- Is
Enabled bool - Indicates whether On Upload malware scanning should be enabled.
- Scan
Results stringEvent Grid Topic Resource Id - Optional. Resource id of an Event Grid Topic to send scan results to.
- Operation
Status OperationStatus Response - Upon failure or partial success. Additional data describing Malware Scanning enable/disable operation.
- Cap
GBPer intMonth - Defines the max GB to be scanned per Month. Set to -1 if no capping is needed.
- Is
Enabled bool - Indicates whether On Upload malware scanning should be enabled.
- Scan
Results stringEvent Grid Topic Resource Id - Optional. Resource id of an Event Grid Topic to send scan results to.
- operation
Status OperationStatus Response - Upon failure or partial success. Additional data describing Malware Scanning enable/disable operation.
- cap
GBPer IntegerMonth - Defines the max GB to be scanned per Month. Set to -1 if no capping is needed.
- is
Enabled Boolean - Indicates whether On Upload malware scanning should be enabled.
- scan
Results StringEvent Grid Topic Resource Id - Optional. Resource id of an Event Grid Topic to send scan results to.
- operation
Status OperationStatus Response - Upon failure or partial success. Additional data describing Malware Scanning enable/disable operation.
- cap
GBPer numberMonth - Defines the max GB to be scanned per Month. Set to -1 if no capping is needed.
- is
Enabled boolean - Indicates whether On Upload malware scanning should be enabled.
- scan
Results stringEvent Grid Topic Resource Id - Optional. Resource id of an Event Grid Topic to send scan results to.
- operation_
status OperationStatus Response - Upon failure or partial success. Additional data describing Malware Scanning enable/disable operation.
- cap_
gb_ intper_ month - Defines the max GB to be scanned per Month. Set to -1 if no capping is needed.
- is_
enabled bool - Indicates whether On Upload malware scanning should be enabled.
- scan_
results_ strevent_ grid_ topic_ resource_ id - Optional. Resource id of an Event Grid Topic to send scan results to.
- operation
Status Property Map - Upon failure or partial success. Additional data describing Malware Scanning enable/disable operation.
- cap
GBPer NumberMonth - Defines the max GB to be scanned per Month. Set to -1 if no capping is needed.
- is
Enabled Boolean - Indicates whether On Upload malware scanning should be enabled.
- scan
Results StringEvent Grid Topic Resource Id - Optional. Resource id of an Event Grid Topic to send scan results to.
OperationStatusResponse, OperationStatusResponseArgs
SensitiveDataDiscoveryProperties, SensitiveDataDiscoveryPropertiesArgs
- Is
Enabled bool - Indicates whether Sensitive Data Discovery should be enabled.
- Is
Enabled bool - Indicates whether Sensitive Data Discovery should be enabled.
- is
Enabled Boolean - Indicates whether Sensitive Data Discovery should be enabled.
- is
Enabled boolean - Indicates whether Sensitive Data Discovery should be enabled.
- is_
enabled bool - Indicates whether Sensitive Data Discovery should be enabled.
- is
Enabled Boolean - Indicates whether Sensitive Data Discovery should be enabled.
SensitiveDataDiscoveryPropertiesResponse, SensitiveDataDiscoveryPropertiesResponseArgs
- Operation
Status Pulumi.Azure Native. Security. Inputs. Operation Status Response - Upon failure or partial success. Additional data describing Sensitive Data Discovery enable/disable operation.
- Is
Enabled bool - Indicates whether Sensitive Data Discovery should be enabled.
- Operation
Status OperationStatus Response - Upon failure or partial success. Additional data describing Sensitive Data Discovery enable/disable operation.
- Is
Enabled bool - Indicates whether Sensitive Data Discovery should be enabled.
- operation
Status OperationStatus Response - Upon failure or partial success. Additional data describing Sensitive Data Discovery enable/disable operation.
- is
Enabled Boolean - Indicates whether Sensitive Data Discovery should be enabled.
- operation
Status OperationStatus Response - Upon failure or partial success. Additional data describing Sensitive Data Discovery enable/disable operation.
- is
Enabled boolean - Indicates whether Sensitive Data Discovery should be enabled.
- operation_
status OperationStatus Response - Upon failure or partial success. Additional data describing Sensitive Data Discovery enable/disable operation.
- is_
enabled bool - Indicates whether Sensitive Data Discovery should be enabled.
- operation
Status Property Map - Upon failure or partial success. Additional data describing Sensitive Data Discovery enable/disable operation.
- is
Enabled Boolean - Indicates whether Sensitive Data Discovery should be enabled.
Import
An existing resource can be imported using its type token, name, and identifier, e.g.
$ pulumi import azure-native:security:DefenderForStorage current /{resourceId}/providers/Microsoft.Security/defenderForStorageSettings/{settingName}
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- Azure Native pulumi/pulumi-azure-native
- License
- Apache-2.0
This is the latest version of Azure Native. Use the Azure Native v1 docs if using the v1 version of this package.
Azure Native v2.39.0 published on Monday, Apr 29, 2024 by Pulumi