Viewing docs for akeyless 2.0.1
published on Monday, Apr 27, 2026 by akeyless-community
published on Monday, Apr 27, 2026 by akeyless-community
Viewing docs for akeyless 2.0.1
published on Monday, Apr 27, 2026 by akeyless-community
published on Monday, Apr 27, 2026 by akeyless-community
Venafi dynamic secret resource
Create DynamicSecretVenafi Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new DynamicSecretVenafi(name: string, args?: DynamicSecretVenafiArgs, opts?: CustomResourceOptions);@overload
def DynamicSecretVenafi(resource_name: str,
args: Optional[DynamicSecretVenafiArgs] = None,
opts: Optional[ResourceOptions] = None)
@overload
def DynamicSecretVenafi(resource_name: str,
opts: Optional[ResourceOptions] = None,
admin_rotation_interval_days: Optional[float] = None,
allow_subdomains: Optional[bool] = None,
allowed_domains: Optional[Sequence[str]] = None,
auto_generated_folder: Optional[str] = None,
delete_protection: Optional[str] = None,
dynamic_secret_venafi_id: Optional[str] = None,
enable_admin_rotation: Optional[bool] = None,
item_custom_fields: Optional[Mapping[str, str]] = None,
name: Optional[str] = None,
producer_encryption_key_name: Optional[str] = None,
root_first_in_chain: Optional[bool] = None,
sign_using_akeyless_pki: Optional[bool] = None,
signer_key_name: Optional[str] = None,
store_private_key: Optional[bool] = None,
tags: Optional[Sequence[str]] = None,
target_name: Optional[str] = None,
user_ttl: Optional[str] = None,
venafi_access_token: Optional[str] = None,
venafi_api_key: Optional[str] = None,
venafi_baseurl: Optional[str] = None,
venafi_client_id: Optional[str] = None,
venafi_refresh_token: Optional[str] = None,
venafi_use_tpp: Optional[bool] = None,
venafi_zone: Optional[str] = None)func NewDynamicSecretVenafi(ctx *Context, name string, args *DynamicSecretVenafiArgs, opts ...ResourceOption) (*DynamicSecretVenafi, error)public DynamicSecretVenafi(string name, DynamicSecretVenafiArgs? args = null, CustomResourceOptions? opts = null)
public DynamicSecretVenafi(String name, DynamicSecretVenafiArgs args)
public DynamicSecretVenafi(String name, DynamicSecretVenafiArgs args, CustomResourceOptions options)
type: akeyless:DynamicSecretVenafi
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
resource "akeyless_dynamicsecretvenafi" "name" {
# resource properties
}Parameters
- name string
- The unique name of the resource.
- args DynamicSecretVenafiArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args DynamicSecretVenafiArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args DynamicSecretVenafiArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args DynamicSecretVenafiArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args DynamicSecretVenafiArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var dynamicSecretVenafiResource = new Akeyless.DynamicSecretVenafi("dynamicSecretVenafiResource", new()
{
AdminRotationIntervalDays = 0,
AllowSubdomains = false,
AllowedDomains = new[]
{
"string",
},
AutoGeneratedFolder = "string",
DeleteProtection = "string",
DynamicSecretVenafiId = "string",
EnableAdminRotation = false,
ItemCustomFields =
{
{ "string", "string" },
},
Name = "string",
ProducerEncryptionKeyName = "string",
RootFirstInChain = false,
SignUsingAkeylessPki = false,
SignerKeyName = "string",
StorePrivateKey = false,
Tags = new[]
{
"string",
},
TargetName = "string",
UserTtl = "string",
VenafiAccessToken = "string",
VenafiApiKey = "string",
VenafiBaseurl = "string",
VenafiClientId = "string",
VenafiRefreshToken = "string",
VenafiUseTpp = false,
VenafiZone = "string",
});
example, err := akeyless.NewDynamicSecretVenafi(ctx, "dynamicSecretVenafiResource", &akeyless.DynamicSecretVenafiArgs{
AdminRotationIntervalDays: pulumi.Float64(0),
AllowSubdomains: pulumi.Bool(false),
AllowedDomains: pulumi.StringArray{
pulumi.String("string"),
},
AutoGeneratedFolder: pulumi.String("string"),
DeleteProtection: pulumi.String("string"),
DynamicSecretVenafiId: pulumi.String("string"),
EnableAdminRotation: pulumi.Bool(false),
ItemCustomFields: pulumi.StringMap{
"string": pulumi.String("string"),
},
Name: pulumi.String("string"),
ProducerEncryptionKeyName: pulumi.String("string"),
RootFirstInChain: pulumi.Bool(false),
SignUsingAkeylessPki: pulumi.Bool(false),
SignerKeyName: pulumi.String("string"),
StorePrivateKey: pulumi.Bool(false),
Tags: pulumi.StringArray{
pulumi.String("string"),
},
TargetName: pulumi.String("string"),
UserTtl: pulumi.String("string"),
VenafiAccessToken: pulumi.String("string"),
VenafiApiKey: pulumi.String("string"),
VenafiBaseurl: pulumi.String("string"),
VenafiClientId: pulumi.String("string"),
VenafiRefreshToken: pulumi.String("string"),
VenafiUseTpp: pulumi.Bool(false),
VenafiZone: pulumi.String("string"),
})
resource "akeyless_dynamicsecretvenafi" "dynamicSecretVenafiResource" {
admin_rotation_interval_days = 0
allow_subdomains = false
allowed_domains = ["string"]
auto_generated_folder = "string"
delete_protection = "string"
dynamic_secret_venafi_id = "string"
enable_admin_rotation = false
item_custom_fields = {
"string" = "string"
}
name = "string"
producer_encryption_key_name = "string"
root_first_in_chain = false
sign_using_akeyless_pki = false
signer_key_name = "string"
store_private_key = false
tags = ["string"]
target_name = "string"
user_ttl = "string"
venafi_access_token = "string"
venafi_api_key = "string"
venafi_baseurl = "string"
venafi_client_id = "string"
venafi_refresh_token = "string"
venafi_use_tpp = false
venafi_zone = "string"
}
var dynamicSecretVenafiResource = new DynamicSecretVenafi("dynamicSecretVenafiResource", DynamicSecretVenafiArgs.builder()
.adminRotationIntervalDays(0.0)
.allowSubdomains(false)
.allowedDomains("string")
.autoGeneratedFolder("string")
.deleteProtection("string")
.dynamicSecretVenafiId("string")
.enableAdminRotation(false)
.itemCustomFields(Map.of("string", "string"))
.name("string")
.producerEncryptionKeyName("string")
.rootFirstInChain(false)
.signUsingAkeylessPki(false)
.signerKeyName("string")
.storePrivateKey(false)
.tags("string")
.targetName("string")
.userTtl("string")
.venafiAccessToken("string")
.venafiApiKey("string")
.venafiBaseurl("string")
.venafiClientId("string")
.venafiRefreshToken("string")
.venafiUseTpp(false)
.venafiZone("string")
.build());
dynamic_secret_venafi_resource = akeyless.DynamicSecretVenafi("dynamicSecretVenafiResource",
admin_rotation_interval_days=float(0),
allow_subdomains=False,
allowed_domains=["string"],
auto_generated_folder="string",
delete_protection="string",
dynamic_secret_venafi_id="string",
enable_admin_rotation=False,
item_custom_fields={
"string": "string",
},
name="string",
producer_encryption_key_name="string",
root_first_in_chain=False,
sign_using_akeyless_pki=False,
signer_key_name="string",
store_private_key=False,
tags=["string"],
target_name="string",
user_ttl="string",
venafi_access_token="string",
venafi_api_key="string",
venafi_baseurl="string",
venafi_client_id="string",
venafi_refresh_token="string",
venafi_use_tpp=False,
venafi_zone="string")
const dynamicSecretVenafiResource = new akeyless.DynamicSecretVenafi("dynamicSecretVenafiResource", {
adminRotationIntervalDays: 0,
allowSubdomains: false,
allowedDomains: ["string"],
autoGeneratedFolder: "string",
deleteProtection: "string",
dynamicSecretVenafiId: "string",
enableAdminRotation: false,
itemCustomFields: {
string: "string",
},
name: "string",
producerEncryptionKeyName: "string",
rootFirstInChain: false,
signUsingAkeylessPki: false,
signerKeyName: "string",
storePrivateKey: false,
tags: ["string"],
targetName: "string",
userTtl: "string",
venafiAccessToken: "string",
venafiApiKey: "string",
venafiBaseurl: "string",
venafiClientId: "string",
venafiRefreshToken: "string",
venafiUseTpp: false,
venafiZone: "string",
});
type: akeyless:DynamicSecretVenafi
properties:
adminRotationIntervalDays: 0
allowSubdomains: false
allowedDomains:
- string
autoGeneratedFolder: string
deleteProtection: string
dynamicSecretVenafiId: string
enableAdminRotation: false
itemCustomFields:
string: string
name: string
producerEncryptionKeyName: string
rootFirstInChain: false
signUsingAkeylessPki: false
signerKeyName: string
storePrivateKey: false
tags:
- string
targetName: string
userTtl: string
venafiAccessToken: string
venafiApiKey: string
venafiBaseurl: string
venafiClientId: string
venafiRefreshToken: string
venafiUseTpp: false
venafiZone: string
DynamicSecretVenafi Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The DynamicSecretVenafi resource accepts the following input properties:
- Admin
Rotation doubleInterval Days - Admin credentials rotation interval (days)
- Allow
Subdomains bool - Allow subdomains
- Allowed
Domains List<string> - Allowed domains
- Auto
Generated stringFolder - Auto generated folder
- Delete
Protection string - Protection from accidental deletion of this object [true/false]
- Dynamic
Secret stringVenafi Id - The ID of this resource.
- Enable
Admin boolRotation - Automatic admin credentials rotation
- Item
Custom Dictionary<string, string>Fields - Additional custom fields to associate with the item
- Name string
- Dynamic secret name
- Producer
Encryption stringKey Name - Dynamic producer encryption key
- Root
First boolIn Chain - Root first in chain
- Sign
Using boolAkeyless Pki - Use Akeyless PKI issuer or Venafi issuer
- Signer
Key stringName - Signer key name
- Store
Private boolKey - Store private key
- List<string>
- Add tags attached to this object
- Target
Name string - Target name
- User
Ttl string - User TTL in time.Duration format (2160h / 129600m / etc...). When using sign-using-akeyless-pki certificates created will have this validity period, otherwise the user-ttl is taken from the Validity Period field of the Zone's' Issuing Template. When using cert-manager it is advised to have a TTL of above 60 days (1440h). For more information - https://cert-manager.io/docs/usage/certificate/
- Venafi
Access stringToken - Venafi Access Token to use to access the TPP environment (Relevant when using TPP)
- Venafi
Api stringKey - Venafi API key
- Venafi
Baseurl string - Venafi Baseurl
- Venafi
Client stringId - Venafi Client ID that was used when the access token was generated
- Venafi
Refresh stringToken - Venafi Refresh Token to use when the Access Token is expired (Relevant when using TPP)
- Venafi
Use boolTpp - Venafi using TPP
- Venafi
Zone string - Venafi Zone
- Admin
Rotation float64Interval Days - Admin credentials rotation interval (days)
- Allow
Subdomains bool - Allow subdomains
- Allowed
Domains []string - Allowed domains
- Auto
Generated stringFolder - Auto generated folder
- Delete
Protection string - Protection from accidental deletion of this object [true/false]
- Dynamic
Secret stringVenafi Id - The ID of this resource.
- Enable
Admin boolRotation - Automatic admin credentials rotation
- Item
Custom map[string]stringFields - Additional custom fields to associate with the item
- Name string
- Dynamic secret name
- Producer
Encryption stringKey Name - Dynamic producer encryption key
- Root
First boolIn Chain - Root first in chain
- Sign
Using boolAkeyless Pki - Use Akeyless PKI issuer or Venafi issuer
- Signer
Key stringName - Signer key name
- Store
Private boolKey - Store private key
- []string
- Add tags attached to this object
- Target
Name string - Target name
- User
Ttl string - User TTL in time.Duration format (2160h / 129600m / etc...). When using sign-using-akeyless-pki certificates created will have this validity period, otherwise the user-ttl is taken from the Validity Period field of the Zone's' Issuing Template. When using cert-manager it is advised to have a TTL of above 60 days (1440h). For more information - https://cert-manager.io/docs/usage/certificate/
- Venafi
Access stringToken - Venafi Access Token to use to access the TPP environment (Relevant when using TPP)
- Venafi
Api stringKey - Venafi API key
- Venafi
Baseurl string - Venafi Baseurl
- Venafi
Client stringId - Venafi Client ID that was used when the access token was generated
- Venafi
Refresh stringToken - Venafi Refresh Token to use when the Access Token is expired (Relevant when using TPP)
- Venafi
Use boolTpp - Venafi using TPP
- Venafi
Zone string - Venafi Zone
- admin_
rotation_ numberinterval_ days - Admin credentials rotation interval (days)
- allow_
subdomains bool - Allow subdomains
- allowed_
domains list(string) - Allowed domains
- auto_
generated_ stringfolder - Auto generated folder
- delete_
protection string - Protection from accidental deletion of this object [true/false]
- dynamic_
secret_ stringvenafi_ id - The ID of this resource.
- enable_
admin_ boolrotation - Automatic admin credentials rotation
- item_
custom_ map(string)fields - Additional custom fields to associate with the item
- name string
- Dynamic secret name
- producer_
encryption_ stringkey_ name - Dynamic producer encryption key
- root_
first_ boolin_ chain - Root first in chain
- sign_
using_ boolakeyless_ pki - Use Akeyless PKI issuer or Venafi issuer
- signer_
key_ stringname - Signer key name
- store_
private_ boolkey - Store private key
- list(string)
- Add tags attached to this object
- target_
name string - Target name
- user_
ttl string - User TTL in time.Duration format (2160h / 129600m / etc...). When using sign-using-akeyless-pki certificates created will have this validity period, otherwise the user-ttl is taken from the Validity Period field of the Zone's' Issuing Template. When using cert-manager it is advised to have a TTL of above 60 days (1440h). For more information - https://cert-manager.io/docs/usage/certificate/
- venafi_
access_ stringtoken - Venafi Access Token to use to access the TPP environment (Relevant when using TPP)
- venafi_
api_ stringkey - Venafi API key
- venafi_
baseurl string - Venafi Baseurl
- venafi_
client_ stringid - Venafi Client ID that was used when the access token was generated
- venafi_
refresh_ stringtoken - Venafi Refresh Token to use when the Access Token is expired (Relevant when using TPP)
- venafi_
use_ booltpp - Venafi using TPP
- venafi_
zone string - Venafi Zone
- admin
Rotation DoubleInterval Days - Admin credentials rotation interval (days)
- allow
Subdomains Boolean - Allow subdomains
- allowed
Domains List<String> - Allowed domains
- auto
Generated StringFolder - Auto generated folder
- delete
Protection String - Protection from accidental deletion of this object [true/false]
- dynamic
Secret StringVenafi Id - The ID of this resource.
- enable
Admin BooleanRotation - Automatic admin credentials rotation
- item
Custom Map<String,String>Fields - Additional custom fields to associate with the item
- name String
- Dynamic secret name
- producer
Encryption StringKey Name - Dynamic producer encryption key
- root
First BooleanIn Chain - Root first in chain
- sign
Using BooleanAkeyless Pki - Use Akeyless PKI issuer or Venafi issuer
- signer
Key StringName - Signer key name
- store
Private BooleanKey - Store private key
- List<String>
- Add tags attached to this object
- target
Name String - Target name
- user
Ttl String - User TTL in time.Duration format (2160h / 129600m / etc...). When using sign-using-akeyless-pki certificates created will have this validity period, otherwise the user-ttl is taken from the Validity Period field of the Zone's' Issuing Template. When using cert-manager it is advised to have a TTL of above 60 days (1440h). For more information - https://cert-manager.io/docs/usage/certificate/
- venafi
Access StringToken - Venafi Access Token to use to access the TPP environment (Relevant when using TPP)
- venafi
Api StringKey - Venafi API key
- venafi
Baseurl String - Venafi Baseurl
- venafi
Client StringId - Venafi Client ID that was used when the access token was generated
- venafi
Refresh StringToken - Venafi Refresh Token to use when the Access Token is expired (Relevant when using TPP)
- venafi
Use BooleanTpp - Venafi using TPP
- venafi
Zone String - Venafi Zone
- admin
Rotation numberInterval Days - Admin credentials rotation interval (days)
- allow
Subdomains boolean - Allow subdomains
- allowed
Domains string[] - Allowed domains
- auto
Generated stringFolder - Auto generated folder
- delete
Protection string - Protection from accidental deletion of this object [true/false]
- dynamic
Secret stringVenafi Id - The ID of this resource.
- enable
Admin booleanRotation - Automatic admin credentials rotation
- item
Custom {[key: string]: string}Fields - Additional custom fields to associate with the item
- name string
- Dynamic secret name
- producer
Encryption stringKey Name - Dynamic producer encryption key
- root
First booleanIn Chain - Root first in chain
- sign
Using booleanAkeyless Pki - Use Akeyless PKI issuer or Venafi issuer
- signer
Key stringName - Signer key name
- store
Private booleanKey - Store private key
- string[]
- Add tags attached to this object
- target
Name string - Target name
- user
Ttl string - User TTL in time.Duration format (2160h / 129600m / etc...). When using sign-using-akeyless-pki certificates created will have this validity period, otherwise the user-ttl is taken from the Validity Period field of the Zone's' Issuing Template. When using cert-manager it is advised to have a TTL of above 60 days (1440h). For more information - https://cert-manager.io/docs/usage/certificate/
- venafi
Access stringToken - Venafi Access Token to use to access the TPP environment (Relevant when using TPP)
- venafi
Api stringKey - Venafi API key
- venafi
Baseurl string - Venafi Baseurl
- venafi
Client stringId - Venafi Client ID that was used when the access token was generated
- venafi
Refresh stringToken - Venafi Refresh Token to use when the Access Token is expired (Relevant when using TPP)
- venafi
Use booleanTpp - Venafi using TPP
- venafi
Zone string - Venafi Zone
- admin_
rotation_ floatinterval_ days - Admin credentials rotation interval (days)
- allow_
subdomains bool - Allow subdomains
- allowed_
domains Sequence[str] - Allowed domains
- auto_
generated_ strfolder - Auto generated folder
- delete_
protection str - Protection from accidental deletion of this object [true/false]
- dynamic_
secret_ strvenafi_ id - The ID of this resource.
- enable_
admin_ boolrotation - Automatic admin credentials rotation
- item_
custom_ Mapping[str, str]fields - Additional custom fields to associate with the item
- name str
- Dynamic secret name
- producer_
encryption_ strkey_ name - Dynamic producer encryption key
- root_
first_ boolin_ chain - Root first in chain
- sign_
using_ boolakeyless_ pki - Use Akeyless PKI issuer or Venafi issuer
- signer_
key_ strname - Signer key name
- store_
private_ boolkey - Store private key
- Sequence[str]
- Add tags attached to this object
- target_
name str - Target name
- user_
ttl str - User TTL in time.Duration format (2160h / 129600m / etc...). When using sign-using-akeyless-pki certificates created will have this validity period, otherwise the user-ttl is taken from the Validity Period field of the Zone's' Issuing Template. When using cert-manager it is advised to have a TTL of above 60 days (1440h). For more information - https://cert-manager.io/docs/usage/certificate/
- venafi_
access_ strtoken - Venafi Access Token to use to access the TPP environment (Relevant when using TPP)
- venafi_
api_ strkey - Venafi API key
- venafi_
baseurl str - Venafi Baseurl
- venafi_
client_ strid - Venafi Client ID that was used when the access token was generated
- venafi_
refresh_ strtoken - Venafi Refresh Token to use when the Access Token is expired (Relevant when using TPP)
- venafi_
use_ booltpp - Venafi using TPP
- venafi_
zone str - Venafi Zone
- admin
Rotation NumberInterval Days - Admin credentials rotation interval (days)
- allow
Subdomains Boolean - Allow subdomains
- allowed
Domains List<String> - Allowed domains
- auto
Generated StringFolder - Auto generated folder
- delete
Protection String - Protection from accidental deletion of this object [true/false]
- dynamic
Secret StringVenafi Id - The ID of this resource.
- enable
Admin BooleanRotation - Automatic admin credentials rotation
- item
Custom Map<String>Fields - Additional custom fields to associate with the item
- name String
- Dynamic secret name
- producer
Encryption StringKey Name - Dynamic producer encryption key
- root
First BooleanIn Chain - Root first in chain
- sign
Using BooleanAkeyless Pki - Use Akeyless PKI issuer or Venafi issuer
- signer
Key StringName - Signer key name
- store
Private BooleanKey - Store private key
- List<String>
- Add tags attached to this object
- target
Name String - Target name
- user
Ttl String - User TTL in time.Duration format (2160h / 129600m / etc...). When using sign-using-akeyless-pki certificates created will have this validity period, otherwise the user-ttl is taken from the Validity Period field of the Zone's' Issuing Template. When using cert-manager it is advised to have a TTL of above 60 days (1440h). For more information - https://cert-manager.io/docs/usage/certificate/
- venafi
Access StringToken - Venafi Access Token to use to access the TPP environment (Relevant when using TPP)
- venafi
Api StringKey - Venafi API key
- venafi
Baseurl String - Venafi Baseurl
- venafi
Client StringId - Venafi Client ID that was used when the access token was generated
- venafi
Refresh StringToken - Venafi Refresh Token to use when the Access Token is expired (Relevant when using TPP)
- venafi
Use BooleanTpp - Venafi using TPP
- venafi
Zone String - Venafi Zone
Outputs
All input properties are implicitly available as output properties. Additionally, the DynamicSecretVenafi resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Id string
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id str
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
Look up Existing DynamicSecretVenafi Resource
Get an existing DynamicSecretVenafi resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: DynamicSecretVenafiState, opts?: CustomResourceOptions): DynamicSecretVenafi@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
admin_rotation_interval_days: Optional[float] = None,
allow_subdomains: Optional[bool] = None,
allowed_domains: Optional[Sequence[str]] = None,
auto_generated_folder: Optional[str] = None,
delete_protection: Optional[str] = None,
dynamic_secret_venafi_id: Optional[str] = None,
enable_admin_rotation: Optional[bool] = None,
item_custom_fields: Optional[Mapping[str, str]] = None,
name: Optional[str] = None,
producer_encryption_key_name: Optional[str] = None,
root_first_in_chain: Optional[bool] = None,
sign_using_akeyless_pki: Optional[bool] = None,
signer_key_name: Optional[str] = None,
store_private_key: Optional[bool] = None,
tags: Optional[Sequence[str]] = None,
target_name: Optional[str] = None,
user_ttl: Optional[str] = None,
venafi_access_token: Optional[str] = None,
venafi_api_key: Optional[str] = None,
venafi_baseurl: Optional[str] = None,
venafi_client_id: Optional[str] = None,
venafi_refresh_token: Optional[str] = None,
venafi_use_tpp: Optional[bool] = None,
venafi_zone: Optional[str] = None) -> DynamicSecretVenafifunc GetDynamicSecretVenafi(ctx *Context, name string, id IDInput, state *DynamicSecretVenafiState, opts ...ResourceOption) (*DynamicSecretVenafi, error)public static DynamicSecretVenafi Get(string name, Input<string> id, DynamicSecretVenafiState? state, CustomResourceOptions? opts = null)public static DynamicSecretVenafi get(String name, Output<String> id, DynamicSecretVenafiState state, CustomResourceOptions options)resources: _: type: akeyless:DynamicSecretVenafi get: id: ${id}import {
to = akeyless_dynamicsecretvenafi.example
id = "${id}"
}
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Admin
Rotation doubleInterval Days - Admin credentials rotation interval (days)
- Allow
Subdomains bool - Allow subdomains
- Allowed
Domains List<string> - Allowed domains
- Auto
Generated stringFolder - Auto generated folder
- Delete
Protection string - Protection from accidental deletion of this object [true/false]
- Dynamic
Secret stringVenafi Id - The ID of this resource.
- Enable
Admin boolRotation - Automatic admin credentials rotation
- Item
Custom Dictionary<string, string>Fields - Additional custom fields to associate with the item
- Name string
- Dynamic secret name
- Producer
Encryption stringKey Name - Dynamic producer encryption key
- Root
First boolIn Chain - Root first in chain
- Sign
Using boolAkeyless Pki - Use Akeyless PKI issuer or Venafi issuer
- Signer
Key stringName - Signer key name
- Store
Private boolKey - Store private key
- List<string>
- Add tags attached to this object
- Target
Name string - Target name
- User
Ttl string - User TTL in time.Duration format (2160h / 129600m / etc...). When using sign-using-akeyless-pki certificates created will have this validity period, otherwise the user-ttl is taken from the Validity Period field of the Zone's' Issuing Template. When using cert-manager it is advised to have a TTL of above 60 days (1440h). For more information - https://cert-manager.io/docs/usage/certificate/
- Venafi
Access stringToken - Venafi Access Token to use to access the TPP environment (Relevant when using TPP)
- Venafi
Api stringKey - Venafi API key
- Venafi
Baseurl string - Venafi Baseurl
- Venafi
Client stringId - Venafi Client ID that was used when the access token was generated
- Venafi
Refresh stringToken - Venafi Refresh Token to use when the Access Token is expired (Relevant when using TPP)
- Venafi
Use boolTpp - Venafi using TPP
- Venafi
Zone string - Venafi Zone
- Admin
Rotation float64Interval Days - Admin credentials rotation interval (days)
- Allow
Subdomains bool - Allow subdomains
- Allowed
Domains []string - Allowed domains
- Auto
Generated stringFolder - Auto generated folder
- Delete
Protection string - Protection from accidental deletion of this object [true/false]
- Dynamic
Secret stringVenafi Id - The ID of this resource.
- Enable
Admin boolRotation - Automatic admin credentials rotation
- Item
Custom map[string]stringFields - Additional custom fields to associate with the item
- Name string
- Dynamic secret name
- Producer
Encryption stringKey Name - Dynamic producer encryption key
- Root
First boolIn Chain - Root first in chain
- Sign
Using boolAkeyless Pki - Use Akeyless PKI issuer or Venafi issuer
- Signer
Key stringName - Signer key name
- Store
Private boolKey - Store private key
- []string
- Add tags attached to this object
- Target
Name string - Target name
- User
Ttl string - User TTL in time.Duration format (2160h / 129600m / etc...). When using sign-using-akeyless-pki certificates created will have this validity period, otherwise the user-ttl is taken from the Validity Period field of the Zone's' Issuing Template. When using cert-manager it is advised to have a TTL of above 60 days (1440h). For more information - https://cert-manager.io/docs/usage/certificate/
- Venafi
Access stringToken - Venafi Access Token to use to access the TPP environment (Relevant when using TPP)
- Venafi
Api stringKey - Venafi API key
- Venafi
Baseurl string - Venafi Baseurl
- Venafi
Client stringId - Venafi Client ID that was used when the access token was generated
- Venafi
Refresh stringToken - Venafi Refresh Token to use when the Access Token is expired (Relevant when using TPP)
- Venafi
Use boolTpp - Venafi using TPP
- Venafi
Zone string - Venafi Zone
- admin_
rotation_ numberinterval_ days - Admin credentials rotation interval (days)
- allow_
subdomains bool - Allow subdomains
- allowed_
domains list(string) - Allowed domains
- auto_
generated_ stringfolder - Auto generated folder
- delete_
protection string - Protection from accidental deletion of this object [true/false]
- dynamic_
secret_ stringvenafi_ id - The ID of this resource.
- enable_
admin_ boolrotation - Automatic admin credentials rotation
- item_
custom_ map(string)fields - Additional custom fields to associate with the item
- name string
- Dynamic secret name
- producer_
encryption_ stringkey_ name - Dynamic producer encryption key
- root_
first_ boolin_ chain - Root first in chain
- sign_
using_ boolakeyless_ pki - Use Akeyless PKI issuer or Venafi issuer
- signer_
key_ stringname - Signer key name
- store_
private_ boolkey - Store private key
- list(string)
- Add tags attached to this object
- target_
name string - Target name
- user_
ttl string - User TTL in time.Duration format (2160h / 129600m / etc...). When using sign-using-akeyless-pki certificates created will have this validity period, otherwise the user-ttl is taken from the Validity Period field of the Zone's' Issuing Template. When using cert-manager it is advised to have a TTL of above 60 days (1440h). For more information - https://cert-manager.io/docs/usage/certificate/
- venafi_
access_ stringtoken - Venafi Access Token to use to access the TPP environment (Relevant when using TPP)
- venafi_
api_ stringkey - Venafi API key
- venafi_
baseurl string - Venafi Baseurl
- venafi_
client_ stringid - Venafi Client ID that was used when the access token was generated
- venafi_
refresh_ stringtoken - Venafi Refresh Token to use when the Access Token is expired (Relevant when using TPP)
- venafi_
use_ booltpp - Venafi using TPP
- venafi_
zone string - Venafi Zone
- admin
Rotation DoubleInterval Days - Admin credentials rotation interval (days)
- allow
Subdomains Boolean - Allow subdomains
- allowed
Domains List<String> - Allowed domains
- auto
Generated StringFolder - Auto generated folder
- delete
Protection String - Protection from accidental deletion of this object [true/false]
- dynamic
Secret StringVenafi Id - The ID of this resource.
- enable
Admin BooleanRotation - Automatic admin credentials rotation
- item
Custom Map<String,String>Fields - Additional custom fields to associate with the item
- name String
- Dynamic secret name
- producer
Encryption StringKey Name - Dynamic producer encryption key
- root
First BooleanIn Chain - Root first in chain
- sign
Using BooleanAkeyless Pki - Use Akeyless PKI issuer or Venafi issuer
- signer
Key StringName - Signer key name
- store
Private BooleanKey - Store private key
- List<String>
- Add tags attached to this object
- target
Name String - Target name
- user
Ttl String - User TTL in time.Duration format (2160h / 129600m / etc...). When using sign-using-akeyless-pki certificates created will have this validity period, otherwise the user-ttl is taken from the Validity Period field of the Zone's' Issuing Template. When using cert-manager it is advised to have a TTL of above 60 days (1440h). For more information - https://cert-manager.io/docs/usage/certificate/
- venafi
Access StringToken - Venafi Access Token to use to access the TPP environment (Relevant when using TPP)
- venafi
Api StringKey - Venafi API key
- venafi
Baseurl String - Venafi Baseurl
- venafi
Client StringId - Venafi Client ID that was used when the access token was generated
- venafi
Refresh StringToken - Venafi Refresh Token to use when the Access Token is expired (Relevant when using TPP)
- venafi
Use BooleanTpp - Venafi using TPP
- venafi
Zone String - Venafi Zone
- admin
Rotation numberInterval Days - Admin credentials rotation interval (days)
- allow
Subdomains boolean - Allow subdomains
- allowed
Domains string[] - Allowed domains
- auto
Generated stringFolder - Auto generated folder
- delete
Protection string - Protection from accidental deletion of this object [true/false]
- dynamic
Secret stringVenafi Id - The ID of this resource.
- enable
Admin booleanRotation - Automatic admin credentials rotation
- item
Custom {[key: string]: string}Fields - Additional custom fields to associate with the item
- name string
- Dynamic secret name
- producer
Encryption stringKey Name - Dynamic producer encryption key
- root
First booleanIn Chain - Root first in chain
- sign
Using booleanAkeyless Pki - Use Akeyless PKI issuer or Venafi issuer
- signer
Key stringName - Signer key name
- store
Private booleanKey - Store private key
- string[]
- Add tags attached to this object
- target
Name string - Target name
- user
Ttl string - User TTL in time.Duration format (2160h / 129600m / etc...). When using sign-using-akeyless-pki certificates created will have this validity period, otherwise the user-ttl is taken from the Validity Period field of the Zone's' Issuing Template. When using cert-manager it is advised to have a TTL of above 60 days (1440h). For more information - https://cert-manager.io/docs/usage/certificate/
- venafi
Access stringToken - Venafi Access Token to use to access the TPP environment (Relevant when using TPP)
- venafi
Api stringKey - Venafi API key
- venafi
Baseurl string - Venafi Baseurl
- venafi
Client stringId - Venafi Client ID that was used when the access token was generated
- venafi
Refresh stringToken - Venafi Refresh Token to use when the Access Token is expired (Relevant when using TPP)
- venafi
Use booleanTpp - Venafi using TPP
- venafi
Zone string - Venafi Zone
- admin_
rotation_ floatinterval_ days - Admin credentials rotation interval (days)
- allow_
subdomains bool - Allow subdomains
- allowed_
domains Sequence[str] - Allowed domains
- auto_
generated_ strfolder - Auto generated folder
- delete_
protection str - Protection from accidental deletion of this object [true/false]
- dynamic_
secret_ strvenafi_ id - The ID of this resource.
- enable_
admin_ boolrotation - Automatic admin credentials rotation
- item_
custom_ Mapping[str, str]fields - Additional custom fields to associate with the item
- name str
- Dynamic secret name
- producer_
encryption_ strkey_ name - Dynamic producer encryption key
- root_
first_ boolin_ chain - Root first in chain
- sign_
using_ boolakeyless_ pki - Use Akeyless PKI issuer or Venafi issuer
- signer_
key_ strname - Signer key name
- store_
private_ boolkey - Store private key
- Sequence[str]
- Add tags attached to this object
- target_
name str - Target name
- user_
ttl str - User TTL in time.Duration format (2160h / 129600m / etc...). When using sign-using-akeyless-pki certificates created will have this validity period, otherwise the user-ttl is taken from the Validity Period field of the Zone's' Issuing Template. When using cert-manager it is advised to have a TTL of above 60 days (1440h). For more information - https://cert-manager.io/docs/usage/certificate/
- venafi_
access_ strtoken - Venafi Access Token to use to access the TPP environment (Relevant when using TPP)
- venafi_
api_ strkey - Venafi API key
- venafi_
baseurl str - Venafi Baseurl
- venafi_
client_ strid - Venafi Client ID that was used when the access token was generated
- venafi_
refresh_ strtoken - Venafi Refresh Token to use when the Access Token is expired (Relevant when using TPP)
- venafi_
use_ booltpp - Venafi using TPP
- venafi_
zone str - Venafi Zone
- admin
Rotation NumberInterval Days - Admin credentials rotation interval (days)
- allow
Subdomains Boolean - Allow subdomains
- allowed
Domains List<String> - Allowed domains
- auto
Generated StringFolder - Auto generated folder
- delete
Protection String - Protection from accidental deletion of this object [true/false]
- dynamic
Secret StringVenafi Id - The ID of this resource.
- enable
Admin BooleanRotation - Automatic admin credentials rotation
- item
Custom Map<String>Fields - Additional custom fields to associate with the item
- name String
- Dynamic secret name
- producer
Encryption StringKey Name - Dynamic producer encryption key
- root
First BooleanIn Chain - Root first in chain
- sign
Using BooleanAkeyless Pki - Use Akeyless PKI issuer or Venafi issuer
- signer
Key StringName - Signer key name
- store
Private BooleanKey - Store private key
- List<String>
- Add tags attached to this object
- target
Name String - Target name
- user
Ttl String - User TTL in time.Duration format (2160h / 129600m / etc...). When using sign-using-akeyless-pki certificates created will have this validity period, otherwise the user-ttl is taken from the Validity Period field of the Zone's' Issuing Template. When using cert-manager it is advised to have a TTL of above 60 days (1440h). For more information - https://cert-manager.io/docs/usage/certificate/
- venafi
Access StringToken - Venafi Access Token to use to access the TPP environment (Relevant when using TPP)
- venafi
Api StringKey - Venafi API key
- venafi
Baseurl String - Venafi Baseurl
- venafi
Client StringId - Venafi Client ID that was used when the access token was generated
- venafi
Refresh StringToken - Venafi Refresh Token to use when the Access Token is expired (Relevant when using TPP)
- venafi
Use BooleanTpp - Venafi using TPP
- venafi
Zone String - Venafi Zone
Package Details
- Repository
- akeyless akeyless-community/terraform-provider-akeyless
- License
- Notes
- This Pulumi package is based on the
akeylessTerraform Provider.
Viewing docs for akeyless 2.0.1
published on Monday, Apr 27, 2026 by akeyless-community
published on Monday, Apr 27, 2026 by akeyless-community
