azure-native.policyinsights.AttestationAtResourceGroup

Explore with Pulumi AI

An attestation resource. API Version: 2021-01-01.

Example Usage

Create attestation at resource group scope

using System.Collections.Generic;
using Pulumi;
using AzureNative = Pulumi.AzureNative;

return await Deployment.RunAsync(() => 
{
    var attestationAtResourceGroup = new AzureNative.PolicyInsights.AttestationAtResourceGroup("attestationAtResourceGroup", new()
    {
        AttestationName = "790996e6-9871-4b1f-9cd9-ec42cd6ced1e",
        Comments = "This subscription has passed a security audit.",
        ComplianceState = "Compliant",
        Evidence = new[]
        {
            new AzureNative.PolicyInsights.Inputs.AttestationEvidenceArgs
            {
                Description = "The results of the security audit.",
                SourceUri = "https://gist.github.com/contoso/9573e238762c60166c090ae16b814011",
            },
        },
        ExpiresOn = "2021-06-15T00:00:00Z",
        Owner = "55a32e28-3aa5-4eea-9b5a-4cd85153b966",
        PolicyAssignmentId = "/subscriptions/35ee058e-5fa0-414c-8145-3ebb8d09b6e2/providers/microsoft.authorization/policyassignments/b101830944f246d8a14088c5",
        PolicyDefinitionReferenceId = "0b158b46-ff42-4799-8e39-08a5c23b4551",
        ResourceGroupName = "myRg",
    });

});
package main

import (
	policyinsights "github.com/pulumi/pulumi-azure-native/sdk/go/azure/policyinsights"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := policyinsights.NewAttestationAtResourceGroup(ctx, "attestationAtResourceGroup", &policyinsights.AttestationAtResourceGroupArgs{
			AttestationName: pulumi.String("790996e6-9871-4b1f-9cd9-ec42cd6ced1e"),
			Comments:        pulumi.String("This subscription has passed a security audit."),
			ComplianceState: pulumi.String("Compliant"),
			Evidence: []policyinsights.AttestationEvidenceArgs{
				{
					Description: pulumi.String("The results of the security audit."),
					SourceUri:   pulumi.String("https://gist.github.com/contoso/9573e238762c60166c090ae16b814011"),
				},
			},
			ExpiresOn:                   pulumi.String("2021-06-15T00:00:00Z"),
			Owner:                       pulumi.String("55a32e28-3aa5-4eea-9b5a-4cd85153b966"),
			PolicyAssignmentId:          pulumi.String("/subscriptions/35ee058e-5fa0-414c-8145-3ebb8d09b6e2/providers/microsoft.authorization/policyassignments/b101830944f246d8a14088c5"),
			PolicyDefinitionReferenceId: pulumi.String("0b158b46-ff42-4799-8e39-08a5c23b4551"),
			ResourceGroupName:           pulumi.String("myRg"),
		})
		if err != nil {
			return err
		}
		return nil
	})
}
package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.policyinsights.AttestationAtResourceGroup;
import com.pulumi.azurenative.policyinsights.AttestationAtResourceGroupArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        var attestationAtResourceGroup = new AttestationAtResourceGroup("attestationAtResourceGroup", AttestationAtResourceGroupArgs.builder()        
            .attestationName("790996e6-9871-4b1f-9cd9-ec42cd6ced1e")
            .comments("This subscription has passed a security audit.")
            .complianceState("Compliant")
            .evidence(Map.ofEntries(
                Map.entry("description", "The results of the security audit."),
                Map.entry("sourceUri", "https://gist.github.com/contoso/9573e238762c60166c090ae16b814011")
            ))
            .expiresOn("2021-06-15T00:00:00Z")
            .owner("55a32e28-3aa5-4eea-9b5a-4cd85153b966")
            .policyAssignmentId("/subscriptions/35ee058e-5fa0-414c-8145-3ebb8d09b6e2/providers/microsoft.authorization/policyassignments/b101830944f246d8a14088c5")
            .policyDefinitionReferenceId("0b158b46-ff42-4799-8e39-08a5c23b4551")
            .resourceGroupName("myRg")
            .build());

    }
}
import pulumi
import pulumi_azure_native as azure_native

attestation_at_resource_group = azure_native.policyinsights.AttestationAtResourceGroup("attestationAtResourceGroup",
    attestation_name="790996e6-9871-4b1f-9cd9-ec42cd6ced1e",
    comments="This subscription has passed a security audit.",
    compliance_state="Compliant",
    evidence=[azure_native.policyinsights.AttestationEvidenceArgs(
        description="The results of the security audit.",
        source_uri="https://gist.github.com/contoso/9573e238762c60166c090ae16b814011",
    )],
    expires_on="2021-06-15T00:00:00Z",
    owner="55a32e28-3aa5-4eea-9b5a-4cd85153b966",
    policy_assignment_id="/subscriptions/35ee058e-5fa0-414c-8145-3ebb8d09b6e2/providers/microsoft.authorization/policyassignments/b101830944f246d8a14088c5",
    policy_definition_reference_id="0b158b46-ff42-4799-8e39-08a5c23b4551",
    resource_group_name="myRg")
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";

const attestationAtResourceGroup = new azure_native.policyinsights.AttestationAtResourceGroup("attestationAtResourceGroup", {
    attestationName: "790996e6-9871-4b1f-9cd9-ec42cd6ced1e",
    comments: "This subscription has passed a security audit.",
    complianceState: "Compliant",
    evidence: [{
        description: "The results of the security audit.",
        sourceUri: "https://gist.github.com/contoso/9573e238762c60166c090ae16b814011",
    }],
    expiresOn: "2021-06-15T00:00:00Z",
    owner: "55a32e28-3aa5-4eea-9b5a-4cd85153b966",
    policyAssignmentId: "/subscriptions/35ee058e-5fa0-414c-8145-3ebb8d09b6e2/providers/microsoft.authorization/policyassignments/b101830944f246d8a14088c5",
    policyDefinitionReferenceId: "0b158b46-ff42-4799-8e39-08a5c23b4551",
    resourceGroupName: "myRg",
});
resources:
  attestationAtResourceGroup:
    type: azure-native:policyinsights:AttestationAtResourceGroup
    properties:
      attestationName: 790996e6-9871-4b1f-9cd9-ec42cd6ced1e
      comments: This subscription has passed a security audit.
      complianceState: Compliant
      evidence:
        - description: The results of the security audit.
          sourceUri: https://gist.github.com/contoso/9573e238762c60166c090ae16b814011
      expiresOn: 2021-06-15T00:00:00Z
      owner: 55a32e28-3aa5-4eea-9b5a-4cd85153b966
      policyAssignmentId: /subscriptions/35ee058e-5fa0-414c-8145-3ebb8d09b6e2/providers/microsoft.authorization/policyassignments/b101830944f246d8a14088c5
      policyDefinitionReferenceId: 0b158b46-ff42-4799-8e39-08a5c23b4551
      resourceGroupName: myRg

Create AttestationAtResourceGroup Resource

new AttestationAtResourceGroup(name: string, args: AttestationAtResourceGroupArgs, opts?: CustomResourceOptions);
@overload
def AttestationAtResourceGroup(resource_name: str,
                               opts: Optional[ResourceOptions] = None,
                               attestation_name: Optional[str] = None,
                               comments: Optional[str] = None,
                               compliance_state: Optional[Union[str, ComplianceState]] = None,
                               evidence: Optional[Sequence[AttestationEvidenceArgs]] = None,
                               expires_on: Optional[str] = None,
                               owner: Optional[str] = None,
                               policy_assignment_id: Optional[str] = None,
                               policy_definition_reference_id: Optional[str] = None,
                               resource_group_name: Optional[str] = None)
@overload
def AttestationAtResourceGroup(resource_name: str,
                               args: AttestationAtResourceGroupArgs,
                               opts: Optional[ResourceOptions] = None)
func NewAttestationAtResourceGroup(ctx *Context, name string, args AttestationAtResourceGroupArgs, opts ...ResourceOption) (*AttestationAtResourceGroup, error)
public AttestationAtResourceGroup(string name, AttestationAtResourceGroupArgs args, CustomResourceOptions? opts = null)
public AttestationAtResourceGroup(String name, AttestationAtResourceGroupArgs args)
public AttestationAtResourceGroup(String name, AttestationAtResourceGroupArgs args, CustomResourceOptions options)
type: azure-native:policyinsights:AttestationAtResourceGroup
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

name string
The unique name of the resource.
args AttestationAtResourceGroupArgs
The arguments to resource properties.
opts CustomResourceOptions
Bag of options to control resource's behavior.
resource_name str
The unique name of the resource.
args AttestationAtResourceGroupArgs
The arguments to resource properties.
opts ResourceOptions
Bag of options to control resource's behavior.
ctx Context
Context object for the current deployment.
name string
The unique name of the resource.
args AttestationAtResourceGroupArgs
The arguments to resource properties.
opts ResourceOption
Bag of options to control resource's behavior.
name string
The unique name of the resource.
args AttestationAtResourceGroupArgs
The arguments to resource properties.
opts CustomResourceOptions
Bag of options to control resource's behavior.
name String
The unique name of the resource.
args AttestationAtResourceGroupArgs
The arguments to resource properties.
options CustomResourceOptions
Bag of options to control resource's behavior.

AttestationAtResourceGroup Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

The AttestationAtResourceGroup resource accepts the following input properties:

PolicyAssignmentId string

The resource ID of the policy assignment that the attestation is setting the state for.

ResourceGroupName string

The name of the resource group. The name is case insensitive.

AttestationName string

The name of the attestation.

Comments string

Comments describing why this attestation was created.

ComplianceState string | Pulumi.AzureNative.PolicyInsights.ComplianceState

The compliance state that should be set on the resource.

Evidence List<Pulumi.AzureNative.PolicyInsights.Inputs.AttestationEvidenceArgs>

The evidence supporting the compliance state set in this attestation.

ExpiresOn string

The time the compliance state should expire.

Owner string

The person responsible for setting the state of the resource. This value is typically an Azure Active Directory object ID.

PolicyDefinitionReferenceId string

The policy definition reference ID from a policy set definition that the attestation is setting the state for. If the policy assignment assigns a policy set definition the attestation can choose a definition within the set definition with this property or omit this and set the state for the entire set definition.

PolicyAssignmentId string

The resource ID of the policy assignment that the attestation is setting the state for.

ResourceGroupName string

The name of the resource group. The name is case insensitive.

AttestationName string

The name of the attestation.

Comments string

Comments describing why this attestation was created.

ComplianceState string | ComplianceState

The compliance state that should be set on the resource.

Evidence []AttestationEvidenceArgs

The evidence supporting the compliance state set in this attestation.

ExpiresOn string

The time the compliance state should expire.

Owner string

The person responsible for setting the state of the resource. This value is typically an Azure Active Directory object ID.

PolicyDefinitionReferenceId string

The policy definition reference ID from a policy set definition that the attestation is setting the state for. If the policy assignment assigns a policy set definition the attestation can choose a definition within the set definition with this property or omit this and set the state for the entire set definition.

policyAssignmentId String

The resource ID of the policy assignment that the attestation is setting the state for.

resourceGroupName String

The name of the resource group. The name is case insensitive.

attestationName String

The name of the attestation.

comments String

Comments describing why this attestation was created.

complianceState String | ComplianceState

The compliance state that should be set on the resource.

evidence List<AttestationEvidenceArgs>

The evidence supporting the compliance state set in this attestation.

expiresOn String

The time the compliance state should expire.

owner String

The person responsible for setting the state of the resource. This value is typically an Azure Active Directory object ID.

policyDefinitionReferenceId String

The policy definition reference ID from a policy set definition that the attestation is setting the state for. If the policy assignment assigns a policy set definition the attestation can choose a definition within the set definition with this property or omit this and set the state for the entire set definition.

policyAssignmentId string

The resource ID of the policy assignment that the attestation is setting the state for.

resourceGroupName string

The name of the resource group. The name is case insensitive.

attestationName string

The name of the attestation.

comments string

Comments describing why this attestation was created.

complianceState string | ComplianceState

The compliance state that should be set on the resource.

evidence AttestationEvidenceArgs[]

The evidence supporting the compliance state set in this attestation.

expiresOn string

The time the compliance state should expire.

owner string

The person responsible for setting the state of the resource. This value is typically an Azure Active Directory object ID.

policyDefinitionReferenceId string

The policy definition reference ID from a policy set definition that the attestation is setting the state for. If the policy assignment assigns a policy set definition the attestation can choose a definition within the set definition with this property or omit this and set the state for the entire set definition.

policy_assignment_id str

The resource ID of the policy assignment that the attestation is setting the state for.

resource_group_name str

The name of the resource group. The name is case insensitive.

attestation_name str

The name of the attestation.

comments str

Comments describing why this attestation was created.

compliance_state str | ComplianceState

The compliance state that should be set on the resource.

evidence Sequence[AttestationEvidenceArgs]

The evidence supporting the compliance state set in this attestation.

expires_on str

The time the compliance state should expire.

owner str

The person responsible for setting the state of the resource. This value is typically an Azure Active Directory object ID.

policy_definition_reference_id str

The policy definition reference ID from a policy set definition that the attestation is setting the state for. If the policy assignment assigns a policy set definition the attestation can choose a definition within the set definition with this property or omit this and set the state for the entire set definition.

policyAssignmentId String

The resource ID of the policy assignment that the attestation is setting the state for.

resourceGroupName String

The name of the resource group. The name is case insensitive.

attestationName String

The name of the attestation.

comments String

Comments describing why this attestation was created.

complianceState String | "Compliant" | "NonCompliant" | "Unknown"

The compliance state that should be set on the resource.

evidence List<Property Map>

The evidence supporting the compliance state set in this attestation.

expiresOn String

The time the compliance state should expire.

owner String

The person responsible for setting the state of the resource. This value is typically an Azure Active Directory object ID.

policyDefinitionReferenceId String

The policy definition reference ID from a policy set definition that the attestation is setting the state for. If the policy assignment assigns a policy set definition the attestation can choose a definition within the set definition with this property or omit this and set the state for the entire set definition.

Outputs

All input properties are implicitly available as output properties. Additionally, the AttestationAtResourceGroup resource produces the following output properties:

Id string

The provider-assigned unique ID for this managed resource.

LastComplianceStateChangeAt string

The time the compliance state was last changed in this attestation.

Name string

The name of the resource

ProvisioningState string

The status of the attestation.

SystemData Pulumi.AzureNative.PolicyInsights.Outputs.SystemDataResponse

Azure Resource Manager metadata containing createdBy and modifiedBy information.

Type string

The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"

Id string

The provider-assigned unique ID for this managed resource.

LastComplianceStateChangeAt string

The time the compliance state was last changed in this attestation.

Name string

The name of the resource

ProvisioningState string

The status of the attestation.

SystemData SystemDataResponse

Azure Resource Manager metadata containing createdBy and modifiedBy information.

Type string

The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"

id String

The provider-assigned unique ID for this managed resource.

lastComplianceStateChangeAt String

The time the compliance state was last changed in this attestation.

name String

The name of the resource

provisioningState String

The status of the attestation.

systemData SystemDataResponse

Azure Resource Manager metadata containing createdBy and modifiedBy information.

type String

The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"

id string

The provider-assigned unique ID for this managed resource.

lastComplianceStateChangeAt string

The time the compliance state was last changed in this attestation.

name string

The name of the resource

provisioningState string

The status of the attestation.

systemData SystemDataResponse

Azure Resource Manager metadata containing createdBy and modifiedBy information.

type string

The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"

id str

The provider-assigned unique ID for this managed resource.

last_compliance_state_change_at str

The time the compliance state was last changed in this attestation.

name str

The name of the resource

provisioning_state str

The status of the attestation.

system_data SystemDataResponse

Azure Resource Manager metadata containing createdBy and modifiedBy information.

type str

The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"

id String

The provider-assigned unique ID for this managed resource.

lastComplianceStateChangeAt String

The time the compliance state was last changed in this attestation.

name String

The name of the resource

provisioningState String

The status of the attestation.

systemData Property Map

Azure Resource Manager metadata containing createdBy and modifiedBy information.

type String

The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"

Supporting Types

AttestationEvidence

Description string

The description for this piece of evidence.

SourceUri string

The URI location of the evidence.

Description string

The description for this piece of evidence.

SourceUri string

The URI location of the evidence.

description String

The description for this piece of evidence.

sourceUri String

The URI location of the evidence.

description string

The description for this piece of evidence.

sourceUri string

The URI location of the evidence.

description str

The description for this piece of evidence.

source_uri str

The URI location of the evidence.

description String

The description for this piece of evidence.

sourceUri String

The URI location of the evidence.

AttestationEvidenceResponse

Description string

The description for this piece of evidence.

SourceUri string

The URI location of the evidence.

Description string

The description for this piece of evidence.

SourceUri string

The URI location of the evidence.

description String

The description for this piece of evidence.

sourceUri String

The URI location of the evidence.

description string

The description for this piece of evidence.

sourceUri string

The URI location of the evidence.

description str

The description for this piece of evidence.

source_uri str

The URI location of the evidence.

description String

The description for this piece of evidence.

sourceUri String

The URI location of the evidence.

ComplianceState

Compliant
Compliant

The resource is in compliance with the policy.

NonCompliant
NonCompliant

The resource is not in compliance with the policy.

Unknown
Unknown

The compliance state of the resource is not known.

ComplianceStateCompliant
Compliant

The resource is in compliance with the policy.

ComplianceStateNonCompliant
NonCompliant

The resource is not in compliance with the policy.

ComplianceStateUnknown
Unknown

The compliance state of the resource is not known.

Compliant
Compliant

The resource is in compliance with the policy.

NonCompliant
NonCompliant

The resource is not in compliance with the policy.

Unknown
Unknown

The compliance state of the resource is not known.

Compliant
Compliant

The resource is in compliance with the policy.

NonCompliant
NonCompliant

The resource is not in compliance with the policy.

Unknown
Unknown

The compliance state of the resource is not known.

COMPLIANT
Compliant

The resource is in compliance with the policy.

NON_COMPLIANT
NonCompliant

The resource is not in compliance with the policy.

UNKNOWN
Unknown

The compliance state of the resource is not known.

"Compliant"
Compliant

The resource is in compliance with the policy.

"NonCompliant"
NonCompliant

The resource is not in compliance with the policy.

"Unknown"
Unknown

The compliance state of the resource is not known.

SystemDataResponse

CreatedAt string

The timestamp of resource creation (UTC).

CreatedBy string

The identity that created the resource.

CreatedByType string

The type of identity that created the resource.

LastModifiedAt string

The timestamp of resource last modification (UTC)

LastModifiedBy string

The identity that last modified the resource.

LastModifiedByType string

The type of identity that last modified the resource.

CreatedAt string

The timestamp of resource creation (UTC).

CreatedBy string

The identity that created the resource.

CreatedByType string

The type of identity that created the resource.

LastModifiedAt string

The timestamp of resource last modification (UTC)

LastModifiedBy string

The identity that last modified the resource.

LastModifiedByType string

The type of identity that last modified the resource.

createdAt String

The timestamp of resource creation (UTC).

createdBy String

The identity that created the resource.

createdByType String

The type of identity that created the resource.

lastModifiedAt String

The timestamp of resource last modification (UTC)

lastModifiedBy String

The identity that last modified the resource.

lastModifiedByType String

The type of identity that last modified the resource.

createdAt string

The timestamp of resource creation (UTC).

createdBy string

The identity that created the resource.

createdByType string

The type of identity that created the resource.

lastModifiedAt string

The timestamp of resource last modification (UTC)

lastModifiedBy string

The identity that last modified the resource.

lastModifiedByType string

The type of identity that last modified the resource.

created_at str

The timestamp of resource creation (UTC).

created_by str

The identity that created the resource.

created_by_type str

The type of identity that created the resource.

last_modified_at str

The timestamp of resource last modification (UTC)

last_modified_by str

The identity that last modified the resource.

last_modified_by_type str

The type of identity that last modified the resource.

createdAt String

The timestamp of resource creation (UTC).

createdBy String

The identity that created the resource.

createdByType String

The type of identity that created the resource.

lastModifiedAt String

The timestamp of resource last modification (UTC)

lastModifiedBy String

The identity that last modified the resource.

lastModifiedByType String

The type of identity that last modified the resource.

Import

An existing resource can be imported using its type token, name, and identifier, e.g.

$ pulumi import azure-native:policyinsights:AttestationAtResourceGroup 790996e6-9871-4b1f-9cd9-ec42cd6ced1e /subscriptions/35ee058e-5fa0-414c-8145-3ebb8d09b6e2/resourcegroups/myrg/providers/microsoft.policyinsights/attestations/790996e6-9871-4b1f-9cd9-ec42cd6ced1e 

Package Details

Repository
Azure Native pulumi/pulumi-azure-native
License
Apache-2.0