Docs
Packages
Azure Native v1.102.0, May 2 23
Azure Native v1.102.0, May 2 23
azure-native.policyinsights.AttestationAtResourceGroup
Explore with Pulumi AI
An attestation resource. API Version: 2021-01-01.
Example Usage
Create attestation at resource group scope
using System.Collections.Generic;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var attestationAtResourceGroup = new AzureNative.PolicyInsights.AttestationAtResourceGroup("attestationAtResourceGroup", new()
{
AttestationName = "790996e6-9871-4b1f-9cd9-ec42cd6ced1e",
Comments = "This subscription has passed a security audit.",
ComplianceState = "Compliant",
Evidence = new[]
{
new AzureNative.PolicyInsights.Inputs.AttestationEvidenceArgs
{
Description = "The results of the security audit.",
SourceUri = "https://gist.github.com/contoso/9573e238762c60166c090ae16b814011",
},
},
ExpiresOn = "2021-06-15T00:00:00Z",
Owner = "55a32e28-3aa5-4eea-9b5a-4cd85153b966",
PolicyAssignmentId = "/subscriptions/35ee058e-5fa0-414c-8145-3ebb8d09b6e2/providers/microsoft.authorization/policyassignments/b101830944f246d8a14088c5",
PolicyDefinitionReferenceId = "0b158b46-ff42-4799-8e39-08a5c23b4551",
ResourceGroupName = "myRg",
});
});
package main
import (
policyinsights "github.com/pulumi/pulumi-azure-native/sdk/go/azure/policyinsights"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := policyinsights.NewAttestationAtResourceGroup(ctx, "attestationAtResourceGroup", &policyinsights.AttestationAtResourceGroupArgs{
AttestationName: pulumi.String("790996e6-9871-4b1f-9cd9-ec42cd6ced1e"),
Comments: pulumi.String("This subscription has passed a security audit."),
ComplianceState: pulumi.String("Compliant"),
Evidence: []policyinsights.AttestationEvidenceArgs{
{
Description: pulumi.String("The results of the security audit."),
SourceUri: pulumi.String("https://gist.github.com/contoso/9573e238762c60166c090ae16b814011"),
},
},
ExpiresOn: pulumi.String("2021-06-15T00:00:00Z"),
Owner: pulumi.String("55a32e28-3aa5-4eea-9b5a-4cd85153b966"),
PolicyAssignmentId: pulumi.String("/subscriptions/35ee058e-5fa0-414c-8145-3ebb8d09b6e2/providers/microsoft.authorization/policyassignments/b101830944f246d8a14088c5"),
PolicyDefinitionReferenceId: pulumi.String("0b158b46-ff42-4799-8e39-08a5c23b4551"),
ResourceGroupName: pulumi.String("myRg"),
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.policyinsights.AttestationAtResourceGroup;
import com.pulumi.azurenative.policyinsights.AttestationAtResourceGroupArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var attestationAtResourceGroup = new AttestationAtResourceGroup("attestationAtResourceGroup", AttestationAtResourceGroupArgs.builder()
.attestationName("790996e6-9871-4b1f-9cd9-ec42cd6ced1e")
.comments("This subscription has passed a security audit.")
.complianceState("Compliant")
.evidence(Map.ofEntries(
Map.entry("description", "The results of the security audit."),
Map.entry("sourceUri", "https://gist.github.com/contoso/9573e238762c60166c090ae16b814011")
))
.expiresOn("2021-06-15T00:00:00Z")
.owner("55a32e28-3aa5-4eea-9b5a-4cd85153b966")
.policyAssignmentId("/subscriptions/35ee058e-5fa0-414c-8145-3ebb8d09b6e2/providers/microsoft.authorization/policyassignments/b101830944f246d8a14088c5")
.policyDefinitionReferenceId("0b158b46-ff42-4799-8e39-08a5c23b4551")
.resourceGroupName("myRg")
.build());
}
}
import pulumi
import pulumi_azure_native as azure_native
attestation_at_resource_group = azure_native.policyinsights.AttestationAtResourceGroup("attestationAtResourceGroup",
attestation_name="790996e6-9871-4b1f-9cd9-ec42cd6ced1e",
comments="This subscription has passed a security audit.",
compliance_state="Compliant",
evidence=[azure_native.policyinsights.AttestationEvidenceArgs(
description="The results of the security audit.",
source_uri="https://gist.github.com/contoso/9573e238762c60166c090ae16b814011",
)],
expires_on="2021-06-15T00:00:00Z",
owner="55a32e28-3aa5-4eea-9b5a-4cd85153b966",
policy_assignment_id="/subscriptions/35ee058e-5fa0-414c-8145-3ebb8d09b6e2/providers/microsoft.authorization/policyassignments/b101830944f246d8a14088c5",
policy_definition_reference_id="0b158b46-ff42-4799-8e39-08a5c23b4551",
resource_group_name="myRg")
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const attestationAtResourceGroup = new azure_native.policyinsights.AttestationAtResourceGroup("attestationAtResourceGroup", {
attestationName: "790996e6-9871-4b1f-9cd9-ec42cd6ced1e",
comments: "This subscription has passed a security audit.",
complianceState: "Compliant",
evidence: [{
description: "The results of the security audit.",
sourceUri: "https://gist.github.com/contoso/9573e238762c60166c090ae16b814011",
}],
expiresOn: "2021-06-15T00:00:00Z",
owner: "55a32e28-3aa5-4eea-9b5a-4cd85153b966",
policyAssignmentId: "/subscriptions/35ee058e-5fa0-414c-8145-3ebb8d09b6e2/providers/microsoft.authorization/policyassignments/b101830944f246d8a14088c5",
policyDefinitionReferenceId: "0b158b46-ff42-4799-8e39-08a5c23b4551",
resourceGroupName: "myRg",
});
resources:
attestationAtResourceGroup:
type: azure-native:policyinsights:AttestationAtResourceGroup
properties:
attestationName: 790996e6-9871-4b1f-9cd9-ec42cd6ced1e
comments: This subscription has passed a security audit.
complianceState: Compliant
evidence:
- description: The results of the security audit.
sourceUri: https://gist.github.com/contoso/9573e238762c60166c090ae16b814011
expiresOn: 2021-06-15T00:00:00Z
owner: 55a32e28-3aa5-4eea-9b5a-4cd85153b966
policyAssignmentId: /subscriptions/35ee058e-5fa0-414c-8145-3ebb8d09b6e2/providers/microsoft.authorization/policyassignments/b101830944f246d8a14088c5
policyDefinitionReferenceId: 0b158b46-ff42-4799-8e39-08a5c23b4551
resourceGroupName: myRg
Create AttestationAtResourceGroup Resource
new AttestationAtResourceGroup(name: string, args: AttestationAtResourceGroupArgs, opts?: CustomResourceOptions);@overload
def AttestationAtResourceGroup(resource_name: str,
opts: Optional[ResourceOptions] = None,
attestation_name: Optional[str] = None,
comments: Optional[str] = None,
compliance_state: Optional[Union[str, ComplianceState]] = None,
evidence: Optional[Sequence[AttestationEvidenceArgs]] = None,
expires_on: Optional[str] = None,
owner: Optional[str] = None,
policy_assignment_id: Optional[str] = None,
policy_definition_reference_id: Optional[str] = None,
resource_group_name: Optional[str] = None)
@overload
def AttestationAtResourceGroup(resource_name: str,
args: AttestationAtResourceGroupArgs,
opts: Optional[ResourceOptions] = None)func NewAttestationAtResourceGroup(ctx *Context, name string, args AttestationAtResourceGroupArgs, opts ...ResourceOption) (*AttestationAtResourceGroup, error)public AttestationAtResourceGroup(string name, AttestationAtResourceGroupArgs args, CustomResourceOptions? opts = null)
public AttestationAtResourceGroup(String name, AttestationAtResourceGroupArgs args)
public AttestationAtResourceGroup(String name, AttestationAtResourceGroupArgs args, CustomResourceOptions options)
type: azure-native:policyinsights:AttestationAtResourceGroup
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args AttestationAtResourceGroupArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args AttestationAtResourceGroupArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args AttestationAtResourceGroupArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args AttestationAtResourceGroupArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args AttestationAtResourceGroupArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
AttestationAtResourceGroup Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
The AttestationAtResourceGroup resource accepts the following input properties:
- Policy
Assignment stringId The resource ID of the policy assignment that the attestation is setting the state for.
- Resource
Group stringName The name of the resource group. The name is case insensitive.
- Attestation
Name string The name of the attestation.
- Comments string
Comments describing why this attestation was created.
- Compliance
State string | Pulumi.Azure Native. Policy Insights. Compliance State The compliance state that should be set on the resource.
- Evidence
List<Pulumi.
Azure Native. Policy Insights. Inputs. Attestation Evidence Args> The evidence supporting the compliance state set in this attestation.
- Expires
On string The time the compliance state should expire.
- Owner string
The person responsible for setting the state of the resource. This value is typically an Azure Active Directory object ID.
- Policy
Definition stringReference Id The policy definition reference ID from a policy set definition that the attestation is setting the state for. If the policy assignment assigns a policy set definition the attestation can choose a definition within the set definition with this property or omit this and set the state for the entire set definition.
- Policy
Assignment stringId The resource ID of the policy assignment that the attestation is setting the state for.
- Resource
Group stringName The name of the resource group. The name is case insensitive.
- Attestation
Name string The name of the attestation.
- Comments string
Comments describing why this attestation was created.
- Compliance
State string | ComplianceState The compliance state that should be set on the resource.
- Evidence
[]Attestation
Evidence Args The evidence supporting the compliance state set in this attestation.
- Expires
On string The time the compliance state should expire.
- Owner string
The person responsible for setting the state of the resource. This value is typically an Azure Active Directory object ID.
- Policy
Definition stringReference Id The policy definition reference ID from a policy set definition that the attestation is setting the state for. If the policy assignment assigns a policy set definition the attestation can choose a definition within the set definition with this property or omit this and set the state for the entire set definition.
- policy
Assignment StringId The resource ID of the policy assignment that the attestation is setting the state for.
- resource
Group StringName The name of the resource group. The name is case insensitive.
- attestation
Name String The name of the attestation.
- comments String
Comments describing why this attestation was created.
- compliance
State String | ComplianceState The compliance state that should be set on the resource.
- evidence
List<Attestation
Evidence Args> The evidence supporting the compliance state set in this attestation.
- expires
On String The time the compliance state should expire.
- owner String
The person responsible for setting the state of the resource. This value is typically an Azure Active Directory object ID.
- policy
Definition StringReference Id The policy definition reference ID from a policy set definition that the attestation is setting the state for. If the policy assignment assigns a policy set definition the attestation can choose a definition within the set definition with this property or omit this and set the state for the entire set definition.
- policy
Assignment stringId The resource ID of the policy assignment that the attestation is setting the state for.
- resource
Group stringName The name of the resource group. The name is case insensitive.
- attestation
Name string The name of the attestation.
- comments string
Comments describing why this attestation was created.
- compliance
State string | ComplianceState The compliance state that should be set on the resource.
- evidence
Attestation
Evidence Args[] The evidence supporting the compliance state set in this attestation.
- expires
On string The time the compliance state should expire.
- owner string
The person responsible for setting the state of the resource. This value is typically an Azure Active Directory object ID.
- policy
Definition stringReference Id The policy definition reference ID from a policy set definition that the attestation is setting the state for. If the policy assignment assigns a policy set definition the attestation can choose a definition within the set definition with this property or omit this and set the state for the entire set definition.
- policy_
assignment_ strid The resource ID of the policy assignment that the attestation is setting the state for.
- resource_
group_ strname The name of the resource group. The name is case insensitive.
- attestation_
name str The name of the attestation.
- comments str
Comments describing why this attestation was created.
- compliance_
state str | ComplianceState The compliance state that should be set on the resource.
- evidence
Sequence[Attestation
Evidence Args] The evidence supporting the compliance state set in this attestation.
- expires_
on str The time the compliance state should expire.
- owner str
The person responsible for setting the state of the resource. This value is typically an Azure Active Directory object ID.
- policy_
definition_ strreference_ id The policy definition reference ID from a policy set definition that the attestation is setting the state for. If the policy assignment assigns a policy set definition the attestation can choose a definition within the set definition with this property or omit this and set the state for the entire set definition.
- policy
Assignment StringId The resource ID of the policy assignment that the attestation is setting the state for.
- resource
Group StringName The name of the resource group. The name is case insensitive.
- attestation
Name String The name of the attestation.
- comments String
Comments describing why this attestation was created.
- compliance
State String | "Compliant" | "NonCompliant" | "Unknown" The compliance state that should be set on the resource.
- evidence List<Property Map>
The evidence supporting the compliance state set in this attestation.
- expires
On String The time the compliance state should expire.
- owner String
The person responsible for setting the state of the resource. This value is typically an Azure Active Directory object ID.
- policy
Definition StringReference Id The policy definition reference ID from a policy set definition that the attestation is setting the state for. If the policy assignment assigns a policy set definition the attestation can choose a definition within the set definition with this property or omit this and set the state for the entire set definition.
Outputs
All input properties are implicitly available as output properties. Additionally, the AttestationAtResourceGroup resource produces the following output properties:
- Id string
The provider-assigned unique ID for this managed resource.
- Last
Compliance stringState Change At The time the compliance state was last changed in this attestation.
- Name string
The name of the resource
- Provisioning
State string The status of the attestation.
- System
Data Pulumi.Azure Native. Policy Insights. Outputs. System Data Response Azure Resource Manager metadata containing createdBy and modifiedBy information.
- Type string
The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- Id string
The provider-assigned unique ID for this managed resource.
- Last
Compliance stringState Change At The time the compliance state was last changed in this attestation.
- Name string
The name of the resource
- Provisioning
State string The status of the attestation.
- System
Data SystemData Response Azure Resource Manager metadata containing createdBy and modifiedBy information.
- Type string
The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- id String
The provider-assigned unique ID for this managed resource.
- last
Compliance StringState Change At The time the compliance state was last changed in this attestation.
- name String
The name of the resource
- provisioning
State String The status of the attestation.
- system
Data SystemData Response Azure Resource Manager metadata containing createdBy and modifiedBy information.
- type String
The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- id string
The provider-assigned unique ID for this managed resource.
- last
Compliance stringState Change At The time the compliance state was last changed in this attestation.
- name string
The name of the resource
- provisioning
State string The status of the attestation.
- system
Data SystemData Response Azure Resource Manager metadata containing createdBy and modifiedBy information.
- type string
The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- id str
The provider-assigned unique ID for this managed resource.
- last_
compliance_ strstate_ change_ at The time the compliance state was last changed in this attestation.
- name str
The name of the resource
- provisioning_
state str The status of the attestation.
- system_
data SystemData Response Azure Resource Manager metadata containing createdBy and modifiedBy information.
- type str
The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- id String
The provider-assigned unique ID for this managed resource.
- last
Compliance StringState Change At The time the compliance state was last changed in this attestation.
- name String
The name of the resource
- provisioning
State String The status of the attestation.
- system
Data Property Map Azure Resource Manager metadata containing createdBy and modifiedBy information.
- type String
The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
Supporting Types
AttestationEvidence
- Description string
The description for this piece of evidence.
- Source
Uri string The URI location of the evidence.
- Description string
The description for this piece of evidence.
- Source
Uri string The URI location of the evidence.
- description String
The description for this piece of evidence.
- source
Uri String The URI location of the evidence.
- description string
The description for this piece of evidence.
- source
Uri string The URI location of the evidence.
- description str
The description for this piece of evidence.
- source_
uri str The URI location of the evidence.
- description String
The description for this piece of evidence.
- source
Uri String The URI location of the evidence.
AttestationEvidenceResponse
- Description string
The description for this piece of evidence.
- Source
Uri string The URI location of the evidence.
- Description string
The description for this piece of evidence.
- Source
Uri string The URI location of the evidence.
- description String
The description for this piece of evidence.
- source
Uri String The URI location of the evidence.
- description string
The description for this piece of evidence.
- source
Uri string The URI location of the evidence.
- description str
The description for this piece of evidence.
- source_
uri str The URI location of the evidence.
- description String
The description for this piece of evidence.
- source
Uri String The URI location of the evidence.
ComplianceState
- Compliant
- Compliant
The resource is in compliance with the policy.
- Non
Compliant - NonCompliant
The resource is not in compliance with the policy.
- Unknown
- Unknown
The compliance state of the resource is not known.
- Compliance
State Compliant - Compliant
The resource is in compliance with the policy.
- Compliance
State Non Compliant - NonCompliant
The resource is not in compliance with the policy.
- Compliance
State Unknown - Unknown
The compliance state of the resource is not known.
- Compliant
- Compliant
The resource is in compliance with the policy.
- Non
Compliant - NonCompliant
The resource is not in compliance with the policy.
- Unknown
- Unknown
The compliance state of the resource is not known.
- Compliant
- Compliant
The resource is in compliance with the policy.
- Non
Compliant - NonCompliant
The resource is not in compliance with the policy.
- Unknown
- Unknown
The compliance state of the resource is not known.
- COMPLIANT
- Compliant
The resource is in compliance with the policy.
- NON_COMPLIANT
- NonCompliant
The resource is not in compliance with the policy.
- UNKNOWN
- Unknown
The compliance state of the resource is not known.
- "Compliant"
- Compliant
The resource is in compliance with the policy.
- "Non
Compliant" - NonCompliant
The resource is not in compliance with the policy.
- "Unknown"
- Unknown
The compliance state of the resource is not known.
SystemDataResponse
- Created
At string The timestamp of resource creation (UTC).
- Created
By string The identity that created the resource.
- Created
By stringType The type of identity that created the resource.
- Last
Modified stringAt The timestamp of resource last modification (UTC)
- Last
Modified stringBy The identity that last modified the resource.
- Last
Modified stringBy Type The type of identity that last modified the resource.
- Created
At string The timestamp of resource creation (UTC).
- Created
By string The identity that created the resource.
- Created
By stringType The type of identity that created the resource.
- Last
Modified stringAt The timestamp of resource last modification (UTC)
- Last
Modified stringBy The identity that last modified the resource.
- Last
Modified stringBy Type The type of identity that last modified the resource.
- created
At String The timestamp of resource creation (UTC).
- created
By String The identity that created the resource.
- created
By StringType The type of identity that created the resource.
- last
Modified StringAt The timestamp of resource last modification (UTC)
- last
Modified StringBy The identity that last modified the resource.
- last
Modified StringBy Type The type of identity that last modified the resource.
- created
At string The timestamp of resource creation (UTC).
- created
By string The identity that created the resource.
- created
By stringType The type of identity that created the resource.
- last
Modified stringAt The timestamp of resource last modification (UTC)
- last
Modified stringBy The identity that last modified the resource.
- last
Modified stringBy Type The type of identity that last modified the resource.
- created_
at str The timestamp of resource creation (UTC).
- created_
by str The identity that created the resource.
- created_
by_ strtype The type of identity that created the resource.
- last_
modified_ strat The timestamp of resource last modification (UTC)
- last_
modified_ strby The identity that last modified the resource.
- last_
modified_ strby_ type The type of identity that last modified the resource.
- created
At String The timestamp of resource creation (UTC).
- created
By String The identity that created the resource.
- created
By StringType The type of identity that created the resource.
- last
Modified StringAt The timestamp of resource last modification (UTC)
- last
Modified StringBy The identity that last modified the resource.
- last
Modified StringBy Type The type of identity that last modified the resource.
Import
An existing resource can be imported using its type token, name, and identifier, e.g.
$ pulumi import azure-native:policyinsights:AttestationAtResourceGroup 790996e6-9871-4b1f-9cd9-ec42cd6ced1e /subscriptions/35ee058e-5fa0-414c-8145-3ebb8d09b6e2/resourcegroups/myrg/providers/microsoft.policyinsights/attestations/790996e6-9871-4b1f-9cd9-ec42cd6ced1e
Package Details
- Repository
- Azure Native pulumi/pulumi-azure-native
- License
- Apache-2.0