azure-native.storage.StorageAccount
Explore with Pulumi AI
The storage account. Azure REST API version: 2022-09-01. Prior API version in Azure Native 1.x: 2021-02-01.
Other available API versions: 2015-05-01-preview, 2015-06-15, 2018-11-01, 2023-01-01, 2023-04-01, 2023-05-01.
Example Usage
NfsV3AccountCreate
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var storageAccount = new AzureNative.Storage.StorageAccount("storageAccount", new()
{
AccountName = "sto4445",
EnableHttpsTrafficOnly = false,
EnableNfsV3 = true,
IsHnsEnabled = true,
Kind = AzureNative.Storage.Kind.BlockBlobStorage,
Location = "eastus",
NetworkRuleSet = new AzureNative.Storage.Inputs.NetworkRuleSetArgs
{
Bypass = AzureNative.Storage.Bypass.AzureServices,
DefaultAction = AzureNative.Storage.DefaultAction.Allow,
IpRules = new() { },
VirtualNetworkRules = new[]
{
new AzureNative.Storage.Inputs.VirtualNetworkRuleArgs
{
VirtualNetworkResourceId = "/subscriptions/{subscription-id}/resourceGroups/res9101/providers/Microsoft.Network/virtualNetworks/net123/subnets/subnet12",
},
},
},
ResourceGroupName = "res9101",
Sku = new AzureNative.Storage.Inputs.SkuArgs
{
Name = AzureNative.Storage.SkuName.Premium_LRS,
},
});
});
package main
import (
storage "github.com/pulumi/pulumi-azure-native-sdk/storage/v2"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := storage.NewStorageAccount(ctx, "storageAccount", &storage.StorageAccountArgs{
AccountName: pulumi.String("sto4445"),
EnableHttpsTrafficOnly: pulumi.Bool(false),
EnableNfsV3: pulumi.Bool(true),
IsHnsEnabled: pulumi.Bool(true),
Kind: pulumi.String(storage.KindBlockBlobStorage),
Location: pulumi.String("eastus"),
NetworkRuleSet: &storage.NetworkRuleSetArgs{
Bypass: pulumi.String(storage.BypassAzureServices),
DefaultAction: storage.DefaultActionAllow,
IpRules: storage.IPRuleArray{},
VirtualNetworkRules: storage.VirtualNetworkRuleArray{
&storage.VirtualNetworkRuleArgs{
VirtualNetworkResourceId: pulumi.String("/subscriptions/{subscription-id}/resourceGroups/res9101/providers/Microsoft.Network/virtualNetworks/net123/subnets/subnet12"),
},
},
},
ResourceGroupName: pulumi.String("res9101"),
Sku: &storage.SkuArgs{
Name: pulumi.String(storage.SkuName_Premium_LRS),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.storage.StorageAccount;
import com.pulumi.azurenative.storage.StorageAccountArgs;
import com.pulumi.azurenative.storage.inputs.NetworkRuleSetArgs;
import com.pulumi.azurenative.storage.inputs.SkuArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var storageAccount = new StorageAccount("storageAccount", StorageAccountArgs.builder()
.accountName("sto4445")
.enableHttpsTrafficOnly(false)
.enableNfsV3(true)
.isHnsEnabled(true)
.kind("BlockBlobStorage")
.location("eastus")
.networkRuleSet(NetworkRuleSetArgs.builder()
.bypass("AzureServices")
.defaultAction("Allow")
.ipRules()
.virtualNetworkRules(VirtualNetworkRuleArgs.builder()
.virtualNetworkResourceId("/subscriptions/{subscription-id}/resourceGroups/res9101/providers/Microsoft.Network/virtualNetworks/net123/subnets/subnet12")
.build())
.build())
.resourceGroupName("res9101")
.sku(SkuArgs.builder()
.name("Premium_LRS")
.build())
.build());
}
}
import pulumi
import pulumi_azure_native as azure_native
storage_account = azure_native.storage.StorageAccount("storageAccount",
account_name="sto4445",
enable_https_traffic_only=False,
enable_nfs_v3=True,
is_hns_enabled=True,
kind=azure_native.storage.Kind.BLOCK_BLOB_STORAGE,
location="eastus",
network_rule_set={
"bypass": azure_native.storage.Bypass.AZURE_SERVICES,
"default_action": azure_native.storage.DefaultAction.ALLOW,
"ip_rules": [],
"virtual_network_rules": [{
"virtual_network_resource_id": "/subscriptions/{subscription-id}/resourceGroups/res9101/providers/Microsoft.Network/virtualNetworks/net123/subnets/subnet12",
}],
},
resource_group_name="res9101",
sku={
"name": azure_native.storage.SkuName.PREMIUM_LRS,
})
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const storageAccount = new azure_native.storage.StorageAccount("storageAccount", {
accountName: "sto4445",
enableHttpsTrafficOnly: false,
enableNfsV3: true,
isHnsEnabled: true,
kind: azure_native.storage.Kind.BlockBlobStorage,
location: "eastus",
networkRuleSet: {
bypass: azure_native.storage.Bypass.AzureServices,
defaultAction: azure_native.storage.DefaultAction.Allow,
ipRules: [],
virtualNetworkRules: [{
virtualNetworkResourceId: "/subscriptions/{subscription-id}/resourceGroups/res9101/providers/Microsoft.Network/virtualNetworks/net123/subnets/subnet12",
}],
},
resourceGroupName: "res9101",
sku: {
name: azure_native.storage.SkuName.Premium_LRS,
},
});
resources:
storageAccount:
type: azure-native:storage:StorageAccount
properties:
accountName: sto4445
enableHttpsTrafficOnly: false
enableNfsV3: true
isHnsEnabled: true
kind: BlockBlobStorage
location: eastus
networkRuleSet:
bypass: AzureServices
defaultAction: Allow
ipRules: []
virtualNetworkRules:
- virtualNetworkResourceId: /subscriptions/{subscription-id}/resourceGroups/res9101/providers/Microsoft.Network/virtualNetworks/net123/subnets/subnet12
resourceGroupName: res9101
sku:
name: Premium_LRS
StorageAccountCreate
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var storageAccount = new AzureNative.Storage.StorageAccount("storageAccount", new()
{
AccountName = "sto4445",
AllowBlobPublicAccess = false,
AllowSharedKeyAccess = true,
DefaultToOAuthAuthentication = false,
Encryption = new AzureNative.Storage.Inputs.EncryptionArgs
{
KeySource = AzureNative.Storage.KeySource.Microsoft_Storage,
RequireInfrastructureEncryption = false,
Services = new AzureNative.Storage.Inputs.EncryptionServicesArgs
{
Blob = new AzureNative.Storage.Inputs.EncryptionServiceArgs
{
Enabled = true,
KeyType = AzureNative.Storage.KeyType.Account,
},
File = new AzureNative.Storage.Inputs.EncryptionServiceArgs
{
Enabled = true,
KeyType = AzureNative.Storage.KeyType.Account,
},
},
},
ExtendedLocation = new AzureNative.Storage.Inputs.ExtendedLocationArgs
{
Name = "losangeles001",
Type = AzureNative.Storage.ExtendedLocationTypes.EdgeZone,
},
IsHnsEnabled = true,
IsSftpEnabled = true,
KeyPolicy = new AzureNative.Storage.Inputs.KeyPolicyArgs
{
KeyExpirationPeriodInDays = 20,
},
Kind = AzureNative.Storage.Kind.Storage,
Location = "eastus",
MinimumTlsVersion = AzureNative.Storage.MinimumTlsVersion.TLS1_2,
ResourceGroupName = "res9101",
RoutingPreference = new AzureNative.Storage.Inputs.RoutingPreferenceArgs
{
PublishInternetEndpoints = true,
PublishMicrosoftEndpoints = true,
RoutingChoice = AzureNative.Storage.RoutingChoice.MicrosoftRouting,
},
SasPolicy = new AzureNative.Storage.Inputs.SasPolicyArgs
{
ExpirationAction = AzureNative.Storage.ExpirationAction.Log,
SasExpirationPeriod = "1.15:59:59",
},
Sku = new AzureNative.Storage.Inputs.SkuArgs
{
Name = AzureNative.Storage.SkuName.Standard_GRS,
},
Tags =
{
{ "key1", "value1" },
{ "key2", "value2" },
},
});
});
package main
import (
storage "github.com/pulumi/pulumi-azure-native-sdk/storage/v2"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := storage.NewStorageAccount(ctx, "storageAccount", &storage.StorageAccountArgs{
AccountName: pulumi.String("sto4445"),
AllowBlobPublicAccess: pulumi.Bool(false),
AllowSharedKeyAccess: pulumi.Bool(true),
DefaultToOAuthAuthentication: pulumi.Bool(false),
Encryption: &storage.EncryptionArgs{
KeySource: pulumi.String(storage.KeySource_Microsoft_Storage),
RequireInfrastructureEncryption: pulumi.Bool(false),
Services: &storage.EncryptionServicesArgs{
Blob: &storage.EncryptionServiceArgs{
Enabled: pulumi.Bool(true),
KeyType: pulumi.String(storage.KeyTypeAccount),
},
File: &storage.EncryptionServiceArgs{
Enabled: pulumi.Bool(true),
KeyType: pulumi.String(storage.KeyTypeAccount),
},
},
},
ExtendedLocation: &storage.ExtendedLocationArgs{
Name: pulumi.String("losangeles001"),
Type: pulumi.String(storage.ExtendedLocationTypesEdgeZone),
},
IsHnsEnabled: pulumi.Bool(true),
IsSftpEnabled: pulumi.Bool(true),
KeyPolicy: &storage.KeyPolicyArgs{
KeyExpirationPeriodInDays: pulumi.Int(20),
},
Kind: pulumi.String(storage.KindStorage),
Location: pulumi.String("eastus"),
MinimumTlsVersion: pulumi.String(storage.MinimumTlsVersion_TLS1_2),
ResourceGroupName: pulumi.String("res9101"),
RoutingPreference: &storage.RoutingPreferenceArgs{
PublishInternetEndpoints: pulumi.Bool(true),
PublishMicrosoftEndpoints: pulumi.Bool(true),
RoutingChoice: pulumi.String(storage.RoutingChoiceMicrosoftRouting),
},
SasPolicy: &storage.SasPolicyArgs{
ExpirationAction: pulumi.String(storage.ExpirationActionLog),
SasExpirationPeriod: pulumi.String("1.15:59:59"),
},
Sku: &storage.SkuArgs{
Name: pulumi.String(storage.SkuName_Standard_GRS),
},
Tags: pulumi.StringMap{
"key1": pulumi.String("value1"),
"key2": pulumi.String("value2"),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.storage.StorageAccount;
import com.pulumi.azurenative.storage.StorageAccountArgs;
import com.pulumi.azurenative.storage.inputs.EncryptionArgs;
import com.pulumi.azurenative.storage.inputs.EncryptionServicesArgs;
import com.pulumi.azurenative.storage.inputs.EncryptionServiceArgs;
import com.pulumi.azurenative.storage.inputs.ExtendedLocationArgs;
import com.pulumi.azurenative.storage.inputs.KeyPolicyArgs;
import com.pulumi.azurenative.storage.inputs.RoutingPreferenceArgs;
import com.pulumi.azurenative.storage.inputs.SasPolicyArgs;
import com.pulumi.azurenative.storage.inputs.SkuArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var storageAccount = new StorageAccount("storageAccount", StorageAccountArgs.builder()
.accountName("sto4445")
.allowBlobPublicAccess(false)
.allowSharedKeyAccess(true)
.defaultToOAuthAuthentication(false)
.encryption(EncryptionArgs.builder()
.keySource("Microsoft.Storage")
.requireInfrastructureEncryption(false)
.services(EncryptionServicesArgs.builder()
.blob(EncryptionServiceArgs.builder()
.enabled(true)
.keyType("Account")
.build())
.file(EncryptionServiceArgs.builder()
.enabled(true)
.keyType("Account")
.build())
.build())
.build())
.extendedLocation(ExtendedLocationArgs.builder()
.name("losangeles001")
.type("EdgeZone")
.build())
.isHnsEnabled(true)
.isSftpEnabled(true)
.keyPolicy(KeyPolicyArgs.builder()
.keyExpirationPeriodInDays(20)
.build())
.kind("Storage")
.location("eastus")
.minimumTlsVersion("TLS1_2")
.resourceGroupName("res9101")
.routingPreference(RoutingPreferenceArgs.builder()
.publishInternetEndpoints(true)
.publishMicrosoftEndpoints(true)
.routingChoice("MicrosoftRouting")
.build())
.sasPolicy(SasPolicyArgs.builder()
.expirationAction("Log")
.sasExpirationPeriod("1.15:59:59")
.build())
.sku(SkuArgs.builder()
.name("Standard_GRS")
.build())
.tags(Map.ofEntries(
Map.entry("key1", "value1"),
Map.entry("key2", "value2")
))
.build());
}
}
import pulumi
import pulumi_azure_native as azure_native
storage_account = azure_native.storage.StorageAccount("storageAccount",
account_name="sto4445",
allow_blob_public_access=False,
allow_shared_key_access=True,
default_to_o_auth_authentication=False,
encryption={
"key_source": azure_native.storage.KeySource.MICROSOFT_STORAGE,
"require_infrastructure_encryption": False,
"services": {
"blob": {
"enabled": True,
"key_type": azure_native.storage.KeyType.ACCOUNT,
},
"file": {
"enabled": True,
"key_type": azure_native.storage.KeyType.ACCOUNT,
},
},
},
extended_location={
"name": "losangeles001",
"type": azure_native.storage.ExtendedLocationTypes.EDGE_ZONE,
},
is_hns_enabled=True,
is_sftp_enabled=True,
key_policy={
"key_expiration_period_in_days": 20,
},
kind=azure_native.storage.Kind.STORAGE,
location="eastus",
minimum_tls_version=azure_native.storage.MinimumTlsVersion.TLS1_2,
resource_group_name="res9101",
routing_preference={
"publish_internet_endpoints": True,
"publish_microsoft_endpoints": True,
"routing_choice": azure_native.storage.RoutingChoice.MICROSOFT_ROUTING,
},
sas_policy={
"expiration_action": azure_native.storage.ExpirationAction.LOG,
"sas_expiration_period": "1.15:59:59",
},
sku={
"name": azure_native.storage.SkuName.STANDARD_GRS,
},
tags={
"key1": "value1",
"key2": "value2",
})
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const storageAccount = new azure_native.storage.StorageAccount("storageAccount", {
accountName: "sto4445",
allowBlobPublicAccess: false,
allowSharedKeyAccess: true,
defaultToOAuthAuthentication: false,
encryption: {
keySource: azure_native.storage.KeySource.Microsoft_Storage,
requireInfrastructureEncryption: false,
services: {
blob: {
enabled: true,
keyType: azure_native.storage.KeyType.Account,
},
file: {
enabled: true,
keyType: azure_native.storage.KeyType.Account,
},
},
},
extendedLocation: {
name: "losangeles001",
type: azure_native.storage.ExtendedLocationTypes.EdgeZone,
},
isHnsEnabled: true,
isSftpEnabled: true,
keyPolicy: {
keyExpirationPeriodInDays: 20,
},
kind: azure_native.storage.Kind.Storage,
location: "eastus",
minimumTlsVersion: azure_native.storage.MinimumTlsVersion.TLS1_2,
resourceGroupName: "res9101",
routingPreference: {
publishInternetEndpoints: true,
publishMicrosoftEndpoints: true,
routingChoice: azure_native.storage.RoutingChoice.MicrosoftRouting,
},
sasPolicy: {
expirationAction: azure_native.storage.ExpirationAction.Log,
sasExpirationPeriod: "1.15:59:59",
},
sku: {
name: azure_native.storage.SkuName.Standard_GRS,
},
tags: {
key1: "value1",
key2: "value2",
},
});
resources:
storageAccount:
type: azure-native:storage:StorageAccount
properties:
accountName: sto4445
allowBlobPublicAccess: false
allowSharedKeyAccess: true
defaultToOAuthAuthentication: false
encryption:
keySource: Microsoft.Storage
requireInfrastructureEncryption: false
services:
blob:
enabled: true
keyType: Account
file:
enabled: true
keyType: Account
extendedLocation:
name: losangeles001
type: EdgeZone
isHnsEnabled: true
isSftpEnabled: true
keyPolicy:
keyExpirationPeriodInDays: 20
kind: Storage
location: eastus
minimumTlsVersion: TLS1_2
resourceGroupName: res9101
routingPreference:
publishInternetEndpoints: true
publishMicrosoftEndpoints: true
routingChoice: MicrosoftRouting
sasPolicy:
expirationAction: Log
sasExpirationPeriod: 1.15:59:59
sku:
name: Standard_GRS
tags:
key1: value1
key2: value2
StorageAccountCreateAllowedCopyScopeToAAD
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var storageAccount = new AzureNative.Storage.StorageAccount("storageAccount", new()
{
AccountName = "sto4445",
AllowBlobPublicAccess = false,
AllowSharedKeyAccess = true,
AllowedCopyScope = AzureNative.Storage.AllowedCopyScope.AAD,
Encryption = new AzureNative.Storage.Inputs.EncryptionArgs
{
KeySource = AzureNative.Storage.KeySource.Microsoft_Storage,
RequireInfrastructureEncryption = false,
Services = new AzureNative.Storage.Inputs.EncryptionServicesArgs
{
Blob = new AzureNative.Storage.Inputs.EncryptionServiceArgs
{
Enabled = true,
KeyType = AzureNative.Storage.KeyType.Account,
},
File = new AzureNative.Storage.Inputs.EncryptionServiceArgs
{
Enabled = true,
KeyType = AzureNative.Storage.KeyType.Account,
},
},
},
IsHnsEnabled = true,
KeyPolicy = new AzureNative.Storage.Inputs.KeyPolicyArgs
{
KeyExpirationPeriodInDays = 20,
},
Kind = AzureNative.Storage.Kind.Storage,
Location = "eastus",
MinimumTlsVersion = AzureNative.Storage.MinimumTlsVersion.TLS1_2,
ResourceGroupName = "res9101",
RoutingPreference = new AzureNative.Storage.Inputs.RoutingPreferenceArgs
{
PublishInternetEndpoints = true,
PublishMicrosoftEndpoints = true,
RoutingChoice = AzureNative.Storage.RoutingChoice.MicrosoftRouting,
},
SasPolicy = new AzureNative.Storage.Inputs.SasPolicyArgs
{
ExpirationAction = AzureNative.Storage.ExpirationAction.Log,
SasExpirationPeriod = "1.15:59:59",
},
Sku = new AzureNative.Storage.Inputs.SkuArgs
{
Name = AzureNative.Storage.SkuName.Standard_GRS,
},
Tags =
{
{ "key1", "value1" },
{ "key2", "value2" },
},
});
});
package main
import (
storage "github.com/pulumi/pulumi-azure-native-sdk/storage/v2"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := storage.NewStorageAccount(ctx, "storageAccount", &storage.StorageAccountArgs{
AccountName: pulumi.String("sto4445"),
AllowBlobPublicAccess: pulumi.Bool(false),
AllowSharedKeyAccess: pulumi.Bool(true),
AllowedCopyScope: pulumi.String(storage.AllowedCopyScopeAAD),
Encryption: &storage.EncryptionArgs{
KeySource: pulumi.String(storage.KeySource_Microsoft_Storage),
RequireInfrastructureEncryption: pulumi.Bool(false),
Services: &storage.EncryptionServicesArgs{
Blob: &storage.EncryptionServiceArgs{
Enabled: pulumi.Bool(true),
KeyType: pulumi.String(storage.KeyTypeAccount),
},
File: &storage.EncryptionServiceArgs{
Enabled: pulumi.Bool(true),
KeyType: pulumi.String(storage.KeyTypeAccount),
},
},
},
IsHnsEnabled: pulumi.Bool(true),
KeyPolicy: &storage.KeyPolicyArgs{
KeyExpirationPeriodInDays: pulumi.Int(20),
},
Kind: pulumi.String(storage.KindStorage),
Location: pulumi.String("eastus"),
MinimumTlsVersion: pulumi.String(storage.MinimumTlsVersion_TLS1_2),
ResourceGroupName: pulumi.String("res9101"),
RoutingPreference: &storage.RoutingPreferenceArgs{
PublishInternetEndpoints: pulumi.Bool(true),
PublishMicrosoftEndpoints: pulumi.Bool(true),
RoutingChoice: pulumi.String(storage.RoutingChoiceMicrosoftRouting),
},
SasPolicy: &storage.SasPolicyArgs{
ExpirationAction: pulumi.String(storage.ExpirationActionLog),
SasExpirationPeriod: pulumi.String("1.15:59:59"),
},
Sku: &storage.SkuArgs{
Name: pulumi.String(storage.SkuName_Standard_GRS),
},
Tags: pulumi.StringMap{
"key1": pulumi.String("value1"),
"key2": pulumi.String("value2"),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.storage.StorageAccount;
import com.pulumi.azurenative.storage.StorageAccountArgs;
import com.pulumi.azurenative.storage.inputs.EncryptionArgs;
import com.pulumi.azurenative.storage.inputs.EncryptionServicesArgs;
import com.pulumi.azurenative.storage.inputs.EncryptionServiceArgs;
import com.pulumi.azurenative.storage.inputs.KeyPolicyArgs;
import com.pulumi.azurenative.storage.inputs.RoutingPreferenceArgs;
import com.pulumi.azurenative.storage.inputs.SasPolicyArgs;
import com.pulumi.azurenative.storage.inputs.SkuArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var storageAccount = new StorageAccount("storageAccount", StorageAccountArgs.builder()
.accountName("sto4445")
.allowBlobPublicAccess(false)
.allowSharedKeyAccess(true)
.allowedCopyScope("AAD")
.encryption(EncryptionArgs.builder()
.keySource("Microsoft.Storage")
.requireInfrastructureEncryption(false)
.services(EncryptionServicesArgs.builder()
.blob(EncryptionServiceArgs.builder()
.enabled(true)
.keyType("Account")
.build())
.file(EncryptionServiceArgs.builder()
.enabled(true)
.keyType("Account")
.build())
.build())
.build())
.isHnsEnabled(true)
.keyPolicy(KeyPolicyArgs.builder()
.keyExpirationPeriodInDays(20)
.build())
.kind("Storage")
.location("eastus")
.minimumTlsVersion("TLS1_2")
.resourceGroupName("res9101")
.routingPreference(RoutingPreferenceArgs.builder()
.publishInternetEndpoints(true)
.publishMicrosoftEndpoints(true)
.routingChoice("MicrosoftRouting")
.build())
.sasPolicy(SasPolicyArgs.builder()
.expirationAction("Log")
.sasExpirationPeriod("1.15:59:59")
.build())
.sku(SkuArgs.builder()
.name("Standard_GRS")
.build())
.tags(Map.ofEntries(
Map.entry("key1", "value1"),
Map.entry("key2", "value2")
))
.build());
}
}
import pulumi
import pulumi_azure_native as azure_native
storage_account = azure_native.storage.StorageAccount("storageAccount",
account_name="sto4445",
allow_blob_public_access=False,
allow_shared_key_access=True,
allowed_copy_scope=azure_native.storage.AllowedCopyScope.AAD,
encryption={
"key_source": azure_native.storage.KeySource.MICROSOFT_STORAGE,
"require_infrastructure_encryption": False,
"services": {
"blob": {
"enabled": True,
"key_type": azure_native.storage.KeyType.ACCOUNT,
},
"file": {
"enabled": True,
"key_type": azure_native.storage.KeyType.ACCOUNT,
},
},
},
is_hns_enabled=True,
key_policy={
"key_expiration_period_in_days": 20,
},
kind=azure_native.storage.Kind.STORAGE,
location="eastus",
minimum_tls_version=azure_native.storage.MinimumTlsVersion.TLS1_2,
resource_group_name="res9101",
routing_preference={
"publish_internet_endpoints": True,
"publish_microsoft_endpoints": True,
"routing_choice": azure_native.storage.RoutingChoice.MICROSOFT_ROUTING,
},
sas_policy={
"expiration_action": azure_native.storage.ExpirationAction.LOG,
"sas_expiration_period": "1.15:59:59",
},
sku={
"name": azure_native.storage.SkuName.STANDARD_GRS,
},
tags={
"key1": "value1",
"key2": "value2",
})
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const storageAccount = new azure_native.storage.StorageAccount("storageAccount", {
accountName: "sto4445",
allowBlobPublicAccess: false,
allowSharedKeyAccess: true,
allowedCopyScope: azure_native.storage.AllowedCopyScope.AAD,
encryption: {
keySource: azure_native.storage.KeySource.Microsoft_Storage,
requireInfrastructureEncryption: false,
services: {
blob: {
enabled: true,
keyType: azure_native.storage.KeyType.Account,
},
file: {
enabled: true,
keyType: azure_native.storage.KeyType.Account,
},
},
},
isHnsEnabled: true,
keyPolicy: {
keyExpirationPeriodInDays: 20,
},
kind: azure_native.storage.Kind.Storage,
location: "eastus",
minimumTlsVersion: azure_native.storage.MinimumTlsVersion.TLS1_2,
resourceGroupName: "res9101",
routingPreference: {
publishInternetEndpoints: true,
publishMicrosoftEndpoints: true,
routingChoice: azure_native.storage.RoutingChoice.MicrosoftRouting,
},
sasPolicy: {
expirationAction: azure_native.storage.ExpirationAction.Log,
sasExpirationPeriod: "1.15:59:59",
},
sku: {
name: azure_native.storage.SkuName.Standard_GRS,
},
tags: {
key1: "value1",
key2: "value2",
},
});
resources:
storageAccount:
type: azure-native:storage:StorageAccount
properties:
accountName: sto4445
allowBlobPublicAccess: false
allowSharedKeyAccess: true
allowedCopyScope: AAD
encryption:
keySource: Microsoft.Storage
requireInfrastructureEncryption: false
services:
blob:
enabled: true
keyType: Account
file:
enabled: true
keyType: Account
isHnsEnabled: true
keyPolicy:
keyExpirationPeriodInDays: 20
kind: Storage
location: eastus
minimumTlsVersion: TLS1_2
resourceGroupName: res9101
routingPreference:
publishInternetEndpoints: true
publishMicrosoftEndpoints: true
routingChoice: MicrosoftRouting
sasPolicy:
expirationAction: Log
sasExpirationPeriod: 1.15:59:59
sku:
name: Standard_GRS
tags:
key1: value1
key2: value2
StorageAccountCreateAllowedCopyScopeToPrivateLink
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var storageAccount = new AzureNative.Storage.StorageAccount("storageAccount", new()
{
AccountName = "sto4445",
AllowBlobPublicAccess = false,
AllowSharedKeyAccess = true,
AllowedCopyScope = AzureNative.Storage.AllowedCopyScope.PrivateLink,
Encryption = new AzureNative.Storage.Inputs.EncryptionArgs
{
KeySource = AzureNative.Storage.KeySource.Microsoft_Storage,
RequireInfrastructureEncryption = false,
Services = new AzureNative.Storage.Inputs.EncryptionServicesArgs
{
Blob = new AzureNative.Storage.Inputs.EncryptionServiceArgs
{
Enabled = true,
KeyType = AzureNative.Storage.KeyType.Account,
},
File = new AzureNative.Storage.Inputs.EncryptionServiceArgs
{
Enabled = true,
KeyType = AzureNative.Storage.KeyType.Account,
},
},
},
IsHnsEnabled = true,
KeyPolicy = new AzureNative.Storage.Inputs.KeyPolicyArgs
{
KeyExpirationPeriodInDays = 20,
},
Kind = AzureNative.Storage.Kind.Storage,
Location = "eastus",
MinimumTlsVersion = AzureNative.Storage.MinimumTlsVersion.TLS1_2,
ResourceGroupName = "res9101",
RoutingPreference = new AzureNative.Storage.Inputs.RoutingPreferenceArgs
{
PublishInternetEndpoints = true,
PublishMicrosoftEndpoints = true,
RoutingChoice = AzureNative.Storage.RoutingChoice.MicrosoftRouting,
},
SasPolicy = new AzureNative.Storage.Inputs.SasPolicyArgs
{
ExpirationAction = AzureNative.Storage.ExpirationAction.Log,
SasExpirationPeriod = "1.15:59:59",
},
Sku = new AzureNative.Storage.Inputs.SkuArgs
{
Name = AzureNative.Storage.SkuName.Standard_GRS,
},
Tags =
{
{ "key1", "value1" },
{ "key2", "value2" },
},
});
});
package main
import (
storage "github.com/pulumi/pulumi-azure-native-sdk/storage/v2"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := storage.NewStorageAccount(ctx, "storageAccount", &storage.StorageAccountArgs{
AccountName: pulumi.String("sto4445"),
AllowBlobPublicAccess: pulumi.Bool(false),
AllowSharedKeyAccess: pulumi.Bool(true),
AllowedCopyScope: pulumi.String(storage.AllowedCopyScopePrivateLink),
Encryption: &storage.EncryptionArgs{
KeySource: pulumi.String(storage.KeySource_Microsoft_Storage),
RequireInfrastructureEncryption: pulumi.Bool(false),
Services: &storage.EncryptionServicesArgs{
Blob: &storage.EncryptionServiceArgs{
Enabled: pulumi.Bool(true),
KeyType: pulumi.String(storage.KeyTypeAccount),
},
File: &storage.EncryptionServiceArgs{
Enabled: pulumi.Bool(true),
KeyType: pulumi.String(storage.KeyTypeAccount),
},
},
},
IsHnsEnabled: pulumi.Bool(true),
KeyPolicy: &storage.KeyPolicyArgs{
KeyExpirationPeriodInDays: pulumi.Int(20),
},
Kind: pulumi.String(storage.KindStorage),
Location: pulumi.String("eastus"),
MinimumTlsVersion: pulumi.String(storage.MinimumTlsVersion_TLS1_2),
ResourceGroupName: pulumi.String("res9101"),
RoutingPreference: &storage.RoutingPreferenceArgs{
PublishInternetEndpoints: pulumi.Bool(true),
PublishMicrosoftEndpoints: pulumi.Bool(true),
RoutingChoice: pulumi.String(storage.RoutingChoiceMicrosoftRouting),
},
SasPolicy: &storage.SasPolicyArgs{
ExpirationAction: pulumi.String(storage.ExpirationActionLog),
SasExpirationPeriod: pulumi.String("1.15:59:59"),
},
Sku: &storage.SkuArgs{
Name: pulumi.String(storage.SkuName_Standard_GRS),
},
Tags: pulumi.StringMap{
"key1": pulumi.String("value1"),
"key2": pulumi.String("value2"),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.storage.StorageAccount;
import com.pulumi.azurenative.storage.StorageAccountArgs;
import com.pulumi.azurenative.storage.inputs.EncryptionArgs;
import com.pulumi.azurenative.storage.inputs.EncryptionServicesArgs;
import com.pulumi.azurenative.storage.inputs.EncryptionServiceArgs;
import com.pulumi.azurenative.storage.inputs.KeyPolicyArgs;
import com.pulumi.azurenative.storage.inputs.RoutingPreferenceArgs;
import com.pulumi.azurenative.storage.inputs.SasPolicyArgs;
import com.pulumi.azurenative.storage.inputs.SkuArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var storageAccount = new StorageAccount("storageAccount", StorageAccountArgs.builder()
.accountName("sto4445")
.allowBlobPublicAccess(false)
.allowSharedKeyAccess(true)
.allowedCopyScope("PrivateLink")
.encryption(EncryptionArgs.builder()
.keySource("Microsoft.Storage")
.requireInfrastructureEncryption(false)
.services(EncryptionServicesArgs.builder()
.blob(EncryptionServiceArgs.builder()
.enabled(true)
.keyType("Account")
.build())
.file(EncryptionServiceArgs.builder()
.enabled(true)
.keyType("Account")
.build())
.build())
.build())
.isHnsEnabled(true)
.keyPolicy(KeyPolicyArgs.builder()
.keyExpirationPeriodInDays(20)
.build())
.kind("Storage")
.location("eastus")
.minimumTlsVersion("TLS1_2")
.resourceGroupName("res9101")
.routingPreference(RoutingPreferenceArgs.builder()
.publishInternetEndpoints(true)
.publishMicrosoftEndpoints(true)
.routingChoice("MicrosoftRouting")
.build())
.sasPolicy(SasPolicyArgs.builder()
.expirationAction("Log")
.sasExpirationPeriod("1.15:59:59")
.build())
.sku(SkuArgs.builder()
.name("Standard_GRS")
.build())
.tags(Map.ofEntries(
Map.entry("key1", "value1"),
Map.entry("key2", "value2")
))
.build());
}
}
import pulumi
import pulumi_azure_native as azure_native
storage_account = azure_native.storage.StorageAccount("storageAccount",
account_name="sto4445",
allow_blob_public_access=False,
allow_shared_key_access=True,
allowed_copy_scope=azure_native.storage.AllowedCopyScope.PRIVATE_LINK,
encryption={
"key_source": azure_native.storage.KeySource.MICROSOFT_STORAGE,
"require_infrastructure_encryption": False,
"services": {
"blob": {
"enabled": True,
"key_type": azure_native.storage.KeyType.ACCOUNT,
},
"file": {
"enabled": True,
"key_type": azure_native.storage.KeyType.ACCOUNT,
},
},
},
is_hns_enabled=True,
key_policy={
"key_expiration_period_in_days": 20,
},
kind=azure_native.storage.Kind.STORAGE,
location="eastus",
minimum_tls_version=azure_native.storage.MinimumTlsVersion.TLS1_2,
resource_group_name="res9101",
routing_preference={
"publish_internet_endpoints": True,
"publish_microsoft_endpoints": True,
"routing_choice": azure_native.storage.RoutingChoice.MICROSOFT_ROUTING,
},
sas_policy={
"expiration_action": azure_native.storage.ExpirationAction.LOG,
"sas_expiration_period": "1.15:59:59",
},
sku={
"name": azure_native.storage.SkuName.STANDARD_GRS,
},
tags={
"key1": "value1",
"key2": "value2",
})
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const storageAccount = new azure_native.storage.StorageAccount("storageAccount", {
accountName: "sto4445",
allowBlobPublicAccess: false,
allowSharedKeyAccess: true,
allowedCopyScope: azure_native.storage.AllowedCopyScope.PrivateLink,
encryption: {
keySource: azure_native.storage.KeySource.Microsoft_Storage,
requireInfrastructureEncryption: false,
services: {
blob: {
enabled: true,
keyType: azure_native.storage.KeyType.Account,
},
file: {
enabled: true,
keyType: azure_native.storage.KeyType.Account,
},
},
},
isHnsEnabled: true,
keyPolicy: {
keyExpirationPeriodInDays: 20,
},
kind: azure_native.storage.Kind.Storage,
location: "eastus",
minimumTlsVersion: azure_native.storage.MinimumTlsVersion.TLS1_2,
resourceGroupName: "res9101",
routingPreference: {
publishInternetEndpoints: true,
publishMicrosoftEndpoints: true,
routingChoice: azure_native.storage.RoutingChoice.MicrosoftRouting,
},
sasPolicy: {
expirationAction: azure_native.storage.ExpirationAction.Log,
sasExpirationPeriod: "1.15:59:59",
},
sku: {
name: azure_native.storage.SkuName.Standard_GRS,
},
tags: {
key1: "value1",
key2: "value2",
},
});
resources:
storageAccount:
type: azure-native:storage:StorageAccount
properties:
accountName: sto4445
allowBlobPublicAccess: false
allowSharedKeyAccess: true
allowedCopyScope: PrivateLink
encryption:
keySource: Microsoft.Storage
requireInfrastructureEncryption: false
services:
blob:
enabled: true
keyType: Account
file:
enabled: true
keyType: Account
isHnsEnabled: true
keyPolicy:
keyExpirationPeriodInDays: 20
kind: Storage
location: eastus
minimumTlsVersion: TLS1_2
resourceGroupName: res9101
routingPreference:
publishInternetEndpoints: true
publishMicrosoftEndpoints: true
routingChoice: MicrosoftRouting
sasPolicy:
expirationAction: Log
sasExpirationPeriod: 1.15:59:59
sku:
name: Standard_GRS
tags:
key1: value1
key2: value2
StorageAccountCreateDisallowPublicNetworkAccess
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var storageAccount = new AzureNative.Storage.StorageAccount("storageAccount", new()
{
AccountName = "sto4445",
AllowBlobPublicAccess = false,
AllowSharedKeyAccess = true,
Encryption = new AzureNative.Storage.Inputs.EncryptionArgs
{
KeySource = AzureNative.Storage.KeySource.Microsoft_Storage,
RequireInfrastructureEncryption = false,
Services = new AzureNative.Storage.Inputs.EncryptionServicesArgs
{
Blob = new AzureNative.Storage.Inputs.EncryptionServiceArgs
{
Enabled = true,
KeyType = AzureNative.Storage.KeyType.Account,
},
File = new AzureNative.Storage.Inputs.EncryptionServiceArgs
{
Enabled = true,
KeyType = AzureNative.Storage.KeyType.Account,
},
},
},
ExtendedLocation = new AzureNative.Storage.Inputs.ExtendedLocationArgs
{
Name = "losangeles001",
Type = AzureNative.Storage.ExtendedLocationTypes.EdgeZone,
},
IsHnsEnabled = true,
KeyPolicy = new AzureNative.Storage.Inputs.KeyPolicyArgs
{
KeyExpirationPeriodInDays = 20,
},
Kind = AzureNative.Storage.Kind.Storage,
Location = "eastus",
MinimumTlsVersion = AzureNative.Storage.MinimumTlsVersion.TLS1_2,
PublicNetworkAccess = AzureNative.Storage.PublicNetworkAccess.Disabled,
ResourceGroupName = "res9101",
RoutingPreference = new AzureNative.Storage.Inputs.RoutingPreferenceArgs
{
PublishInternetEndpoints = true,
PublishMicrosoftEndpoints = true,
RoutingChoice = AzureNative.Storage.RoutingChoice.MicrosoftRouting,
},
SasPolicy = new AzureNative.Storage.Inputs.SasPolicyArgs
{
ExpirationAction = AzureNative.Storage.ExpirationAction.Log,
SasExpirationPeriod = "1.15:59:59",
},
Sku = new AzureNative.Storage.Inputs.SkuArgs
{
Name = AzureNative.Storage.SkuName.Standard_GRS,
},
Tags =
{
{ "key1", "value1" },
{ "key2", "value2" },
},
});
});
package main
import (
storage "github.com/pulumi/pulumi-azure-native-sdk/storage/v2"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := storage.NewStorageAccount(ctx, "storageAccount", &storage.StorageAccountArgs{
AccountName: pulumi.String("sto4445"),
AllowBlobPublicAccess: pulumi.Bool(false),
AllowSharedKeyAccess: pulumi.Bool(true),
Encryption: &storage.EncryptionArgs{
KeySource: pulumi.String(storage.KeySource_Microsoft_Storage),
RequireInfrastructureEncryption: pulumi.Bool(false),
Services: &storage.EncryptionServicesArgs{
Blob: &storage.EncryptionServiceArgs{
Enabled: pulumi.Bool(true),
KeyType: pulumi.String(storage.KeyTypeAccount),
},
File: &storage.EncryptionServiceArgs{
Enabled: pulumi.Bool(true),
KeyType: pulumi.String(storage.KeyTypeAccount),
},
},
},
ExtendedLocation: &storage.ExtendedLocationArgs{
Name: pulumi.String("losangeles001"),
Type: pulumi.String(storage.ExtendedLocationTypesEdgeZone),
},
IsHnsEnabled: pulumi.Bool(true),
KeyPolicy: &storage.KeyPolicyArgs{
KeyExpirationPeriodInDays: pulumi.Int(20),
},
Kind: pulumi.String(storage.KindStorage),
Location: pulumi.String("eastus"),
MinimumTlsVersion: pulumi.String(storage.MinimumTlsVersion_TLS1_2),
PublicNetworkAccess: pulumi.String(storage.PublicNetworkAccessDisabled),
ResourceGroupName: pulumi.String("res9101"),
RoutingPreference: &storage.RoutingPreferenceArgs{
PublishInternetEndpoints: pulumi.Bool(true),
PublishMicrosoftEndpoints: pulumi.Bool(true),
RoutingChoice: pulumi.String(storage.RoutingChoiceMicrosoftRouting),
},
SasPolicy: &storage.SasPolicyArgs{
ExpirationAction: pulumi.String(storage.ExpirationActionLog),
SasExpirationPeriod: pulumi.String("1.15:59:59"),
},
Sku: &storage.SkuArgs{
Name: pulumi.String(storage.SkuName_Standard_GRS),
},
Tags: pulumi.StringMap{
"key1": pulumi.String("value1"),
"key2": pulumi.String("value2"),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.storage.StorageAccount;
import com.pulumi.azurenative.storage.StorageAccountArgs;
import com.pulumi.azurenative.storage.inputs.EncryptionArgs;
import com.pulumi.azurenative.storage.inputs.EncryptionServicesArgs;
import com.pulumi.azurenative.storage.inputs.EncryptionServiceArgs;
import com.pulumi.azurenative.storage.inputs.ExtendedLocationArgs;
import com.pulumi.azurenative.storage.inputs.KeyPolicyArgs;
import com.pulumi.azurenative.storage.inputs.RoutingPreferenceArgs;
import com.pulumi.azurenative.storage.inputs.SasPolicyArgs;
import com.pulumi.azurenative.storage.inputs.SkuArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var storageAccount = new StorageAccount("storageAccount", StorageAccountArgs.builder()
.accountName("sto4445")
.allowBlobPublicAccess(false)
.allowSharedKeyAccess(true)
.encryption(EncryptionArgs.builder()
.keySource("Microsoft.Storage")
.requireInfrastructureEncryption(false)
.services(EncryptionServicesArgs.builder()
.blob(EncryptionServiceArgs.builder()
.enabled(true)
.keyType("Account")
.build())
.file(EncryptionServiceArgs.builder()
.enabled(true)
.keyType("Account")
.build())
.build())
.build())
.extendedLocation(ExtendedLocationArgs.builder()
.name("losangeles001")
.type("EdgeZone")
.build())
.isHnsEnabled(true)
.keyPolicy(KeyPolicyArgs.builder()
.keyExpirationPeriodInDays(20)
.build())
.kind("Storage")
.location("eastus")
.minimumTlsVersion("TLS1_2")
.publicNetworkAccess("Disabled")
.resourceGroupName("res9101")
.routingPreference(RoutingPreferenceArgs.builder()
.publishInternetEndpoints(true)
.publishMicrosoftEndpoints(true)
.routingChoice("MicrosoftRouting")
.build())
.sasPolicy(SasPolicyArgs.builder()
.expirationAction("Log")
.sasExpirationPeriod("1.15:59:59")
.build())
.sku(SkuArgs.builder()
.name("Standard_GRS")
.build())
.tags(Map.ofEntries(
Map.entry("key1", "value1"),
Map.entry("key2", "value2")
))
.build());
}
}
import pulumi
import pulumi_azure_native as azure_native
storage_account = azure_native.storage.StorageAccount("storageAccount",
account_name="sto4445",
allow_blob_public_access=False,
allow_shared_key_access=True,
encryption={
"key_source": azure_native.storage.KeySource.MICROSOFT_STORAGE,
"require_infrastructure_encryption": False,
"services": {
"blob": {
"enabled": True,
"key_type": azure_native.storage.KeyType.ACCOUNT,
},
"file": {
"enabled": True,
"key_type": azure_native.storage.KeyType.ACCOUNT,
},
},
},
extended_location={
"name": "losangeles001",
"type": azure_native.storage.ExtendedLocationTypes.EDGE_ZONE,
},
is_hns_enabled=True,
key_policy={
"key_expiration_period_in_days": 20,
},
kind=azure_native.storage.Kind.STORAGE,
location="eastus",
minimum_tls_version=azure_native.storage.MinimumTlsVersion.TLS1_2,
public_network_access=azure_native.storage.PublicNetworkAccess.DISABLED,
resource_group_name="res9101",
routing_preference={
"publish_internet_endpoints": True,
"publish_microsoft_endpoints": True,
"routing_choice": azure_native.storage.RoutingChoice.MICROSOFT_ROUTING,
},
sas_policy={
"expiration_action": azure_native.storage.ExpirationAction.LOG,
"sas_expiration_period": "1.15:59:59",
},
sku={
"name": azure_native.storage.SkuName.STANDARD_GRS,
},
tags={
"key1": "value1",
"key2": "value2",
})
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const storageAccount = new azure_native.storage.StorageAccount("storageAccount", {
accountName: "sto4445",
allowBlobPublicAccess: false,
allowSharedKeyAccess: true,
encryption: {
keySource: azure_native.storage.KeySource.Microsoft_Storage,
requireInfrastructureEncryption: false,
services: {
blob: {
enabled: true,
keyType: azure_native.storage.KeyType.Account,
},
file: {
enabled: true,
keyType: azure_native.storage.KeyType.Account,
},
},
},
extendedLocation: {
name: "losangeles001",
type: azure_native.storage.ExtendedLocationTypes.EdgeZone,
},
isHnsEnabled: true,
keyPolicy: {
keyExpirationPeriodInDays: 20,
},
kind: azure_native.storage.Kind.Storage,
location: "eastus",
minimumTlsVersion: azure_native.storage.MinimumTlsVersion.TLS1_2,
publicNetworkAccess: azure_native.storage.PublicNetworkAccess.Disabled,
resourceGroupName: "res9101",
routingPreference: {
publishInternetEndpoints: true,
publishMicrosoftEndpoints: true,
routingChoice: azure_native.storage.RoutingChoice.MicrosoftRouting,
},
sasPolicy: {
expirationAction: azure_native.storage.ExpirationAction.Log,
sasExpirationPeriod: "1.15:59:59",
},
sku: {
name: azure_native.storage.SkuName.Standard_GRS,
},
tags: {
key1: "value1",
key2: "value2",
},
});
resources:
storageAccount:
type: azure-native:storage:StorageAccount
properties:
accountName: sto4445
allowBlobPublicAccess: false
allowSharedKeyAccess: true
encryption:
keySource: Microsoft.Storage
requireInfrastructureEncryption: false
services:
blob:
enabled: true
keyType: Account
file:
enabled: true
keyType: Account
extendedLocation:
name: losangeles001
type: EdgeZone
isHnsEnabled: true
keyPolicy:
keyExpirationPeriodInDays: 20
kind: Storage
location: eastus
minimumTlsVersion: TLS1_2
publicNetworkAccess: Disabled
resourceGroupName: res9101
routingPreference:
publishInternetEndpoints: true
publishMicrosoftEndpoints: true
routingChoice: MicrosoftRouting
sasPolicy:
expirationAction: Log
sasExpirationPeriod: 1.15:59:59
sku:
name: Standard_GRS
tags:
key1: value1
key2: value2
StorageAccountCreateDnsEndpointTypeToAzureDnsZone
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var storageAccount = new AzureNative.Storage.StorageAccount("storageAccount", new()
{
AccountName = "sto4445",
AllowBlobPublicAccess = false,
AllowSharedKeyAccess = true,
DefaultToOAuthAuthentication = false,
DnsEndpointType = AzureNative.Storage.DnsEndpointType.AzureDnsZone,
Encryption = new AzureNative.Storage.Inputs.EncryptionArgs
{
KeySource = AzureNative.Storage.KeySource.Microsoft_Storage,
RequireInfrastructureEncryption = false,
Services = new AzureNative.Storage.Inputs.EncryptionServicesArgs
{
Blob = new AzureNative.Storage.Inputs.EncryptionServiceArgs
{
Enabled = true,
KeyType = AzureNative.Storage.KeyType.Account,
},
File = new AzureNative.Storage.Inputs.EncryptionServiceArgs
{
Enabled = true,
KeyType = AzureNative.Storage.KeyType.Account,
},
},
},
ExtendedLocation = new AzureNative.Storage.Inputs.ExtendedLocationArgs
{
Name = "losangeles001",
Type = AzureNative.Storage.ExtendedLocationTypes.EdgeZone,
},
IsHnsEnabled = true,
IsSftpEnabled = true,
KeyPolicy = new AzureNative.Storage.Inputs.KeyPolicyArgs
{
KeyExpirationPeriodInDays = 20,
},
Kind = AzureNative.Storage.Kind.Storage,
Location = "eastus",
MinimumTlsVersion = AzureNative.Storage.MinimumTlsVersion.TLS1_2,
ResourceGroupName = "res9101",
RoutingPreference = new AzureNative.Storage.Inputs.RoutingPreferenceArgs
{
PublishInternetEndpoints = true,
PublishMicrosoftEndpoints = true,
RoutingChoice = AzureNative.Storage.RoutingChoice.MicrosoftRouting,
},
SasPolicy = new AzureNative.Storage.Inputs.SasPolicyArgs
{
ExpirationAction = AzureNative.Storage.ExpirationAction.Log,
SasExpirationPeriod = "1.15:59:59",
},
Sku = new AzureNative.Storage.Inputs.SkuArgs
{
Name = AzureNative.Storage.SkuName.Standard_GRS,
},
Tags =
{
{ "key1", "value1" },
{ "key2", "value2" },
},
});
});
package main
import (
storage "github.com/pulumi/pulumi-azure-native-sdk/storage/v2"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := storage.NewStorageAccount(ctx, "storageAccount", &storage.StorageAccountArgs{
AccountName: pulumi.String("sto4445"),
AllowBlobPublicAccess: pulumi.Bool(false),
AllowSharedKeyAccess: pulumi.Bool(true),
DefaultToOAuthAuthentication: pulumi.Bool(false),
DnsEndpointType: pulumi.String(storage.DnsEndpointTypeAzureDnsZone),
Encryption: &storage.EncryptionArgs{
KeySource: pulumi.String(storage.KeySource_Microsoft_Storage),
RequireInfrastructureEncryption: pulumi.Bool(false),
Services: &storage.EncryptionServicesArgs{
Blob: &storage.EncryptionServiceArgs{
Enabled: pulumi.Bool(true),
KeyType: pulumi.String(storage.KeyTypeAccount),
},
File: &storage.EncryptionServiceArgs{
Enabled: pulumi.Bool(true),
KeyType: pulumi.String(storage.KeyTypeAccount),
},
},
},
ExtendedLocation: &storage.ExtendedLocationArgs{
Name: pulumi.String("losangeles001"),
Type: pulumi.String(storage.ExtendedLocationTypesEdgeZone),
},
IsHnsEnabled: pulumi.Bool(true),
IsSftpEnabled: pulumi.Bool(true),
KeyPolicy: &storage.KeyPolicyArgs{
KeyExpirationPeriodInDays: pulumi.Int(20),
},
Kind: pulumi.String(storage.KindStorage),
Location: pulumi.String("eastus"),
MinimumTlsVersion: pulumi.String(storage.MinimumTlsVersion_TLS1_2),
ResourceGroupName: pulumi.String("res9101"),
RoutingPreference: &storage.RoutingPreferenceArgs{
PublishInternetEndpoints: pulumi.Bool(true),
PublishMicrosoftEndpoints: pulumi.Bool(true),
RoutingChoice: pulumi.String(storage.RoutingChoiceMicrosoftRouting),
},
SasPolicy: &storage.SasPolicyArgs{
ExpirationAction: pulumi.String(storage.ExpirationActionLog),
SasExpirationPeriod: pulumi.String("1.15:59:59"),
},
Sku: &storage.SkuArgs{
Name: pulumi.String(storage.SkuName_Standard_GRS),
},
Tags: pulumi.StringMap{
"key1": pulumi.String("value1"),
"key2": pulumi.String("value2"),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.storage.StorageAccount;
import com.pulumi.azurenative.storage.StorageAccountArgs;
import com.pulumi.azurenative.storage.inputs.EncryptionArgs;
import com.pulumi.azurenative.storage.inputs.EncryptionServicesArgs;
import com.pulumi.azurenative.storage.inputs.EncryptionServiceArgs;
import com.pulumi.azurenative.storage.inputs.ExtendedLocationArgs;
import com.pulumi.azurenative.storage.inputs.KeyPolicyArgs;
import com.pulumi.azurenative.storage.inputs.RoutingPreferenceArgs;
import com.pulumi.azurenative.storage.inputs.SasPolicyArgs;
import com.pulumi.azurenative.storage.inputs.SkuArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var storageAccount = new StorageAccount("storageAccount", StorageAccountArgs.builder()
.accountName("sto4445")
.allowBlobPublicAccess(false)
.allowSharedKeyAccess(true)
.defaultToOAuthAuthentication(false)
.dnsEndpointType("AzureDnsZone")
.encryption(EncryptionArgs.builder()
.keySource("Microsoft.Storage")
.requireInfrastructureEncryption(false)
.services(EncryptionServicesArgs.builder()
.blob(EncryptionServiceArgs.builder()
.enabled(true)
.keyType("Account")
.build())
.file(EncryptionServiceArgs.builder()
.enabled(true)
.keyType("Account")
.build())
.build())
.build())
.extendedLocation(ExtendedLocationArgs.builder()
.name("losangeles001")
.type("EdgeZone")
.build())
.isHnsEnabled(true)
.isSftpEnabled(true)
.keyPolicy(KeyPolicyArgs.builder()
.keyExpirationPeriodInDays(20)
.build())
.kind("Storage")
.location("eastus")
.minimumTlsVersion("TLS1_2")
.resourceGroupName("res9101")
.routingPreference(RoutingPreferenceArgs.builder()
.publishInternetEndpoints(true)
.publishMicrosoftEndpoints(true)
.routingChoice("MicrosoftRouting")
.build())
.sasPolicy(SasPolicyArgs.builder()
.expirationAction("Log")
.sasExpirationPeriod("1.15:59:59")
.build())
.sku(SkuArgs.builder()
.name("Standard_GRS")
.build())
.tags(Map.ofEntries(
Map.entry("key1", "value1"),
Map.entry("key2", "value2")
))
.build());
}
}
import pulumi
import pulumi_azure_native as azure_native
storage_account = azure_native.storage.StorageAccount("storageAccount",
account_name="sto4445",
allow_blob_public_access=False,
allow_shared_key_access=True,
default_to_o_auth_authentication=False,
dns_endpoint_type=azure_native.storage.DnsEndpointType.AZURE_DNS_ZONE,
encryption={
"key_source": azure_native.storage.KeySource.MICROSOFT_STORAGE,
"require_infrastructure_encryption": False,
"services": {
"blob": {
"enabled": True,
"key_type": azure_native.storage.KeyType.ACCOUNT,
},
"file": {
"enabled": True,
"key_type": azure_native.storage.KeyType.ACCOUNT,
},
},
},
extended_location={
"name": "losangeles001",
"type": azure_native.storage.ExtendedLocationTypes.EDGE_ZONE,
},
is_hns_enabled=True,
is_sftp_enabled=True,
key_policy={
"key_expiration_period_in_days": 20,
},
kind=azure_native.storage.Kind.STORAGE,
location="eastus",
minimum_tls_version=azure_native.storage.MinimumTlsVersion.TLS1_2,
resource_group_name="res9101",
routing_preference={
"publish_internet_endpoints": True,
"publish_microsoft_endpoints": True,
"routing_choice": azure_native.storage.RoutingChoice.MICROSOFT_ROUTING,
},
sas_policy={
"expiration_action": azure_native.storage.ExpirationAction.LOG,
"sas_expiration_period": "1.15:59:59",
},
sku={
"name": azure_native.storage.SkuName.STANDARD_GRS,
},
tags={
"key1": "value1",
"key2": "value2",
})
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const storageAccount = new azure_native.storage.StorageAccount("storageAccount", {
accountName: "sto4445",
allowBlobPublicAccess: false,
allowSharedKeyAccess: true,
defaultToOAuthAuthentication: false,
dnsEndpointType: azure_native.storage.DnsEndpointType.AzureDnsZone,
encryption: {
keySource: azure_native.storage.KeySource.Microsoft_Storage,
requireInfrastructureEncryption: false,
services: {
blob: {
enabled: true,
keyType: azure_native.storage.KeyType.Account,
},
file: {
enabled: true,
keyType: azure_native.storage.KeyType.Account,
},
},
},
extendedLocation: {
name: "losangeles001",
type: azure_native.storage.ExtendedLocationTypes.EdgeZone,
},
isHnsEnabled: true,
isSftpEnabled: true,
keyPolicy: {
keyExpirationPeriodInDays: 20,
},
kind: azure_native.storage.Kind.Storage,
location: "eastus",
minimumTlsVersion: azure_native.storage.MinimumTlsVersion.TLS1_2,
resourceGroupName: "res9101",
routingPreference: {
publishInternetEndpoints: true,
publishMicrosoftEndpoints: true,
routingChoice: azure_native.storage.RoutingChoice.MicrosoftRouting,
},
sasPolicy: {
expirationAction: azure_native.storage.ExpirationAction.Log,
sasExpirationPeriod: "1.15:59:59",
},
sku: {
name: azure_native.storage.SkuName.Standard_GRS,
},
tags: {
key1: "value1",
key2: "value2",
},
});
resources:
storageAccount:
type: azure-native:storage:StorageAccount
properties:
accountName: sto4445
allowBlobPublicAccess: false
allowSharedKeyAccess: true
defaultToOAuthAuthentication: false
dnsEndpointType: AzureDnsZone
encryption:
keySource: Microsoft.Storage
requireInfrastructureEncryption: false
services:
blob:
enabled: true
keyType: Account
file:
enabled: true
keyType: Account
extendedLocation:
name: losangeles001
type: EdgeZone
isHnsEnabled: true
isSftpEnabled: true
keyPolicy:
keyExpirationPeriodInDays: 20
kind: Storage
location: eastus
minimumTlsVersion: TLS1_2
resourceGroupName: res9101
routingPreference:
publishInternetEndpoints: true
publishMicrosoftEndpoints: true
routingChoice: MicrosoftRouting
sasPolicy:
expirationAction: Log
sasExpirationPeriod: 1.15:59:59
sku:
name: Standard_GRS
tags:
key1: value1
key2: value2
StorageAccountCreateDnsEndpointTypeToStandard
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var storageAccount = new AzureNative.Storage.StorageAccount("storageAccount", new()
{
AccountName = "sto4445",
AllowBlobPublicAccess = false,
AllowSharedKeyAccess = true,
DefaultToOAuthAuthentication = false,
DnsEndpointType = AzureNative.Storage.DnsEndpointType.Standard,
Encryption = new AzureNative.Storage.Inputs.EncryptionArgs
{
KeySource = AzureNative.Storage.KeySource.Microsoft_Storage,
RequireInfrastructureEncryption = false,
Services = new AzureNative.Storage.Inputs.EncryptionServicesArgs
{
Blob = new AzureNative.Storage.Inputs.EncryptionServiceArgs
{
Enabled = true,
KeyType = AzureNative.Storage.KeyType.Account,
},
File = new AzureNative.Storage.Inputs.EncryptionServiceArgs
{
Enabled = true,
KeyType = AzureNative.Storage.KeyType.Account,
},
},
},
ExtendedLocation = new AzureNative.Storage.Inputs.ExtendedLocationArgs
{
Name = "losangeles001",
Type = AzureNative.Storage.ExtendedLocationTypes.EdgeZone,
},
IsHnsEnabled = true,
IsSftpEnabled = true,
KeyPolicy = new AzureNative.Storage.Inputs.KeyPolicyArgs
{
KeyExpirationPeriodInDays = 20,
},
Kind = AzureNative.Storage.Kind.Storage,
Location = "eastus",
MinimumTlsVersion = AzureNative.Storage.MinimumTlsVersion.TLS1_2,
ResourceGroupName = "res9101",
RoutingPreference = new AzureNative.Storage.Inputs.RoutingPreferenceArgs
{
PublishInternetEndpoints = true,
PublishMicrosoftEndpoints = true,
RoutingChoice = AzureNative.Storage.RoutingChoice.MicrosoftRouting,
},
SasPolicy = new AzureNative.Storage.Inputs.SasPolicyArgs
{
ExpirationAction = AzureNative.Storage.ExpirationAction.Log,
SasExpirationPeriod = "1.15:59:59",
},
Sku = new AzureNative.Storage.Inputs.SkuArgs
{
Name = AzureNative.Storage.SkuName.Standard_GRS,
},
Tags =
{
{ "key1", "value1" },
{ "key2", "value2" },
},
});
});
package main
import (
storage "github.com/pulumi/pulumi-azure-native-sdk/storage/v2"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := storage.NewStorageAccount(ctx, "storageAccount", &storage.StorageAccountArgs{
AccountName: pulumi.String("sto4445"),
AllowBlobPublicAccess: pulumi.Bool(false),
AllowSharedKeyAccess: pulumi.Bool(true),
DefaultToOAuthAuthentication: pulumi.Bool(false),
DnsEndpointType: pulumi.String(storage.DnsEndpointTypeStandard),
Encryption: &storage.EncryptionArgs{
KeySource: pulumi.String(storage.KeySource_Microsoft_Storage),
RequireInfrastructureEncryption: pulumi.Bool(false),
Services: &storage.EncryptionServicesArgs{
Blob: &storage.EncryptionServiceArgs{
Enabled: pulumi.Bool(true),
KeyType: pulumi.String(storage.KeyTypeAccount),
},
File: &storage.EncryptionServiceArgs{
Enabled: pulumi.Bool(true),
KeyType: pulumi.String(storage.KeyTypeAccount),
},
},
},
ExtendedLocation: &storage.ExtendedLocationArgs{
Name: pulumi.String("losangeles001"),
Type: pulumi.String(storage.ExtendedLocationTypesEdgeZone),
},
IsHnsEnabled: pulumi.Bool(true),
IsSftpEnabled: pulumi.Bool(true),
KeyPolicy: &storage.KeyPolicyArgs{
KeyExpirationPeriodInDays: pulumi.Int(20),
},
Kind: pulumi.String(storage.KindStorage),
Location: pulumi.String("eastus"),
MinimumTlsVersion: pulumi.String(storage.MinimumTlsVersion_TLS1_2),
ResourceGroupName: pulumi.String("res9101"),
RoutingPreference: &storage.RoutingPreferenceArgs{
PublishInternetEndpoints: pulumi.Bool(true),
PublishMicrosoftEndpoints: pulumi.Bool(true),
RoutingChoice: pulumi.String(storage.RoutingChoiceMicrosoftRouting),
},
SasPolicy: &storage.SasPolicyArgs{
ExpirationAction: pulumi.String(storage.ExpirationActionLog),
SasExpirationPeriod: pulumi.String("1.15:59:59"),
},
Sku: &storage.SkuArgs{
Name: pulumi.String(storage.SkuName_Standard_GRS),
},
Tags: pulumi.StringMap{
"key1": pulumi.String("value1"),
"key2": pulumi.String("value2"),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.storage.StorageAccount;
import com.pulumi.azurenative.storage.StorageAccountArgs;
import com.pulumi.azurenative.storage.inputs.EncryptionArgs;
import com.pulumi.azurenative.storage.inputs.EncryptionServicesArgs;
import com.pulumi.azurenative.storage.inputs.EncryptionServiceArgs;
import com.pulumi.azurenative.storage.inputs.ExtendedLocationArgs;
import com.pulumi.azurenative.storage.inputs.KeyPolicyArgs;
import com.pulumi.azurenative.storage.inputs.RoutingPreferenceArgs;
import com.pulumi.azurenative.storage.inputs.SasPolicyArgs;
import com.pulumi.azurenative.storage.inputs.SkuArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var storageAccount = new StorageAccount("storageAccount", StorageAccountArgs.builder()
.accountName("sto4445")
.allowBlobPublicAccess(false)
.allowSharedKeyAccess(true)
.defaultToOAuthAuthentication(false)
.dnsEndpointType("Standard")
.encryption(EncryptionArgs.builder()
.keySource("Microsoft.Storage")
.requireInfrastructureEncryption(false)
.services(EncryptionServicesArgs.builder()
.blob(EncryptionServiceArgs.builder()
.enabled(true)
.keyType("Account")
.build())
.file(EncryptionServiceArgs.builder()
.enabled(true)
.keyType("Account")
.build())
.build())
.build())
.extendedLocation(ExtendedLocationArgs.builder()
.name("losangeles001")
.type("EdgeZone")
.build())
.isHnsEnabled(true)
.isSftpEnabled(true)
.keyPolicy(KeyPolicyArgs.builder()
.keyExpirationPeriodInDays(20)
.build())
.kind("Storage")
.location("eastus")
.minimumTlsVersion("TLS1_2")
.resourceGroupName("res9101")
.routingPreference(RoutingPreferenceArgs.builder()
.publishInternetEndpoints(true)
.publishMicrosoftEndpoints(true)
.routingChoice("MicrosoftRouting")
.build())
.sasPolicy(SasPolicyArgs.builder()
.expirationAction("Log")
.sasExpirationPeriod("1.15:59:59")
.build())
.sku(SkuArgs.builder()
.name("Standard_GRS")
.build())
.tags(Map.ofEntries(
Map.entry("key1", "value1"),
Map.entry("key2", "value2")
))
.build());
}
}
import pulumi
import pulumi_azure_native as azure_native
storage_account = azure_native.storage.StorageAccount("storageAccount",
account_name="sto4445",
allow_blob_public_access=False,
allow_shared_key_access=True,
default_to_o_auth_authentication=False,
dns_endpoint_type=azure_native.storage.DnsEndpointType.STANDARD,
encryption={
"key_source": azure_native.storage.KeySource.MICROSOFT_STORAGE,
"require_infrastructure_encryption": False,
"services": {
"blob": {
"enabled": True,
"key_type": azure_native.storage.KeyType.ACCOUNT,
},
"file": {
"enabled": True,
"key_type": azure_native.storage.KeyType.ACCOUNT,
},
},
},
extended_location={
"name": "losangeles001",
"type": azure_native.storage.ExtendedLocationTypes.EDGE_ZONE,
},
is_hns_enabled=True,
is_sftp_enabled=True,
key_policy={
"key_expiration_period_in_days": 20,
},
kind=azure_native.storage.Kind.STORAGE,
location="eastus",
minimum_tls_version=azure_native.storage.MinimumTlsVersion.TLS1_2,
resource_group_name="res9101",
routing_preference={
"publish_internet_endpoints": True,
"publish_microsoft_endpoints": True,
"routing_choice": azure_native.storage.RoutingChoice.MICROSOFT_ROUTING,
},
sas_policy={
"expiration_action": azure_native.storage.ExpirationAction.LOG,
"sas_expiration_period": "1.15:59:59",
},
sku={
"name": azure_native.storage.SkuName.STANDARD_GRS,
},
tags={
"key1": "value1",
"key2": "value2",
})
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const storageAccount = new azure_native.storage.StorageAccount("storageAccount", {
accountName: "sto4445",
allowBlobPublicAccess: false,
allowSharedKeyAccess: true,
defaultToOAuthAuthentication: false,
dnsEndpointType: azure_native.storage.DnsEndpointType.Standard,
encryption: {
keySource: azure_native.storage.KeySource.Microsoft_Storage,
requireInfrastructureEncryption: false,
services: {
blob: {
enabled: true,
keyType: azure_native.storage.KeyType.Account,
},
file: {
enabled: true,
keyType: azure_native.storage.KeyType.Account,
},
},
},
extendedLocation: {
name: "losangeles001",
type: azure_native.storage.ExtendedLocationTypes.EdgeZone,
},
isHnsEnabled: true,
isSftpEnabled: true,
keyPolicy: {
keyExpirationPeriodInDays: 20,
},
kind: azure_native.storage.Kind.Storage,
location: "eastus",
minimumTlsVersion: azure_native.storage.MinimumTlsVersion.TLS1_2,
resourceGroupName: "res9101",
routingPreference: {
publishInternetEndpoints: true,
publishMicrosoftEndpoints: true,
routingChoice: azure_native.storage.RoutingChoice.MicrosoftRouting,
},
sasPolicy: {
expirationAction: azure_native.storage.ExpirationAction.Log,
sasExpirationPeriod: "1.15:59:59",
},
sku: {
name: azure_native.storage.SkuName.Standard_GRS,
},
tags: {
key1: "value1",
key2: "value2",
},
});
resources:
storageAccount:
type: azure-native:storage:StorageAccount
properties:
accountName: sto4445
allowBlobPublicAccess: false
allowSharedKeyAccess: true
defaultToOAuthAuthentication: false
dnsEndpointType: Standard
encryption:
keySource: Microsoft.Storage
requireInfrastructureEncryption: false
services:
blob:
enabled: true
keyType: Account
file:
enabled: true
keyType: Account
extendedLocation:
name: losangeles001
type: EdgeZone
isHnsEnabled: true
isSftpEnabled: true
keyPolicy:
keyExpirationPeriodInDays: 20
kind: Storage
location: eastus
minimumTlsVersion: TLS1_2
resourceGroupName: res9101
routingPreference:
publishInternetEndpoints: true
publishMicrosoftEndpoints: true
routingChoice: MicrosoftRouting
sasPolicy:
expirationAction: Log
sasExpirationPeriod: 1.15:59:59
sku:
name: Standard_GRS
tags:
key1: value1
key2: value2
StorageAccountCreateEnablePublicNetworkAccess
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var storageAccount = new AzureNative.Storage.StorageAccount("storageAccount", new()
{
AccountName = "sto4445",
AllowBlobPublicAccess = false,
AllowSharedKeyAccess = true,
Encryption = new AzureNative.Storage.Inputs.EncryptionArgs
{
KeySource = AzureNative.Storage.KeySource.Microsoft_Storage,
RequireInfrastructureEncryption = false,
Services = new AzureNative.Storage.Inputs.EncryptionServicesArgs
{
Blob = new AzureNative.Storage.Inputs.EncryptionServiceArgs
{
Enabled = true,
KeyType = AzureNative.Storage.KeyType.Account,
},
File = new AzureNative.Storage.Inputs.EncryptionServiceArgs
{
Enabled = true,
KeyType = AzureNative.Storage.KeyType.Account,
},
},
},
ExtendedLocation = new AzureNative.Storage.Inputs.ExtendedLocationArgs
{
Name = "losangeles001",
Type = AzureNative.Storage.ExtendedLocationTypes.EdgeZone,
},
IsHnsEnabled = true,
KeyPolicy = new AzureNative.Storage.Inputs.KeyPolicyArgs
{
KeyExpirationPeriodInDays = 20,
},
Kind = AzureNative.Storage.Kind.Storage,
Location = "eastus",
MinimumTlsVersion = AzureNative.Storage.MinimumTlsVersion.TLS1_2,
PublicNetworkAccess = AzureNative.Storage.PublicNetworkAccess.Enabled,
ResourceGroupName = "res9101",
RoutingPreference = new AzureNative.Storage.Inputs.RoutingPreferenceArgs
{
PublishInternetEndpoints = true,
PublishMicrosoftEndpoints = true,
RoutingChoice = AzureNative.Storage.RoutingChoice.MicrosoftRouting,
},
SasPolicy = new AzureNative.Storage.Inputs.SasPolicyArgs
{
ExpirationAction = AzureNative.Storage.ExpirationAction.Log,
SasExpirationPeriod = "1.15:59:59",
},
Sku = new AzureNative.Storage.Inputs.SkuArgs
{
Name = AzureNative.Storage.SkuName.Standard_GRS,
},
Tags =
{
{ "key1", "value1" },
{ "key2", "value2" },
},
});
});
package main
import (
storage "github.com/pulumi/pulumi-azure-native-sdk/storage/v2"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := storage.NewStorageAccount(ctx, "storageAccount", &storage.StorageAccountArgs{
AccountName: pulumi.String("sto4445"),
AllowBlobPublicAccess: pulumi.Bool(false),
AllowSharedKeyAccess: pulumi.Bool(true),
Encryption: &storage.EncryptionArgs{
KeySource: pulumi.String(storage.KeySource_Microsoft_Storage),
RequireInfrastructureEncryption: pulumi.Bool(false),
Services: &storage.EncryptionServicesArgs{
Blob: &storage.EncryptionServiceArgs{
Enabled: pulumi.Bool(true),
KeyType: pulumi.String(storage.KeyTypeAccount),
},
File: &storage.EncryptionServiceArgs{
Enabled: pulumi.Bool(true),
KeyType: pulumi.String(storage.KeyTypeAccount),
},
},
},
ExtendedLocation: &storage.ExtendedLocationArgs{
Name: pulumi.String("losangeles001"),
Type: pulumi.String(storage.ExtendedLocationTypesEdgeZone),
},
IsHnsEnabled: pulumi.Bool(true),
KeyPolicy: &storage.KeyPolicyArgs{
KeyExpirationPeriodInDays: pulumi.Int(20),
},
Kind: pulumi.String(storage.KindStorage),
Location: pulumi.String("eastus"),
MinimumTlsVersion: pulumi.String(storage.MinimumTlsVersion_TLS1_2),
PublicNetworkAccess: pulumi.String(storage.PublicNetworkAccessEnabled),
ResourceGroupName: pulumi.String("res9101"),
RoutingPreference: &storage.RoutingPreferenceArgs{
PublishInternetEndpoints: pulumi.Bool(true),
PublishMicrosoftEndpoints: pulumi.Bool(true),
RoutingChoice: pulumi.String(storage.RoutingChoiceMicrosoftRouting),
},
SasPolicy: &storage.SasPolicyArgs{
ExpirationAction: pulumi.String(storage.ExpirationActionLog),
SasExpirationPeriod: pulumi.String("1.15:59:59"),
},
Sku: &storage.SkuArgs{
Name: pulumi.String(storage.SkuName_Standard_GRS),
},
Tags: pulumi.StringMap{
"key1": pulumi.String("value1"),
"key2": pulumi.String("value2"),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.storage.StorageAccount;
import com.pulumi.azurenative.storage.StorageAccountArgs;
import com.pulumi.azurenative.storage.inputs.EncryptionArgs;
import com.pulumi.azurenative.storage.inputs.EncryptionServicesArgs;
import com.pulumi.azurenative.storage.inputs.EncryptionServiceArgs;
import com.pulumi.azurenative.storage.inputs.ExtendedLocationArgs;
import com.pulumi.azurenative.storage.inputs.KeyPolicyArgs;
import com.pulumi.azurenative.storage.inputs.RoutingPreferenceArgs;
import com.pulumi.azurenative.storage.inputs.SasPolicyArgs;
import com.pulumi.azurenative.storage.inputs.SkuArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var storageAccount = new StorageAccount("storageAccount", StorageAccountArgs.builder()
.accountName("sto4445")
.allowBlobPublicAccess(false)
.allowSharedKeyAccess(true)
.encryption(EncryptionArgs.builder()
.keySource("Microsoft.Storage")
.requireInfrastructureEncryption(false)
.services(EncryptionServicesArgs.builder()
.blob(EncryptionServiceArgs.builder()
.enabled(true)
.keyType("Account")
.build())
.file(EncryptionServiceArgs.builder()
.enabled(true)
.keyType("Account")
.build())
.build())
.build())
.extendedLocation(ExtendedLocationArgs.builder()
.name("losangeles001")
.type("EdgeZone")
.build())
.isHnsEnabled(true)
.keyPolicy(KeyPolicyArgs.builder()
.keyExpirationPeriodInDays(20)
.build())
.kind("Storage")
.location("eastus")
.minimumTlsVersion("TLS1_2")
.publicNetworkAccess("Enabled")
.resourceGroupName("res9101")
.routingPreference(RoutingPreferenceArgs.builder()
.publishInternetEndpoints(true)
.publishMicrosoftEndpoints(true)
.routingChoice("MicrosoftRouting")
.build())
.sasPolicy(SasPolicyArgs.builder()
.expirationAction("Log")
.sasExpirationPeriod("1.15:59:59")
.build())
.sku(SkuArgs.builder()
.name("Standard_GRS")
.build())
.tags(Map.ofEntries(
Map.entry("key1", "value1"),
Map.entry("key2", "value2")
))
.build());
}
}
import pulumi
import pulumi_azure_native as azure_native
storage_account = azure_native.storage.StorageAccount("storageAccount",
account_name="sto4445",
allow_blob_public_access=False,
allow_shared_key_access=True,
encryption={
"key_source": azure_native.storage.KeySource.MICROSOFT_STORAGE,
"require_infrastructure_encryption": False,
"services": {
"blob": {
"enabled": True,
"key_type": azure_native.storage.KeyType.ACCOUNT,
},
"file": {
"enabled": True,
"key_type": azure_native.storage.KeyType.ACCOUNT,
},
},
},
extended_location={
"name": "losangeles001",
"type": azure_native.storage.ExtendedLocationTypes.EDGE_ZONE,
},
is_hns_enabled=True,
key_policy={
"key_expiration_period_in_days": 20,
},
kind=azure_native.storage.Kind.STORAGE,
location="eastus",
minimum_tls_version=azure_native.storage.MinimumTlsVersion.TLS1_2,
public_network_access=azure_native.storage.PublicNetworkAccess.ENABLED,
resource_group_name="res9101",
routing_preference={
"publish_internet_endpoints": True,
"publish_microsoft_endpoints": True,
"routing_choice": azure_native.storage.RoutingChoice.MICROSOFT_ROUTING,
},
sas_policy={
"expiration_action": azure_native.storage.ExpirationAction.LOG,
"sas_expiration_period": "1.15:59:59",
},
sku={
"name": azure_native.storage.SkuName.STANDARD_GRS,
},
tags={
"key1": "value1",
"key2": "value2",
})
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const storageAccount = new azure_native.storage.StorageAccount("storageAccount", {
accountName: "sto4445",
allowBlobPublicAccess: false,
allowSharedKeyAccess: true,
encryption: {
keySource: azure_native.storage.KeySource.Microsoft_Storage,
requireInfrastructureEncryption: false,
services: {
blob: {
enabled: true,
keyType: azure_native.storage.KeyType.Account,
},
file: {
enabled: true,
keyType: azure_native.storage.KeyType.Account,
},
},
},
extendedLocation: {
name: "losangeles001",
type: azure_native.storage.ExtendedLocationTypes.EdgeZone,
},
isHnsEnabled: true,
keyPolicy: {
keyExpirationPeriodInDays: 20,
},
kind: azure_native.storage.Kind.Storage,
location: "eastus",
minimumTlsVersion: azure_native.storage.MinimumTlsVersion.TLS1_2,
publicNetworkAccess: azure_native.storage.PublicNetworkAccess.Enabled,
resourceGroupName: "res9101",
routingPreference: {
publishInternetEndpoints: true,
publishMicrosoftEndpoints: true,
routingChoice: azure_native.storage.RoutingChoice.MicrosoftRouting,
},
sasPolicy: {
expirationAction: azure_native.storage.ExpirationAction.Log,
sasExpirationPeriod: "1.15:59:59",
},
sku: {
name: azure_native.storage.SkuName.Standard_GRS,
},
tags: {
key1: "value1",
key2: "value2",
},
});
resources:
storageAccount:
type: azure-native:storage:StorageAccount
properties:
accountName: sto4445
allowBlobPublicAccess: false
allowSharedKeyAccess: true
encryption:
keySource: Microsoft.Storage
requireInfrastructureEncryption: false
services:
blob:
enabled: true
keyType: Account
file:
enabled: true
keyType: Account
extendedLocation:
name: losangeles001
type: EdgeZone
isHnsEnabled: true
keyPolicy:
keyExpirationPeriodInDays: 20
kind: Storage
location: eastus
minimumTlsVersion: TLS1_2
publicNetworkAccess: Enabled
resourceGroupName: res9101
routingPreference:
publishInternetEndpoints: true
publishMicrosoftEndpoints: true
routingChoice: MicrosoftRouting
sasPolicy:
expirationAction: Log
sasExpirationPeriod: 1.15:59:59
sku:
name: Standard_GRS
tags:
key1: value1
key2: value2
StorageAccountCreatePremiumBlockBlobStorage
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var storageAccount = new AzureNative.Storage.StorageAccount("storageAccount", new()
{
AccountName = "sto4445",
AllowSharedKeyAccess = true,
Encryption = new AzureNative.Storage.Inputs.EncryptionArgs
{
KeySource = AzureNative.Storage.KeySource.Microsoft_Storage,
RequireInfrastructureEncryption = false,
Services = new AzureNative.Storage.Inputs.EncryptionServicesArgs
{
Blob = new AzureNative.Storage.Inputs.EncryptionServiceArgs
{
Enabled = true,
KeyType = AzureNative.Storage.KeyType.Account,
},
File = new AzureNative.Storage.Inputs.EncryptionServiceArgs
{
Enabled = true,
KeyType = AzureNative.Storage.KeyType.Account,
},
},
},
Kind = AzureNative.Storage.Kind.BlockBlobStorage,
Location = "eastus",
MinimumTlsVersion = AzureNative.Storage.MinimumTlsVersion.TLS1_2,
ResourceGroupName = "res9101",
Sku = new AzureNative.Storage.Inputs.SkuArgs
{
Name = AzureNative.Storage.SkuName.Premium_LRS,
},
Tags =
{
{ "key1", "value1" },
{ "key2", "value2" },
},
});
});
package main
import (
storage "github.com/pulumi/pulumi-azure-native-sdk/storage/v2"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := storage.NewStorageAccount(ctx, "storageAccount", &storage.StorageAccountArgs{
AccountName: pulumi.String("sto4445"),
AllowSharedKeyAccess: pulumi.Bool(true),
Encryption: &storage.EncryptionArgs{
KeySource: pulumi.String(storage.KeySource_Microsoft_Storage),
RequireInfrastructureEncryption: pulumi.Bool(false),
Services: &storage.EncryptionServicesArgs{
Blob: &storage.EncryptionServiceArgs{
Enabled: pulumi.Bool(true),
KeyType: pulumi.String(storage.KeyTypeAccount),
},
File: &storage.EncryptionServiceArgs{
Enabled: pulumi.Bool(true),
KeyType: pulumi.String(storage.KeyTypeAccount),
},
},
},
Kind: pulumi.String(storage.KindBlockBlobStorage),
Location: pulumi.String("eastus"),
MinimumTlsVersion: pulumi.String(storage.MinimumTlsVersion_TLS1_2),
ResourceGroupName: pulumi.String("res9101"),
Sku: &storage.SkuArgs{
Name: pulumi.String(storage.SkuName_Premium_LRS),
},
Tags: pulumi.StringMap{
"key1": pulumi.String("value1"),
"key2": pulumi.String("value2"),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.storage.StorageAccount;
import com.pulumi.azurenative.storage.StorageAccountArgs;
import com.pulumi.azurenative.storage.inputs.EncryptionArgs;
import com.pulumi.azurenative.storage.inputs.EncryptionServicesArgs;
import com.pulumi.azurenative.storage.inputs.EncryptionServiceArgs;
import com.pulumi.azurenative.storage.inputs.SkuArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var storageAccount = new StorageAccount("storageAccount", StorageAccountArgs.builder()
.accountName("sto4445")
.allowSharedKeyAccess(true)
.encryption(EncryptionArgs.builder()
.keySource("Microsoft.Storage")
.requireInfrastructureEncryption(false)
.services(EncryptionServicesArgs.builder()
.blob(EncryptionServiceArgs.builder()
.enabled(true)
.keyType("Account")
.build())
.file(EncryptionServiceArgs.builder()
.enabled(true)
.keyType("Account")
.build())
.build())
.build())
.kind("BlockBlobStorage")
.location("eastus")
.minimumTlsVersion("TLS1_2")
.resourceGroupName("res9101")
.sku(SkuArgs.builder()
.name("Premium_LRS")
.build())
.tags(Map.ofEntries(
Map.entry("key1", "value1"),
Map.entry("key2", "value2")
))
.build());
}
}
import pulumi
import pulumi_azure_native as azure_native
storage_account = azure_native.storage.StorageAccount("storageAccount",
account_name="sto4445",
allow_shared_key_access=True,
encryption={
"key_source": azure_native.storage.KeySource.MICROSOFT_STORAGE,
"require_infrastructure_encryption": False,
"services": {
"blob": {
"enabled": True,
"key_type": azure_native.storage.KeyType.ACCOUNT,
},
"file": {
"enabled": True,
"key_type": azure_native.storage.KeyType.ACCOUNT,
},
},
},
kind=azure_native.storage.Kind.BLOCK_BLOB_STORAGE,
location="eastus",
minimum_tls_version=azure_native.storage.MinimumTlsVersion.TLS1_2,
resource_group_name="res9101",
sku={
"name": azure_native.storage.SkuName.PREMIUM_LRS,
},
tags={
"key1": "value1",
"key2": "value2",
})
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const storageAccount = new azure_native.storage.StorageAccount("storageAccount", {
accountName: "sto4445",
allowSharedKeyAccess: true,
encryption: {
keySource: azure_native.storage.KeySource.Microsoft_Storage,
requireInfrastructureEncryption: false,
services: {
blob: {
enabled: true,
keyType: azure_native.storage.KeyType.Account,
},
file: {
enabled: true,
keyType: azure_native.storage.KeyType.Account,
},
},
},
kind: azure_native.storage.Kind.BlockBlobStorage,
location: "eastus",
minimumTlsVersion: azure_native.storage.MinimumTlsVersion.TLS1_2,
resourceGroupName: "res9101",
sku: {
name: azure_native.storage.SkuName.Premium_LRS,
},
tags: {
key1: "value1",
key2: "value2",
},
});
resources:
storageAccount:
type: azure-native:storage:StorageAccount
properties:
accountName: sto4445
allowSharedKeyAccess: true
encryption:
keySource: Microsoft.Storage
requireInfrastructureEncryption: false
services:
blob:
enabled: true
keyType: Account
file:
enabled: true
keyType: Account
kind: BlockBlobStorage
location: eastus
minimumTlsVersion: TLS1_2
resourceGroupName: res9101
sku:
name: Premium_LRS
tags:
key1: value1
key2: value2
StorageAccountCreateWithImmutabilityPolicy
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var storageAccount = new AzureNative.Storage.StorageAccount("storageAccount", new()
{
AccountName = "sto4445",
ExtendedLocation = new AzureNative.Storage.Inputs.ExtendedLocationArgs
{
Name = "losangeles001",
Type = AzureNative.Storage.ExtendedLocationTypes.EdgeZone,
},
ImmutableStorageWithVersioning = new AzureNative.Storage.Inputs.ImmutableStorageAccountArgs
{
Enabled = true,
ImmutabilityPolicy = new AzureNative.Storage.Inputs.AccountImmutabilityPolicyPropertiesArgs
{
AllowProtectedAppendWrites = true,
ImmutabilityPeriodSinceCreationInDays = 15,
State = AzureNative.Storage.AccountImmutabilityPolicyState.Unlocked,
},
},
Kind = AzureNative.Storage.Kind.Storage,
Location = "eastus",
ResourceGroupName = "res9101",
Sku = new AzureNative.Storage.Inputs.SkuArgs
{
Name = AzureNative.Storage.SkuName.Standard_GRS,
},
});
});
package main
import (
storage "github.com/pulumi/pulumi-azure-native-sdk/storage/v2"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := storage.NewStorageAccount(ctx, "storageAccount", &storage.StorageAccountArgs{
AccountName: pulumi.String("sto4445"),
ExtendedLocation: &storage.ExtendedLocationArgs{
Name: pulumi.String("losangeles001"),
Type: pulumi.String(storage.ExtendedLocationTypesEdgeZone),
},
ImmutableStorageWithVersioning: &storage.ImmutableStorageAccountArgs{
Enabled: pulumi.Bool(true),
ImmutabilityPolicy: &storage.AccountImmutabilityPolicyPropertiesArgs{
AllowProtectedAppendWrites: pulumi.Bool(true),
ImmutabilityPeriodSinceCreationInDays: pulumi.Int(15),
State: pulumi.String(storage.AccountImmutabilityPolicyStateUnlocked),
},
},
Kind: pulumi.String(storage.KindStorage),
Location: pulumi.String("eastus"),
ResourceGroupName: pulumi.String("res9101"),
Sku: &storage.SkuArgs{
Name: pulumi.String(storage.SkuName_Standard_GRS),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.storage.StorageAccount;
import com.pulumi.azurenative.storage.StorageAccountArgs;
import com.pulumi.azurenative.storage.inputs.ExtendedLocationArgs;
import com.pulumi.azurenative.storage.inputs.ImmutableStorageAccountArgs;
import com.pulumi.azurenative.storage.inputs.AccountImmutabilityPolicyPropertiesArgs;
import com.pulumi.azurenative.storage.inputs.SkuArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var storageAccount = new StorageAccount("storageAccount", StorageAccountArgs.builder()
.accountName("sto4445")
.extendedLocation(ExtendedLocationArgs.builder()
.name("losangeles001")
.type("EdgeZone")
.build())
.immutableStorageWithVersioning(ImmutableStorageAccountArgs.builder()
.enabled(true)
.immutabilityPolicy(AccountImmutabilityPolicyPropertiesArgs.builder()
.allowProtectedAppendWrites(true)
.immutabilityPeriodSinceCreationInDays(15)
.state("Unlocked")
.build())
.build())
.kind("Storage")
.location("eastus")
.resourceGroupName("res9101")
.sku(SkuArgs.builder()
.name("Standard_GRS")
.build())
.build());
}
}
import pulumi
import pulumi_azure_native as azure_native
storage_account = azure_native.storage.StorageAccount("storageAccount",
account_name="sto4445",
extended_location={
"name": "losangeles001",
"type": azure_native.storage.ExtendedLocationTypes.EDGE_ZONE,
},
immutable_storage_with_versioning={
"enabled": True,
"immutability_policy": {
"allow_protected_append_writes": True,
"immutability_period_since_creation_in_days": 15,
"state": azure_native.storage.AccountImmutabilityPolicyState.UNLOCKED,
},
},
kind=azure_native.storage.Kind.STORAGE,
location="eastus",
resource_group_name="res9101",
sku={
"name": azure_native.storage.SkuName.STANDARD_GRS,
})
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const storageAccount = new azure_native.storage.StorageAccount("storageAccount", {
accountName: "sto4445",
extendedLocation: {
name: "losangeles001",
type: azure_native.storage.ExtendedLocationTypes.EdgeZone,
},
immutableStorageWithVersioning: {
enabled: true,
immutabilityPolicy: {
allowProtectedAppendWrites: true,
immutabilityPeriodSinceCreationInDays: 15,
state: azure_native.storage.AccountImmutabilityPolicyState.Unlocked,
},
},
kind: azure_native.storage.Kind.Storage,
location: "eastus",
resourceGroupName: "res9101",
sku: {
name: azure_native.storage.SkuName.Standard_GRS,
},
});
resources:
storageAccount:
type: azure-native:storage:StorageAccount
properties:
accountName: sto4445
extendedLocation:
name: losangeles001
type: EdgeZone
immutableStorageWithVersioning:
enabled: true
immutabilityPolicy:
allowProtectedAppendWrites: true
immutabilityPeriodSinceCreationInDays: 15
state: Unlocked
kind: Storage
location: eastus
resourceGroupName: res9101
sku:
name: Standard_GRS
Create StorageAccount Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new StorageAccount(name: string, args: StorageAccountArgs, opts?: CustomResourceOptions);
@overload
def StorageAccount(resource_name: str,
args: StorageAccountArgs,
opts: Optional[ResourceOptions] = None)
@overload
def StorageAccount(resource_name: str,
opts: Optional[ResourceOptions] = None,
kind: Optional[Union[str, Kind]] = None,
sku: Optional[SkuArgs] = None,
resource_group_name: Optional[str] = None,
identity: Optional[IdentityArgs] = None,
is_hns_enabled: Optional[bool] = None,
allowed_copy_scope: Optional[Union[str, AllowedCopyScope]] = None,
azure_files_identity_based_authentication: Optional[AzureFilesIdentityBasedAuthenticationArgs] = None,
custom_domain: Optional[CustomDomainArgs] = None,
default_to_o_auth_authentication: Optional[bool] = None,
dns_endpoint_type: Optional[Union[str, DnsEndpointType]] = None,
enable_https_traffic_only: Optional[bool] = None,
enable_nfs_v3: Optional[bool] = None,
encryption: Optional[EncryptionArgs] = None,
extended_location: Optional[ExtendedLocationArgs] = None,
access_tier: Optional[AccessTier] = None,
immutable_storage_with_versioning: Optional[ImmutableStorageAccountArgs] = None,
allow_shared_key_access: Optional[bool] = None,
is_local_user_enabled: Optional[bool] = None,
is_sftp_enabled: Optional[bool] = None,
key_policy: Optional[KeyPolicyArgs] = None,
allow_cross_tenant_replication: Optional[bool] = None,
large_file_shares_state: Optional[Union[str, LargeFileSharesState]] = None,
location: Optional[str] = None,
minimum_tls_version: Optional[Union[str, MinimumTlsVersion]] = None,
network_rule_set: Optional[NetworkRuleSetArgs] = None,
public_network_access: Optional[Union[str, PublicNetworkAccess]] = None,
allow_blob_public_access: Optional[bool] = None,
routing_preference: Optional[RoutingPreferenceArgs] = None,
sas_policy: Optional[SasPolicyArgs] = None,
account_name: Optional[str] = None,
tags: Optional[Mapping[str, str]] = None)
func NewStorageAccount(ctx *Context, name string, args StorageAccountArgs, opts ...ResourceOption) (*StorageAccount, error)
public StorageAccount(string name, StorageAccountArgs args, CustomResourceOptions? opts = null)
public StorageAccount(String name, StorageAccountArgs args)
public StorageAccount(String name, StorageAccountArgs args, CustomResourceOptions options)
type: azure-native:storage:StorageAccount
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args StorageAccountArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args StorageAccountArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args StorageAccountArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args StorageAccountArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args StorageAccountArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var azure_nativeStorageAccountResource = new AzureNative.Storage.StorageAccount("azure-nativeStorageAccountResource", new()
{
Kind = "string",
Sku = new AzureNative.Storage.Inputs.SkuArgs
{
Name = "string",
},
ResourceGroupName = "string",
Identity = new AzureNative.Storage.Inputs.IdentityArgs
{
Type = "string",
UserAssignedIdentities = new[]
{
"string",
},
},
IsHnsEnabled = false,
AllowedCopyScope = "string",
AzureFilesIdentityBasedAuthentication = new AzureNative.Storage.Inputs.AzureFilesIdentityBasedAuthenticationArgs
{
DirectoryServiceOptions = "string",
ActiveDirectoryProperties = new AzureNative.Storage.Inputs.ActiveDirectoryPropertiesArgs
{
DomainGuid = "string",
DomainName = "string",
AccountType = "string",
AzureStorageSid = "string",
DomainSid = "string",
ForestName = "string",
NetBiosDomainName = "string",
SamAccountName = "string",
},
DefaultSharePermission = "string",
},
CustomDomain = new AzureNative.Storage.Inputs.CustomDomainArgs
{
Name = "string",
UseSubDomainName = false,
},
DefaultToOAuthAuthentication = false,
DnsEndpointType = "string",
EnableHttpsTrafficOnly = false,
EnableNfsV3 = false,
Encryption = new AzureNative.Storage.Inputs.EncryptionArgs
{
EncryptionIdentity = new AzureNative.Storage.Inputs.EncryptionIdentityArgs
{
EncryptionFederatedIdentityClientId = "string",
EncryptionUserAssignedIdentity = "string",
},
KeySource = "string",
KeyVaultProperties = new AzureNative.Storage.Inputs.KeyVaultPropertiesArgs
{
KeyName = "string",
KeyVaultUri = "string",
KeyVersion = "string",
},
RequireInfrastructureEncryption = false,
Services = new AzureNative.Storage.Inputs.EncryptionServicesArgs
{
Blob = new AzureNative.Storage.Inputs.EncryptionServiceArgs
{
Enabled = false,
KeyType = "string",
},
File = new AzureNative.Storage.Inputs.EncryptionServiceArgs
{
Enabled = false,
KeyType = "string",
},
Queue = new AzureNative.Storage.Inputs.EncryptionServiceArgs
{
Enabled = false,
KeyType = "string",
},
Table = new AzureNative.Storage.Inputs.EncryptionServiceArgs
{
Enabled = false,
KeyType = "string",
},
},
},
ExtendedLocation = new AzureNative.Storage.Inputs.ExtendedLocationArgs
{
Name = "string",
Type = "string",
},
AccessTier = AzureNative.Storage.AccessTier.Hot,
ImmutableStorageWithVersioning = new AzureNative.Storage.Inputs.ImmutableStorageAccountArgs
{
Enabled = false,
ImmutabilityPolicy = new AzureNative.Storage.Inputs.AccountImmutabilityPolicyPropertiesArgs
{
AllowProtectedAppendWrites = false,
ImmutabilityPeriodSinceCreationInDays = 0,
State = "string",
},
},
AllowSharedKeyAccess = false,
IsLocalUserEnabled = false,
IsSftpEnabled = false,
KeyPolicy = new AzureNative.Storage.Inputs.KeyPolicyArgs
{
KeyExpirationPeriodInDays = 0,
},
AllowCrossTenantReplication = false,
LargeFileSharesState = "string",
Location = "string",
MinimumTlsVersion = "string",
NetworkRuleSet = new AzureNative.Storage.Inputs.NetworkRuleSetArgs
{
DefaultAction = AzureNative.Storage.DefaultAction.Allow,
Bypass = "string",
IpRules = new[]
{
new AzureNative.Storage.Inputs.IPRuleArgs
{
IPAddressOrRange = "string",
Action = AzureNative.Storage.Action.Allow,
},
},
ResourceAccessRules = new[]
{
new AzureNative.Storage.Inputs.ResourceAccessRuleArgs
{
ResourceId = "string",
TenantId = "string",
},
},
VirtualNetworkRules = new[]
{
new AzureNative.Storage.Inputs.VirtualNetworkRuleArgs
{
VirtualNetworkResourceId = "string",
Action = AzureNative.Storage.Action.Allow,
State = "string",
},
},
},
PublicNetworkAccess = "string",
AllowBlobPublicAccess = false,
RoutingPreference = new AzureNative.Storage.Inputs.RoutingPreferenceArgs
{
PublishInternetEndpoints = false,
PublishMicrosoftEndpoints = false,
RoutingChoice = "string",
},
SasPolicy = new AzureNative.Storage.Inputs.SasPolicyArgs
{
ExpirationAction = "string",
SasExpirationPeriod = "string",
},
AccountName = "string",
Tags =
{
{ "string", "string" },
},
});
example, err := storage.NewStorageAccount(ctx, "azure-nativeStorageAccountResource", &storage.StorageAccountArgs{
Kind: pulumi.String("string"),
Sku: &storage.SkuArgs{
Name: pulumi.String("string"),
},
ResourceGroupName: pulumi.String("string"),
Identity: &storage.IdentityArgs{
Type: pulumi.String("string"),
UserAssignedIdentities: pulumi.StringArray{
pulumi.String("string"),
},
},
IsHnsEnabled: pulumi.Bool(false),
AllowedCopyScope: pulumi.String("string"),
AzureFilesIdentityBasedAuthentication: &storage.AzureFilesIdentityBasedAuthenticationArgs{
DirectoryServiceOptions: pulumi.String("string"),
ActiveDirectoryProperties: &storage.ActiveDirectoryPropertiesArgs{
DomainGuid: pulumi.String("string"),
DomainName: pulumi.String("string"),
AccountType: pulumi.String("string"),
AzureStorageSid: pulumi.String("string"),
DomainSid: pulumi.String("string"),
ForestName: pulumi.String("string"),
NetBiosDomainName: pulumi.String("string"),
SamAccountName: pulumi.String("string"),
},
DefaultSharePermission: pulumi.String("string"),
},
CustomDomain: &storage.CustomDomainArgs{
Name: pulumi.String("string"),
UseSubDomainName: pulumi.Bool(false),
},
DefaultToOAuthAuthentication: pulumi.Bool(false),
DnsEndpointType: pulumi.String("string"),
EnableHttpsTrafficOnly: pulumi.Bool(false),
EnableNfsV3: pulumi.Bool(false),
Encryption: &storage.EncryptionArgs{
EncryptionIdentity: &storage.EncryptionIdentityArgs{
EncryptionFederatedIdentityClientId: pulumi.String("string"),
EncryptionUserAssignedIdentity: pulumi.String("string"),
},
KeySource: pulumi.String("string"),
KeyVaultProperties: &storage.KeyVaultPropertiesArgs{
KeyName: pulumi.String("string"),
KeyVaultUri: pulumi.String("string"),
KeyVersion: pulumi.String("string"),
},
RequireInfrastructureEncryption: pulumi.Bool(false),
Services: &storage.EncryptionServicesArgs{
Blob: &storage.EncryptionServiceArgs{
Enabled: pulumi.Bool(false),
KeyType: pulumi.String("string"),
},
File: &storage.EncryptionServiceArgs{
Enabled: pulumi.Bool(false),
KeyType: pulumi.String("string"),
},
Queue: &storage.EncryptionServiceArgs{
Enabled: pulumi.Bool(false),
KeyType: pulumi.String("string"),
},
Table: &storage.EncryptionServiceArgs{
Enabled: pulumi.Bool(false),
KeyType: pulumi.String("string"),
},
},
},
ExtendedLocation: &storage.ExtendedLocationArgs{
Name: pulumi.String("string"),
Type: pulumi.String("string"),
},
AccessTier: storage.AccessTierHot,
ImmutableStorageWithVersioning: &storage.ImmutableStorageAccountArgs{
Enabled: pulumi.Bool(false),
ImmutabilityPolicy: &storage.AccountImmutabilityPolicyPropertiesArgs{
AllowProtectedAppendWrites: pulumi.Bool(false),
ImmutabilityPeriodSinceCreationInDays: pulumi.Int(0),
State: pulumi.String("string"),
},
},
AllowSharedKeyAccess: pulumi.Bool(false),
IsLocalUserEnabled: pulumi.Bool(false),
IsSftpEnabled: pulumi.Bool(false),
KeyPolicy: &storage.KeyPolicyArgs{
KeyExpirationPeriodInDays: pulumi.Int(0),
},
AllowCrossTenantReplication: pulumi.Bool(false),
LargeFileSharesState: pulumi.String("string"),
Location: pulumi.String("string"),
MinimumTlsVersion: pulumi.String("string"),
NetworkRuleSet: &storage.NetworkRuleSetArgs{
DefaultAction: storage.DefaultActionAllow,
Bypass: pulumi.String("string"),
IpRules: storage.IPRuleArray{
&storage.IPRuleArgs{
IPAddressOrRange: pulumi.String("string"),
Action: storage.ActionAllow,
},
},
ResourceAccessRules: storage.ResourceAccessRuleArray{
&storage.ResourceAccessRuleArgs{
ResourceId: pulumi.String("string"),
TenantId: pulumi.String("string"),
},
},
VirtualNetworkRules: storage.VirtualNetworkRuleArray{
&storage.VirtualNetworkRuleArgs{
VirtualNetworkResourceId: pulumi.String("string"),
Action: storage.ActionAllow,
State: pulumi.String("string"),
},
},
},
PublicNetworkAccess: pulumi.String("string"),
AllowBlobPublicAccess: pulumi.Bool(false),
RoutingPreference: &storage.RoutingPreferenceArgs{
PublishInternetEndpoints: pulumi.Bool(false),
PublishMicrosoftEndpoints: pulumi.Bool(false),
RoutingChoice: pulumi.String("string"),
},
SasPolicy: &storage.SasPolicyArgs{
ExpirationAction: pulumi.String("string"),
SasExpirationPeriod: pulumi.String("string"),
},
AccountName: pulumi.String("string"),
Tags: pulumi.StringMap{
"string": pulumi.String("string"),
},
})
var azure_nativeStorageAccountResource = new StorageAccount("azure-nativeStorageAccountResource", StorageAccountArgs.builder()
.kind("string")
.sku(SkuArgs.builder()
.name("string")
.build())
.resourceGroupName("string")
.identity(IdentityArgs.builder()
.type("string")
.userAssignedIdentities("string")
.build())
.isHnsEnabled(false)
.allowedCopyScope("string")
.azureFilesIdentityBasedAuthentication(AzureFilesIdentityBasedAuthenticationArgs.builder()
.directoryServiceOptions("string")
.activeDirectoryProperties(ActiveDirectoryPropertiesArgs.builder()
.domainGuid("string")
.domainName("string")
.accountType("string")
.azureStorageSid("string")
.domainSid("string")
.forestName("string")
.netBiosDomainName("string")
.samAccountName("string")
.build())
.defaultSharePermission("string")
.build())
.customDomain(CustomDomainArgs.builder()
.name("string")
.useSubDomainName(false)
.build())
.defaultToOAuthAuthentication(false)
.dnsEndpointType("string")
.enableHttpsTrafficOnly(false)
.enableNfsV3(false)
.encryption(EncryptionArgs.builder()
.encryptionIdentity(EncryptionIdentityArgs.builder()
.encryptionFederatedIdentityClientId("string")
.encryptionUserAssignedIdentity("string")
.build())
.keySource("string")
.keyVaultProperties(KeyVaultPropertiesArgs.builder()
.keyName("string")
.keyVaultUri("string")
.keyVersion("string")
.build())
.requireInfrastructureEncryption(false)
.services(EncryptionServicesArgs.builder()
.blob(EncryptionServiceArgs.builder()
.enabled(false)
.keyType("string")
.build())
.file(EncryptionServiceArgs.builder()
.enabled(false)
.keyType("string")
.build())
.queue(EncryptionServiceArgs.builder()
.enabled(false)
.keyType("string")
.build())
.table(EncryptionServiceArgs.builder()
.enabled(false)
.keyType("string")
.build())
.build())
.build())
.extendedLocation(ExtendedLocationArgs.builder()
.name("string")
.type("string")
.build())
.accessTier("Hot")
.immutableStorageWithVersioning(ImmutableStorageAccountArgs.builder()
.enabled(false)
.immutabilityPolicy(AccountImmutabilityPolicyPropertiesArgs.builder()
.allowProtectedAppendWrites(false)
.immutabilityPeriodSinceCreationInDays(0)
.state("string")
.build())
.build())
.allowSharedKeyAccess(false)
.isLocalUserEnabled(false)
.isSftpEnabled(false)
.keyPolicy(KeyPolicyArgs.builder()
.keyExpirationPeriodInDays(0)
.build())
.allowCrossTenantReplication(false)
.largeFileSharesState("string")
.location("string")
.minimumTlsVersion("string")
.networkRuleSet(NetworkRuleSetArgs.builder()
.defaultAction("Allow")
.bypass("string")
.ipRules(IPRuleArgs.builder()
.iPAddressOrRange("string")
.action("Allow")
.build())
.resourceAccessRules(ResourceAccessRuleArgs.builder()
.resourceId("string")
.tenantId("string")
.build())
.virtualNetworkRules(VirtualNetworkRuleArgs.builder()
.virtualNetworkResourceId("string")
.action("Allow")
.state("string")
.build())
.build())
.publicNetworkAccess("string")
.allowBlobPublicAccess(false)
.routingPreference(RoutingPreferenceArgs.builder()
.publishInternetEndpoints(false)
.publishMicrosoftEndpoints(false)
.routingChoice("string")
.build())
.sasPolicy(SasPolicyArgs.builder()
.expirationAction("string")
.sasExpirationPeriod("string")
.build())
.accountName("string")
.tags(Map.of("string", "string"))
.build());
azure_native_storage_account_resource = azure_native.storage.StorageAccount("azure-nativeStorageAccountResource",
kind="string",
sku={
"name": "string",
},
resource_group_name="string",
identity={
"type": "string",
"userAssignedIdentities": ["string"],
},
is_hns_enabled=False,
allowed_copy_scope="string",
azure_files_identity_based_authentication={
"directoryServiceOptions": "string",
"activeDirectoryProperties": {
"domainGuid": "string",
"domainName": "string",
"accountType": "string",
"azureStorageSid": "string",
"domainSid": "string",
"forestName": "string",
"netBiosDomainName": "string",
"samAccountName": "string",
},
"defaultSharePermission": "string",
},
custom_domain={
"name": "string",
"useSubDomainName": False,
},
default_to_o_auth_authentication=False,
dns_endpoint_type="string",
enable_https_traffic_only=False,
enable_nfs_v3=False,
encryption={
"encryptionIdentity": {
"encryptionFederatedIdentityClientId": "string",
"encryptionUserAssignedIdentity": "string",
},
"keySource": "string",
"keyVaultProperties": {
"keyName": "string",
"keyVaultUri": "string",
"keyVersion": "string",
},
"requireInfrastructureEncryption": False,
"services": {
"blob": {
"enabled": False,
"keyType": "string",
},
"file": {
"enabled": False,
"keyType": "string",
},
"queue": {
"enabled": False,
"keyType": "string",
},
"table": {
"enabled": False,
"keyType": "string",
},
},
},
extended_location={
"name": "string",
"type": "string",
},
access_tier=azure_native.storage.AccessTier.HOT,
immutable_storage_with_versioning={
"enabled": False,
"immutabilityPolicy": {
"allowProtectedAppendWrites": False,
"immutabilityPeriodSinceCreationInDays": 0,
"state": "string",
},
},
allow_shared_key_access=False,
is_local_user_enabled=False,
is_sftp_enabled=False,
key_policy={
"keyExpirationPeriodInDays": 0,
},
allow_cross_tenant_replication=False,
large_file_shares_state="string",
location="string",
minimum_tls_version="string",
network_rule_set={
"defaultAction": azure_native.storage.DefaultAction.ALLOW,
"bypass": "string",
"ipRules": [{
"iPAddressOrRange": "string",
"action": azure_native.storage.Action.ALLOW,
}],
"resourceAccessRules": [{
"resourceId": "string",
"tenantId": "string",
}],
"virtualNetworkRules": [{
"virtualNetworkResourceId": "string",
"action": azure_native.storage.Action.ALLOW,
"state": "string",
}],
},
public_network_access="string",
allow_blob_public_access=False,
routing_preference={
"publishInternetEndpoints": False,
"publishMicrosoftEndpoints": False,
"routingChoice": "string",
},
sas_policy={
"expirationAction": "string",
"sasExpirationPeriod": "string",
},
account_name="string",
tags={
"string": "string",
})
const azure_nativeStorageAccountResource = new azure_native.storage.StorageAccount("azure-nativeStorageAccountResource", {
kind: "string",
sku: {
name: "string",
},
resourceGroupName: "string",
identity: {
type: "string",
userAssignedIdentities: ["string"],
},
isHnsEnabled: false,
allowedCopyScope: "string",
azureFilesIdentityBasedAuthentication: {
directoryServiceOptions: "string",
activeDirectoryProperties: {
domainGuid: "string",
domainName: "string",
accountType: "string",
azureStorageSid: "string",
domainSid: "string",
forestName: "string",
netBiosDomainName: "string",
samAccountName: "string",
},
defaultSharePermission: "string",
},
customDomain: {
name: "string",
useSubDomainName: false,
},
defaultToOAuthAuthentication: false,
dnsEndpointType: "string",
enableHttpsTrafficOnly: false,
enableNfsV3: false,
encryption: {
encryptionIdentity: {
encryptionFederatedIdentityClientId: "string",
encryptionUserAssignedIdentity: "string",
},
keySource: "string",
keyVaultProperties: {
keyName: "string",
keyVaultUri: "string",
keyVersion: "string",
},
requireInfrastructureEncryption: false,
services: {
blob: {
enabled: false,
keyType: "string",
},
file: {
enabled: false,
keyType: "string",
},
queue: {
enabled: false,
keyType: "string",
},
table: {
enabled: false,
keyType: "string",
},
},
},
extendedLocation: {
name: "string",
type: "string",
},
accessTier: azure_native.storage.AccessTier.Hot,
immutableStorageWithVersioning: {
enabled: false,
immutabilityPolicy: {
allowProtectedAppendWrites: false,
immutabilityPeriodSinceCreationInDays: 0,
state: "string",
},
},
allowSharedKeyAccess: false,
isLocalUserEnabled: false,
isSftpEnabled: false,
keyPolicy: {
keyExpirationPeriodInDays: 0,
},
allowCrossTenantReplication: false,
largeFileSharesState: "string",
location: "string",
minimumTlsVersion: "string",
networkRuleSet: {
defaultAction: azure_native.storage.DefaultAction.Allow,
bypass: "string",
ipRules: [{
iPAddressOrRange: "string",
action: azure_native.storage.Action.Allow,
}],
resourceAccessRules: [{
resourceId: "string",
tenantId: "string",
}],
virtualNetworkRules: [{
virtualNetworkResourceId: "string",
action: azure_native.storage.Action.Allow,
state: "string",
}],
},
publicNetworkAccess: "string",
allowBlobPublicAccess: false,
routingPreference: {
publishInternetEndpoints: false,
publishMicrosoftEndpoints: false,
routingChoice: "string",
},
sasPolicy: {
expirationAction: "string",
sasExpirationPeriod: "string",
},
accountName: "string",
tags: {
string: "string",
},
});
type: azure-native:storage:StorageAccount
properties:
accessTier: Hot
accountName: string
allowBlobPublicAccess: false
allowCrossTenantReplication: false
allowSharedKeyAccess: false
allowedCopyScope: string
azureFilesIdentityBasedAuthentication:
activeDirectoryProperties:
accountType: string
azureStorageSid: string
domainGuid: string
domainName: string
domainSid: string
forestName: string
netBiosDomainName: string
samAccountName: string
defaultSharePermission: string
directoryServiceOptions: string
customDomain:
name: string
useSubDomainName: false
defaultToOAuthAuthentication: false
dnsEndpointType: string
enableHttpsTrafficOnly: false
enableNfsV3: false
encryption:
encryptionIdentity:
encryptionFederatedIdentityClientId: string
encryptionUserAssignedIdentity: string
keySource: string
keyVaultProperties:
keyName: string
keyVaultUri: string
keyVersion: string
requireInfrastructureEncryption: false
services:
blob:
enabled: false
keyType: string
file:
enabled: false
keyType: string
queue:
enabled: false
keyType: string
table:
enabled: false
keyType: string
extendedLocation:
name: string
type: string
identity:
type: string
userAssignedIdentities:
- string
immutableStorageWithVersioning:
enabled: false
immutabilityPolicy:
allowProtectedAppendWrites: false
immutabilityPeriodSinceCreationInDays: 0
state: string
isHnsEnabled: false
isLocalUserEnabled: false
isSftpEnabled: false
keyPolicy:
keyExpirationPeriodInDays: 0
kind: string
largeFileSharesState: string
location: string
minimumTlsVersion: string
networkRuleSet:
bypass: string
defaultAction: Allow
ipRules:
- action: Allow
iPAddressOrRange: string
resourceAccessRules:
- resourceId: string
tenantId: string
virtualNetworkRules:
- action: Allow
state: string
virtualNetworkResourceId: string
publicNetworkAccess: string
resourceGroupName: string
routingPreference:
publishInternetEndpoints: false
publishMicrosoftEndpoints: false
routingChoice: string
sasPolicy:
expirationAction: string
sasExpirationPeriod: string
sku:
name: string
tags:
string: string
StorageAccount Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
The StorageAccount resource accepts the following input properties:
- Kind
string | Pulumi.
Azure Native. Storage. Kind - Required. Indicates the type of storage account.
- Resource
Group stringName - The name of the resource group within the user's subscription. The name is case insensitive.
- Sku
Pulumi.
Azure Native. Storage. Inputs. Sku - Required. Gets or sets the SKU name.
- Access
Tier Pulumi.Azure Native. Storage. Access Tier - Required for storage accounts where kind = BlobStorage. The access tier is used for billing. The 'Premium' access tier is the default value for premium block blobs storage account type and it cannot be changed for the premium block blobs storage account type.
- Account
Name string - The name of the storage account within the specified resource group. Storage account names must be between 3 and 24 characters in length and use numbers and lower-case letters only.
- Allow
Blob boolPublic Access - Allow or disallow public access to all blobs or containers in the storage account. The default interpretation is true for this property.
- Allow
Cross boolTenant Replication - Allow or disallow cross AAD tenant object replication. The default interpretation is true for this property.
- bool
- Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key. If false, then all requests, including shared access signatures, must be authorized with Azure Active Directory (Azure AD). The default value is null, which is equivalent to true.
- Allowed
Copy string | Pulumi.Scope Azure Native. Storage. Allowed Copy Scope - Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet.
- Azure
Files Pulumi.Identity Based Authentication Azure Native. Storage. Inputs. Azure Files Identity Based Authentication - Provides the identity based authentication settings for Azure Files.
- Custom
Domain Pulumi.Azure Native. Storage. Inputs. Custom Domain - User domain assigned to the storage account. Name is the CNAME source. Only one custom domain is supported per storage account at this time. To clear the existing custom domain, use an empty string for the custom domain name property.
- Default
To boolOAuth Authentication - A boolean flag which indicates whether the default authentication is OAuth or not. The default interpretation is false for this property.
- Dns
Endpoint string | Pulumi.Type Azure Native. Storage. Dns Endpoint Type - Allows you to specify the type of endpoint. Set this to AzureDNSZone to create a large number of accounts in a single subscription, which creates accounts in an Azure DNS Zone and the endpoint URL will have an alphanumeric DNS Zone identifier.
- Enable
Https boolTraffic Only - Allows https traffic only to storage service if sets to true. The default value is true since API version 2019-04-01.
- Enable
Nfs boolV3 - NFS 3.0 protocol support enabled if set to true.
- Encryption
Pulumi.
Azure Native. Storage. Inputs. Encryption - Encryption settings to be used for server-side encryption for the storage account.
- Extended
Location Pulumi.Azure Native. Storage. Inputs. Extended Location - Optional. Set the extended location of the resource. If not set, the storage account will be created in Azure main region. Otherwise it will be created in the specified extended location
- Identity
Pulumi.
Azure Native. Storage. Inputs. Identity - The identity of the resource.
- Immutable
Storage Pulumi.With Versioning Azure Native. Storage. Inputs. Immutable Storage Account - The property is immutable and can only be set to true at the account creation time. When set to true, it enables object level immutability for all the new containers in the account by default.
- Is
Hns boolEnabled - Account HierarchicalNamespace enabled if sets to true.
- Is
Local boolUser Enabled - Enables local users feature, if set to true
- Is
Sftp boolEnabled - Enables Secure File Transfer Protocol, if set to true
- Key
Policy Pulumi.Azure Native. Storage. Inputs. Key Policy - KeyPolicy assigned to the storage account.
- string | Pulumi.
Azure Native. Storage. Large File Shares State - Allow large file shares if sets to Enabled. It cannot be disabled once it is enabled.
- Location string
- Required. Gets or sets the location of the resource. This will be one of the supported and registered Azure Geo Regions (e.g. West US, East US, Southeast Asia, etc.). The geo region of a resource cannot be changed once it is created, but if an identical geo region is specified on update, the request will succeed.
- Minimum
Tls string | Pulumi.Version Azure Native. Storage. Minimum Tls Version - Set the minimum TLS version to be permitted on requests to storage. The default interpretation is TLS 1.0 for this property.
- Network
Rule Pulumi.Set Azure Native. Storage. Inputs. Network Rule Set - Network rule set
- Public
Network string | Pulumi.Access Azure Native. Storage. Public Network Access - Allow or disallow public network access to Storage Account. Value is optional but if passed in, must be 'Enabled' or 'Disabled'.
- Routing
Preference Pulumi.Azure Native. Storage. Inputs. Routing Preference - Maintains information about the network routing choice opted by the user for data transfer
- Sas
Policy Pulumi.Azure Native. Storage. Inputs. Sas Policy - SasPolicy assigned to the storage account.
- Dictionary<string, string>
- Gets or sets a list of key value pairs that describe the resource. These tags can be used for viewing and grouping this resource (across resource groups). A maximum of 15 tags can be provided for a resource. Each tag must have a key with a length no greater than 128 characters and a value with a length no greater than 256 characters.
- Kind string | Kind
- Required. Indicates the type of storage account.
- Resource
Group stringName - The name of the resource group within the user's subscription. The name is case insensitive.
- Sku
Sku
Args - Required. Gets or sets the SKU name.
- Access
Tier AccessTier - Required for storage accounts where kind = BlobStorage. The access tier is used for billing. The 'Premium' access tier is the default value for premium block blobs storage account type and it cannot be changed for the premium block blobs storage account type.
- Account
Name string - The name of the storage account within the specified resource group. Storage account names must be between 3 and 24 characters in length and use numbers and lower-case letters only.
- Allow
Blob boolPublic Access - Allow or disallow public access to all blobs or containers in the storage account. The default interpretation is true for this property.
- Allow
Cross boolTenant Replication - Allow or disallow cross AAD tenant object replication. The default interpretation is true for this property.
- bool
- Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key. If false, then all requests, including shared access signatures, must be authorized with Azure Active Directory (Azure AD). The default value is null, which is equivalent to true.
- Allowed
Copy string | AllowedScope Copy Scope - Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet.
- Azure
Files AzureIdentity Based Authentication Files Identity Based Authentication Args - Provides the identity based authentication settings for Azure Files.
- Custom
Domain CustomDomain Args - User domain assigned to the storage account. Name is the CNAME source. Only one custom domain is supported per storage account at this time. To clear the existing custom domain, use an empty string for the custom domain name property.
- Default
To boolOAuth Authentication - A boolean flag which indicates whether the default authentication is OAuth or not. The default interpretation is false for this property.
- Dns
Endpoint string | DnsType Endpoint Type - Allows you to specify the type of endpoint. Set this to AzureDNSZone to create a large number of accounts in a single subscription, which creates accounts in an Azure DNS Zone and the endpoint URL will have an alphanumeric DNS Zone identifier.
- Enable
Https boolTraffic Only - Allows https traffic only to storage service if sets to true. The default value is true since API version 2019-04-01.
- Enable
Nfs boolV3 - NFS 3.0 protocol support enabled if set to true.
- Encryption
Encryption
Args - Encryption settings to be used for server-side encryption for the storage account.
- Extended
Location ExtendedLocation Args - Optional. Set the extended location of the resource. If not set, the storage account will be created in Azure main region. Otherwise it will be created in the specified extended location
- Identity
Identity
Args - The identity of the resource.
- Immutable
Storage ImmutableWith Versioning Storage Account Args - The property is immutable and can only be set to true at the account creation time. When set to true, it enables object level immutability for all the new containers in the account by default.
- Is
Hns boolEnabled - Account HierarchicalNamespace enabled if sets to true.
- Is
Local boolUser Enabled - Enables local users feature, if set to true
- Is
Sftp boolEnabled - Enables Secure File Transfer Protocol, if set to true
- Key
Policy KeyPolicy Args - KeyPolicy assigned to the storage account.
- string | Large
File Shares State - Allow large file shares if sets to Enabled. It cannot be disabled once it is enabled.
- Location string
- Required. Gets or sets the location of the resource. This will be one of the supported and registered Azure Geo Regions (e.g. West US, East US, Southeast Asia, etc.). The geo region of a resource cannot be changed once it is created, but if an identical geo region is specified on update, the request will succeed.
- Minimum
Tls string | MinimumVersion Tls Version - Set the minimum TLS version to be permitted on requests to storage. The default interpretation is TLS 1.0 for this property.
- Network
Rule NetworkSet Rule Set Args - Network rule set
- Public
Network string | PublicAccess Network Access - Allow or disallow public network access to Storage Account. Value is optional but if passed in, must be 'Enabled' or 'Disabled'.
- Routing
Preference RoutingPreference Args - Maintains information about the network routing choice opted by the user for data transfer
- Sas
Policy SasPolicy Args - SasPolicy assigned to the storage account.
- map[string]string
- Gets or sets a list of key value pairs that describe the resource. These tags can be used for viewing and grouping this resource (across resource groups). A maximum of 15 tags can be provided for a resource. Each tag must have a key with a length no greater than 128 characters and a value with a length no greater than 256 characters.
- kind String | Kind
- Required. Indicates the type of storage account.
- resource
Group StringName - The name of the resource group within the user's subscription. The name is case insensitive.
- sku Sku
- Required. Gets or sets the SKU name.
- access
Tier AccessTier - Required for storage accounts where kind = BlobStorage. The access tier is used for billing. The 'Premium' access tier is the default value for premium block blobs storage account type and it cannot be changed for the premium block blobs storage account type.
- account
Name String - The name of the storage account within the specified resource group. Storage account names must be between 3 and 24 characters in length and use numbers and lower-case letters only.
- allow
Blob BooleanPublic Access - Allow or disallow public access to all blobs or containers in the storage account. The default interpretation is true for this property.
- allow
Cross BooleanTenant Replication - Allow or disallow cross AAD tenant object replication. The default interpretation is true for this property.
- Boolean
- Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key. If false, then all requests, including shared access signatures, must be authorized with Azure Active Directory (Azure AD). The default value is null, which is equivalent to true.
- allowed
Copy String | AllowedScope Copy Scope - Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet.
- azure
Files AzureIdentity Based Authentication Files Identity Based Authentication - Provides the identity based authentication settings for Azure Files.
- custom
Domain CustomDomain - User domain assigned to the storage account. Name is the CNAME source. Only one custom domain is supported per storage account at this time. To clear the existing custom domain, use an empty string for the custom domain name property.
- default
To BooleanOAuth Authentication - A boolean flag which indicates whether the default authentication is OAuth or not. The default interpretation is false for this property.
- dns
Endpoint String | DnsType Endpoint Type - Allows you to specify the type of endpoint. Set this to AzureDNSZone to create a large number of accounts in a single subscription, which creates accounts in an Azure DNS Zone and the endpoint URL will have an alphanumeric DNS Zone identifier.
- enable
Https BooleanTraffic Only - Allows https traffic only to storage service if sets to true. The default value is true since API version 2019-04-01.
- enable
Nfs BooleanV3 - NFS 3.0 protocol support enabled if set to true.
- encryption Encryption
- Encryption settings to be used for server-side encryption for the storage account.
- extended
Location ExtendedLocation - Optional. Set the extended location of the resource. If not set, the storage account will be created in Azure main region. Otherwise it will be created in the specified extended location
- identity Identity
- The identity of the resource.
- immutable
Storage ImmutableWith Versioning Storage Account - The property is immutable and can only be set to true at the account creation time. When set to true, it enables object level immutability for all the new containers in the account by default.
- is
Hns BooleanEnabled - Account HierarchicalNamespace enabled if sets to true.
- is
Local BooleanUser Enabled - Enables local users feature, if set to true
- is
Sftp BooleanEnabled - Enables Secure File Transfer Protocol, if set to true
- key
Policy KeyPolicy - KeyPolicy assigned to the storage account.
- String | Large
File Shares State - Allow large file shares if sets to Enabled. It cannot be disabled once it is enabled.
- location String
- Required. Gets or sets the location of the resource. This will be one of the supported and registered Azure Geo Regions (e.g. West US, East US, Southeast Asia, etc.). The geo region of a resource cannot be changed once it is created, but if an identical geo region is specified on update, the request will succeed.
- minimum
Tls String | MinimumVersion Tls Version - Set the minimum TLS version to be permitted on requests to storage. The default interpretation is TLS 1.0 for this property.
- network
Rule NetworkSet Rule Set - Network rule set
- public
Network String | PublicAccess Network Access - Allow or disallow public network access to Storage Account. Value is optional but if passed in, must be 'Enabled' or 'Disabled'.
- routing
Preference RoutingPreference - Maintains information about the network routing choice opted by the user for data transfer
- sas
Policy SasPolicy - SasPolicy assigned to the storage account.
- Map<String,String>
- Gets or sets a list of key value pairs that describe the resource. These tags can be used for viewing and grouping this resource (across resource groups). A maximum of 15 tags can be provided for a resource. Each tag must have a key with a length no greater than 128 characters and a value with a length no greater than 256 characters.
- kind string | Kind
- Required. Indicates the type of storage account.
- resource
Group stringName - The name of the resource group within the user's subscription. The name is case insensitive.
- sku Sku
- Required. Gets or sets the SKU name.
- access
Tier AccessTier - Required for storage accounts where kind = BlobStorage. The access tier is used for billing. The 'Premium' access tier is the default value for premium block blobs storage account type and it cannot be changed for the premium block blobs storage account type.
- account
Name string - The name of the storage account within the specified resource group. Storage account names must be between 3 and 24 characters in length and use numbers and lower-case letters only.
- allow
Blob booleanPublic Access - Allow or disallow public access to all blobs or containers in the storage account. The default interpretation is true for this property.
- allow
Cross booleanTenant Replication - Allow or disallow cross AAD tenant object replication. The default interpretation is true for this property.
- boolean
- Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key. If false, then all requests, including shared access signatures, must be authorized with Azure Active Directory (Azure AD). The default value is null, which is equivalent to true.
- allowed
Copy string | AllowedScope Copy Scope - Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet.
- azure
Files AzureIdentity Based Authentication Files Identity Based Authentication - Provides the identity based authentication settings for Azure Files.
- custom
Domain CustomDomain - User domain assigned to the storage account. Name is the CNAME source. Only one custom domain is supported per storage account at this time. To clear the existing custom domain, use an empty string for the custom domain name property.
- default
To booleanOAuth Authentication - A boolean flag which indicates whether the default authentication is OAuth or not. The default interpretation is false for this property.
- dns
Endpoint string | DnsType Endpoint Type - Allows you to specify the type of endpoint. Set this to AzureDNSZone to create a large number of accounts in a single subscription, which creates accounts in an Azure DNS Zone and the endpoint URL will have an alphanumeric DNS Zone identifier.
- enable
Https booleanTraffic Only - Allows https traffic only to storage service if sets to true. The default value is true since API version 2019-04-01.
- enable
Nfs booleanV3 - NFS 3.0 protocol support enabled if set to true.
- encryption Encryption
- Encryption settings to be used for server-side encryption for the storage account.
- extended
Location ExtendedLocation - Optional. Set the extended location of the resource. If not set, the storage account will be created in Azure main region. Otherwise it will be created in the specified extended location
- identity Identity
- The identity of the resource.
- immutable
Storage ImmutableWith Versioning Storage Account - The property is immutable and can only be set to true at the account creation time. When set to true, it enables object level immutability for all the new containers in the account by default.
- is
Hns booleanEnabled - Account HierarchicalNamespace enabled if sets to true.
- is
Local booleanUser Enabled - Enables local users feature, if set to true
- is
Sftp booleanEnabled - Enables Secure File Transfer Protocol, if set to true
- key
Policy KeyPolicy - KeyPolicy assigned to the storage account.
- string | Large
File Shares State - Allow large file shares if sets to Enabled. It cannot be disabled once it is enabled.
- location string
- Required. Gets or sets the location of the resource. This will be one of the supported and registered Azure Geo Regions (e.g. West US, East US, Southeast Asia, etc.). The geo region of a resource cannot be changed once it is created, but if an identical geo region is specified on update, the request will succeed.
- minimum
Tls string | MinimumVersion Tls Version - Set the minimum TLS version to be permitted on requests to storage. The default interpretation is TLS 1.0 for this property.
- network
Rule NetworkSet Rule Set - Network rule set
- public
Network string | PublicAccess Network Access - Allow or disallow public network access to Storage Account. Value is optional but if passed in, must be 'Enabled' or 'Disabled'.
- routing
Preference RoutingPreference - Maintains information about the network routing choice opted by the user for data transfer
- sas
Policy SasPolicy - SasPolicy assigned to the storage account.
- {[key: string]: string}
- Gets or sets a list of key value pairs that describe the resource. These tags can be used for viewing and grouping this resource (across resource groups). A maximum of 15 tags can be provided for a resource. Each tag must have a key with a length no greater than 128 characters and a value with a length no greater than 256 characters.
- kind str | Kind
- Required. Indicates the type of storage account.
- resource_
group_ strname - The name of the resource group within the user's subscription. The name is case insensitive.
- sku
Sku
Args - Required. Gets or sets the SKU name.
- access_
tier AccessTier - Required for storage accounts where kind = BlobStorage. The access tier is used for billing. The 'Premium' access tier is the default value for premium block blobs storage account type and it cannot be changed for the premium block blobs storage account type.
- account_
name str - The name of the storage account within the specified resource group. Storage account names must be between 3 and 24 characters in length and use numbers and lower-case letters only.
- allow_
blob_ boolpublic_ access - Allow or disallow public access to all blobs or containers in the storage account. The default interpretation is true for this property.
- allow_
cross_ booltenant_ replication - Allow or disallow cross AAD tenant object replication. The default interpretation is true for this property.
- bool
- Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key. If false, then all requests, including shared access signatures, must be authorized with Azure Active Directory (Azure AD). The default value is null, which is equivalent to true.
- allowed_
copy_ str | Allowedscope Copy Scope - Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet.
- azure_
files_ Azureidentity_ based_ authentication Files Identity Based Authentication Args - Provides the identity based authentication settings for Azure Files.
- custom_
domain CustomDomain Args - User domain assigned to the storage account. Name is the CNAME source. Only one custom domain is supported per storage account at this time. To clear the existing custom domain, use an empty string for the custom domain name property.
- default_
to_ boolo_ auth_ authentication - A boolean flag which indicates whether the default authentication is OAuth or not. The default interpretation is false for this property.
- dns_
endpoint_ str | Dnstype Endpoint Type - Allows you to specify the type of endpoint. Set this to AzureDNSZone to create a large number of accounts in a single subscription, which creates accounts in an Azure DNS Zone and the endpoint URL will have an alphanumeric DNS Zone identifier.
- enable_
https_ booltraffic_ only - Allows https traffic only to storage service if sets to true. The default value is true since API version 2019-04-01.
- enable_
nfs_ boolv3 - NFS 3.0 protocol support enabled if set to true.
- encryption
Encryption
Args - Encryption settings to be used for server-side encryption for the storage account.
- extended_
location ExtendedLocation Args - Optional. Set the extended location of the resource. If not set, the storage account will be created in Azure main region. Otherwise it will be created in the specified extended location
- identity
Identity
Args - The identity of the resource.
- immutable_
storage_ Immutablewith_ versioning Storage Account Args - The property is immutable and can only be set to true at the account creation time. When set to true, it enables object level immutability for all the new containers in the account by default.
- is_
hns_ boolenabled - Account HierarchicalNamespace enabled if sets to true.
- is_
local_ booluser_ enabled - Enables local users feature, if set to true
- is_
sftp_ boolenabled - Enables Secure File Transfer Protocol, if set to true
- key_
policy KeyPolicy Args - KeyPolicy assigned to the storage account.
- str | Large
File Shares State - Allow large file shares if sets to Enabled. It cannot be disabled once it is enabled.
- location str
- Required. Gets or sets the location of the resource. This will be one of the supported and registered Azure Geo Regions (e.g. West US, East US, Southeast Asia, etc.). The geo region of a resource cannot be changed once it is created, but if an identical geo region is specified on update, the request will succeed.
- minimum_
tls_ str | Minimumversion Tls Version - Set the minimum TLS version to be permitted on requests to storage. The default interpretation is TLS 1.0 for this property.
- network_
rule_ Networkset Rule Set Args - Network rule set
- public_
network_ str | Publicaccess Network Access - Allow or disallow public network access to Storage Account. Value is optional but if passed in, must be 'Enabled' or 'Disabled'.
- routing_
preference RoutingPreference Args - Maintains information about the network routing choice opted by the user for data transfer
- sas_
policy SasPolicy Args - SasPolicy assigned to the storage account.
- Mapping[str, str]
- Gets or sets a list of key value pairs that describe the resource. These tags can be used for viewing and grouping this resource (across resource groups). A maximum of 15 tags can be provided for a resource. Each tag must have a key with a length no greater than 128 characters and a value with a length no greater than 256 characters.
- kind
String | "Storage" | "Storage
V2" | "Blob Storage" | "File Storage" | "Block Blob Storage" - Required. Indicates the type of storage account.
- resource
Group StringName - The name of the resource group within the user's subscription. The name is case insensitive.
- sku Property Map
- Required. Gets or sets the SKU name.
- access
Tier "Hot" | "Cool" | "Premium" - Required for storage accounts where kind = BlobStorage. The access tier is used for billing. The 'Premium' access tier is the default value for premium block blobs storage account type and it cannot be changed for the premium block blobs storage account type.
- account
Name String - The name of the storage account within the specified resource group. Storage account names must be between 3 and 24 characters in length and use numbers and lower-case letters only.
- allow
Blob BooleanPublic Access - Allow or disallow public access to all blobs or containers in the storage account. The default interpretation is true for this property.
- allow
Cross BooleanTenant Replication - Allow or disallow cross AAD tenant object replication. The default interpretation is true for this property.
- Boolean
- Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key. If false, then all requests, including shared access signatures, must be authorized with Azure Active Directory (Azure AD). The default value is null, which is equivalent to true.
- allowed
Copy String | "PrivateScope Link" | "AAD" - Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet.
- azure
Files Property MapIdentity Based Authentication - Provides the identity based authentication settings for Azure Files.
- custom
Domain Property Map - User domain assigned to the storage account. Name is the CNAME source. Only one custom domain is supported per storage account at this time. To clear the existing custom domain, use an empty string for the custom domain name property.
- default
To BooleanOAuth Authentication - A boolean flag which indicates whether the default authentication is OAuth or not. The default interpretation is false for this property.
- dns
Endpoint String | "Standard" | "AzureType Dns Zone" - Allows you to specify the type of endpoint. Set this to AzureDNSZone to create a large number of accounts in a single subscription, which creates accounts in an Azure DNS Zone and the endpoint URL will have an alphanumeric DNS Zone identifier.
- enable
Https BooleanTraffic Only - Allows https traffic only to storage service if sets to true. The default value is true since API version 2019-04-01.
- enable
Nfs BooleanV3 - NFS 3.0 protocol support enabled if set to true.
- encryption Property Map
- Encryption settings to be used for server-side encryption for the storage account.
- extended
Location Property Map - Optional. Set the extended location of the resource. If not set, the storage account will be created in Azure main region. Otherwise it will be created in the specified extended location
- identity Property Map
- The identity of the resource.
- immutable
Storage Property MapWith Versioning - The property is immutable and can only be set to true at the account creation time. When set to true, it enables object level immutability for all the new containers in the account by default.
- is
Hns BooleanEnabled - Account HierarchicalNamespace enabled if sets to true.
- is
Local BooleanUser Enabled - Enables local users feature, if set to true
- is
Sftp BooleanEnabled - Enables Secure File Transfer Protocol, if set to true
- key
Policy Property Map - KeyPolicy assigned to the storage account.
- String | "Disabled" | "Enabled"
- Allow large file shares if sets to Enabled. It cannot be disabled once it is enabled.
- location String
- Required. Gets or sets the location of the resource. This will be one of the supported and registered Azure Geo Regions (e.g. West US, East US, Southeast Asia, etc.). The geo region of a resource cannot be changed once it is created, but if an identical geo region is specified on update, the request will succeed.
- minimum
Tls String | "TLS1_0" | "TLS1_1" | "TLS1_2"Version - Set the minimum TLS version to be permitted on requests to storage. The default interpretation is TLS 1.0 for this property.
- network
Rule Property MapSet - Network rule set
- public
Network String | "Enabled" | "Disabled"Access - Allow or disallow public network access to Storage Account. Value is optional but if passed in, must be 'Enabled' or 'Disabled'.
- routing
Preference Property Map - Maintains information about the network routing choice opted by the user for data transfer
- sas
Policy Property Map - SasPolicy assigned to the storage account.
- Map<String>
- Gets or sets a list of key value pairs that describe the resource. These tags can be used for viewing and grouping this resource (across resource groups). A maximum of 15 tags can be provided for a resource. Each tag must have a key with a length no greater than 128 characters and a value with a length no greater than 256 characters.
Outputs
All input properties are implicitly available as output properties. Additionally, the StorageAccount resource produces the following output properties:
- Blob
Restore Pulumi.Status Azure Native. Storage. Outputs. Blob Restore Status Response - Blob restore status
- Creation
Time string - Gets the creation date and time of the storage account in UTC.
- Failover
In boolProgress - If the failover is in progress, the value will be true, otherwise, it will be null.
- Geo
Replication Pulumi.Stats Azure Native. Storage. Outputs. Geo Replication Stats Response - Geo Replication Stats
- Id string
- The provider-assigned unique ID for this managed resource.
- Key
Creation Pulumi.Time Azure Native. Storage. Outputs. Key Creation Time Response - Storage account keys creation time.
- Last
Geo stringFailover Time - Gets the timestamp of the most recent instance of a failover to the secondary location. Only the most recent timestamp is retained. This element is not returned if there has never been a failover instance. Only available if the accountType is Standard_GRS or Standard_RAGRS.
- Name string
- The name of the resource
- Primary
Endpoints Pulumi.Azure Native. Storage. Outputs. Endpoints Response - Gets the URLs that are used to perform a retrieval of a public blob, queue, or table object. Note that Standard_ZRS and Premium_LRS accounts only return the blob endpoint.
- Primary
Location string - Gets the location of the primary data center for the storage account.
- Private
Endpoint List<Pulumi.Connections Azure Native. Storage. Outputs. Private Endpoint Connection Response> - List of private endpoint connection associated with the specified storage account
- Provisioning
State string - Gets the status of the storage account at the time the operation was called.
- Secondary
Endpoints Pulumi.Azure Native. Storage. Outputs. Endpoints Response - Gets the URLs that are used to perform a retrieval of a public blob, queue, or table object from the secondary location of the storage account. Only available if the SKU name is Standard_RAGRS.
- Secondary
Location string - Gets the location of the geo-replicated secondary for the storage account. Only available if the accountType is Standard_GRS or Standard_RAGRS.
- Status
Of stringPrimary - Gets the status indicating whether the primary location of the storage account is available or unavailable.
- Status
Of stringSecondary - Gets the status indicating whether the secondary location of the storage account is available or unavailable. Only available if the SKU name is Standard_GRS or Standard_RAGRS.
- Type string
- The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- Storage
Account Pulumi.Sku Conversion Status Azure Native. Storage. Outputs. Storage Account Sku Conversion Status Response - This property is readOnly and is set by server during asynchronous storage account sku conversion operations.
- Blob
Restore BlobStatus Restore Status Response - Blob restore status
- Creation
Time string - Gets the creation date and time of the storage account in UTC.
- Failover
In boolProgress - If the failover is in progress, the value will be true, otherwise, it will be null.
- Geo
Replication GeoStats Replication Stats Response - Geo Replication Stats
- Id string
- The provider-assigned unique ID for this managed resource.
- Key
Creation KeyTime Creation Time Response - Storage account keys creation time.
- Last
Geo stringFailover Time - Gets the timestamp of the most recent instance of a failover to the secondary location. Only the most recent timestamp is retained. This element is not returned if there has never been a failover instance. Only available if the accountType is Standard_GRS or Standard_RAGRS.
- Name string
- The name of the resource
- Primary
Endpoints EndpointsResponse - Gets the URLs that are used to perform a retrieval of a public blob, queue, or table object. Note that Standard_ZRS and Premium_LRS accounts only return the blob endpoint.
- Primary
Location string - Gets the location of the primary data center for the storage account.
- Private
Endpoint []PrivateConnections Endpoint Connection Response - List of private endpoint connection associated with the specified storage account
- Provisioning
State string - Gets the status of the storage account at the time the operation was called.
- Secondary
Endpoints EndpointsResponse - Gets the URLs that are used to perform a retrieval of a public blob, queue, or table object from the secondary location of the storage account. Only available if the SKU name is Standard_RAGRS.
- Secondary
Location string - Gets the location of the geo-replicated secondary for the storage account. Only available if the accountType is Standard_GRS or Standard_RAGRS.
- Status
Of stringPrimary - Gets the status indicating whether the primary location of the storage account is available or unavailable.
- Status
Of stringSecondary - Gets the status indicating whether the secondary location of the storage account is available or unavailable. Only available if the SKU name is Standard_GRS or Standard_RAGRS.
- Type string
- The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- Storage
Account StorageSku Conversion Status Account Sku Conversion Status Response - This property is readOnly and is set by server during asynchronous storage account sku conversion operations.
- blob
Restore BlobStatus Restore Status Response - Blob restore status
- creation
Time String - Gets the creation date and time of the storage account in UTC.
- failover
In BooleanProgress - If the failover is in progress, the value will be true, otherwise, it will be null.
- geo
Replication GeoStats Replication Stats Response - Geo Replication Stats
- id String
- The provider-assigned unique ID for this managed resource.
- key
Creation KeyTime Creation Time Response - Storage account keys creation time.
- last
Geo StringFailover Time - Gets the timestamp of the most recent instance of a failover to the secondary location. Only the most recent timestamp is retained. This element is not returned if there has never been a failover instance. Only available if the accountType is Standard_GRS or Standard_RAGRS.
- name String
- The name of the resource
- primary
Endpoints EndpointsResponse - Gets the URLs that are used to perform a retrieval of a public blob, queue, or table object. Note that Standard_ZRS and Premium_LRS accounts only return the blob endpoint.
- primary
Location String - Gets the location of the primary data center for the storage account.
- private
Endpoint List<PrivateConnections Endpoint Connection Response> - List of private endpoint connection associated with the specified storage account
- provisioning
State String - Gets the status of the storage account at the time the operation was called.
- secondary
Endpoints EndpointsResponse - Gets the URLs that are used to perform a retrieval of a public blob, queue, or table object from the secondary location of the storage account. Only available if the SKU name is Standard_RAGRS.
- secondary
Location String - Gets the location of the geo-replicated secondary for the storage account. Only available if the accountType is Standard_GRS or Standard_RAGRS.
- status
Of StringPrimary - Gets the status indicating whether the primary location of the storage account is available or unavailable.
- status
Of StringSecondary - Gets the status indicating whether the secondary location of the storage account is available or unavailable. Only available if the SKU name is Standard_GRS or Standard_RAGRS.
- type String
- The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- storage
Account StorageSku Conversion Status Account Sku Conversion Status Response - This property is readOnly and is set by server during asynchronous storage account sku conversion operations.
- blob
Restore BlobStatus Restore Status Response - Blob restore status
- creation
Time string - Gets the creation date and time of the storage account in UTC.
- failover
In booleanProgress - If the failover is in progress, the value will be true, otherwise, it will be null.
- geo
Replication GeoStats Replication Stats Response - Geo Replication Stats
- id string
- The provider-assigned unique ID for this managed resource.
- key
Creation KeyTime Creation Time Response - Storage account keys creation time.
- last
Geo stringFailover Time - Gets the timestamp of the most recent instance of a failover to the secondary location. Only the most recent timestamp is retained. This element is not returned if there has never been a failover instance. Only available if the accountType is Standard_GRS or Standard_RAGRS.
- name string
- The name of the resource
- primary
Endpoints EndpointsResponse - Gets the URLs that are used to perform a retrieval of a public blob, queue, or table object. Note that Standard_ZRS and Premium_LRS accounts only return the blob endpoint.
- primary
Location string - Gets the location of the primary data center for the storage account.
- private
Endpoint PrivateConnections Endpoint Connection Response[] - List of private endpoint connection associated with the specified storage account
- provisioning
State string - Gets the status of the storage account at the time the operation was called.
- secondary
Endpoints EndpointsResponse - Gets the URLs that are used to perform a retrieval of a public blob, queue, or table object from the secondary location of the storage account. Only available if the SKU name is Standard_RAGRS.
- secondary
Location string - Gets the location of the geo-replicated secondary for the storage account. Only available if the accountType is Standard_GRS or Standard_RAGRS.
- status
Of stringPrimary - Gets the status indicating whether the primary location of the storage account is available or unavailable.
- status
Of stringSecondary - Gets the status indicating whether the secondary location of the storage account is available or unavailable. Only available if the SKU name is Standard_GRS or Standard_RAGRS.
- type string
- The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- storage
Account StorageSku Conversion Status Account Sku Conversion Status Response - This property is readOnly and is set by server during asynchronous storage account sku conversion operations.
- blob_
restore_ Blobstatus Restore Status Response - Blob restore status
- creation_
time str - Gets the creation date and time of the storage account in UTC.
- failover_
in_ boolprogress - If the failover is in progress, the value will be true, otherwise, it will be null.
- geo_
replication_ Geostats Replication Stats Response - Geo Replication Stats
- id str
- The provider-assigned unique ID for this managed resource.
- key_
creation_ Keytime Creation Time Response - Storage account keys creation time.
- last_
geo_ strfailover_ time - Gets the timestamp of the most recent instance of a failover to the secondary location. Only the most recent timestamp is retained. This element is not returned if there has never been a failover instance. Only available if the accountType is Standard_GRS or Standard_RAGRS.
- name str
- The name of the resource
- primary_
endpoints EndpointsResponse - Gets the URLs that are used to perform a retrieval of a public blob, queue, or table object. Note that Standard_ZRS and Premium_LRS accounts only return the blob endpoint.
- primary_
location str - Gets the location of the primary data center for the storage account.
- private_
endpoint_ Sequence[Privateconnections Endpoint Connection Response] - List of private endpoint connection associated with the specified storage account
- provisioning_
state str - Gets the status of the storage account at the time the operation was called.
- secondary_
endpoints EndpointsResponse - Gets the URLs that are used to perform a retrieval of a public blob, queue, or table object from the secondary location of the storage account. Only available if the SKU name is Standard_RAGRS.
- secondary_
location str - Gets the location of the geo-replicated secondary for the storage account. Only available if the accountType is Standard_GRS or Standard_RAGRS.
- status_
of_ strprimary - Gets the status indicating whether the primary location of the storage account is available or unavailable.
- status_
of_ strsecondary - Gets the status indicating whether the secondary location of the storage account is available or unavailable. Only available if the SKU name is Standard_GRS or Standard_RAGRS.
- type str
- The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- storage_
account_ Storagesku_ conversion_ status Account Sku Conversion Status Response - This property is readOnly and is set by server during asynchronous storage account sku conversion operations.
- blob
Restore Property MapStatus - Blob restore status
- creation
Time String - Gets the creation date and time of the storage account in UTC.
- failover
In BooleanProgress - If the failover is in progress, the value will be true, otherwise, it will be null.
- geo
Replication Property MapStats - Geo Replication Stats
- id String
- The provider-assigned unique ID for this managed resource.
- key
Creation Property MapTime - Storage account keys creation time.
- last
Geo StringFailover Time - Gets the timestamp of the most recent instance of a failover to the secondary location. Only the most recent timestamp is retained. This element is not returned if there has never been a failover instance. Only available if the accountType is Standard_GRS or Standard_RAGRS.
- name String
- The name of the resource
- primary
Endpoints Property Map - Gets the URLs that are used to perform a retrieval of a public blob, queue, or table object. Note that Standard_ZRS and Premium_LRS accounts only return the blob endpoint.
- primary
Location String - Gets the location of the primary data center for the storage account.
- private
Endpoint List<Property Map>Connections - List of private endpoint connection associated with the specified storage account
- provisioning
State String - Gets the status of the storage account at the time the operation was called.
- secondary
Endpoints Property Map - Gets the URLs that are used to perform a retrieval of a public blob, queue, or table object from the secondary location of the storage account. Only available if the SKU name is Standard_RAGRS.
- secondary
Location String - Gets the location of the geo-replicated secondary for the storage account. Only available if the accountType is Standard_GRS or Standard_RAGRS.
- status
Of StringPrimary - Gets the status indicating whether the primary location of the storage account is available or unavailable.
- status
Of StringSecondary - Gets the status indicating whether the secondary location of the storage account is available or unavailable. Only available if the SKU name is Standard_GRS or Standard_RAGRS.
- type String
- The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- storage
Account Property MapSku Conversion Status - This property is readOnly and is set by server during asynchronous storage account sku conversion operations.
Supporting Types
AccessTier, AccessTierArgs
- Hot
- Hot
- Cool
- Cool
- Premium
- Premium
- Access
Tier Hot - Hot
- Access
Tier Cool - Cool
- Access
Tier Premium - Premium
- Hot
- Hot
- Cool
- Cool
- Premium
- Premium
- Hot
- Hot
- Cool
- Cool
- Premium
- Premium
- HOT
- Hot
- COOL
- Cool
- PREMIUM
- Premium
- "Hot"
- Hot
- "Cool"
- Cool
- "Premium"
- Premium
AccountImmutabilityPolicyProperties, AccountImmutabilityPolicyPropertiesArgs
- Allow
Protected boolAppend Writes - This property can only be changed for disabled and unlocked time-based retention policies. When enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted.
- Immutability
Period intSince Creation In Days - The immutability period for the blobs in the container since the policy creation, in days.
- State
string | Pulumi.
Azure Native. Storage. Account Immutability Policy State - The ImmutabilityPolicy state defines the mode of the policy. Disabled state disables the policy, Unlocked state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property, Locked state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted.
- Allow
Protected boolAppend Writes - This property can only be changed for disabled and unlocked time-based retention policies. When enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted.
- Immutability
Period intSince Creation In Days - The immutability period for the blobs in the container since the policy creation, in days.
- State
string | Account
Immutability Policy State - The ImmutabilityPolicy state defines the mode of the policy. Disabled state disables the policy, Unlocked state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property, Locked state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted.
- allow
Protected BooleanAppend Writes - This property can only be changed for disabled and unlocked time-based retention policies. When enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted.
- immutability
Period IntegerSince Creation In Days - The immutability period for the blobs in the container since the policy creation, in days.
- state
String | Account
Immutability Policy State - The ImmutabilityPolicy state defines the mode of the policy. Disabled state disables the policy, Unlocked state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property, Locked state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted.
- allow
Protected booleanAppend Writes - This property can only be changed for disabled and unlocked time-based retention policies. When enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted.
- immutability
Period numberSince Creation In Days - The immutability period for the blobs in the container since the policy creation, in days.
- state
string | Account
Immutability Policy State - The ImmutabilityPolicy state defines the mode of the policy. Disabled state disables the policy, Unlocked state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property, Locked state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted.
- allow_
protected_ boolappend_ writes - This property can only be changed for disabled and unlocked time-based retention policies. When enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted.
- immutability_
period_ intsince_ creation_ in_ days - The immutability period for the blobs in the container since the policy creation, in days.
- state
str | Account
Immutability Policy State - The ImmutabilityPolicy state defines the mode of the policy. Disabled state disables the policy, Unlocked state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property, Locked state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted.
- allow
Protected BooleanAppend Writes - This property can only be changed for disabled and unlocked time-based retention policies. When enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted.
- immutability
Period NumberSince Creation In Days - The immutability period for the blobs in the container since the policy creation, in days.
- state String | "Unlocked" | "Locked" | "Disabled"
- The ImmutabilityPolicy state defines the mode of the policy. Disabled state disables the policy, Unlocked state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property, Locked state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted.
AccountImmutabilityPolicyPropertiesResponse, AccountImmutabilityPolicyPropertiesResponseArgs
- Allow
Protected boolAppend Writes - This property can only be changed for disabled and unlocked time-based retention policies. When enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted.
- Immutability
Period intSince Creation In Days - The immutability period for the blobs in the container since the policy creation, in days.
- State string
- The ImmutabilityPolicy state defines the mode of the policy. Disabled state disables the policy, Unlocked state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property, Locked state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted.
- Allow
Protected boolAppend Writes - This property can only be changed for disabled and unlocked time-based retention policies. When enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted.
- Immutability
Period intSince Creation In Days - The immutability period for the blobs in the container since the policy creation, in days.
- State string
- The ImmutabilityPolicy state defines the mode of the policy. Disabled state disables the policy, Unlocked state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property, Locked state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted.
- allow
Protected BooleanAppend Writes - This property can only be changed for disabled and unlocked time-based retention policies. When enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted.
- immutability
Period IntegerSince Creation In Days - The immutability period for the blobs in the container since the policy creation, in days.
- state String
- The ImmutabilityPolicy state defines the mode of the policy. Disabled state disables the policy, Unlocked state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property, Locked state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted.
- allow
Protected booleanAppend Writes - This property can only be changed for disabled and unlocked time-based retention policies. When enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted.
- immutability
Period numberSince Creation In Days - The immutability period for the blobs in the container since the policy creation, in days.
- state string
- The ImmutabilityPolicy state defines the mode of the policy. Disabled state disables the policy, Unlocked state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property, Locked state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted.
- allow_
protected_ boolappend_ writes - This property can only be changed for disabled and unlocked time-based retention policies. When enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted.
- immutability_
period_ intsince_ creation_ in_ days - The immutability period for the blobs in the container since the policy creation, in days.
- state str
- The ImmutabilityPolicy state defines the mode of the policy. Disabled state disables the policy, Unlocked state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property, Locked state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted.
- allow
Protected BooleanAppend Writes - This property can only be changed for disabled and unlocked time-based retention policies. When enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted.
- immutability
Period NumberSince Creation In Days - The immutability period for the blobs in the container since the policy creation, in days.
- state String
- The ImmutabilityPolicy state defines the mode of the policy. Disabled state disables the policy, Unlocked state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property, Locked state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted.
AccountImmutabilityPolicyState, AccountImmutabilityPolicyStateArgs
- Unlocked
- Unlocked
- Locked
- Locked
- Disabled
- Disabled
- Account
Immutability Policy State Unlocked - Unlocked
- Account
Immutability Policy State Locked - Locked
- Account
Immutability Policy State Disabled - Disabled
- Unlocked
- Unlocked
- Locked
- Locked
- Disabled
- Disabled
- Unlocked
- Unlocked
- Locked
- Locked
- Disabled
- Disabled
- UNLOCKED
- Unlocked
- LOCKED
- Locked
- DISABLED
- Disabled
- "Unlocked"
- Unlocked
- "Locked"
- Locked
- "Disabled"
- Disabled
AccountType, AccountTypeArgs
- User
- User
- Computer
- Computer
- Account
Type User - User
- Account
Type Computer - Computer
- User
- User
- Computer
- Computer
- User
- User
- Computer
- Computer
- USER
- User
- COMPUTER
- Computer
- "User"
- User
- "Computer"
- Computer
Action, ActionArgs
- Allow
- Allow
- Action
Allow - Allow
- Allow
- Allow
- Allow
- Allow
- ALLOW
- Allow
- "Allow"
- Allow
ActiveDirectoryProperties, ActiveDirectoryPropertiesArgs
- Domain
Guid string - Specifies the domain GUID.
- Domain
Name string - Specifies the primary domain that the AD DNS server is authoritative for.
- Account
Type string | Pulumi.Azure Native. Storage. Account Type - Specifies the Active Directory account type for Azure Storage.
- Azure
Storage stringSid - Specifies the security identifier (SID) for Azure Storage.
- Domain
Sid string - Specifies the security identifier (SID).
- Forest
Name string - Specifies the Active Directory forest to get.
- Net
Bios stringDomain Name - Specifies the NetBIOS domain name.
- Sam
Account stringName - Specifies the Active Directory SAMAccountName for Azure Storage.
- Domain
Guid string - Specifies the domain GUID.
- Domain
Name string - Specifies the primary domain that the AD DNS server is authoritative for.
- Account
Type string | AccountType - Specifies the Active Directory account type for Azure Storage.
- Azure
Storage stringSid - Specifies the security identifier (SID) for Azure Storage.
- Domain
Sid string - Specifies the security identifier (SID).
- Forest
Name string - Specifies the Active Directory forest to get.
- Net
Bios stringDomain Name - Specifies the NetBIOS domain name.
- Sam
Account stringName - Specifies the Active Directory SAMAccountName for Azure Storage.
- domain
Guid String - Specifies the domain GUID.
- domain
Name String - Specifies the primary domain that the AD DNS server is authoritative for.
- account
Type String | AccountType - Specifies the Active Directory account type for Azure Storage.
- azure
Storage StringSid - Specifies the security identifier (SID) for Azure Storage.
- domain
Sid String - Specifies the security identifier (SID).
- forest
Name String - Specifies the Active Directory forest to get.
- net
Bios StringDomain Name - Specifies the NetBIOS domain name.
- sam
Account StringName - Specifies the Active Directory SAMAccountName for Azure Storage.
- domain
Guid string - Specifies the domain GUID.
- domain
Name string - Specifies the primary domain that the AD DNS server is authoritative for.
- account
Type string | AccountType - Specifies the Active Directory account type for Azure Storage.
- azure
Storage stringSid - Specifies the security identifier (SID) for Azure Storage.
- domain
Sid string - Specifies the security identifier (SID).
- forest
Name string - Specifies the Active Directory forest to get.
- net
Bios stringDomain Name - Specifies the NetBIOS domain name.
- sam
Account stringName - Specifies the Active Directory SAMAccountName for Azure Storage.
- domain_
guid str - Specifies the domain GUID.
- domain_
name str - Specifies the primary domain that the AD DNS server is authoritative for.
- account_
type str | AccountType - Specifies the Active Directory account type for Azure Storage.
- azure_
storage_ strsid - Specifies the security identifier (SID) for Azure Storage.
- domain_
sid str - Specifies the security identifier (SID).
- forest_
name str - Specifies the Active Directory forest to get.
- net_
bios_ strdomain_ name - Specifies the NetBIOS domain name.
- sam_
account_ strname - Specifies the Active Directory SAMAccountName for Azure Storage.
- domain
Guid String - Specifies the domain GUID.
- domain
Name String - Specifies the primary domain that the AD DNS server is authoritative for.
- account
Type String | "User" | "Computer" - Specifies the Active Directory account type for Azure Storage.
- azure
Storage StringSid - Specifies the security identifier (SID) for Azure Storage.
- domain
Sid String - Specifies the security identifier (SID).
- forest
Name String - Specifies the Active Directory forest to get.
- net
Bios StringDomain Name - Specifies the NetBIOS domain name.
- sam
Account StringName - Specifies the Active Directory SAMAccountName for Azure Storage.
ActiveDirectoryPropertiesResponse, ActiveDirectoryPropertiesResponseArgs
- Domain
Guid string - Specifies the domain GUID.
- Domain
Name string - Specifies the primary domain that the AD DNS server is authoritative for.
- Account
Type string - Specifies the Active Directory account type for Azure Storage.
- Azure
Storage stringSid - Specifies the security identifier (SID) for Azure Storage.
- Domain
Sid string - Specifies the security identifier (SID).
- Forest
Name string - Specifies the Active Directory forest to get.
- Net
Bios stringDomain Name - Specifies the NetBIOS domain name.
- Sam
Account stringName - Specifies the Active Directory SAMAccountName for Azure Storage.
- Domain
Guid string - Specifies the domain GUID.
- Domain
Name string - Specifies the primary domain that the AD DNS server is authoritative for.
- Account
Type string - Specifies the Active Directory account type for Azure Storage.
- Azure
Storage stringSid - Specifies the security identifier (SID) for Azure Storage.
- Domain
Sid string - Specifies the security identifier (SID).
- Forest
Name string - Specifies the Active Directory forest to get.
- Net
Bios stringDomain Name - Specifies the NetBIOS domain name.
- Sam
Account stringName - Specifies the Active Directory SAMAccountName for Azure Storage.
- domain
Guid String - Specifies the domain GUID.
- domain
Name String - Specifies the primary domain that the AD DNS server is authoritative for.
- account
Type String - Specifies the Active Directory account type for Azure Storage.
- azure
Storage StringSid - Specifies the security identifier (SID) for Azure Storage.
- domain
Sid String - Specifies the security identifier (SID).
- forest
Name String - Specifies the Active Directory forest to get.
- net
Bios StringDomain Name - Specifies the NetBIOS domain name.
- sam
Account StringName - Specifies the Active Directory SAMAccountName for Azure Storage.
- domain
Guid string - Specifies the domain GUID.
- domain
Name string - Specifies the primary domain that the AD DNS server is authoritative for.
- account
Type string - Specifies the Active Directory account type for Azure Storage.
- azure
Storage stringSid - Specifies the security identifier (SID) for Azure Storage.
- domain
Sid string - Specifies the security identifier (SID).
- forest
Name string - Specifies the Active Directory forest to get.
- net
Bios stringDomain Name - Specifies the NetBIOS domain name.
- sam
Account stringName - Specifies the Active Directory SAMAccountName for Azure Storage.
- domain_
guid str - Specifies the domain GUID.
- domain_
name str - Specifies the primary domain that the AD DNS server is authoritative for.
- account_
type str - Specifies the Active Directory account type for Azure Storage.
- azure_
storage_ strsid - Specifies the security identifier (SID) for Azure Storage.
- domain_
sid str - Specifies the security identifier (SID).
- forest_
name str - Specifies the Active Directory forest to get.
- net_
bios_ strdomain_ name - Specifies the NetBIOS domain name.
- sam_
account_ strname - Specifies the Active Directory SAMAccountName for Azure Storage.
- domain
Guid String - Specifies the domain GUID.
- domain
Name String - Specifies the primary domain that the AD DNS server is authoritative for.
- account
Type String - Specifies the Active Directory account type for Azure Storage.
- azure
Storage StringSid - Specifies the security identifier (SID) for Azure Storage.
- domain
Sid String - Specifies the security identifier (SID).
- forest
Name String - Specifies the Active Directory forest to get.
- net
Bios StringDomain Name - Specifies the NetBIOS domain name.
- sam
Account StringName - Specifies the Active Directory SAMAccountName for Azure Storage.
AllowedCopyScope, AllowedCopyScopeArgs
- Private
Link - PrivateLink
- AAD
- AAD
- Allowed
Copy Scope Private Link - PrivateLink
- Allowed
Copy Scope AAD - AAD
- Private
Link - PrivateLink
- AAD
- AAD
- Private
Link - PrivateLink
- AAD
- AAD
- PRIVATE_LINK
- PrivateLink
- AAD
- AAD
- "Private
Link" - PrivateLink
- "AAD"
- AAD
AzureFilesIdentityBasedAuthentication, AzureFilesIdentityBasedAuthenticationArgs
- Directory
Service string | Pulumi.Options Azure Native. Storage. Directory Service Options - Indicates the directory service used. Note that this enum may be extended in the future.
- Active
Directory Pulumi.Properties Azure Native. Storage. Inputs. Active Directory Properties - Required if directoryServiceOptions are AD, optional if they are AADKERB.
- string | Pulumi.
Azure Native. Storage. Default Share Permission - Default share permission for users using Kerberos authentication if RBAC role is not assigned.
- Directory
Service string | DirectoryOptions Service Options - Indicates the directory service used. Note that this enum may be extended in the future.
- Active
Directory ActiveProperties Directory Properties - Required if directoryServiceOptions are AD, optional if they are AADKERB.
- string | Default
Share Permission - Default share permission for users using Kerberos authentication if RBAC role is not assigned.
- directory
Service String | DirectoryOptions Service Options - Indicates the directory service used. Note that this enum may be extended in the future.
- active
Directory ActiveProperties Directory Properties - Required if directoryServiceOptions are AD, optional if they are AADKERB.
- String | Default
Share Permission - Default share permission for users using Kerberos authentication if RBAC role is not assigned.
- directory
Service string | DirectoryOptions Service Options - Indicates the directory service used. Note that this enum may be extended in the future.
- active
Directory ActiveProperties Directory Properties - Required if directoryServiceOptions are AD, optional if they are AADKERB.
- string | Default
Share Permission - Default share permission for users using Kerberos authentication if RBAC role is not assigned.
- directory_
service_ str | Directoryoptions Service Options - Indicates the directory service used. Note that this enum may be extended in the future.
- active_
directory_ Activeproperties Directory Properties - Required if directoryServiceOptions are AD, optional if they are AADKERB.
- str | Default
Share Permission - Default share permission for users using Kerberos authentication if RBAC role is not assigned.
- directory
Service String | "None" | "AADDS" | "AD" | "AADKERB"Options - Indicates the directory service used. Note that this enum may be extended in the future.
- active
Directory Property MapProperties - Required if directoryServiceOptions are AD, optional if they are AADKERB.
- String | "None" | "Storage
File Data Smb Share Reader" | "Storage File Data Smb Share Contributor" | "Storage File Data Smb Share Elevated Contributor" - Default share permission for users using Kerberos authentication if RBAC role is not assigned.
AzureFilesIdentityBasedAuthenticationResponse, AzureFilesIdentityBasedAuthenticationResponseArgs
- Directory
Service stringOptions - Indicates the directory service used. Note that this enum may be extended in the future.
- Active
Directory Pulumi.Properties Azure Native. Storage. Inputs. Active Directory Properties Response - Required if directoryServiceOptions are AD, optional if they are AADKERB.
- string
- Default share permission for users using Kerberos authentication if RBAC role is not assigned.
- Directory
Service stringOptions - Indicates the directory service used. Note that this enum may be extended in the future.
- Active
Directory ActiveProperties Directory Properties Response - Required if directoryServiceOptions are AD, optional if they are AADKERB.
- string
- Default share permission for users using Kerberos authentication if RBAC role is not assigned.
- directory
Service StringOptions - Indicates the directory service used. Note that this enum may be extended in the future.
- active
Directory ActiveProperties Directory Properties Response - Required if directoryServiceOptions are AD, optional if they are AADKERB.
- String
- Default share permission for users using Kerberos authentication if RBAC role is not assigned.
- directory
Service stringOptions - Indicates the directory service used. Note that this enum may be extended in the future.
- active
Directory ActiveProperties Directory Properties Response - Required if directoryServiceOptions are AD, optional if they are AADKERB.
- string
- Default share permission for users using Kerberos authentication if RBAC role is not assigned.
- directory_
service_ stroptions - Indicates the directory service used. Note that this enum may be extended in the future.
- active_
directory_ Activeproperties Directory Properties Response - Required if directoryServiceOptions are AD, optional if they are AADKERB.
- str
- Default share permission for users using Kerberos authentication if RBAC role is not assigned.
- directory
Service StringOptions - Indicates the directory service used. Note that this enum may be extended in the future.
- active
Directory Property MapProperties - Required if directoryServiceOptions are AD, optional if they are AADKERB.
- String
- Default share permission for users using Kerberos authentication if RBAC role is not assigned.
BlobRestoreParametersResponse, BlobRestoreParametersResponseArgs
- Blob
Ranges List<Pulumi.Azure Native. Storage. Inputs. Blob Restore Range Response> - Blob ranges to restore.
- Time
To stringRestore - Restore blob to the specified time.
- Blob
Ranges []BlobRestore Range Response - Blob ranges to restore.
- Time
To stringRestore - Restore blob to the specified time.
- blob
Ranges List<BlobRestore Range Response> - Blob ranges to restore.
- time
To StringRestore - Restore blob to the specified time.
- blob
Ranges BlobRestore Range Response[] - Blob ranges to restore.
- time
To stringRestore - Restore blob to the specified time.
- blob_
ranges Sequence[BlobRestore Range Response] - Blob ranges to restore.
- time_
to_ strrestore - Restore blob to the specified time.
- blob
Ranges List<Property Map> - Blob ranges to restore.
- time
To StringRestore - Restore blob to the specified time.
BlobRestoreRangeResponse, BlobRestoreRangeResponseArgs
- End
Range string - Blob end range. This is exclusive. Empty means account end.
- Start
Range string - Blob start range. This is inclusive. Empty means account start.
- End
Range string - Blob end range. This is exclusive. Empty means account end.
- Start
Range string - Blob start range. This is inclusive. Empty means account start.
- end
Range String - Blob end range. This is exclusive. Empty means account end.
- start
Range String - Blob start range. This is inclusive. Empty means account start.
- end
Range string - Blob end range. This is exclusive. Empty means account end.
- start
Range string - Blob start range. This is inclusive. Empty means account start.
- end_
range str - Blob end range. This is exclusive. Empty means account end.
- start_
range str - Blob start range. This is inclusive. Empty means account start.
- end
Range String - Blob end range. This is exclusive. Empty means account end.
- start
Range String - Blob start range. This is inclusive. Empty means account start.
BlobRestoreStatusResponse, BlobRestoreStatusResponseArgs
- Failure
Reason string - Failure reason when blob restore is failed.
- Parameters
Pulumi.
Azure Native. Storage. Inputs. Blob Restore Parameters Response - Blob restore request parameters.
- Restore
Id string - Id for tracking blob restore request.
- Status string
- The status of blob restore progress. Possible values are: - InProgress: Indicates that blob restore is ongoing. - Complete: Indicates that blob restore has been completed successfully. - Failed: Indicates that blob restore is failed.
- Failure
Reason string - Failure reason when blob restore is failed.
- Parameters
Blob
Restore Parameters Response - Blob restore request parameters.
- Restore
Id string - Id for tracking blob restore request.
- Status string
- The status of blob restore progress. Possible values are: - InProgress: Indicates that blob restore is ongoing. - Complete: Indicates that blob restore has been completed successfully. - Failed: Indicates that blob restore is failed.
- failure
Reason String - Failure reason when blob restore is failed.
- parameters
Blob
Restore Parameters Response - Blob restore request parameters.
- restore
Id String - Id for tracking blob restore request.
- status String
- The status of blob restore progress. Possible values are: - InProgress: Indicates that blob restore is ongoing. - Complete: Indicates that blob restore has been completed successfully. - Failed: Indicates that blob restore is failed.
- failure
Reason string - Failure reason when blob restore is failed.
- parameters
Blob
Restore Parameters Response - Blob restore request parameters.
- restore
Id string - Id for tracking blob restore request.
- status string
- The status of blob restore progress. Possible values are: - InProgress: Indicates that blob restore is ongoing. - Complete: Indicates that blob restore has been completed successfully. - Failed: Indicates that blob restore is failed.
- failure_
reason str - Failure reason when blob restore is failed.
- parameters
Blob
Restore Parameters Response - Blob restore request parameters.
- restore_
id str - Id for tracking blob restore request.
- status str
- The status of blob restore progress. Possible values are: - InProgress: Indicates that blob restore is ongoing. - Complete: Indicates that blob restore has been completed successfully. - Failed: Indicates that blob restore is failed.
- failure
Reason String - Failure reason when blob restore is failed.
- parameters Property Map
- Blob restore request parameters.
- restore
Id String - Id for tracking blob restore request.
- status String
- The status of blob restore progress. Possible values are: - InProgress: Indicates that blob restore is ongoing. - Complete: Indicates that blob restore has been completed successfully. - Failed: Indicates that blob restore is failed.
Bypass, BypassArgs
- None
- None
- Logging
- Logging
- Metrics
- Metrics
- Azure
Services - AzureServices
- Bypass
None - None
- Bypass
Logging - Logging
- Bypass
Metrics - Metrics
- Bypass
Azure Services - AzureServices
- None
- None
- Logging
- Logging
- Metrics
- Metrics
- Azure
Services - AzureServices
- None
- None
- Logging
- Logging
- Metrics
- Metrics
- Azure
Services - AzureServices
- NONE
- None
- LOGGING
- Logging
- METRICS
- Metrics
- AZURE_SERVICES
- AzureServices
- "None"
- None
- "Logging"
- Logging
- "Metrics"
- Metrics
- "Azure
Services" - AzureServices
CustomDomain, CustomDomainArgs
- Name string
- Gets or sets the custom domain name assigned to the storage account. Name is the CNAME source.
- Use
Sub boolDomain Name - Indicates whether indirect CName validation is enabled. Default value is false. This should only be set on updates.
- Name string
- Gets or sets the custom domain name assigned to the storage account. Name is the CNAME source.
- Use
Sub boolDomain Name - Indicates whether indirect CName validation is enabled. Default value is false. This should only be set on updates.
- name String
- Gets or sets the custom domain name assigned to the storage account. Name is the CNAME source.
- use
Sub BooleanDomain Name - Indicates whether indirect CName validation is enabled. Default value is false. This should only be set on updates.
- name string
- Gets or sets the custom domain name assigned to the storage account. Name is the CNAME source.
- use
Sub booleanDomain Name - Indicates whether indirect CName validation is enabled. Default value is false. This should only be set on updates.
- name str
- Gets or sets the custom domain name assigned to the storage account. Name is the CNAME source.
- use_
sub_ booldomain_ name - Indicates whether indirect CName validation is enabled. Default value is false. This should only be set on updates.
- name String
- Gets or sets the custom domain name assigned to the storage account. Name is the CNAME source.
- use
Sub BooleanDomain Name - Indicates whether indirect CName validation is enabled. Default value is false. This should only be set on updates.
CustomDomainResponse, CustomDomainResponseArgs
- Name string
- Gets or sets the custom domain name assigned to the storage account. Name is the CNAME source.
- Use
Sub boolDomain Name - Indicates whether indirect CName validation is enabled. Default value is false. This should only be set on updates.
- Name string
- Gets or sets the custom domain name assigned to the storage account. Name is the CNAME source.
- Use
Sub boolDomain Name - Indicates whether indirect CName validation is enabled. Default value is false. This should only be set on updates.
- name String
- Gets or sets the custom domain name assigned to the storage account. Name is the CNAME source.
- use
Sub BooleanDomain Name - Indicates whether indirect CName validation is enabled. Default value is false. This should only be set on updates.
- name string
- Gets or sets the custom domain name assigned to the storage account. Name is the CNAME source.
- use
Sub booleanDomain Name - Indicates whether indirect CName validation is enabled. Default value is false. This should only be set on updates.
- name str
- Gets or sets the custom domain name assigned to the storage account. Name is the CNAME source.
- use_
sub_ booldomain_ name - Indicates whether indirect CName validation is enabled. Default value is false. This should only be set on updates.
- name String
- Gets or sets the custom domain name assigned to the storage account. Name is the CNAME source.
- use
Sub BooleanDomain Name - Indicates whether indirect CName validation is enabled. Default value is false. This should only be set on updates.
DefaultAction, DefaultActionArgs
- Allow
- Allow
- Deny
- Deny
- Default
Action Allow - Allow
- Default
Action Deny - Deny
- Allow
- Allow
- Deny
- Deny
- Allow
- Allow
- Deny
- Deny
- ALLOW
- Allow
- DENY
- Deny
- "Allow"
- Allow
- "Deny"
- Deny
DefaultSharePermission, DefaultSharePermissionArgs
- None
- None
- Storage
File Data Smb Share Reader - StorageFileDataSmbShareReader
- Storage
File Data Smb Share Contributor - StorageFileDataSmbShareContributor
- Storage
File Data Smb Share Elevated Contributor - StorageFileDataSmbShareElevatedContributor
- Default
Share Permission None - None
- Default
Share Permission Storage File Data Smb Share Reader - StorageFileDataSmbShareReader
- Default
Share Permission Storage File Data Smb Share Contributor - StorageFileDataSmbShareContributor
- Default
Share Permission Storage File Data Smb Share Elevated Contributor - StorageFileDataSmbShareElevatedContributor
- None
- None
- Storage
File Data Smb Share Reader - StorageFileDataSmbShareReader
- Storage
File Data Smb Share Contributor - StorageFileDataSmbShareContributor
- Storage
File Data Smb Share Elevated Contributor - StorageFileDataSmbShareElevatedContributor
- None
- None
- Storage
File Data Smb Share Reader - StorageFileDataSmbShareReader
- Storage
File Data Smb Share Contributor - StorageFileDataSmbShareContributor
- Storage
File Data Smb Share Elevated Contributor - StorageFileDataSmbShareElevatedContributor
- NONE
- None
- STORAGE_FILE_DATA_SMB_SHARE_READER
- StorageFileDataSmbShareReader
- STORAGE_FILE_DATA_SMB_SHARE_CONTRIBUTOR
- StorageFileDataSmbShareContributor
- STORAGE_FILE_DATA_SMB_SHARE_ELEVATED_CONTRIBUTOR
- StorageFileDataSmbShareElevatedContributor
- "None"
- None
- "Storage
File Data Smb Share Reader" - StorageFileDataSmbShareReader
- "Storage
File Data Smb Share Contributor" - StorageFileDataSmbShareContributor
- "Storage
File Data Smb Share Elevated Contributor" - StorageFileDataSmbShareElevatedContributor
DirectoryServiceOptions, DirectoryServiceOptionsArgs
- None
- None
- AADDS
- AADDS
- AD
- AD
- AADKERB
- AADKERB
- Directory
Service Options None - None
- Directory
Service Options AADDS - AADDS
- Directory
Service Options AD - AD
- Directory
Service Options AADKERB - AADKERB
- None
- None
- AADDS
- AADDS
- AD
- AD
- AADKERB
- AADKERB
- None
- None
- AADDS
- AADDS
- AD
- AD
- AADKERB
- AADKERB
- NONE
- None
- AADDS
- AADDS
- AD
- AD
- AADKERB
- AADKERB
- "None"
- None
- "AADDS"
- AADDS
- "AD"
- AD
- "AADKERB"
- AADKERB
DnsEndpointType, DnsEndpointTypeArgs
- Standard
- Standard
- Azure
Dns Zone - AzureDnsZone
- Dns
Endpoint Type Standard - Standard
- Dns
Endpoint Type Azure Dns Zone - AzureDnsZone
- Standard
- Standard
- Azure
Dns Zone - AzureDnsZone
- Standard
- Standard
- Azure
Dns Zone - AzureDnsZone
- STANDARD
- Standard
- AZURE_DNS_ZONE
- AzureDnsZone
- "Standard"
- Standard
- "Azure
Dns Zone" - AzureDnsZone
Encryption, EncryptionArgs
- Encryption
Identity Pulumi.Azure Native. Storage. Inputs. Encryption Identity - The identity to be used with service-side encryption at rest.
- Key
Source string | Pulumi.Azure Native. Storage. Key Source - The encryption keySource (provider). Possible values (case-insensitive): Microsoft.Storage, Microsoft.Keyvault
- Key
Vault Pulumi.Properties Azure Native. Storage. Inputs. Key Vault Properties - Properties provided by key vault.
- Require
Infrastructure boolEncryption - A boolean indicating whether or not the service applies a secondary layer of encryption with platform managed keys for data at rest.
- Services
Pulumi.
Azure Native. Storage. Inputs. Encryption Services - List of services which support encryption.
- Encryption
Identity EncryptionIdentity - The identity to be used with service-side encryption at rest.
- Key
Source string | KeySource - The encryption keySource (provider). Possible values (case-insensitive): Microsoft.Storage, Microsoft.Keyvault
- Key
Vault KeyProperties Vault Properties - Properties provided by key vault.
- Require
Infrastructure boolEncryption - A boolean indicating whether or not the service applies a secondary layer of encryption with platform managed keys for data at rest.
- Services
Encryption
Services - List of services which support encryption.
- encryption
Identity EncryptionIdentity - The identity to be used with service-side encryption at rest.
- key
Source String | KeySource - The encryption keySource (provider). Possible values (case-insensitive): Microsoft.Storage, Microsoft.Keyvault
- key
Vault KeyProperties Vault Properties - Properties provided by key vault.
- require
I