Docs
Packagesazure-native.storage.StorageAccount
Explore with Pulumi AI
The storage account. Azure REST API version: 2022-09-01. Prior API version in Azure Native 1.x: 2021-02-01
Example Usage
NfsV3AccountCreate
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var storageAccount = new AzureNative.Storage.StorageAccount("storageAccount", new()
{
AccountName = "sto4445",
EnableHttpsTrafficOnly = false,
EnableNfsV3 = true,
IsHnsEnabled = true,
Kind = "BlockBlobStorage",
Location = "eastus",
NetworkRuleSet = new AzureNative.Storage.Inputs.NetworkRuleSetArgs
{
Bypass = "AzureServices",
DefaultAction = AzureNative.Storage.DefaultAction.Allow,
IpRules = new[] {},
VirtualNetworkRules = new[]
{
new AzureNative.Storage.Inputs.VirtualNetworkRuleArgs
{
VirtualNetworkResourceId = "/subscriptions/{subscription-id}/resourceGroups/res9101/providers/Microsoft.Network/virtualNetworks/net123/subnets/subnet12",
},
},
},
ResourceGroupName = "res9101",
Sku = new AzureNative.Storage.Inputs.SkuArgs
{
Name = "Premium_LRS",
},
});
});
package main
import (
"github.com/pulumi/pulumi-azure-native-sdk/storage/v2"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := storage.NewStorageAccount(ctx, "storageAccount", &storage.StorageAccountArgs{
AccountName: pulumi.String("sto4445"),
EnableHttpsTrafficOnly: pulumi.Bool(false),
EnableNfsV3: pulumi.Bool(true),
IsHnsEnabled: pulumi.Bool(true),
Kind: pulumi.String("BlockBlobStorage"),
Location: pulumi.String("eastus"),
NetworkRuleSet: storage.NetworkRuleSetResponse{
Bypass: pulumi.String("AzureServices"),
DefaultAction: storage.DefaultActionAllow,
IpRules: storage.IPRuleArray{},
VirtualNetworkRules: storage.VirtualNetworkRuleArray{
&storage.VirtualNetworkRuleArgs{
VirtualNetworkResourceId: pulumi.String("/subscriptions/{subscription-id}/resourceGroups/res9101/providers/Microsoft.Network/virtualNetworks/net123/subnets/subnet12"),
},
},
},
ResourceGroupName: pulumi.String("res9101"),
Sku: &storage.SkuArgs{
Name: pulumi.String("Premium_LRS"),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.storage.StorageAccount;
import com.pulumi.azurenative.storage.StorageAccountArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var storageAccount = new StorageAccount("storageAccount", StorageAccountArgs.builder()
.accountName("sto4445")
.enableHttpsTrafficOnly(false)
.enableNfsV3(true)
.isHnsEnabled(true)
.kind("BlockBlobStorage")
.location("eastus")
.networkRuleSet(Map.ofEntries(
Map.entry("bypass", "AzureServices"),
Map.entry("defaultAction", "Allow"),
Map.entry("ipRules", ),
Map.entry("virtualNetworkRules", Map.of("virtualNetworkResourceId", "/subscriptions/{subscription-id}/resourceGroups/res9101/providers/Microsoft.Network/virtualNetworks/net123/subnets/subnet12"))
))
.resourceGroupName("res9101")
.sku(Map.of("name", "Premium_LRS"))
.build());
}
}
import pulumi
import pulumi_azure_native as azure_native
storage_account = azure_native.storage.StorageAccount("storageAccount",
account_name="sto4445",
enable_https_traffic_only=False,
enable_nfs_v3=True,
is_hns_enabled=True,
kind="BlockBlobStorage",
location="eastus",
network_rule_set=azure_native.storage.NetworkRuleSetResponseArgs(
bypass="AzureServices",
default_action=azure_native.storage.DefaultAction.ALLOW,
ip_rules=[],
virtual_network_rules=[azure_native.storage.VirtualNetworkRuleArgs(
virtual_network_resource_id="/subscriptions/{subscription-id}/resourceGroups/res9101/providers/Microsoft.Network/virtualNetworks/net123/subnets/subnet12",
)],
),
resource_group_name="res9101",
sku=azure_native.storage.SkuArgs(
name="Premium_LRS",
))
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const storageAccount = new azure_native.storage.StorageAccount("storageAccount", {
accountName: "sto4445",
enableHttpsTrafficOnly: false,
enableNfsV3: true,
isHnsEnabled: true,
kind: "BlockBlobStorage",
location: "eastus",
networkRuleSet: {
bypass: "AzureServices",
defaultAction: azure_native.storage.DefaultAction.Allow,
ipRules: [],
virtualNetworkRules: [{
virtualNetworkResourceId: "/subscriptions/{subscription-id}/resourceGroups/res9101/providers/Microsoft.Network/virtualNetworks/net123/subnets/subnet12",
}],
},
resourceGroupName: "res9101",
sku: {
name: "Premium_LRS",
},
});
resources:
storageAccount:
type: azure-native:storage:StorageAccount
properties:
accountName: sto4445
enableHttpsTrafficOnly: false
enableNfsV3: true
isHnsEnabled: true
kind: BlockBlobStorage
location: eastus
networkRuleSet:
bypass: AzureServices
defaultAction: Allow
ipRules: []
virtualNetworkRules:
- virtualNetworkResourceId: /subscriptions/{subscription-id}/resourceGroups/res9101/providers/Microsoft.Network/virtualNetworks/net123/subnets/subnet12
resourceGroupName: res9101
sku:
name: Premium_LRS
StorageAccountCreate
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var storageAccount = new AzureNative.Storage.StorageAccount("storageAccount", new()
{
AccountName = "sto4445",
AllowBlobPublicAccess = false,
AllowSharedKeyAccess = true,
DefaultToOAuthAuthentication = false,
Encryption = new AzureNative.Storage.Inputs.EncryptionArgs
{
KeySource = "Microsoft.Storage",
RequireInfrastructureEncryption = false,
Services = new AzureNative.Storage.Inputs.EncryptionServicesArgs
{
Blob = new AzureNative.Storage.Inputs.EncryptionServiceArgs
{
Enabled = true,
KeyType = "Account",
},
File = new AzureNative.Storage.Inputs.EncryptionServiceArgs
{
Enabled = true,
KeyType = "Account",
},
},
},
ExtendedLocation = new AzureNative.Storage.Inputs.ExtendedLocationArgs
{
Name = "losangeles001",
Type = "EdgeZone",
},
IsHnsEnabled = true,
IsSftpEnabled = true,
KeyPolicy = new AzureNative.Storage.Inputs.KeyPolicyArgs
{
KeyExpirationPeriodInDays = 20,
},
Kind = "Storage",
Location = "eastus",
MinimumTlsVersion = "TLS1_2",
ResourceGroupName = "res9101",
RoutingPreference = new AzureNative.Storage.Inputs.RoutingPreferenceArgs
{
PublishInternetEndpoints = true,
PublishMicrosoftEndpoints = true,
RoutingChoice = "MicrosoftRouting",
},
SasPolicy = new AzureNative.Storage.Inputs.SasPolicyArgs
{
ExpirationAction = "Log",
SasExpirationPeriod = "1.15:59:59",
},
Sku = new AzureNative.Storage.Inputs.SkuArgs
{
Name = "Standard_GRS",
},
Tags =
{
{ "key1", "value1" },
{ "key2", "value2" },
},
});
});
package main
import (
"github.com/pulumi/pulumi-azure-native-sdk/storage/v2"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := storage.NewStorageAccount(ctx, "storageAccount", &storage.StorageAccountArgs{
AccountName: pulumi.String("sto4445"),
AllowBlobPublicAccess: pulumi.Bool(false),
AllowSharedKeyAccess: pulumi.Bool(true),
DefaultToOAuthAuthentication: pulumi.Bool(false),
Encryption: storage.EncryptionResponse{
KeySource: pulumi.String("Microsoft.Storage"),
RequireInfrastructureEncryption: pulumi.Bool(false),
Services: interface{}{
Blob: &storage.EncryptionServiceArgs{
Enabled: pulumi.Bool(true),
KeyType: pulumi.String("Account"),
},
File: &storage.EncryptionServiceArgs{
Enabled: pulumi.Bool(true),
KeyType: pulumi.String("Account"),
},
},
},
ExtendedLocation: &storage.ExtendedLocationArgs{
Name: pulumi.String("losangeles001"),
Type: pulumi.String("EdgeZone"),
},
IsHnsEnabled: pulumi.Bool(true),
IsSftpEnabled: pulumi.Bool(true),
KeyPolicy: &storage.KeyPolicyArgs{
KeyExpirationPeriodInDays: pulumi.Int(20),
},
Kind: pulumi.String("Storage"),
Location: pulumi.String("eastus"),
MinimumTlsVersion: pulumi.String("TLS1_2"),
ResourceGroupName: pulumi.String("res9101"),
RoutingPreference: &storage.RoutingPreferenceArgs{
PublishInternetEndpoints: pulumi.Bool(true),
PublishMicrosoftEndpoints: pulumi.Bool(true),
RoutingChoice: pulumi.String("MicrosoftRouting"),
},
SasPolicy: &storage.SasPolicyArgs{
ExpirationAction: pulumi.String("Log"),
SasExpirationPeriod: pulumi.String("1.15:59:59"),
},
Sku: &storage.SkuArgs{
Name: pulumi.String("Standard_GRS"),
},
Tags: pulumi.StringMap{
"key1": pulumi.String("value1"),
"key2": pulumi.String("value2"),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.storage.StorageAccount;
import com.pulumi.azurenative.storage.StorageAccountArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var storageAccount = new StorageAccount("storageAccount", StorageAccountArgs.builder()
.accountName("sto4445")
.allowBlobPublicAccess(false)
.allowSharedKeyAccess(true)
.defaultToOAuthAuthentication(false)
.encryption(Map.ofEntries(
Map.entry("keySource", "Microsoft.Storage"),
Map.entry("requireInfrastructureEncryption", false),
Map.entry("services", Map.ofEntries(
Map.entry("blob", Map.ofEntries(
Map.entry("enabled", true),
Map.entry("keyType", "Account")
)),
Map.entry("file", Map.ofEntries(
Map.entry("enabled", true),
Map.entry("keyType", "Account")
))
))
))
.extendedLocation(Map.ofEntries(
Map.entry("name", "losangeles001"),
Map.entry("type", "EdgeZone")
))
.isHnsEnabled(true)
.isSftpEnabled(true)
.keyPolicy(Map.of("keyExpirationPeriodInDays", 20))
.kind("Storage")
.location("eastus")
.minimumTlsVersion("TLS1_2")
.resourceGroupName("res9101")
.routingPreference(Map.ofEntries(
Map.entry("publishInternetEndpoints", true),
Map.entry("publishMicrosoftEndpoints", true),
Map.entry("routingChoice", "MicrosoftRouting")
))
.sasPolicy(Map.ofEntries(
Map.entry("expirationAction", "Log"),
Map.entry("sasExpirationPeriod", "1.15:59:59")
))
.sku(Map.of("name", "Standard_GRS"))
.tags(Map.ofEntries(
Map.entry("key1", "value1"),
Map.entry("key2", "value2")
))
.build());
}
}
import pulumi
import pulumi_azure_native as azure_native
storage_account = azure_native.storage.StorageAccount("storageAccount",
account_name="sto4445",
allow_blob_public_access=False,
allow_shared_key_access=True,
default_to_o_auth_authentication=False,
encryption=azure_native.storage.EncryptionResponseArgs(
key_source="Microsoft.Storage",
require_infrastructure_encryption=False,
services={
"blob": azure_native.storage.EncryptionServiceArgs(
enabled=True,
key_type="Account",
),
"file": azure_native.storage.EncryptionServiceArgs(
enabled=True,
key_type="Account",
),
},
),
extended_location=azure_native.storage.ExtendedLocationArgs(
name="losangeles001",
type="EdgeZone",
),
is_hns_enabled=True,
is_sftp_enabled=True,
key_policy=azure_native.storage.KeyPolicyArgs(
key_expiration_period_in_days=20,
),
kind="Storage",
location="eastus",
minimum_tls_version="TLS1_2",
resource_group_name="res9101",
routing_preference=azure_native.storage.RoutingPreferenceArgs(
publish_internet_endpoints=True,
publish_microsoft_endpoints=True,
routing_choice="MicrosoftRouting",
),
sas_policy=azure_native.storage.SasPolicyArgs(
expiration_action="Log",
sas_expiration_period="1.15:59:59",
),
sku=azure_native.storage.SkuArgs(
name="Standard_GRS",
),
tags={
"key1": "value1",
"key2": "value2",
})
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const storageAccount = new azure_native.storage.StorageAccount("storageAccount", {
accountName: "sto4445",
allowBlobPublicAccess: false,
allowSharedKeyAccess: true,
defaultToOAuthAuthentication: false,
encryption: {
keySource: "Microsoft.Storage",
requireInfrastructureEncryption: false,
services: {
blob: {
enabled: true,
keyType: "Account",
},
file: {
enabled: true,
keyType: "Account",
},
},
},
extendedLocation: {
name: "losangeles001",
type: "EdgeZone",
},
isHnsEnabled: true,
isSftpEnabled: true,
keyPolicy: {
keyExpirationPeriodInDays: 20,
},
kind: "Storage",
location: "eastus",
minimumTlsVersion: "TLS1_2",
resourceGroupName: "res9101",
routingPreference: {
publishInternetEndpoints: true,
publishMicrosoftEndpoints: true,
routingChoice: "MicrosoftRouting",
},
sasPolicy: {
expirationAction: "Log",
sasExpirationPeriod: "1.15:59:59",
},
sku: {
name: "Standard_GRS",
},
tags: {
key1: "value1",
key2: "value2",
},
});
resources:
storageAccount:
type: azure-native:storage:StorageAccount
properties:
accountName: sto4445
allowBlobPublicAccess: false
allowSharedKeyAccess: true
defaultToOAuthAuthentication: false
encryption:
keySource: Microsoft.Storage
requireInfrastructureEncryption: false
services:
blob:
enabled: true
keyType: Account
file:
enabled: true
keyType: Account
extendedLocation:
name: losangeles001
type: EdgeZone
isHnsEnabled: true
isSftpEnabled: true
keyPolicy:
keyExpirationPeriodInDays: 20
kind: Storage
location: eastus
minimumTlsVersion: TLS1_2
resourceGroupName: res9101
routingPreference:
publishInternetEndpoints: true
publishMicrosoftEndpoints: true
routingChoice: MicrosoftRouting
sasPolicy:
expirationAction: Log
sasExpirationPeriod: 1.15:59:59
sku:
name: Standard_GRS
tags:
key1: value1
key2: value2
StorageAccountCreateAllowedCopyScopeToAAD
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var storageAccount = new AzureNative.Storage.StorageAccount("storageAccount", new()
{
AccountName = "sto4445",
AllowBlobPublicAccess = false,
AllowSharedKeyAccess = true,
AllowedCopyScope = "AAD",
Encryption = new AzureNative.Storage.Inputs.EncryptionArgs
{
KeySource = "Microsoft.Storage",
RequireInfrastructureEncryption = false,
Services = new AzureNative.Storage.Inputs.EncryptionServicesArgs
{
Blob = new AzureNative.Storage.Inputs.EncryptionServiceArgs
{
Enabled = true,
KeyType = "Account",
},
File = new AzureNative.Storage.Inputs.EncryptionServiceArgs
{
Enabled = true,
KeyType = "Account",
},
},
},
IsHnsEnabled = true,
KeyPolicy = new AzureNative.Storage.Inputs.KeyPolicyArgs
{
KeyExpirationPeriodInDays = 20,
},
Kind = "Storage",
Location = "eastus",
MinimumTlsVersion = "TLS1_2",
ResourceGroupName = "res9101",
RoutingPreference = new AzureNative.Storage.Inputs.RoutingPreferenceArgs
{
PublishInternetEndpoints = true,
PublishMicrosoftEndpoints = true,
RoutingChoice = "MicrosoftRouting",
},
SasPolicy = new AzureNative.Storage.Inputs.SasPolicyArgs
{
ExpirationAction = "Log",
SasExpirationPeriod = "1.15:59:59",
},
Sku = new AzureNative.Storage.Inputs.SkuArgs
{
Name = "Standard_GRS",
},
Tags =
{
{ "key1", "value1" },
{ "key2", "value2" },
},
});
});
package main
import (
"github.com/pulumi/pulumi-azure-native-sdk/storage/v2"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := storage.NewStorageAccount(ctx, "storageAccount", &storage.StorageAccountArgs{
AccountName: pulumi.String("sto4445"),
AllowBlobPublicAccess: pulumi.Bool(false),
AllowSharedKeyAccess: pulumi.Bool(true),
AllowedCopyScope: pulumi.String("AAD"),
Encryption: storage.EncryptionResponse{
KeySource: pulumi.String("Microsoft.Storage"),
RequireInfrastructureEncryption: pulumi.Bool(false),
Services: interface{}{
Blob: &storage.EncryptionServiceArgs{
Enabled: pulumi.Bool(true),
KeyType: pulumi.String("Account"),
},
File: &storage.EncryptionServiceArgs{
Enabled: pulumi.Bool(true),
KeyType: pulumi.String("Account"),
},
},
},
IsHnsEnabled: pulumi.Bool(true),
KeyPolicy: &storage.KeyPolicyArgs{
KeyExpirationPeriodInDays: pulumi.Int(20),
},
Kind: pulumi.String("Storage"),
Location: pulumi.String("eastus"),
MinimumTlsVersion: pulumi.String("TLS1_2"),
ResourceGroupName: pulumi.String("res9101"),
RoutingPreference: &storage.RoutingPreferenceArgs{
PublishInternetEndpoints: pulumi.Bool(true),
PublishMicrosoftEndpoints: pulumi.Bool(true),
RoutingChoice: pulumi.String("MicrosoftRouting"),
},
SasPolicy: &storage.SasPolicyArgs{
ExpirationAction: pulumi.String("Log"),
SasExpirationPeriod: pulumi.String("1.15:59:59"),
},
Sku: &storage.SkuArgs{
Name: pulumi.String("Standard_GRS"),
},
Tags: pulumi.StringMap{
"key1": pulumi.String("value1"),
"key2": pulumi.String("value2"),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.storage.StorageAccount;
import com.pulumi.azurenative.storage.StorageAccountArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var storageAccount = new StorageAccount("storageAccount", StorageAccountArgs.builder()
.accountName("sto4445")
.allowBlobPublicAccess(false)
.allowSharedKeyAccess(true)
.allowedCopyScope("AAD")
.encryption(Map.ofEntries(
Map.entry("keySource", "Microsoft.Storage"),
Map.entry("requireInfrastructureEncryption", false),
Map.entry("services", Map.ofEntries(
Map.entry("blob", Map.ofEntries(
Map.entry("enabled", true),
Map.entry("keyType", "Account")
)),
Map.entry("file", Map.ofEntries(
Map.entry("enabled", true),
Map.entry("keyType", "Account")
))
))
))
.isHnsEnabled(true)
.keyPolicy(Map.of("keyExpirationPeriodInDays", 20))
.kind("Storage")
.location("eastus")
.minimumTlsVersion("TLS1_2")
.resourceGroupName("res9101")
.routingPreference(Map.ofEntries(
Map.entry("publishInternetEndpoints", true),
Map.entry("publishMicrosoftEndpoints", true),
Map.entry("routingChoice", "MicrosoftRouting")
))
.sasPolicy(Map.ofEntries(
Map.entry("expirationAction", "Log"),
Map.entry("sasExpirationPeriod", "1.15:59:59")
))
.sku(Map.of("name", "Standard_GRS"))
.tags(Map.ofEntries(
Map.entry("key1", "value1"),
Map.entry("key2", "value2")
))
.build());
}
}
import pulumi
import pulumi_azure_native as azure_native
storage_account = azure_native.storage.StorageAccount("storageAccount",
account_name="sto4445",
allow_blob_public_access=False,
allow_shared_key_access=True,
allowed_copy_scope="AAD",
encryption=azure_native.storage.EncryptionResponseArgs(
key_source="Microsoft.Storage",
require_infrastructure_encryption=False,
services={
"blob": azure_native.storage.EncryptionServiceArgs(
enabled=True,
key_type="Account",
),
"file": azure_native.storage.EncryptionServiceArgs(
enabled=True,
key_type="Account",
),
},
),
is_hns_enabled=True,
key_policy=azure_native.storage.KeyPolicyArgs(
key_expiration_period_in_days=20,
),
kind="Storage",
location="eastus",
minimum_tls_version="TLS1_2",
resource_group_name="res9101",
routing_preference=azure_native.storage.RoutingPreferenceArgs(
publish_internet_endpoints=True,
publish_microsoft_endpoints=True,
routing_choice="MicrosoftRouting",
),
sas_policy=azure_native.storage.SasPolicyArgs(
expiration_action="Log",
sas_expiration_period="1.15:59:59",
),
sku=azure_native.storage.SkuArgs(
name="Standard_GRS",
),
tags={
"key1": "value1",
"key2": "value2",
})
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const storageAccount = new azure_native.storage.StorageAccount("storageAccount", {
accountName: "sto4445",
allowBlobPublicAccess: false,
allowSharedKeyAccess: true,
allowedCopyScope: "AAD",
encryption: {
keySource: "Microsoft.Storage",
requireInfrastructureEncryption: false,
services: {
blob: {
enabled: true,
keyType: "Account",
},
file: {
enabled: true,
keyType: "Account",
},
},
},
isHnsEnabled: true,
keyPolicy: {
keyExpirationPeriodInDays: 20,
},
kind: "Storage",
location: "eastus",
minimumTlsVersion: "TLS1_2",
resourceGroupName: "res9101",
routingPreference: {
publishInternetEndpoints: true,
publishMicrosoftEndpoints: true,
routingChoice: "MicrosoftRouting",
},
sasPolicy: {
expirationAction: "Log",
sasExpirationPeriod: "1.15:59:59",
},
sku: {
name: "Standard_GRS",
},
tags: {
key1: "value1",
key2: "value2",
},
});
resources:
storageAccount:
type: azure-native:storage:StorageAccount
properties:
accountName: sto4445
allowBlobPublicAccess: false
allowSharedKeyAccess: true
allowedCopyScope: AAD
encryption:
keySource: Microsoft.Storage
requireInfrastructureEncryption: false
services:
blob:
enabled: true
keyType: Account
file:
enabled: true
keyType: Account
isHnsEnabled: true
keyPolicy:
keyExpirationPeriodInDays: 20
kind: Storage
location: eastus
minimumTlsVersion: TLS1_2
resourceGroupName: res9101
routingPreference:
publishInternetEndpoints: true
publishMicrosoftEndpoints: true
routingChoice: MicrosoftRouting
sasPolicy:
expirationAction: Log
sasExpirationPeriod: 1.15:59:59
sku:
name: Standard_GRS
tags:
key1: value1
key2: value2
StorageAccountCreateAllowedCopyScopeToPrivateLink
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var storageAccount = new AzureNative.Storage.StorageAccount("storageAccount", new()
{
AccountName = "sto4445",
AllowBlobPublicAccess = false,
AllowSharedKeyAccess = true,
AllowedCopyScope = "PrivateLink",
Encryption = new AzureNative.Storage.Inputs.EncryptionArgs
{
KeySource = "Microsoft.Storage",
RequireInfrastructureEncryption = false,
Services = new AzureNative.Storage.Inputs.EncryptionServicesArgs
{
Blob = new AzureNative.Storage.Inputs.EncryptionServiceArgs
{
Enabled = true,
KeyType = "Account",
},
File = new AzureNative.Storage.Inputs.EncryptionServiceArgs
{
Enabled = true,
KeyType = "Account",
},
},
},
IsHnsEnabled = true,
KeyPolicy = new AzureNative.Storage.Inputs.KeyPolicyArgs
{
KeyExpirationPeriodInDays = 20,
},
Kind = "Storage",
Location = "eastus",
MinimumTlsVersion = "TLS1_2",
ResourceGroupName = "res9101",
RoutingPreference = new AzureNative.Storage.Inputs.RoutingPreferenceArgs
{
PublishInternetEndpoints = true,
PublishMicrosoftEndpoints = true,
RoutingChoice = "MicrosoftRouting",
},
SasPolicy = new AzureNative.Storage.Inputs.SasPolicyArgs
{
ExpirationAction = "Log",
SasExpirationPeriod = "1.15:59:59",
},
Sku = new AzureNative.Storage.Inputs.SkuArgs
{
Name = "Standard_GRS",
},
Tags =
{
{ "key1", "value1" },
{ "key2", "value2" },
},
});
});
package main
import (
"github.com/pulumi/pulumi-azure-native-sdk/storage/v2"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := storage.NewStorageAccount(ctx, "storageAccount", &storage.StorageAccountArgs{
AccountName: pulumi.String("sto4445"),
AllowBlobPublicAccess: pulumi.Bool(false),
AllowSharedKeyAccess: pulumi.Bool(true),
AllowedCopyScope: pulumi.String("PrivateLink"),
Encryption: storage.EncryptionResponse{
KeySource: pulumi.String("Microsoft.Storage"),
RequireInfrastructureEncryption: pulumi.Bool(false),
Services: interface{}{
Blob: &storage.EncryptionServiceArgs{
Enabled: pulumi.Bool(true),
KeyType: pulumi.String("Account"),
},
File: &storage.EncryptionServiceArgs{
Enabled: pulumi.Bool(true),
KeyType: pulumi.String("Account"),
},
},
},
IsHnsEnabled: pulumi.Bool(true),
KeyPolicy: &storage.KeyPolicyArgs{
KeyExpirationPeriodInDays: pulumi.Int(20),
},
Kind: pulumi.String("Storage"),
Location: pulumi.String("eastus"),
MinimumTlsVersion: pulumi.String("TLS1_2"),
ResourceGroupName: pulumi.String("res9101"),
RoutingPreference: &storage.RoutingPreferenceArgs{
PublishInternetEndpoints: pulumi.Bool(true),
PublishMicrosoftEndpoints: pulumi.Bool(true),
RoutingChoice: pulumi.String("MicrosoftRouting"),
},
SasPolicy: &storage.SasPolicyArgs{
ExpirationAction: pulumi.String("Log"),
SasExpirationPeriod: pulumi.String("1.15:59:59"),
},
Sku: &storage.SkuArgs{
Name: pulumi.String("Standard_GRS"),
},
Tags: pulumi.StringMap{
"key1": pulumi.String("value1"),
"key2": pulumi.String("value2"),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.storage.StorageAccount;
import com.pulumi.azurenative.storage.StorageAccountArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var storageAccount = new StorageAccount("storageAccount", StorageAccountArgs.builder()
.accountName("sto4445")
.allowBlobPublicAccess(false)
.allowSharedKeyAccess(true)
.allowedCopyScope("PrivateLink")
.encryption(Map.ofEntries(
Map.entry("keySource", "Microsoft.Storage"),
Map.entry("requireInfrastructureEncryption", false),
Map.entry("services", Map.ofEntries(
Map.entry("blob", Map.ofEntries(
Map.entry("enabled", true),
Map.entry("keyType", "Account")
)),
Map.entry("file", Map.ofEntries(
Map.entry("enabled", true),
Map.entry("keyType", "Account")
))
))
))
.isHnsEnabled(true)
.keyPolicy(Map.of("keyExpirationPeriodInDays", 20))
.kind("Storage")
.location("eastus")
.minimumTlsVersion("TLS1_2")
.resourceGroupName("res9101")
.routingPreference(Map.ofEntries(
Map.entry("publishInternetEndpoints", true),
Map.entry("publishMicrosoftEndpoints", true),
Map.entry("routingChoice", "MicrosoftRouting")
))
.sasPolicy(Map.ofEntries(
Map.entry("expirationAction", "Log"),
Map.entry("sasExpirationPeriod", "1.15:59:59")
))
.sku(Map.of("name", "Standard_GRS"))
.tags(Map.ofEntries(
Map.entry("key1", "value1"),
Map.entry("key2", "value2")
))
.build());
}
}
import pulumi
import pulumi_azure_native as azure_native
storage_account = azure_native.storage.StorageAccount("storageAccount",
account_name="sto4445",
allow_blob_public_access=False,
allow_shared_key_access=True,
allowed_copy_scope="PrivateLink",
encryption=azure_native.storage.EncryptionResponseArgs(
key_source="Microsoft.Storage",
require_infrastructure_encryption=False,
services={
"blob": azure_native.storage.EncryptionServiceArgs(
enabled=True,
key_type="Account",
),
"file": azure_native.storage.EncryptionServiceArgs(
enabled=True,
key_type="Account",
),
},
),
is_hns_enabled=True,
key_policy=azure_native.storage.KeyPolicyArgs(
key_expiration_period_in_days=20,
),
kind="Storage",
location="eastus",
minimum_tls_version="TLS1_2",
resource_group_name="res9101",
routing_preference=azure_native.storage.RoutingPreferenceArgs(
publish_internet_endpoints=True,
publish_microsoft_endpoints=True,
routing_choice="MicrosoftRouting",
),
sas_policy=azure_native.storage.SasPolicyArgs(
expiration_action="Log",
sas_expiration_period="1.15:59:59",
),
sku=azure_native.storage.SkuArgs(
name="Standard_GRS",
),
tags={
"key1": "value1",
"key2": "value2",
})
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const storageAccount = new azure_native.storage.StorageAccount("storageAccount", {
accountName: "sto4445",
allowBlobPublicAccess: false,
allowSharedKeyAccess: true,
allowedCopyScope: "PrivateLink",
encryption: {
keySource: "Microsoft.Storage",
requireInfrastructureEncryption: false,
services: {
blob: {
enabled: true,
keyType: "Account",
},
file: {
enabled: true,
keyType: "Account",
},
},
},
isHnsEnabled: true,
keyPolicy: {
keyExpirationPeriodInDays: 20,
},
kind: "Storage",
location: "eastus",
minimumTlsVersion: "TLS1_2",
resourceGroupName: "res9101",
routingPreference: {
publishInternetEndpoints: true,
publishMicrosoftEndpoints: true,
routingChoice: "MicrosoftRouting",
},
sasPolicy: {
expirationAction: "Log",
sasExpirationPeriod: "1.15:59:59",
},
sku: {
name: "Standard_GRS",
},
tags: {
key1: "value1",
key2: "value2",
},
});
resources:
storageAccount:
type: azure-native:storage:StorageAccount
properties:
accountName: sto4445
allowBlobPublicAccess: false
allowSharedKeyAccess: true
allowedCopyScope: PrivateLink
encryption:
keySource: Microsoft.Storage
requireInfrastructureEncryption: false
services:
blob:
enabled: true
keyType: Account
file:
enabled: true
keyType: Account
isHnsEnabled: true
keyPolicy:
keyExpirationPeriodInDays: 20
kind: Storage
location: eastus
minimumTlsVersion: TLS1_2
resourceGroupName: res9101
routingPreference:
publishInternetEndpoints: true
publishMicrosoftEndpoints: true
routingChoice: MicrosoftRouting
sasPolicy:
expirationAction: Log
sasExpirationPeriod: 1.15:59:59
sku:
name: Standard_GRS
tags:
key1: value1
key2: value2
StorageAccountCreateDisallowPublicNetworkAccess
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var storageAccount = new AzureNative.Storage.StorageAccount("storageAccount", new()
{
AccountName = "sto4445",
AllowBlobPublicAccess = false,
AllowSharedKeyAccess = true,
Encryption = new AzureNative.Storage.Inputs.EncryptionArgs
{
KeySource = "Microsoft.Storage",
RequireInfrastructureEncryption = false,
Services = new AzureNative.Storage.Inputs.EncryptionServicesArgs
{
Blob = new AzureNative.Storage.Inputs.EncryptionServiceArgs
{
Enabled = true,
KeyType = "Account",
},
File = new AzureNative.Storage.Inputs.EncryptionServiceArgs
{
Enabled = true,
KeyType = "Account",
},
},
},
ExtendedLocation = new AzureNative.Storage.Inputs.ExtendedLocationArgs
{
Name = "losangeles001",
Type = "EdgeZone",
},
IsHnsEnabled = true,
KeyPolicy = new AzureNative.Storage.Inputs.KeyPolicyArgs
{
KeyExpirationPeriodInDays = 20,
},
Kind = "Storage",
Location = "eastus",
MinimumTlsVersion = "TLS1_2",
PublicNetworkAccess = "Disabled",
ResourceGroupName = "res9101",
RoutingPreference = new AzureNative.Storage.Inputs.RoutingPreferenceArgs
{
PublishInternetEndpoints = true,
PublishMicrosoftEndpoints = true,
RoutingChoice = "MicrosoftRouting",
},
SasPolicy = new AzureNative.Storage.Inputs.SasPolicyArgs
{
ExpirationAction = "Log",
SasExpirationPeriod = "1.15:59:59",
},
Sku = new AzureNative.Storage.Inputs.SkuArgs
{
Name = "Standard_GRS",
},
Tags =
{
{ "key1", "value1" },
{ "key2", "value2" },
},
});
});
package main
import (
"github.com/pulumi/pulumi-azure-native-sdk/storage/v2"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := storage.NewStorageAccount(ctx, "storageAccount", &storage.StorageAccountArgs{
AccountName: pulumi.String("sto4445"),
AllowBlobPublicAccess: pulumi.Bool(false),
AllowSharedKeyAccess: pulumi.Bool(true),
Encryption: storage.EncryptionResponse{
KeySource: pulumi.String("Microsoft.Storage"),
RequireInfrastructureEncryption: pulumi.Bool(false),
Services: interface{}{
Blob: &storage.EncryptionServiceArgs{
Enabled: pulumi.Bool(true),
KeyType: pulumi.String("Account"),
},
File: &storage.EncryptionServiceArgs{
Enabled: pulumi.Bool(true),
KeyType: pulumi.String("Account"),
},
},
},
ExtendedLocation: &storage.ExtendedLocationArgs{
Name: pulumi.String("losangeles001"),
Type: pulumi.String("EdgeZone"),
},
IsHnsEnabled: pulumi.Bool(true),
KeyPolicy: &storage.KeyPolicyArgs{
KeyExpirationPeriodInDays: pulumi.Int(20),
},
Kind: pulumi.String("Storage"),
Location: pulumi.String("eastus"),
MinimumTlsVersion: pulumi.String("TLS1_2"),
PublicNetworkAccess: pulumi.String("Disabled"),
ResourceGroupName: pulumi.String("res9101"),
RoutingPreference: &storage.RoutingPreferenceArgs{
PublishInternetEndpoints: pulumi.Bool(true),
PublishMicrosoftEndpoints: pulumi.Bool(true),
RoutingChoice: pulumi.String("MicrosoftRouting"),
},
SasPolicy: &storage.SasPolicyArgs{
ExpirationAction: pulumi.String("Log"),
SasExpirationPeriod: pulumi.String("1.15:59:59"),
},
Sku: &storage.SkuArgs{
Name: pulumi.String("Standard_GRS"),
},
Tags: pulumi.StringMap{
"key1": pulumi.String("value1"),
"key2": pulumi.String("value2"),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.storage.StorageAccount;
import com.pulumi.azurenative.storage.StorageAccountArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var storageAccount = new StorageAccount("storageAccount", StorageAccountArgs.builder()
.accountName("sto4445")
.allowBlobPublicAccess(false)
.allowSharedKeyAccess(true)
.encryption(Map.ofEntries(
Map.entry("keySource", "Microsoft.Storage"),
Map.entry("requireInfrastructureEncryption", false),
Map.entry("services", Map.ofEntries(
Map.entry("blob", Map.ofEntries(
Map.entry("enabled", true),
Map.entry("keyType", "Account")
)),
Map.entry("file", Map.ofEntries(
Map.entry("enabled", true),
Map.entry("keyType", "Account")
))
))
))
.extendedLocation(Map.ofEntries(
Map.entry("name", "losangeles001"),
Map.entry("type", "EdgeZone")
))
.isHnsEnabled(true)
.keyPolicy(Map.of("keyExpirationPeriodInDays", 20))
.kind("Storage")
.location("eastus")
.minimumTlsVersion("TLS1_2")
.publicNetworkAccess("Disabled")
.resourceGroupName("res9101")
.routingPreference(Map.ofEntries(
Map.entry("publishInternetEndpoints", true),
Map.entry("publishMicrosoftEndpoints", true),
Map.entry("routingChoice", "MicrosoftRouting")
))
.sasPolicy(Map.ofEntries(
Map.entry("expirationAction", "Log"),
Map.entry("sasExpirationPeriod", "1.15:59:59")
))
.sku(Map.of("name", "Standard_GRS"))
.tags(Map.ofEntries(
Map.entry("key1", "value1"),
Map.entry("key2", "value2")
))
.build());
}
}
import pulumi
import pulumi_azure_native as azure_native
storage_account = azure_native.storage.StorageAccount("storageAccount",
account_name="sto4445",
allow_blob_public_access=False,
allow_shared_key_access=True,
encryption=azure_native.storage.EncryptionResponseArgs(
key_source="Microsoft.Storage",
require_infrastructure_encryption=False,
services={
"blob": azure_native.storage.EncryptionServiceArgs(
enabled=True,
key_type="Account",
),
"file": azure_native.storage.EncryptionServiceArgs(
enabled=True,
key_type="Account",
),
},
),
extended_location=azure_native.storage.ExtendedLocationArgs(
name="losangeles001",
type="EdgeZone",
),
is_hns_enabled=True,
key_policy=azure_native.storage.KeyPolicyArgs(
key_expiration_period_in_days=20,
),
kind="Storage",
location="eastus",
minimum_tls_version="TLS1_2",
public_network_access="Disabled",
resource_group_name="res9101",
routing_preference=azure_native.storage.RoutingPreferenceArgs(
publish_internet_endpoints=True,
publish_microsoft_endpoints=True,
routing_choice="MicrosoftRouting",
),
sas_policy=azure_native.storage.SasPolicyArgs(
expiration_action="Log",
sas_expiration_period="1.15:59:59",
),
sku=azure_native.storage.SkuArgs(
name="Standard_GRS",
),
tags={
"key1": "value1",
"key2": "value2",
})
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const storageAccount = new azure_native.storage.StorageAccount("storageAccount", {
accountName: "sto4445",
allowBlobPublicAccess: false,
allowSharedKeyAccess: true,
encryption: {
keySource: "Microsoft.Storage",
requireInfrastructureEncryption: false,
services: {
blob: {
enabled: true,
keyType: "Account",
},
file: {
enabled: true,
keyType: "Account",
},
},
},
extendedLocation: {
name: "losangeles001",
type: "EdgeZone",
},
isHnsEnabled: true,
keyPolicy: {
keyExpirationPeriodInDays: 20,
},
kind: "Storage",
location: "eastus",
minimumTlsVersion: "TLS1_2",
publicNetworkAccess: "Disabled",
resourceGroupName: "res9101",
routingPreference: {
publishInternetEndpoints: true,
publishMicrosoftEndpoints: true,
routingChoice: "MicrosoftRouting",
},
sasPolicy: {
expirationAction: "Log",
sasExpirationPeriod: "1.15:59:59",
},
sku: {
name: "Standard_GRS",
},
tags: {
key1: "value1",
key2: "value2",
},
});
resources:
storageAccount:
type: azure-native:storage:StorageAccount
properties:
accountName: sto4445
allowBlobPublicAccess: false
allowSharedKeyAccess: true
encryption:
keySource: Microsoft.Storage
requireInfrastructureEncryption: false
services:
blob:
enabled: true
keyType: Account
file:
enabled: true
keyType: Account
extendedLocation:
name: losangeles001
type: EdgeZone
isHnsEnabled: true
keyPolicy:
keyExpirationPeriodInDays: 20
kind: Storage
location: eastus
minimumTlsVersion: TLS1_2
publicNetworkAccess: Disabled
resourceGroupName: res9101
routingPreference:
publishInternetEndpoints: true
publishMicrosoftEndpoints: true
routingChoice: MicrosoftRouting
sasPolicy:
expirationAction: Log
sasExpirationPeriod: 1.15:59:59
sku:
name: Standard_GRS
tags:
key1: value1
key2: value2
StorageAccountCreateDnsEndpointTypeToAzureDnsZone
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var storageAccount = new AzureNative.Storage.StorageAccount("storageAccount", new()
{
AccountName = "sto4445",
AllowBlobPublicAccess = false,
AllowSharedKeyAccess = true,
DefaultToOAuthAuthentication = false,
DnsEndpointType = "AzureDnsZone",
Encryption = new AzureNative.Storage.Inputs.EncryptionArgs
{
KeySource = "Microsoft.Storage",
RequireInfrastructureEncryption = false,
Services = new AzureNative.Storage.Inputs.EncryptionServicesArgs
{
Blob = new AzureNative.Storage.Inputs.EncryptionServiceArgs
{
Enabled = true,
KeyType = "Account",
},
File = new AzureNative.Storage.Inputs.EncryptionServiceArgs
{
Enabled = true,
KeyType = "Account",
},
},
},
ExtendedLocation = new AzureNative.Storage.Inputs.ExtendedLocationArgs
{
Name = "losangeles001",
Type = "EdgeZone",
},
IsHnsEnabled = true,
IsSftpEnabled = true,
KeyPolicy = new AzureNative.Storage.Inputs.KeyPolicyArgs
{
KeyExpirationPeriodInDays = 20,
},
Kind = "Storage",
Location = "eastus",
MinimumTlsVersion = "TLS1_2",
ResourceGroupName = "res9101",
RoutingPreference = new AzureNative.Storage.Inputs.RoutingPreferenceArgs
{
PublishInternetEndpoints = true,
PublishMicrosoftEndpoints = true,
RoutingChoice = "MicrosoftRouting",
},
SasPolicy = new AzureNative.Storage.Inputs.SasPolicyArgs
{
ExpirationAction = "Log",
SasExpirationPeriod = "1.15:59:59",
},
Sku = new AzureNative.Storage.Inputs.SkuArgs
{
Name = "Standard_GRS",
},
Tags =
{
{ "key1", "value1" },
{ "key2", "value2" },
},
});
});
package main
import (
"github.com/pulumi/pulumi-azure-native-sdk/storage/v2"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := storage.NewStorageAccount(ctx, "storageAccount", &storage.StorageAccountArgs{
AccountName: pulumi.String("sto4445"),
AllowBlobPublicAccess: pulumi.Bool(false),
AllowSharedKeyAccess: pulumi.Bool(true),
DefaultToOAuthAuthentication: pulumi.Bool(false),
DnsEndpointType: pulumi.String("AzureDnsZone"),
Encryption: storage.EncryptionResponse{
KeySource: pulumi.String("Microsoft.Storage"),
RequireInfrastructureEncryption: pulumi.Bool(false),
Services: interface{}{
Blob: &storage.EncryptionServiceArgs{
Enabled: pulumi.Bool(true),
KeyType: pulumi.String("Account"),
},
File: &storage.EncryptionServiceArgs{
Enabled: pulumi.Bool(true),
KeyType: pulumi.String("Account"),
},
},
},
ExtendedLocation: &storage.ExtendedLocationArgs{
Name: pulumi.String("losangeles001"),
Type: pulumi.String("EdgeZone"),
},
IsHnsEnabled: pulumi.Bool(true),
IsSftpEnabled: pulumi.Bool(true),
KeyPolicy: &storage.KeyPolicyArgs{
KeyExpirationPeriodInDays: pulumi.Int(20),
},
Kind: pulumi.String("Storage"),
Location: pulumi.String("eastus"),
MinimumTlsVersion: pulumi.String("TLS1_2"),
ResourceGroupName: pulumi.String("res9101"),
RoutingPreference: &storage.RoutingPreferenceArgs{
PublishInternetEndpoints: pulumi.Bool(true),
PublishMicrosoftEndpoints: pulumi.Bool(true),
RoutingChoice: pulumi.String("MicrosoftRouting"),
},
SasPolicy: &storage.SasPolicyArgs{
ExpirationAction: pulumi.String("Log"),
SasExpirationPeriod: pulumi.String("1.15:59:59"),
},
Sku: &storage.SkuArgs{
Name: pulumi.String("Standard_GRS"),
},
Tags: pulumi.StringMap{
"key1": pulumi.String("value1"),
"key2": pulumi.String("value2"),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.storage.StorageAccount;
import com.pulumi.azurenative.storage.StorageAccountArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var storageAccount = new StorageAccount("storageAccount", StorageAccountArgs.builder()
.accountName("sto4445")
.allowBlobPublicAccess(false)
.allowSharedKeyAccess(true)
.defaultToOAuthAuthentication(false)
.dnsEndpointType("AzureDnsZone")
.encryption(Map.ofEntries(
Map.entry("keySource", "Microsoft.Storage"),
Map.entry("requireInfrastructureEncryption", false),
Map.entry("services", Map.ofEntries(
Map.entry("blob", Map.ofEntries(
Map.entry("enabled", true),
Map.entry("keyType", "Account")
)),
Map.entry("file", Map.ofEntries(
Map.entry("enabled", true),
Map.entry("keyType", "Account")
))
))
))
.extendedLocation(Map.ofEntries(
Map.entry("name", "losangeles001"),
Map.entry("type", "EdgeZone")
))
.isHnsEnabled(true)
.isSftpEnabled(true)
.keyPolicy(Map.of("keyExpirationPeriodInDays", 20))
.kind("Storage")
.location("eastus")
.minimumTlsVersion("TLS1_2")
.resourceGroupName("res9101")
.routingPreference(Map.ofEntries(
Map.entry("publishInternetEndpoints", true),
Map.entry("publishMicrosoftEndpoints", true),
Map.entry("routingChoice", "MicrosoftRouting")
))
.sasPolicy(Map.ofEntries(
Map.entry("expirationAction", "Log"),
Map.entry("sasExpirationPeriod", "1.15:59:59")
))
.sku(Map.of("name", "Standard_GRS"))
.tags(Map.ofEntries(
Map.entry("key1", "value1"),
Map.entry("key2", "value2")
))
.build());
}
}
import pulumi
import pulumi_azure_native as azure_native
storage_account = azure_native.storage.StorageAccount("storageAccount",
account_name="sto4445",
allow_blob_public_access=False,
allow_shared_key_access=True,
default_to_o_auth_authentication=False,
dns_endpoint_type="AzureDnsZone",
encryption=azure_native.storage.EncryptionResponseArgs(
key_source="Microsoft.Storage",
require_infrastructure_encryption=False,
services={
"blob": azure_native.storage.EncryptionServiceArgs(
enabled=True,
key_type="Account",
),
"file": azure_native.storage.EncryptionServiceArgs(
enabled=True,
key_type="Account",
),
},
),
extended_location=azure_native.storage.ExtendedLocationArgs(
name="losangeles001",
type="EdgeZone",
),
is_hns_enabled=True,
is_sftp_enabled=True,
key_policy=azure_native.storage.KeyPolicyArgs(
key_expiration_period_in_days=20,
),
kind="Storage",
location="eastus",
minimum_tls_version="TLS1_2",
resource_group_name="res9101",
routing_preference=azure_native.storage.RoutingPreferenceArgs(
publish_internet_endpoints=True,
publish_microsoft_endpoints=True,
routing_choice="MicrosoftRouting",
),
sas_policy=azure_native.storage.SasPolicyArgs(
expiration_action="Log",
sas_expiration_period="1.15:59:59",
),
sku=azure_native.storage.SkuArgs(
name="Standard_GRS",
),
tags={
"key1": "value1",
"key2": "value2",
})
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const storageAccount = new azure_native.storage.StorageAccount("storageAccount", {
accountName: "sto4445",
allowBlobPublicAccess: false,
allowSharedKeyAccess: true,
defaultToOAuthAuthentication: false,
dnsEndpointType: "AzureDnsZone",
encryption: {
keySource: "Microsoft.Storage",
requireInfrastructureEncryption: false,
services: {
blob: {
enabled: true,
keyType: "Account",
},
file: {
enabled: true,
keyType: "Account",
},
},
},
extendedLocation: {
name: "losangeles001",
type: "EdgeZone",
},
isHnsEnabled: true,
isSftpEnabled: true,
keyPolicy: {
keyExpirationPeriodInDays: 20,
},
kind: "Storage",
location: "eastus",
minimumTlsVersion: "TLS1_2",
resourceGroupName: "res9101",
routingPreference: {
publishInternetEndpoints: true,
publishMicrosoftEndpoints: true,
routingChoice: "MicrosoftRouting",
},
sasPolicy: {
expirationAction: "Log",
sasExpirationPeriod: "1.15:59:59",
},
sku: {
name: "Standard_GRS",
},
tags: {
key1: "value1",
key2: "value2",
},
});
resources:
storageAccount:
type: azure-native:storage:StorageAccount
properties:
accountName: sto4445
allowBlobPublicAccess: false
allowSharedKeyAccess: true
defaultToOAuthAuthentication: false
dnsEndpointType: AzureDnsZone
encryption:
keySource: Microsoft.Storage
requireInfrastructureEncryption: false
services:
blob:
enabled: true
keyType: Account
file:
enabled: true
keyType: Account
extendedLocation:
name: losangeles001
type: EdgeZone
isHnsEnabled: true
isSftpEnabled: true
keyPolicy:
keyExpirationPeriodInDays: 20
kind: Storage
location: eastus
minimumTlsVersion: TLS1_2
resourceGroupName: res9101
routingPreference:
publishInternetEndpoints: true
publishMicrosoftEndpoints: true
routingChoice: MicrosoftRouting
sasPolicy:
expirationAction: Log
sasExpirationPeriod: 1.15:59:59
sku:
name: Standard_GRS
tags:
key1: value1
key2: value2
StorageAccountCreateDnsEndpointTypeToStandard
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var storageAccount = new AzureNative.Storage.StorageAccount("storageAccount", new()
{
AccountName = "sto4445",
AllowBlobPublicAccess = false,
AllowSharedKeyAccess = true,
DefaultToOAuthAuthentication = false,
DnsEndpointType = "Standard",
Encryption = new AzureNative.Storage.Inputs.EncryptionArgs
{
KeySource = "Microsoft.Storage",
RequireInfrastructureEncryption = false,
Services = new AzureNative.Storage.Inputs.EncryptionServicesArgs
{
Blob = new AzureNative.Storage.Inputs.EncryptionServiceArgs
{
Enabled = true,
KeyType = "Account",
},
File = new AzureNative.Storage.Inputs.EncryptionServiceArgs
{
Enabled = true,
KeyType = "Account",
},
},
},
ExtendedLocation = new AzureNative.Storage.Inputs.ExtendedLocationArgs
{
Name = "losangeles001",
Type = "EdgeZone",
},
IsHnsEnabled = true,
IsSftpEnabled = true,
KeyPolicy = new AzureNative.Storage.Inputs.KeyPolicyArgs
{
KeyExpirationPeriodInDays = 20,
},
Kind = "Storage",
Location = "eastus",
MinimumTlsVersion = "TLS1_2",
ResourceGroupName = "res9101",
RoutingPreference = new AzureNative.Storage.Inputs.RoutingPreferenceArgs
{
PublishInternetEndpoints = true,
PublishMicrosoftEndpoints = true,
RoutingChoice = "MicrosoftRouting",
},
SasPolicy = new AzureNative.Storage.Inputs.SasPolicyArgs
{
ExpirationAction = "Log",
SasExpirationPeriod = "1.15:59:59",
},
Sku = new AzureNative.Storage.Inputs.SkuArgs
{
Name = "Standard_GRS",
},
Tags =
{
{ "key1", "value1" },
{ "key2", "value2" },
},
});
});
package main
import (
"github.com/pulumi/pulumi-azure-native-sdk/storage/v2"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := storage.NewStorageAccount(ctx, "storageAccount", &storage.StorageAccountArgs{
AccountName: pulumi.String("sto4445"),
AllowBlobPublicAccess: pulumi.Bool(false),
AllowSharedKeyAccess: pulumi.Bool(true),
DefaultToOAuthAuthentication: pulumi.Bool(false),
DnsEndpointType: pulumi.String("Standard"),
Encryption: storage.EncryptionResponse{
KeySource: pulumi.String("Microsoft.Storage"),
RequireInfrastructureEncryption: pulumi.Bool(false),
Services: interface{}{
Blob: &storage.EncryptionServiceArgs{
Enabled: pulumi.Bool(true),
KeyType: pulumi.String("Account"),
},
File: &storage.EncryptionServiceArgs{
Enabled: pulumi.Bool(true),
KeyType: pulumi.String("Account"),
},
},
},
ExtendedLocation: &storage.ExtendedLocationArgs{
Name: pulumi.String("losangeles001"),
Type: pulumi.String("EdgeZone"),
},
IsHnsEnabled: pulumi.Bool(true),
IsSftpEnabled: pulumi.Bool(true),
KeyPolicy: &storage.KeyPolicyArgs{
KeyExpirationPeriodInDays: pulumi.Int(20),
},
Kind: pulumi.String("Storage"),
Location: pulumi.String("eastus"),
MinimumTlsVersion: pulumi.String("TLS1_2"),
ResourceGroupName: pulumi.String("res9101"),
RoutingPreference: &storage.RoutingPreferenceArgs{
PublishInternetEndpoints: pulumi.Bool(true),
PublishMicrosoftEndpoints: pulumi.Bool(true),
RoutingChoice: pulumi.String("MicrosoftRouting"),
},
SasPolicy: &storage.SasPolicyArgs{
ExpirationAction: pulumi.String("Log"),
SasExpirationPeriod: pulumi.String("1.15:59:59"),
},
Sku: &storage.SkuArgs{
Name: pulumi.String("Standard_GRS"),
},
Tags: pulumi.StringMap{
"key1": pulumi.String("value1"),
"key2": pulumi.String("value2"),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.storage.StorageAccount;
import com.pulumi.azurenative.storage.StorageAccountArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var storageAccount = new StorageAccount("storageAccount", StorageAccountArgs.builder()
.accountName("sto4445")
.allowBlobPublicAccess(false)
.allowSharedKeyAccess(true)
.defaultToOAuthAuthentication(false)
.dnsEndpointType("Standard")
.encryption(Map.ofEntries(
Map.entry("keySource", "Microsoft.Storage"),
Map.entry("requireInfrastructureEncryption", false),
Map.entry("services", Map.ofEntries(
Map.entry("blob", Map.ofEntries(
Map.entry("enabled", true),
Map.entry("keyType", "Account")
)),
Map.entry("file", Map.ofEntries(
Map.entry("enabled", true),
Map.entry("keyType", "Account")
))
))
))
.extendedLocation(Map.ofEntries(
Map.entry("name", "losangeles001"),
Map.entry("type", "EdgeZone")
))
.isHnsEnabled(true)
.isSftpEnabled(true)
.keyPolicy(Map.of("keyExpirationPeriodInDays", 20))
.kind("Storage")
.location("eastus")
.minimumTlsVersion("TLS1_2")
.resourceGroupName("res9101")
.routingPreference(Map.ofEntries(
Map.entry("publishInternetEndpoints", true),
Map.entry("publishMicrosoftEndpoints", true),
Map.entry("routingChoice", "MicrosoftRouting")
))
.sasPolicy(Map.ofEntries(
Map.entry("expirationAction", "Log"),
Map.entry("sasExpirationPeriod", "1.15:59:59")
))
.sku(Map.of("name", "Standard_GRS"))
.tags(Map.ofEntries(
Map.entry("key1", "value1"),
Map.entry("key2", "value2")
))
.build());
}
}
import pulumi
import pulumi_azure_native as azure_native
storage_account = azure_native.storage.StorageAccount("storageAccount",
account_name="sto4445",
allow_blob_public_access=False,
allow_shared_key_access=True,
default_to_o_auth_authentication=False,
dns_endpoint_type="Standard",
encryption=azure_native.storage.EncryptionResponseArgs(
key_source="Microsoft.Storage",
require_infrastructure_encryption=False,
services={
"blob": azure_native.storage.EncryptionServiceArgs(
enabled=True,
key_type="Account",
),
"file": azure_native.storage.EncryptionServiceArgs(
enabled=True,
key_type="Account",
),
},
),
extended_location=azure_native.storage.ExtendedLocationArgs(
name="losangeles001",
type="EdgeZone",
),
is_hns_enabled=True,
is_sftp_enabled=True,
key_policy=azure_native.storage.KeyPolicyArgs(
key_expiration_period_in_days=20,
),
kind="Storage",
location="eastus",
minimum_tls_version="TLS1_2",
resource_group_name="res9101",
routing_preference=azure_native.storage.RoutingPreferenceArgs(
publish_internet_endpoints=True,
publish_microsoft_endpoints=True,
routing_choice="MicrosoftRouting",
),
sas_policy=azure_native.storage.SasPolicyArgs(
expiration_action="Log",
sas_expiration_period="1.15:59:59",
),
sku=azure_native.storage.SkuArgs(
name="Standard_GRS",
),
tags={
"key1": "value1",
"key2": "value2",
})
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const storageAccount = new azure_native.storage.StorageAccount("storageAccount", {
accountName: "sto4445",
allowBlobPublicAccess: false,
allowSharedKeyAccess: true,
defaultToOAuthAuthentication: false,
dnsEndpointType: "Standard",
encryption: {
keySource: "Microsoft.Storage",
requireInfrastructureEncryption: false,
services: {
blob: {
enabled: true,
keyType: "Account",
},
file: {
enabled: true,
keyType: "Account",
},
},
},
extendedLocation: {
name: "losangeles001",
type: "EdgeZone",
},
isHnsEnabled: true,
isSftpEnabled: true,
keyPolicy: {
keyExpirationPeriodInDays: 20,
},
kind: "Storage",
location: "eastus",
minimumTlsVersion: "TLS1_2",
resourceGroupName: "res9101",
routingPreference: {
publishInternetEndpoints: true,
publishMicrosoftEndpoints: true,
routingChoice: "MicrosoftRouting",
},
sasPolicy: {
expirationAction: "Log",
sasExpirationPeriod: "1.15:59:59",
},
sku: {
name: "Standard_GRS",
},
tags: {
key1: "value1",
key2: "value2",
},
});
resources:
storageAccount:
type: azure-native:storage:StorageAccount
properties:
accountName: sto4445
allowBlobPublicAccess: false
allowSharedKeyAccess: true
defaultToOAuthAuthentication: false
dnsEndpointType: Standard
encryption:
keySource: Microsoft.Storage
requireInfrastructureEncryption: false
services:
blob:
enabled: true
keyType: Account
file:
enabled: true
keyType: Account
extendedLocation:
name: losangeles001
type: EdgeZone
isHnsEnabled: true
isSftpEnabled: true
keyPolicy:
keyExpirationPeriodInDays: 20
kind: Storage
location: eastus
minimumTlsVersion: TLS1_2
resourceGroupName: res9101
routingPreference:
publishInternetEndpoints: true
publishMicrosoftEndpoints: true
routingChoice: MicrosoftRouting
sasPolicy:
expirationAction: Log
sasExpirationPeriod: 1.15:59:59
sku:
name: Standard_GRS
tags:
key1: value1
key2: value2
StorageAccountCreateEnablePublicNetworkAccess
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var storageAccount = new AzureNative.Storage.StorageAccount("storageAccount", new()
{
AccountName = "sto4445",
AllowBlobPublicAccess = false,
AllowSharedKeyAccess = true,
Encryption = new AzureNative.Storage.Inputs.EncryptionArgs
{
KeySource = "Microsoft.Storage",
RequireInfrastructureEncryption = false,
Services = new AzureNative.Storage.Inputs.EncryptionServicesArgs
{
Blob = new AzureNative.Storage.Inputs.EncryptionServiceArgs
{
Enabled = true,
KeyType = "Account",
},
File = new AzureNative.Storage.Inputs.EncryptionServiceArgs
{
Enabled = true,
KeyType = "Account",
},
},
},
ExtendedLocation = new AzureNative.Storage.Inputs.ExtendedLocationArgs
{
Name = "losangeles001",
Type = "EdgeZone",
},
IsHnsEnabled = true,
KeyPolicy = new AzureNative.Storage.Inputs.KeyPolicyArgs
{
KeyExpirationPeriodInDays = 20,
},
Kind = "Storage",
Location = "eastus",
MinimumTlsVersion = "TLS1_2",
PublicNetworkAccess = "Enabled",
ResourceGroupName = "res9101",
RoutingPreference = new AzureNative.Storage.Inputs.RoutingPreferenceArgs
{
PublishInternetEndpoints = true,
PublishMicrosoftEndpoints = true,
RoutingChoice = "MicrosoftRouting",
},
SasPolicy = new AzureNative.Storage.Inputs.SasPolicyArgs
{
ExpirationAction = "Log",
SasExpirationPeriod = "1.15:59:59",
},
Sku = new AzureNative.Storage.Inputs.SkuArgs
{
Name = "Standard_GRS",
},
Tags =
{
{ "key1", "value1" },
{ "key2", "value2" },
},
});
});
package main
import (
"github.com/pulumi/pulumi-azure-native-sdk/storage/v2"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := storage.NewStorageAccount(ctx, "storageAccount", &storage.StorageAccountArgs{
AccountName: pulumi.String("sto4445"),
AllowBlobPublicAccess: pulumi.Bool(false),
AllowSharedKeyAccess: pulumi.Bool(true),
Encryption: storage.EncryptionResponse{
KeySource: pulumi.String("Microsoft.Storage"),
RequireInfrastructureEncryption: pulumi.Bool(false),
Services: interface{}{
Blob: &storage.EncryptionServiceArgs{
Enabled: pulumi.Bool(true),
KeyType: pulumi.String("Account"),
},
File: &storage.EncryptionServiceArgs{
Enabled: pulumi.Bool(true),
KeyType: pulumi.String("Account"),
},
},
},
ExtendedLocation: &storage.ExtendedLocationArgs{
Name: pulumi.String("losangeles001"),
Type: pulumi.String("EdgeZone"),
},
IsHnsEnabled: pulumi.Bool(true),
KeyPolicy: &storage.KeyPolicyArgs{
KeyExpirationPeriodInDays: pulumi.Int(20),
},
Kind: pulumi.String("Storage"),
Location: pulumi.String("eastus"),
MinimumTlsVersion: pulumi.String("TLS1_2"),
PublicNetworkAccess: pulumi.String("Enabled"),
ResourceGroupName: pulumi.String("res9101"),
RoutingPreference: &storage.RoutingPreferenceArgs{
PublishInternetEndpoints: pulumi.Bool(true),
PublishMicrosoftEndpoints: pulumi.Bool(true),
RoutingChoice: pulumi.String("MicrosoftRouting"),
},
SasPolicy: &storage.SasPolicyArgs{
ExpirationAction: pulumi.String("Log"),
SasExpirationPeriod: pulumi.String("1.15:59:59"),
},
Sku: &storage.SkuArgs{
Name: pulumi.String("Standard_GRS"),
},
Tags: pulumi.StringMap{
"key1": pulumi.String("value1"),
"key2": pulumi.String("value2"),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.storage.StorageAccount;
import com.pulumi.azurenative.storage.StorageAccountArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var storageAccount = new StorageAccount("storageAccount", StorageAccountArgs.builder()
.accountName("sto4445")
.allowBlobPublicAccess(false)
.allowSharedKeyAccess(true)
.encryption(Map.ofEntries(
Map.entry("keySource", "Microsoft.Storage"),
Map.entry("requireInfrastructureEncryption", false),
Map.entry("services", Map.ofEntries(
Map.entry("blob", Map.ofEntries(
Map.entry("enabled", true),
Map.entry("keyType", "Account")
)),
Map.entry("file", Map.ofEntries(
Map.entry("enabled", true),
Map.entry("keyType", "Account")
))
))
))
.extendedLocation(Map.ofEntries(
Map.entry("name", "losangeles001"),
Map.entry("type", "EdgeZone")
))
.isHnsEnabled(true)
.keyPolicy(Map.of("keyExpirationPeriodInDays", 20))
.kind("Storage")
.location("eastus")
.minimumTlsVersion("TLS1_2")
.publicNetworkAccess("Enabled")
.resourceGroupName("res9101")
.routingPreference(Map.ofEntries(
Map.entry("publishInternetEndpoints", true),
Map.entry("publishMicrosoftEndpoints", true),
Map.entry("routingChoice", "MicrosoftRouting")
))
.sasPolicy(Map.ofEntries(
Map.entry("expirationAction", "Log"),
Map.entry("sasExpirationPeriod", "1.15:59:59")
))
.sku(Map.of("name", "Standard_GRS"))
.tags(Map.ofEntries(
Map.entry("key1", "value1"),
Map.entry("key2", "value2")
))
.build());
}
}
import pulumi
import pulumi_azure_native as azure_native
storage_account = azure_native.storage.StorageAccount("storageAccount",
account_name="sto4445",
allow_blob_public_access=False,
allow_shared_key_access=True,
encryption=azure_native.storage.EncryptionResponseArgs(
key_source="Microsoft.Storage",
require_infrastructure_encryption=False,
services={
"blob": azure_native.storage.EncryptionServiceArgs(
enabled=True,
key_type="Account",
),
"file": azure_native.storage.EncryptionServiceArgs(
enabled=True,
key_type="Account",
),
},
),
extended_location=azure_native.storage.ExtendedLocationArgs(
name="losangeles001",
type="EdgeZone",
),
is_hns_enabled=True,
key_policy=azure_native.storage.KeyPolicyArgs(
key_expiration_period_in_days=20,
),
kind="Storage",
location="eastus",
minimum_tls_version="TLS1_2",
public_network_access="Enabled",
resource_group_name="res9101",
routing_preference=azure_native.storage.RoutingPreferenceArgs(
publish_internet_endpoints=True,
publish_microsoft_endpoints=True,
routing_choice="MicrosoftRouting",
),
sas_policy=azure_native.storage.SasPolicyArgs(
expiration_action="Log",
sas_expiration_period="1.15:59:59",
),
sku=azure_native.storage.SkuArgs(
name="Standard_GRS",
),
tags={
"key1": "value1",
"key2": "value2",
})
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const storageAccount = new azure_native.storage.StorageAccount("storageAccount", {
accountName: "sto4445",
allowBlobPublicAccess: false,
allowSharedKeyAccess: true,
encryption: {
keySource: "Microsoft.Storage",
requireInfrastructureEncryption: false,
services: {
blob: {
enabled: true,
keyType: "Account",
},
file: {
enabled: true,
keyType: "Account",
},
},
},
extendedLocation: {
name: "losangeles001",
type: "EdgeZone",
},
isHnsEnabled: true,
keyPolicy: {
keyExpirationPeriodInDays: 20,
},
kind: "Storage",
location: "eastus",
minimumTlsVersion: "TLS1_2",
publicNetworkAccess: "Enabled",
resourceGroupName: "res9101",
routingPreference: {
publishInternetEndpoints: true,
publishMicrosoftEndpoints: true,
routingChoice: "MicrosoftRouting",
},
sasPolicy: {
expirationAction: "Log",
sasExpirationPeriod: "1.15:59:59",
},
sku: {
name: "Standard_GRS",
},
tags: {
key1: "value1",
key2: "value2",
},
});
resources:
storageAccount:
type: azure-native:storage:StorageAccount
properties:
accountName: sto4445
allowBlobPublicAccess: false
allowSharedKeyAccess: true
encryption:
keySource: Microsoft.Storage
requireInfrastructureEncryption: false
services:
blob:
enabled: true
keyType: Account
file:
enabled: true
keyType: Account
extendedLocation:
name: losangeles001
type: EdgeZone
isHnsEnabled: true
keyPolicy:
keyExpirationPeriodInDays: 20
kind: Storage
location: eastus
minimumTlsVersion: TLS1_2
publicNetworkAccess: Enabled
resourceGroupName: res9101
routingPreference:
publishInternetEndpoints: true
publishMicrosoftEndpoints: true
routingChoice: MicrosoftRouting
sasPolicy:
expirationAction: Log
sasExpirationPeriod: 1.15:59:59
sku:
name: Standard_GRS
tags:
key1: value1
key2: value2
StorageAccountCreatePremiumBlockBlobStorage
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var storageAccount = new AzureNative.Storage.StorageAccount("storageAccount", new()
{
AccountName = "sto4445",
AllowSharedKeyAccess = true,
Encryption = new AzureNative.Storage.Inputs.EncryptionArgs
{
KeySource = "Microsoft.Storage",
RequireInfrastructureEncryption = false,
Services = new AzureNative.Storage.Inputs.EncryptionServicesArgs
{
Blob = new AzureNative.Storage.Inputs.EncryptionServiceArgs
{
Enabled = true,
KeyType = "Account",
},
File = new AzureNative.Storage.Inputs.EncryptionServiceArgs
{
Enabled = true,
KeyType = "Account",
},
},
},
Kind = "BlockBlobStorage",
Location = "eastus",
MinimumTlsVersion = "TLS1_2",
ResourceGroupName = "res9101",
Sku = new AzureNative.Storage.Inputs.SkuArgs
{
Name = "Premium_LRS",
},
Tags =
{
{ "key1", "value1" },
{ "key2", "value2" },
},
});
});
package main
import (
"github.com/pulumi/pulumi-azure-native-sdk/storage/v2"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := storage.NewStorageAccount(ctx, "storageAccount", &storage.StorageAccountArgs{
AccountName: pulumi.String("sto4445"),
AllowSharedKeyAccess: pulumi.Bool(true),
Encryption: storage.EncryptionResponse{
KeySource: pulumi.String("Microsoft.Storage"),
RequireInfrastructureEncryption: pulumi.Bool(false),
Services: interface{}{
Blob: &storage.EncryptionServiceArgs{
Enabled: pulumi.Bool(true),
KeyType: pulumi.String("Account"),
},
File: &storage.EncryptionServiceArgs{
Enabled: pulumi.Bool(true),
KeyType: pulumi.String("Account"),
},
},
},
Kind: pulumi.String("BlockBlobStorage"),
Location: pulumi.String("eastus"),
MinimumTlsVersion: pulumi.String("TLS1_2"),
ResourceGroupName: pulumi.String("res9101"),
Sku: &storage.SkuArgs{
Name: pulumi.String("Premium_LRS"),
},
Tags: pulumi.StringMap{
"key1": pulumi.String("value1"),
"key2": pulumi.String("value2"),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.storage.StorageAccount;
import com.pulumi.azurenative.storage.StorageAccountArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var storageAccount = new StorageAccount("storageAccount", StorageAccountArgs.builder()
.accountName("sto4445")
.allowSharedKeyAccess(true)
.encryption(Map.ofEntries(
Map.entry("keySource", "Microsoft.Storage"),
Map.entry("requireInfrastructureEncryption", false),
Map.entry("services", Map.ofEntries(
Map.entry("blob", Map.ofEntries(
Map.entry("enabled", true),
Map.entry("keyType", "Account")
)),
Map.entry("file", Map.ofEntries(
Map.entry("enabled", true),
Map.entry("keyType", "Account")
))
))
))
.kind("BlockBlobStorage")
.location("eastus")
.minimumTlsVersion("TLS1_2")
.resourceGroupName("res9101")
.sku(Map.of("name", "Premium_LRS"))
.tags(Map.ofEntries(
Map.entry("key1", "value1"),
Map.entry("key2", "value2")
))
.build());
}
}
import pulumi
import pulumi_azure_native as azure_native
storage_account = azure_native.storage.StorageAccount("storageAccount",
account_name="sto4445",
allow_shared_key_access=True,
encryption=azure_native.storage.EncryptionResponseArgs(
key_source="Microsoft.Storage",
require_infrastructure_encryption=False,
services={
"blob": azure_native.storage.EncryptionServiceArgs(
enabled=True,
key_type="Account",
),
"file": azure_native.storage.EncryptionServiceArgs(
enabled=True,
key_type="Account",
),
},
),
kind="BlockBlobStorage",
location="eastus",
minimum_tls_version="TLS1_2",
resource_group_name="res9101",
sku=azure_native.storage.SkuArgs(
name="Premium_LRS",
),
tags={
"key1": "value1",
"key2": "value2",
})
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const storageAccount = new azure_native.storage.StorageAccount("storageAccount", {
accountName: "sto4445",
allowSharedKeyAccess: true,
encryption: {
keySource: "Microsoft.Storage",
requireInfrastructureEncryption: false,
services: {
blob: {
enabled: true,
keyType: "Account",
},
file: {
enabled: true,
keyType: "Account",
},
},
},
kind: "BlockBlobStorage",
location: "eastus",
minimumTlsVersion: "TLS1_2",
resourceGroupName: "res9101",
sku: {
name: "Premium_LRS",
},
tags: {
key1: "value1",
key2: "value2",
},
});
resources:
storageAccount:
type: azure-native:storage:StorageAccount
properties:
accountName: sto4445
allowSharedKeyAccess: true
encryption:
keySource: Microsoft.Storage
requireInfrastructureEncryption: false
services:
blob:
enabled: true
keyType: Account
file:
enabled: true
keyType: Account
kind: BlockBlobStorage
location: eastus
minimumTlsVersion: TLS1_2
resourceGroupName: res9101
sku:
name: Premium_LRS
tags:
key1: value1
key2: value2
StorageAccountCreateWithImmutabilityPolicy
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using AzureNative = Pulumi.AzureNative;
return await Deployment.RunAsync(() =>
{
var storageAccount = new AzureNative.Storage.StorageAccount("storageAccount", new()
{
AccountName = "sto4445",
ExtendedLocation = new AzureNative.Storage.Inputs.ExtendedLocationArgs
{
Name = "losangeles001",
Type = "EdgeZone",
},
ImmutableStorageWithVersioning = new AzureNative.Storage.Inputs.ImmutableStorageAccountArgs
{
Enabled = true,
ImmutabilityPolicy = new AzureNative.Storage.Inputs.AccountImmutabilityPolicyPropertiesArgs
{
AllowProtectedAppendWrites = true,
ImmutabilityPeriodSinceCreationInDays = 15,
State = "Unlocked",
},
},
Kind = "Storage",
Location = "eastus",
ResourceGroupName = "res9101",
Sku = new AzureNative.Storage.Inputs.SkuArgs
{
Name = "Standard_GRS",
},
});
});
package main
import (
"github.com/pulumi/pulumi-azure-native-sdk/storage/v2"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := storage.NewStorageAccount(ctx, "storageAccount", &storage.StorageAccountArgs{
AccountName: pulumi.String("sto4445"),
ExtendedLocation: &storage.ExtendedLocationArgs{
Name: pulumi.String("losangeles001"),
Type: pulumi.String("EdgeZone"),
},
ImmutableStorageWithVersioning: storage.ImmutableStorageAccountResponse{
Enabled: pulumi.Bool(true),
ImmutabilityPolicy: &storage.AccountImmutabilityPolicyPropertiesArgs{
AllowProtectedAppendWrites: pulumi.Bool(true),
ImmutabilityPeriodSinceCreationInDays: pulumi.Int(15),
State: pulumi.String("Unlocked"),
},
},
Kind: pulumi.String("Storage"),
Location: pulumi.String("eastus"),
ResourceGroupName: pulumi.String("res9101"),
Sku: &storage.SkuArgs{
Name: pulumi.String("Standard_GRS"),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azurenative.storage.StorageAccount;
import com.pulumi.azurenative.storage.StorageAccountArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var storageAccount = new StorageAccount("storageAccount", StorageAccountArgs.builder()
.accountName("sto4445")
.extendedLocation(Map.ofEntries(
Map.entry("name", "losangeles001"),
Map.entry("type", "EdgeZone")
))
.immutableStorageWithVersioning(Map.ofEntries(
Map.entry("enabled", true),
Map.entry("immutabilityPolicy", Map.ofEntries(
Map.entry("allowProtectedAppendWrites", true),
Map.entry("immutabilityPeriodSinceCreationInDays", 15),
Map.entry("state", "Unlocked")
))
))
.kind("Storage")
.location("eastus")
.resourceGroupName("res9101")
.sku(Map.of("name", "Standard_GRS"))
.build());
}
}
import pulumi
import pulumi_azure_native as azure_native
storage_account = azure_native.storage.StorageAccount("storageAccount",
account_name="sto4445",
extended_location=azure_native.storage.ExtendedLocationArgs(
name="losangeles001",
type="EdgeZone",
),
immutable_storage_with_versioning=azure_native.storage.ImmutableStorageAccountResponseArgs(
enabled=True,
immutability_policy=azure_native.storage.AccountImmutabilityPolicyPropertiesArgs(
allow_protected_append_writes=True,
immutability_period_since_creation_in_days=15,
state="Unlocked",
),
),
kind="Storage",
location="eastus",
resource_group_name="res9101",
sku=azure_native.storage.SkuArgs(
name="Standard_GRS",
))
import * as pulumi from "@pulumi/pulumi";
import * as azure_native from "@pulumi/azure-native";
const storageAccount = new azure_native.storage.StorageAccount("storageAccount", {
accountName: "sto4445",
extendedLocation: {
name: "losangeles001",
type: "EdgeZone",
},
immutableStorageWithVersioning: {
enabled: true,
immutabilityPolicy: {
allowProtectedAppendWrites: true,
immutabilityPeriodSinceCreationInDays: 15,
state: "Unlocked",
},
},
kind: "Storage",
location: "eastus",
resourceGroupName: "res9101",
sku: {
name: "Standard_GRS",
},
});
resources:
storageAccount:
type: azure-native:storage:StorageAccount
properties:
accountName: sto4445
extendedLocation:
name: losangeles001
type: EdgeZone
immutableStorageWithVersioning:
enabled: true
immutabilityPolicy:
allowProtectedAppendWrites: true
immutabilityPeriodSinceCreationInDays: 15
state: Unlocked
kind: Storage
location: eastus
resourceGroupName: res9101
sku:
name: Standard_GRS
Create StorageAccount Resource
new StorageAccount(name: string, args: StorageAccountArgs, opts?: CustomResourceOptions);@overload
def StorageAccount(resource_name: str,
opts: Optional[ResourceOptions] = None,
access_tier: Optional[AccessTier] = None,
account_name: Optional[str] = None,
allow_blob_public_access: Optional[bool] = None,
allow_cross_tenant_replication: Optional[bool] = None,
allow_shared_key_access: Optional[bool] = None,
allowed_copy_scope: Optional[Union[str, AllowedCopyScope]] = None,
azure_files_identity_based_authentication: Optional[AzureFilesIdentityBasedAuthenticationArgs] = None,
custom_domain: Optional[CustomDomainArgs] = None,
default_to_o_auth_authentication: Optional[bool] = None,
dns_endpoint_type: Optional[Union[str, DnsEndpointType]] = None,
enable_https_traffic_only: Optional[bool] = None,
enable_nfs_v3: Optional[bool] = None,
encryption: Optional[EncryptionArgs] = None,
extended_location: Optional[ExtendedLocationArgs] = None,
identity: Optional[IdentityArgs] = None,
immutable_storage_with_versioning: Optional[ImmutableStorageAccountArgs] = None,
is_hns_enabled: Optional[bool] = None,
is_local_user_enabled: Optional[bool] = None,
is_sftp_enabled: Optional[bool] = None,
key_policy: Optional[KeyPolicyArgs] = None,
kind: Optional[Union[str, Kind]] = None,
large_file_shares_state: Optional[Union[str, LargeFileSharesState]] = None,
location: Optional[str] = None,
minimum_tls_version: Optional[Union[str, MinimumTlsVersion]] = None,
network_rule_set: Optional[NetworkRuleSetArgs] = None,
public_network_access: Optional[Union[str, PublicNetworkAccess]] = None,
resource_group_name: Optional[str] = None,
routing_preference: Optional[RoutingPreferenceArgs] = None,
sas_policy: Optional[SasPolicyArgs] = None,
sku: Optional[SkuArgs] = None,
tags: Optional[Mapping[str, str]] = None)
@overload
def StorageAccount(resource_name: str,
args: StorageAccountArgs,
opts: Optional[ResourceOptions] = None)func NewStorageAccount(ctx *Context, name string, args StorageAccountArgs, opts ...ResourceOption) (*StorageAccount, error)public StorageAccount(string name, StorageAccountArgs args, CustomResourceOptions? opts = null)
public StorageAccount(String name, StorageAccountArgs args)
public StorageAccount(String name, StorageAccountArgs args, CustomResourceOptions options)
type: azure-native:storage:StorageAccount
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args StorageAccountArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args StorageAccountArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args StorageAccountArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args StorageAccountArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args StorageAccountArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
StorageAccount Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
The StorageAccount resource accepts the following input properties:
- Kind
string | Pulumi.
Azure Native. Storage. Kind Required. Indicates the type of storage account.
- Resource
Group stringName The name of the resource group within the user's subscription. The name is case insensitive.
- Sku
Pulumi.
Azure Native. Storage. Inputs. Sku Required. Gets or sets the SKU name.
- Access
Tier Pulumi.Azure Native. Storage. Access Tier Required for storage accounts where kind = BlobStorage. The access tier is used for billing. The 'Premium' access tier is the default value for premium block blobs storage account type and it cannot be changed for the premium block blobs storage account type.
- Account
Name string The name of the storage account within the specified resource group. Storage account names must be between 3 and 24 characters in length and use numbers and lower-case letters only.
- Allow
Blob boolPublic Access Allow or disallow public access to all blobs or containers in the storage account. The default interpretation is true for this property.
- Allow
Cross boolTenant Replication Allow or disallow cross AAD tenant object replication. The default interpretation is true for this property.
- bool
Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key. If false, then all requests, including shared access signatures, must be authorized with Azure Active Directory (Azure AD). The default value is null, which is equivalent to true.
- Allowed
Copy string | Pulumi.Scope Azure Native. Storage. Allowed Copy Scope Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet.
- Azure
Files Pulumi.Identity Based Authentication Azure Native. Storage. Inputs. Azure Files Identity Based Authentication Provides the identity based authentication settings for Azure Files.
- Custom
Domain Pulumi.Azure Native. Storage. Inputs. Custom Domain User domain assigned to the storage account. Name is the CNAME source. Only one custom domain is supported per storage account at this time. To clear the existing custom domain, use an empty string for the custom domain name property.
- Default
To boolOAuth Authentication A boolean flag which indicates whether the default authentication is OAuth or not. The default interpretation is false for this property.
- Dns
Endpoint string | Pulumi.Type Azure Native. Storage. Dns Endpoint Type Allows you to specify the type of endpoint. Set this to AzureDNSZone to create a large number of accounts in a single subscription, which creates accounts in an Azure DNS Zone and the endpoint URL will have an alphanumeric DNS Zone identifier.
- Enable
Https boolTraffic Only Allows https traffic only to storage service if sets to true. The default value is true since API version 2019-04-01.
- Enable
Nfs boolV3 NFS 3.0 protocol support enabled if set to true.
- Encryption
Pulumi.
Azure Native. Storage. Inputs. Encryption Encryption settings to be used for server-side encryption for the storage account.
- Extended
Location Pulumi.Azure Native. Storage. Inputs. Extended Location Optional. Set the extended location of the resource. If not set, the storage account will be created in Azure main region. Otherwise it will be created in the specified extended location
- Identity
Pulumi.
Azure Native. Storage. Inputs. Identity The identity of the resource.
- Immutable
Storage Pulumi.With Versioning Azure Native. Storage. Inputs. Immutable Storage Account The property is immutable and can only be set to true at the account creation time. When set to true, it enables object level immutability for all the new containers in the account by default.
- Is
Hns boolEnabled Account HierarchicalNamespace enabled if sets to true.
- Is
Local boolUser Enabled Enables local users feature, if set to true
- Is
Sftp boolEnabled Enables Secure File Transfer Protocol, if set to true
- Key
Policy Pulumi.Azure Native. Storage. Inputs. Key Policy KeyPolicy assigned to the storage account.
-
string | Pulumi.
Azure Native. Storage. Large File Shares State Allow large file shares if sets to Enabled. It cannot be disabled once it is enabled.
- Location string
Required. Gets or sets the location of the resource. This will be one of the supported and registered Azure Geo Regions (e.g. West US, East US, Southeast Asia, etc.). The geo region of a resource cannot be changed once it is created, but if an identical geo region is specified on update, the request will succeed.
- Minimum
Tls string | Pulumi.Version Azure Native. Storage. Minimum Tls Version Set the minimum TLS version to be permitted on requests to storage. The default interpretation is TLS 1.0 for this property.
- Network
Rule Pulumi.Set Azure Native. Storage. Inputs. Network Rule Set Network rule set
- Public
Network string | Pulumi.Access Azure Native. Storage. Public Network Access Allow or disallow public network access to Storage Account. Value is optional but if passed in, must be 'Enabled' or 'Disabled'.
- Routing
Preference Pulumi.Azure Native. Storage. Inputs. Routing Preference Maintains information about the network routing choice opted by the user for data transfer
- Sas
Policy Pulumi.Azure Native. Storage. Inputs. Sas Policy SasPolicy assigned to the storage account.
- Dictionary<string, string>
Gets or sets a list of key value pairs that describe the resource. These tags can be used for viewing and grouping this resource (across resource groups). A maximum of 15 tags can be provided for a resource. Each tag must have a key with a length no greater than 128 characters and a value with a length no greater than 256 characters.
- Kind string | Kind
Required. Indicates the type of storage account.
- Resource
Group stringName The name of the resource group within the user's subscription. The name is case insensitive.
- Sku
Sku
Args Required. Gets or sets the SKU name.
- Access
Tier AccessTier Required for storage accounts where kind = BlobStorage. The access tier is used for billing. The 'Premium' access tier is the default value for premium block blobs storage account type and it cannot be changed for the premium block blobs storage account type.
- Account
Name string The name of the storage account within the specified resource group. Storage account names must be between 3 and 24 characters in length and use numbers and lower-case letters only.
- Allow
Blob boolPublic Access Allow or disallow public access to all blobs or containers in the storage account. The default interpretation is true for this property.
- Allow
Cross boolTenant Replication Allow or disallow cross AAD tenant object replication. The default interpretation is true for this property.
- bool
Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key. If false, then all requests, including shared access signatures, must be authorized with Azure Active Directory (Azure AD). The default value is null, which is equivalent to true.
- Allowed
Copy string | AllowedScope Copy Scope Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet.
- Azure
Files AzureIdentity Based Authentication Files Identity Based Authentication Args Provides the identity based authentication settings for Azure Files.
- Custom
Domain CustomDomain Args User domain assigned to the storage account. Name is the CNAME source. Only one custom domain is supported per storage account at this time. To clear the existing custom domain, use an empty string for the custom domain name property.
- Default
To boolOAuth Authentication A boolean flag which indicates whether the default authentication is OAuth or not. The default interpretation is false for this property.
- Dns
Endpoint string | DnsType Endpoint Type Allows you to specify the type of endpoint. Set this to AzureDNSZone to create a large number of accounts in a single subscription, which creates accounts in an Azure DNS Zone and the endpoint URL will have an alphanumeric DNS Zone identifier.
- Enable
Https boolTraffic Only Allows https traffic only to storage service if sets to true. The default value is true since API version 2019-04-01.
- Enable
Nfs boolV3 NFS 3.0 protocol support enabled if set to true.
- Encryption
Encryption
Args Encryption settings to be used for server-side encryption for the storage account.
- Extended
Location ExtendedLocation Args Optional. Set the extended location of the resource. If not set, the storage account will be created in Azure main region. Otherwise it will be created in the specified extended location
- Identity
Identity
Args The identity of the resource.
- Immutable
Storage ImmutableWith Versioning Storage Account Args The property is immutable and can only be set to true at the account creation time. When set to true, it enables object level immutability for all the new containers in the account by default.
- Is
Hns boolEnabled Account HierarchicalNamespace enabled if sets to true.
- Is
Local boolUser Enabled Enables local users feature, if set to true
- Is
Sftp boolEnabled Enables Secure File Transfer Protocol, if set to true
- Key
Policy KeyPolicy Args KeyPolicy assigned to the storage account.
-
string | Large
File Shares State Allow large file shares if sets to Enabled. It cannot be disabled once it is enabled.
- Location string
Required. Gets or sets the location of the resource. This will be one of the supported and registered Azure Geo Regions (e.g. West US, East US, Southeast Asia, etc.). The geo region of a resource cannot be changed once it is created, but if an identical geo region is specified on update, the request will succeed.
- Minimum
Tls string | MinimumVersion Tls Version Set the minimum TLS version to be permitted on requests to storage. The default interpretation is TLS 1.0 for this property.
- Network
Rule NetworkSet Rule Set Args Network rule set
- Public
Network string | PublicAccess Network Access Allow or disallow public network access to Storage Account. Value is optional but if passed in, must be 'Enabled' or 'Disabled'.
- Routing
Preference RoutingPreference Args Maintains information about the network routing choice opted by the user for data transfer
- Sas
Policy SasPolicy Args SasPolicy assigned to the storage account.
- map[string]string
Gets or sets a list of key value pairs that describe the resource. These tags can be used for viewing and grouping this resource (across resource groups). A maximum of 15 tags can be provided for a resource. Each tag must have a key with a length no greater than 128 characters and a value with a length no greater than 256 characters.
- kind String | Kind
Required. Indicates the type of storage account.
- resource
Group StringName The name of the resource group within the user's subscription. The name is case insensitive.
- sku Sku
Required. Gets or sets the SKU name.
- access
Tier AccessTier Required for storage accounts where kind = BlobStorage. The access tier is used for billing. The 'Premium' access tier is the default value for premium block blobs storage account type and it cannot be changed for the premium block blobs storage account type.
- account
Name String The name of the storage account within the specified resource group. Storage account names must be between 3 and 24 characters in length and use numbers and lower-case letters only.
- allow
Blob BooleanPublic Access Allow or disallow public access to all blobs or containers in the storage account. The default interpretation is true for this property.
- allow
Cross BooleanTenant Replication Allow or disallow cross AAD tenant object replication. The default interpretation is true for this property.
- Boolean
Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key. If false, then all requests, including shared access signatures, must be authorized with Azure Active Directory (Azure AD). The default value is null, which is equivalent to true.
- allowed
Copy String | AllowedScope Copy Scope Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet.
- azure
Files AzureIdentity Based Authentication Files Identity Based Authentication Provides the identity based authentication settings for Azure Files.
- custom
Domain CustomDomain User domain assigned to the storage account. Name is the CNAME source. Only one custom domain is supported per storage account at this time. To clear the existing custom domain, use an empty string for the custom domain name property.
- default
To BooleanOAuth Authentication A boolean flag which indicates whether the default authentication is OAuth or not. The default interpretation is false for this property.
- dns
Endpoint String | DnsType Endpoint Type Allows you to specify the type of endpoint. Set this to AzureDNSZone to create a large number of accounts in a single subscription, which creates accounts in an Azure DNS Zone and the endpoint URL will have an alphanumeric DNS Zone identifier.
- enable
Https BooleanTraffic Only Allows https traffic only to storage service if sets to true. The default value is true since API version 2019-04-01.
- enable
Nfs BooleanV3 NFS 3.0 protocol support enabled if set to true.
- encryption Encryption
Encryption settings to be used for server-side encryption for the storage account.
- extended
Location ExtendedLocation Optional. Set the extended location of the resource. If not set, the storage account will be created in Azure main region. Otherwise it will be created in the specified extended location
- identity Identity
The identity of the resource.
- immutable
Storage ImmutableWith Versioning Storage Account The property is immutable and can only be set to true at the account creation time. When set to true, it enables object level immutability for all the new containers in the account by default.
- is
Hns BooleanEnabled Account HierarchicalNamespace enabled if sets to true.
- is
Local BooleanUser Enabled Enables local users feature, if set to true
- is
Sftp BooleanEnabled Enables Secure File Transfer Protocol, if set to true
- key
Policy KeyPolicy KeyPolicy assigned to the storage account.
-
String | Large
File Shares State Allow large file shares if sets to Enabled. It cannot be disabled once it is enabled.
- location String
Required. Gets or sets the location of the resource. This will be one of the supported and registered Azure Geo Regions (e.g. West US, East US, Southeast Asia, etc.). The geo region of a resource cannot be changed once it is created, but if an identical geo region is specified on update, the request will succeed.
- minimum
Tls String | MinimumVersion Tls Version Set the minimum TLS version to be permitted on requests to storage. The default interpretation is TLS 1.0 for this property.
- network
Rule NetworkSet Rule Set Network rule set
- public
Network String | PublicAccess Network Access Allow or disallow public network access to Storage Account. Value is optional but if passed in, must be 'Enabled' or 'Disabled'.
- routing
Preference RoutingPreference Maintains information about the network routing choice opted by the user for data transfer
- sas
Policy SasPolicy SasPolicy assigned to the storage account.
- Map<String,String>
Gets or sets a list of key value pairs that describe the resource. These tags can be used for viewing and grouping this resource (across resource groups). A maximum of 15 tags can be provided for a resource. Each tag must have a key with a length no greater than 128 characters and a value with a length no greater than 256 characters.
- kind string | Kind
Required. Indicates the type of storage account.
- resource
Group stringName The name of the resource group within the user's subscription. The name is case insensitive.
- sku Sku
Required. Gets or sets the SKU name.
- access
Tier AccessTier Required for storage accounts where kind = BlobStorage. The access tier is used for billing. The 'Premium' access tier is the default value for premium block blobs storage account type and it cannot be changed for the premium block blobs storage account type.
- account
Name string The name of the storage account within the specified resource group. Storage account names must be between 3 and 24 characters in length and use numbers and lower-case letters only.
- allow
Blob booleanPublic Access Allow or disallow public access to all blobs or containers in the storage account. The default interpretation is true for this property.
- allow
Cross booleanTenant Replication Allow or disallow cross AAD tenant object replication. The default interpretation is true for this property.
- boolean
Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key. If false, then all requests, including shared access signatures, must be authorized with Azure Active Directory (Azure AD). The default value is null, which is equivalent to true.
- allowed
Copy string | AllowedScope Copy Scope Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet.
- azure
Files AzureIdentity Based Authentication Files Identity Based Authentication Provides the identity based authentication settings for Azure Files.
- custom
Domain CustomDomain User domain assigned to the storage account. Name is the CNAME source. Only one custom domain is supported per storage account at this time. To clear the existing custom domain, use an empty string for the custom domain name property.
- default
To booleanOAuth Authentication A boolean flag which indicates whether the default authentication is OAuth or not. The default interpretation is false for this property.
- dns
Endpoint string | DnsType Endpoint Type Allows you to specify the type of endpoint. Set this to AzureDNSZone to create a large number of accounts in a single subscription, which creates accounts in an Azure DNS Zone and the endpoint URL will have an alphanumeric DNS Zone identifier.
- enable
Https booleanTraffic Only Allows https traffic only to storage service if sets to true. The default value is true since API version 2019-04-01.
- enable
Nfs booleanV3 NFS 3.0 protocol support enabled if set to true.
- encryption Encryption
Encryption settings to be used for server-side encryption for the storage account.
- extended
Location ExtendedLocation Optional. Set the extended location of the resource. If not set, the storage account will be created in Azure main region. Otherwise it will be created in the specified extended location
- identity Identity
The identity of the resource.
- immutable
Storage ImmutableWith Versioning Storage Account The property is immutable and can only be set to true at the account creation time. When set to true, it enables object level immutability for all the new containers in the account by default.
- is
Hns booleanEnabled Account HierarchicalNamespace enabled if sets to true.
- is
Local booleanUser Enabled Enables local users feature, if set to true
- is
Sftp booleanEnabled Enables Secure File Transfer Protocol, if set to true
- key
Policy KeyPolicy KeyPolicy assigned to the storage account.
-
string | Large
File Shares State Allow large file shares if sets to Enabled. It cannot be disabled once it is enabled.
- location string
Required. Gets or sets the location of the resource. This will be one of the supported and registered Azure Geo Regions (e.g. West US, East US, Southeast Asia, etc.). The geo region of a resource cannot be changed once it is created, but if an identical geo region is specified on update, the request will succeed.
- minimum
Tls string | MinimumVersion Tls Version Set the minimum TLS version to be permitted on requests to storage. The default interpretation is TLS 1.0 for this property.
- network
Rule NetworkSet Rule Set Network rule set
- public
Network string | PublicAccess Network Access Allow or disallow public network access to Storage Account. Value is optional but if passed in, must be 'Enabled' or 'Disabled'.
- routing
Preference RoutingPreference Maintains information about the network routing choice opted by the user for data transfer
- sas
Policy SasPolicy SasPolicy assigned to the storage account.
- {[key: string]: string}
Gets or sets a list of key value pairs that describe the resource. These tags can be used for viewing and grouping this resource (across resource groups). A maximum of 15 tags can be provided for a resource. Each tag must have a key with a length no greater than 128 characters and a value with a length no greater than 256 characters.
- kind str | Kind
Required. Indicates the type of storage account.
- resource_
group_ strname The name of the resource group within the user's subscription. The name is case insensitive.
- sku
Sku
Args Required. Gets or sets the SKU name.
- access_
tier AccessTier Required for storage accounts where kind = BlobStorage. The access tier is used for billing. The 'Premium' access tier is the default value for premium block blobs storage account type and it cannot be changed for the premium block blobs storage account type.
- account_
name str The name of the storage account within the specified resource group. Storage account names must be between 3 and 24 characters in length and use numbers and lower-case letters only.
- allow_
blob_ boolpublic_ access Allow or disallow public access to all blobs or containers in the storage account. The default interpretation is true for this property.
- allow_
cross_ booltenant_ replication Allow or disallow cross AAD tenant object replication. The default interpretation is true for this property.
- bool
Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key. If false, then all requests, including shared access signatures, must be authorized with Azure Active Directory (Azure AD). The default value is null, which is equivalent to true.
- allowed_
copy_ str | Allowedscope Copy Scope Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet.
- azure_
files_ Azureidentity_ based_ authentication Files Identity Based Authentication Args Provides the identity based authentication settings for Azure Files.
- custom_
domain CustomDomain Args User domain assigned to the storage account. Name is the CNAME source. Only one custom domain is supported per storage account at this time. To clear the existing custom domain, use an empty string for the custom domain name property.
- default_
to_ boolo_ auth_ authentication A boolean flag which indicates whether the default authentication is OAuth or not. The default interpretation is false for this property.
- dns_
endpoint_ str | Dnstype Endpoint Type Allows you to specify the type of endpoint. Set this to AzureDNSZone to create a large number of accounts in a single subscription, which creates accounts in an Azure DNS Zone and the endpoint URL will have an alphanumeric DNS Zone identifier.
- enable_
https_ booltraffic_ only Allows https traffic only to storage service if sets to true. The default value is true since API version 2019-04-01.
- enable_
nfs_ boolv3 NFS 3.0 protocol support enabled if set to true.
- encryption
Encryption
Args Encryption settings to be used for server-side encryption for the storage account.
- extended_
location ExtendedLocation Args Optional. Set the extended location of the resource. If not set, the storage account will be created in Azure main region. Otherwise it will be created in the specified extended location
- identity
Identity
Args The identity of the resource.
- immutable_
storage_ Immutablewith_ versioning Storage Account Args The property is immutable and can only be set to true at the account creation time. When set to true, it enables object level immutability for all the new containers in the account by default.
- is_
hns_ boolenabled Account HierarchicalNamespace enabled if sets to true.
- is_
local_ booluser_ enabled Enables local users feature, if set to true
- is_
sftp_ boolenabled Enables Secure File Transfer Protocol, if set to true
- key_
policy KeyPolicy Args KeyPolicy assigned to the storage account.
-
str | Large
File Shares State Allow large file shares if sets to Enabled. It cannot be disabled once it is enabled.
- location str
Required. Gets or sets the location of the resource. This will be one of the supported and registered Azure Geo Regions (e.g. West US, East US, Southeast Asia, etc.). The geo region of a resource cannot be changed once it is created, but if an identical geo region is specified on update, the request will succeed.
- minimum_
tls_ str | Minimumversion Tls Version Set the minimum TLS version to be permitted on requests to storage. The default interpretation is TLS 1.0 for this property.
- network_
rule_ Networkset Rule Set Args Network rule set
- public_
network_ str | Publicaccess Network Access Allow or disallow public network access to Storage Account. Value is optional but if passed in, must be 'Enabled' or 'Disabled'.
- routing_
preference RoutingPreference Args Maintains information about the network routing choice opted by the user for data transfer
- sas_
policy SasPolicy Args SasPolicy assigned to the storage account.
- Mapping[str, str]
Gets or sets a list of key value pairs that describe the resource. These tags can be used for viewing and grouping this resource (across resource groups). A maximum of 15 tags can be provided for a resource. Each tag must have a key with a length no greater than 128 characters and a value with a length no greater than 256 characters.
- kind
String | "Storage" | "Storage
V2" | "Blob Storage" | "File Storage" | "Block Blob Storage" Required. Indicates the type of storage account.
- resource
Group StringName The name of the resource group within the user's subscription. The name is case insensitive.
- sku Property Map
Required. Gets or sets the SKU name.
- access
Tier "Hot" | "Cool" | "Premium" Required for storage accounts where kind = BlobStorage. The access tier is used for billing. The 'Premium' access tier is the default value for premium block blobs storage account type and it cannot be changed for the premium block blobs storage account type.
- account
Name String The name of the storage account within the specified resource group. Storage account names must be between 3 and 24 characters in length and use numbers and lower-case letters only.
- allow
Blob BooleanPublic Access Allow or disallow public access to all blobs or containers in the storage account. The default interpretation is true for this property.
- allow
Cross BooleanTenant Replication Allow or disallow cross AAD tenant object replication. The default interpretation is true for this property.
- Boolean
Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key. If false, then all requests, including shared access signatures, must be authorized with Azure Active Directory (Azure AD). The default value is null, which is equivalent to true.
- allowed
Copy String | "PrivateScope Link" | "AAD" Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet.
- azure
Files Property MapIdentity Based Authentication Provides the identity based authentication settings for Azure Files.
- custom
Domain Property Map User domain assigned to the storage account. Name is the CNAME source. Only one custom domain is supported per storage account at this time. To clear the existing custom domain, use an empty string for the custom domain name property.
- default
To BooleanOAuth Authentication A boolean flag which indicates whether the default authentication is OAuth or not. The default interpretation is false for this property.
- dns
Endpoint String | "Standard" | "AzureType Dns Zone" Allows you to specify the type of endpoint. Set this to AzureDNSZone to create a large number of accounts in a single subscription, which creates accounts in an Azure DNS Zone and the endpoint URL will have an alphanumeric DNS Zone identifier.
- enable
Https BooleanTraffic Only Allows https traffic only to storage service if sets to true. The default value is true since API version 2019-04-01.
- enable
Nfs BooleanV3 NFS 3.0 protocol support enabled if set to true.
- encryption Property Map
Encryption settings to be used for server-side encryption for the storage account.
- extended
Location Property Map Optional. Set the extended location of the resource. If not set, the storage account will be created in Azure main region. Otherwise it will be created in the specified extended location
- identity Property Map
The identity of the resource.
- immutable
Storage Property MapWith Versioning The property is immutable and can only be set to true at the account creation time. When set to true, it enables object level immutability for all the new containers in the account by default.
- is
Hns BooleanEnabled Account HierarchicalNamespace enabled if sets to true.
- is
Local BooleanUser Enabled Enables local users feature, if set to true
- is
Sftp BooleanEnabled Enables Secure File Transfer Protocol, if set to true
- key
Policy Property Map KeyPolicy assigned to the storage account.
- String | "Disabled" | "Enabled"
Allow large file shares if sets to Enabled. It cannot be disabled once it is enabled.
- location String
Required. Gets or sets the location of the resource. This will be one of the supported and registered Azure Geo Regions (e.g. West US, East US, Southeast Asia, etc.). The geo region of a resource cannot be changed once it is created, but if an identical geo region is specified on update, the request will succeed.
- minimum
Tls String | "TLS1_0" | "TLS1_1" | "TLS1_2"Version Set the minimum TLS version to be permitted on requests to storage. The default interpretation is TLS 1.0 for this property.
- network
Rule Property MapSet Network rule set
- public
Network String | "Enabled" | "Disabled"Access Allow or disallow public network access to Storage Account. Value is optional but if passed in, must be 'Enabled' or 'Disabled'.
- routing
Preference Property Map Maintains information about the network routing choice opted by the user for data transfer
- sas
Policy Property Map SasPolicy assigned to the storage account.
- Map<String>
Gets or sets a list of key value pairs that describe the resource. These tags can be used for viewing and grouping this resource (across resource groups). A maximum of 15 tags can be provided for a resource. Each tag must have a key with a length no greater than 128 characters and a value with a length no greater than 256 characters.
Outputs
All input properties are implicitly available as output properties. Additionally, the StorageAccount resource produces the following output properties:
- Blob
Restore Pulumi.Status Azure Native. Storage. Outputs. Blob Restore Status Response Blob restore status
- Creation
Time string Gets the creation date and time of the storage account in UTC.
- Failover
In boolProgress If the failover is in progress, the value will be true, otherwise, it will be null.
- Geo
Replication Pulumi.Stats Azure Native. Storage. Outputs. Geo Replication Stats Response Geo Replication Stats
- Id string
The provider-assigned unique ID for this managed resource.
- Key
Creation Pulumi.Time Azure Native. Storage. Outputs. Key Creation Time Response Storage account keys creation time.
- Last
Geo stringFailover Time Gets the timestamp of the most recent instance of a failover to the secondary location. Only the most recent timestamp is retained. This element is not returned if there has never been a failover instance. Only available if the accountType is Standard_GRS or Standard_RAGRS.
- Name string
The name of the resource
- Primary
Endpoints Pulumi.Azure Native. Storage. Outputs. Endpoints Response Gets the URLs that are used to perform a retrieval of a public blob, queue, or table object. Note that Standard_ZRS and Premium_LRS accounts only return the blob endpoint.
- Primary
Location string Gets the location of the primary data center for the storage account.
- Private
Endpoint List<Pulumi.Connections Azure Native. Storage. Outputs. Private Endpoint Connection Response> List of private endpoint connection associated with the specified storage account
- Provisioning
State string Gets the status of the storage account at the time the operation was called.
- Secondary
Endpoints Pulumi.Azure Native. Storage. Outputs. Endpoints Response Gets the URLs that are used to perform a retrieval of a public blob, queue, or table object from the secondary location of the storage account. Only available if the SKU name is Standard_RAGRS.
- Secondary
Location string Gets the location of the geo-replicated secondary for the storage account. Only available if the accountType is Standard_GRS or Standard_RAGRS.
- Status
Of stringPrimary Gets the status indicating whether the primary location of the storage account is available or unavailable.
- Status
Of stringSecondary Gets the status indicating whether the secondary location of the storage account is available or unavailable. Only available if the SKU name is Standard_GRS or Standard_RAGRS.
- Type string
The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- Storage
Account Pulumi.Sku Conversion Status Azure Native. Storage. Outputs. Storage Account Sku Conversion Status Response This property is readOnly and is set by server during asynchronous storage account sku conversion operations.
- Blob
Restore BlobStatus Restore Status Response Blob restore status
- Creation
Time string Gets the creation date and time of the storage account in UTC.
- Failover
In boolProgress If the failover is in progress, the value will be true, otherwise, it will be null.
- Geo
Replication GeoStats Replication Stats Response Geo Replication Stats
- Id string
The provider-assigned unique ID for this managed resource.
- Key
Creation KeyTime Creation Time Response Storage account keys creation time.
- Last
Geo stringFailover Time Gets the timestamp of the most recent instance of a failover to the secondary location. Only the most recent timestamp is retained. This element is not returned if there has never been a failover instance. Only available if the accountType is Standard_GRS or Standard_RAGRS.
- Name string
The name of the resource
- Primary
Endpoints EndpointsResponse Gets the URLs that are used to perform a retrieval of a public blob, queue, or table object. Note that Standard_ZRS and Premium_LRS accounts only return the blob endpoint.
- Primary
Location string Gets the location of the primary data center for the storage account.
- Private
Endpoint []PrivateConnections Endpoint Connection Response List of private endpoint connection associated with the specified storage account
- Provisioning
State string Gets the status of the storage account at the time the operation was called.
- Secondary
Endpoints EndpointsResponse Gets the URLs that are used to perform a retrieval of a public blob, queue, or table object from the secondary location of the storage account. Only available if the SKU name is Standard_RAGRS.
- Secondary
Location string Gets the location of the geo-replicated secondary for the storage account. Only available if the accountType is Standard_GRS or Standard_RAGRS.
- Status
Of stringPrimary Gets the status indicating whether the primary location of the storage account is available or unavailable.
- Status
Of stringSecondary Gets the status indicating whether the secondary location of the storage account is available or unavailable. Only available if the SKU name is Standard_GRS or Standard_RAGRS.
- Type string
The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- Storage
Account StorageSku Conversion Status Account Sku Conversion Status Response This property is readOnly and is set by server during asynchronous storage account sku conversion operations.
- blob
Restore BlobStatus Restore Status Response Blob restore status
- creation
Time String Gets the creation date and time of the storage account in UTC.
- failover
In BooleanProgress If the failover is in progress, the value will be true, otherwise, it will be null.
- geo
Replication GeoStats Replication Stats Response Geo Replication Stats
- id String
The provider-assigned unique ID for this managed resource.
- key
Creation KeyTime Creation Time Response Storage account keys creation time.
- last
Geo StringFailover Time Gets the timestamp of the most recent instance of a failover to the secondary location. Only the most recent timestamp is retained. This element is not returned if there has never been a failover instance. Only available if the accountType is Standard_GRS or Standard_RAGRS.
- name String
The name of the resource
- primary
Endpoints EndpointsResponse Gets the URLs that are used to perform a retrieval of a public blob, queue, or table object. Note that Standard_ZRS and Premium_LRS accounts only return the blob endpoint.
- primary
Location String Gets the location of the primary data center for the storage account.
- private
Endpoint List<PrivateConnections Endpoint Connection Response> List of private endpoint connection associated with the specified storage account
- provisioning
State String Gets the status of the storage account at the time the operation was called.
- secondary
Endpoints EndpointsResponse Gets the URLs that are used to perform a retrieval of a public blob, queue, or table object from the secondary location of the storage account. Only available if the SKU name is Standard_RAGRS.
- secondary
Location String Gets the location of the geo-replicated secondary for the storage account. Only available if the accountType is Standard_GRS or Standard_RAGRS.
- status
Of StringPrimary Gets the status indicating whether the primary location of the storage account is available or unavailable.
- status
Of StringSecondary Gets the status indicating whether the secondary location of the storage account is available or unavailable. Only available if the SKU name is Standard_GRS or Standard_RAGRS.
- type String
The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- storage
Account StorageSku Conversion Status Account Sku Conversion Status Response This property is readOnly and is set by server during asynchronous storage account sku conversion operations.
- blob
Restore BlobStatus Restore Status Response Blob restore status
- creation
Time string Gets the creation date and time of the storage account in UTC.
- failover
In booleanProgress If the failover is in progress, the value will be true, otherwise, it will be null.
- geo
Replication GeoStats Replication Stats Response Geo Replication Stats
- id string
The provider-assigned unique ID for this managed resource.
- key
Creation KeyTime Creation Time Response Storage account keys creation time.
- last
Geo stringFailover Time Gets the timestamp of the most recent instance of a failover to the secondary location. Only the most recent timestamp is retained. This element is not returned if there has never been a failover instance. Only available if the accountType is Standard_GRS or Standard_RAGRS.
- name string
The name of the resource
- primary
Endpoints EndpointsResponse Gets the URLs that are used to perform a retrieval of a public blob, queue, or table object. Note that Standard_ZRS and Premium_LRS accounts only return the blob endpoint.
- primary
Location string Gets the location of the primary data center for the storage account.
- private
Endpoint PrivateConnections Endpoint Connection Response[] List of private endpoint connection associated with the specified storage account
- provisioning
State string Gets the status of the storage account at the time the operation was called.
- secondary
Endpoints EndpointsResponse Gets the URLs that are used to perform a retrieval of a public blob, queue, or table object from the secondary location of the storage account. Only available if the SKU name is Standard_RAGRS.
- secondary
Location string Gets the location of the geo-replicated secondary for the storage account. Only available if the accountType is Standard_GRS or Standard_RAGRS.
- status
Of stringPrimary Gets the status indicating whether the primary location of the storage account is available or unavailable.
- status
Of stringSecondary Gets the status indicating whether the secondary location of the storage account is available or unavailable. Only available if the SKU name is Standard_GRS or Standard_RAGRS.
- type string
The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- storage
Account StorageSku Conversion Status Account Sku Conversion Status Response This property is readOnly and is set by server during asynchronous storage account sku conversion operations.
- blob_
restore_ Blobstatus Restore Status Response Blob restore status
- creation_
time str Gets the creation date and time of the storage account in UTC.
- failover_
in_ boolprogress If the failover is in progress, the value will be true, otherwise, it will be null.
- geo_
replication_ Geostats Replication Stats Response Geo Replication Stats
- id str
The provider-assigned unique ID for this managed resource.
- key_
creation_ Keytime Creation Time Response Storage account keys creation time.
- last_
geo_ strfailover_ time Gets the timestamp of the most recent instance of a failover to the secondary location. Only the most recent timestamp is retained. This element is not returned if there has never been a failover instance. Only available if the accountType is Standard_GRS or Standard_RAGRS.
- name str
The name of the resource
- primary_
endpoints EndpointsResponse Gets the URLs that are used to perform a retrieval of a public blob, queue, or table object. Note that Standard_ZRS and Premium_LRS accounts only return the blob endpoint.
- primary_
location str Gets the location of the primary data center for the storage account.
- private_
endpoint_ Sequence[Privateconnections Endpoint Connection Response] List of private endpoint connection associated with the specified storage account
- provisioning_
state str Gets the status of the storage account at the time the operation was called.
- secondary_
endpoints EndpointsResponse Gets the URLs that are used to perform a retrieval of a public blob, queue, or table object from the secondary location of the storage account. Only available if the SKU name is Standard_RAGRS.
- secondary_
location str Gets the location of the geo-replicated secondary for the storage account. Only available if the accountType is Standard_GRS or Standard_RAGRS.
- status_
of_ strprimary Gets the status indicating whether the primary location of the storage account is available or unavailable.
- status_
of_ strsecondary Gets the status indicating whether the secondary location of the storage account is available or unavailable. Only available if the SKU name is Standard_GRS or Standard_RAGRS.
- type str
The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- storage_
account_ Storagesku_ conversion_ status Account Sku Conversion Status Response This property is readOnly and is set by server during asynchronous storage account sku conversion operations.
- blob
Restore Property MapStatus Blob restore status
- creation
Time String Gets the creation date and time of the storage account in UTC.
- failover
In BooleanProgress If the failover is in progress, the value will be true, otherwise, it will be null.
- geo
Replication Property MapStats Geo Replication Stats
- id String
The provider-assigned unique ID for this managed resource.
- key
Creation Property MapTime Storage account keys creation time.
- last
Geo StringFailover Time Gets the timestamp of the most recent instance of a failover to the secondary location. Only the most recent timestamp is retained. This element is not returned if there has never been a failover instance. Only available if the accountType is Standard_GRS or Standard_RAGRS.
- name String
The name of the resource
- primary
Endpoints Property Map Gets the URLs that are used to perform a retrieval of a public blob, queue, or table object. Note that Standard_ZRS and Premium_LRS accounts only return the blob endpoint.
- primary
Location String Gets the location of the primary data center for the storage account.
- private
Endpoint List<Property Map>Connections List of private endpoint connection associated with the specified storage account
- provisioning
State String Gets the status of the storage account at the time the operation was called.
- secondary
Endpoints Property Map Gets the URLs that are used to perform a retrieval of a public blob, queue, or table object from the secondary location of the storage account. Only available if the SKU name is Standard_RAGRS.
- secondary
Location String Gets the location of the geo-replicated secondary for the storage account. Only available if the accountType is Standard_GRS or Standard_RAGRS.
- status
Of StringPrimary Gets the status indicating whether the primary location of the storage account is available or unavailable.
- status
Of StringSecondary Gets the status indicating whether the secondary location of the storage account is available or unavailable. Only available if the SKU name is Standard_GRS or Standard_RAGRS.
- type String
The type of the resource. E.g. "Microsoft.Compute/virtualMachines" or "Microsoft.Storage/storageAccounts"
- storage
Account Property MapSku Conversion Status This property is readOnly and is set by server during asynchronous storage account sku conversion operations.
Supporting Types
AccessTier, AccessTierArgs
- Hot
- Hot
- Cool
- Cool
- Premium
- Premium
- Access
Tier Hot - Hot
- Access
Tier Cool - Cool
- Access
Tier Premium - Premium
- Hot
- Hot
- Cool
- Cool
- Premium
- Premium
- Hot
- Hot
- Cool
- Cool
- Premium
- Premium
- HOT
- Hot
- COOL
- Cool
- PREMIUM
- Premium
- "Hot"
- Hot
- "Cool"
- Cool
- "Premium"
- Premium
AccountImmutabilityPolicyProperties, AccountImmutabilityPolicyPropertiesArgs
- Allow
Protected boolAppend Writes This property can only be changed for disabled and unlocked time-based retention policies. When enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted.
- Immutability
Period intSince Creation In Days The immutability period for the blobs in the container since the policy creation, in days.
- State
string | Pulumi.
Azure Native. Storage. Account Immutability Policy State The ImmutabilityPolicy state defines the mode of the policy. Disabled state disables the policy, Unlocked state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property, Locked state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted.
- Allow
Protected boolAppend Writes This property can only be changed for disabled and unlocked time-based retention policies. When enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted.
- Immutability
Period intSince Creation In Days The immutability period for the blobs in the container since the policy creation, in days.
- State
string | Account
Immutability Policy State The ImmutabilityPolicy state defines the mode of the policy. Disabled state disables the policy, Unlocked state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property, Locked state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted.
- allow
Protected BooleanAppend Writes This property can only be changed for disabled and unlocked time-based retention policies. When enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted.
- immutability
Period IntegerSince Creation In Days The immutability period for the blobs in the container since the policy creation, in days.
- state
String | Account
Immutability Policy State The ImmutabilityPolicy state defines the mode of the policy. Disabled state disables the policy, Unlocked state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property, Locked state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted.
- allow
Protected booleanAppend Writes This property can only be changed for disabled and unlocked time-based retention policies. When enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted.
- immutability
Period numberSince Creation In Days The immutability period for the blobs in the container since the policy creation, in days.
- state
string | Account
Immutability Policy State The ImmutabilityPolicy state defines the mode of the policy. Disabled state disables the policy, Unlocked state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property, Locked state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted.
- allow_
protected_ boolappend_ writes This property can only be changed for disabled and unlocked time-based retention policies. When enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted.
- immutability_
period_ intsince_ creation_ in_ days The immutability period for the blobs in the container since the policy creation, in days.
- state
str | Account
Immutability Policy State The ImmutabilityPolicy state defines the mode of the policy. Disabled state disables the policy, Unlocked state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property, Locked state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted.
- allow
Protected BooleanAppend Writes This property can only be changed for disabled and unlocked time-based retention policies. When enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted.
- immutability
Period NumberSince Creation In Days The immutability period for the blobs in the container since the policy creation, in days.
- state String | "Unlocked" | "Locked" | "Disabled"
The ImmutabilityPolicy state defines the mode of the policy. Disabled state disables the policy, Unlocked state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property, Locked state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted.
AccountImmutabilityPolicyPropertiesResponse, AccountImmutabilityPolicyPropertiesResponseArgs
- Allow
Protected boolAppend Writes This property can only be changed for disabled and unlocked time-based retention policies. When enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted.
- Immutability
Period intSince Creation In Days The immutability period for the blobs in the container since the policy creation, in days.
- State string
The ImmutabilityPolicy state defines the mode of the policy. Disabled state disables the policy, Unlocked state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property, Locked state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted.
- Allow
Protected boolAppend Writes This property can only be changed for disabled and unlocked time-based retention policies. When enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted.
- Immutability
Period intSince Creation In Days The immutability period for the blobs in the container since the policy creation, in days.
- State string
The ImmutabilityPolicy state defines the mode of the policy. Disabled state disables the policy, Unlocked state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property, Locked state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted.
- allow
Protected BooleanAppend Writes This property can only be changed for disabled and unlocked time-based retention policies. When enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted.
- immutability
Period IntegerSince Creation In Days The immutability period for the blobs in the container since the policy creation, in days.
- state String
The ImmutabilityPolicy state defines the mode of the policy. Disabled state disables the policy, Unlocked state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property, Locked state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted.
- allow
Protected booleanAppend Writes This property can only be changed for disabled and unlocked time-based retention policies. When enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted.
- immutability
Period numberSince Creation In Days The immutability period for the blobs in the container since the policy creation, in days.
- state string
The ImmutabilityPolicy state defines the mode of the policy. Disabled state disables the policy, Unlocked state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property, Locked state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted.
- allow_
protected_ boolappend_ writes This property can only be changed for disabled and unlocked time-based retention policies. When enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted.
- immutability_
period_ intsince_ creation_ in_ days The immutability period for the blobs in the container since the policy creation, in days.
- state str
The ImmutabilityPolicy state defines the mode of the policy. Disabled state disables the policy, Unlocked state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property, Locked state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted.
- allow
Protected BooleanAppend Writes This property can only be changed for disabled and unlocked time-based retention policies. When enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted.
- immutability
Period NumberSince Creation In Days The immutability period for the blobs in the container since the policy creation, in days.
- state String
The ImmutabilityPolicy state defines the mode of the policy. Disabled state disables the policy, Unlocked state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property, Locked state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted.
AccountImmutabilityPolicyState, AccountImmutabilityPolicyStateArgs
- Unlocked
- Unlocked
- Locked
- Locked
- Disabled
- Disabled
- Account
Immutability Policy State Unlocked - Unlocked
- Account
Immutability Policy State Locked - Locked
- Account
Immutability Policy State Disabled - Disabled
- Unlocked
- Unlocked
- Locked
- Locked
- Disabled
- Disabled
- Unlocked
- Unlocked
- Locked
- Locked
- Disabled
- Disabled
- UNLOCKED
- Unlocked
- LOCKED
- Locked
- DISABLED
- Disabled
- "Unlocked"
- Unlocked
- "Locked"
- Locked
- "Disabled"
- Disabled
AccountType, AccountTypeArgs
- User
- User
- Computer
- Computer
- Account
Type User - User
- Account
Type Computer - Computer
- User
- User
- Computer
- Computer
- User
- User
- Computer
- Computer
- USER
- User
- COMPUTER
- Computer
- "User"
- User
- "Computer"
- Computer
Action, ActionArgs
- Allow
- Allow
- Action
Allow - Allow
- Allow
- Allow
- Allow
- Allow
- ALLOW
- Allow
- "Allow"
- Allow
ActiveDirectoryProperties, ActiveDirectoryPropertiesArgs
- Domain
Guid string Specifies the domain GUID.
- Domain
Name string Specifies the primary domain that the AD DNS server is authoritative for.
- Account
Type string | Pulumi.Azure Native. Storage. Account Type Specifies the Active Directory account type for Azure Storage.
- Azure
Storage stringSid Specifies the security identifier (SID) for Azure Storage.
- Domain
Sid string Specifies the security identifier (SID).
- Forest
Name string Specifies the Active Directory forest to get.
- Net
Bios stringDomain Name Specifies the NetBIOS domain name.
- Sam
Account stringName Specifies the Active Directory SAMAccountName for Azure Storage.
- Domain
Guid string Specifies the domain GUID.
- Domain
Name string Specifies the primary domain that the AD DNS server is authoritative for.
- Account
Type string | AccountType Specifies the Active Directory account type for Azure Storage.
- Azure
Storage stringSid Specifies the security identifier (SID) for Azure Storage.
- Domain
Sid string Specifies the security identifier (SID).
- Forest
Name string Specifies the Active Directory forest to get.
- Net
Bios stringDomain Name Specifies the NetBIOS domain name.
- Sam
Account stringName Specifies the Active Directory SAMAccountName for Azure Storage.
- domain
Guid String Specifies the domain GUID.
- domain
Name String Specifies the primary domain that the AD DNS server is authoritative for.
- account
Type String | AccountType Specifies the Active Directory account type for Azure Storage.
- azure
Storage StringSid Specifies the security identifier (SID) for Azure Storage.
- domain
Sid String Specifies the security identifier (SID).
- forest
Name String Specifies the Active Directory forest to get.
- net
Bios StringDomain Name Specifies the NetBIOS domain name.
- sam
Account StringName Specifies the Active Directory SAMAccountName for Azure Storage.
- domain
Guid string Specifies the domain GUID.
- domain
Name string Specifies the primary domain that the AD DNS server is authoritative for.
- account
Type string | AccountType Specifies the Active Directory account type for Azure Storage.
- azure
Storage stringSid Specifies the security identifier (SID) for Azure Storage.
- domain
Sid string Specifies the security identifier (SID).
- forest
Name string Specifies the Active Directory forest to get.
- net
Bios stringDomain Name Specifies the NetBIOS domain name.
- sam
Account stringName Specifies the Active Directory SAMAccountName for Azure Storage.
- domain_
guid str Specifies the domain GUID.
- domain_
name str Specifies the primary domain that the AD DNS server is authoritative for.
- account_
type str | AccountType Specifies the Active Directory account type for Azure Storage.
- azure_
storage_ strsid Specifies the security identifier (SID) for Azure Storage.
- domain_
sid str Specifies the security identifier (SID).
- forest_
name str Specifies the Active Directory forest to get.
- net_
bios_ strdomain_ name Specifies the NetBIOS domain name.
- sam_
account_ strname Specifies the Active Directory SAMAccountName for Azure Storage.
- domain
Guid String Specifies the domain GUID.
- domain
Name String Specifies the primary domain that the AD DNS server is authoritative for.
- account
Type String | "User" | "Computer" Specifies the Active Directory account type for Azure Storage.
- azure
Storage StringSid Specifies the security identifier (SID) for Azure Storage.
- domain
Sid String Specifies the security identifier (SID).
- forest
Name String Specifies the Active Directory forest to get.
- net
Bios StringDomain Name Specifies the NetBIOS domain name.
- sam
Account StringName Specifies the Active Directory SAMAccountName for Azure Storage.
ActiveDirectoryPropertiesResponse, ActiveDirectoryPropertiesResponseArgs
- Domain
Guid string Specifies the domain GUID.
- Domain
Name string Specifies the primary domain that the AD DNS server is authoritative for.
- Account
Type string Specifies the Active Directory account type for Azure Storage.
- Azure
Storage stringSid Specifies the security identifier (SID) for Azure Storage.
- Domain
Sid string Specifies the security identifier (SID).
- Forest
Name string Specifies the Active Directory forest to get.
- Net
Bios stringDomain Name Specifies the NetBIOS domain name.
- Sam
Account stringName Specifies the Active Directory SAMAccountName for Azure Storage.
- Domain
Guid string Specifies the domain GUID.
- Domain
Name string Specifies the primary domain that the AD DNS server is authoritative for.
- Account
Type string Specifies the Active Directory account type for Azure Storage.
- Azure
Storage stringSid Specifies the security identifier (SID) for Azure Storage.
- Domain
Sid string Specifies the security identifier (SID).
- Forest
Name string Specifies the Active Directory forest to get.
- Net
Bios stringDomain Name Specifies the NetBIOS domain name.
- Sam
Account stringName Specifies the Active Directory SAMAccountName for Azure Storage.
- domain
Guid String Specifies the domain GUID.
- domain
Name String Specifies the primary domain that the AD DNS server is authoritative for.
- account
Type String Specifies the Active Directory account type for Azure Storage.
- azure
Storage StringSid Specifies the security identifier (SID) for Azure Storage.
- domain
Sid String Specifies the security identifier (SID).
- forest
Name String Specifies the Active Directory forest to get.
- net
Bios StringDomain Name Specifies the NetBIOS domain name.
- sam
Account StringName Specifies the Active Directory SAMAccountName for Azure Storage.
- domain
Guid string Specifies the domain GUID.
- domain
Name string Specifies the primary domain that the AD DNS server is authoritative for.
- account
Type string Specifies the Active Directory account type for Azure Storage.
- azure
Storage stringSid Specifies the security identifier (SID) for Azure Storage.
- domain
Sid string Specifies the security identifier (SID).
- forest
Name string Specifies the Active Directory forest to get.
- net
Bios stringDomain Name Specifies the NetBIOS domain name.
- sam
Account stringName Specifies the Active Directory SAMAccountName for Azure Storage.
- domain_
guid str Specifies the domain GUID.
- domain_
name str Specifies the primary domain that the AD DNS server is authoritative for.
- account_
type str Specifies the Active Directory account type for Azure Storage.
- azure_
storage_ strsid Specifies the security identifier (SID) for Azure Storage.
- domain_
sid str Specifies the security identifier (SID).
- forest_
name str Specifies the Active Directory forest to get.
- net_
bios_ strdomain_ name Specifies the NetBIOS domain name.
- sam_
account_ strname Specifies the Active Directory SAMAccountName for Azure Storage.
- domain
Guid String Specifies the domain GUID.
- domain
Name String Specifies the primary domain that the AD DNS server is authoritative for.
- account
Type String Specifies the Active Directory account type for Azure Storage.
- azure
Storage StringSid Specifies the security identifier (SID) for Azure Storage.
- domain
Sid String Specifies the security identifier (SID).
- forest
Name String Specifies the Active Directory forest to get.
- net
Bios StringDomain Name Specifies the NetBIOS domain name.
- sam
Account StringName Specifies the Active Directory SAMAccountName for Azure Storage.
AllowedCopyScope, AllowedCopyScopeArgs
- Private
Link - PrivateLink
- AAD
- AAD
- Allowed
Copy Scope Private Link - PrivateLink
- Allowed
Copy Scope AAD - AAD
- Private
Link - PrivateLink
- AAD
- AAD
- Private
Link - PrivateLink
- AAD
- AAD
- PRIVATE_LINK
- PrivateLink
- AAD
- AAD
- "Private
Link" - PrivateLink
- "AAD"
- AAD
AzureFilesIdentityBasedAuthentication, AzureFilesIdentityBasedAuthenticationArgs
- Directory
Service string | Pulumi.Options Azure Native. Storage. Directory Service Options Indicates the directory service used. Note that this enum may be extended in the future.
- Active
Directory Pulumi.Properties Azure Native. Storage. Inputs. Active Directory Properties Required if directoryServiceOptions are AD, optional if they are AADKERB.
-
string | Pulumi.
Azure Native. Storage. Default Share Permission Default share permission for users using Kerberos authentication if RBAC role is not assigned.
- Directory
Service string | DirectoryOptions Service Options Indicates the directory service used. Note that this enum may be extended in the future.
- Active
Directory ActiveProperties Directory Properties Required if directoryServiceOptions are AD, optional if they are AADKERB.
-
string | Default
Share Permission Default share permission for users using Kerberos authentication if RBAC role is not assigned.
- directory
Service String | DirectoryOptions Service Options Indicates the directory service used. Note that this enum may be extended in the future.
- active
Directory ActiveProperties Directory Properties Required if directoryServiceOptions are AD, optional if they are AADKERB.
-
String | Default
Share Permission Default share permission for users using Kerberos authentication if RBAC role is not assigned.
- directory
Service string | DirectoryOptions Service Options Indicates the directory service used. Note that this enum may be extended in the future.
- active
Directory ActiveProperties Directory Properties Required if directoryServiceOptions are AD, optional if they are AADKERB.
-
string | Default
Share Permission Default share permission for users using Kerberos authentication if RBAC role is not assigned.
- directory_
service_ str | Directoryoptions Service Options Indicates the directory service used. Note that this enum may be extended in the future.
- active_
directory_ Activeproperties Directory Properties Required if directoryServiceOptions are AD, optional if they are AADKERB.
-
str | Default
Share Permission Default share permission for users using Kerberos authentication if RBAC role is not assigned.
- directory
Service String | "None" | "AADDS" | "AD" | "AADKERB"Options Indicates the directory service used. Note that this enum may be extended in the future.
- active
Directory Property MapProperties Required if directoryServiceOptions are AD, optional if they are AADKERB.
-
String | "None" | "Storage
File Data Smb Share Reader" | "Storage File Data Smb Share Contributor" | "Storage File Data Smb Share Elevated Contributor" Default share permission for users using Kerberos authentication if RBAC role is not assigned.
AzureFilesIdentityBasedAuthenticationResponse, AzureFilesIdentityBasedAuthenticationResponseArgs
- Directory
Service stringOptions Indicates the directory service used. Note that this enum may be extended in the future.
- Active
Directory Pulumi.Properties Azure Native. Storage. Inputs. Active Directory Properties Response Required if directoryServiceOptions are AD, optional if they are AADKERB.
- string
Default share permission for users using Kerberos authentication if RBAC role is not assigned.
- Directory
Service stringOptions Indicates the directory service used. Note that this enum may be extended in the future.
- Active
Directory ActiveProperties Directory Properties Response Required if directoryServiceOptions are AD, optional if they are AADKERB.
- string
Default share permission for users using Kerberos authentication if RBAC role is not assigned.
- directory
Service StringOptions Indicates the directory service used. Note that this enum may be extended in the future.
- active
Directory ActiveProperties Directory Properties Response Required if directoryServiceOptions are AD, optional if they are AADKERB.
- String
Default share permission for users using Kerberos authentication if RBAC role is not assigned.
- directory
Service stringOptions Indicates the directory service used. Note that this enum may be extended in the future.
- active
Directory ActiveProperties Directory Properties Response Required if directoryServiceOptions are AD, optional if they are AADKERB.
- string
Default share permission for users using Kerberos authentication if RBAC role is not assigned.
- directory_
service_ stroptions Indicates the directory service used. Note that this enum may be extended in the future.
- active_
directory_ Activeproperties Directory Properties Response Required if directoryServiceOptions are AD, optional if they are AADKERB.
- str
Default share permission for users using Kerberos authentication if RBAC role is not assigned.
- directory
Service StringOptions Indicates the directory service used. Note that this enum may be extended in the future.
- active
Directory Property MapProperties Required if directoryServiceOptions are AD, optional if they are AADKERB.
- String
Default share permission for users using Kerberos authentication if RBAC role is not assigned.
BlobRestoreParametersResponse, BlobRestoreParametersResponseArgs
- Blob
Ranges List<Pulumi.Azure Native. Storage. Inputs. Blob Restore Range Response> Blob ranges to restore.
- Time
To stringRestore Restore blob to the specified time.
- Blob
Ranges []BlobRestore Range Response Blob ranges to restore.
- Time
To stringRestore Restore blob to the specified time.
- blob
Ranges List<BlobRestore Range Response> Blob ranges to restore.
- time
To StringRestore Restore blob to the specified time.
- blob
Ranges BlobRestore Range Response[] Blob ranges to restore.
- time
To stringRestore Restore blob to the specified time.
- blob_
ranges Sequence[BlobRestore Range Response] Blob ranges to restore.
- time_
to_ strrestore Restore blob to the specified time.
- blob
Ranges List<Property Map> Blob ranges to restore.
- time
To StringRestore Restore blob to the specified time.
BlobRestoreRangeResponse, BlobRestoreRangeResponseArgs
- End
Range string Blob end range. This is exclusive. Empty means account end.
- Start
Range string Blob start range. This is inclusive. Empty means account start.
- End
Range string Blob end range. This is exclusive. Empty means account end.
- Start
Range string Blob start range. This is inclusive. Empty means account start.
- end
Range String Blob end range. This is exclusive. Empty means account end.
- start
Range String Blob start range. This is inclusive. Empty means account start.
- end
Range string Blob end range. This is exclusive. Empty means account end.
- start
Range string Blob start range. This is inclusive. Empty means account start.
- end_
range str Blob end range. This is exclusive. Empty means account end.
- start_
range str Blob start range. This is inclusive. Empty means account start.
- end
Range String Blob end range. This is exclusive. Empty means account end.
- start
Range String Blob start range. This is inclusive. Empty means account start.
BlobRestoreStatusResponse, BlobRestoreStatusResponseArgs
- Failure
Reason string Failure reason when blob restore is failed.
- Parameters
Pulumi.
Azure Native. Storage. Inputs. Blob Restore Parameters Response Blob restore request parameters.
- Restore
Id string Id for tracking blob restore request.
- Status string
The status of blob restore progress. Possible values are: - InProgress: Indicates that blob restore is ongoing. - Complete: Indicates that blob restore has been completed successfully. - Failed: Indicates that blob restore is failed.
- Failure
Reason string Failure reason when blob restore is failed.
- Parameters
Blob
Restore Parameters Response Blob restore request parameters.
- Restore
Id string Id for tracking blob restore request.
- Status string
The status of blob restore progress. Possible values are: - InProgress: Indicates that blob restore is ongoing. - Complete: Indicates that blob restore has been completed successfully. - Failed: Indicates that blob restore is failed.
- failure
Reason String Failure reason when blob restore is failed.
- parameters
Blob
Restore Parameters Response Blob restore request parameters.
- restore
Id String Id for tracking blob restore request.
- status String
The status of blob restore progress. Possible values are: - InProgress: Indicates that blob restore is ongoing. - Complete: Indicates that blob restore has been completed successfully. - Failed: Indicates that blob restore is failed.
- failure
Reason string Failure reason when blob restore is failed.
- parameters
Blob
Restore Parameters Response Blob restore request parameters.
- restore
Id string Id for tracking blob restore request.
- status string
The status of blob restore progress. Possible values are: - InProgress: Indicates that blob restore is ongoing. - Complete: Indicates that blob restore has been completed successfully. - Failed: Indicates that blob restore is failed.
- failure_
reason str Failure reason when blob restore is failed.
- parameters
Blob
Restore Parameters Response Blob restore request parameters.
- restore_
id str Id for tracking blob restore request.
- status str
The status of blob restore progress. Possible values are: - InProgress: Indicates that blob restore is ongoing. - Complete: Indicates that blob restore has been completed successfully. - Failed: Indicates that blob restore is failed.
- failure
Reason String Failure reason when blob restore is failed.
- parameters Property Map
Blob restore request parameters.
- restore
Id String Id for tracking blob restore request.
- status String
The status of blob restore progress. Possible values are: - InProgress: Indicates that blob restore is ongoing. - Complete: Indicates that blob restore has been completed successfully. - Failed: Indicates that blob restore is failed.
Bypass, BypassArgs
- None
- None
- Logging
- Logging
- Metrics
- Metrics
- Azure
Services - AzureServices
- Bypass
None - None
- Bypass
Logging - Logging
- Bypass
Metrics - Metrics
- Bypass
Azure Services - AzureServices
- None
- None
- Logging
- Logging
- Metrics
- Metrics
- Azure
Services - AzureServices
- None
- None
- Logging
- Logging
- Metrics
- Metrics
- Azure
Services - AzureServices
- NONE
- None
- LOGGING
- Logging
- METRICS
- Metrics
- AZURE_SERVICES
- AzureServices
- "None"
- None
- "Logging"
- Logging
- "Metrics"
- Metrics
- "Azure
Services" - AzureServices
CustomDomain, CustomDomainArgs
- Name string
Gets or sets the custom domain name assigned to the storage account. Name is the CNAME source.
- Use
Sub boolDomain Name Indicates whether indirect CName validation is enabled. Default value is false. This should only be set on updates.
- Name string
Gets or sets the custom domain name assigned to the storage account. Name is the CNAME source.
- Use
Sub boolDomain Name Indicates whether indirect CName validation is enabled. Default value is false. This should only be set on updates.
- name String
Gets or sets the custom domain name assigned to the storage account. Name is the CNAME source.
- use
Sub BooleanDomain Name Indicates whether indirect CName validation is enabled. Default value is false. This should only be set on updates.
- name string
Gets or sets the custom domain name assigned to the storage account. Name is the CNAME source.
- use
Sub booleanDomain Name Indicates whether indirect CName validation is enabled. Default value is false. This should only be set on updates.
- name str
Gets or sets the custom domain name assigned to the storage account. Name is the CNAME source.
- use_
sub_ booldomain_ name Indicates whether indirect CName validation is enabled. Default value is false. This should only be set on updates.
- name String
Gets or sets the custom domain name assigned to the storage account. Name is the CNAME source.
- use
Sub BooleanDomain Name Indicates whether indirect CName validation is enabled. Default value is false. This should only be set on updates.
CustomDomainResponse, CustomDomainResponseArgs
- Name string
Gets or sets the custom domain name assigned to the storage account. Name is the CNAME source.
- Use
Sub boolDomain Name Indicates whether indirect CName validation is enabled. Default value is false. This should only be set on updates.
- Name string
Gets or sets the custom domain name assigned to the storage account. Name is the CNAME source.
- Use
Sub boolDomain Name Indicates whether indirect CName validation is enabled. Default value is false. This should only be set on updates.
- name String
Gets or sets the custom domain name assigned to the storage account. Name is the CNAME source.
- use
Sub BooleanDomain Name Indicates whether indirect CName validation is enabled. Default value is false. This should only be set on updates.
- name string
Gets or sets the custom domain name assigned to the storage account. Name is the CNAME source.
- use
Sub booleanDomain Name Indicates whether indirect CName validation is enabled. Default value is false. This should only be set on updates.
- name str
Gets or sets the custom domain name assigned to the storage account. Name is the CNAME source.
- use_
sub_ booldomain_ name Indicates whether indirect CName validation is enabled. Default value is false. This should only be set on updates.
- name String
Gets or sets the custom domain name assigned to the storage account. Name is the CNAME source.
- use
Sub BooleanDomain Name Indicates whether indirect CName validation is enabled. Default value is false. This should only be set on updates.
DefaultAction, DefaultActionArgs
- Allow
- Allow
- Deny
- Deny
- Default
Action Allow - Allow
- Default
Action Deny - Deny
- Allow
- Allow
- Deny
- Deny
- Allow
- Allow
- Deny
- Deny
- ALLOW
- Allow
- DENY
- Deny
- "Allow"
- Allow
- "Deny"
- Deny
DefaultSharePermission, DefaultSharePermissionArgs
- None
- None
- Storage
File Data Smb Share Reader - StorageFileDataSmbShareReader
- Storage
File Data Smb Share Contributor - StorageFileDataSmbShareContributor
- Storage
File Data Smb Share Elevated Contributor - StorageFileDataSmbShareElevatedContributor
- Default
Share Permission None - None
- Default
Share Permission Storage File Data Smb Share Reader - StorageFileDataSmbShareReader
- Default
Share Permission Storage File Data Smb Share Contributor - StorageFileDataSmbShareContributor
- Default
Share Permission Storage File Data Smb Share Elevated Contributor - StorageFileDataSmbShareElevatedContributor
- None
- None
- Storage
File Data Smb Share Reader - StorageFileDataSmbShareReader
- Storage
File Data Smb Share Contributor - StorageFileDataSmbShareContributor
- Storage
File Data Smb Share Elevated Contributor - StorageFileDataSmbShareElevatedContributor
- None
- None
- Storage
File Data Smb Share Reader - StorageFileDataSmbShareReader
- Storage
File Data Smb Share Contributor - StorageFileDataSmbShareContributor
- Storage
File Data Smb Share Elevated Contributor - StorageFileDataSmbShareElevatedContributor
- NONE
- None
- STORAGE_FILE_DATA_SMB_SHARE_READER
- StorageFileDataSmbShareReader
- STORAGE_FILE_DATA_SMB_SHARE_CONTRIBUTOR
- StorageFileDataSmbShareContributor
- STORAGE_FILE_DATA_SMB_SHARE_ELEVATED_CONTRIBUTOR
- StorageFileDataSmbShareElevatedContributor
- "None"
- None
- "Storage
File Data Smb Share Reader" - StorageFileDataSmbShareReader
- "Storage
File Data Smb Share Contributor" - StorageFileDataSmbShareContributor
- "Storage
File Data Smb Share Elevated Contributor" - StorageFileDataSmbShareElevatedContributor
DirectoryServiceOptions, DirectoryServiceOptionsArgs
- None
- None
- AADDS
- AADDS
- AD
- AD
- AADKERB
- AADKERB
- Directory
Service Options None - None
- Directory
Service Options AADDS - AADDS
- Directory
Service Options AD - AD
- Directory
Service Options AADKERB - AADKERB
- None
- None
- AADDS
- AADDS
- AD
- AD
- AADKERB
- AADKERB
- None
- None
- AADDS
- AADDS
- AD
- AD
- AADKERB
- AADKERB
- NONE
- None
- AADDS
- AADDS
- AD
- AD
- AADKERB
- AADKERB
- "None"
- None
- "AADDS"
- AADDS
- "AD"
- AD
- "AADKERB"
- AADKERB
DnsEndpointType, DnsEndpointTypeArgs
- Standard
- Standard
- Azure
Dns Zone - AzureDnsZone
- Dns
Endpoint Type Standard - Standard
- Dns
Endpoint Type Azure Dns Zone - AzureDnsZone
- Standard
- Standard
- Azure
Dns Zone - AzureDnsZone
- Standard
- Standard
- Azure
Dns Zone - AzureDnsZone
- STANDARD
- Standard
- AZURE_DNS_ZONE
- AzureDnsZone
- "Standard"
- Standard
- "Azure
Dns Zone" - AzureDnsZone
Encryption, EncryptionArgs
- Encryption
Identity Pulumi.Azure Native. Storage. Inputs. Encryption Identity The identity to be used with service-side encryption at rest.
- Key
Source string | Pulumi.Azure Native. Storage. Key Source The encryption keySource (provider). Possible values (case-insensitive): Microsoft.Storage, Microsoft.Keyvault
- Key
Vault Pulumi.Properties Azure Native. Storage. Inputs. Key Vault Properties Properties provided by key vault.
- Require
Infrastructure boolEncryption A boolean indicating whether or not the service applies a secondary layer of encryption with platform managed keys for data at rest.
- Services
Pulumi.
Azure Native. Storage. Inputs. Encryption Services List of services which support encryption.
- Encryption
Identity EncryptionIdentity The identity to be used with service-side encryption at rest.
- Key
Source string | KeySource The encryption keySource (provider). Possible values (case-insensitive): Microsoft.Storage, Microsoft.Keyvault
- Key
Vault KeyProperties Vault Properties Properties provided by key vault.
- Require
Infrastructure boolEncryption A boolean indicating whether or not the service applies a secondary layer of encryption with platform managed keys for data at rest.
- Services
Encryption
Services List of services which support encryption.
- encryption
Identity EncryptionIdentity The identity to be used with service-side encryption at rest.
- key
Source String | KeySource The encryption keySource (provider). Possible values (case-insensitive): Microsoft.Storage, Microsoft.Keyvault
- key
Vault KeyProperties Vault Properties Properties provided by key vault.
- require
Infrastructure BooleanEncryption A boolean indicating whether or not the service applies a secondary layer of encryption with platform managed keys for data at rest.
- services
Encryption
Services List of services which support encryption.
- encryption
Identity EncryptionIdentity The identity to be used with service-side encryption at rest.
- key
Source string | KeySource The encryption keySource (provider). Possible values (case-insensitive): Microsoft.Storage, Microsoft.Keyvault
- key
Vault KeyProperties Vault Properties Properties provided by key vault.
- require
Infrastructure booleanEncryption A boolean indicating whether or not the service applies a secondary layer of encryption with platform managed keys for data at rest.
- services
Encryption
Services List of services which support encryption.
- encryption_
identity EncryptionIdentity The identity to be used with service-side encryption at rest.
- key_
source str | KeySource The encryption keySource (provider). Possible values (case-insensitive): Microsoft.Storage, Microsoft.Keyvault
- key_
vault_ Keyproperties Vault Properties Properties provided by key vault.
- require_
infrastructure_ boolencryption A boolean indicating whether or not the service applies a secondary layer of encryption with platform managed keys for data at rest.
- services
Encryption
Services List of services which support encryption.
- encryption
Identity Property Map The identity to be used with service-side encryption at rest.
- key
Source String | "Microsoft.Storage" | "Microsoft. Keyvault" The encryption keySource (provider). Possible values (case-insensitive): Microsoft.Storage, Microsoft.Keyvault
- key
Vault Property MapProperties Properties provided by key vault.
- require
Infrastructure BooleanEncryption A boolean indicating whether or not the service applies a secondary layer of encryption with platform managed keys for data at rest.
- services Property Map
List of services which support encryption.
EncryptionIdentity, EncryptionIdentityArgs
- Encryption
Federated stringIdentity Client Id ClientId of the multi-tenant application to be used in conjunction with the user-assigned identity for cross-tenant customer-managed-keys server-side encryption on the storage account.
- Encryption
User stringAssigned Identity Resource identifier of the UserAssigned identity to be associated with server-side encryption on the storage account.
- Encryption
Federated stringIdentity Client Id ClientId of the multi-tenant application to be used in conjunction with the user-assigned identity for cross-tenant customer-managed-keys server-side encryption on the storage account.
- Encryption
User stringAssigned Identity Resource identifier of the UserAssigned identity to be associated with server-side encryption on the storage account.
- encryption
Federated StringIdentity Client Id ClientId of the multi-tenant application to be used in conjunction with the user-assigned identity for cross-tenant customer-managed-keys server-side encryption on the storage account.
- encryption
User StringAssigned Identity Resource identifier of the UserAssigned identity to be associated with server-side encryption on the storage account.
- encryption
Federated stringIdentity Client Id ClientId of the multi-tenant application to be used in conjunction with the user-assigned identity for cross-tenant customer-managed-keys server-side encryption on the storage account.
- encryption
User stringAssigned Identity Resource identifier of the UserAssigned identity to be associated with server-side encryption on the storage account.
- encryption_
federated_ stridentity_ client_ id ClientId of the multi-tenant application to be used in conjunction with the user-assigned identity for cross-tenant customer-managed-keys server-side encryption on the storage account.
- encryption_
user_ strassigned_ identity Resource identifier of the UserAssigned identity to be associated with server-side encryption on the storage account.
- encryption
Federated StringIdentity Client Id ClientId of the multi-tenant application to be used in conjunction with the user-assigned identity for cross-tenant customer-managed-keys server-side encryption on the storage account.
- encryption
User StringAssigned Identity Resource identifier of the UserAssigned identity to be associated with server-side encryption on the storage account.
EncryptionIdentityResponse, EncryptionIdentityResponseArgs
- Encryption
Federated stringIdentity Client Id ClientId of the multi-tenant application to be used in conjunction with the user-assigned identity for cross-tenant customer-managed-keys server-side encryption on the storage account.
- Encryption
User stringAssigned Identity Resource identifier of the UserAssigned identity to be associated with server-side encryption on the storage account.
- Encryption
Federated stringIdentity Client Id ClientId of the multi-tenant application to be used in conjunction with the user-assigned identity for cross-tenant customer-managed-keys server-side encryption on the storage account.
- Encryption
User stringAssigned Identity Resource identifier of the UserAssigned identity to be associated with server-side encryption on the storage account.
- encryption
Federated StringIdentity Client Id ClientId of the multi-tenant application to be used in conjunction with the user-assigned identity for cross-tenant customer-managed-keys server-side encryption on the storage account.
- encryption
User StringAssigned Identity Resource identifier of the UserAssigned identity to be associated with server-side encryption on the storage account.
- encryption
Federated stringIdentity Client Id ClientId of the multi-tenant application to be used in conjunction with the user-assigned identity for cross-tenant customer-managed-keys server-side encryption on the storage account.
- encryption
User stringAssigned Identity Resource identifier of the UserAssigned identity to be associated with server-side encryption on the storage account.
- encryption_
federated_ stridentity_ client_ id ClientId of the multi-tenant application to be used in conjunction with the user-assigned identity for cross-tenant customer-managed-keys server-side encryption on the storage account.
- encryption_
user_ strassigned_ identity Resource identifier of the UserAssigned identity to be associated with server-side encryption on the storage account.
- encryption
Federated StringIdentity Client Id ClientId of the multi-tenant application to be used in conjunction with the user-assigned identity for cross-tenant customer-managed-keys server-side encryption on the storage account.
- encryption
User StringAssigned Identity Resource identifier of the UserAssigned identity to be associated with server-side encryption on the storage account.
EncryptionResponse, EncryptionResponseArgs
- Encryption
Identity Pulumi.Azure Native. Storage. Inputs. Encryption Identity Response The identity to be used with service-side encryption at rest.
- Key
Source string The encryption keySource (provider). Possible values (case-insensitive): Microsoft.Storage, Microsoft.Keyvault
- Key
Vault Pulumi.Properties Azure Native. Storage. Inputs. Key Vault Properties Response Properties provided by key vault.
- Require
Infrastructure boolEncryption A boolean indicating whether or not the service applies a secondary layer of encryption with platform managed keys for data at rest.
- Services
Pulumi.
Azure Native. Storage. Inputs. Encryption Services Response List of services which support encryption.
- Encryption
Identity EncryptionIdentity Response The identity to be used with service-side encryption at rest.
- Key
Source string The encryption keySource (provider). Possible values (case-insensitive): Microsoft.Storage, Microsoft.Keyvault
- Key
Vault KeyProperties Vault Properties Response Properties provided by key vault.
- Require
Infrastructure boolEncryption A boolean indicating whether or not the service applies a secondary layer of encryption with platform managed keys for data at rest.
- Services
Encryption
Services Response List of services which support encryption.
- encryption
Identity EncryptionIdentity Response The identity to be used with service-side encryption at rest.
- key
Source String The encryption keySource (provider). Possible values (case-insensitive): Microsoft.Storage, Microsoft.Keyvault
- key
Vault KeyProperties Vault Properties Response Properties provided by key vault.
- require
Infrastructure BooleanEncryption A boolean indicating whether or not the service applies a secondary layer of encryption with platform managed keys for data at rest.
- services
Encryption
Services Response List of services which support encryption.
- encryption
Identity EncryptionIdentity Response The identity to be used with service-side encryption at rest.
- key
Source string The encryption keySource (provider). Possible values (case-insensitive): Microsoft.Storage, Microsoft.Keyvault
- key
Vault KeyProperties Vault Properties Response Properties provided by key vault.
- require
Infrastructure booleanEncryption A boolean indicating whether or not the service applies a secondary layer of encryption with platform managed keys for data at rest.
- services
Encryption
Services Response List of services which support encryption.
- encryption_
identity EncryptionIdentity Response The identity to be used with service-side encryption at rest.
- key_
source str The encryption keySource (provider). Possible values (case-insensitive): Microsoft.Storage, Microsoft.Keyvault
- key_
vault_ Keyproperties Vault Properties Response Properties provided by key vault.
- require_
infrastructure_ boolencryption A boolean indicating whether or not the service applies a secondary layer of encryption with platform managed keys for data at rest.
- services
Encryption
Services Response List of services which support encryption.
- encryption
Identity Property Map The identity to be used with service-side encryption at rest.
- key
Source String The encryption keySource (provider). Possible values (case-insensitive): Microsoft.Storage, Microsoft.Keyvault
- key
Vault Property MapProperties Properties provided by key vault.
- require
Infrastructure BooleanEncryption A boolean indicating whether or not the service applies a secondary layer of encryption with platform managed keys for data at rest.
- services Property Map
List of services which support encryption.
EncryptionService, EncryptionServiceArgs
- Enabled bool
A boolean indicating whether or not the service encrypts the data as it is stored. Encryption at rest is enabled by default today and cannot be disabled.
- Key
Type string | Pulumi.Azure Native. Storage. Key Type Encryption key type to be used for the encryption service. 'Account' key type implies that an account-scoped encryption key will be used. 'Service' key type implies that a default service key is used.
- Enabled bool
A boolean indicating whether or not the service encrypts the data as it is stored. Encryption at rest is enabled by default today and cannot be disabled.
- Key
Type string | KeyType Encryption key type to be used for the encryption service. 'Account' key type implies that an account-scoped encryption key will be used. 'Service' key type implies that a default service key is used.
- enabled Boolean
A boolean indicating whether or not the service encrypts the data as it is stored. Encryption at rest is enabled by default today and cannot be disabled.
- key
Type String | KeyType Encryption key type to be used for the encryption service. 'Account' key type implies that an account-scoped encryption key will be used. 'Service' key type implies that a default service key is used.
- enabled boolean
A boolean indicating whether or not the service encrypts the data as it is stored. Encryption at rest is enabled by default today and cannot be disabled.
- key
Type string | KeyType Encryption key type to be used for the encryption service. 'Account' key type implies that an account-scoped encryption key will be used. 'Service' key type implies that a default service key is used.
- enabled bool
A boolean indicating whether or not the service encrypts the data as it is stored. Encryption at rest is enabled by default today and cannot be disabled.
- key_
type str | KeyType Encryption key type to be used for the encryption service. 'Account' key type implies that an account-scoped encryption key will be used. 'Service' key type implies that a default service key is used.
- enabled Boolean
A boolean indicating whether or not the service encrypts the data as it is stored. Encryption at rest is enabled by default today and cannot be disabled.
- key
Type String | "Service" | "Account" Encryption key type to be used for the encryption service. 'Account' key type implies that an account-scoped encryption key will be used. 'Service' key type implies that a default service key is used.
EncryptionServiceResponse, EncryptionServiceResponseArgs
- Last
Enabled stringTime Gets a rough estimate of the date/time when the encryption was last enabled by the user. Data is encrypted at rest by default today and cannot be disabled.
- Enabled bool
A boolean indicating whether or not the service encrypts the data as it is stored. Encryption at rest is enabled by default today and cannot be disabled.
- Key
Type string Encryption key type to be used for the encryption service. 'Account' key type implies that an account-scoped encryption key will be used. 'Service' key type implies that a default service key is used.
- Last
Enabled stringTime Gets a rough estimate of the date/time when the encryption was last enabled by the user. Data is encrypted at rest by default today and cannot be disabled.
- Enabled bool
A boolean indicating whether or not the service encrypts the data as it is stored. Encryption at rest is enabled by default today and cannot be disabled.
- Key
Type string Encryption key type to be used for the encryption service. 'Account' key type implies that an account-scoped encryption key will be used. 'Service' key type implies that a default service key is used.
- last
Enabled StringTime Gets a rough estimate of the date/time when the encryption was last enabled by the user. Data is encrypted at rest by default today and cannot be disabled.
- enabled Boolean
A boolean indicating whether or not the service encrypts the data as it is stored. Encryption at rest is enabled by default today and cannot be disabled.
- key
Type String Encryption key type to be used for the encryption service. 'Account' key type implies that an account-scoped encryption key will be used. 'Service' key type implies that a default service key is used.
- last
Enabled stringTime Gets a rough estimate of the date/time when the encryption was last enabled by the user. Data is encrypted at rest by default today and cannot be disabled.
- enabled boolean
A boolean indicating whether or not the service encrypts the data as it is stored. Encryption at rest is enabled by default today and cannot be disabled.
- key
Type string Encryption key type to be used for the encryption service. 'Account' key type implies that an account-scoped encryption key will be used. 'Service' key type implies that a default service key is used.
- last_
enabled_ strtime Gets a rough estimate of the date/time when the encryption was last enabled by the user. Data is encrypted at rest by default today and cannot be disabled.
- enabled bool
A boolean indicating whether or not the service encrypts the data as it is stored. Encryption at rest is enabled by default today and cannot be disabled.
- key_
type str Encryption key type to be used for the encryption service. 'Account' key type implies that an account-scoped encryption key will be used. 'Service' key type implies that a default service key is used.
- last
Enabled StringTime Gets a rough estimate of the date/time when the encryption was last enabled by the user. Data is encrypted at rest by default today and cannot be disabled.
- enabled Boolean
A boolean indicating whether or not the service encrypts the data as it is stored. Encryption at rest is enabled by default today and cannot be disabled.
- key
Type String Encryption key type to be used for the encryption service. 'Account' key type implies that an account-scoped encryption key will be used. 'Service' key type implies that a default service key is used.
EncryptionServices, EncryptionServicesArgs
- Blob
Pulumi.
Azure Native. Storage. Inputs. Encryption Service The encryption function of the blob storage service.
- File
Pulumi.
Azure Native. Storage. Inputs. Encryption Service The encryption function of the file storage service.
- Queue
Pulumi.
Azure Native. Storage. Inputs. Encryption Service The encryption function of the queue storage service.
- Table
Pulumi.
Azure Native. Storage. Inputs. Encryption Service The encryption function of the table storage service.
- Blob
Encryption
Service The encryption function of the blob storage service.
- File
Encryption
Service The encryption function of the file storage service.
- Queue
Encryption
Service The encryption function of the queue storage service.
- Table
Encryption
Service The encryption function of the table storage service.
- blob
Encryption
Service The encryption function of the blob storage service.
- file
Encryption
Service The encryption function of the file storage service.
- queue
Encryption
Service The encryption function of the queue storage service.
- table
Encryption
Service The encryption function of the table storage service.
- blob
Encryption
Service The encryption function of the blob storage service.
- file
Encryption
Service The encryption function of the file storage service.
- queue
Encryption
Service The encryption function of the queue storage service.
- table
Encryption
Service The encryption function of the table storage service.
- blob
Encryption
Service The encryption function of the blob storage service.
- file
Encryption
Service The encryption function of the file storage service.
- queue
Encryption
Service The encryption function of the queue storage service.
- table
Encryption
Service The encryption function of the table storage service.
- blob Property Map
The encryption function of the blob storage service.
- file Property Map
The encryption function of the file storage service.
- queue Property Map
The encryption function of the queue storage service.
- table Property Map
The encryption function of the table storage service.
EncryptionServicesResponse, EncryptionServicesResponseArgs
- Blob
Pulumi.
Azure Native. Storage. Inputs. Encryption Service Response The encryption function of the blob storage service.
- File
Pulumi.
Azure Native. Storage. Inputs. Encryption Service Response The encryption function of the file storage service.
- Queue
Pulumi.
Azure Native. Storage. Inputs. Encryption Service Response The encryption function of the queue storage service.
- Table
Pulumi.
Azure Native. Storage. Inputs. Encryption Service Response The encryption function of the table storage service.
- Blob
Encryption
Service Response The encryption function of the blob storage service.
- File
Encryption
Service Response The encryption function of the file storage service.
- Queue
Encryption
Service Response The encryption function of the queue storage service.
- Table
Encryption
Service Response The encryption function of the table storage service.
- blob
Encryption
Service Response The encryption function of the blob storage service.
- file
Encryption
Service Response The encryption function of the file storage service.
- queue
Encryption
Service Response The encryption function of the queue storage service.
- table
Encryption
Service Response The encryption function of the table storage service.
- blob
Encryption
Service Response The encryption function of the blob storage service.
- file
Encryption
Service Response The encryption function of the file storage service.
- queue
Encryption
Service Response The encryption function of the queue storage service.
- table
Encryption
Service Response The encryption function of the table storage service.
- blob
Encryption
Service Response The encryption function of the blob storage service.
- file
Encryption
Service Response The encryption function of the file storage service.
- queue
Encryption
Service Response The encryption function of the queue storage service.
- table
Encryption
Service Response The encryption function of the table storage service.
- blob Property Map
The encryption function of the blob storage service.
- file Property Map
The encryption function of the file storage service.
- queue Property Map
The encryption function of the queue storage service.
- table Property Map
The encryption function of the table storage service.
EndpointsResponse, EndpointsResponseArgs
- Blob string
Gets the blob endpoint.
- Dfs string
Gets the dfs endpoint.
- File string
Gets the file endpoint.
- Queue string
Gets the queue endpoint.
- Table string
Gets the table endpoint.
- Web string
Gets the web endpoint.
- Internet
Endpoints Pulumi.Azure Native. Storage. Inputs. Storage Account Internet Endpoints Response Gets the internet routing storage endpoints
- Microsoft
Endpoints Pulumi.Azure Native. Storage. Inputs. Storage Account Microsoft Endpoints Response Gets the microsoft routing storage endpoints.
- Blob string
Gets the blob endpoint.
- Dfs string
Gets the dfs endpoint.
- File string
Gets the file endpoint.
- Queue string
Gets the queue endpoint.
- Table string
Gets the table endpoint.
- Web string
Gets the web endpoint.
- Internet
Endpoints StorageAccount Internet Endpoints Response Gets the internet routing storage endpoints
- Microsoft
Endpoints StorageAccount Microsoft Endpoints Response Gets the microsoft routing storage endpoints.
- blob String
Gets the blob endpoint.
- dfs String
Gets the dfs endpoint.
- file String
Gets the file endpoint.
- queue String
Gets the queue endpoint.
- table String
Gets the table endpoint.
- web String
Gets the web endpoint.
- internet
Endpoints StorageAccount Internet Endpoints Response Gets the internet routing storage endpoints
- microsoft
Endpoints StorageAccount Microsoft Endpoints Response Gets the microsoft routing storage endpoints.
- blob string
Gets the blob endpoint.
- dfs string
Gets the dfs endpoint.
- file string
Gets the file endpoint.
- queue string
Gets the queue endpoint.
- table string
Gets the table endpoint.
- web string
Gets the web endpoint.
- internet
Endpoints StorageAccount Internet Endpoints Response Gets the internet routing storage endpoints
- microsoft
Endpoints StorageAccount Microsoft Endpoints Response Gets the microsoft routing storage endpoints.
- blob str
Gets the blob endpoint.
- dfs str
Gets the dfs endpoint.
- file str
Gets the file endpoint.
- queue str
Gets the queue endpoint.
- table str
Gets the table endpoint.
- web str
Gets the web endpoint.
- internet_
endpoints StorageAccount Internet Endpoints Response Gets the internet routing storage endpoints
- microsoft_
endpoints StorageAccount Microsoft Endpoints Response Gets the microsoft routing storage endpoints.
- blob String
Gets the blob endpoint.
- dfs String
Gets the dfs endpoint.
- file String
Gets the file endpoint.
- queue String
Gets the queue endpoint.
- table String
Gets the table endpoint.
- web String
Gets the web endpoint.
- internet
Endpoints Property Map Gets the internet routing storage endpoints
- microsoft
Endpoints Property Map Gets the microsoft routing storage endpoints.
ExpirationAction, ExpirationActionArgs
- Log
- Log
- Expiration
Action Log - Log
- Log
- Log
- Log
- Log
- LOG
- Log
- "Log"
- Log
ExtendedLocation, ExtendedLocationArgs
- Name string
The name of the extended location.
- Type
string | Pulumi.
Azure Native. Storage. Extended Location Types The type of the extended location.
- Name string
The name of the extended location.
- Type
string | Extended
Location Types The type of the extended location.
- name String
The name of the extended location.
- type
String | Extended
Location Types The type of the extended location.
- name string
The name of the extended location.
- type
string | Extended
Location Types The type of the extended location.
- name str
The name of the extended location.
- type
str | Extended
Location Types The type of the extended location.
- name String
The name of the extended location.
- type
String | "Edge
Zone" The type of the extended location.
ExtendedLocationResponse, ExtendedLocationResponseArgs
ExtendedLocationTypes, ExtendedLocationTypesArgs
- Edge
Zone - EdgeZone
- Extended
Location Types Edge Zone - EdgeZone
- Edge
Zone - EdgeZone
- Edge
Zone - EdgeZone
- EDGE_ZONE
- EdgeZone
- "Edge
Zone" - EdgeZone
GeoReplicationStatsResponse, GeoReplicationStatsResponseArgs
- Can
Failover bool A boolean flag which indicates whether or not account failover is supported for the account.
- Last
Sync stringTime All primary writes preceding this UTC date/time value are guaranteed to be available for read operations. Primary writes following this point in time may or may not be available for reads. Element may be default value if value of LastSyncTime is not available, this can happen if secondary is offline or we are in bootstrap.
- Status string
The status of the secondary location. Possible values are: - Live: Indicates that the secondary location is active and operational. - Bootstrap: Indicates initial synchronization from the primary location to the secondary location is in progress.This typically occurs when replication is first enabled. - Unavailable: Indicates that the secondary location is temporarily unavailable.
- Can
Failover bool A boolean flag which indicates whether or not account failover is supported for the account.
- Last
Sync stringTime All primary writes preceding this UTC date/time value are guaranteed to be available for read operations. Primary writes following this point in time may or may not be available for reads. Element may be default value if value of LastSyncTime is not available, this can happen if secondary is offline or we are in bootstrap.
- Status string
The status of the secondary location. Possible values are: - Live: Indicates that the secondary location is active and operational. - Bootstrap: Indicates initial synchronization from the primary location to the secondary location is in progress.This typically occurs when replication is first enabled. - Unavailable: Indicates that the secondary location is temporarily unavailable.
- can
Failover Boolean A boolean flag which indicates whether or not account failover is supported for the account.
- last
Sync StringTime All primary writes preceding this UTC date/time value are guaranteed to be available for read operations. Primary writes following this point in time may or may not be available for reads. Element may be default value if value of LastSyncTime is not available, this can happen if secondary is offline or we are in bootstrap.
- status String
The status of the secondary location. Possible values are: - Live: Indicates that the secondary location is active and operational. - Bootstrap: Indicates initial synchronization from the primary location to the secondary location is in progress.This typically occurs when replication is first enabled. - Unavailable: Indicates that the secondary location is temporarily unavailable.
- can
Failover boolean A boolean flag which indicates whether or not account failover is supported for the account.
- last
Sync stringTime All primary writes preceding this UTC date/time value are guaranteed to be available for read operations. Primary writes following this point in time may or may not be available for reads. Element may be default value if value of LastSyncTime is not available, this can happen if secondary is offline or we are in bootstrap.
- status string
The status of the secondary location. Possible values are: - Live: Indicates that the secondary location is active and operational. - Bootstrap: Indicates initial synchronization from the primary location to the secondary location is in progress.This typically occurs when replication is first enabled. - Unavailable: Indicates that the secondary location is temporarily unavailable.
- can_
failover bool A boolean flag which indicates whether or not account failover is supported for the account.
- last_
sync_ strtime All primary writes preceding this UTC date/time value are guaranteed to be available for read operations. Primary writes following this point in time may or may not be available for reads. Element may be default value if value of LastSyncTime is not available, this can happen if secondary is offline or we are in bootstrap.
- status str
The status of the secondary location. Possible values are: - Live: Indicates that the secondary location is active and operational. - Bootstrap: Indicates initial synchronization from the primary location to the secondary location is in progress.This typically occurs when replication is first enabled. - Unavailable: Indicates that the secondary location is temporarily unavailable.
- can
Failover Boolean A boolean flag which indicates whether or not account failover is supported for the account.
- last
Sync StringTime All primary writes preceding this UTC date/time value are guaranteed to be available for read operations. Primary writes following this point in time may or may not be available for reads. Element may be default value if value of LastSyncTime is not available, this can happen if secondary is offline or we are in bootstrap.
- status String
The status of the secondary location. Possible values are: - Live: Indicates that the secondary location is active and operational. - Bootstrap: Indicates initial synchronization from the primary location to the secondary location is in progress.This typically occurs when replication is first enabled. - Unavailable: Indicates that the secondary location is temporarily unavailable.
IPRule, IPRuleArgs
- IPAddress
Or stringRange Specifies the IP or IP range in CIDR format. Only IPV4 address is allowed.
- Action
Pulumi.
Azure Native. Storage. Action The action of IP ACL rule.
- IPAddress
Or stringRange Specifies the IP or IP range in CIDR format. Only IPV4 address is allowed.
- Action Action
The action of IP ACL rule.
- i
PAddress StringOr Range Specifies the IP or IP range in CIDR format. Only IPV4 address is allowed.
- action Action
The action of IP ACL rule.
- i
PAddress stringOr Range Specifies the IP or IP range in CIDR format. Only IPV4 address is allowed.
- action Action
The action of IP ACL rule.
- i_
p_ straddress_ or_ range Specifies the IP or IP range in CIDR format. Only IPV4 address is allowed.
- action Action
The action of IP ACL rule.
- i
PAddress StringOr Range Specifies the IP or IP range in CIDR format. Only IPV4 address is allowed.
- action "Allow"
The action of IP ACL rule.
IPRuleResponse, IPRuleResponseArgs
- IPAddress
Or stringRange Specifies the IP or IP range in CIDR format. Only IPV4 address is allowed.
- Action string
The action of IP ACL rule.
- IPAddress
Or stringRange Specifies the IP or IP range in CIDR format. Only IPV4 address is allowed.
- Action string
The action of IP ACL rule.
- i
PAddress StringOr Range Specifies the IP or IP range in CIDR format. Only IPV4 address is allowed.
- action String
The action of IP ACL rule.
- i
PAddress stringOr Range Specifies the IP or IP range in CIDR format. Only IPV4 address is allowed.
- action string
The action of IP ACL rule.
- i_
p_ straddress_ or_ range Specifies the IP or IP range in CIDR format. Only IPV4 address is allowed.
- action str
The action of IP ACL rule.
- i
PAddress StringOr Range Specifies the IP or IP range in CIDR format. Only IPV4 address is allowed.
- action String
The action of IP ACL rule.
Identity, IdentityArgs
- Type
string | Pulumi.
Azure Native. Storage. Identity Type The identity type.
- User
Assigned List<string>Identities Gets or sets a list of key value pairs that describe the set of User Assigned identities that will be used with this storage account. The key is the ARM resource identifier of the identity. Only 1 User Assigned identity is permitted here.
- Type
string | Identity
Type The identity type.
- User
Assigned []stringIdentities Gets or sets a list of key value pairs that describe the set of User Assigned identities that will be used with this storage account. The key is the ARM resource identifier of the identity. Only 1 User Assigned identity is permitted here.
- type
String | Identity
Type The identity type.
- user
Assigned List<String>Identities Gets or sets a list of key value pairs that describe the set of User Assigned identities that will be used with this storage account. The key is the ARM resource identifier of the identity. Only 1 User Assigned identity is permitted here.
- type
string | Identity
Type The identity type.
- user
Assigned string[]Identities Gets or sets a list of key value pairs that describe the set of User Assigned identities that will be used with this storage account. The key is the ARM resource identifier of the identity. Only 1 User Assigned identity is permitted here.
- type
str | Identity
Type The identity type.
- user_
assigned_ Sequence[str]identities Gets or sets a list of key value pairs that describe the set of User Assigned identities that will be used with this storage account. The key is the ARM resource identifier of the identity. Only 1 User Assigned identity is permitted here.
- type
String | "None" | "System
Assigned" | "User Assigned" | "System Assigned,User Assigned" The identity type.
- user
Assigned List<String>Identities Gets or sets a list of key value pairs that describe the set of User Assigned identities that will be used with this storage account. The key is the ARM resource identifier of the identity. Only 1 User Assigned identity is permitted here.
IdentityResponse, IdentityResponseArgs
- Principal
Id string The principal ID of resource identity.
- Tenant
Id string The tenant ID of resource.
- Type string
The identity type.
- User
Assigned Dictionary<string, Pulumi.Identities Azure Native. Storage. Inputs. User Assigned Identity Response> Gets or sets a list of key value pairs that describe the set of User Assigned identities that will be used with this storage account. The key is the ARM resource identifier of the identity. Only 1 User Assigned identity is permitted here.
- Principal
Id string The principal ID of resource identity.
- Tenant
Id string The tenant ID of resource.
- Type string
The identity type.
- User
Assigned map[string]UserIdentities Assigned Identity Response Gets or sets a list of key value pairs that describe the set of User Assigned identities that will be used with this storage account. The key is the ARM resource identifier of the identity. Only 1 User Assigned identity is permitted here.
- principal
Id String The principal ID of resource identity.
- tenant
Id String The tenant ID of resource.
- type String
The identity type.
- user
Assigned Map<String,UserIdentities Assigned Identity Response> Gets or sets a list of key value pairs that describe the set of User Assigned identities that will be used with this storage account. The key is the ARM resource identifier of the identity. Only 1 User Assigned identity is permitted here.
- principal
Id string The principal ID of resource identity.
- tenant
Id string The tenant ID of resource.
- type string
The identity type.
- user
Assigned {[key: string]: UserIdentities Assigned Identity Response} Gets or sets a list of key value pairs that describe the set of User Assigned identities that will be used with this storage account. The key is the ARM resource identifier of the identity. Only 1 User Assigned identity is permitted here.
- principal_
id str The principal ID of resource identity.
- tenant_
id str The tenant ID of resource.
- type str
The identity type.
- user_
assigned_ Mapping[str, Useridentities Assigned Identity Response] Gets or sets a list of key value pairs that describe the set of User Assigned identities that will be used with this storage account. The key is the ARM resource identifier of the identity. Only 1 User Assigned identity is permitted here.
- principal
Id String The principal ID of resource identity.
- tenant
Id String The tenant ID of resource.
- type String
The identity type.
- user
Assigned Map<Property Map>Identities Gets or sets a list of key value pairs that describe the set of User Assigned identities that will be used with this storage account. The key is the ARM resource identifier of the identity. Only 1 User Assigned identity is permitted here.
IdentityType, IdentityTypeArgs
- None
- None
- System
Assigned - SystemAssigned
- User
Assigned - UserAssigned
- System
Assigned_User Assigned - SystemAssigned,UserAssigned
- Identity
Type None - None
- Identity
Type System Assigned - SystemAssigned
- Identity
Type User Assigned - UserAssigned
- Identity
Type_System Assigned_User Assigned - SystemAssigned,UserAssigned
- None
- None
- System
Assigned - SystemAssigned
- User
Assigned - UserAssigned
- System
Assigned_User Assigned - SystemAssigned,UserAssigned
- None
- None
- System
Assigned - SystemAssigned
- User
Assigned - UserAssigned
- System
Assigned_User Assigned - SystemAssigned,UserAssigned
- NONE
- None
- SYSTEM_ASSIGNED
- SystemAssigned
- USER_ASSIGNED
- UserAssigned
- SYSTEM_ASSIGNED_USER_ASSIGNED
- SystemAssigned,UserAssigned
- "None"
- None
- "System
Assigned" - SystemAssigned
- "User
Assigned" - UserAssigned
- "System
Assigned,User Assigned" - SystemAssigned,UserAssigned
ImmutableStorageAccount, ImmutableStorageAccountArgs
- Enabled bool
A boolean flag which enables account-level immutability. All the containers under such an account have object-level immutability enabled by default.
- Immutability
Policy Pulumi.Azure Native. Storage. Inputs. Account Immutability Policy Properties Specifies the default account-level immutability policy which is inherited and applied to objects that do not possess an explicit immutability policy at the object level. The object-level immutability policy has higher precedence than the container-level immutability policy, which has a higher precedence than the account-level immutability policy.
- Enabled bool
A boolean flag which enables account-level immutability. All the containers under such an account have object-level immutability enabled by default.
- Immutability
Policy AccountImmutability Policy Properties Specifies the default account-level immutability policy which is inherited and applied to objects that do not possess an explicit immutability policy at the object level. The object-level immutability policy has higher precedence than the container-level immutability policy, which has a higher precedence than the account-level immutability policy.
- enabled Boolean
A boolean flag which enables account-level immutability. All the containers under such an account have object-level immutability enabled by default.
- immutability
Policy AccountImmutability Policy Properties Specifies the default account-level immutability policy which is inherited and applied to objects that do not possess an explicit immutability policy at the object level. The object-level immutability policy has higher precedence than the container-level immutability policy, which has a higher precedence than the account-level immutability policy.
- enabled boolean
A boolean flag which enables account-level immutability. All the containers under such an account have object-level immutability enabled by default.
- immutability
Policy AccountImmutability Policy Properties Specifies the default account-level immutability policy which is inherited and applied to objects that do not possess an explicit immutability policy at the object level. The object-level immutability policy has higher precedence than the container-level immutability policy, which has a higher precedence than the account-level immutability policy.
- enabled bool
A boolean flag which enables account-level immutability. All the containers under such an account have object-level immutability enabled by default.
- immutability_
policy AccountImmutability Policy Properties Specifies the default account-level immutability policy which is inherited and applied to objects that do not possess an explicit immutability policy at the object level. The object-level immutability policy has higher precedence than the container-level immutability policy, which has a higher precedence than the account-level immutability policy.
- enabled Boolean
A boolean flag which enables account-level immutability. All the containers under such an account have object-level immutability enabled by default.
- immutability
Policy Property Map Specifies the default account-level immutability policy which is inherited and applied to objects that do not possess an explicit immutability policy at the object level. The object-level immutability policy has higher precedence than the container-level immutability policy, which has a higher precedence than the account-level immutability policy.
ImmutableStorageAccountResponse, ImmutableStorageAccountResponseArgs
- Enabled bool
A boolean flag which enables account-level immutability. All the containers under such an account have object-level immutability enabled by default.
- Immutability
Policy Pulumi.Azure Native. Storage. Inputs. Account Immutability Policy Properties Response Specifies the default account-level immutability policy which is inherited and applied to objects that do not possess an explicit immutability policy at the object level. The object-level immutability policy has higher precedence than the container-level immutability policy, which has a higher precedence than the account-level immutability policy.
- Enabled bool
A boolean flag which enables account-level immutability. All the containers under such an account have object-level immutability enabled by default.
- Immutability
Policy AccountImmutability Policy Properties Response Specifies the default account-level immutability policy which is inherited and applied to objects that do not possess an explicit immutability policy at the object level. The object-level immutability policy has higher precedence than the container-level immutability policy, which has a higher precedence than the account-level immutability policy.
- enabled Boolean
A boolean flag which enables account-level immutability. All the containers under such an account have object-level immutability enabled by default.
- immutability
Policy AccountImmutability Policy Properties Response Specifies the default account-level immutability policy which is inherited and applied to objects that do not possess an explicit immutability policy at the object level. The object-level immutability policy has higher precedence than the container-level immutability policy, which has a higher precedence than the account-level immutability policy.
- enabled boolean
A boolean flag which enables account-level immutability. All the containers under such an account have object-level immutability enabled by default.
- immutability
Policy AccountImmutability Policy Properties Response Specifies the default account-level immutability policy which is inherited and applied to objects that do not possess an explicit immutability policy at the object level. The object-level immutability policy has higher precedence than the container-level immutability policy, which has a higher precedence than the account-level immutability policy.
- enabled bool
A boolean flag which enables account-level immutability. All the containers under such an account have object-level immutability enabled by default.
- immutability_
policy AccountImmutability Policy Properties Response Specifies the default account-level immutability policy which is inherited and applied to objects that do not possess an explicit immutability policy at the object level. The object-level immutability policy has higher precedence than the container-level immutability policy, which has a higher precedence than the account-level immutability policy.
- enabled Boolean
A boolean flag which enables account-level immutability. All the containers under such an account have object-level immutability enabled by default.
- immutability
Policy Property Map Specifies the default account-level immutability policy which is inherited and applied to objects that do not possess an explicit immutability policy at the object level. The object-level immutability policy has higher precedence than the container-level immutability policy, which has a higher precedence than the account-level immutability policy.
KeyCreationTimeResponse, KeyCreationTimeResponseArgs
KeyPolicy, KeyPolicyArgs
- Key
Expiration intPeriod In Days The key expiration period in days.
- Key
Expiration intPeriod In Days The key expiration period in days.
- key
Expiration IntegerPeriod In Days The key expiration period in days.
- key
Expiration numberPeriod In Days The key expiration period in days.
- key_
expiration_ intperiod_ in_ days The key expiration period in days.
- key
Expiration NumberPeriod In Days The key expiration period in days.
KeyPolicyResponse, KeyPolicyResponseArgs
- Key
Expiration intPeriod In Days The key expiration period in days.
- Key
Expiration intPeriod In Days The key expiration period in days.
- key
Expiration IntegerPeriod In Days The key expiration period in days.
- key
Expiration numberPeriod In Days The key expiration period in days.
- key_
expiration_ intperiod_ in_ days The key expiration period in days.
- key
Expiration NumberPeriod In Days The key expiration period in days.
KeySource, KeySourceArgs
- Microsoft_Storage
- Microsoft.Storage
- Microsoft_Keyvault
- Microsoft.Keyvault
- Key
Source_Microsoft_Storage - Microsoft.Storage
- Key
Source_Microsoft_Keyvault - Microsoft.Keyvault
- Microsoft_Storage
- Microsoft.Storage
- Microsoft_Keyvault
- Microsoft.Keyvault
- Microsoft_Storage
- Microsoft.Storage
- Microsoft_Keyvault
- Microsoft.Keyvault
- MICROSOFT_STORAGE
- Microsoft.Storage
- MICROSOFT_KEYVAULT
- Microsoft.Keyvault
- "Microsoft.
Storage" - Microsoft.Storage
- "Microsoft.
Keyvault" - Microsoft.Keyvault
KeyType, KeyTypeArgs
- Service
- Service
- Account
- Account
- Key
Type Service - Service
- Key
Type Account - Account
- Service
- Service
- Account
- Account
- Service
- Service
- Account
- Account
- SERVICE
- Service
- ACCOUNT
- Account
- "Service"
- Service
- "Account"
- Account
KeyVaultProperties, KeyVaultPropertiesArgs
- Key
Name string The name of KeyVault key.
- Key
Vault stringUri The Uri of KeyVault.
- Key
Version string The version of KeyVault key.
- Key
Name string The name of KeyVault key.
- Key
Vault stringUri The Uri of KeyVault.
- Key
Version string The version of KeyVault key.
- key
Name String The name of KeyVault key.
- key
Vault StringUri The Uri of KeyVault.
- key
Version String The version of KeyVault key.
- key
Name string The name of KeyVault key.
- key
Vault stringUri The Uri of KeyVault.
- key
Version string The version of KeyVault key.
- key_
name str The name of KeyVault key.
- key_
vault_ struri The Uri of KeyVault.
- key_
version str The version of KeyVault key.
- key
Name String The name of KeyVault key.
- key
Vault StringUri The Uri of KeyVault.
- key
Version String The version of KeyVault key.
KeyVaultPropertiesResponse, KeyVaultPropertiesResponseArgs
- Current
Versioned stringKey Expiration Timestamp This is a read only property that represents the expiration time of the current version of the customer managed key used for encryption.
- Current
Versioned stringKey Identifier The object identifier of the current versioned Key Vault Key in use.
- Last
Key stringRotation Timestamp Timestamp of last rotation of the Key Vault Key.
- Key
Name string The name of KeyVault key.
- Key
Vault stringUri The Uri of KeyVault.
- Key
Version string The version of KeyVault key.
- Current
Versioned stringKey Expiration Timestamp This is a read only property that represents the expiration time of the current version of the customer managed key used for encryption.
- Current
Versioned stringKey Identifier The object identifier of the current versioned Key Vault Key in use.
- Last
Key stringRotation Timestamp Timestamp of last rotation of the Key Vault Key.
- Key
Name string The name of KeyVault key.
- Key
Vault stringUri The Uri of KeyVault.
- Key
Version string The version of KeyVault key.
- current
Versioned StringKey Expiration Timestamp This is a read only property that represents the expiration time of the current version of the customer managed key used for encryption.
- current
Versioned StringKey Identifier The object identifier of the current versioned Key Vault Key in use.
- last
Key StringRotation Timestamp Timestamp of last rotation of the Key Vault Key.
- key
Name String The name of KeyVault key.
- key
Vault StringUri The Uri of KeyVault.
- key
Version String The version of KeyVault key.
- current
Versioned stringKey Expiration Timestamp This is a read only property that represents the expiration time of the current version of the customer managed key used for encryption.
- current
Versioned stringKey Identifier The object identifier of the current versioned Key Vault Key in use.
- last
Key stringRotation Timestamp Timestamp of last rotation of the Key Vault Key.
- key
Name string The name of KeyVault key.
- key
Vault stringUri The Uri of KeyVault.
- key
Version string The version of KeyVault key.
- current_
versioned_ strkey_ expiration_ timestamp This is a read only property that represents the expiration time of the current version of the customer managed key used for encryption.
- current_
versioned_ strkey_ identifier The object identifier of the current versioned Key Vault Key in use.
- last_
key_ strrotation_ timestamp Timestamp of last rotation of the Key Vault Key.
- key_
name str The name of KeyVault key.
- key_
vault_ struri The Uri of KeyVault.
- key_
version str The version of KeyVault key.
- current
Versioned StringKey Expiration Timestamp This is a read only property that represents the expiration time of the current version of the customer managed key used for encryption.
- current
Versioned StringKey Identifier The object identifier of the current versioned Key Vault Key in use.
- last
Key StringRotation Timestamp Timestamp of last rotation of the Key Vault Key.
- key
Name String The name of KeyVault key.
- key
Vault StringUri The Uri of KeyVault.
- key
Version String The version of KeyVault key.
Kind, KindArgs
- Storage
- Storage
- Storage
V2 - StorageV2
- Blob
Storage - BlobStorage
- File
Storage - FileStorage
- Block
Blob Storage - BlockBlobStorage
- Kind
Storage - Storage
- Kind
Storage V2 - StorageV2
- Kind
Blob Storage - BlobStorage
- Kind
File Storage - FileStorage
- Kind
Block Blob Storage - BlockBlobStorage
- Storage
- Storage
- Storage
V2 - StorageV2
- Blob
Storage - BlobStorage
- File
Storage - FileStorage
- Block
Blob Storage - BlockBlobStorage
- Storage
- Storage
- Storage
V2 - StorageV2
- Blob
Storage - BlobStorage
- File
Storage - FileStorage
- Block
Blob Storage - BlockBlobStorage
- STORAGE
- Storage
- STORAGE_V2
- StorageV2
- BLOB_STORAGE
- BlobStorage
- FILE_STORAGE
- FileStorage
- BLOCK_BLOB_STORAGE
- BlockBlobStorage
- "Storage"
- Storage
- "Storage
V2" - StorageV2
- "Blob
Storage" - BlobStorage
- "File
Storage" - FileStorage
- "Block
Blob Storage" - BlockBlobStorage