FrontdoorSecret

Azure v6.31.0, Dec 29 25

We recommend using Azure Native.

Azure v6.31.0 published on Monday, Dec 29, 2025 by Pulumi

Schema (JSON)

pulumi/pulumi-azure

We recommend using Azure Native.

Azure v6.31.0 published on Monday, Dec 29, 2025 by Pulumi

Schema (JSON)

pulumi/pulumi-azure

Required Key Vault Permissions

!> Note: You must add an Access Policy to your azure.keyvault.KeyVault for the Microsoft.AzurefrontDoor-Cdn Enterprise Application Object ID.

This can be created by running Az Powershell command like this:

New-AzADServicePrincipal -ApplicationId "00000000-0000-0000-0000-000000000000"

Object ID	Key Permissions	Secret Permissions	Certificate Permissions
`Microsoft.Azure.Cdn` Object ID	-	Get	-
Your Personal AAD Object ID	-	Get and List	Get, List, Purge and Recover
Terraform Service Principal	-	Get	Get, Import, Delete and Purge

-> Note: You only need to add the Access Policy for your personal AAD Object ID if you are planning to view the secrets via the Azure Portal.

Create FrontdoorSecret Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new FrontdoorSecret(name: string, args: FrontdoorSecretArgs, opts?: CustomResourceOptions);

@overload
def FrontdoorSecret(resource_name: str,
                    args: FrontdoorSecretArgs,
                    opts: Optional[ResourceOptions] = None)

@overload
def FrontdoorSecret(resource_name: str,
                    opts: Optional[ResourceOptions] = None,
                    cdn_frontdoor_profile_id: Optional[str] = None,
                    secret: Optional[FrontdoorSecretSecretArgs] = None,
                    name: Optional[str] = None)

func NewFrontdoorSecret(ctx *Context, name string, args FrontdoorSecretArgs, opts ...ResourceOption) (*FrontdoorSecret, error)

public FrontdoorSecret(string name, FrontdoorSecretArgs args, CustomResourceOptions? opts = null)

public FrontdoorSecret(String name, FrontdoorSecretArgs args)
public FrontdoorSecret(String name, FrontdoorSecretArgs args, CustomResourceOptions options)

type: azure:cdn:FrontdoorSecret
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name string: The unique name of the resource.
args FrontdoorSecretArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args FrontdoorSecretArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args FrontdoorSecretArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args FrontdoorSecretArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args FrontdoorSecretArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

Constructor example

The following reference example uses placeholder values for all input properties.

var frontdoorSecretResource = new Azure.Cdn.FrontdoorSecret("frontdoorSecretResource", new()
{
    CdnFrontdoorProfileId = "string",
    Secret = new Azure.Cdn.Inputs.FrontdoorSecretSecretArgs
    {
        CustomerCertificates = new[]
        {
            new Azure.Cdn.Inputs.FrontdoorSecretSecretCustomerCertificateArgs
            {
                KeyVaultCertificateId = "string",
                SubjectAlternativeNames = new[]
                {
                    "string",
                },
            },
        },
    },
    Name = "string",
});

example, err := cdn.NewFrontdoorSecret(ctx, "frontdoorSecretResource", &cdn.FrontdoorSecretArgs{
	CdnFrontdoorProfileId: pulumi.String("string"),
	Secret: &cdn.FrontdoorSecretSecretArgs{
		CustomerCertificates: cdn.FrontdoorSecretSecretCustomerCertificateArray{
			&cdn.FrontdoorSecretSecretCustomerCertificateArgs{
				KeyVaultCertificateId: pulumi.String("string"),
				SubjectAlternativeNames: pulumi.StringArray{
					pulumi.String("string"),
				},
			},
		},
	},
	Name: pulumi.String("string"),
})

var frontdoorSecretResource = new FrontdoorSecret("frontdoorSecretResource", FrontdoorSecretArgs.builder()
    .cdnFrontdoorProfileId("string")
    .secret(FrontdoorSecretSecretArgs.builder()
        .customerCertificates(FrontdoorSecretSecretCustomerCertificateArgs.builder()
            .keyVaultCertificateId("string")
            .subjectAlternativeNames("string")
            .build())
        .build())
    .name("string")
    .build());

frontdoor_secret_resource = azure.cdn.FrontdoorSecret("frontdoorSecretResource",
    cdn_frontdoor_profile_id="string",
    secret={
        "customer_certificates": [{
            "key_vault_certificate_id": "string",
            "subject_alternative_names": ["string"],
        }],
    },
    name="string")

const frontdoorSecretResource = new azure.cdn.FrontdoorSecret("frontdoorSecretResource", {
    cdnFrontdoorProfileId: "string",
    secret: {
        customerCertificates: [{
            keyVaultCertificateId: "string",
            subjectAlternativeNames: ["string"],
        }],
    },
    name: "string",
});

type: azure:cdn:FrontdoorSecret
properties:
    cdnFrontdoorProfileId: string
    name: string
    secret:
        customerCertificates:
            - keyVaultCertificateId: string
              subjectAlternativeNames:
                - string