1. Packages
  2. Azure Classic
  3. API Docs
  4. storage
  5. Account

We recommend using Azure Native.

Azure Classic v5.43.0 published on Saturday, May 6, 2023 by Pulumi

azure.storage.Account

Explore with Pulumi AI

azure logo

We recommend using Azure Native.

Azure Classic v5.43.0 published on Saturday, May 6, 2023 by Pulumi

    Manages an Azure Storage Account.

    Example Usage

    using System.Collections.Generic;
    using System.Linq;
    using Pulumi;
    using Azure = Pulumi.Azure;
    
    return await Deployment.RunAsync(() => 
    {
        var exampleResourceGroup = new Azure.Core.ResourceGroup("exampleResourceGroup", new()
        {
            Location = "West Europe",
        });
    
        var exampleAccount = new Azure.Storage.Account("exampleAccount", new()
        {
            ResourceGroupName = exampleResourceGroup.Name,
            Location = exampleResourceGroup.Location,
            AccountTier = "Standard",
            AccountReplicationType = "GRS",
            Tags = 
            {
                { "environment", "staging" },
            },
        });
    
    });
    
    package main
    
    import (
    	"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/core"
    	"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/storage"
    	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
    )
    
    func main() {
    	pulumi.Run(func(ctx *pulumi.Context) error {
    		exampleResourceGroup, err := core.NewResourceGroup(ctx, "exampleResourceGroup", &core.ResourceGroupArgs{
    			Location: pulumi.String("West Europe"),
    		})
    		if err != nil {
    			return err
    		}
    		_, err = storage.NewAccount(ctx, "exampleAccount", &storage.AccountArgs{
    			ResourceGroupName:      exampleResourceGroup.Name,
    			Location:               exampleResourceGroup.Location,
    			AccountTier:            pulumi.String("Standard"),
    			AccountReplicationType: pulumi.String("GRS"),
    			Tags: pulumi.StringMap{
    				"environment": pulumi.String("staging"),
    			},
    		})
    		if err != nil {
    			return err
    		}
    		return nil
    	})
    }
    
    package generated_program;
    
    import com.pulumi.Context;
    import com.pulumi.Pulumi;
    import com.pulumi.core.Output;
    import com.pulumi.azure.core.ResourceGroup;
    import com.pulumi.azure.core.ResourceGroupArgs;
    import com.pulumi.azure.storage.Account;
    import com.pulumi.azure.storage.AccountArgs;
    import java.util.List;
    import java.util.ArrayList;
    import java.util.Map;
    import java.io.File;
    import java.nio.file.Files;
    import java.nio.file.Paths;
    
    public class App {
        public static void main(String[] args) {
            Pulumi.run(App::stack);
        }
    
        public static void stack(Context ctx) {
            var exampleResourceGroup = new ResourceGroup("exampleResourceGroup", ResourceGroupArgs.builder()        
                .location("West Europe")
                .build());
    
            var exampleAccount = new Account("exampleAccount", AccountArgs.builder()        
                .resourceGroupName(exampleResourceGroup.name())
                .location(exampleResourceGroup.location())
                .accountTier("Standard")
                .accountReplicationType("GRS")
                .tags(Map.of("environment", "staging"))
                .build());
    
        }
    }
    
    import pulumi
    import pulumi_azure as azure
    
    example_resource_group = azure.core.ResourceGroup("exampleResourceGroup", location="West Europe")
    example_account = azure.storage.Account("exampleAccount",
        resource_group_name=example_resource_group.name,
        location=example_resource_group.location,
        account_tier="Standard",
        account_replication_type="GRS",
        tags={
            "environment": "staging",
        })
    
    import * as pulumi from "@pulumi/pulumi";
    import * as azure from "@pulumi/azure";
    
    const exampleResourceGroup = new azure.core.ResourceGroup("exampleResourceGroup", {location: "West Europe"});
    const exampleAccount = new azure.storage.Account("exampleAccount", {
        resourceGroupName: exampleResourceGroup.name,
        location: exampleResourceGroup.location,
        accountTier: "Standard",
        accountReplicationType: "GRS",
        tags: {
            environment: "staging",
        },
    });
    
    resources:
      exampleResourceGroup:
        type: azure:core:ResourceGroup
        properties:
          location: West Europe
      exampleAccount:
        type: azure:storage:Account
        properties:
          resourceGroupName: ${exampleResourceGroup.name}
          location: ${exampleResourceGroup.location}
          accountTier: Standard
          accountReplicationType: GRS
          tags:
            environment: staging
    

    With Network Rules

    using System.Collections.Generic;
    using System.Linq;
    using Pulumi;
    using Azure = Pulumi.Azure;
    
    return await Deployment.RunAsync(() => 
    {
        var exampleResourceGroup = new Azure.Core.ResourceGroup("exampleResourceGroup", new()
        {
            Location = "West Europe",
        });
    
        var exampleVirtualNetwork = new Azure.Network.VirtualNetwork("exampleVirtualNetwork", new()
        {
            AddressSpaces = new[]
            {
                "10.0.0.0/16",
            },
            Location = exampleResourceGroup.Location,
            ResourceGroupName = exampleResourceGroup.Name,
        });
    
        var exampleSubnet = new Azure.Network.Subnet("exampleSubnet", new()
        {
            ResourceGroupName = exampleResourceGroup.Name,
            VirtualNetworkName = exampleVirtualNetwork.Name,
            AddressPrefixes = new[]
            {
                "10.0.2.0/24",
            },
            ServiceEndpoints = new[]
            {
                "Microsoft.Sql",
                "Microsoft.Storage",
            },
        });
    
        var exampleAccount = new Azure.Storage.Account("exampleAccount", new()
        {
            ResourceGroupName = exampleResourceGroup.Name,
            Location = exampleResourceGroup.Location,
            AccountTier = "Standard",
            AccountReplicationType = "LRS",
            NetworkRules = new Azure.Storage.Inputs.AccountNetworkRulesArgs
            {
                DefaultAction = "Deny",
                IpRules = new[]
                {
                    "100.0.0.1",
                },
                VirtualNetworkSubnetIds = new[]
                {
                    exampleSubnet.Id,
                },
            },
            Tags = 
            {
                { "environment", "staging" },
            },
        });
    
    });
    
    package main
    
    import (
    	"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/core"
    	"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/network"
    	"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/storage"
    	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
    )
    
    func main() {
    	pulumi.Run(func(ctx *pulumi.Context) error {
    		exampleResourceGroup, err := core.NewResourceGroup(ctx, "exampleResourceGroup", &core.ResourceGroupArgs{
    			Location: pulumi.String("West Europe"),
    		})
    		if err != nil {
    			return err
    		}
    		exampleVirtualNetwork, err := network.NewVirtualNetwork(ctx, "exampleVirtualNetwork", &network.VirtualNetworkArgs{
    			AddressSpaces: pulumi.StringArray{
    				pulumi.String("10.0.0.0/16"),
    			},
    			Location:          exampleResourceGroup.Location,
    			ResourceGroupName: exampleResourceGroup.Name,
    		})
    		if err != nil {
    			return err
    		}
    		exampleSubnet, err := network.NewSubnet(ctx, "exampleSubnet", &network.SubnetArgs{
    			ResourceGroupName:  exampleResourceGroup.Name,
    			VirtualNetworkName: exampleVirtualNetwork.Name,
    			AddressPrefixes: pulumi.StringArray{
    				pulumi.String("10.0.2.0/24"),
    			},
    			ServiceEndpoints: pulumi.StringArray{
    				pulumi.String("Microsoft.Sql"),
    				pulumi.String("Microsoft.Storage"),
    			},
    		})
    		if err != nil {
    			return err
    		}
    		_, err = storage.NewAccount(ctx, "exampleAccount", &storage.AccountArgs{
    			ResourceGroupName:      exampleResourceGroup.Name,
    			Location:               exampleResourceGroup.Location,
    			AccountTier:            pulumi.String("Standard"),
    			AccountReplicationType: pulumi.String("LRS"),
    			NetworkRules: &storage.AccountNetworkRulesTypeArgs{
    				DefaultAction: pulumi.String("Deny"),
    				IpRules: pulumi.StringArray{
    					pulumi.String("100.0.0.1"),
    				},
    				VirtualNetworkSubnetIds: pulumi.StringArray{
    					exampleSubnet.ID(),
    				},
    			},
    			Tags: pulumi.StringMap{
    				"environment": pulumi.String("staging"),
    			},
    		})
    		if err != nil {
    			return err
    		}
    		return nil
    	})
    }
    
    package generated_program;
    
    import com.pulumi.Context;
    import com.pulumi.Pulumi;
    import com.pulumi.core.Output;
    import com.pulumi.azure.core.ResourceGroup;
    import com.pulumi.azure.core.ResourceGroupArgs;
    import com.pulumi.azure.network.VirtualNetwork;
    import com.pulumi.azure.network.VirtualNetworkArgs;
    import com.pulumi.azure.network.Subnet;
    import com.pulumi.azure.network.SubnetArgs;
    import com.pulumi.azure.storage.Account;
    import com.pulumi.azure.storage.AccountArgs;
    import com.pulumi.azure.storage.inputs.AccountNetworkRulesArgs;
    import java.util.List;
    import java.util.ArrayList;
    import java.util.Map;
    import java.io.File;
    import java.nio.file.Files;
    import java.nio.file.Paths;
    
    public class App {
        public static void main(String[] args) {
            Pulumi.run(App::stack);
        }
    
        public static void stack(Context ctx) {
            var exampleResourceGroup = new ResourceGroup("exampleResourceGroup", ResourceGroupArgs.builder()        
                .location("West Europe")
                .build());
    
            var exampleVirtualNetwork = new VirtualNetwork("exampleVirtualNetwork", VirtualNetworkArgs.builder()        
                .addressSpaces("10.0.0.0/16")
                .location(exampleResourceGroup.location())
                .resourceGroupName(exampleResourceGroup.name())
                .build());
    
            var exampleSubnet = new Subnet("exampleSubnet", SubnetArgs.builder()        
                .resourceGroupName(exampleResourceGroup.name())
                .virtualNetworkName(exampleVirtualNetwork.name())
                .addressPrefixes("10.0.2.0/24")
                .serviceEndpoints(            
                    "Microsoft.Sql",
                    "Microsoft.Storage")
                .build());
    
            var exampleAccount = new Account("exampleAccount", AccountArgs.builder()        
                .resourceGroupName(exampleResourceGroup.name())
                .location(exampleResourceGroup.location())
                .accountTier("Standard")
                .accountReplicationType("LRS")
                .networkRules(AccountNetworkRulesArgs.builder()
                    .defaultAction("Deny")
                    .ipRules("100.0.0.1")
                    .virtualNetworkSubnetIds(exampleSubnet.id())
                    .build())
                .tags(Map.of("environment", "staging"))
                .build());
    
        }
    }
    
    import pulumi
    import pulumi_azure as azure
    
    example_resource_group = azure.core.ResourceGroup("exampleResourceGroup", location="West Europe")
    example_virtual_network = azure.network.VirtualNetwork("exampleVirtualNetwork",
        address_spaces=["10.0.0.0/16"],
        location=example_resource_group.location,
        resource_group_name=example_resource_group.name)
    example_subnet = azure.network.Subnet("exampleSubnet",
        resource_group_name=example_resource_group.name,
        virtual_network_name=example_virtual_network.name,
        address_prefixes=["10.0.2.0/24"],
        service_endpoints=[
            "Microsoft.Sql",
            "Microsoft.Storage",
        ])
    example_account = azure.storage.Account("exampleAccount",
        resource_group_name=example_resource_group.name,
        location=example_resource_group.location,
        account_tier="Standard",
        account_replication_type="LRS",
        network_rules=azure.storage.AccountNetworkRulesArgs(
            default_action="Deny",
            ip_rules=["100.0.0.1"],
            virtual_network_subnet_ids=[example_subnet.id],
        ),
        tags={
            "environment": "staging",
        })
    
    import * as pulumi from "@pulumi/pulumi";
    import * as azure from "@pulumi/azure";
    
    const exampleResourceGroup = new azure.core.ResourceGroup("exampleResourceGroup", {location: "West Europe"});
    const exampleVirtualNetwork = new azure.network.VirtualNetwork("exampleVirtualNetwork", {
        addressSpaces: ["10.0.0.0/16"],
        location: exampleResourceGroup.location,
        resourceGroupName: exampleResourceGroup.name,
    });
    const exampleSubnet = new azure.network.Subnet("exampleSubnet", {
        resourceGroupName: exampleResourceGroup.name,
        virtualNetworkName: exampleVirtualNetwork.name,
        addressPrefixes: ["10.0.2.0/24"],
        serviceEndpoints: [
            "Microsoft.Sql",
            "Microsoft.Storage",
        ],
    });
    const exampleAccount = new azure.storage.Account("exampleAccount", {
        resourceGroupName: exampleResourceGroup.name,
        location: exampleResourceGroup.location,
        accountTier: "Standard",
        accountReplicationType: "LRS",
        networkRules: {
            defaultAction: "Deny",
            ipRules: ["100.0.0.1"],
            virtualNetworkSubnetIds: [exampleSubnet.id],
        },
        tags: {
            environment: "staging",
        },
    });
    
    resources:
      exampleResourceGroup:
        type: azure:core:ResourceGroup
        properties:
          location: West Europe
      exampleVirtualNetwork:
        type: azure:network:VirtualNetwork
        properties:
          addressSpaces:
            - 10.0.0.0/16
          location: ${exampleResourceGroup.location}
          resourceGroupName: ${exampleResourceGroup.name}
      exampleSubnet:
        type: azure:network:Subnet
        properties:
          resourceGroupName: ${exampleResourceGroup.name}
          virtualNetworkName: ${exampleVirtualNetwork.name}
          addressPrefixes:
            - 10.0.2.0/24
          serviceEndpoints:
            - Microsoft.Sql
            - Microsoft.Storage
      exampleAccount:
        type: azure:storage:Account
        properties:
          resourceGroupName: ${exampleResourceGroup.name}
          location: ${exampleResourceGroup.location}
          accountTier: Standard
          accountReplicationType: LRS
          networkRules:
            defaultAction: Deny
            ipRules:
              - 100.0.0.1
            virtualNetworkSubnetIds:
              - ${exampleSubnet.id}
          tags:
            environment: staging
    

    Create Account Resource

    new Account(name: string, args: AccountArgs, opts?: CustomResourceOptions);
    @overload
    def Account(resource_name: str,
                opts: Optional[ResourceOptions] = None,
                access_tier: Optional[str] = None,
                account_kind: Optional[str] = None,
                account_replication_type: Optional[str] = None,
                account_tier: Optional[str] = None,
                allow_nested_items_to_be_public: Optional[bool] = None,
                allowed_copy_scope: Optional[str] = None,
                azure_files_authentication: Optional[AccountAzureFilesAuthenticationArgs] = None,
                blob_properties: Optional[AccountBlobPropertiesArgs] = None,
                cross_tenant_replication_enabled: Optional[bool] = None,
                custom_domain: Optional[AccountCustomDomainArgs] = None,
                customer_managed_key: Optional[AccountCustomerManagedKeyArgs] = None,
                default_to_oauth_authentication: Optional[bool] = None,
                edge_zone: Optional[str] = None,
                enable_https_traffic_only: Optional[bool] = None,
                identity: Optional[AccountIdentityArgs] = None,
                immutability_policy: Optional[AccountImmutabilityPolicyArgs] = None,
                infrastructure_encryption_enabled: Optional[bool] = None,
                is_hns_enabled: Optional[bool] = None,
                large_file_share_enabled: Optional[bool] = None,
                location: Optional[str] = None,
                min_tls_version: Optional[str] = None,
                name: Optional[str] = None,
                network_rules: Optional[AccountNetworkRulesArgs] = None,
                nfsv3_enabled: Optional[bool] = None,
                public_network_access_enabled: Optional[bool] = None,
                queue_encryption_key_type: Optional[str] = None,
                queue_properties: Optional[AccountQueuePropertiesArgs] = None,
                resource_group_name: Optional[str] = None,
                routing: Optional[AccountRoutingArgs] = None,
                sas_policy: Optional[AccountSasPolicyArgs] = None,
                sftp_enabled: Optional[bool] = None,
                share_properties: Optional[AccountSharePropertiesArgs] = None,
                shared_access_key_enabled: Optional[bool] = None,
                static_website: Optional[AccountStaticWebsiteArgs] = None,
                table_encryption_key_type: Optional[str] = None,
                tags: Optional[Mapping[str, str]] = None)
    @overload
    def Account(resource_name: str,
                args: AccountArgs,
                opts: Optional[ResourceOptions] = None)
    func NewAccount(ctx *Context, name string, args AccountArgs, opts ...ResourceOption) (*Account, error)
    public Account(string name, AccountArgs args, CustomResourceOptions? opts = null)
    public Account(String name, AccountArgs args)
    public Account(String name, AccountArgs args, CustomResourceOptions options)
    
    type: azure:storage:Account
    properties: # The arguments to resource properties.
    options: # Bag of options to control resource's behavior.
    
    
    name string
    The unique name of the resource.
    args AccountArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    resource_name str
    The unique name of the resource.
    args AccountArgs
    The arguments to resource properties.
    opts ResourceOptions
    Bag of options to control resource's behavior.
    ctx Context
    Context object for the current deployment.
    name string
    The unique name of the resource.
    args AccountArgs
    The arguments to resource properties.
    opts ResourceOption
    Bag of options to control resource's behavior.
    name string
    The unique name of the resource.
    args AccountArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    name String
    The unique name of the resource.
    args AccountArgs
    The arguments to resource properties.
    options CustomResourceOptions
    Bag of options to control resource's behavior.

    Account Resource Properties

    To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

    Inputs

    The Account resource accepts the following input properties:

    AccountReplicationType string

    Defines the type of replication to use for this storage account. Valid options are LRS, GRS, RAGRS, ZRS, GZRS and RAGZRS.

    AccountTier string

    Defines the Tier to use for this storage account. Valid options are Standard and Premium. For BlockBlobStorage and FileStorage accounts only Premium is valid. Changing this forces a new resource to be created.

    ResourceGroupName string

    The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.

    AccessTier string

    Defines the access tier for BlobStorage, FileStorage and StorageV2 accounts. Valid options are Hot and Cool, defaults to Hot.

    AccountKind string

    Defines the Kind of account. Valid options are BlobStorage, BlockBlobStorage, FileStorage, Storage and StorageV2. Defaults to StorageV2.

    AllowNestedItemsToBePublic bool

    Allow or disallow nested items within this Account to opt into being public. Defaults to true.

    AllowedCopyScope string

    Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are AAD and PrivateLink.

    AzureFilesAuthentication AccountAzureFilesAuthenticationArgs

    A azure_files_authentication block as defined below.

    BlobProperties AccountBlobPropertiesArgs

    A blob_properties block as defined below.

    CrossTenantReplicationEnabled bool

    Should cross Tenant replication be enabled? Defaults to true.

    CustomDomain AccountCustomDomainArgs

    A custom_domain block as documented below.

    CustomerManagedKey AccountCustomerManagedKeyArgs

    A customer_managed_key block as documented below.

    DefaultToOauthAuthentication bool

    Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is false

    EdgeZone string

    Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.

    EnableHttpsTrafficOnly bool

    Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to true.

    Identity AccountIdentityArgs

    An identity block as defined below.

    ImmutabilityPolicy AccountImmutabilityPolicyArgs

    An immutability_policy block as defined below. Changing this forces a new resource to be created.

    InfrastructureEncryptionEnabled bool

    Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to false.

    IsHnsEnabled bool

    Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.

    LargeFileShareEnabled bool

    Is Large File Share Enabled?

    Location string

    Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.

    MinTlsVersion string

    The minimum supported TLS version for the storage account. Possible values are TLS1_0, TLS1_1, and TLS1_2. Defaults to TLS1_2 for new storage accounts.

    Name string

    Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.

    NetworkRules AccountNetworkRulesArgs

    A network_rules block as documented below.

    Nfsv3Enabled bool

    Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to false.

    PublicNetworkAccessEnabled bool

    Whether the public network access is enabled? Defaults to true.

    QueueEncryptionKeyType string

    The encryption type of the queue service. Possible values are Service and Account. Changing this forces a new resource to be created. Default value is Service.

    QueueProperties AccountQueuePropertiesArgs

    A queue_properties block as defined below.

    Routing AccountRoutingArgs

    A routing block as defined below.

    SasPolicy AccountSasPolicyArgs

    A sas_policy block as defined below.

    SftpEnabled bool

    Boolean, enable SFTP for the storage account

    ShareProperties AccountSharePropertiesArgs

    A share_properties block as defined below.

    SharedAccessKeyEnabled bool

    Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key. If false, then all requests, including shared access signatures, must be authorized with Azure Active Directory (Azure AD). The default value is true.

    StaticWebsite AccountStaticWebsiteArgs

    A static_website block as defined below.

    TableEncryptionKeyType string

    The encryption type of the table service. Possible values are Service and Account. Changing this forces a new resource to be created. Default value is Service.

    Tags Dictionary<string, string>

    A mapping of tags to assign to the resource.

    AccountReplicationType string

    Defines the type of replication to use for this storage account. Valid options are LRS, GRS, RAGRS, ZRS, GZRS and RAGZRS.

    AccountTier string

    Defines the Tier to use for this storage account. Valid options are Standard and Premium. For BlockBlobStorage and FileStorage accounts only Premium is valid. Changing this forces a new resource to be created.

    ResourceGroupName string

    The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.

    AccessTier string

    Defines the access tier for BlobStorage, FileStorage and StorageV2 accounts. Valid options are Hot and Cool, defaults to Hot.

    AccountKind string

    Defines the Kind of account. Valid options are BlobStorage, BlockBlobStorage, FileStorage, Storage and StorageV2. Defaults to StorageV2.

    AllowNestedItemsToBePublic bool

    Allow or disallow nested items within this Account to opt into being public. Defaults to true.

    AllowedCopyScope string

    Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are AAD and PrivateLink.

    AzureFilesAuthentication AccountAzureFilesAuthenticationArgs

    A azure_files_authentication block as defined below.

    BlobProperties AccountBlobPropertiesArgs

    A blob_properties block as defined below.

    CrossTenantReplicationEnabled bool

    Should cross Tenant replication be enabled? Defaults to true.

    CustomDomain AccountCustomDomainArgs

    A custom_domain block as documented below.

    CustomerManagedKey AccountCustomerManagedKeyArgs

    A customer_managed_key block as documented below.

    DefaultToOauthAuthentication bool

    Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is false

    EdgeZone string

    Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.

    EnableHttpsTrafficOnly bool

    Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to true.

    Identity AccountIdentityArgs

    An identity block as defined below.

    ImmutabilityPolicy AccountImmutabilityPolicyArgs

    An immutability_policy block as defined below. Changing this forces a new resource to be created.

    InfrastructureEncryptionEnabled bool

    Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to false.

    IsHnsEnabled bool

    Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.

    LargeFileShareEnabled bool

    Is Large File Share Enabled?

    Location string

    Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.

    MinTlsVersion string

    The minimum supported TLS version for the storage account. Possible values are TLS1_0, TLS1_1, and TLS1_2. Defaults to TLS1_2 for new storage accounts.

    Name string

    Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.

    NetworkRules AccountNetworkRulesTypeArgs

    A network_rules block as documented below.

    Nfsv3Enabled bool

    Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to false.

    PublicNetworkAccessEnabled bool

    Whether the public network access is enabled? Defaults to true.

    QueueEncryptionKeyType string

    The encryption type of the queue service. Possible values are Service and Account. Changing this forces a new resource to be created. Default value is Service.

    QueueProperties AccountQueuePropertiesArgs

    A queue_properties block as defined below.

    Routing AccountRoutingArgs

    A routing block as defined below.

    SasPolicy AccountSasPolicyArgs

    A sas_policy block as defined below.

    SftpEnabled bool

    Boolean, enable SFTP for the storage account

    ShareProperties AccountSharePropertiesArgs

    A share_properties block as defined below.

    SharedAccessKeyEnabled bool

    Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key. If false, then all requests, including shared access signatures, must be authorized with Azure Active Directory (Azure AD). The default value is true.

    StaticWebsite AccountStaticWebsiteArgs

    A static_website block as defined below.

    TableEncryptionKeyType string

    The encryption type of the table service. Possible values are Service and Account. Changing this forces a new resource to be created. Default value is Service.

    Tags map[string]string

    A mapping of tags to assign to the resource.

    accountReplicationType String

    Defines the type of replication to use for this storage account. Valid options are LRS, GRS, RAGRS, ZRS, GZRS and RAGZRS.

    accountTier String

    Defines the Tier to use for this storage account. Valid options are Standard and Premium. For BlockBlobStorage and FileStorage accounts only Premium is valid. Changing this forces a new resource to be created.

    resourceGroupName String

    The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.

    accessTier String

    Defines the access tier for BlobStorage, FileStorage and StorageV2 accounts. Valid options are Hot and Cool, defaults to Hot.

    accountKind String

    Defines the Kind of account. Valid options are BlobStorage, BlockBlobStorage, FileStorage, Storage and StorageV2. Defaults to StorageV2.

    allowNestedItemsToBePublic Boolean

    Allow or disallow nested items within this Account to opt into being public. Defaults to true.

    allowedCopyScope String

    Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are AAD and PrivateLink.

    azureFilesAuthentication AccountAzureFilesAuthenticationArgs

    A azure_files_authentication block as defined below.

    blobProperties AccountBlobPropertiesArgs

    A blob_properties block as defined below.

    crossTenantReplicationEnabled Boolean

    Should cross Tenant replication be enabled? Defaults to true.

    customDomain AccountCustomDomainArgs

    A custom_domain block as documented below.

    customerManagedKey AccountCustomerManagedKeyArgs

    A customer_managed_key block as documented below.

    defaultToOauthAuthentication Boolean

    Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is false

    edgeZone String

    Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.

    enableHttpsTrafficOnly Boolean

    Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to true.

    identity AccountIdentityArgs

    An identity block as defined below.

    immutabilityPolicy AccountImmutabilityPolicyArgs

    An immutability_policy block as defined below. Changing this forces a new resource to be created.

    infrastructureEncryptionEnabled Boolean

    Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to false.

    isHnsEnabled Boolean

    Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.

    largeFileShareEnabled Boolean

    Is Large File Share Enabled?

    location String

    Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.

    minTlsVersion String

    The minimum supported TLS version for the storage account. Possible values are TLS1_0, TLS1_1, and TLS1_2. Defaults to TLS1_2 for new storage accounts.

    name String

    Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.

    networkRules AccountNetworkRulesArgs

    A network_rules block as documented below.

    nfsv3Enabled Boolean

    Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to false.

    publicNetworkAccessEnabled Boolean

    Whether the public network access is enabled? Defaults to true.

    queueEncryptionKeyType String

    The encryption type of the queue service. Possible values are Service and Account. Changing this forces a new resource to be created. Default value is Service.

    queueProperties AccountQueuePropertiesArgs

    A queue_properties block as defined below.

    routing AccountRoutingArgs

    A routing block as defined below.

    sasPolicy AccountSasPolicyArgs

    A sas_policy block as defined below.

    sftpEnabled Boolean

    Boolean, enable SFTP for the storage account

    shareProperties AccountSharePropertiesArgs

    A share_properties block as defined below.

    sharedAccessKeyEnabled Boolean

    Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key. If false, then all requests, including shared access signatures, must be authorized with Azure Active Directory (Azure AD). The default value is true.

    staticWebsite AccountStaticWebsiteArgs

    A static_website block as defined below.

    tableEncryptionKeyType String

    The encryption type of the table service. Possible values are Service and Account. Changing this forces a new resource to be created. Default value is Service.

    tags Map<String,String>

    A mapping of tags to assign to the resource.

    accountReplicationType string

    Defines the type of replication to use for this storage account. Valid options are LRS, GRS, RAGRS, ZRS, GZRS and RAGZRS.

    accountTier string

    Defines the Tier to use for this storage account. Valid options are Standard and Premium. For BlockBlobStorage and FileStorage accounts only Premium is valid. Changing this forces a new resource to be created.

    resourceGroupName string

    The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.

    accessTier string

    Defines the access tier for BlobStorage, FileStorage and StorageV2 accounts. Valid options are Hot and Cool, defaults to Hot.

    accountKind string

    Defines the Kind of account. Valid options are BlobStorage, BlockBlobStorage, FileStorage, Storage and StorageV2. Defaults to StorageV2.

    allowNestedItemsToBePublic boolean

    Allow or disallow nested items within this Account to opt into being public. Defaults to true.

    allowedCopyScope string

    Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are AAD and PrivateLink.

    azureFilesAuthentication AccountAzureFilesAuthenticationArgs

    A azure_files_authentication block as defined below.

    blobProperties AccountBlobPropertiesArgs

    A blob_properties block as defined below.

    crossTenantReplicationEnabled boolean

    Should cross Tenant replication be enabled? Defaults to true.

    customDomain AccountCustomDomainArgs

    A custom_domain block as documented below.

    customerManagedKey AccountCustomerManagedKeyArgs

    A customer_managed_key block as documented below.

    defaultToOauthAuthentication boolean

    Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is false

    edgeZone string

    Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.

    enableHttpsTrafficOnly boolean

    Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to true.

    identity AccountIdentityArgs

    An identity block as defined below.

    immutabilityPolicy AccountImmutabilityPolicyArgs

    An immutability_policy block as defined below. Changing this forces a new resource to be created.

    infrastructureEncryptionEnabled boolean

    Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to false.

    isHnsEnabled boolean

    Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.

    largeFileShareEnabled boolean

    Is Large File Share Enabled?

    location string

    Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.

    minTlsVersion string

    The minimum supported TLS version for the storage account. Possible values are TLS1_0, TLS1_1, and TLS1_2. Defaults to TLS1_2 for new storage accounts.

    name string

    Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.

    networkRules AccountNetworkRulesArgs

    A network_rules block as documented below.

    nfsv3Enabled boolean

    Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to false.

    publicNetworkAccessEnabled boolean

    Whether the public network access is enabled? Defaults to true.

    queueEncryptionKeyType string

    The encryption type of the queue service. Possible values are Service and Account. Changing this forces a new resource to be created. Default value is Service.

    queueProperties AccountQueuePropertiesArgs

    A queue_properties block as defined below.

    routing AccountRoutingArgs

    A routing block as defined below.

    sasPolicy AccountSasPolicyArgs

    A sas_policy block as defined below.

    sftpEnabled boolean

    Boolean, enable SFTP for the storage account

    shareProperties AccountSharePropertiesArgs

    A share_properties block as defined below.

    sharedAccessKeyEnabled boolean

    Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key. If false, then all requests, including shared access signatures, must be authorized with Azure Active Directory (Azure AD). The default value is true.

    staticWebsite AccountStaticWebsiteArgs

    A static_website block as defined below.

    tableEncryptionKeyType string

    The encryption type of the table service. Possible values are Service and Account. Changing this forces a new resource to be created. Default value is Service.

    tags {[key: string]: string}

    A mapping of tags to assign to the resource.

    account_replication_type str

    Defines the type of replication to use for this storage account. Valid options are LRS, GRS, RAGRS, ZRS, GZRS and RAGZRS.

    account_tier str

    Defines the Tier to use for this storage account. Valid options are Standard and Premium. For BlockBlobStorage and FileStorage accounts only Premium is valid. Changing this forces a new resource to be created.

    resource_group_name str

    The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.

    access_tier str

    Defines the access tier for BlobStorage, FileStorage and StorageV2 accounts. Valid options are Hot and Cool, defaults to Hot.

    account_kind str

    Defines the Kind of account. Valid options are BlobStorage, BlockBlobStorage, FileStorage, Storage and StorageV2. Defaults to StorageV2.

    allow_nested_items_to_be_public bool

    Allow or disallow nested items within this Account to opt into being public. Defaults to true.

    allowed_copy_scope str

    Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are AAD and PrivateLink.

    azure_files_authentication AccountAzureFilesAuthenticationArgs

    A azure_files_authentication block as defined below.

    blob_properties AccountBlobPropertiesArgs

    A blob_properties block as defined below.

    cross_tenant_replication_enabled bool

    Should cross Tenant replication be enabled? Defaults to true.

    custom_domain AccountCustomDomainArgs

    A custom_domain block as documented below.

    customer_managed_key AccountCustomerManagedKeyArgs

    A customer_managed_key block as documented below.

    default_to_oauth_authentication bool

    Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is false

    edge_zone str

    Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.

    enable_https_traffic_only bool

    Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to true.

    identity AccountIdentityArgs

    An identity block as defined below.

    immutability_policy AccountImmutabilityPolicyArgs

    An immutability_policy block as defined below. Changing this forces a new resource to be created.

    infrastructure_encryption_enabled bool

    Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to false.

    is_hns_enabled bool

    Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.

    large_file_share_enabled bool

    Is Large File Share Enabled?

    location str

    Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.

    min_tls_version str

    The minimum supported TLS version for the storage account. Possible values are TLS1_0, TLS1_1, and TLS1_2. Defaults to TLS1_2 for new storage accounts.

    name str

    Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.

    network_rules AccountNetworkRulesArgs

    A network_rules block as documented below.

    nfsv3_enabled bool

    Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to false.

    public_network_access_enabled bool

    Whether the public network access is enabled? Defaults to true.

    queue_encryption_key_type str

    The encryption type of the queue service. Possible values are Service and Account. Changing this forces a new resource to be created. Default value is Service.

    queue_properties AccountQueuePropertiesArgs

    A queue_properties block as defined below.

    routing AccountRoutingArgs

    A routing block as defined below.

    sas_policy AccountSasPolicyArgs

    A sas_policy block as defined below.

    sftp_enabled bool

    Boolean, enable SFTP for the storage account

    share_properties AccountSharePropertiesArgs

    A share_properties block as defined below.

    shared_access_key_enabled bool

    Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key. If false, then all requests, including shared access signatures, must be authorized with Azure Active Directory (Azure AD). The default value is true.

    static_website AccountStaticWebsiteArgs

    A static_website block as defined below.

    table_encryption_key_type str

    The encryption type of the table service. Possible values are Service and Account. Changing this forces a new resource to be created. Default value is Service.

    tags Mapping[str, str]

    A mapping of tags to assign to the resource.

    accountReplicationType String

    Defines the type of replication to use for this storage account. Valid options are LRS, GRS, RAGRS, ZRS, GZRS and RAGZRS.

    accountTier String

    Defines the Tier to use for this storage account. Valid options are Standard and Premium. For BlockBlobStorage and FileStorage accounts only Premium is valid. Changing this forces a new resource to be created.

    resourceGroupName String

    The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.

    accessTier String

    Defines the access tier for BlobStorage, FileStorage and StorageV2 accounts. Valid options are Hot and Cool, defaults to Hot.

    accountKind String

    Defines the Kind of account. Valid options are BlobStorage, BlockBlobStorage, FileStorage, Storage and StorageV2. Defaults to StorageV2.

    allowNestedItemsToBePublic Boolean

    Allow or disallow nested items within this Account to opt into being public. Defaults to true.

    allowedCopyScope String

    Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are AAD and PrivateLink.

    azureFilesAuthentication Property Map

    A azure_files_authentication block as defined below.

    blobProperties Property Map

    A blob_properties block as defined below.

    crossTenantReplicationEnabled Boolean

    Should cross Tenant replication be enabled? Defaults to true.

    customDomain Property Map

    A custom_domain block as documented below.

    customerManagedKey Property Map

    A customer_managed_key block as documented below.

    defaultToOauthAuthentication Boolean

    Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is false

    edgeZone String

    Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.

    enableHttpsTrafficOnly Boolean

    Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to true.

    identity Property Map

    An identity block as defined below.

    immutabilityPolicy Property Map

    An immutability_policy block as defined below. Changing this forces a new resource to be created.

    infrastructureEncryptionEnabled Boolean

    Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to false.

    isHnsEnabled Boolean

    Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.

    largeFileShareEnabled Boolean

    Is Large File Share Enabled?

    location String

    Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.

    minTlsVersion String

    The minimum supported TLS version for the storage account. Possible values are TLS1_0, TLS1_1, and TLS1_2. Defaults to TLS1_2 for new storage accounts.

    name String

    Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.

    networkRules Property Map

    A network_rules block as documented below.

    nfsv3Enabled Boolean

    Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to false.

    publicNetworkAccessEnabled Boolean

    Whether the public network access is enabled? Defaults to true.

    queueEncryptionKeyType String

    The encryption type of the queue service. Possible values are Service and Account. Changing this forces a new resource to be created. Default value is Service.

    queueProperties Property Map

    A queue_properties block as defined below.

    routing Property Map

    A routing block as defined below.

    sasPolicy Property Map

    A sas_policy block as defined below.

    sftpEnabled Boolean

    Boolean, enable SFTP for the storage account

    shareProperties Property Map

    A share_properties block as defined below.

    sharedAccessKeyEnabled Boolean

    Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key. If false, then all requests, including shared access signatures, must be authorized with Azure Active Directory (Azure AD). The default value is true.

    staticWebsite Property Map

    A static_website block as defined below.

    tableEncryptionKeyType String

    The encryption type of the table service. Possible values are Service and Account. Changing this forces a new resource to be created. Default value is Service.

    tags Map<String>

    A mapping of tags to assign to the resource.

    Outputs

    All input properties are implicitly available as output properties. Additionally, the Account resource produces the following output properties:

    Id string

    The provider-assigned unique ID for this managed resource.

    PrimaryAccessKey string

    The primary access key for the storage account.

    PrimaryBlobConnectionString string

    The connection string associated with the primary blob location.

    PrimaryBlobEndpoint string

    The endpoint URL for blob storage in the primary location.

    PrimaryBlobHost string

    The hostname with port if applicable for blob storage in the primary location.

    PrimaryConnectionString string

    The connection string associated with the primary location.

    PrimaryDfsEndpoint string

    The endpoint URL for DFS storage in the primary location.

    PrimaryDfsHost string

    The hostname with port if applicable for DFS storage in the primary location.

    PrimaryFileEndpoint string

    The endpoint URL for file storage in the primary location.

    PrimaryFileHost string

    The hostname with port if applicable for file storage in the primary location.

    PrimaryLocation string

    The primary location of the storage account.

    PrimaryQueueEndpoint string

    The endpoint URL for queue storage in the primary location.

    PrimaryQueueHost string

    The hostname with port if applicable for queue storage in the primary location.

    PrimaryTableEndpoint string

    The endpoint URL for table storage in the primary location.

    PrimaryTableHost string

    The hostname with port if applicable for table storage in the primary location.

    PrimaryWebEndpoint string

    The endpoint URL for web storage in the primary location.

    PrimaryWebHost string

    The hostname with port if applicable for web storage in the primary location.

    SecondaryAccessKey string

    The secondary access key for the storage account.

    SecondaryBlobConnectionString string

    The connection string associated with the secondary blob location.

    SecondaryBlobEndpoint string

    The endpoint URL for blob storage in the secondary location.

    SecondaryBlobHost string

    The hostname with port if applicable for blob storage in the secondary location.

    SecondaryConnectionString string

    The connection string associated with the secondary location.

    SecondaryDfsEndpoint string

    The endpoint URL for DFS storage in the secondary location.

    SecondaryDfsHost string

    The hostname with port if applicable for DFS storage in the secondary location.

    SecondaryFileEndpoint string

    The endpoint URL for file storage in the secondary location.

    SecondaryFileHost string

    The hostname with port if applicable for file storage in the secondary location.

    SecondaryLocation string

    The secondary location of the storage account.

    SecondaryQueueEndpoint string

    The endpoint URL for queue storage in the secondary location.

    SecondaryQueueHost string

    The hostname with port if applicable for queue storage in the secondary location.

    SecondaryTableEndpoint string

    The endpoint URL for table storage in the secondary location.

    SecondaryTableHost string

    The hostname with port if applicable for table storage in the secondary location.

    SecondaryWebEndpoint string

    The endpoint URL for web storage in the secondary location.

    SecondaryWebHost string

    The hostname with port if applicable for web storage in the secondary location.

    Id string

    The provider-assigned unique ID for this managed resource.

    PrimaryAccessKey string

    The primary access key for the storage account.

    PrimaryBlobConnectionString string

    The connection string associated with the primary blob location.

    PrimaryBlobEndpoint string

    The endpoint URL for blob storage in the primary location.

    PrimaryBlobHost string

    The hostname with port if applicable for blob storage in the primary location.

    PrimaryConnectionString string

    The connection string associated with the primary location.

    PrimaryDfsEndpoint string

    The endpoint URL for DFS storage in the primary location.

    PrimaryDfsHost string

    The hostname with port if applicable for DFS storage in the primary location.

    PrimaryFileEndpoint string

    The endpoint URL for file storage in the primary location.

    PrimaryFileHost string

    The hostname with port if applicable for file storage in the primary location.

    PrimaryLocation string

    The primary location of the storage account.

    PrimaryQueueEndpoint string

    The endpoint URL for queue storage in the primary location.

    PrimaryQueueHost string

    The hostname with port if applicable for queue storage in the primary location.

    PrimaryTableEndpoint string

    The endpoint URL for table storage in the primary location.

    PrimaryTableHost string

    The hostname with port if applicable for table storage in the primary location.

    PrimaryWebEndpoint string

    The endpoint URL for web storage in the primary location.

    PrimaryWebHost string

    The hostname with port if applicable for web storage in the primary location.

    SecondaryAccessKey string

    The secondary access key for the storage account.

    SecondaryBlobConnectionString string

    The connection string associated with the secondary blob location.

    SecondaryBlobEndpoint string

    The endpoint URL for blob storage in the secondary location.

    SecondaryBlobHost string

    The hostname with port if applicable for blob storage in the secondary location.

    SecondaryConnectionString string

    The connection string associated with the secondary location.

    SecondaryDfsEndpoint string

    The endpoint URL for DFS storage in the secondary location.

    SecondaryDfsHost string

    The hostname with port if applicable for DFS storage in the secondary location.

    SecondaryFileEndpoint string

    The endpoint URL for file storage in the secondary location.

    SecondaryFileHost string

    The hostname with port if applicable for file storage in the secondary location.

    SecondaryLocation string

    The secondary location of the storage account.

    SecondaryQueueEndpoint string

    The endpoint URL for queue storage in the secondary location.

    SecondaryQueueHost string

    The hostname with port if applicable for queue storage in the secondary location.

    SecondaryTableEndpoint string

    The endpoint URL for table storage in the secondary location.

    SecondaryTableHost string

    The hostname with port if applicable for table storage in the secondary location.

    SecondaryWebEndpoint string

    The endpoint URL for web storage in the secondary location.

    SecondaryWebHost string

    The hostname with port if applicable for web storage in the secondary location.

    id String

    The provider-assigned unique ID for this managed resource.

    primaryAccessKey String

    The primary access key for the storage account.

    primaryBlobConnectionString String

    The connection string associated with the primary blob location.

    primaryBlobEndpoint String

    The endpoint URL for blob storage in the primary location.

    primaryBlobHost String

    The hostname with port if applicable for blob storage in the primary location.

    primaryConnectionString String

    The connection string associated with the primary location.

    primaryDfsEndpoint String

    The endpoint URL for DFS storage in the primary location.

    primaryDfsHost String

    The hostname with port if applicable for DFS storage in the primary location.

    primaryFileEndpoint String

    The endpoint URL for file storage in the primary location.

    primaryFileHost String

    The hostname with port if applicable for file storage in the primary location.

    primaryLocation String

    The primary location of the storage account.

    primaryQueueEndpoint String

    The endpoint URL for queue storage in the primary location.

    primaryQueueHost String

    The hostname with port if applicable for queue storage in the primary location.

    primaryTableEndpoint String

    The endpoint URL for table storage in the primary location.

    primaryTableHost String

    The hostname with port if applicable for table storage in the primary location.

    primaryWebEndpoint String

    The endpoint URL for web storage in the primary location.

    primaryWebHost String

    The hostname with port if applicable for web storage in the primary location.

    secondaryAccessKey String

    The secondary access key for the storage account.

    secondaryBlobConnectionString String

    The connection string associated with the secondary blob location.

    secondaryBlobEndpoint String

    The endpoint URL for blob storage in the secondary location.

    secondaryBlobHost String

    The hostname with port if applicable for blob storage in the secondary location.

    secondaryConnectionString String

    The connection string associated with the secondary location.

    secondaryDfsEndpoint String

    The endpoint URL for DFS storage in the secondary location.

    secondaryDfsHost String

    The hostname with port if applicable for DFS storage in the secondary location.

    secondaryFileEndpoint String

    The endpoint URL for file storage in the secondary location.

    secondaryFileHost String

    The hostname with port if applicable for file storage in the secondary location.

    secondaryLocation String

    The secondary location of the storage account.

    secondaryQueueEndpoint String

    The endpoint URL for queue storage in the secondary location.

    secondaryQueueHost String

    The hostname with port if applicable for queue storage in the secondary location.

    secondaryTableEndpoint String

    The endpoint URL for table storage in the secondary location.

    secondaryTableHost String

    The hostname with port if applicable for table storage in the secondary location.

    secondaryWebEndpoint String

    The endpoint URL for web storage in the secondary location.

    secondaryWebHost String

    The hostname with port if applicable for web storage in the secondary location.

    id string

    The provider-assigned unique ID for this managed resource.

    primaryAccessKey string

    The primary access key for the storage account.

    primaryBlobConnectionString string

    The connection string associated with the primary blob location.

    primaryBlobEndpoint string

    The endpoint URL for blob storage in the primary location.

    primaryBlobHost string

    The hostname with port if applicable for blob storage in the primary location.

    primaryConnectionString string

    The connection string associated with the primary location.

    primaryDfsEndpoint string

    The endpoint URL for DFS storage in the primary location.

    primaryDfsHost string

    The hostname with port if applicable for DFS storage in the primary location.

    primaryFileEndpoint string

    The endpoint URL for file storage in the primary location.

    primaryFileHost string

    The hostname with port if applicable for file storage in the primary location.

    primaryLocation string

    The primary location of the storage account.

    primaryQueueEndpoint string

    The endpoint URL for queue storage in the primary location.

    primaryQueueHost string

    The hostname with port if applicable for queue storage in the primary location.

    primaryTableEndpoint string

    The endpoint URL for table storage in the primary location.

    primaryTableHost string

    The hostname with port if applicable for table storage in the primary location.

    primaryWebEndpoint string

    The endpoint URL for web storage in the primary location.

    primaryWebHost string

    The hostname with port if applicable for web storage in the primary location.

    secondaryAccessKey string

    The secondary access key for the storage account.

    secondaryBlobConnectionString string

    The connection string associated with the secondary blob location.

    secondaryBlobEndpoint string

    The endpoint URL for blob storage in the secondary location.

    secondaryBlobHost string

    The hostname with port if applicable for blob storage in the secondary location.

    secondaryConnectionString string

    The connection string associated with the secondary location.

    secondaryDfsEndpoint string

    The endpoint URL for DFS storage in the secondary location.

    secondaryDfsHost string

    The hostname with port if applicable for DFS storage in the secondary location.

    secondaryFileEndpoint string

    The endpoint URL for file storage in the secondary location.

    secondaryFileHost string

    The hostname with port if applicable for file storage in the secondary location.

    secondaryLocation string

    The secondary location of the storage account.

    secondaryQueueEndpoint string

    The endpoint URL for queue storage in the secondary location.

    secondaryQueueHost string

    The hostname with port if applicable for queue storage in the secondary location.

    secondaryTableEndpoint string

    The endpoint URL for table storage in the secondary location.

    secondaryTableHost string

    The hostname with port if applicable for table storage in the secondary location.

    secondaryWebEndpoint string

    The endpoint URL for web storage in the secondary location.

    secondaryWebHost string

    The hostname with port if applicable for web storage in the secondary location.

    id str

    The provider-assigned unique ID for this managed resource.

    primary_access_key str

    The primary access key for the storage account.

    primary_blob_connection_string str

    The connection string associated with the primary blob location.

    primary_blob_endpoint str

    The endpoint URL for blob storage in the primary location.

    primary_blob_host str

    The hostname with port if applicable for blob storage in the primary location.

    primary_connection_string str

    The connection string associated with the primary location.

    primary_dfs_endpoint str

    The endpoint URL for DFS storage in the primary location.

    primary_dfs_host str

    The hostname with port if applicable for DFS storage in the primary location.

    primary_file_endpoint str

    The endpoint URL for file storage in the primary location.

    primary_file_host str

    The hostname with port if applicable for file storage in the primary location.

    primary_location str

    The primary location of the storage account.

    primary_queue_endpoint str

    The endpoint URL for queue storage in the primary location.

    primary_queue_host str

    The hostname with port if applicable for queue storage in the primary location.

    primary_table_endpoint str

    The endpoint URL for table storage in the primary location.

    primary_table_host str

    The hostname with port if applicable for table storage in the primary location.

    primary_web_endpoint str

    The endpoint URL for web storage in the primary location.

    primary_web_host str

    The hostname with port if applicable for web storage in the primary location.

    secondary_access_key str

    The secondary access key for the storage account.

    secondary_blob_connection_string str

    The connection string associated with the secondary blob location.

    secondary_blob_endpoint str

    The endpoint URL for blob storage in the secondary location.

    secondary_blob_host str

    The hostname with port if applicable for blob storage in the secondary location.

    secondary_connection_string str

    The connection string associated with the secondary location.

    secondary_dfs_endpoint str

    The endpoint URL for DFS storage in the secondary location.

    secondary_dfs_host str

    The hostname with port if applicable for DFS storage in the secondary location.

    secondary_file_endpoint str

    The endpoint URL for file storage in the secondary location.

    secondary_file_host str

    The hostname with port if applicable for file storage in the secondary location.

    secondary_location str

    The secondary location of the storage account.

    secondary_queue_endpoint str

    The endpoint URL for queue storage in the secondary location.

    secondary_queue_host str

    The hostname with port if applicable for queue storage in the secondary location.

    secondary_table_endpoint str

    The endpoint URL for table storage in the secondary location.

    secondary_table_host str

    The hostname with port if applicable for table storage in the secondary location.

    secondary_web_endpoint str

    The endpoint URL for web storage in the secondary location.

    secondary_web_host str

    The hostname with port if applicable for web storage in the secondary location.

    id String

    The provider-assigned unique ID for this managed resource.

    primaryAccessKey String

    The primary access key for the storage account.

    primaryBlobConnectionString String

    The connection string associated with the primary blob location.

    primaryBlobEndpoint String

    The endpoint URL for blob storage in the primary location.

    primaryBlobHost String

    The hostname with port if applicable for blob storage in the primary location.

    primaryConnectionString String

    The connection string associated with the primary location.

    primaryDfsEndpoint String

    The endpoint URL for DFS storage in the primary location.

    primaryDfsHost String

    The hostname with port if applicable for DFS storage in the primary location.

    primaryFileEndpoint String

    The endpoint URL for file storage in the primary location.

    primaryFileHost String

    The hostname with port if applicable for file storage in the primary location.

    primaryLocation String

    The primary location of the storage account.

    primaryQueueEndpoint String

    The endpoint URL for queue storage in the primary location.

    primaryQueueHost String

    The hostname with port if applicable for queue storage in the primary location.

    primaryTableEndpoint String

    The endpoint URL for table storage in the primary location.

    primaryTableHost String

    The hostname with port if applicable for table storage in the primary location.

    primaryWebEndpoint String

    The endpoint URL for web storage in the primary location.

    primaryWebHost String

    The hostname with port if applicable for web storage in the primary location.

    secondaryAccessKey String

    The secondary access key for the storage account.

    secondaryBlobConnectionString String

    The connection string associated with the secondary blob location.

    secondaryBlobEndpoint String

    The endpoint URL for blob storage in the secondary location.

    secondaryBlobHost String

    The hostname with port if applicable for blob storage in the secondary location.

    secondaryConnectionString String

    The connection string associated with the secondary location.

    secondaryDfsEndpoint String

    The endpoint URL for DFS storage in the secondary location.

    secondaryDfsHost String

    The hostname with port if applicable for DFS storage in the secondary location.

    secondaryFileEndpoint String

    The endpoint URL for file storage in the secondary location.

    secondaryFileHost String

    The hostname with port if applicable for file storage in the secondary location.

    secondaryLocation String

    The secondary location of the storage account.

    secondaryQueueEndpoint String

    The endpoint URL for queue storage in the secondary location.

    secondaryQueueHost String

    The hostname with port if applicable for queue storage in the secondary location.

    secondaryTableEndpoint String

    The endpoint URL for table storage in the secondary location.

    secondaryTableHost String

    The hostname with port if applicable for table storage in the secondary location.

    secondaryWebEndpoint String

    The endpoint URL for web storage in the secondary location.

    secondaryWebHost String

    The hostname with port if applicable for web storage in the secondary location.

    Look up Existing Account Resource

    Get an existing Account resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

    public static get(name: string, id: Input<ID>, state?: AccountState, opts?: CustomResourceOptions): Account
    @staticmethod
    def get(resource_name: str,
            id: str,
            opts: Optional[ResourceOptions] = None,
            access_tier: Optional[str] = None,
            account_kind: Optional[str] = None,
            account_replication_type: Optional[str] = None,
            account_tier: Optional[str] = None,
            allow_nested_items_to_be_public: Optional[bool] = None,
            allowed_copy_scope: Optional[str] = None,
            azure_files_authentication: Optional[AccountAzureFilesAuthenticationArgs] = None,
            blob_properties: Optional[AccountBlobPropertiesArgs] = None,
            cross_tenant_replication_enabled: Optional[bool] = None,
            custom_domain: Optional[AccountCustomDomainArgs] = None,
            customer_managed_key: Optional[AccountCustomerManagedKeyArgs] = None,
            default_to_oauth_authentication: Optional[bool] = None,
            edge_zone: Optional[str] = None,
            enable_https_traffic_only: Optional[bool] = None,
            identity: Optional[AccountIdentityArgs] = None,
            immutability_policy: Optional[AccountImmutabilityPolicyArgs] = None,
            infrastructure_encryption_enabled: Optional[bool] = None,
            is_hns_enabled: Optional[bool] = None,
            large_file_share_enabled: Optional[bool] = None,
            location: Optional[str] = None,
            min_tls_version: Optional[str] = None,
            name: Optional[str] = None,
            network_rules: Optional[AccountNetworkRulesArgs] = None,
            nfsv3_enabled: Optional[bool] = None,
            primary_access_key: Optional[str] = None,
            primary_blob_connection_string: Optional[str] = None,
            primary_blob_endpoint: Optional[str] = None,
            primary_blob_host: Optional[str] = None,
            primary_connection_string: Optional[str] = None,
            primary_dfs_endpoint: Optional[str] = None,
            primary_dfs_host: Optional[str] = None,
            primary_file_endpoint: Optional[str] = None,
            primary_file_host: Optional[str] = None,
            primary_location: Optional[str] = None,
            primary_queue_endpoint: Optional[str] = None,
            primary_queue_host: Optional[str] = None,
            primary_table_endpoint: Optional[str] = None,
            primary_table_host: Optional[str] = None,
            primary_web_endpoint: Optional[str] = None,
            primary_web_host: Optional[str] = None,
            public_network_access_enabled: Optional[bool] = None,
            queue_encryption_key_type: Optional[str] = None,
            queue_properties: Optional[AccountQueuePropertiesArgs] = None,
            resource_group_name: Optional[str] = None,
            routing: Optional[AccountRoutingArgs] = None,
            sas_policy: Optional[AccountSasPolicyArgs] = None,
            secondary_access_key: Optional[str] = None,
            secondary_blob_connection_string: Optional[str] = None,
            secondary_blob_endpoint: Optional[str] = None,
            secondary_blob_host: Optional[str] = None,
            secondary_connection_string: Optional[str] = None,
            secondary_dfs_endpoint: Optional[str] = None,
            secondary_dfs_host: Optional[str] = None,
            secondary_file_endpoint: Optional[str] = None,
            secondary_file_host: Optional[str] = None,
            secondary_location: Optional[str] = None,
            secondary_queue_endpoint: Optional[str] = None,
            secondary_queue_host: Optional[str] = None,
            secondary_table_endpoint: Optional[str] = None,
            secondary_table_host: Optional[str] = None,
            secondary_web_endpoint: Optional[str] = None,
            secondary_web_host: Optional[str] = None,
            sftp_enabled: Optional[bool] = None,
            share_properties: Optional[AccountSharePropertiesArgs] = None,
            shared_access_key_enabled: Optional[bool] = None,
            static_website: Optional[AccountStaticWebsiteArgs] = None,
            table_encryption_key_type: Optional[str] = None,
            tags: Optional[Mapping[str, str]] = None) -> Account
    func GetAccount(ctx *Context, name string, id IDInput, state *AccountState, opts ...ResourceOption) (*Account, error)
    public static Account Get(string name, Input<string> id, AccountState? state, CustomResourceOptions? opts = null)
    public static Account get(String name, Output<String> id, AccountState state, CustomResourceOptions options)
    Resource lookup is not supported in YAML
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    resource_name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    The following state arguments are supported:
    AccessTier string

    Defines the access tier for BlobStorage, FileStorage and StorageV2 accounts. Valid options are Hot and Cool, defaults to Hot.

    AccountKind string

    Defines the Kind of account. Valid options are BlobStorage, BlockBlobStorage, FileStorage, Storage and StorageV2. Defaults to StorageV2.

    AccountReplicationType string

    Defines the type of replication to use for this storage account. Valid options are LRS, GRS, RAGRS, ZRS, GZRS and RAGZRS.

    AccountTier string

    Defines the Tier to use for this storage account. Valid options are Standard and Premium. For BlockBlobStorage and FileStorage accounts only Premium is valid. Changing this forces a new resource to be created.

    AllowNestedItemsToBePublic bool

    Allow or disallow nested items within this Account to opt into being public. Defaults to true.

    AllowedCopyScope string

    Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are AAD and PrivateLink.

    AzureFilesAuthentication AccountAzureFilesAuthenticationArgs

    A azure_files_authentication block as defined below.

    BlobProperties AccountBlobPropertiesArgs

    A blob_properties block as defined below.

    CrossTenantReplicationEnabled bool

    Should cross Tenant replication be enabled? Defaults to true.

    CustomDomain AccountCustomDomainArgs

    A custom_domain block as documented below.

    CustomerManagedKey AccountCustomerManagedKeyArgs

    A customer_managed_key block as documented below.

    DefaultToOauthAuthentication bool

    Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is false

    EdgeZone string

    Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.

    EnableHttpsTrafficOnly bool

    Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to true.

    Identity AccountIdentityArgs

    An identity block as defined below.

    ImmutabilityPolicy AccountImmutabilityPolicyArgs

    An immutability_policy block as defined below. Changing this forces a new resource to be created.

    InfrastructureEncryptionEnabled bool

    Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to false.

    IsHnsEnabled bool

    Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.

    LargeFileShareEnabled bool

    Is Large File Share Enabled?

    Location string

    Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.

    MinTlsVersion string

    The minimum supported TLS version for the storage account. Possible values are TLS1_0, TLS1_1, and TLS1_2. Defaults to TLS1_2 for new storage accounts.

    Name string

    Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.

    NetworkRules AccountNetworkRulesArgs

    A network_rules block as documented below.

    Nfsv3Enabled bool

    Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to false.

    PrimaryAccessKey string

    The primary access key for the storage account.

    PrimaryBlobConnectionString string

    The connection string associated with the primary blob location.

    PrimaryBlobEndpoint string

    The endpoint URL for blob storage in the primary location.

    PrimaryBlobHost string

    The hostname with port if applicable for blob storage in the primary location.

    PrimaryConnectionString string

    The connection string associated with the primary location.

    PrimaryDfsEndpoint string

    The endpoint URL for DFS storage in the primary location.

    PrimaryDfsHost string

    The hostname with port if applicable for DFS storage in the primary location.

    PrimaryFileEndpoint string

    The endpoint URL for file storage in the primary location.

    PrimaryFileHost string

    The hostname with port if applicable for file storage in the primary location.

    PrimaryLocation string

    The primary location of the storage account.

    PrimaryQueueEndpoint string

    The endpoint URL for queue storage in the primary location.

    PrimaryQueueHost string

    The hostname with port if applicable for queue storage in the primary location.

    PrimaryTableEndpoint string

    The endpoint URL for table storage in the primary location.

    PrimaryTableHost string

    The hostname with port if applicable for table storage in the primary location.

    PrimaryWebEndpoint string

    The endpoint URL for web storage in the primary location.

    PrimaryWebHost string

    The hostname with port if applicable for web storage in the primary location.

    PublicNetworkAccessEnabled bool

    Whether the public network access is enabled? Defaults to true.

    QueueEncryptionKeyType string

    The encryption type of the queue service. Possible values are Service and Account. Changing this forces a new resource to be created. Default value is Service.

    QueueProperties AccountQueuePropertiesArgs

    A queue_properties block as defined below.

    ResourceGroupName string

    The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.

    Routing AccountRoutingArgs

    A routing block as defined below.

    SasPolicy AccountSasPolicyArgs

    A sas_policy block as defined below.

    SecondaryAccessKey string

    The secondary access key for the storage account.

    SecondaryBlobConnectionString string

    The connection string associated with the secondary blob location.

    SecondaryBlobEndpoint string

    The endpoint URL for blob storage in the secondary location.

    SecondaryBlobHost string

    The hostname with port if applicable for blob storage in the secondary location.

    SecondaryConnectionString string

    The connection string associated with the secondary location.

    SecondaryDfsEndpoint string

    The endpoint URL for DFS storage in the secondary location.

    SecondaryDfsHost string

    The hostname with port if applicable for DFS storage in the secondary location.

    SecondaryFileEndpoint string

    The endpoint URL for file storage in the secondary location.

    SecondaryFileHost string

    The hostname with port if applicable for file storage in the secondary location.

    SecondaryLocation string

    The secondary location of the storage account.

    SecondaryQueueEndpoint string

    The endpoint URL for queue storage in the secondary location.

    SecondaryQueueHost string

    The hostname with port if applicable for queue storage in the secondary location.

    SecondaryTableEndpoint string

    The endpoint URL for table storage in the secondary location.

    SecondaryTableHost string

    The hostname with port if applicable for table storage in the secondary location.

    SecondaryWebEndpoint string

    The endpoint URL for web storage in the secondary location.

    SecondaryWebHost string

    The hostname with port if applicable for web storage in the secondary location.

    SftpEnabled bool

    Boolean, enable SFTP for the storage account

    ShareProperties AccountSharePropertiesArgs

    A share_properties block as defined below.

    SharedAccessKeyEnabled bool

    Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key. If false, then all requests, including shared access signatures, must be authorized with Azure Active Directory (Azure AD). The default value is true.

    StaticWebsite AccountStaticWebsiteArgs

    A static_website block as defined below.

    TableEncryptionKeyType string

    The encryption type of the table service. Possible values are Service and Account. Changing this forces a new resource to be created. Default value is Service.

    Tags Dictionary<string, string>

    A mapping of tags to assign to the resource.

    AccessTier string

    Defines the access tier for BlobStorage, FileStorage and StorageV2 accounts. Valid options are Hot and Cool, defaults to Hot.

    AccountKind string

    Defines the Kind of account. Valid options are BlobStorage, BlockBlobStorage, FileStorage, Storage and StorageV2. Defaults to StorageV2.

    AccountReplicationType string

    Defines the type of replication to use for this storage account. Valid options are LRS, GRS, RAGRS, ZRS, GZRS and RAGZRS.

    AccountTier string

    Defines the Tier to use for this storage account. Valid options are Standard and Premium. For BlockBlobStorage and FileStorage accounts only Premium is valid. Changing this forces a new resource to be created.

    AllowNestedItemsToBePublic bool

    Allow or disallow nested items within this Account to opt into being public. Defaults to true.

    AllowedCopyScope string

    Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are AAD and PrivateLink.

    AzureFilesAuthentication AccountAzureFilesAuthenticationArgs

    A azure_files_authentication block as defined below.

    BlobProperties AccountBlobPropertiesArgs

    A blob_properties block as defined below.

    CrossTenantReplicationEnabled bool

    Should cross Tenant replication be enabled? Defaults to true.

    CustomDomain AccountCustomDomainArgs

    A custom_domain block as documented below.

    CustomerManagedKey AccountCustomerManagedKeyArgs

    A customer_managed_key block as documented below.

    DefaultToOauthAuthentication bool

    Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is false

    EdgeZone string

    Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.

    EnableHttpsTrafficOnly bool

    Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to true.

    Identity AccountIdentityArgs

    An identity block as defined below.

    ImmutabilityPolicy AccountImmutabilityPolicyArgs

    An immutability_policy block as defined below. Changing this forces a new resource to be created.

    InfrastructureEncryptionEnabled bool

    Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to false.

    IsHnsEnabled bool

    Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.

    LargeFileShareEnabled bool

    Is Large File Share Enabled?

    Location string

    Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.

    MinTlsVersion string

    The minimum supported TLS version for the storage account. Possible values are TLS1_0, TLS1_1, and TLS1_2. Defaults to TLS1_2 for new storage accounts.

    Name string

    Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.

    NetworkRules AccountNetworkRulesTypeArgs

    A network_rules block as documented below.

    Nfsv3Enabled bool

    Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to false.

    PrimaryAccessKey string

    The primary access key for the storage account.

    PrimaryBlobConnectionString string

    The connection string associated with the primary blob location.

    PrimaryBlobEndpoint string

    The endpoint URL for blob storage in the primary location.

    PrimaryBlobHost string

    The hostname with port if applicable for blob storage in the primary location.

    PrimaryConnectionString string

    The connection string associated with the primary location.

    PrimaryDfsEndpoint string

    The endpoint URL for DFS storage in the primary location.

    PrimaryDfsHost string

    The hostname with port if applicable for DFS storage in the primary location.

    PrimaryFileEndpoint string

    The endpoint URL for file storage in the primary location.

    PrimaryFileHost string

    The hostname with port if applicable for file storage in the primary location.

    PrimaryLocation string

    The primary location of the storage account.

    PrimaryQueueEndpoint string

    The endpoint URL for queue storage in the primary location.

    PrimaryQueueHost string

    The hostname with port if applicable for queue storage in the primary location.

    PrimaryTableEndpoint string

    The endpoint URL for table storage in the primary location.

    PrimaryTableHost string

    The hostname with port if applicable for table storage in the primary location.

    PrimaryWebEndpoint string

    The endpoint URL for web storage in the primary location.

    PrimaryWebHost string

    The hostname with port if applicable for web storage in the primary location.

    PublicNetworkAccessEnabled bool

    Whether the public network access is enabled? Defaults to true.

    QueueEncryptionKeyType string

    The encryption type of the queue service. Possible values are Service and Account. Changing this forces a new resource to be created. Default value is Service.

    QueueProperties AccountQueuePropertiesArgs

    A queue_properties block as defined below.

    ResourceGroupName string

    The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.

    Routing AccountRoutingArgs

    A routing block as defined below.

    SasPolicy AccountSasPolicyArgs

    A sas_policy block as defined below.

    SecondaryAccessKey string

    The secondary access key for the storage account.

    SecondaryBlobConnectionString string

    The connection string associated with the secondary blob location.

    SecondaryBlobEndpoint string

    The endpoint URL for blob storage in the secondary location.

    SecondaryBlobHost string

    The hostname with port if applicable for blob storage in the secondary location.

    SecondaryConnectionString string

    The connection string associated with the secondary location.

    SecondaryDfsEndpoint string

    The endpoint URL for DFS storage in the secondary location.

    SecondaryDfsHost string

    The hostname with port if applicable for DFS storage in the secondary location.

    SecondaryFileEndpoint string

    The endpoint URL for file storage in the secondary location.

    SecondaryFileHost string

    The hostname with port if applicable for file storage in the secondary location.

    SecondaryLocation string

    The secondary location of the storage account.

    SecondaryQueueEndpoint string

    The endpoint URL for queue storage in the secondary location.

    SecondaryQueueHost string

    The hostname with port if applicable for queue storage in the secondary location.

    SecondaryTableEndpoint string

    The endpoint URL for table storage in the secondary location.

    SecondaryTableHost string

    The hostname with port if applicable for table storage in the secondary location.

    SecondaryWebEndpoint string

    The endpoint URL for web storage in the secondary location.

    SecondaryWebHost string

    The hostname with port if applicable for web storage in the secondary location.

    SftpEnabled bool

    Boolean, enable SFTP for the storage account

    ShareProperties AccountSharePropertiesArgs

    A share_properties block as defined below.

    SharedAccessKeyEnabled bool

    Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key. If false, then all requests, including shared access signatures, must be authorized with Azure Active Directory (Azure AD). The default value is true.

    StaticWebsite AccountStaticWebsiteArgs

    A static_website block as defined below.

    TableEncryptionKeyType string

    The encryption type of the table service. Possible values are Service and Account. Changing this forces a new resource to be created. Default value is Service.

    Tags map[string]string

    A mapping of tags to assign to the resource.

    accessTier String

    Defines the access tier for BlobStorage, FileStorage and StorageV2 accounts. Valid options are Hot and Cool, defaults to Hot.

    accountKind String

    Defines the Kind of account. Valid options are BlobStorage, BlockBlobStorage, FileStorage, Storage and StorageV2. Defaults to StorageV2.

    accountReplicationType String

    Defines the type of replication to use for this storage account. Valid options are LRS, GRS, RAGRS, ZRS, GZRS and RAGZRS.

    accountTier String

    Defines the Tier to use for this storage account. Valid options are Standard and Premium. For BlockBlobStorage and FileStorage accounts only Premium is valid. Changing this forces a new resource to be created.

    allowNestedItemsToBePublic Boolean

    Allow or disallow nested items within this Account to opt into being public. Defaults to true.

    allowedCopyScope String

    Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are AAD and PrivateLink.

    azureFilesAuthentication AccountAzureFilesAuthenticationArgs

    A azure_files_authentication block as defined below.

    blobProperties AccountBlobPropertiesArgs

    A blob_properties block as defined below.

    crossTenantReplicationEnabled Boolean

    Should cross Tenant replication be enabled? Defaults to true.

    customDomain AccountCustomDomainArgs

    A custom_domain block as documented below.

    customerManagedKey AccountCustomerManagedKeyArgs

    A customer_managed_key block as documented below.

    defaultToOauthAuthentication Boolean

    Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is false

    edgeZone String

    Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.

    enableHttpsTrafficOnly Boolean

    Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to true.

    identity AccountIdentityArgs

    An identity block as defined below.

    immutabilityPolicy AccountImmutabilityPolicyArgs

    An immutability_policy block as defined below. Changing this forces a new resource to be created.

    infrastructureEncryptionEnabled Boolean

    Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to false.

    isHnsEnabled Boolean

    Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.

    largeFileShareEnabled Boolean

    Is Large File Share Enabled?

    location String

    Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.

    minTlsVersion String

    The minimum supported TLS version for the storage account. Possible values are TLS1_0, TLS1_1, and TLS1_2. Defaults to TLS1_2 for new storage accounts.

    name String

    Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.

    networkRules AccountNetworkRulesArgs

    A network_rules block as documented below.

    nfsv3Enabled Boolean

    Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to false.

    primaryAccessKey String

    The primary access key for the storage account.

    primaryBlobConnectionString String

    The connection string associated with the primary blob location.

    primaryBlobEndpoint String

    The endpoint URL for blob storage in the primary location.

    primaryBlobHost String

    The hostname with port if applicable for blob storage in the primary location.

    primaryConnectionString String

    The connection string associated with the primary location.

    primaryDfsEndpoint String

    The endpoint URL for DFS storage in the primary location.

    primaryDfsHost String

    The hostname with port if applicable for DFS storage in the primary location.

    primaryFileEndpoint String

    The endpoint URL for file storage in the primary location.

    primaryFileHost String

    The hostname with port if applicable for file storage in the primary location.

    primaryLocation String

    The primary location of the storage account.

    primaryQueueEndpoint String

    The endpoint URL for queue storage in the primary location.

    primaryQueueHost String

    The hostname with port if applicable for queue storage in the primary location.

    primaryTableEndpoint String

    The endpoint URL for table storage in the primary location.

    primaryTableHost String

    The hostname with port if applicable for table storage in the primary location.

    primaryWebEndpoint String

    The endpoint URL for web storage in the primary location.

    primaryWebHost String

    The hostname with port if applicable for web storage in the primary location.

    publicNetworkAccessEnabled Boolean

    Whether the public network access is enabled? Defaults to true.

    queueEncryptionKeyType String

    The encryption type of the queue service. Possible values are Service and Account. Changing this forces a new resource to be created. Default value is Service.

    queueProperties AccountQueuePropertiesArgs

    A queue_properties block as defined below.

    resourceGroupName String

    The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.

    routing AccountRoutingArgs

    A routing block as defined below.

    sasPolicy AccountSasPolicyArgs

    A sas_policy block as defined below.

    secondaryAccessKey String

    The secondary access key for the storage account.

    secondaryBlobConnectionString String

    The connection string associated with the secondary blob location.

    secondaryBlobEndpoint String

    The endpoint URL for blob storage in the secondary location.

    secondaryBlobHost String

    The hostname with port if applicable for blob storage in the secondary location.

    secondaryConnectionString String

    The connection string associated with the secondary location.

    secondaryDfsEndpoint String

    The endpoint URL for DFS storage in the secondary location.

    secondaryDfsHost String

    The hostname with port if applicable for DFS storage in the secondary location.

    secondaryFileEndpoint String

    The endpoint URL for file storage in the secondary location.

    secondaryFileHost String

    The hostname with port if applicable for file storage in the secondary location.

    secondaryLocation String

    The secondary location of the storage account.

    secondaryQueueEndpoint String

    The endpoint URL for queue storage in the secondary location.

    secondaryQueueHost String

    The hostname with port if applicable for queue storage in the secondary location.

    secondaryTableEndpoint String

    The endpoint URL for table storage in the secondary location.

    secondaryTableHost String

    The hostname with port if applicable for table storage in the secondary location.

    secondaryWebEndpoint String

    The endpoint URL for web storage in the secondary location.

    secondaryWebHost String

    The hostname with port if applicable for web storage in the secondary location.

    sftpEnabled Boolean

    Boolean, enable SFTP for the storage account

    shareProperties AccountSharePropertiesArgs

    A share_properties block as defined below.

    sharedAccessKeyEnabled Boolean

    Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key. If false, then all requests, including shared access signatures, must be authorized with Azure Active Directory (Azure AD). The default value is true.

    staticWebsite AccountStaticWebsiteArgs

    A static_website block as defined below.

    tableEncryptionKeyType String

    The encryption type of the table service. Possible values are Service and Account. Changing this forces a new resource to be created. Default value is Service.

    tags Map<String,String>

    A mapping of tags to assign to the resource.

    accessTier string

    Defines the access tier for BlobStorage, FileStorage and StorageV2 accounts. Valid options are Hot and Cool, defaults to Hot.

    accountKind string

    Defines the Kind of account. Valid options are BlobStorage, BlockBlobStorage, FileStorage, Storage and StorageV2. Defaults to StorageV2.

    accountReplicationType string

    Defines the type of replication to use for this storage account. Valid options are LRS, GRS, RAGRS, ZRS, GZRS and RAGZRS.

    accountTier string

    Defines the Tier to use for this storage account. Valid options are Standard and Premium. For BlockBlobStorage and FileStorage accounts only Premium is valid. Changing this forces a new resource to be created.

    allowNestedItemsToBePublic boolean

    Allow or disallow nested items within this Account to opt into being public. Defaults to true.

    allowedCopyScope string

    Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are AAD and PrivateLink.

    azureFilesAuthentication AccountAzureFilesAuthenticationArgs

    A azure_files_authentication block as defined below.

    blobProperties AccountBlobPropertiesArgs

    A blob_properties block as defined below.

    crossTenantReplicationEnabled boolean

    Should cross Tenant replication be enabled? Defaults to true.

    customDomain AccountCustomDomainArgs

    A custom_domain block as documented below.

    customerManagedKey AccountCustomerManagedKeyArgs

    A customer_managed_key block as documented below.

    defaultToOauthAuthentication boolean

    Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is false

    edgeZone string

    Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.

    enableHttpsTrafficOnly boolean

    Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to true.

    identity AccountIdentityArgs

    An identity block as defined below.

    immutabilityPolicy AccountImmutabilityPolicyArgs

    An immutability_policy block as defined below. Changing this forces a new resource to be created.

    infrastructureEncryptionEnabled boolean

    Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to false.

    isHnsEnabled boolean

    Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.

    largeFileShareEnabled boolean

    Is Large File Share Enabled?

    location string

    Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.

    minTlsVersion string

    The minimum supported TLS version for the storage account. Possible values are TLS1_0, TLS1_1, and TLS1_2. Defaults to TLS1_2 for new storage accounts.

    name string

    Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.

    networkRules AccountNetworkRulesArgs

    A network_rules block as documented below.

    nfsv3Enabled boolean

    Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to false.

    primaryAccessKey string

    The primary access key for the storage account.

    primaryBlobConnectionString string

    The connection string associated with the primary blob location.

    primaryBlobEndpoint string

    The endpoint URL for blob storage in the primary location.

    primaryBlobHost string

    The hostname with port if applicable for blob storage in the primary location.

    primaryConnectionString string

    The connection string associated with the primary location.

    primaryDfsEndpoint string

    The endpoint URL for DFS storage in the primary location.

    primaryDfsHost string

    The hostname with port if applicable for DFS storage in the primary location.

    primaryFileEndpoint string

    The endpoint URL for file storage in the primary location.

    primaryFileHost string

    The hostname with port if applicable for file storage in the primary location.

    primaryLocation string

    The primary location of the storage account.

    primaryQueueEndpoint string

    The endpoint URL for queue storage in the primary location.

    primaryQueueHost string

    The hostname with port if applicable for queue storage in the primary location.

    primaryTableEndpoint string

    The endpoint URL for table storage in the primary location.

    primaryTableHost string

    The hostname with port if applicable for table storage in the primary location.

    primaryWebEndpoint string

    The endpoint URL for web storage in the primary location.

    primaryWebHost string

    The hostname with port if applicable for web storage in the primary location.

    publicNetworkAccessEnabled boolean

    Whether the public network access is enabled? Defaults to true.

    queueEncryptionKeyType string

    The encryption type of the queue service. Possible values are Service and Account. Changing this forces a new resource to be created. Default value is Service.

    queueProperties AccountQueuePropertiesArgs

    A queue_properties block as defined below.

    resourceGroupName string

    The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.

    routing AccountRoutingArgs

    A routing block as defined below.

    sasPolicy AccountSasPolicyArgs

    A sas_policy block as defined below.

    secondaryAccessKey string

    The secondary access key for the storage account.

    secondaryBlobConnectionString string

    The connection string associated with the secondary blob location.

    secondaryBlobEndpoint string

    The endpoint URL for blob storage in the secondary location.

    secondaryBlobHost string

    The hostname with port if applicable for blob storage in the secondary location.

    secondaryConnectionString string

    The connection string associated with the secondary location.

    secondaryDfsEndpoint string

    The endpoint URL for DFS storage in the secondary location.

    secondaryDfsHost string

    The hostname with port if applicable for DFS storage in the secondary location.

    secondaryFileEndpoint string

    The endpoint URL for file storage in the secondary location.

    secondaryFileHost string

    The hostname with port if applicable for file storage in the secondary location.

    secondaryLocation string

    The secondary location of the storage account.

    secondaryQueueEndpoint string

    The endpoint URL for queue storage in the secondary location.

    secondaryQueueHost string

    The hostname with port if applicable for queue storage in the secondary location.

    secondaryTableEndpoint string

    The endpoint URL for table storage in the secondary location.

    secondaryTableHost string

    The hostname with port if applicable for table storage in the secondary location.

    secondaryWebEndpoint string

    The endpoint URL for web storage in the secondary location.

    secondaryWebHost string

    The hostname with port if applicable for web storage in the secondary location.

    sftpEnabled boolean

    Boolean, enable SFTP for the storage account

    shareProperties AccountSharePropertiesArgs

    A share_properties block as defined below.

    sharedAccessKeyEnabled boolean

    Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key. If false, then all requests, including shared access signatures, must be authorized with Azure Active Directory (Azure AD). The default value is true.

    staticWebsite AccountStaticWebsiteArgs

    A static_website block as defined below.

    tableEncryptionKeyType string

    The encryption type of the table service. Possible values are Service and Account. Changing this forces a new resource to be created. Default value is Service.

    tags {[key: string]: string}

    A mapping of tags to assign to the resource.

    access_tier str

    Defines the access tier for BlobStorage, FileStorage and StorageV2 accounts. Valid options are Hot and Cool, defaults to Hot.

    account_kind str

    Defines the Kind of account. Valid options are BlobStorage, BlockBlobStorage, FileStorage, Storage and StorageV2. Defaults to StorageV2.

    account_replication_type str

    Defines the type of replication to use for this storage account. Valid options are LRS, GRS, RAGRS, ZRS, GZRS and RAGZRS.

    account_tier str

    Defines the Tier to use for this storage account. Valid options are Standard and Premium. For BlockBlobStorage and FileStorage accounts only Premium is valid. Changing this forces a new resource to be created.

    allow_nested_items_to_be_public bool

    Allow or disallow nested items within this Account to opt into being public. Defaults to true.

    allowed_copy_scope str

    Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are AAD and PrivateLink.

    azure_files_authentication AccountAzureFilesAuthenticationArgs

    A azure_files_authentication block as defined below.

    blob_properties AccountBlobPropertiesArgs

    A blob_properties block as defined below.

    cross_tenant_replication_enabled bool

    Should cross Tenant replication be enabled? Defaults to true.

    custom_domain AccountCustomDomainArgs

    A custom_domain block as documented below.

    customer_managed_key AccountCustomerManagedKeyArgs

    A customer_managed_key block as documented below.

    default_to_oauth_authentication bool

    Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is false

    edge_zone str

    Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.

    enable_https_traffic_only bool

    Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to true.

    identity AccountIdentityArgs

    An identity block as defined below.

    immutability_policy AccountImmutabilityPolicyArgs

    An immutability_policy block as defined below. Changing this forces a new resource to be created.

    infrastructure_encryption_enabled bool

    Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to false.

    is_hns_enabled bool

    Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.

    large_file_share_enabled bool

    Is Large File Share Enabled?

    location str

    Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.

    min_tls_version str

    The minimum supported TLS version for the storage account. Possible values are TLS1_0, TLS1_1, and TLS1_2. Defaults to TLS1_2 for new storage accounts.

    name str

    Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.

    network_rules AccountNetworkRulesArgs

    A network_rules block as documented below.

    nfsv3_enabled bool

    Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to false.

    primary_access_key str

    The primary access key for the storage account.

    primary_blob_connection_string str

    The connection string associated with the primary blob location.

    primary_blob_endpoint str

    The endpoint URL for blob storage in the primary location.

    primary_blob_host str

    The hostname with port if applicable for blob storage in the primary location.

    primary_connection_string str

    The connection string associated with the primary location.

    primary_dfs_endpoint str

    The endpoint URL for DFS storage in the primary location.

    primary_dfs_host str

    The hostname with port if applicable for DFS storage in the primary location.

    primary_file_endpoint str

    The endpoint URL for file storage in the primary location.

    primary_file_host str

    The hostname with port if applicable for file storage in the primary location.

    primary_location str

    The primary location of the storage account.

    primary_queue_endpoint str

    The endpoint URL for queue storage in the primary location.

    primary_queue_host str

    The hostname with port if applicable for queue storage in the primary location.

    primary_table_endpoint str

    The endpoint URL for table storage in the primary location.

    primary_table_host str

    The hostname with port if applicable for table storage in the primary location.

    primary_web_endpoint str

    The endpoint URL for web storage in the primary location.

    primary_web_host str

    The hostname with port if applicable for web storage in the primary location.

    public_network_access_enabled bool

    Whether the public network access is enabled? Defaults to true.

    queue_encryption_key_type str

    The encryption type of the queue service. Possible values are Service and Account. Changing this forces a new resource to be created. Default value is Service.

    queue_properties AccountQueuePropertiesArgs

    A queue_properties block as defined below.

    resource_group_name str

    The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.

    routing AccountRoutingArgs

    A routing block as defined below.

    sas_policy AccountSasPolicyArgs

    A sas_policy block as defined below.

    secondary_access_key str

    The secondary access key for the storage account.

    secondary_blob_connection_string str

    The connection string associated with the secondary blob location.

    secondary_blob_endpoint str

    The endpoint URL for blob storage in the secondary location.

    secondary_blob_host str

    The hostname with port if applicable for blob storage in the secondary location.

    secondary_connection_string str

    The connection string associated with the secondary location.

    secondary_dfs_endpoint str

    The endpoint URL for DFS storage in the secondary location.

    secondary_dfs_host str

    The hostname with port if applicable for DFS storage in the secondary location.

    secondary_file_endpoint str

    The endpoint URL for file storage in the secondary location.

    secondary_file_host str

    The hostname with port if applicable for file storage in the secondary location.

    secondary_location str

    The secondary location of the storage account.

    secondary_queue_endpoint str

    The endpoint URL for queue storage in the secondary location.

    secondary_queue_host str

    The hostname with port if applicable for queue storage in the secondary location.

    secondary_table_endpoint str

    The endpoint URL for table storage in the secondary location.

    secondary_table_host str

    The hostname with port if applicable for table storage in the secondary location.

    secondary_web_endpoint str

    The endpoint URL for web storage in the secondary location.

    secondary_web_host str

    The hostname with port if applicable for web storage in the secondary location.

    sftp_enabled bool

    Boolean, enable SFTP for the storage account

    share_properties AccountSharePropertiesArgs

    A share_properties block as defined below.

    shared_access_key_enabled bool

    Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key. If false, then all requests, including shared access signatures, must be authorized with Azure Active Directory (Azure AD). The default value is true.

    static_website AccountStaticWebsiteArgs

    A static_website block as defined below.

    table_encryption_key_type str

    The encryption type of the table service. Possible values are Service and Account. Changing this forces a new resource to be created. Default value is Service.

    tags Mapping[str, str]

    A mapping of tags to assign to the resource.

    accessTier String

    Defines the access tier for BlobStorage, FileStorage and StorageV2 accounts. Valid options are Hot and Cool, defaults to Hot.

    accountKind String

    Defines the Kind of account. Valid options are BlobStorage, BlockBlobStorage, FileStorage, Storage and StorageV2. Defaults to StorageV2.

    accountReplicationType String

    Defines the type of replication to use for this storage account. Valid options are LRS, GRS, RAGRS, ZRS, GZRS and RAGZRS.

    accountTier String

    Defines the Tier to use for this storage account. Valid options are Standard and Premium. For BlockBlobStorage and FileStorage accounts only Premium is valid. Changing this forces a new resource to be created.

    allowNestedItemsToBePublic Boolean

    Allow or disallow nested items within this Account to opt into being public. Defaults to true.

    allowedCopyScope String

    Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are AAD and PrivateLink.

    azureFilesAuthentication Property Map

    A azure_files_authentication block as defined below.

    blobProperties Property Map

    A blob_properties block as defined below.

    crossTenantReplicationEnabled Boolean

    Should cross Tenant replication be enabled? Defaults to true.

    customDomain Property Map

    A custom_domain block as documented below.

    customerManagedKey Property Map

    A customer_managed_key block as documented below.

    defaultToOauthAuthentication Boolean

    Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is false

    edgeZone String

    Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.

    enableHttpsTrafficOnly Boolean

    Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to true.

    identity Property Map

    An identity block as defined below.

    immutabilityPolicy Property Map

    An immutability_policy block as defined below. Changing this forces a new resource to be created.

    infrastructureEncryptionEnabled Boolean

    Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to false.

    isHnsEnabled Boolean

    Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.

    largeFileShareEnabled Boolean

    Is Large File Share Enabled?

    location String

    Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.

    minTlsVersion String

    The minimum supported TLS version for the storage account. Possible values are TLS1_0, TLS1_1, and TLS1_2. Defaults to TLS1_2 for new storage accounts.

    name String

    Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.

    networkRules Property Map

    A network_rules block as documented below.

    nfsv3Enabled Boolean

    Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to false.

    primaryAccessKey String

    The primary access key for the storage account.

    primaryBlobConnectionString String

    The connection string associated with the primary blob location.

    primaryBlobEndpoint String

    The endpoint URL for blob storage in the primary location.

    primaryBlobHost String

    The hostname with port if applicable for blob storage in the primary location.

    primaryConnectionString String

    The connection string associated with the primary location.

    primaryDfsEndpoint String

    The endpoint URL for DFS storage in the primary location.

    primaryDfsHost String

    The hostname with port if applicable for DFS storage in the primary location.

    primaryFileEndpoint String

    The endpoint URL for file storage in the primary location.

    primaryFileHost String

    The hostname with port if applicable for file storage in the primary location.

    primaryLocation String

    The primary location of the storage account.

    primaryQueueEndpoint String

    The endpoint URL for queue storage in the primary location.

    primaryQueueHost String

    The hostname with port if applicable for queue storage in the primary location.

    primaryTableEndpoint String

    The endpoint URL for table storage in the primary location.

    primaryTableHost String

    The hostname with port if applicable for table storage in the primary location.

    primaryWebEndpoint String

    The endpoint URL for web storage in the primary location.

    primaryWebHost String

    The hostname with port if applicable for web storage in the primary location.

    publicNetworkAccessEnabled Boolean

    Whether the public network access is enabled? Defaults to true.

    queueEncryptionKeyType String

    The encryption type of the queue service. Possible values are Service and Account. Changing this forces a new resource to be created. Default value is Service.

    queueProperties Property Map

    A queue_properties block as defined below.

    resourceGroupName String

    The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.

    routing Property Map

    A routing block as defined below.

    sasPolicy Property Map

    A sas_policy block as defined below.

    secondaryAccessKey String

    The secondary access key for the storage account.

    secondaryBlobConnectionString String

    The connection string associated with the secondary blob location.

    secondaryBlobEndpoint String

    The endpoint URL for blob storage in the secondary location.

    secondaryBlobHost String

    The hostname with port if applicable for blob storage in the secondary location.

    secondaryConnectionString String

    The connection string associated with the secondary location.

    secondaryDfsEndpoint String

    The endpoint URL for DFS storage in the secondary location.

    secondaryDfsHost String

    The hostname with port if applicable for DFS storage in the secondary location.

    secondaryFileEndpoint String

    The endpoint URL for file storage in the secondary location.

    secondaryFileHost String

    The hostname with port if applicable for file storage in the secondary location.

    secondaryLocation String

    The secondary location of the storage account.

    secondaryQueueEndpoint String

    The endpoint URL for queue storage in the secondary location.

    secondaryQueueHost String

    The hostname with port if applicable for queue storage in the secondary location.

    secondaryTableEndpoint String

    The endpoint URL for table storage in the secondary location.

    secondaryTableHost String

    The hostname with port if applicable for table storage in the secondary location.

    secondaryWebEndpoint String

    The endpoint URL for web storage in the secondary location.

    secondaryWebHost String

    The hostname with port if applicable for web storage in the secondary location.

    sftpEnabled Boolean

    Boolean, enable SFTP for the storage account

    shareProperties Property Map

    A share_properties block as defined below.

    sharedAccessKeyEnabled Boolean

    Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key. If false, then all requests, including shared access signatures, must be authorized with Azure Active Directory (Azure AD). The default value is true.

    staticWebsite Property Map

    A static_website block as defined below.

    tableEncryptionKeyType String

    The encryption type of the table service. Possible values are Service and Account. Changing this forces a new resource to be created. Default value is Service.

    tags Map<String>

    A mapping of tags to assign to the resource.

    Supporting Types

    AccountAzureFilesAuthentication

    DirectoryType string

    Specifies the directory service used. Possible values are AADDS, AD and AADKERB.

    ActiveDirectory AccountAzureFilesAuthenticationActiveDirectory

    A active_directory block as defined below. Required when directory_type is AD.

    DirectoryType string

    Specifies the directory service used. Possible values are AADDS, AD and AADKERB.

    ActiveDirectory AccountAzureFilesAuthenticationActiveDirectory

    A active_directory block as defined below. Required when directory_type is AD.

    directoryType String

    Specifies the directory service used. Possible values are AADDS, AD and AADKERB.

    activeDirectory AccountAzureFilesAuthenticationActiveDirectory

    A active_directory block as defined below. Required when directory_type is AD.

    directoryType string

    Specifies the directory service used. Possible values are AADDS, AD and AADKERB.

    activeDirectory AccountAzureFilesAuthenticationActiveDirectory

    A active_directory block as defined below. Required when directory_type is AD.

    directory_type str

    Specifies the directory service used. Possible values are AADDS, AD and AADKERB.

    active_directory AccountAzureFilesAuthenticationActiveDirectory

    A active_directory block as defined below. Required when directory_type is AD.

    directoryType String

    Specifies the directory service used. Possible values are AADDS, AD and AADKERB.

    activeDirectory Property Map

    A active_directory block as defined below. Required when directory_type is AD.

    AccountAzureFilesAuthenticationActiveDirectory

    DomainGuid string

    Specifies the domain GUID.

    DomainName string

    Specifies the primary domain that the AD DNS server is authoritative for.

    DomainSid string

    Specifies the security identifier (SID).

    ForestName string

    Specifies the Active Directory forest.

    NetbiosDomainName string

    Specifies the NetBIOS domain name.

    StorageSid string

    Specifies the security identifier (SID) for Azure Storage.

    DomainGuid string

    Specifies the domain GUID.

    DomainName string

    Specifies the primary domain that the AD DNS server is authoritative for.

    DomainSid string

    Specifies the security identifier (SID).

    ForestName string

    Specifies the Active Directory forest.

    NetbiosDomainName string

    Specifies the NetBIOS domain name.

    StorageSid string

    Specifies the security identifier (SID) for Azure Storage.

    domainGuid String

    Specifies the domain GUID.

    domainName String

    Specifies the primary domain that the AD DNS server is authoritative for.

    domainSid String

    Specifies the security identifier (SID).

    forestName String

    Specifies the Active Directory forest.

    netbiosDomainName String

    Specifies the NetBIOS domain name.

    storageSid String

    Specifies the security identifier (SID) for Azure Storage.

    domainGuid string

    Specifies the domain GUID.

    domainName string

    Specifies the primary domain that the AD DNS server is authoritative for.

    domainSid string

    Specifies the security identifier (SID).

    forestName string

    Specifies the Active Directory forest.

    netbiosDomainName string

    Specifies the NetBIOS domain name.

    storageSid string

    Specifies the security identifier (SID) for Azure Storage.

    domain_guid str

    Specifies the domain GUID.

    domain_name str

    Specifies the primary domain that the AD DNS server is authoritative for.

    domain_sid str

    Specifies the security identifier (SID).

    forest_name str

    Specifies the Active Directory forest.

    netbios_domain_name str

    Specifies the NetBIOS domain name.

    storage_sid str

    Specifies the security identifier (SID) for Azure Storage.

    domainGuid String

    Specifies the domain GUID.

    domainName String

    Specifies the primary domain that the AD DNS server is authoritative for.

    domainSid String

    Specifies the security identifier (SID).

    forestName String

    Specifies the Active Directory forest.

    netbiosDomainName String

    Specifies the NetBIOS domain name.

    storageSid String

    Specifies the security identifier (SID) for Azure Storage.

    AccountBlobProperties

    ChangeFeedEnabled bool

    Is the blob service properties for change feed events enabled? Default to false.

    ChangeFeedRetentionInDays int

    The duration of change feed events retention in days. The possible values are between 1 and 146000 days (400 years). Setting this to null (or omit this in the configuration file) indicates an infinite retention of the change feed.

    ContainerDeleteRetentionPolicy AccountBlobPropertiesContainerDeleteRetentionPolicy

    A container_delete_retention_policy block as defined below.

    CorsRules List<AccountBlobPropertiesCorsRule>

    A cors_rule block as defined below.

    DefaultServiceVersion string

    The API Version which should be used by default for requests to the Data Plane API if an incoming request doesn't specify an API Version.

    DeleteRetentionPolicy AccountBlobPropertiesDeleteRetentionPolicy

    A delete_retention_policy block as defined below.

    LastAccessTimeEnabled bool

    Is the last access time based tracking enabled? Default to false.

    RestorePolicy AccountBlobPropertiesRestorePolicy

    A restore_policy block as defined below. This must be used together with delete_retention_policy set, versioning_enabled and change_feed_enabled set to true.

    VersioningEnabled bool

    Is versioning enabled? Default to false.

    ChangeFeedEnabled bool

    Is the blob service properties for change feed events enabled? Default to false.

    ChangeFeedRetentionInDays int

    The duration of change feed events retention in days. The possible values are between 1 and 146000 days (400 years). Setting this to null (or omit this in the configuration file) indicates an infinite retention of the change feed.

    ContainerDeleteRetentionPolicy AccountBlobPropertiesContainerDeleteRetentionPolicy

    A container_delete_retention_policy block as defined below.

    CorsRules []AccountBlobPropertiesCorsRule

    A cors_rule block as defined below.

    DefaultServiceVersion string

    The API Version which should be used by default for requests to the Data Plane API if an incoming request doesn't specify an API Version.

    DeleteRetentionPolicy AccountBlobPropertiesDeleteRetentionPolicy

    A delete_retention_policy block as defined below.

    LastAccessTimeEnabled bool

    Is the last access time based tracking enabled? Default to false.

    RestorePolicy AccountBlobPropertiesRestorePolicy

    A restore_policy block as defined below. This must be used together with delete_retention_policy set, versioning_enabled and change_feed_enabled set to true.

    VersioningEnabled bool

    Is versioning enabled? Default to false.

    changeFeedEnabled Boolean

    Is the blob service properties for change feed events enabled? Default to false.

    changeFeedRetentionInDays Integer

    The duration of change feed events retention in days. The possible values are between 1 and 146000 days (400 years). Setting this to null (or omit this in the configuration file) indicates an infinite retention of the change feed.

    containerDeleteRetentionPolicy AccountBlobPropertiesContainerDeleteRetentionPolicy

    A container_delete_retention_policy block as defined below.

    corsRules List<AccountBlobPropertiesCorsRule>

    A cors_rule block as defined below.

    defaultServiceVersion String

    The API Version which should be used by default for requests to the Data Plane API if an incoming request doesn't specify an API Version.

    deleteRetentionPolicy AccountBlobPropertiesDeleteRetentionPolicy

    A delete_retention_policy block as defined below.

    lastAccessTimeEnabled Boolean

    Is the last access time based tracking enabled? Default to false.

    restorePolicy AccountBlobPropertiesRestorePolicy

    A restore_policy block as defined below. This must be used together with delete_retention_policy set, versioning_enabled and change_feed_enabled set to true.

    versioningEnabled Boolean

    Is versioning enabled? Default to false.

    changeFeedEnabled boolean

    Is the blob service properties for change feed events enabled? Default to false.

    changeFeedRetentionInDays number

    The duration of change feed events retention in days. The possible values are between 1 and 146000 days (400 years). Setting this to null (or omit this in the configuration file) indicates an infinite retention of the change feed.

    containerDeleteRetentionPolicy AccountBlobPropertiesContainerDeleteRetentionPolicy

    A container_delete_retention_policy block as defined below.

    corsRules AccountBlobPropertiesCorsRule[]

    A cors_rule block as defined below.

    defaultServiceVersion string

    The API Version which should be used by default for requests to the Data Plane API if an incoming request doesn't specify an API Version.

    deleteRetentionPolicy AccountBlobPropertiesDeleteRetentionPolicy

    A delete_retention_policy block as defined below.

    lastAccessTimeEnabled boolean

    Is the last access time based tracking enabled? Default to false.

    restorePolicy AccountBlobPropertiesRestorePolicy

    A restore_policy block as defined below. This must be used together with delete_retention_policy set, versioning_enabled and change_feed_enabled set to true.

    versioningEnabled boolean

    Is versioning enabled? Default to false.

    change_feed_enabled bool

    Is the blob service properties for change feed events enabled? Default to false.

    change_feed_retention_in_days int

    The duration of change feed events retention in days. The possible values are between 1 and 146000 days (400 years). Setting this to null (or omit this in the configuration file) indicates an infinite retention of the change feed.

    container_delete_retention_policy AccountBlobPropertiesContainerDeleteRetentionPolicy

    A container_delete_retention_policy block as defined below.

    cors_rules Sequence[AccountBlobPropertiesCorsRule]

    A cors_rule block as defined below.

    default_service_version str

    The API Version which should be used by default for requests to the Data Plane API if an incoming request doesn't specify an API Version.

    delete_retention_policy AccountBlobPropertiesDeleteRetentionPolicy

    A delete_retention_policy block as defined below.

    last_access_time_enabled bool

    Is the last access time based tracking enabled? Default to false.

    restore_policy AccountBlobPropertiesRestorePolicy

    A restore_policy block as defined below. This must be used together with delete_retention_policy set, versioning_enabled and change_feed_enabled set to true.

    versioning_enabled bool

    Is versioning enabled? Default to false.

    changeFeedEnabled Boolean

    Is the blob service properties for change feed events enabled? Default to false.

    changeFeedRetentionInDays Number

    The duration of change feed events retention in days. The possible values are between 1 and 146000 days (400 years). Setting this to null (or omit this in the configuration file) indicates an infinite retention of the change feed.

    containerDeleteRetentionPolicy Property Map

    A container_delete_retention_policy block as defined below.

    corsRules List<Property Map>

    A cors_rule block as defined below.

    defaultServiceVersion String

    The API Version which should be used by default for requests to the Data Plane API if an incoming request doesn't specify an API Version.

    deleteRetentionPolicy Property Map

    A delete_retention_policy block as defined below.

    lastAccessTimeEnabled Boolean

    Is the last access time based tracking enabled? Default to false.

    restorePolicy Property Map

    A restore_policy block as defined below. This must be used together with delete_retention_policy set, versioning_enabled and change_feed_enabled set to true.

    versioningEnabled Boolean

    Is versioning enabled? Default to false.

    AccountBlobPropertiesContainerDeleteRetentionPolicy

    Days int

    Specifies the number of days that the container should be retained, between 1 and 365 days. Defaults to 7.

    Days int

    Specifies the number of days that the container should be retained, between 1 and 365 days. Defaults to 7.

    days Integer

    Specifies the number of days that the container should be retained, between 1 and 365 days. Defaults to 7.

    days number

    Specifies the number of days that the container should be retained, between 1 and 365 days. Defaults to 7.

    days int

    Specifies the number of days that the container should be retained, between 1 and 365 days. Defaults to 7.

    days Number

    Specifies the number of days that the container should be retained, between 1 and 365 days. Defaults to 7.

    AccountBlobPropertiesCorsRule

    AllowedHeaders List<string>

    A list of headers that are allowed to be a part of the cross-origin request.

    AllowedMethods List<string>

    A list of HTTP methods that are allowed to be executed by the origin. Valid options are DELETE, GET, HEAD, MERGE, POST, OPTIONS, PUT or PATCH.

    AllowedOrigins List<string>

    A list of origin domains that will be allowed by CORS.

    ExposedHeaders List<string>

    A list of response headers that are exposed to CORS clients.

    MaxAgeInSeconds int

    The number of seconds the client should cache a preflight response.

    AllowedHeaders []string

    A list of headers that are allowed to be a part of the cross-origin request.

    AllowedMethods []string

    A list of HTTP methods that are allowed to be executed by the origin. Valid options are DELETE, GET, HEAD, MERGE, POST, OPTIONS, PUT or PATCH.

    AllowedOrigins []string

    A list of origin domains that will be allowed by CORS.

    ExposedHeaders []string

    A list of response headers that are exposed to CORS clients.

    MaxAgeInSeconds int

    The number of seconds the client should cache a preflight response.

    allowedHeaders List<String>

    A list of headers that are allowed to be a part of the cross-origin request.

    allowedMethods List<String>

    A list of HTTP methods that are allowed to be executed by the origin. Valid options are DELETE, GET, HEAD, MERGE, POST, OPTIONS, PUT or PATCH.

    allowedOrigins List<String>

    A list of origin domains that will be allowed by CORS.

    exposedHeaders List<String>

    A list of response headers that are exposed to CORS clients.

    maxAgeInSeconds Integer

    The number of seconds the client should cache a preflight response.

    allowedHeaders string[]

    A list of headers that are allowed to be a part of the cross-origin request.

    allowedMethods string[]

    A list of HTTP methods that are allowed to be executed by the origin. Valid options are DELETE, GET, HEAD, MERGE, POST, OPTIONS, PUT or PATCH.

    allowedOrigins string[]

    A list of origin domains that will be allowed by CORS.

    exposedHeaders string[]

    A list of response headers that are exposed to CORS clients.

    maxAgeInSeconds number

    The number of seconds the client should cache a preflight response.

    allowed_headers Sequence[str]

    A list of headers that are allowed to be a part of the cross-origin request.

    allowed_methods Sequence[str]

    A list of HTTP methods that are allowed to be executed by the origin. Valid options are DELETE, GET, HEAD, MERGE, POST, OPTIONS, PUT or PATCH.

    allowed_origins Sequence[str]

    A list of origin domains that will be allowed by CORS.

    exposed_headers Sequence[str]

    A list of response headers that are exposed to CORS clients.

    max_age_in_seconds int

    The number of seconds the client should cache a preflight response.

    allowedHeaders List<String>

    A list of headers that are allowed to be a part of the cross-origin request.

    allowedMethods List<String>

    A list of HTTP methods that are allowed to be executed by the origin. Valid options are DELETE, GET, HEAD, MERGE, POST, OPTIONS, PUT or PATCH.

    allowedOrigins List<String>

    A list of origin domains that will be allowed by CORS.

    exposedHeaders List<String>

    A list of response headers that are exposed to CORS clients.

    maxAgeInSeconds Number

    The number of seconds the client should cache a preflight response.

    AccountBlobPropertiesDeleteRetentionPolicy

    Days int

    Specifies the number of days that the blob should be retained, between 1 and 365 days. Defaults to 7.

    Days int

    Specifies the number of days that the blob should be retained, between 1 and 365 days. Defaults to 7.

    days Integer

    Specifies the number of days that the blob should be retained, between 1 and 365 days. Defaults to 7.

    days number

    Specifies the number of days that the blob should be retained, between 1 and 365 days. Defaults to 7.

    days int

    Specifies the number of days that the blob should be retained, between 1 and 365 days. Defaults to 7.

    days Number

    Specifies the number of days that the blob should be retained, between 1 and 365 days. Defaults to 7.

    AccountBlobPropertiesRestorePolicy

    Days int

    Specifies the number of days that the blob can be restored, between 1 and 365 days. This must be less than the days specified for delete_retention_policy.

    Days int

    Specifies the number of days that the blob can be restored, between 1 and 365 days. This must be less than the days specified for delete_retention_policy.

    days Integer

    Specifies the number of days that the blob can be restored, between 1 and 365 days. This must be less than the days specified for delete_retention_policy.

    days number

    Specifies the number of days that the blob can be restored, between 1 and 365 days. This must be less than the days specified for delete_retention_policy.

    days int

    Specifies the number of days that the blob can be restored, between 1 and 365 days. This must be less than the days specified for delete_retention_policy.

    days Number

    Specifies the number of days that the blob can be restored, between 1 and 365 days. This must be less than the days specified for delete_retention_policy.

    AccountCustomDomain

    Name string

    The Custom Domain Name to use for the Storage Account, which will be validated by Azure.

    UseSubdomain bool

    Should the Custom Domain Name be validated by using indirect CNAME validation?

    Name string

    The Custom Domain Name to use for the Storage Account, which will be validated by Azure.

    UseSubdomain bool

    Should the Custom Domain Name be validated by using indirect CNAME validation?

    name String

    The Custom Domain Name to use for the Storage Account, which will be validated by Azure.

    useSubdomain Boolean

    Should the Custom Domain Name be validated by using indirect CNAME validation?

    name string

    The Custom Domain Name to use for the Storage Account, which will be validated by Azure.

    useSubdomain boolean

    Should the Custom Domain Name be validated by using indirect CNAME validation?

    name str

    The Custom Domain Name to use for the Storage Account, which will be validated by Azure.

    use_subdomain bool

    Should the Custom Domain Name be validated by using indirect CNAME validation?

    name String

    The Custom Domain Name to use for the Storage Account, which will be validated by Azure.

    useSubdomain Boolean

    Should the Custom Domain Name be validated by using indirect CNAME validation?

    AccountCustomerManagedKey

    KeyVaultKeyId string

    The ID of the Key Vault Key, supplying a version-less key ID will enable auto-rotation of this key.

    UserAssignedIdentityId string

    The ID of a user assigned identity.

    KeyVaultKeyId string

    The ID of the Key Vault Key, supplying a version-less key ID will enable auto-rotation of this key.

    UserAssignedIdentityId string

    The ID of a user assigned identity.

    keyVaultKeyId String

    The ID of the Key Vault Key, supplying a version-less key ID will enable auto-rotation of this key.

    userAssignedIdentityId String

    The ID of a user assigned identity.

    keyVaultKeyId string

    The ID of the Key Vault Key, supplying a version-less key ID will enable auto-rotation of this key.

    userAssignedIdentityId string

    The ID of a user assigned identity.

    key_vault_key_id str

    The ID of the Key Vault Key, supplying a version-less key ID will enable auto-rotation of this key.

    user_assigned_identity_id str

    The ID of a user assigned identity.

    keyVaultKeyId String

    The ID of the Key Vault Key, supplying a version-less key ID will enable auto-rotation of this key.

    userAssignedIdentityId String

    The ID of a user assigned identity.

    AccountIdentity

    Type string

    Specifies the type of Managed Service Identity that should be configured on this Storage Account. Possible values are SystemAssigned, UserAssigned, SystemAssigned, UserAssigned (to enable both).

    IdentityIds List<string>

    Specifies a list of User Assigned Managed Identity IDs to be assigned to this Storage Account.

    PrincipalId string

    The Principal ID for the Service Principal associated with the Identity of this Storage Account.

    TenantId string

    The Tenant ID for the Service Principal associated with the Identity of this Storage Account.

    Type string

    Specifies the type of Managed Service Identity that should be configured on this Storage Account. Possible values are SystemAssigned, UserAssigned, SystemAssigned, UserAssigned (to enable both).

    IdentityIds []string

    Specifies a list of User Assigned Managed Identity IDs to be assigned to this Storage Account.

    PrincipalId string

    The Principal ID for the Service Principal associated with the Identity of this Storage Account.

    TenantId string

    The Tenant ID for the Service Principal associated with the Identity of this Storage Account.

    type String

    Specifies the type of Managed Service Identity that should be configured on this Storage Account. Possible values are SystemAssigned, UserAssigned, SystemAssigned, UserAssigned (to enable both).

    identityIds List<String>

    Specifies a list of User Assigned Managed Identity IDs to be assigned to this Storage Account.

    principalId String

    The Principal ID for the Service Principal associated with the Identity of this Storage Account.

    tenantId String

    The Tenant ID for the Service Principal associated with the Identity of this Storage Account.

    type string

    Specifies the type of Managed Service Identity that should be configured on this Storage Account. Possible values are SystemAssigned, UserAssigned, SystemAssigned, UserAssigned (to enable both).

    identityIds string[]

    Specifies a list of User Assigned Managed Identity IDs to be assigned to this Storage Account.

    principalId string

    The Principal ID for the Service Principal associated with the Identity of this Storage Account.

    tenantId string

    The Tenant ID for the Service Principal associated with the Identity of this Storage Account.

    type str

    Specifies the type of Managed Service Identity that should be configured on this Storage Account. Possible values are SystemAssigned, UserAssigned, SystemAssigned, UserAssigned (to enable both).

    identity_ids Sequence[str]

    Specifies a list of User Assigned Managed Identity IDs to be assigned to this Storage Account.

    principal_id str

    The Principal ID for the Service Principal associated with the Identity of this Storage Account.

    tenant_id str

    The Tenant ID for the Service Principal associated with the Identity of this Storage Account.

    type String

    Specifies the type of Managed Service Identity that should be configured on this Storage Account. Possible values are SystemAssigned, UserAssigned, SystemAssigned, UserAssigned (to enable both).

    identityIds List<String>

    Specifies a list of User Assigned Managed Identity IDs to be assigned to this Storage Account.

    principalId String

    The Principal ID for the Service Principal associated with the Identity of this Storage Account.

    tenantId String

    The Tenant ID for the Service Principal associated with the Identity of this Storage Account.

    AccountImmutabilityPolicy

    AllowProtectedAppendWrites bool

    When enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted.

    PeriodSinceCreationInDays int

    The immutability period for the blobs in the container since the policy creation, in days.

    State string

    Defines the mode of the policy. Disabled state disables the policy, Unlocked state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property, Locked state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted.

    AllowProtectedAppendWrites bool

    When enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted.

    PeriodSinceCreationInDays int

    The immutability period for the blobs in the container since the policy creation, in days.

    State string

    Defines the mode of the policy. Disabled state disables the policy, Unlocked state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property, Locked state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted.

    allowProtectedAppendWrites Boolean

    When enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted.

    periodSinceCreationInDays Integer

    The immutability period for the blobs in the container since the policy creation, in days.

    state String

    Defines the mode of the policy. Disabled state disables the policy, Unlocked state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property, Locked state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted.

    allowProtectedAppendWrites boolean

    When enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted.

    periodSinceCreationInDays number

    The immutability period for the blobs in the container since the policy creation, in days.

    state string

    Defines the mode of the policy. Disabled state disables the policy, Unlocked state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property, Locked state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted.

    allow_protected_append_writes bool

    When enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted.

    period_since_creation_in_days int

    The immutability period for the blobs in the container since the policy creation, in days.

    state str

    Defines the mode of the policy. Disabled state disables the policy, Unlocked state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property, Locked state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted.

    allowProtectedAppendWrites Boolean

    When enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted.

    periodSinceCreationInDays Number

    The immutability period for the blobs in the container since the policy creation, in days.

    state String

    Defines the mode of the policy. Disabled state disables the policy, Unlocked state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property, Locked state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted.

    AccountNetworkRules

    DefaultAction string

    Specifies the default action of allow or deny when no other rules match. Valid options are Deny or Allow.

    Bypasses List<string>

    Specifies whether traffic is bypassed for Logging/Metrics/AzureServices. Valid options are any combination of Logging, Metrics, AzureServices, or None.

    IpRules List<string>

    List of public IP or IP ranges in CIDR Format. Only IPv4 addresses are allowed. /31 CIDRs, /32 CIDRs, and Private IP address ranges (as defined in RFC 1918), are not allowed.

    PrivateLinkAccesses List<AccountNetworkRulesPrivateLinkAccess>

    One or More private_link_access block as defined below.

    VirtualNetworkSubnetIds List<string>

    A list of resource ids for subnets.

    DefaultAction string

    Specifies the default action of allow or deny when no other rules match. Valid options are Deny or Allow.

    Bypasses []string

    Specifies whether traffic is bypassed for Logging/Metrics/AzureServices. Valid options are any combination of Logging, Metrics, AzureServices, or None.

    IpRules []string

    List of public IP or IP ranges in CIDR Format. Only IPv4 addresses are allowed. /31 CIDRs, /32 CIDRs, and Private IP address ranges (as defined in RFC 1918), are not allowed.

    PrivateLinkAccesses []AccountNetworkRulesPrivateLinkAccess

    One or More private_link_access block as defined below.

    VirtualNetworkSubnetIds []string

    A list of resource ids for subnets.

    defaultAction String

    Specifies the default action of allow or deny when no other rules match. Valid options are Deny or Allow.

    bypasses List<String>

    Specifies whether traffic is bypassed for Logging/Metrics/AzureServices. Valid options are any combination of Logging, Metrics, AzureServices, or None.

    ipRules List<String>

    List of public IP or IP ranges in CIDR Format. Only IPv4 addresses are allowed. /31 CIDRs, /32 CIDRs, and Private IP address ranges (as defined in RFC 1918), are not allowed.

    privateLinkAccesses List<AccountNetworkRulesPrivateLinkAccess>

    One or More private_link_access block as defined below.

    virtualNetworkSubnetIds List<String>

    A list of resource ids for subnets.

    defaultAction string

    Specifies the default action of allow or deny when no other rules match. Valid options are Deny or Allow.

    bypasses string[]

    Specifies whether traffic is bypassed for Logging/Metrics/AzureServices. Valid options are any combination of Logging, Metrics, AzureServices, or None.

    ipRules string[]

    List of public IP or IP ranges in CIDR Format. Only IPv4 addresses are allowed. /31 CIDRs, /32 CIDRs, and Private IP address ranges (as defined in RFC 1918), are not allowed.

    privateLinkAccesses AccountNetworkRulesPrivateLinkAccess[]

    One or More private_link_access block as defined below.

    virtualNetworkSubnetIds string[]

    A list of resource ids for subnets.

    default_action str

    Specifies the default action of allow or deny when no other rules match. Valid options are Deny or Allow.

    bypasses Sequence[str]

    Specifies whether traffic is bypassed for Logging/Metrics/AzureServices. Valid options are any combination of Logging, Metrics, AzureServices, or None.

    ip_rules Sequence[str]

    List of public IP or IP ranges in CIDR Format. Only IPv4 addresses are allowed. /31 CIDRs, /32 CIDRs, and Private IP address ranges (as defined in RFC 1918), are not allowed.

    private_link_accesses Sequence[AccountNetworkRulesPrivateLinkAccess]

    One or More private_link_access block as defined below.

    virtual_network_subnet_ids Sequence[str]

    A list of resource ids for subnets.

    defaultAction String

    Specifies the default action of allow or deny when no other rules match. Valid options are Deny or Allow.

    bypasses List<String>

    Specifies whether traffic is bypassed for Logging/Metrics/AzureServices. Valid options are any combination of Logging, Metrics, AzureServices, or None.

    ipRules List<String>

    List of public IP or IP ranges in CIDR Format. Only IPv4 addresses are allowed. /31 CIDRs, /32 CIDRs, and Private IP address ranges (as defined in RFC 1918), are not allowed.

    privateLinkAccesses List<Property Map>

    One or More private_link_access block as defined below.

    virtualNetworkSubnetIds List<String>

    A list of resource ids for subnets.

    AccountNetworkRulesPrivateLinkAccess

    EndpointResourceId string

    The resource id of the resource access rule to be granted access.

    EndpointTenantId string

    The tenant id of the resource of the resource access rule to be granted access. Defaults to the current tenant id.

    EndpointResourceId string

    The resource id of the resource access rule to be granted access.

    EndpointTenantId string

    The tenant id of the resource of the resource access rule to be granted access. Defaults to the current tenant id.

    endpointResourceId String

    The resource id of the resource access rule to be granted access.

    endpointTenantId String

    The tenant id of the resource of the resource access rule to be granted access. Defaults to the current tenant id.

    endpointResourceId string

    The resource id of the resource access rule to be granted access.

    endpointTenantId string

    The tenant id of the resource of the resource access rule to be granted access. Defaults to the current tenant id.

    endpoint_resource_id str

    The resource id of the resource access rule to be granted access.

    endpoint_tenant_id str

    The tenant id of the resource of the resource access rule to be granted access. Defaults to the current tenant id.

    endpointResourceId String

    The resource id of the resource access rule to be granted access.

    endpointTenantId String

    The tenant id of the resource of the resource access rule to be granted access. Defaults to the current tenant id.

    AccountQueueProperties

    CorsRules List<AccountQueuePropertiesCorsRule>

    A cors_rule block as defined above.

    HourMetrics AccountQueuePropertiesHourMetrics

    A hour_metrics block as defined below.

    Logging AccountQueuePropertiesLogging

    A logging block as defined below.

    MinuteMetrics AccountQueuePropertiesMinuteMetrics

    A minute_metrics block as defined below.

    CorsRules []AccountQueuePropertiesCorsRule

    A cors_rule block as defined above.

    HourMetrics AccountQueuePropertiesHourMetrics

    A hour_metrics block as defined below.

    Logging AccountQueuePropertiesLogging

    A logging block as defined below.

    MinuteMetrics AccountQueuePropertiesMinuteMetrics

    A minute_metrics block as defined below.

    corsRules List<AccountQueuePropertiesCorsRule>

    A cors_rule block as defined above.

    hourMetrics AccountQueuePropertiesHourMetrics

    A hour_metrics block as defined below.

    logging AccountQueuePropertiesLogging

    A logging block as defined below.

    minuteMetrics AccountQueuePropertiesMinuteMetrics

    A minute_metrics block as defined below.

    corsRules AccountQueuePropertiesCorsRule[]

    A cors_rule block as defined above.

    hourMetrics AccountQueuePropertiesHourMetrics

    A hour_metrics block as defined below.

    logging AccountQueuePropertiesLogging

    A logging block as defined below.

    minuteMetrics AccountQueuePropertiesMinuteMetrics

    A minute_metrics block as defined below.

    cors_rules Sequence[AccountQueuePropertiesCorsRule]

    A cors_rule block as defined above.

    hour_metrics AccountQueuePropertiesHourMetrics

    A hour_metrics block as defined below.

    logging AccountQueuePropertiesLogging

    A logging block as defined below.

    minute_metrics AccountQueuePropertiesMinuteMetrics

    A minute_metrics block as defined below.

    corsRules List<Property Map>

    A cors_rule block as defined above.

    hourMetrics Property Map

    A hour_metrics block as defined below.

    logging Property Map

    A logging block as defined below.

    minuteMetrics Property Map

    A minute_metrics block as defined below.

    AccountQueuePropertiesCorsRule

    AllowedHeaders List<string>

    A list of headers that are allowed to be a part of the cross-origin request.

    AllowedMethods List<string>

    A list of HTTP methods that are allowed to be executed by the origin. Valid options are DELETE, GET, HEAD, MERGE, POST, OPTIONS, PUT or PATCH.

    AllowedOrigins List<string>

    A list of origin domains that will be allowed by CORS.

    ExposedHeaders List<string>

    A list of response headers that are exposed to CORS clients.

    MaxAgeInSeconds int

    The number of seconds the client should cache a preflight response.

    AllowedHeaders []string

    A list of headers that are allowed to be a part of the cross-origin request.

    AllowedMethods []string

    A list of HTTP methods that are allowed to be executed by the origin. Valid options are DELETE, GET, HEAD, MERGE, POST, OPTIONS, PUT or PATCH.

    AllowedOrigins []string

    A list of origin domains that will be allowed by CORS.

    ExposedHeaders []string

    A list of response headers that are exposed to CORS clients.

    MaxAgeInSeconds int

    The number of seconds the client should cache a preflight response.

    allowedHeaders List<String>

    A list of headers that are allowed to be a part of the cross-origin request.

    allowedMethods List<String>

    A list of HTTP methods that are allowed to be executed by the origin. Valid options are DELETE, GET, HEAD, MERGE, POST, OPTIONS, PUT or PATCH.

    allowedOrigins List<String>

    A list of origin domains that will be allowed by CORS.

    exposedHeaders List<String>

    A list of response headers that are exposed to CORS clients.

    maxAgeInSeconds Integer

    The number of seconds the client should cache a preflight response.

    allowedHeaders string[]

    A list of headers that are allowed to be a part of the cross-origin request.

    allowedMethods string[]

    A list of HTTP methods that are allowed to be executed by the origin. Valid options are DELETE, GET, HEAD, MERGE, POST, OPTIONS, PUT or PATCH.

    allowedOrigins string[]

    A list of origin domains that will be allowed by CORS.

    exposedHeaders string[]

    A list of response headers that are exposed to CORS clients.

    maxAgeInSeconds number

    The number of seconds the client should cache a preflight response.

    allowed_headers Sequence[str]

    A list of headers that are allowed to be a part of the cross-origin request.

    allowed_methods Sequence[str]

    A list of HTTP methods that are allowed to be executed by the origin. Valid options are DELETE, GET, HEAD, MERGE, POST, OPTIONS, PUT or PATCH.

    allowed_origins Sequence[str]

    A list of origin domains that will be allowed by CORS.

    exposed_headers Sequence[str]

    A list of response headers that are exposed to CORS clients.

    max_age_in_seconds int

    The number of seconds the client should cache a preflight response.

    allowedHeaders List<String>

    A list of headers that are allowed to be a part of the cross-origin request.

    allowedMethods List<String>

    A list of HTTP methods that are allowed to be executed by the origin. Valid options are DELETE, GET, HEAD, MERGE, POST, OPTIONS, PUT or PATCH.

    allowedOrigins List<String>

    A list of origin domains that will be allowed by CORS.

    exposedHeaders List<String>

    A list of response headers that are exposed to CORS clients.

    maxAgeInSeconds Number

    The number of seconds the client should cache a preflight response.

    AccountQueuePropertiesHourMetrics

    Enabled bool

    Indicates whether hour metrics are enabled for the Queue service.

    Version string

    The version of storage analytics to configure.

    IncludeApis bool

    Indicates whether metrics should generate summary statistics for called API operations.

    RetentionPolicyDays int

    Specifies the number of days that logs will be retained.

    Enabled bool

    Indicates whether hour metrics are enabled for the Queue service.

    Version string

    The version of storage analytics to configure.

    IncludeApis bool

    Indicates whether metrics should generate summary statistics for called API operations.

    RetentionPolicyDays int

    Specifies the number of days that logs will be retained.

    enabled Boolean

    Indicates whether hour metrics are enabled for the Queue service.

    version String

    The version of storage analytics to configure.

    includeApis Boolean

    Indicates whether metrics should generate summary statistics for called API operations.

    retentionPolicyDays Integer

    Specifies the number of days that logs will be retained.

    enabled boolean

    Indicates whether hour metrics are enabled for the Queue service.

    version string

    The version of storage analytics to configure.

    includeApis boolean

    Indicates whether metrics should generate summary statistics for called API operations.

    retentionPolicyDays number

    Specifies the number of days that logs will be retained.

    enabled bool

    Indicates whether hour metrics are enabled for the Queue service.

    version str

    The version of storage analytics to configure.

    include_apis bool

    Indicates whether metrics should generate summary statistics for called API operations.

    retention_policy_days int

    Specifies the number of days that logs will be retained.

    enabled Boolean

    Indicates whether hour metrics are enabled for the Queue service.

    version String

    The version of storage analytics to configure.

    includeApis Boolean

    Indicates whether metrics should generate summary statistics for called API operations.

    retentionPolicyDays Number

    Specifies the number of days that logs will be retained.

    AccountQueuePropertiesLogging

    Delete bool

    Indicates whether all delete requests should be logged.

    Read bool

    Indicates whether all read requests should be logged.

    Version string

    The version of storage analytics to configure.

    Write bool

    Indicates whether all write requests should be logged.

    RetentionPolicyDays int

    Specifies the number of days that logs will be retained.

    Delete bool

    Indicates whether all delete requests should be logged.

    Read bool

    Indicates whether all read requests should be logged.

    Version string

    The version of storage analytics to configure.

    Write bool

    Indicates whether all write requests should be logged.

    RetentionPolicyDays int

    Specifies the number of days that logs will be retained.

    delete Boolean

    Indicates whether all delete requests should be logged.

    read Boolean

    Indicates whether all read requests should be logged.

    version String

    The version of storage analytics to configure.

    write Boolean

    Indicates whether all write requests should be logged.

    retentionPolicyDays Integer

    Specifies the number of days that logs will be retained.

    delete boolean

    Indicates whether all delete requests should be logged.

    read boolean

    Indicates whether all read requests should be logged.

    version string

    The version of storage analytics to configure.

    write boolean

    Indicates whether all write requests should be logged.

    retentionPolicyDays number

    Specifies the number of days that logs will be retained.

    delete bool

    Indicates whether all delete requests should be logged.

    read bool

    Indicates whether all read requests should be logged.

    version str

    The version of storage analytics to configure.

    write bool

    Indicates whether all write requests should be logged.

    retention_policy_days int

    Specifies the number of days that logs will be retained.

    delete Boolean

    Indicates whether all delete requests should be logged.

    read Boolean

    Indicates whether all read requests should be logged.

    version String

    The version of storage analytics to configure.

    write Boolean

    Indicates whether all write requests should be logged.

    retentionPolicyDays Number

    Specifies the number of days that logs will be retained.

    AccountQueuePropertiesMinuteMetrics

    Enabled bool

    Indicates whether minute metrics are enabled for the Queue service.

    Version string

    The version of storage analytics to configure.

    IncludeApis bool

    Indicates whether metrics should generate summary statistics for called API operations.

    RetentionPolicyDays int

    Specifies the number of days that logs will be retained.

    Enabled bool

    Indicates whether minute metrics are enabled for the Queue service.

    Version string

    The version of storage analytics to configure.

    IncludeApis bool

    Indicates whether metrics should generate summary statistics for called API operations.

    RetentionPolicyDays int

    Specifies the number of days that logs will be retained.

    enabled Boolean

    Indicates whether minute metrics are enabled for the Queue service.

    version String

    The version of storage analytics to configure.

    includeApis Boolean

    Indicates whether metrics should generate summary statistics for called API operations.

    retentionPolicyDays Integer

    Specifies the number of days that logs will be retained.

    enabled boolean

    Indicates whether minute metrics are enabled for the Queue service.

    version string

    The version of storage analytics to configure.

    includeApis boolean

    Indicates whether metrics should generate summary statistics for called API operations.

    retentionPolicyDays number

    Specifies the number of days that logs will be retained.

    enabled bool

    Indicates whether minute metrics are enabled for the Queue service.

    version str

    The version of storage analytics to configure.

    include_apis bool

    Indicates whether metrics should generate summary statistics for called API operations.

    retention_policy_days int

    Specifies the number of days that logs will be retained.

    enabled Boolean

    Indicates whether minute metrics are enabled for the Queue service.

    version String

    The version of storage analytics to configure.

    includeApis Boolean

    Indicates whether metrics should generate summary statistics for called API operations.

    retentionPolicyDays Number

    Specifies the number of days that logs will be retained.

    AccountRouting

    Choice string

    Specifies the kind of network routing opted by the user. Possible values are InternetRouting and MicrosoftRouting. Defaults to MicrosoftRouting.

    PublishInternetEndpoints bool

    Should internet routing storage endpoints be published? Defaults to false.

    PublishMicrosoftEndpoints bool

    Should Microsoft routing storage endpoints be published? Defaults to false.

    Choice string

    Specifies the kind of network routing opted by the user. Possible values are InternetRouting and MicrosoftRouting. Defaults to MicrosoftRouting.

    PublishInternetEndpoints bool

    Should internet routing storage endpoints be published? Defaults to false.

    PublishMicrosoftEndpoints bool

    Should Microsoft routing storage endpoints be published? Defaults to false.

    choice String

    Specifies the kind of network routing opted by the user. Possible values are InternetRouting and MicrosoftRouting. Defaults to MicrosoftRouting.

    publishInternetEndpoints Boolean

    Should internet routing storage endpoints be published? Defaults to false.

    publishMicrosoftEndpoints Boolean

    Should Microsoft routing storage endpoints be published? Defaults to false.

    choice string

    Specifies the kind of network routing opted by the user. Possible values are InternetRouting and MicrosoftRouting. Defaults to MicrosoftRouting.

    publishInternetEndpoints boolean

    Should internet routing storage endpoints be published? Defaults to false.

    publishMicrosoftEndpoints boolean

    Should Microsoft routing storage endpoints be published? Defaults to false.

    choice str

    Specifies the kind of network routing opted by the user. Possible values are InternetRouting and MicrosoftRouting. Defaults to MicrosoftRouting.

    publish_internet_endpoints bool

    Should internet routing storage endpoints be published? Defaults to false.

    publish_microsoft_endpoints bool

    Should Microsoft routing storage endpoints be published? Defaults to false.

    choice String

    Specifies the kind of network routing opted by the user. Possible values are InternetRouting and MicrosoftRouting. Defaults to MicrosoftRouting.

    publishInternetEndpoints Boolean

    Should internet routing storage endpoints be published? Defaults to false.

    publishMicrosoftEndpoints Boolean

    Should Microsoft routing storage endpoints be published? Defaults to false.

    AccountSasPolicy

    ExpirationPeriod string

    The SAS expiration period in format of DD.HH:MM:SS.

    ExpirationAction string

    The SAS expiration action. The only possible value is Log at this moment. Defaults to Log.

    ExpirationPeriod string

    The SAS expiration period in format of DD.HH:MM:SS.

    ExpirationAction string

    The SAS expiration action. The only possible value is Log at this moment. Defaults to Log.

    expirationPeriod String

    The SAS expiration period in format of DD.HH:MM:SS.

    expirationAction String

    The SAS expiration action. The only possible value is Log at this moment. Defaults to Log.

    expirationPeriod string

    The SAS expiration period in format of DD.HH:MM:SS.

    expirationAction string

    The SAS expiration action. The only possible value is Log at this moment. Defaults to Log.

    expiration_period str

    The SAS expiration period in format of DD.HH:MM:SS.

    expiration_action str

    The SAS expiration action. The only possible value is Log at this moment. Defaults to Log.

    expirationPeriod String

    The SAS expiration period in format of DD.HH:MM:SS.

    expirationAction String

    The SAS expiration action. The only possible value is Log at this moment. Defaults to Log.

    AccountShareProperties

    CorsRules List<AccountSharePropertiesCorsRule>

    A cors_rule block as defined below.

    RetentionPolicy AccountSharePropertiesRetentionPolicy

    A retention_policy block as defined below.

    Smb AccountSharePropertiesSmb

    A smb block as defined below.

    CorsRules []AccountSharePropertiesCorsRule

    A cors_rule block as defined below.

    RetentionPolicy AccountSharePropertiesRetentionPolicy

    A retention_policy block as defined below.

    Smb AccountSharePropertiesSmb

    A smb block as defined below.

    corsRules List<AccountSharePropertiesCorsRule>

    A cors_rule block as defined below.

    retentionPolicy AccountSharePropertiesRetentionPolicy

    A retention_policy block as defined below.

    smb AccountSharePropertiesSmb

    A smb block as defined below.

    corsRules AccountSharePropertiesCorsRule[]

    A cors_rule block as defined below.

    retentionPolicy AccountSharePropertiesRetentionPolicy

    A retention_policy block as defined below.

    smb AccountSharePropertiesSmb

    A smb block as defined below.

    cors_rules Sequence[AccountSharePropertiesCorsRule]

    A cors_rule block as defined below.

    retention_policy AccountSharePropertiesRetentionPolicy

    A retention_policy block as defined below.

    smb AccountSharePropertiesSmb

    A smb block as defined below.

    corsRules List<Property Map>

    A cors_rule block as defined below.

    retentionPolicy Property Map

    A retention_policy block as defined below.

    smb Property Map

    A smb block as defined below.

    AccountSharePropertiesCorsRule

    AllowedHeaders List<string>

    A list of headers that are allowed to be a part of the cross-origin request.

    AllowedMethods List<string>

    A list of HTTP methods that are allowed to be executed by the origin. Valid options are DELETE, GET, HEAD, MERGE, POST, OPTIONS, PUT or PATCH.

    AllowedOrigins List<string>

    A list of origin domains that will be allowed by CORS.

    ExposedHeaders List<string>

    A list of response headers that are exposed to CORS clients.

    MaxAgeInSeconds int

    The number of seconds the client should cache a preflight response.

    AllowedHeaders []string

    A list of headers that are allowed to be a part of the cross-origin request.

    AllowedMethods []string

    A list of HTTP methods that are allowed to be executed by the origin. Valid options are DELETE, GET, HEAD, MERGE, POST, OPTIONS, PUT or PATCH.

    AllowedOrigins []string

    A list of origin domains that will be allowed by CORS.

    ExposedHeaders []string

    A list of response headers that are exposed to CORS clients.

    MaxAgeInSeconds int

    The number of seconds the client should cache a preflight response.

    allowedHeaders List<String>

    A list of headers that are allowed to be a part of the cross-origin request.

    allowedMethods List<String>

    A list of HTTP methods that are allowed to be executed by the origin. Valid options are DELETE, GET, HEAD, MERGE, POST, OPTIONS, PUT or PATCH.

    allowedOrigins List<String>

    A list of origin domains that will be allowed by CORS.

    exposedHeaders List<String>

    A list of response headers that are exposed to CORS clients.

    maxAgeInSeconds Integer

    The number of seconds the client should cache a preflight response.

    allowedHeaders string[]

    A list of headers that are allowed to be a part of the cross-origin request.

    allowedMethods string[]

    A list of HTTP methods that are allowed to be executed by the origin. Valid options are DELETE, GET, HEAD, MERGE, POST, OPTIONS, PUT or PATCH.

    allowedOrigins string[]

    A list of origin domains that will be allowed by CORS.

    exposedHeaders string[]

    A list of response headers that are exposed to CORS clients.

    maxAgeInSeconds number

    The number of seconds the client should cache a preflight response.

    allowed_headers Sequence[str]

    A list of headers that are allowed to be a part of the cross-origin request.

    allowed_methods Sequence[str]

    A list of HTTP methods that are allowed to be executed by the origin. Valid options are DELETE, GET, HEAD, MERGE, POST, OPTIONS, PUT or PATCH.

    allowed_origins Sequence[str]

    A list of origin domains that will be allowed by CORS.

    exposed_headers Sequence[str]

    A list of response headers that are exposed to CORS clients.

    max_age_in_seconds int

    The number of seconds the client should cache a preflight response.

    allowedHeaders List<String>

    A list of headers that are allowed to be a part of the cross-origin request.

    allowedMethods List<String>

    A list of HTTP methods that are allowed to be executed by the origin. Valid options are DELETE, GET, HEAD, MERGE, POST, OPTIONS, PUT or PATCH.

    allowedOrigins List<String>

    A list of origin domains that will be allowed by CORS.

    exposedHeaders List<String>

    A list of response headers that are exposed to CORS clients.

    maxAgeInSeconds Number

    The number of seconds the client should cache a preflight response.

    AccountSharePropertiesRetentionPolicy

    Days int

    Specifies the number of days that the azure.storage.Share should be retained, between 1 and 365 days. Defaults to 7.

    Days int

    Specifies the number of days that the azure.storage.Share should be retained, between 1 and 365 days. Defaults to 7.

    days Integer

    Specifies the number of days that the azure.storage.Share should be retained, between 1 and 365 days. Defaults to 7.

    days number

    Specifies the number of days that the azure.storage.Share should be retained, between 1 and 365 days. Defaults to 7.

    days int

    Specifies the number of days that the azure.storage.Share should be retained, between 1 and 365 days. Defaults to 7.

    days Number

    Specifies the number of days that the azure.storage.Share should be retained, between 1 and 365 days. Defaults to 7.

    AccountSharePropertiesSmb

    AuthenticationTypes List<string>

    A set of SMB authentication methods. Possible values are NTLMv2, and Kerberos.

    ChannelEncryptionTypes List<string>

    A set of SMB channel encryption. Possible values are AES-128-CCM, AES-128-GCM, and AES-256-GCM.

    KerberosTicketEncryptionTypes List<string>

    A set of Kerberos ticket encryption. Possible values are RC4-HMAC, and AES-256.

    MultichannelEnabled bool

    Indicates whether multichannel is enabled. Defaults to false. This is only supported on Premium storage accounts.

    Versions List<string>

    A set of SMB protocol versions. Possible values are SMB2.1, SMB3.0, and SMB3.1.1.

    AuthenticationTypes []string

    A set of SMB authentication methods. Possible values are NTLMv2, and Kerberos.

    ChannelEncryptionTypes []string

    A set of SMB channel encryption. Possible values are AES-128-CCM, AES-128-GCM, and AES-256-GCM.

    KerberosTicketEncryptionTypes []string

    A set of Kerberos ticket encryption. Possible values are RC4-HMAC, and AES-256.

    MultichannelEnabled bool

    Indicates whether multichannel is enabled. Defaults to false. This is only supported on Premium storage accounts.

    Versions []string

    A set of SMB protocol versions. Possible values are SMB2.1, SMB3.0, and SMB3.1.1.

    authenticationTypes List<String>

    A set of SMB authentication methods. Possible values are NTLMv2, and Kerberos.

    channelEncryptionTypes List<String>

    A set of SMB channel encryption. Possible values are AES-128-CCM, AES-128-GCM, and AES-256-GCM.

    kerberosTicketEncryptionTypes List<String>

    A set of Kerberos ticket encryption. Possible values are RC4-HMAC, and AES-256.

    multichannelEnabled Boolean

    Indicates whether multichannel is enabled. Defaults to false. This is only supported on Premium storage accounts.

    versions List<String>

    A set of SMB protocol versions. Possible values are SMB2.1, SMB3.0, and SMB3.1.1.

    authenticationTypes string[]

    A set of SMB authentication methods. Possible values are NTLMv2, and Kerberos.

    channelEncryptionTypes string[]

    A set of SMB channel encryption. Possible values are AES-128-CCM, AES-128-GCM, and AES-256-GCM.

    kerberosTicketEncryptionTypes string[]

    A set of Kerberos ticket encryption. Possible values are RC4-HMAC, and AES-256.

    multichannelEnabled boolean

    Indicates whether multichannel is enabled. Defaults to false. This is only supported on Premium storage accounts.

    versions string[]

    A set of SMB protocol versions. Possible values are SMB2.1, SMB3.0, and SMB3.1.1.

    authentication_types Sequence[str]

    A set of SMB authentication methods. Possible values are NTLMv2, and Kerberos.

    channel_encryption_types Sequence[str]

    A set of SMB channel encryption. Possible values are AES-128-CCM, AES-128-GCM, and AES-256-GCM.

    kerberos_ticket_encryption_types Sequence[str]

    A set of Kerberos ticket encryption. Possible values are RC4-HMAC, and AES-256.

    multichannel_enabled bool

    Indicates whether multichannel is enabled. Defaults to false. This is only supported on Premium storage accounts.

    versions Sequence[str]

    A set of SMB protocol versions. Possible values are SMB2.1, SMB3.0, and SMB3.1.1.

    authenticationTypes List<String>

    A set of SMB authentication methods. Possible values are NTLMv2, and Kerberos.

    channelEncryptionTypes List<String>

    A set of SMB channel encryption. Possible values are AES-128-CCM, AES-128-GCM, and AES-256-GCM.

    kerberosTicketEncryptionTypes List<String>

    A set of Kerberos ticket encryption. Possible values are RC4-HMAC, and AES-256.

    multichannelEnabled Boolean

    Indicates whether multichannel is enabled. Defaults to false. This is only supported on Premium storage accounts.

    versions List<String>

    A set of SMB protocol versions. Possible values are SMB2.1, SMB3.0, and SMB3.1.1.

    AccountStaticWebsite

    Error404Document string

    The absolute path to a custom webpage that should be used when a request is made which does not correspond to an existing file.

    IndexDocument string

    The webpage that Azure Storage serves for requests to the root of a website or any subfolder. For example, index.html. The value is case-sensitive.

    Error404Document string

    The absolute path to a custom webpage that should be used when a request is made which does not correspond to an existing file.

    IndexDocument string

    The webpage that Azure Storage serves for requests to the root of a website or any subfolder. For example, index.html. The value is case-sensitive.

    error404Document String

    The absolute path to a custom webpage that should be used when a request is made which does not correspond to an existing file.

    indexDocument String

    The webpage that Azure Storage serves for requests to the root of a website or any subfolder. For example, index.html. The value is case-sensitive.

    error404Document string

    The absolute path to a custom webpage that should be used when a request is made which does not correspond to an existing file.

    indexDocument string

    The webpage that Azure Storage serves for requests to the root of a website or any subfolder. For example, index.html. The value is case-sensitive.

    error404_document str

    The absolute path to a custom webpage that should be used when a request is made which does not correspond to an existing file.

    index_document str

    The webpage that Azure Storage serves for requests to the root of a website or any subfolder. For example, index.html. The value is case-sensitive.

    error404Document String

    The absolute path to a custom webpage that should be used when a request is made which does not correspond to an existing file.

    indexDocument String

    The webpage that Azure Storage serves for requests to the root of a website or any subfolder. For example, index.html. The value is case-sensitive.

    Import

    Storage Accounts can be imported using the resource id, e.g.

     $ pulumi import azure:storage/account:Account storageAcc1 /subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/myresourcegroup/providers/Microsoft.Storage/storageAccounts/myaccount
    

    Package Details

    Repository
    Azure Classic pulumi/pulumi-azure
    License
    Apache-2.0
    Notes

    This Pulumi package is based on the azurerm Terraform Provider.

    azure logo

    We recommend using Azure Native.

    Azure Classic v5.43.0 published on Saturday, May 6, 2023 by Pulumi