We recommend using Azure Native.
azure.storage.Account
Explore with Pulumi AI
Manages an Azure Storage Account.
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as azure from "@pulumi/azure";
const example = new azure.core.ResourceGroup("example", {
name: "example-resources",
location: "West Europe",
});
const exampleAccount = new azure.storage.Account("example", {
name: "storageaccountname",
resourceGroupName: example.name,
location: example.location,
accountTier: "Standard",
accountReplicationType: "GRS",
tags: {
environment: "staging",
},
});
import pulumi
import pulumi_azure as azure
example = azure.core.ResourceGroup("example",
name="example-resources",
location="West Europe")
example_account = azure.storage.Account("example",
name="storageaccountname",
resource_group_name=example.name,
location=example.location,
account_tier="Standard",
account_replication_type="GRS",
tags={
"environment": "staging",
})
package main
import (
"github.com/pulumi/pulumi-azure/sdk/v6/go/azure/core"
"github.com/pulumi/pulumi-azure/sdk/v6/go/azure/storage"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
example, err := core.NewResourceGroup(ctx, "example", &core.ResourceGroupArgs{
Name: pulumi.String("example-resources"),
Location: pulumi.String("West Europe"),
})
if err != nil {
return err
}
_, err = storage.NewAccount(ctx, "example", &storage.AccountArgs{
Name: pulumi.String("storageaccountname"),
ResourceGroupName: example.Name,
Location: example.Location,
AccountTier: pulumi.String("Standard"),
AccountReplicationType: pulumi.String("GRS"),
Tags: pulumi.StringMap{
"environment": pulumi.String("staging"),
},
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Azure = Pulumi.Azure;
return await Deployment.RunAsync(() =>
{
var example = new Azure.Core.ResourceGroup("example", new()
{
Name = "example-resources",
Location = "West Europe",
});
var exampleAccount = new Azure.Storage.Account("example", new()
{
Name = "storageaccountname",
ResourceGroupName = example.Name,
Location = example.Location,
AccountTier = "Standard",
AccountReplicationType = "GRS",
Tags =
{
{ "environment", "staging" },
},
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azure.core.ResourceGroup;
import com.pulumi.azure.core.ResourceGroupArgs;
import com.pulumi.azure.storage.Account;
import com.pulumi.azure.storage.AccountArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var example = new ResourceGroup("example", ResourceGroupArgs.builder()
.name("example-resources")
.location("West Europe")
.build());
var exampleAccount = new Account("exampleAccount", AccountArgs.builder()
.name("storageaccountname")
.resourceGroupName(example.name())
.location(example.location())
.accountTier("Standard")
.accountReplicationType("GRS")
.tags(Map.of("environment", "staging"))
.build());
}
}
resources:
example:
type: azure:core:ResourceGroup
properties:
name: example-resources
location: West Europe
exampleAccount:
type: azure:storage:Account
name: example
properties:
name: storageaccountname
resourceGroupName: ${example.name}
location: ${example.location}
accountTier: Standard
accountReplicationType: GRS
tags:
environment: staging
With Network Rules
import * as pulumi from "@pulumi/pulumi";
import * as azure from "@pulumi/azure";
const example = new azure.core.ResourceGroup("example", {
name: "example-resources",
location: "West Europe",
});
const exampleVirtualNetwork = new azure.network.VirtualNetwork("example", {
name: "virtnetname",
addressSpaces: ["10.0.0.0/16"],
location: example.location,
resourceGroupName: example.name,
});
const exampleSubnet = new azure.network.Subnet("example", {
name: "subnetname",
resourceGroupName: example.name,
virtualNetworkName: exampleVirtualNetwork.name,
addressPrefixes: ["10.0.2.0/24"],
serviceEndpoints: [
"Microsoft.Sql",
"Microsoft.Storage",
],
});
const exampleAccount = new azure.storage.Account("example", {
name: "storageaccountname",
resourceGroupName: example.name,
location: example.location,
accountTier: "Standard",
accountReplicationType: "LRS",
networkRules: {
defaultAction: "Deny",
ipRules: ["100.0.0.1"],
virtualNetworkSubnetIds: [exampleSubnet.id],
},
tags: {
environment: "staging",
},
});
import pulumi
import pulumi_azure as azure
example = azure.core.ResourceGroup("example",
name="example-resources",
location="West Europe")
example_virtual_network = azure.network.VirtualNetwork("example",
name="virtnetname",
address_spaces=["10.0.0.0/16"],
location=example.location,
resource_group_name=example.name)
example_subnet = azure.network.Subnet("example",
name="subnetname",
resource_group_name=example.name,
virtual_network_name=example_virtual_network.name,
address_prefixes=["10.0.2.0/24"],
service_endpoints=[
"Microsoft.Sql",
"Microsoft.Storage",
])
example_account = azure.storage.Account("example",
name="storageaccountname",
resource_group_name=example.name,
location=example.location,
account_tier="Standard",
account_replication_type="LRS",
network_rules={
"default_action": "Deny",
"ip_rules": ["100.0.0.1"],
"virtual_network_subnet_ids": [example_subnet.id],
},
tags={
"environment": "staging",
})
package main
import (
"github.com/pulumi/pulumi-azure/sdk/v6/go/azure/core"
"github.com/pulumi/pulumi-azure/sdk/v6/go/azure/network"
"github.com/pulumi/pulumi-azure/sdk/v6/go/azure/storage"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
example, err := core.NewResourceGroup(ctx, "example", &core.ResourceGroupArgs{
Name: pulumi.String("example-resources"),
Location: pulumi.String("West Europe"),
})
if err != nil {
return err
}
exampleVirtualNetwork, err := network.NewVirtualNetwork(ctx, "example", &network.VirtualNetworkArgs{
Name: pulumi.String("virtnetname"),
AddressSpaces: pulumi.StringArray{
pulumi.String("10.0.0.0/16"),
},
Location: example.Location,
ResourceGroupName: example.Name,
})
if err != nil {
return err
}
exampleSubnet, err := network.NewSubnet(ctx, "example", &network.SubnetArgs{
Name: pulumi.String("subnetname"),
ResourceGroupName: example.Name,
VirtualNetworkName: exampleVirtualNetwork.Name,
AddressPrefixes: pulumi.StringArray{
pulumi.String("10.0.2.0/24"),
},
ServiceEndpoints: pulumi.StringArray{
pulumi.String("Microsoft.Sql"),
pulumi.String("Microsoft.Storage"),
},
})
if err != nil {
return err
}
_, err = storage.NewAccount(ctx, "example", &storage.AccountArgs{
Name: pulumi.String("storageaccountname"),
ResourceGroupName: example.Name,
Location: example.Location,
AccountTier: pulumi.String("Standard"),
AccountReplicationType: pulumi.String("LRS"),
NetworkRules: &storage.AccountNetworkRulesTypeArgs{
DefaultAction: pulumi.String("Deny"),
IpRules: pulumi.StringArray{
pulumi.String("100.0.0.1"),
},
VirtualNetworkSubnetIds: pulumi.StringArray{
exampleSubnet.ID(),
},
},
Tags: pulumi.StringMap{
"environment": pulumi.String("staging"),
},
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Azure = Pulumi.Azure;
return await Deployment.RunAsync(() =>
{
var example = new Azure.Core.ResourceGroup("example", new()
{
Name = "example-resources",
Location = "West Europe",
});
var exampleVirtualNetwork = new Azure.Network.VirtualNetwork("example", new()
{
Name = "virtnetname",
AddressSpaces = new[]
{
"10.0.0.0/16",
},
Location = example.Location,
ResourceGroupName = example.Name,
});
var exampleSubnet = new Azure.Network.Subnet("example", new()
{
Name = "subnetname",
ResourceGroupName = example.Name,
VirtualNetworkName = exampleVirtualNetwork.Name,
AddressPrefixes = new[]
{
"10.0.2.0/24",
},
ServiceEndpoints = new[]
{
"Microsoft.Sql",
"Microsoft.Storage",
},
});
var exampleAccount = new Azure.Storage.Account("example", new()
{
Name = "storageaccountname",
ResourceGroupName = example.Name,
Location = example.Location,
AccountTier = "Standard",
AccountReplicationType = "LRS",
NetworkRules = new Azure.Storage.Inputs.AccountNetworkRulesArgs
{
DefaultAction = "Deny",
IpRules = new[]
{
"100.0.0.1",
},
VirtualNetworkSubnetIds = new[]
{
exampleSubnet.Id,
},
},
Tags =
{
{ "environment", "staging" },
},
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azure.core.ResourceGroup;
import com.pulumi.azure.core.ResourceGroupArgs;
import com.pulumi.azure.network.VirtualNetwork;
import com.pulumi.azure.network.VirtualNetworkArgs;
import com.pulumi.azure.network.Subnet;
import com.pulumi.azure.network.SubnetArgs;
import com.pulumi.azure.storage.Account;
import com.pulumi.azure.storage.AccountArgs;
import com.pulumi.azure.storage.inputs.AccountNetworkRulesArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var example = new ResourceGroup("example", ResourceGroupArgs.builder()
.name("example-resources")
.location("West Europe")
.build());
var exampleVirtualNetwork = new VirtualNetwork("exampleVirtualNetwork", VirtualNetworkArgs.builder()
.name("virtnetname")
.addressSpaces("10.0.0.0/16")
.location(example.location())
.resourceGroupName(example.name())
.build());
var exampleSubnet = new Subnet("exampleSubnet", SubnetArgs.builder()
.name("subnetname")
.resourceGroupName(example.name())
.virtualNetworkName(exampleVirtualNetwork.name())
.addressPrefixes("10.0.2.0/24")
.serviceEndpoints(
"Microsoft.Sql",
"Microsoft.Storage")
.build());
var exampleAccount = new Account("exampleAccount", AccountArgs.builder()
.name("storageaccountname")
.resourceGroupName(example.name())
.location(example.location())
.accountTier("Standard")
.accountReplicationType("LRS")
.networkRules(AccountNetworkRulesArgs.builder()
.defaultAction("Deny")
.ipRules("100.0.0.1")
.virtualNetworkSubnetIds(exampleSubnet.id())
.build())
.tags(Map.of("environment", "staging"))
.build());
}
}
resources:
example:
type: azure:core:ResourceGroup
properties:
name: example-resources
location: West Europe
exampleVirtualNetwork:
type: azure:network:VirtualNetwork
name: example
properties:
name: virtnetname
addressSpaces:
- 10.0.0.0/16
location: ${example.location}
resourceGroupName: ${example.name}
exampleSubnet:
type: azure:network:Subnet
name: example
properties:
name: subnetname
resourceGroupName: ${example.name}
virtualNetworkName: ${exampleVirtualNetwork.name}
addressPrefixes:
- 10.0.2.0/24
serviceEndpoints:
- Microsoft.Sql
- Microsoft.Storage
exampleAccount:
type: azure:storage:Account
name: example
properties:
name: storageaccountname
resourceGroupName: ${example.name}
location: ${example.location}
accountTier: Standard
accountReplicationType: LRS
networkRules:
defaultAction: Deny
ipRules:
- 100.0.0.1
virtualNetworkSubnetIds:
- ${exampleSubnet.id}
tags:
environment: staging
Create Account Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new Account(name: string, args: AccountArgs, opts?: CustomResourceOptions);
@overload
def Account(resource_name: str,
args: AccountArgs,
opts: Optional[ResourceOptions] = None)
@overload
def Account(resource_name: str,
opts: Optional[ResourceOptions] = None,
account_tier: Optional[str] = None,
resource_group_name: Optional[str] = None,
account_replication_type: Optional[str] = None,
is_hns_enabled: Optional[bool] = None,
azure_files_authentication: Optional[AccountAzureFilesAuthenticationArgs] = None,
allowed_copy_scope: Optional[str] = None,
local_user_enabled: Optional[bool] = None,
blob_properties: Optional[AccountBlobPropertiesArgs] = None,
location: Optional[str] = None,
custom_domain: Optional[AccountCustomDomainArgs] = None,
customer_managed_key: Optional[AccountCustomerManagedKeyArgs] = None,
default_to_oauth_authentication: Optional[bool] = None,
dns_endpoint_type: Optional[str] = None,
edge_zone: Optional[str] = None,
https_traffic_only_enabled: Optional[bool] = None,
identity: Optional[AccountIdentityArgs] = None,
immutability_policy: Optional[AccountImmutabilityPolicyArgs] = None,
infrastructure_encryption_enabled: Optional[bool] = None,
access_tier: Optional[str] = None,
table_encryption_key_type: Optional[str] = None,
allow_nested_items_to_be_public: Optional[bool] = None,
cross_tenant_replication_enabled: Optional[bool] = None,
min_tls_version: Optional[str] = None,
name: Optional[str] = None,
network_rules: Optional[AccountNetworkRulesArgs] = None,
nfsv3_enabled: Optional[bool] = None,
public_network_access_enabled: Optional[bool] = None,
queue_encryption_key_type: Optional[str] = None,
queue_properties: Optional[AccountQueuePropertiesArgs] = None,
account_kind: Optional[str] = None,
routing: Optional[AccountRoutingArgs] = None,
sas_policy: Optional[AccountSasPolicyArgs] = None,
sftp_enabled: Optional[bool] = None,
share_properties: Optional[AccountSharePropertiesArgs] = None,
shared_access_key_enabled: Optional[bool] = None,
static_website: Optional[AccountStaticWebsiteArgs] = None,
large_file_share_enabled: Optional[bool] = None,
tags: Optional[Mapping[str, str]] = None)
func NewAccount(ctx *Context, name string, args AccountArgs, opts ...ResourceOption) (*Account, error)
public Account(string name, AccountArgs args, CustomResourceOptions? opts = null)
public Account(String name, AccountArgs args)
public Account(String name, AccountArgs args, CustomResourceOptions options)
type: azure:storage:Account
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args AccountArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args AccountArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args AccountArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args AccountArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args AccountArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var exampleaccountResourceResourceFromStorageaccount = new Azure.Storage.Account("exampleaccountResourceResourceFromStorageaccount", new()
{
AccountTier = "string",
ResourceGroupName = "string",
AccountReplicationType = "string",
IsHnsEnabled = false,
AzureFilesAuthentication = new Azure.Storage.Inputs.AccountAzureFilesAuthenticationArgs
{
DirectoryType = "string",
ActiveDirectory = new Azure.Storage.Inputs.AccountAzureFilesAuthenticationActiveDirectoryArgs
{
DomainGuid = "string",
DomainName = "string",
DomainSid = "string",
ForestName = "string",
NetbiosDomainName = "string",
StorageSid = "string",
},
DefaultShareLevelPermission = "string",
},
AllowedCopyScope = "string",
LocalUserEnabled = false,
BlobProperties = new Azure.Storage.Inputs.AccountBlobPropertiesArgs
{
ChangeFeedEnabled = false,
ChangeFeedRetentionInDays = 0,
ContainerDeleteRetentionPolicy = new Azure.Storage.Inputs.AccountBlobPropertiesContainerDeleteRetentionPolicyArgs
{
Days = 0,
},
CorsRules = new[]
{
new Azure.Storage.Inputs.AccountBlobPropertiesCorsRuleArgs
{
AllowedHeaders = new[]
{
"string",
},
AllowedMethods = new[]
{
"string",
},
AllowedOrigins = new[]
{
"string",
},
ExposedHeaders = new[]
{
"string",
},
MaxAgeInSeconds = 0,
},
},
DefaultServiceVersion = "string",
DeleteRetentionPolicy = new Azure.Storage.Inputs.AccountBlobPropertiesDeleteRetentionPolicyArgs
{
Days = 0,
PermanentDeleteEnabled = false,
},
LastAccessTimeEnabled = false,
RestorePolicy = new Azure.Storage.Inputs.AccountBlobPropertiesRestorePolicyArgs
{
Days = 0,
},
VersioningEnabled = false,
},
Location = "string",
CustomDomain = new Azure.Storage.Inputs.AccountCustomDomainArgs
{
Name = "string",
UseSubdomain = false,
},
CustomerManagedKey = new Azure.Storage.Inputs.AccountCustomerManagedKeyArgs
{
UserAssignedIdentityId = "string",
KeyVaultKeyId = "string",
ManagedHsmKeyId = "string",
},
DefaultToOauthAuthentication = false,
DnsEndpointType = "string",
EdgeZone = "string",
HttpsTrafficOnlyEnabled = false,
Identity = new Azure.Storage.Inputs.AccountIdentityArgs
{
Type = "string",
IdentityIds = new[]
{
"string",
},
PrincipalId = "string",
TenantId = "string",
},
ImmutabilityPolicy = new Azure.Storage.Inputs.AccountImmutabilityPolicyArgs
{
AllowProtectedAppendWrites = false,
PeriodSinceCreationInDays = 0,
State = "string",
},
InfrastructureEncryptionEnabled = false,
AccessTier = "string",
TableEncryptionKeyType = "string",
AllowNestedItemsToBePublic = false,
CrossTenantReplicationEnabled = false,
MinTlsVersion = "string",
Name = "string",
NetworkRules = new Azure.Storage.Inputs.AccountNetworkRulesArgs
{
DefaultAction = "string",
Bypasses = new[]
{
"string",
},
IpRules = new[]
{
"string",
},
PrivateLinkAccesses = new[]
{
new Azure.Storage.Inputs.AccountNetworkRulesPrivateLinkAccessArgs
{
EndpointResourceId = "string",
EndpointTenantId = "string",
},
},
VirtualNetworkSubnetIds = new[]
{
"string",
},
},
Nfsv3Enabled = false,
PublicNetworkAccessEnabled = false,
QueueEncryptionKeyType = "string",
AccountKind = "string",
Routing = new Azure.Storage.Inputs.AccountRoutingArgs
{
Choice = "string",
PublishInternetEndpoints = false,
PublishMicrosoftEndpoints = false,
},
SasPolicy = new Azure.Storage.Inputs.AccountSasPolicyArgs
{
ExpirationPeriod = "string",
ExpirationAction = "string",
},
SftpEnabled = false,
ShareProperties = new Azure.Storage.Inputs.AccountSharePropertiesArgs
{
CorsRules = new[]
{
new Azure.Storage.Inputs.AccountSharePropertiesCorsRuleArgs
{
AllowedHeaders = new[]
{
"string",
},
AllowedMethods = new[]
{
"string",
},
AllowedOrigins = new[]
{
"string",
},
ExposedHeaders = new[]
{
"string",
},
MaxAgeInSeconds = 0,
},
},
RetentionPolicy = new Azure.Storage.Inputs.AccountSharePropertiesRetentionPolicyArgs
{
Days = 0,
},
Smb = new Azure.Storage.Inputs.AccountSharePropertiesSmbArgs
{
AuthenticationTypes = new[]
{
"string",
},
ChannelEncryptionTypes = new[]
{
"string",
},
KerberosTicketEncryptionTypes = new[]
{
"string",
},
MultichannelEnabled = false,
Versions = new[]
{
"string",
},
},
},
SharedAccessKeyEnabled = false,
LargeFileShareEnabled = false,
Tags =
{
{ "string", "string" },
},
});
example, err := storage.NewAccount(ctx, "exampleaccountResourceResourceFromStorageaccount", &storage.AccountArgs{
AccountTier: pulumi.String("string"),
ResourceGroupName: pulumi.String("string"),
AccountReplicationType: pulumi.String("string"),
IsHnsEnabled: pulumi.Bool(false),
AzureFilesAuthentication: &storage.AccountAzureFilesAuthenticationArgs{
DirectoryType: pulumi.String("string"),
ActiveDirectory: &storage.AccountAzureFilesAuthenticationActiveDirectoryArgs{
DomainGuid: pulumi.String("string"),
DomainName: pulumi.String("string"),
DomainSid: pulumi.String("string"),
ForestName: pulumi.String("string"),
NetbiosDomainName: pulumi.String("string"),
StorageSid: pulumi.String("string"),
},
DefaultShareLevelPermission: pulumi.String("string"),
},
AllowedCopyScope: pulumi.String("string"),
LocalUserEnabled: pulumi.Bool(false),
BlobProperties: &storage.AccountBlobPropertiesArgs{
ChangeFeedEnabled: pulumi.Bool(false),
ChangeFeedRetentionInDays: pulumi.Int(0),
ContainerDeleteRetentionPolicy: &storage.AccountBlobPropertiesContainerDeleteRetentionPolicyArgs{
Days: pulumi.Int(0),
},
CorsRules: storage.AccountBlobPropertiesCorsRuleArray{
&storage.AccountBlobPropertiesCorsRuleArgs{
AllowedHeaders: pulumi.StringArray{
pulumi.String("string"),
},
AllowedMethods: pulumi.StringArray{
pulumi.String("string"),
},
AllowedOrigins: pulumi.StringArray{
pulumi.String("string"),
},
ExposedHeaders: pulumi.StringArray{
pulumi.String("string"),
},
MaxAgeInSeconds: pulumi.Int(0),
},
},
DefaultServiceVersion: pulumi.String("string"),
DeleteRetentionPolicy: &storage.AccountBlobPropertiesDeleteRetentionPolicyArgs{
Days: pulumi.Int(0),
PermanentDeleteEnabled: pulumi.Bool(false),
},
LastAccessTimeEnabled: pulumi.Bool(false),
RestorePolicy: &storage.AccountBlobPropertiesRestorePolicyArgs{
Days: pulumi.Int(0),
},
VersioningEnabled: pulumi.Bool(false),
},
Location: pulumi.String("string"),
CustomDomain: &storage.AccountCustomDomainArgs{
Name: pulumi.String("string"),
UseSubdomain: pulumi.Bool(false),
},
CustomerManagedKey: &storage.AccountCustomerManagedKeyArgs{
UserAssignedIdentityId: pulumi.String("string"),
KeyVaultKeyId: pulumi.String("string"),
ManagedHsmKeyId: pulumi.String("string"),
},
DefaultToOauthAuthentication: pulumi.Bool(false),
DnsEndpointType: pulumi.String("string"),
EdgeZone: pulumi.String("string"),
HttpsTrafficOnlyEnabled: pulumi.Bool(false),
Identity: &storage.AccountIdentityArgs{
Type: pulumi.String("string"),
IdentityIds: pulumi.StringArray{
pulumi.String("string"),
},
PrincipalId: pulumi.String("string"),
TenantId: pulumi.String("string"),
},
ImmutabilityPolicy: &storage.AccountImmutabilityPolicyArgs{
AllowProtectedAppendWrites: pulumi.Bool(false),
PeriodSinceCreationInDays: pulumi.Int(0),
State: pulumi.String("string"),
},
InfrastructureEncryptionEnabled: pulumi.Bool(false),
AccessTier: pulumi.String("string"),
TableEncryptionKeyType: pulumi.String("string"),
AllowNestedItemsToBePublic: pulumi.Bool(false),
CrossTenantReplicationEnabled: pulumi.Bool(false),
MinTlsVersion: pulumi.String("string"),
Name: pulumi.String("string"),
NetworkRules: &storage.AccountNetworkRulesTypeArgs{
DefaultAction: pulumi.String("string"),
Bypasses: pulumi.StringArray{
pulumi.String("string"),
},
IpRules: pulumi.StringArray{
pulumi.String("string"),
},
PrivateLinkAccesses: storage.AccountNetworkRulesPrivateLinkAccessArray{
&storage.AccountNetworkRulesPrivateLinkAccessArgs{
EndpointResourceId: pulumi.String("string"),
EndpointTenantId: pulumi.String("string"),
},
},
VirtualNetworkSubnetIds: pulumi.StringArray{
pulumi.String("string"),
},
},
Nfsv3Enabled: pulumi.Bool(false),
PublicNetworkAccessEnabled: pulumi.Bool(false),
QueueEncryptionKeyType: pulumi.String("string"),
AccountKind: pulumi.String("string"),
Routing: &storage.AccountRoutingArgs{
Choice: pulumi.String("string"),
PublishInternetEndpoints: pulumi.Bool(false),
PublishMicrosoftEndpoints: pulumi.Bool(false),
},
SasPolicy: &storage.AccountSasPolicyArgs{
ExpirationPeriod: pulumi.String("string"),
ExpirationAction: pulumi.String("string"),
},
SftpEnabled: pulumi.Bool(false),
ShareProperties: &storage.AccountSharePropertiesArgs{
CorsRules: storage.AccountSharePropertiesCorsRuleArray{
&storage.AccountSharePropertiesCorsRuleArgs{
AllowedHeaders: pulumi.StringArray{
pulumi.String("string"),
},
AllowedMethods: pulumi.StringArray{
pulumi.String("string"),
},
AllowedOrigins: pulumi.StringArray{
pulumi.String("string"),
},
ExposedHeaders: pulumi.StringArray{
pulumi.String("string"),
},
MaxAgeInSeconds: pulumi.Int(0),
},
},
RetentionPolicy: &storage.AccountSharePropertiesRetentionPolicyArgs{
Days: pulumi.Int(0),
},
Smb: &storage.AccountSharePropertiesSmbArgs{
AuthenticationTypes: pulumi.StringArray{
pulumi.String("string"),
},
ChannelEncryptionTypes: pulumi.StringArray{
pulumi.String("string"),
},
KerberosTicketEncryptionTypes: pulumi.StringArray{
pulumi.String("string"),
},
MultichannelEnabled: pulumi.Bool(false),
Versions: pulumi.StringArray{
pulumi.String("string"),
},
},
},
SharedAccessKeyEnabled: pulumi.Bool(false),
LargeFileShareEnabled: pulumi.Bool(false),
Tags: pulumi.StringMap{
"string": pulumi.String("string"),
},
})
var exampleaccountResourceResourceFromStorageaccount = new Account("exampleaccountResourceResourceFromStorageaccount", AccountArgs.builder()
.accountTier("string")
.resourceGroupName("string")
.accountReplicationType("string")
.isHnsEnabled(false)
.azureFilesAuthentication(AccountAzureFilesAuthenticationArgs.builder()
.directoryType("string")
.activeDirectory(AccountAzureFilesAuthenticationActiveDirectoryArgs.builder()
.domainGuid("string")
.domainName("string")
.domainSid("string")
.forestName("string")
.netbiosDomainName("string")
.storageSid("string")
.build())
.defaultShareLevelPermission("string")
.build())
.allowedCopyScope("string")
.localUserEnabled(false)
.blobProperties(AccountBlobPropertiesArgs.builder()
.changeFeedEnabled(false)
.changeFeedRetentionInDays(0)
.containerDeleteRetentionPolicy(AccountBlobPropertiesContainerDeleteRetentionPolicyArgs.builder()
.days(0)
.build())
.corsRules(AccountBlobPropertiesCorsRuleArgs.builder()
.allowedHeaders("string")
.allowedMethods("string")
.allowedOrigins("string")
.exposedHeaders("string")
.maxAgeInSeconds(0)
.build())
.defaultServiceVersion("string")
.deleteRetentionPolicy(AccountBlobPropertiesDeleteRetentionPolicyArgs.builder()
.days(0)
.permanentDeleteEnabled(false)
.build())
.lastAccessTimeEnabled(false)
.restorePolicy(AccountBlobPropertiesRestorePolicyArgs.builder()
.days(0)
.build())
.versioningEnabled(false)
.build())
.location("string")
.customDomain(AccountCustomDomainArgs.builder()
.name("string")
.useSubdomain(false)
.build())
.customerManagedKey(AccountCustomerManagedKeyArgs.builder()
.userAssignedIdentityId("string")
.keyVaultKeyId("string")
.managedHsmKeyId("string")
.build())
.defaultToOauthAuthentication(false)
.dnsEndpointType("string")
.edgeZone("string")
.httpsTrafficOnlyEnabled(false)
.identity(AccountIdentityArgs.builder()
.type("string")
.identityIds("string")
.principalId("string")
.tenantId("string")
.build())
.immutabilityPolicy(AccountImmutabilityPolicyArgs.builder()
.allowProtectedAppendWrites(false)
.periodSinceCreationInDays(0)
.state("string")
.build())
.infrastructureEncryptionEnabled(false)
.accessTier("string")
.tableEncryptionKeyType("string")
.allowNestedItemsToBePublic(false)
.crossTenantReplicationEnabled(false)
.minTlsVersion("string")
.name("string")
.networkRules(AccountNetworkRulesArgs.builder()
.defaultAction("string")
.bypasses("string")
.ipRules("string")
.privateLinkAccesses(AccountNetworkRulesPrivateLinkAccessArgs.builder()
.endpointResourceId("string")
.endpointTenantId("string")
.build())
.virtualNetworkSubnetIds("string")
.build())
.nfsv3Enabled(false)
.publicNetworkAccessEnabled(false)
.queueEncryptionKeyType("string")
.accountKind("string")
.routing(AccountRoutingArgs.builder()
.choice("string")
.publishInternetEndpoints(false)
.publishMicrosoftEndpoints(false)
.build())
.sasPolicy(AccountSasPolicyArgs.builder()
.expirationPeriod("string")
.expirationAction("string")
.build())
.sftpEnabled(false)
.shareProperties(AccountSharePropertiesArgs.builder()
.corsRules(AccountSharePropertiesCorsRuleArgs.builder()
.allowedHeaders("string")
.allowedMethods("string")
.allowedOrigins("string")
.exposedHeaders("string")
.maxAgeInSeconds(0)
.build())
.retentionPolicy(AccountSharePropertiesRetentionPolicyArgs.builder()
.days(0)
.build())
.smb(AccountSharePropertiesSmbArgs.builder()
.authenticationTypes("string")
.channelEncryptionTypes("string")
.kerberosTicketEncryptionTypes("string")
.multichannelEnabled(false)
.versions("string")
.build())
.build())
.sharedAccessKeyEnabled(false)
.largeFileShareEnabled(false)
.tags(Map.of("string", "string"))
.build());
exampleaccount_resource_resource_from_storageaccount = azure.storage.Account("exampleaccountResourceResourceFromStorageaccount",
account_tier="string",
resource_group_name="string",
account_replication_type="string",
is_hns_enabled=False,
azure_files_authentication={
"directory_type": "string",
"active_directory": {
"domain_guid": "string",
"domain_name": "string",
"domain_sid": "string",
"forest_name": "string",
"netbios_domain_name": "string",
"storage_sid": "string",
},
"default_share_level_permission": "string",
},
allowed_copy_scope="string",
local_user_enabled=False,
blob_properties={
"change_feed_enabled": False,
"change_feed_retention_in_days": 0,
"container_delete_retention_policy": {
"days": 0,
},
"cors_rules": [{
"allowed_headers": ["string"],
"allowed_methods": ["string"],
"allowed_origins": ["string"],
"exposed_headers": ["string"],
"max_age_in_seconds": 0,
}],
"default_service_version": "string",
"delete_retention_policy": {
"days": 0,
"permanent_delete_enabled": False,
},
"last_access_time_enabled": False,
"restore_policy": {
"days": 0,
},
"versioning_enabled": False,
},
location="string",
custom_domain={
"name": "string",
"use_subdomain": False,
},
customer_managed_key={
"user_assigned_identity_id": "string",
"key_vault_key_id": "string",
"managed_hsm_key_id": "string",
},
default_to_oauth_authentication=False,
dns_endpoint_type="string",
edge_zone="string",
https_traffic_only_enabled=False,
identity={
"type": "string",
"identity_ids": ["string"],
"principal_id": "string",
"tenant_id": "string",
},
immutability_policy={
"allow_protected_append_writes": False,
"period_since_creation_in_days": 0,
"state": "string",
},
infrastructure_encryption_enabled=False,
access_tier="string",
table_encryption_key_type="string",
allow_nested_items_to_be_public=False,
cross_tenant_replication_enabled=False,
min_tls_version="string",
name="string",
network_rules={
"default_action": "string",
"bypasses": ["string"],
"ip_rules": ["string"],
"private_link_accesses": [{
"endpoint_resource_id": "string",
"endpoint_tenant_id": "string",
}],
"virtual_network_subnet_ids": ["string"],
},
nfsv3_enabled=False,
public_network_access_enabled=False,
queue_encryption_key_type="string",
account_kind="string",
routing={
"choice": "string",
"publish_internet_endpoints": False,
"publish_microsoft_endpoints": False,
},
sas_policy={
"expiration_period": "string",
"expiration_action": "string",
},
sftp_enabled=False,
share_properties={
"cors_rules": [{
"allowed_headers": ["string"],
"allowed_methods": ["string"],
"allowed_origins": ["string"],
"exposed_headers": ["string"],
"max_age_in_seconds": 0,
}],
"retention_policy": {
"days": 0,
},
"smb": {
"authentication_types": ["string"],
"channel_encryption_types": ["string"],
"kerberos_ticket_encryption_types": ["string"],
"multichannel_enabled": False,
"versions": ["string"],
},
},
shared_access_key_enabled=False,
large_file_share_enabled=False,
tags={
"string": "string",
})
const exampleaccountResourceResourceFromStorageaccount = new azure.storage.Account("exampleaccountResourceResourceFromStorageaccount", {
accountTier: "string",
resourceGroupName: "string",
accountReplicationType: "string",
isHnsEnabled: false,
azureFilesAuthentication: {
directoryType: "string",
activeDirectory: {
domainGuid: "string",
domainName: "string",
domainSid: "string",
forestName: "string",
netbiosDomainName: "string",
storageSid: "string",
},
defaultShareLevelPermission: "string",
},
allowedCopyScope: "string",
localUserEnabled: false,
blobProperties: {
changeFeedEnabled: false,
changeFeedRetentionInDays: 0,
containerDeleteRetentionPolicy: {
days: 0,
},
corsRules: [{
allowedHeaders: ["string"],
allowedMethods: ["string"],
allowedOrigins: ["string"],
exposedHeaders: ["string"],
maxAgeInSeconds: 0,
}],
defaultServiceVersion: "string",
deleteRetentionPolicy: {
days: 0,
permanentDeleteEnabled: false,
},
lastAccessTimeEnabled: false,
restorePolicy: {
days: 0,
},
versioningEnabled: false,
},
location: "string",
customDomain: {
name: "string",
useSubdomain: false,
},
customerManagedKey: {
userAssignedIdentityId: "string",
keyVaultKeyId: "string",
managedHsmKeyId: "string",
},
defaultToOauthAuthentication: false,
dnsEndpointType: "string",
edgeZone: "string",
httpsTrafficOnlyEnabled: false,
identity: {
type: "string",
identityIds: ["string"],
principalId: "string",
tenantId: "string",
},
immutabilityPolicy: {
allowProtectedAppendWrites: false,
periodSinceCreationInDays: 0,
state: "string",
},
infrastructureEncryptionEnabled: false,
accessTier: "string",
tableEncryptionKeyType: "string",
allowNestedItemsToBePublic: false,
crossTenantReplicationEnabled: false,
minTlsVersion: "string",
name: "string",
networkRules: {
defaultAction: "string",
bypasses: ["string"],
ipRules: ["string"],
privateLinkAccesses: [{
endpointResourceId: "string",
endpointTenantId: "string",
}],
virtualNetworkSubnetIds: ["string"],
},
nfsv3Enabled: false,
publicNetworkAccessEnabled: false,
queueEncryptionKeyType: "string",
accountKind: "string",
routing: {
choice: "string",
publishInternetEndpoints: false,
publishMicrosoftEndpoints: false,
},
sasPolicy: {
expirationPeriod: "string",
expirationAction: "string",
},
sftpEnabled: false,
shareProperties: {
corsRules: [{
allowedHeaders: ["string"],
allowedMethods: ["string"],
allowedOrigins: ["string"],
exposedHeaders: ["string"],
maxAgeInSeconds: 0,
}],
retentionPolicy: {
days: 0,
},
smb: {
authenticationTypes: ["string"],
channelEncryptionTypes: ["string"],
kerberosTicketEncryptionTypes: ["string"],
multichannelEnabled: false,
versions: ["string"],
},
},
sharedAccessKeyEnabled: false,
largeFileShareEnabled: false,
tags: {
string: "string",
},
});
type: azure:storage:Account
properties:
accessTier: string
accountKind: string
accountReplicationType: string
accountTier: string
allowNestedItemsToBePublic: false
allowedCopyScope: string
azureFilesAuthentication:
activeDirectory:
domainGuid: string
domainName: string
domainSid: string
forestName: string
netbiosDomainName: string
storageSid: string
defaultShareLevelPermission: string
directoryType: string
blobProperties:
changeFeedEnabled: false
changeFeedRetentionInDays: 0
containerDeleteRetentionPolicy:
days: 0
corsRules:
- allowedHeaders:
- string
allowedMethods:
- string
allowedOrigins:
- string
exposedHeaders:
- string
maxAgeInSeconds: 0
defaultServiceVersion: string
deleteRetentionPolicy:
days: 0
permanentDeleteEnabled: false
lastAccessTimeEnabled: false
restorePolicy:
days: 0
versioningEnabled: false
crossTenantReplicationEnabled: false
customDomain:
name: string
useSubdomain: false
customerManagedKey:
keyVaultKeyId: string
managedHsmKeyId: string
userAssignedIdentityId: string
defaultToOauthAuthentication: false
dnsEndpointType: string
edgeZone: string
httpsTrafficOnlyEnabled: false
identity:
identityIds:
- string
principalId: string
tenantId: string
type: string
immutabilityPolicy:
allowProtectedAppendWrites: false
periodSinceCreationInDays: 0
state: string
infrastructureEncryptionEnabled: false
isHnsEnabled: false
largeFileShareEnabled: false
localUserEnabled: false
location: string
minTlsVersion: string
name: string
networkRules:
bypasses:
- string
defaultAction: string
ipRules:
- string
privateLinkAccesses:
- endpointResourceId: string
endpointTenantId: string
virtualNetworkSubnetIds:
- string
nfsv3Enabled: false
publicNetworkAccessEnabled: false
queueEncryptionKeyType: string
resourceGroupName: string
routing:
choice: string
publishInternetEndpoints: false
publishMicrosoftEndpoints: false
sasPolicy:
expirationAction: string
expirationPeriod: string
sftpEnabled: false
shareProperties:
corsRules:
- allowedHeaders:
- string
allowedMethods:
- string
allowedOrigins:
- string
exposedHeaders:
- string
maxAgeInSeconds: 0
retentionPolicy:
days: 0
smb:
authenticationTypes:
- string
channelEncryptionTypes:
- string
kerberosTicketEncryptionTypes:
- string
multichannelEnabled: false
versions:
- string
sharedAccessKeyEnabled: false
tableEncryptionKeyType: string
tags:
string: string
Account Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The Account resource accepts the following input properties:
- Account
Replication stringType - Defines the type of replication to use for this storage account. Valid options are
LRS
,GRS
,RAGRS
,ZRS
,GZRS
andRAGZRS
. Changing this forces a new resource to be created when typesLRS
,GRS
andRAGRS
are changed toZRS
,GZRS
orRAGZRS
and vice versa. - Account
Tier string Defines the Tier to use for this storage account. Valid options are
Standard
andPremium
. ForBlockBlobStorage
andFileStorage
accounts onlyPremium
is valid. Changing this forces a new resource to be created.Note: Blobs with a tier of
Premium
are of account kindStorageV2
.- Resource
Group stringName - The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.
- Access
Tier string - Defines the access tier for
BlobStorage
,FileStorage
andStorageV2
accounts. Valid options areHot
andCool
, defaults toHot
. - Account
Kind string Defines the Kind of account. Valid options are
BlobStorage
,BlockBlobStorage
,FileStorage
,Storage
andStorageV2
. Defaults toStorageV2
.Note: Changing the
account_kind
value fromStorage
toStorageV2
will not trigger a force new on the storage account, it will only upgrade the existing storage account fromStorage
toStorageV2
keeping the existing storage account in place.- Allow
Nested boolItems To Be Public Allow or disallow nested items within this Account to opt into being public. Defaults to
true
.Note: At this time
allow_nested_items_to_be_public
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- Allowed
Copy stringScope - Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are
AAD
andPrivateLink
. - Azure
Files AccountAuthentication Azure Files Authentication - A
azure_files_authentication
block as defined below. - Blob
Properties AccountBlob Properties - A
blob_properties
block as defined below. - Cross
Tenant boolReplication Enabled - Should cross Tenant replication be enabled? Defaults to
false
. - Custom
Domain AccountCustom Domain - A
custom_domain
block as documented below. - Customer
Managed AccountKey Customer Managed Key A
customer_managed_key
block as documented below.Note: It's possible to define a Customer Managed Key both within either the
customer_managed_key
block or by using theazure.storage.CustomerManagedKey
resource. However, it's not possible to use both methods to manage a Customer Managed Key for a Storage Account, since these will conflict. When using theazure.storage.CustomerManagedKey
resource, you will need to useignore_changes
on thecustomer_managed_key
block.- Default
To boolOauth Authentication - Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is
false
- Dns
Endpoint stringType Specifies which DNS endpoint type to use. Possible values are
Standard
andAzureDnsZone
. Defaults toStandard
. Changing this forces a new resource to be created.Note: Azure DNS zone support requires
PartitionedDns
feature to be enabled. To enable this feature for your subscription, use the following command:az feature register --namespace "Microsoft.Storage" --name "PartitionedDns"
.- Edge
Zone string - Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.
- Https
Traffic boolOnly Enabled - Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to
true
. - Identity
Account
Identity - An
identity
block as defined below. - Immutability
Policy AccountImmutability Policy - An
immutability_policy
block as defined below. Changing this forces a new resource to be created. - Infrastructure
Encryption boolEnabled Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_kind
isStorageV2
or whenaccount_tier
isPremium
andaccount_kind
is one ofBlockBlobStorage
orFileStorage
.- Is
Hns boolEnabled Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.
Note: This can only be
true
whenaccount_tier
isStandard
or whenaccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
- bool
Are Large File Shares Enabled? Defaults to
false
.Note: Large File Shares are enabled by default when using an
account_kind
ofFileStorage
.- Local
User boolEnabled - Is Local User Enabled? Defaults to
true
. - Location string
- Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.
- Min
Tls stringVersion The minimum supported TLS version for the storage account. Possible values are
TLS1_0
,TLS1_1
, andTLS1_2
. Defaults toTLS1_2
for new storage accounts.Note: At this time
min_tls_version
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- Name string
- Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.
- Network
Rules AccountNetwork Rules - A
network_rules
block as documented below. - Nfsv3Enabled bool
Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_tier
isStandard
andaccount_kind
isStorageV2
, oraccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
. Additionally, theis_hns_enabled
istrue
andaccount_replication_type
must beLRS
orRAGRS
.- Public
Network boolAccess Enabled - Whether the public network access is enabled? Defaults to
true
. - Queue
Encryption stringKey Type - The encryption type of the queue service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
. - Queue
Properties AccountQueue Properties A
queue_properties
block as defined below.Note:
queue_properties
can only be configured whenaccount_tier
is set toStandard
andaccount_kind
is set to eitherStorage
orStorageV2
.- Routing
Account
Routing - A
routing
block as defined below. - Sas
Policy AccountSas Policy - A
sas_policy
block as defined below. - Sftp
Enabled bool Boolean, enable SFTP for the storage account
Note: SFTP support requires
is_hns_enabled
set totrue
. More information on SFTP support can be found here. Defaults tofalse
- Account
Share Properties A
share_properties
block as defined below.Note:
share_properties
can only be configured when eitheraccount_tier
isStandard
andaccount_kind
is eitherStorage
orStorageV2
- or whenaccount_tier
isPremium
andaccount_kind
isFileStorage
.- bool
- Static
Website AccountStatic Website A
static_website
block as defined below.Note:
static_website
can only be set when theaccount_kind
is set toStorageV2
orBlockBlobStorage
.Note: If
static_website
is specified, the service will automatically create aazure.storage.Container
named$web
.- Table
Encryption stringKey Type The encryption type of the table service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.Note:
queue_encryption_key_type
andtable_encryption_key_type
cannot be set toAccount
whenaccount_kind
is setStorage
- Dictionary<string, string>
- A mapping of tags to assign to the resource.
- Account
Replication stringType - Defines the type of replication to use for this storage account. Valid options are
LRS
,GRS
,RAGRS
,ZRS
,GZRS
andRAGZRS
. Changing this forces a new resource to be created when typesLRS
,GRS
andRAGRS
are changed toZRS
,GZRS
orRAGZRS
and vice versa. - Account
Tier string Defines the Tier to use for this storage account. Valid options are
Standard
andPremium
. ForBlockBlobStorage
andFileStorage
accounts onlyPremium
is valid. Changing this forces a new resource to be created.Note: Blobs with a tier of
Premium
are of account kindStorageV2
.- Resource
Group stringName - The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.
- Access
Tier string - Defines the access tier for
BlobStorage
,FileStorage
andStorageV2
accounts. Valid options areHot
andCool
, defaults toHot
. - Account
Kind string Defines the Kind of account. Valid options are
BlobStorage
,BlockBlobStorage
,FileStorage
,Storage
andStorageV2
. Defaults toStorageV2
.Note: Changing the
account_kind
value fromStorage
toStorageV2
will not trigger a force new on the storage account, it will only upgrade the existing storage account fromStorage
toStorageV2
keeping the existing storage account in place.- Allow
Nested boolItems To Be Public Allow or disallow nested items within this Account to opt into being public. Defaults to
true
.Note: At this time
allow_nested_items_to_be_public
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- Allowed
Copy stringScope - Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are
AAD
andPrivateLink
. - Azure
Files AccountAuthentication Azure Files Authentication Args - A
azure_files_authentication
block as defined below. - Blob
Properties AccountBlob Properties Args - A
blob_properties
block as defined below. - Cross
Tenant boolReplication Enabled - Should cross Tenant replication be enabled? Defaults to
false
. - Custom
Domain AccountCustom Domain Args - A
custom_domain
block as documented below. - Customer
Managed AccountKey Customer Managed Key Args A
customer_managed_key
block as documented below.Note: It's possible to define a Customer Managed Key both within either the
customer_managed_key
block or by using theazure.storage.CustomerManagedKey
resource. However, it's not possible to use both methods to manage a Customer Managed Key for a Storage Account, since these will conflict. When using theazure.storage.CustomerManagedKey
resource, you will need to useignore_changes
on thecustomer_managed_key
block.- Default
To boolOauth Authentication - Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is
false
- Dns
Endpoint stringType Specifies which DNS endpoint type to use. Possible values are
Standard
andAzureDnsZone
. Defaults toStandard
. Changing this forces a new resource to be created.Note: Azure DNS zone support requires
PartitionedDns
feature to be enabled. To enable this feature for your subscription, use the following command:az feature register --namespace "Microsoft.Storage" --name "PartitionedDns"
.- Edge
Zone string - Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.
- Https
Traffic boolOnly Enabled - Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to
true
. - Identity
Account
Identity Args - An
identity
block as defined below. - Immutability
Policy AccountImmutability Policy Args - An
immutability_policy
block as defined below. Changing this forces a new resource to be created. - Infrastructure
Encryption boolEnabled Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_kind
isStorageV2
or whenaccount_tier
isPremium
andaccount_kind
is one ofBlockBlobStorage
orFileStorage
.- Is
Hns boolEnabled Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.
Note: This can only be
true
whenaccount_tier
isStandard
or whenaccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
- bool
Are Large File Shares Enabled? Defaults to
false
.Note: Large File Shares are enabled by default when using an
account_kind
ofFileStorage
.- Local
User boolEnabled - Is Local User Enabled? Defaults to
true
. - Location string
- Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.
- Min
Tls stringVersion The minimum supported TLS version for the storage account. Possible values are
TLS1_0
,TLS1_1
, andTLS1_2
. Defaults toTLS1_2
for new storage accounts.Note: At this time
min_tls_version
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- Name string
- Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.
- Network
Rules AccountNetwork Rules Type Args - A
network_rules
block as documented below. - Nfsv3Enabled bool
Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_tier
isStandard
andaccount_kind
isStorageV2
, oraccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
. Additionally, theis_hns_enabled
istrue
andaccount_replication_type
must beLRS
orRAGRS
.- Public
Network boolAccess Enabled - Whether the public network access is enabled? Defaults to
true
. - Queue
Encryption stringKey Type - The encryption type of the queue service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
. - Queue
Properties AccountQueue Properties Type Args A
queue_properties
block as defined below.Note:
queue_properties
can only be configured whenaccount_tier
is set toStandard
andaccount_kind
is set to eitherStorage
orStorageV2
.- Routing
Account
Routing Args - A
routing
block as defined below. - Sas
Policy AccountSas Policy Args - A
sas_policy
block as defined below. - Sftp
Enabled bool Boolean, enable SFTP for the storage account
Note: SFTP support requires
is_hns_enabled
set totrue
. More information on SFTP support can be found here. Defaults tofalse
- Account
Share Properties Args A
share_properties
block as defined below.Note:
share_properties
can only be configured when eitheraccount_tier
isStandard
andaccount_kind
is eitherStorage
orStorageV2
- or whenaccount_tier
isPremium
andaccount_kind
isFileStorage
.- bool
- Static
Website AccountStatic Website Type Args A
static_website
block as defined below.Note:
static_website
can only be set when theaccount_kind
is set toStorageV2
orBlockBlobStorage
.Note: If
static_website
is specified, the service will automatically create aazure.storage.Container
named$web
.- Table
Encryption stringKey Type The encryption type of the table service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.Note:
queue_encryption_key_type
andtable_encryption_key_type
cannot be set toAccount
whenaccount_kind
is setStorage
- map[string]string
- A mapping of tags to assign to the resource.
- account
Replication StringType - Defines the type of replication to use for this storage account. Valid options are
LRS
,GRS
,RAGRS
,ZRS
,GZRS
andRAGZRS
. Changing this forces a new resource to be created when typesLRS
,GRS
andRAGRS
are changed toZRS
,GZRS
orRAGZRS
and vice versa. - account
Tier String Defines the Tier to use for this storage account. Valid options are
Standard
andPremium
. ForBlockBlobStorage
andFileStorage
accounts onlyPremium
is valid. Changing this forces a new resource to be created.Note: Blobs with a tier of
Premium
are of account kindStorageV2
.- resource
Group StringName - The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.
- access
Tier String - Defines the access tier for
BlobStorage
,FileStorage
andStorageV2
accounts. Valid options areHot
andCool
, defaults toHot
. - account
Kind String Defines the Kind of account. Valid options are
BlobStorage
,BlockBlobStorage
,FileStorage
,Storage
andStorageV2
. Defaults toStorageV2
.Note: Changing the
account_kind
value fromStorage
toStorageV2
will not trigger a force new on the storage account, it will only upgrade the existing storage account fromStorage
toStorageV2
keeping the existing storage account in place.- allow
Nested BooleanItems To Be Public Allow or disallow nested items within this Account to opt into being public. Defaults to
true
.Note: At this time
allow_nested_items_to_be_public
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- allowed
Copy StringScope - Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are
AAD
andPrivateLink
. - azure
Files AccountAuthentication Azure Files Authentication - A
azure_files_authentication
block as defined below. - blob
Properties AccountBlob Properties - A
blob_properties
block as defined below. - cross
Tenant BooleanReplication Enabled - Should cross Tenant replication be enabled? Defaults to
false
. - custom
Domain AccountCustom Domain - A
custom_domain
block as documented below. - customer
Managed AccountKey Customer Managed Key A
customer_managed_key
block as documented below.Note: It's possible to define a Customer Managed Key both within either the
customer_managed_key
block or by using theazure.storage.CustomerManagedKey
resource. However, it's not possible to use both methods to manage a Customer Managed Key for a Storage Account, since these will conflict. When using theazure.storage.CustomerManagedKey
resource, you will need to useignore_changes
on thecustomer_managed_key
block.- default
To BooleanOauth Authentication - Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is
false
- dns
Endpoint StringType Specifies which DNS endpoint type to use. Possible values are
Standard
andAzureDnsZone
. Defaults toStandard
. Changing this forces a new resource to be created.Note: Azure DNS zone support requires
PartitionedDns
feature to be enabled. To enable this feature for your subscription, use the following command:az feature register --namespace "Microsoft.Storage" --name "PartitionedDns"
.- edge
Zone String - Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.
- https
Traffic BooleanOnly Enabled - Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to
true
. - identity
Account
Identity - An
identity
block as defined below. - immutability
Policy AccountImmutability Policy - An
immutability_policy
block as defined below. Changing this forces a new resource to be created. - infrastructure
Encryption BooleanEnabled Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_kind
isStorageV2
or whenaccount_tier
isPremium
andaccount_kind
is one ofBlockBlobStorage
orFileStorage
.- is
Hns BooleanEnabled Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.
Note: This can only be
true
whenaccount_tier
isStandard
or whenaccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
- Boolean
Are Large File Shares Enabled? Defaults to
false
.Note: Large File Shares are enabled by default when using an
account_kind
ofFileStorage
.- local
User BooleanEnabled - Is Local User Enabled? Defaults to
true
. - location String
- Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.
- min
Tls StringVersion The minimum supported TLS version for the storage account. Possible values are
TLS1_0
,TLS1_1
, andTLS1_2
. Defaults toTLS1_2
for new storage accounts.Note: At this time
min_tls_version
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- name String
- Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.
- network
Rules AccountNetwork Rules - A
network_rules
block as documented below. - nfsv3Enabled Boolean
Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_tier
isStandard
andaccount_kind
isStorageV2
, oraccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
. Additionally, theis_hns_enabled
istrue
andaccount_replication_type
must beLRS
orRAGRS
.- public
Network BooleanAccess Enabled - Whether the public network access is enabled? Defaults to
true
. - queue
Encryption StringKey Type - The encryption type of the queue service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
. - queue
Properties AccountQueue Properties A
queue_properties
block as defined below.Note:
queue_properties
can only be configured whenaccount_tier
is set toStandard
andaccount_kind
is set to eitherStorage
orStorageV2
.- routing
Account
Routing - A
routing
block as defined below. - sas
Policy AccountSas Policy - A
sas_policy
block as defined below. - sftp
Enabled Boolean Boolean, enable SFTP for the storage account
Note: SFTP support requires
is_hns_enabled
set totrue
. More information on SFTP support can be found here. Defaults tofalse
- Account
Share Properties A
share_properties
block as defined below.Note:
share_properties
can only be configured when eitheraccount_tier
isStandard
andaccount_kind
is eitherStorage
orStorageV2
- or whenaccount_tier
isPremium
andaccount_kind
isFileStorage
.- Boolean
- static
Website AccountStatic Website A
static_website
block as defined below.Note:
static_website
can only be set when theaccount_kind
is set toStorageV2
orBlockBlobStorage
.Note: If
static_website
is specified, the service will automatically create aazure.storage.Container
named$web
.- table
Encryption StringKey Type The encryption type of the table service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.Note:
queue_encryption_key_type
andtable_encryption_key_type
cannot be set toAccount
whenaccount_kind
is setStorage
- Map<String,String>
- A mapping of tags to assign to the resource.
- account
Replication stringType - Defines the type of replication to use for this storage account. Valid options are
LRS
,GRS
,RAGRS
,ZRS
,GZRS
andRAGZRS
. Changing this forces a new resource to be created when typesLRS
,GRS
andRAGRS
are changed toZRS
,GZRS
orRAGZRS
and vice versa. - account
Tier string Defines the Tier to use for this storage account. Valid options are
Standard
andPremium
. ForBlockBlobStorage
andFileStorage
accounts onlyPremium
is valid. Changing this forces a new resource to be created.Note: Blobs with a tier of
Premium
are of account kindStorageV2
.- resource
Group stringName - The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.
- access
Tier string - Defines the access tier for
BlobStorage
,FileStorage
andStorageV2
accounts. Valid options areHot
andCool
, defaults toHot
. - account
Kind string Defines the Kind of account. Valid options are
BlobStorage
,BlockBlobStorage
,FileStorage
,Storage
andStorageV2
. Defaults toStorageV2
.Note: Changing the
account_kind
value fromStorage
toStorageV2
will not trigger a force new on the storage account, it will only upgrade the existing storage account fromStorage
toStorageV2
keeping the existing storage account in place.- allow
Nested booleanItems To Be Public Allow or disallow nested items within this Account to opt into being public. Defaults to
true
.Note: At this time
allow_nested_items_to_be_public
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- allowed
Copy stringScope - Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are
AAD
andPrivateLink
. - azure
Files AccountAuthentication Azure Files Authentication - A
azure_files_authentication
block as defined below. - blob
Properties AccountBlob Properties - A
blob_properties
block as defined below. - cross
Tenant booleanReplication Enabled - Should cross Tenant replication be enabled? Defaults to
false
. - custom
Domain AccountCustom Domain - A
custom_domain
block as documented below. - customer
Managed AccountKey Customer Managed Key A
customer_managed_key
block as documented below.Note: It's possible to define a Customer Managed Key both within either the
customer_managed_key
block or by using theazure.storage.CustomerManagedKey
resource. However, it's not possible to use both methods to manage a Customer Managed Key for a Storage Account, since these will conflict. When using theazure.storage.CustomerManagedKey
resource, you will need to useignore_changes
on thecustomer_managed_key
block.- default
To booleanOauth Authentication - Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is
false
- dns
Endpoint stringType Specifies which DNS endpoint type to use. Possible values are
Standard
andAzureDnsZone
. Defaults toStandard
. Changing this forces a new resource to be created.Note: Azure DNS zone support requires
PartitionedDns
feature to be enabled. To enable this feature for your subscription, use the following command:az feature register --namespace "Microsoft.Storage" --name "PartitionedDns"
.- edge
Zone string - Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.
- https
Traffic booleanOnly Enabled - Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to
true
. - identity
Account
Identity - An
identity
block as defined below. - immutability
Policy AccountImmutability Policy - An
immutability_policy
block as defined below. Changing this forces a new resource to be created. - infrastructure
Encryption booleanEnabled Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_kind
isStorageV2
or whenaccount_tier
isPremium
andaccount_kind
is one ofBlockBlobStorage
orFileStorage
.- is
Hns booleanEnabled Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.
Note: This can only be
true
whenaccount_tier
isStandard
or whenaccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
- boolean
Are Large File Shares Enabled? Defaults to
false
.Note: Large File Shares are enabled by default when using an
account_kind
ofFileStorage
.- local
User booleanEnabled - Is Local User Enabled? Defaults to
true
. - location string
- Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.
- min
Tls stringVersion The minimum supported TLS version for the storage account. Possible values are
TLS1_0
,TLS1_1
, andTLS1_2
. Defaults toTLS1_2
for new storage accounts.Note: At this time
min_tls_version
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- name string
- Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.
- network
Rules AccountNetwork Rules - A
network_rules
block as documented below. - nfsv3Enabled boolean
Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_tier
isStandard
andaccount_kind
isStorageV2
, oraccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
. Additionally, theis_hns_enabled
istrue
andaccount_replication_type
must beLRS
orRAGRS
.- public
Network booleanAccess Enabled - Whether the public network access is enabled? Defaults to
true
. - queue
Encryption stringKey Type - The encryption type of the queue service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
. - queue
Properties AccountQueue Properties A
queue_properties
block as defined below.Note:
queue_properties
can only be configured whenaccount_tier
is set toStandard
andaccount_kind
is set to eitherStorage
orStorageV2
.- routing
Account
Routing - A
routing
block as defined below. - sas
Policy AccountSas Policy - A
sas_policy
block as defined below. - sftp
Enabled boolean Boolean, enable SFTP for the storage account
Note: SFTP support requires
is_hns_enabled
set totrue
. More information on SFTP support can be found here. Defaults tofalse
- Account
Share Properties A
share_properties
block as defined below.Note:
share_properties
can only be configured when eitheraccount_tier
isStandard
andaccount_kind
is eitherStorage
orStorageV2
- or whenaccount_tier
isPremium
andaccount_kind
isFileStorage
.- boolean
- static
Website AccountStatic Website A
static_website
block as defined below.Note:
static_website
can only be set when theaccount_kind
is set toStorageV2
orBlockBlobStorage
.Note: If
static_website
is specified, the service will automatically create aazure.storage.Container
named$web
.- table
Encryption stringKey Type The encryption type of the table service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.Note:
queue_encryption_key_type
andtable_encryption_key_type
cannot be set toAccount
whenaccount_kind
is setStorage
- {[key: string]: string}
- A mapping of tags to assign to the resource.
- account_
replication_ strtype - Defines the type of replication to use for this storage account. Valid options are
LRS
,GRS
,RAGRS
,ZRS
,GZRS
andRAGZRS
. Changing this forces a new resource to be created when typesLRS
,GRS
andRAGRS
are changed toZRS
,GZRS
orRAGZRS
and vice versa. - account_
tier str Defines the Tier to use for this storage account. Valid options are
Standard
andPremium
. ForBlockBlobStorage
andFileStorage
accounts onlyPremium
is valid. Changing this forces a new resource to be created.Note: Blobs with a tier of
Premium
are of account kindStorageV2
.- resource_
group_ strname - The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.
- access_
tier str - Defines the access tier for
BlobStorage
,FileStorage
andStorageV2
accounts. Valid options areHot
andCool
, defaults toHot
. - account_
kind str Defines the Kind of account. Valid options are
BlobStorage
,BlockBlobStorage
,FileStorage
,Storage
andStorageV2
. Defaults toStorageV2
.Note: Changing the
account_kind
value fromStorage
toStorageV2
will not trigger a force new on the storage account, it will only upgrade the existing storage account fromStorage
toStorageV2
keeping the existing storage account in place.- allow_
nested_ boolitems_ to_ be_ public Allow or disallow nested items within this Account to opt into being public. Defaults to
true
.Note: At this time
allow_nested_items_to_be_public
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- allowed_
copy_ strscope - Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are
AAD
andPrivateLink
. - azure_
files_ Accountauthentication Azure Files Authentication Args - A
azure_files_authentication
block as defined below. - blob_
properties AccountBlob Properties Args - A
blob_properties
block as defined below. - cross_
tenant_ boolreplication_ enabled - Should cross Tenant replication be enabled? Defaults to
false
. - custom_
domain AccountCustom Domain Args - A
custom_domain
block as documented below. - customer_
managed_ Accountkey Customer Managed Key Args A
customer_managed_key
block as documented below.Note: It's possible to define a Customer Managed Key both within either the
customer_managed_key
block or by using theazure.storage.CustomerManagedKey
resource. However, it's not possible to use both methods to manage a Customer Managed Key for a Storage Account, since these will conflict. When using theazure.storage.CustomerManagedKey
resource, you will need to useignore_changes
on thecustomer_managed_key
block.- default_
to_ booloauth_ authentication - Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is
false
- dns_
endpoint_ strtype Specifies which DNS endpoint type to use. Possible values are
Standard
andAzureDnsZone
. Defaults toStandard
. Changing this forces a new resource to be created.Note: Azure DNS zone support requires
PartitionedDns
feature to be enabled. To enable this feature for your subscription, use the following command:az feature register --namespace "Microsoft.Storage" --name "PartitionedDns"
.- edge_
zone str - Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.
- https_
traffic_ boolonly_ enabled - Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to
true
. - identity
Account
Identity Args - An
identity
block as defined below. - immutability_
policy AccountImmutability Policy Args - An
immutability_policy
block as defined below. Changing this forces a new resource to be created. - infrastructure_
encryption_ boolenabled Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_kind
isStorageV2
or whenaccount_tier
isPremium
andaccount_kind
is one ofBlockBlobStorage
orFileStorage
.- is_
hns_ boolenabled Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.
Note: This can only be
true
whenaccount_tier
isStandard
or whenaccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
- bool
Are Large File Shares Enabled? Defaults to
false
.Note: Large File Shares are enabled by default when using an
account_kind
ofFileStorage
.- local_
user_ boolenabled - Is Local User Enabled? Defaults to
true
. - location str
- Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.
- min_
tls_ strversion The minimum supported TLS version for the storage account. Possible values are
TLS1_0
,TLS1_1
, andTLS1_2
. Defaults toTLS1_2
for new storage accounts.Note: At this time
min_tls_version
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- name str
- Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.
- network_
rules AccountNetwork Rules Args - A
network_rules
block as documented below. - nfsv3_
enabled bool Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_tier
isStandard
andaccount_kind
isStorageV2
, oraccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
. Additionally, theis_hns_enabled
istrue
andaccount_replication_type
must beLRS
orRAGRS
.- public_
network_ boolaccess_ enabled - Whether the public network access is enabled? Defaults to
true
. - queue_
encryption_ strkey_ type - The encryption type of the queue service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
. - queue_
properties AccountQueue Properties Args A
queue_properties
block as defined below.Note:
queue_properties
can only be configured whenaccount_tier
is set toStandard
andaccount_kind
is set to eitherStorage
orStorageV2
.- routing
Account
Routing Args - A
routing
block as defined below. - sas_
policy AccountSas Policy Args - A
sas_policy
block as defined below. - sftp_
enabled bool Boolean, enable SFTP for the storage account
Note: SFTP support requires
is_hns_enabled
set totrue
. More information on SFTP support can be found here. Defaults tofalse
- Account
Share Properties Args A
share_properties
block as defined below.Note:
share_properties
can only be configured when eitheraccount_tier
isStandard
andaccount_kind
is eitherStorage
orStorageV2
- or whenaccount_tier
isPremium
andaccount_kind
isFileStorage
.- bool
- static_
website AccountStatic Website Args A
static_website
block as defined below.Note:
static_website
can only be set when theaccount_kind
is set toStorageV2
orBlockBlobStorage
.Note: If
static_website
is specified, the service will automatically create aazure.storage.Container
named$web
.- table_
encryption_ strkey_ type The encryption type of the table service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.Note:
queue_encryption_key_type
andtable_encryption_key_type
cannot be set toAccount
whenaccount_kind
is setStorage
- Mapping[str, str]
- A mapping of tags to assign to the resource.
- account
Replication StringType - Defines the type of replication to use for this storage account. Valid options are
LRS
,GRS
,RAGRS
,ZRS
,GZRS
andRAGZRS
. Changing this forces a new resource to be created when typesLRS
,GRS
andRAGRS
are changed toZRS
,GZRS
orRAGZRS
and vice versa. - account
Tier String Defines the Tier to use for this storage account. Valid options are
Standard
andPremium
. ForBlockBlobStorage
andFileStorage
accounts onlyPremium
is valid. Changing this forces a new resource to be created.Note: Blobs with a tier of
Premium
are of account kindStorageV2
.- resource
Group StringName - The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.
- access
Tier String - Defines the access tier for
BlobStorage
,FileStorage
andStorageV2
accounts. Valid options areHot
andCool
, defaults toHot
. - account
Kind String Defines the Kind of account. Valid options are
BlobStorage
,BlockBlobStorage
,FileStorage
,Storage
andStorageV2
. Defaults toStorageV2
.Note: Changing the
account_kind
value fromStorage
toStorageV2
will not trigger a force new on the storage account, it will only upgrade the existing storage account fromStorage
toStorageV2
keeping the existing storage account in place.- allow
Nested BooleanItems To Be Public Allow or disallow nested items within this Account to opt into being public. Defaults to
true
.Note: At this time
allow_nested_items_to_be_public
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- allowed
Copy StringScope - Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are
AAD
andPrivateLink
. - azure
Files Property MapAuthentication - A
azure_files_authentication
block as defined below. - blob
Properties Property Map - A
blob_properties
block as defined below. - cross
Tenant BooleanReplication Enabled - Should cross Tenant replication be enabled? Defaults to
false
. - custom
Domain Property Map - A
custom_domain
block as documented below. - customer
Managed Property MapKey A
customer_managed_key
block as documented below.Note: It's possible to define a Customer Managed Key both within either the
customer_managed_key
block or by using theazure.storage.CustomerManagedKey
resource. However, it's not possible to use both methods to manage a Customer Managed Key for a Storage Account, since these will conflict. When using theazure.storage.CustomerManagedKey
resource, you will need to useignore_changes
on thecustomer_managed_key
block.- default
To BooleanOauth Authentication - Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is
false
- dns
Endpoint StringType Specifies which DNS endpoint type to use. Possible values are
Standard
andAzureDnsZone
. Defaults toStandard
. Changing this forces a new resource to be created.Note: Azure DNS zone support requires
PartitionedDns
feature to be enabled. To enable this feature for your subscription, use the following command:az feature register --namespace "Microsoft.Storage" --name "PartitionedDns"
.- edge
Zone String - Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.
- https
Traffic BooleanOnly Enabled - Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to
true
. - identity Property Map
- An
identity
block as defined below. - immutability
Policy Property Map - An
immutability_policy
block as defined below. Changing this forces a new resource to be created. - infrastructure
Encryption BooleanEnabled Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_kind
isStorageV2
or whenaccount_tier
isPremium
andaccount_kind
is one ofBlockBlobStorage
orFileStorage
.- is
Hns BooleanEnabled Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.
Note: This can only be
true
whenaccount_tier
isStandard
or whenaccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
- Boolean
Are Large File Shares Enabled? Defaults to
false
.Note: Large File Shares are enabled by default when using an
account_kind
ofFileStorage
.- local
User BooleanEnabled - Is Local User Enabled? Defaults to
true
. - location String
- Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.
- min
Tls StringVersion The minimum supported TLS version for the storage account. Possible values are
TLS1_0
,TLS1_1
, andTLS1_2
. Defaults toTLS1_2
for new storage accounts.Note: At this time
min_tls_version
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- name String
- Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.
- network
Rules Property Map - A
network_rules
block as documented below. - nfsv3Enabled Boolean
Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_tier
isStandard
andaccount_kind
isStorageV2
, oraccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
. Additionally, theis_hns_enabled
istrue
andaccount_replication_type
must beLRS
orRAGRS
.- public
Network BooleanAccess Enabled - Whether the public network access is enabled? Defaults to
true
. - queue
Encryption StringKey Type - The encryption type of the queue service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
. - queue
Properties Property Map A
queue_properties
block as defined below.Note:
queue_properties
can only be configured whenaccount_tier
is set toStandard
andaccount_kind
is set to eitherStorage
orStorageV2
.- routing Property Map
- A
routing
block as defined below. - sas
Policy Property Map - A
sas_policy
block as defined below. - sftp
Enabled Boolean Boolean, enable SFTP for the storage account
Note: SFTP support requires
is_hns_enabled
set totrue
. More information on SFTP support can be found here. Defaults tofalse
- Property Map
A
share_properties
block as defined below.Note:
share_properties
can only be configured when eitheraccount_tier
isStandard
andaccount_kind
is eitherStorage
orStorageV2
- or whenaccount_tier
isPremium
andaccount_kind
isFileStorage
.- Boolean
- static
Website Property Map A
static_website
block as defined below.Note:
static_website
can only be set when theaccount_kind
is set toStorageV2
orBlockBlobStorage
.Note: If
static_website
is specified, the service will automatically create aazure.storage.Container
named$web
.- table
Encryption StringKey Type The encryption type of the table service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.Note:
queue_encryption_key_type
andtable_encryption_key_type
cannot be set toAccount
whenaccount_kind
is setStorage
- Map<String>
- A mapping of tags to assign to the resource.
Outputs
All input properties are implicitly available as output properties. Additionally, the Account resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Primary
Access stringKey - The primary access key for the storage account.
- Primary
Blob stringConnection String - The connection string associated with the primary blob location.
- Primary
Blob stringEndpoint - The endpoint URL for blob storage in the primary location.
- Primary
Blob stringHost - The hostname with port if applicable for blob storage in the primary location.
- Primary
Blob stringInternet Endpoint - The internet routing endpoint URL for blob storage in the primary location.
- Primary
Blob stringInternet Host - The internet routing hostname with port if applicable for blob storage in the primary location.
- Primary
Blob stringMicrosoft Endpoint - The microsoft routing endpoint URL for blob storage in the primary location.
- Primary
Blob stringMicrosoft Host - The microsoft routing hostname with port if applicable for blob storage in the primary location.
- Primary
Connection stringString - The connection string associated with the primary location.
- Primary
Dfs stringEndpoint - The endpoint URL for DFS storage in the primary location.
- Primary
Dfs stringHost - The hostname with port if applicable for DFS storage in the primary location.
- Primary
Dfs stringInternet Endpoint - The internet routing endpoint URL for DFS storage in the primary location.
- Primary
Dfs stringInternet Host - The internet routing hostname with port if applicable for DFS storage in the primary location.
- Primary
Dfs stringMicrosoft Endpoint - The microsoft routing endpoint URL for DFS storage in the primary location.
- Primary
Dfs stringMicrosoft Host - The microsoft routing hostname with port if applicable for DFS storage in the primary location.
- Primary
File stringEndpoint - The endpoint URL for file storage in the primary location.
- Primary
File stringHost - The hostname with port if applicable for file storage in the primary location.
- Primary
File stringInternet Endpoint - The internet routing endpoint URL for file storage in the primary location.
- Primary
File stringInternet Host - The internet routing hostname with port if applicable for file storage in the primary location.
- Primary
File stringMicrosoft Endpoint - The microsoft routing endpoint URL for file storage in the primary location.
- Primary
File stringMicrosoft Host - The microsoft routing hostname with port if applicable for file storage in the primary location.
- Primary
Location string - The primary location of the storage account.
- Primary
Queue stringEndpoint - The endpoint URL for queue storage in the primary location.
- Primary
Queue stringHost - The hostname with port if applicable for queue storage in the primary location.
- Primary
Queue stringMicrosoft Endpoint - The microsoft routing endpoint URL for queue storage in the primary location.
- Primary
Queue stringMicrosoft Host - The microsoft routing hostname with port if applicable for queue storage in the primary location.
- Primary
Table stringEndpoint - The endpoint URL for table storage in the primary location.
- Primary
Table stringHost - The hostname with port if applicable for table storage in the primary location.
- Primary
Table stringMicrosoft Endpoint - The microsoft routing endpoint URL for table storage in the primary location.
- Primary
Table stringMicrosoft Host - The microsoft routing hostname with port if applicable for table storage in the primary location.
- Primary
Web stringEndpoint - The endpoint URL for web storage in the primary location.
- Primary
Web stringHost - The hostname with port if applicable for web storage in the primary location.
- Primary
Web stringInternet Endpoint - The internet routing endpoint URL for web storage in the primary location.
- Primary
Web stringInternet Host - The internet routing hostname with port if applicable for web storage in the primary location.
- Primary
Web stringMicrosoft Endpoint - The microsoft routing endpoint URL for web storage in the primary location.
- Primary
Web stringMicrosoft Host - The microsoft routing hostname with port if applicable for web storage in the primary location.
- Secondary
Access stringKey - The secondary access key for the storage account.
- Secondary
Blob stringConnection String - The connection string associated with the secondary blob location.
- Secondary
Blob stringEndpoint - The endpoint URL for blob storage in the secondary location.
- Secondary
Blob stringHost - The hostname with port if applicable for blob storage in the secondary location.
- Secondary
Blob stringInternet Endpoint - The internet routing endpoint URL for blob storage in the secondary location.
- Secondary
Blob stringInternet Host - The internet routing hostname with port if applicable for blob storage in the secondary location.
- Secondary
Blob stringMicrosoft Endpoint - The microsoft routing endpoint URL for blob storage in the secondary location.
- Secondary
Blob stringMicrosoft Host - The microsoft routing hostname with port if applicable for blob storage in the secondary location.
- Secondary
Connection stringString - The connection string associated with the secondary location.
- Secondary
Dfs stringEndpoint - The endpoint URL for DFS storage in the secondary location.
- Secondary
Dfs stringHost - The hostname with port if applicable for DFS storage in the secondary location.
- Secondary
Dfs stringInternet Endpoint - The internet routing endpoint URL for DFS storage in the secondary location.
- Secondary
Dfs stringInternet Host - The internet routing hostname with port if applicable for DFS storage in the secondary location.
- Secondary
Dfs stringMicrosoft Endpoint - The microsoft routing endpoint URL for DFS storage in the secondary location.
- Secondary
Dfs stringMicrosoft Host - The microsoft routing hostname with port if applicable for DFS storage in the secondary location.
- Secondary
File stringEndpoint - The endpoint URL for file storage in the secondary location.
- Secondary
File stringHost - The hostname with port if applicable for file storage in the secondary location.
- Secondary
File stringInternet Endpoint - The internet routing endpoint URL for file storage in the secondary location.
- Secondary
File stringInternet Host - The internet routing hostname with port if applicable for file storage in the secondary location.
- Secondary
File stringMicrosoft Endpoint - The microsoft routing endpoint URL for file storage in the secondary location.
- Secondary
File stringMicrosoft Host - The microsoft routing hostname with port if applicable for file storage in the secondary location.
- Secondary
Location string - The secondary location of the storage account.
- Secondary
Queue stringEndpoint - The endpoint URL for queue storage in the secondary location.
- Secondary
Queue stringHost - The hostname with port if applicable for queue storage in the secondary location.
- Secondary
Queue stringMicrosoft Endpoint - The microsoft routing endpoint URL for queue storage in the secondary location.
- Secondary
Queue stringMicrosoft Host - The microsoft routing hostname with port if applicable for queue storage in the secondary location.
- Secondary
Table stringEndpoint - The endpoint URL for table storage in the secondary location.
- Secondary
Table stringHost - The hostname with port if applicable for table storage in the secondary location.
- Secondary
Table stringMicrosoft Endpoint - The microsoft routing endpoint URL for table storage in the secondary location.
- Secondary
Table stringMicrosoft Host - The microsoft routing hostname with port if applicable for table storage in the secondary location.
- Secondary
Web stringEndpoint - The endpoint URL for web storage in the secondary location.
- Secondary
Web stringHost - The hostname with port if applicable for web storage in the secondary location.
- Secondary
Web stringInternet Endpoint - The internet routing endpoint URL for web storage in the secondary location.
- Secondary
Web stringInternet Host - The internet routing hostname with port if applicable for web storage in the secondary location.
- Secondary
Web stringMicrosoft Endpoint - The microsoft routing endpoint URL for web storage in the secondary location.
- Secondary
Web stringMicrosoft Host - The microsoft routing hostname with port if applicable for web storage in the secondary location.
- Id string
- The provider-assigned unique ID for this managed resource.
- Primary
Access stringKey - The primary access key for the storage account.
- Primary
Blob stringConnection String - The connection string associated with the primary blob location.
- Primary
Blob stringEndpoint - The endpoint URL for blob storage in the primary location.
- Primary
Blob stringHost - The hostname with port if applicable for blob storage in the primary location.
- Primary
Blob stringInternet Endpoint - The internet routing endpoint URL for blob storage in the primary location.
- Primary
Blob stringInternet Host - The internet routing hostname with port if applicable for blob storage in the primary location.
- Primary
Blob stringMicrosoft Endpoint - The microsoft routing endpoint URL for blob storage in the primary location.
- Primary
Blob stringMicrosoft Host - The microsoft routing hostname with port if applicable for blob storage in the primary location.
- Primary
Connection stringString - The connection string associated with the primary location.
- Primary
Dfs stringEndpoint - The endpoint URL for DFS storage in the primary location.
- Primary
Dfs stringHost - The hostname with port if applicable for DFS storage in the primary location.
- Primary
Dfs stringInternet Endpoint - The internet routing endpoint URL for DFS storage in the primary location.
- Primary
Dfs stringInternet Host - The internet routing hostname with port if applicable for DFS storage in the primary location.
- Primary
Dfs stringMicrosoft Endpoint - The microsoft routing endpoint URL for DFS storage in the primary location.
- Primary
Dfs stringMicrosoft Host - The microsoft routing hostname with port if applicable for DFS storage in the primary location.
- Primary
File stringEndpoint - The endpoint URL for file storage in the primary location.
- Primary
File stringHost - The hostname with port if applicable for file storage in the primary location.
- Primary
File stringInternet Endpoint - The internet routing endpoint URL for file storage in the primary location.
- Primary
File stringInternet Host - The internet routing hostname with port if applicable for file storage in the primary location.
- Primary
File stringMicrosoft Endpoint - The microsoft routing endpoint URL for file storage in the primary location.
- Primary
File stringMicrosoft Host - The microsoft routing hostname with port if applicable for file storage in the primary location.
- Primary
Location string - The primary location of the storage account.
- Primary
Queue stringEndpoint - The endpoint URL for queue storage in the primary location.
- Primary
Queue stringHost - The hostname with port if applicable for queue storage in the primary location.
- Primary
Queue stringMicrosoft Endpoint - The microsoft routing endpoint URL for queue storage in the primary location.
- Primary
Queue stringMicrosoft Host - The microsoft routing hostname with port if applicable for queue storage in the primary location.
- Primary
Table stringEndpoint - The endpoint URL for table storage in the primary location.
- Primary
Table stringHost - The hostname with port if applicable for table storage in the primary location.
- Primary
Table stringMicrosoft Endpoint - The microsoft routing endpoint URL for table storage in the primary location.
- Primary
Table stringMicrosoft Host - The microsoft routing hostname with port if applicable for table storage in the primary location.
- Primary
Web stringEndpoint - The endpoint URL for web storage in the primary location.
- Primary
Web stringHost - The hostname with port if applicable for web storage in the primary location.
- Primary
Web stringInternet Endpoint - The internet routing endpoint URL for web storage in the primary location.
- Primary
Web stringInternet Host - The internet routing hostname with port if applicable for web storage in the primary location.
- Primary
Web stringMicrosoft Endpoint - The microsoft routing endpoint URL for web storage in the primary location.
- Primary
Web stringMicrosoft Host - The microsoft routing hostname with port if applicable for web storage in the primary location.
- Secondary
Access stringKey - The secondary access key for the storage account.
- Secondary
Blob stringConnection String - The connection string associated with the secondary blob location.
- Secondary
Blob stringEndpoint - The endpoint URL for blob storage in the secondary location.
- Secondary
Blob stringHost - The hostname with port if applicable for blob storage in the secondary location.
- Secondary
Blob stringInternet Endpoint - The internet routing endpoint URL for blob storage in the secondary location.
- Secondary
Blob stringInternet Host - The internet routing hostname with port if applicable for blob storage in the secondary location.
- Secondary
Blob stringMicrosoft Endpoint - The microsoft routing endpoint URL for blob storage in the secondary location.
- Secondary
Blob stringMicrosoft Host - The microsoft routing hostname with port if applicable for blob storage in the secondary location.
- Secondary
Connection stringString - The connection string associated with the secondary location.
- Secondary
Dfs stringEndpoint - The endpoint URL for DFS storage in the secondary location.
- Secondary
Dfs stringHost - The hostname with port if applicable for DFS storage in the secondary location.
- Secondary
Dfs stringInternet Endpoint - The internet routing endpoint URL for DFS storage in the secondary location.
- Secondary
Dfs stringInternet Host - The internet routing hostname with port if applicable for DFS storage in the secondary location.
- Secondary
Dfs stringMicrosoft Endpoint - The microsoft routing endpoint URL for DFS storage in the secondary location.
- Secondary
Dfs stringMicrosoft Host - The microsoft routing hostname with port if applicable for DFS storage in the secondary location.
- Secondary
File stringEndpoint - The endpoint URL for file storage in the secondary location.
- Secondary
File stringHost - The hostname with port if applicable for file storage in the secondary location.
- Secondary
File stringInternet Endpoint - The internet routing endpoint URL for file storage in the secondary location.
- Secondary
File stringInternet Host - The internet routing hostname with port if applicable for file storage in the secondary location.
- Secondary
File stringMicrosoft Endpoint - The microsoft routing endpoint URL for file storage in the secondary location.
- Secondary
File stringMicrosoft Host - The microsoft routing hostname with port if applicable for file storage in the secondary location.
- Secondary
Location string - The secondary location of the storage account.
- Secondary
Queue stringEndpoint - The endpoint URL for queue storage in the secondary location.
- Secondary
Queue stringHost - The hostname with port if applicable for queue storage in the secondary location.
- Secondary
Queue stringMicrosoft Endpoint - The microsoft routing endpoint URL for queue storage in the secondary location.
- Secondary
Queue stringMicrosoft Host - The microsoft routing hostname with port if applicable for queue storage in the secondary location.
- Secondary
Table stringEndpoint - The endpoint URL for table storage in the secondary location.
- Secondary
Table stringHost - The hostname with port if applicable for table storage in the secondary location.
- Secondary
Table stringMicrosoft Endpoint - The microsoft routing endpoint URL for table storage in the secondary location.
- Secondary
Table stringMicrosoft Host - The microsoft routing hostname with port if applicable for table storage in the secondary location.
- Secondary
Web stringEndpoint - The endpoint URL for web storage in the secondary location.
- Secondary
Web stringHost - The hostname with port if applicable for web storage in the secondary location.
- Secondary
Web stringInternet Endpoint - The internet routing endpoint URL for web storage in the secondary location.
- Secondary
Web stringInternet Host - The internet routing hostname with port if applicable for web storage in the secondary location.
- Secondary
Web stringMicrosoft Endpoint - The microsoft routing endpoint URL for web storage in the secondary location.
- Secondary
Web stringMicrosoft Host - The microsoft routing hostname with port if applicable for web storage in the secondary location.
- id String
- The provider-assigned unique ID for this managed resource.
- primary
Access StringKey - The primary access key for the storage account.
- primary
Blob StringConnection String - The connection string associated with the primary blob location.
- primary
Blob StringEndpoint - The endpoint URL for blob storage in the primary location.
- primary
Blob StringHost - The hostname with port if applicable for blob storage in the primary location.
- primary
Blob StringInternet Endpoint - The internet routing endpoint URL for blob storage in the primary location.
- primary
Blob StringInternet Host - The internet routing hostname with port if applicable for blob storage in the primary location.
- primary
Blob StringMicrosoft Endpoint - The microsoft routing endpoint URL for blob storage in the primary location.
- primary
Blob StringMicrosoft Host - The microsoft routing hostname with port if applicable for blob storage in the primary location.
- primary
Connection StringString - The connection string associated with the primary location.
- primary
Dfs StringEndpoint - The endpoint URL for DFS storage in the primary location.
- primary
Dfs StringHost - The hostname with port if applicable for DFS storage in the primary location.
- primary
Dfs StringInternet Endpoint - The internet routing endpoint URL for DFS storage in the primary location.
- primary
Dfs StringInternet Host - The internet routing hostname with port if applicable for DFS storage in the primary location.
- primary
Dfs StringMicrosoft Endpoint - The microsoft routing endpoint URL for DFS storage in the primary location.
- primary
Dfs StringMicrosoft Host - The microsoft routing hostname with port if applicable for DFS storage in the primary location.
- primary
File StringEndpoint - The endpoint URL for file storage in the primary location.
- primary
File StringHost - The hostname with port if applicable for file storage in the primary location.
- primary
File StringInternet Endpoint - The internet routing endpoint URL for file storage in the primary location.
- primary
File StringInternet Host - The internet routing hostname with port if applicable for file storage in the primary location.
- primary
File StringMicrosoft Endpoint - The microsoft routing endpoint URL for file storage in the primary location.
- primary
File StringMicrosoft Host - The microsoft routing hostname with port if applicable for file storage in the primary location.
- primary
Location String - The primary location of the storage account.
- primary
Queue StringEndpoint - The endpoint URL for queue storage in the primary location.
- primary
Queue StringHost - The hostname with port if applicable for queue storage in the primary location.
- primary
Queue StringMicrosoft Endpoint - The microsoft routing endpoint URL for queue storage in the primary location.
- primary
Queue StringMicrosoft Host - The microsoft routing hostname with port if applicable for queue storage in the primary location.
- primary
Table StringEndpoint - The endpoint URL for table storage in the primary location.
- primary
Table StringHost - The hostname with port if applicable for table storage in the primary location.
- primary
Table StringMicrosoft Endpoint - The microsoft routing endpoint URL for table storage in the primary location.
- primary
Table StringMicrosoft Host - The microsoft routing hostname with port if applicable for table storage in the primary location.
- primary
Web StringEndpoint - The endpoint URL for web storage in the primary location.
- primary
Web StringHost - The hostname with port if applicable for web storage in the primary location.
- primary
Web StringInternet Endpoint - The internet routing endpoint URL for web storage in the primary location.
- primary
Web StringInternet Host - The internet routing hostname with port if applicable for web storage in the primary location.
- primary
Web StringMicrosoft Endpoint - The microsoft routing endpoint URL for web storage in the primary location.
- primary
Web StringMicrosoft Host - The microsoft routing hostname with port if applicable for web storage in the primary location.
- secondary
Access StringKey - The secondary access key for the storage account.
- secondary
Blob StringConnection String - The connection string associated with the secondary blob location.
- secondary
Blob StringEndpoint - The endpoint URL for blob storage in the secondary location.
- secondary
Blob StringHost - The hostname with port if applicable for blob storage in the secondary location.
- secondary
Blob StringInternet Endpoint - The internet routing endpoint URL for blob storage in the secondary location.
- secondary
Blob StringInternet Host - The internet routing hostname with port if applicable for blob storage in the secondary location.
- secondary
Blob StringMicrosoft Endpoint - The microsoft routing endpoint URL for blob storage in the secondary location.
- secondary
Blob StringMicrosoft Host - The microsoft routing hostname with port if applicable for blob storage in the secondary location.
- secondary
Connection StringString - The connection string associated with the secondary location.
- secondary
Dfs StringEndpoint - The endpoint URL for DFS storage in the secondary location.
- secondary
Dfs StringHost - The hostname with port if applicable for DFS storage in the secondary location.
- secondary
Dfs StringInternet Endpoint - The internet routing endpoint URL for DFS storage in the secondary location.
- secondary
Dfs StringInternet Host - The internet routing hostname with port if applicable for DFS storage in the secondary location.
- secondary
Dfs StringMicrosoft Endpoint - The microsoft routing endpoint URL for DFS storage in the secondary location.
- secondary
Dfs StringMicrosoft Host - The microsoft routing hostname with port if applicable for DFS storage in the secondary location.
- secondary
File StringEndpoint - The endpoint URL for file storage in the secondary location.
- secondary
File StringHost - The hostname with port if applicable for file storage in the secondary location.
- secondary
File StringInternet Endpoint - The internet routing endpoint URL for file storage in the secondary location.
- secondary
File StringInternet Host - The internet routing hostname with port if applicable for file storage in the secondary location.
- secondary
File StringMicrosoft Endpoint - The microsoft routing endpoint URL for file storage in the secondary location.
- secondary
File StringMicrosoft Host - The microsoft routing hostname with port if applicable for file storage in the secondary location.
- secondary
Location String - The secondary location of the storage account.
- secondary
Queue StringEndpoint - The endpoint URL for queue storage in the secondary location.
- secondary
Queue StringHost - The hostname with port if applicable for queue storage in the secondary location.
- secondary
Queue StringMicrosoft Endpoint - The microsoft routing endpoint URL for queue storage in the secondary location.
- secondary
Queue StringMicrosoft Host - The microsoft routing hostname with port if applicable for queue storage in the secondary location.
- secondary
Table StringEndpoint - The endpoint URL for table storage in the secondary location.
- secondary
Table StringHost - The hostname with port if applicable for table storage in the secondary location.
- secondary
Table StringMicrosoft Endpoint - The microsoft routing endpoint URL for table storage in the secondary location.
- secondary
Table StringMicrosoft Host - The microsoft routing hostname with port if applicable for table storage in the secondary location.
- secondary
Web StringEndpoint - The endpoint URL for web storage in the secondary location.
- secondary
Web StringHost - The hostname with port if applicable for web storage in the secondary location.
- secondary
Web StringInternet Endpoint - The internet routing endpoint URL for web storage in the secondary location.
- secondary
Web StringInternet Host - The internet routing hostname with port if applicable for web storage in the secondary location.
- secondary
Web StringMicrosoft Endpoint - The microsoft routing endpoint URL for web storage in the secondary location.
- secondary
Web StringMicrosoft Host - The microsoft routing hostname with port if applicable for web storage in the secondary location.
- id string
- The provider-assigned unique ID for this managed resource.
- primary
Access stringKey - The primary access key for the storage account.
- primary
Blob stringConnection String - The connection string associated with the primary blob location.
- primary
Blob stringEndpoint - The endpoint URL for blob storage in the primary location.
- primary
Blob stringHost - The hostname with port if applicable for blob storage in the primary location.
- primary
Blob stringInternet Endpoint - The internet routing endpoint URL for blob storage in the primary location.
- primary
Blob stringInternet Host - The internet routing hostname with port if applicable for blob storage in the primary location.
- primary
Blob stringMicrosoft Endpoint - The microsoft routing endpoint URL for blob storage in the primary location.
- primary
Blob stringMicrosoft Host - The microsoft routing hostname with port if applicable for blob storage in the primary location.
- primary
Connection stringString - The connection string associated with the primary location.
- primary
Dfs stringEndpoint - The endpoint URL for DFS storage in the primary location.
- primary
Dfs stringHost - The hostname with port if applicable for DFS storage in the primary location.
- primary
Dfs stringInternet Endpoint - The internet routing endpoint URL for DFS storage in the primary location.
- primary
Dfs stringInternet Host - The internet routing hostname with port if applicable for DFS storage in the primary location.
- primary
Dfs stringMicrosoft Endpoint - The microsoft routing endpoint URL for DFS storage in the primary location.
- primary
Dfs stringMicrosoft Host - The microsoft routing hostname with port if applicable for DFS storage in the primary location.
- primary
File stringEndpoint - The endpoint URL for file storage in the primary location.
- primary
File stringHost - The hostname with port if applicable for file storage in the primary location.
- primary
File stringInternet Endpoint - The internet routing endpoint URL for file storage in the primary location.
- primary
File stringInternet Host - The internet routing hostname with port if applicable for file storage in the primary location.
- primary
File stringMicrosoft Endpoint - The microsoft routing endpoint URL for file storage in the primary location.
- primary
File stringMicrosoft Host - The microsoft routing hostname with port if applicable for file storage in the primary location.
- primary
Location string - The primary location of the storage account.
- primary
Queue stringEndpoint - The endpoint URL for queue storage in the primary location.
- primary
Queue stringHost - The hostname with port if applicable for queue storage in the primary location.
- primary
Queue stringMicrosoft Endpoint - The microsoft routing endpoint URL for queue storage in the primary location.
- primary
Queue stringMicrosoft Host - The microsoft routing hostname with port if applicable for queue storage in the primary location.
- primary
Table stringEndpoint - The endpoint URL for table storage in the primary location.
- primary
Table stringHost - The hostname with port if applicable for table storage in the primary location.
- primary
Table stringMicrosoft Endpoint - The microsoft routing endpoint URL for table storage in the primary location.
- primary
Table stringMicrosoft Host - The microsoft routing hostname with port if applicable for table storage in the primary location.
- primary
Web stringEndpoint - The endpoint URL for web storage in the primary location.
- primary
Web stringHost - The hostname with port if applicable for web storage in the primary location.
- primary
Web stringInternet Endpoint - The internet routing endpoint URL for web storage in the primary location.
- primary
Web stringInternet Host - The internet routing hostname with port if applicable for web storage in the primary location.
- primary
Web stringMicrosoft Endpoint - The microsoft routing endpoint URL for web storage in the primary location.
- primary
Web stringMicrosoft Host - The microsoft routing hostname with port if applicable for web storage in the primary location.
- secondary
Access stringKey - The secondary access key for the storage account.
- secondary
Blob stringConnection String - The connection string associated with the secondary blob location.
- secondary
Blob stringEndpoint - The endpoint URL for blob storage in the secondary location.
- secondary
Blob stringHost - The hostname with port if applicable for blob storage in the secondary location.
- secondary
Blob stringInternet Endpoint - The internet routing endpoint URL for blob storage in the secondary location.
- secondary
Blob stringInternet Host - The internet routing hostname with port if applicable for blob storage in the secondary location.
- secondary
Blob stringMicrosoft Endpoint - The microsoft routing endpoint URL for blob storage in the secondary location.
- secondary
Blob stringMicrosoft Host - The microsoft routing hostname with port if applicable for blob storage in the secondary location.
- secondary
Connection stringString - The connection string associated with the secondary location.
- secondary
Dfs stringEndpoint - The endpoint URL for DFS storage in the secondary location.
- secondary
Dfs stringHost - The hostname with port if applicable for DFS storage in the secondary location.
- secondary
Dfs stringInternet Endpoint - The internet routing endpoint URL for DFS storage in the secondary location.
- secondary
Dfs stringInternet Host - The internet routing hostname with port if applicable for DFS storage in the secondary location.
- secondary
Dfs stringMicrosoft Endpoint - The microsoft routing endpoint URL for DFS storage in the secondary location.
- secondary
Dfs stringMicrosoft Host - The microsoft routing hostname with port if applicable for DFS storage in the secondary location.
- secondary
File stringEndpoint - The endpoint URL for file storage in the secondary location.
- secondary
File stringHost - The hostname with port if applicable for file storage in the secondary location.
- secondary
File stringInternet Endpoint - The internet routing endpoint URL for file storage in the secondary location.
- secondary
File stringInternet Host - The internet routing hostname with port if applicable for file storage in the secondary location.
- secondary
File stringMicrosoft Endpoint - The microsoft routing endpoint URL for file storage in the secondary location.
- secondary
File stringMicrosoft Host - The microsoft routing hostname with port if applicable for file storage in the secondary location.
- secondary
Location string - The secondary location of the storage account.
- secondary
Queue stringEndpoint - The endpoint URL for queue storage in the secondary location.
- secondary
Queue stringHost - The hostname with port if applicable for queue storage in the secondary location.
- secondary
Queue stringMicrosoft Endpoint - The microsoft routing endpoint URL for queue storage in the secondary location.
- secondary
Queue stringMicrosoft Host - The microsoft routing hostname with port if applicable for queue storage in the secondary location.
- secondary
Table stringEndpoint - The endpoint URL for table storage in the secondary location.
- secondary
Table stringHost - The hostname with port if applicable for table storage in the secondary location.
- secondary
Table stringMicrosoft Endpoint - The microsoft routing endpoint URL for table storage in the secondary location.
- secondary
Table stringMicrosoft Host - The microsoft routing hostname with port if applicable for table storage in the secondary location.
- secondary
Web stringEndpoint - The endpoint URL for web storage in the secondary location.
- secondary
Web stringHost - The hostname with port if applicable for web storage in the secondary location.
- secondary
Web stringInternet Endpoint - The internet routing endpoint URL for web storage in the secondary location.
- secondary
Web stringInternet Host - The internet routing hostname with port if applicable for web storage in the secondary location.
- secondary
Web stringMicrosoft Endpoint - The microsoft routing endpoint URL for web storage in the secondary location.
- secondary
Web stringMicrosoft Host - The microsoft routing hostname with port if applicable for web storage in the secondary location.
- id str
- The provider-assigned unique ID for this managed resource.
- primary_
access_ strkey - The primary access key for the storage account.
- primary_
blob_ strconnection_ string - The connection string associated with the primary blob location.
- primary_
blob_ strendpoint - The endpoint URL for blob storage in the primary location.
- primary_
blob_ strhost - The hostname with port if applicable for blob storage in the primary location.
- primary_
blob_ strinternet_ endpoint - The internet routing endpoint URL for blob storage in the primary location.
- primary_
blob_ strinternet_ host - The internet routing hostname with port if applicable for blob storage in the primary location.
- primary_
blob_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for blob storage in the primary location.
- primary_
blob_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for blob storage in the primary location.
- primary_
connection_ strstring - The connection string associated with the primary location.
- primary_
dfs_ strendpoint - The endpoint URL for DFS storage in the primary location.
- primary_
dfs_ strhost - The hostname with port if applicable for DFS storage in the primary location.
- primary_
dfs_ strinternet_ endpoint - The internet routing endpoint URL for DFS storage in the primary location.
- primary_
dfs_ strinternet_ host - The internet routing hostname with port if applicable for DFS storage in the primary location.
- primary_
dfs_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for DFS storage in the primary location.
- primary_
dfs_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for DFS storage in the primary location.
- primary_
file_ strendpoint - The endpoint URL for file storage in the primary location.
- primary_
file_ strhost - The hostname with port if applicable for file storage in the primary location.
- primary_
file_ strinternet_ endpoint - The internet routing endpoint URL for file storage in the primary location.
- primary_
file_ strinternet_ host - The internet routing hostname with port if applicable for file storage in the primary location.
- primary_
file_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for file storage in the primary location.
- primary_
file_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for file storage in the primary location.
- primary_
location str - The primary location of the storage account.
- primary_
queue_ strendpoint - The endpoint URL for queue storage in the primary location.
- primary_
queue_ strhost - The hostname with port if applicable for queue storage in the primary location.
- primary_
queue_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for queue storage in the primary location.
- primary_
queue_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for queue storage in the primary location.
- primary_
table_ strendpoint - The endpoint URL for table storage in the primary location.
- primary_
table_ strhost - The hostname with port if applicable for table storage in the primary location.
- primary_
table_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for table storage in the primary location.
- primary_
table_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for table storage in the primary location.
- primary_
web_ strendpoint - The endpoint URL for web storage in the primary location.
- primary_
web_ strhost - The hostname with port if applicable for web storage in the primary location.
- primary_
web_ strinternet_ endpoint - The internet routing endpoint URL for web storage in the primary location.
- primary_
web_ strinternet_ host - The internet routing hostname with port if applicable for web storage in the primary location.
- primary_
web_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for web storage in the primary location.
- primary_
web_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for web storage in the primary location.
- secondary_
access_ strkey - The secondary access key for the storage account.
- secondary_
blob_ strconnection_ string - The connection string associated with the secondary blob location.
- secondary_
blob_ strendpoint - The endpoint URL for blob storage in the secondary location.
- secondary_
blob_ strhost - The hostname with port if applicable for blob storage in the secondary location.
- secondary_
blob_ strinternet_ endpoint - The internet routing endpoint URL for blob storage in the secondary location.
- secondary_
blob_ strinternet_ host - The internet routing hostname with port if applicable for blob storage in the secondary location.
- secondary_
blob_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for blob storage in the secondary location.
- secondary_
blob_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for blob storage in the secondary location.
- secondary_
connection_ strstring - The connection string associated with the secondary location.
- secondary_
dfs_ strendpoint - The endpoint URL for DFS storage in the secondary location.
- secondary_
dfs_ strhost - The hostname with port if applicable for DFS storage in the secondary location.
- secondary_
dfs_ strinternet_ endpoint - The internet routing endpoint URL for DFS storage in the secondary location.
- secondary_
dfs_ strinternet_ host - The internet routing hostname with port if applicable for DFS storage in the secondary location.
- secondary_
dfs_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for DFS storage in the secondary location.
- secondary_
dfs_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for DFS storage in the secondary location.
- secondary_
file_ strendpoint - The endpoint URL for file storage in the secondary location.
- secondary_
file_ strhost - The hostname with port if applicable for file storage in the secondary location.
- secondary_
file_ strinternet_ endpoint - The internet routing endpoint URL for file storage in the secondary location.
- secondary_
file_ strinternet_ host - The internet routing hostname with port if applicable for file storage in the secondary location.
- secondary_
file_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for file storage in the secondary location.
- secondary_
file_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for file storage in the secondary location.
- secondary_
location str - The secondary location of the storage account.
- secondary_
queue_ strendpoint - The endpoint URL for queue storage in the secondary location.
- secondary_
queue_ strhost - The hostname with port if applicable for queue storage in the secondary location.
- secondary_
queue_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for queue storage in the secondary location.
- secondary_
queue_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for queue storage in the secondary location.
- secondary_
table_ strendpoint - The endpoint URL for table storage in the secondary location.
- secondary_
table_ strhost - The hostname with port if applicable for table storage in the secondary location.
- secondary_
table_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for table storage in the secondary location.
- secondary_
table_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for table storage in the secondary location.
- secondary_
web_ strendpoint - The endpoint URL for web storage in the secondary location.
- secondary_
web_ strhost - The hostname with port if applicable for web storage in the secondary location.
- secondary_
web_ strinternet_ endpoint - The internet routing endpoint URL for web storage in the secondary location.
- secondary_
web_ strinternet_ host - The internet routing hostname with port if applicable for web storage in the secondary location.
- secondary_
web_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for web storage in the secondary location.
- secondary_
web_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for web storage in the secondary location.
- id String
- The provider-assigned unique ID for this managed resource.
- primary
Access StringKey - The primary access key for the storage account.
- primary
Blob StringConnection String - The connection string associated with the primary blob location.
- primary
Blob StringEndpoint - The endpoint URL for blob storage in the primary location.
- primary
Blob StringHost - The hostname with port if applicable for blob storage in the primary location.
- primary
Blob StringInternet Endpoint - The internet routing endpoint URL for blob storage in the primary location.
- primary
Blob StringInternet Host - The internet routing hostname with port if applicable for blob storage in the primary location.
- primary
Blob StringMicrosoft Endpoint - The microsoft routing endpoint URL for blob storage in the primary location.
- primary
Blob StringMicrosoft Host - The microsoft routing hostname with port if applicable for blob storage in the primary location.
- primary
Connection StringString - The connection string associated with the primary location.
- primary
Dfs StringEndpoint - The endpoint URL for DFS storage in the primary location.
- primary
Dfs StringHost - The hostname with port if applicable for DFS storage in the primary location.
- primary
Dfs StringInternet Endpoint - The internet routing endpoint URL for DFS storage in the primary location.
- primary
Dfs StringInternet Host - The internet routing hostname with port if applicable for DFS storage in the primary location.
- primary
Dfs StringMicrosoft Endpoint - The microsoft routing endpoint URL for DFS storage in the primary location.
- primary
Dfs StringMicrosoft Host - The microsoft routing hostname with port if applicable for DFS storage in the primary location.
- primary
File StringEndpoint - The endpoint URL for file storage in the primary location.
- primary
File StringHost - The hostname with port if applicable for file storage in the primary location.
- primary
File StringInternet Endpoint - The internet routing endpoint URL for file storage in the primary location.
- primary
File StringInternet Host - The internet routing hostname with port if applicable for file storage in the primary location.
- primary
File StringMicrosoft Endpoint - The microsoft routing endpoint URL for file storage in the primary location.
- primary
File StringMicrosoft Host - The microsoft routing hostname with port if applicable for file storage in the primary location.
- primary
Location String - The primary location of the storage account.
- primary
Queue StringEndpoint - The endpoint URL for queue storage in the primary location.
- primary
Queue StringHost - The hostname with port if applicable for queue storage in the primary location.
- primary
Queue StringMicrosoft Endpoint - The microsoft routing endpoint URL for queue storage in the primary location.
- primary
Queue StringMicrosoft Host - The microsoft routing hostname with port if applicable for queue storage in the primary location.
- primary
Table StringEndpoint - The endpoint URL for table storage in the primary location.
- primary
Table StringHost - The hostname with port if applicable for table storage in the primary location.
- primary
Table StringMicrosoft Endpoint - The microsoft routing endpoint URL for table storage in the primary location.
- primary
Table StringMicrosoft Host - The microsoft routing hostname with port if applicable for table storage in the primary location.
- primary
Web StringEndpoint - The endpoint URL for web storage in the primary location.
- primary
Web StringHost - The hostname with port if applicable for web storage in the primary location.
- primary
Web StringInternet Endpoint - The internet routing endpoint URL for web storage in the primary location.
- primary
Web StringInternet Host - The internet routing hostname with port if applicable for web storage in the primary location.
- primary
Web StringMicrosoft Endpoint - The microsoft routing endpoint URL for web storage in the primary location.
- primary
Web StringMicrosoft Host - The microsoft routing hostname with port if applicable for web storage in the primary location.
- secondary
Access StringKey - The secondary access key for the storage account.
- secondary
Blob StringConnection String - The connection string associated with the secondary blob location.
- secondary
Blob StringEndpoint - The endpoint URL for blob storage in the secondary location.
- secondary
Blob StringHost - The hostname with port if applicable for blob storage in the secondary location.
- secondary
Blob StringInternet Endpoint - The internet routing endpoint URL for blob storage in the secondary location.
- secondary
Blob StringInternet Host - The internet routing hostname with port if applicable for blob storage in the secondary location.
- secondary
Blob StringMicrosoft Endpoint - The microsoft routing endpoint URL for blob storage in the secondary location.
- secondary
Blob StringMicrosoft Host - The microsoft routing hostname with port if applicable for blob storage in the secondary location.
- secondary
Connection StringString - The connection string associated with the secondary location.
- secondary
Dfs StringEndpoint - The endpoint URL for DFS storage in the secondary location.
- secondary
Dfs StringHost - The hostname with port if applicable for DFS storage in the secondary location.
- secondary
Dfs StringInternet Endpoint - The internet routing endpoint URL for DFS storage in the secondary location.
- secondary
Dfs StringInternet Host - The internet routing hostname with port if applicable for DFS storage in the secondary location.
- secondary
Dfs StringMicrosoft Endpoint - The microsoft routing endpoint URL for DFS storage in the secondary location.
- secondary
Dfs StringMicrosoft Host - The microsoft routing hostname with port if applicable for DFS storage in the secondary location.
- secondary
File StringEndpoint - The endpoint URL for file storage in the secondary location.
- secondary
File StringHost - The hostname with port if applicable for file storage in the secondary location.
- secondary
File StringInternet Endpoint - The internet routing endpoint URL for file storage in the secondary location.
- secondary
File StringInternet Host - The internet routing hostname with port if applicable for file storage in the secondary location.
- secondary
File StringMicrosoft Endpoint - The microsoft routing endpoint URL for file storage in the secondary location.
- secondary
File StringMicrosoft Host - The microsoft routing hostname with port if applicable for file storage in the secondary location.
- secondary
Location String - The secondary location of the storage account.
- secondary
Queue StringEndpoint - The endpoint URL for queue storage in the secondary location.
- secondary
Queue StringHost - The hostname with port if applicable for queue storage in the secondary location.
- secondary
Queue StringMicrosoft Endpoint - The microsoft routing endpoint URL for queue storage in the secondary location.
- secondary
Queue StringMicrosoft Host - The microsoft routing hostname with port if applicable for queue storage in the secondary location.
- secondary
Table StringEndpoint - The endpoint URL for table storage in the secondary location.
- secondary
Table StringHost - The hostname with port if applicable for table storage in the secondary location.
- secondary
Table StringMicrosoft Endpoint - The microsoft routing endpoint URL for table storage in the secondary location.
- secondary
Table StringMicrosoft Host - The microsoft routing hostname with port if applicable for table storage in the secondary location.
- secondary
Web StringEndpoint - The endpoint URL for web storage in the secondary location.
- secondary
Web StringHost - The hostname with port if applicable for web storage in the secondary location.
- secondary
Web StringInternet Endpoint - The internet routing endpoint URL for web storage in the secondary location.
- secondary
Web StringInternet Host - The internet routing hostname with port if applicable for web storage in the secondary location.
- secondary
Web StringMicrosoft Endpoint - The microsoft routing endpoint URL for web storage in the secondary location.
- secondary
Web StringMicrosoft Host - The microsoft routing hostname with port if applicable for web storage in the secondary location.
Look up Existing Account Resource
Get an existing Account resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: AccountState, opts?: CustomResourceOptions): Account
@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
access_tier: Optional[str] = None,
account_kind: Optional[str] = None,
account_replication_type: Optional[str] = None,
account_tier: Optional[str] = None,
allow_nested_items_to_be_public: Optional[bool] = None,
allowed_copy_scope: Optional[str] = None,
azure_files_authentication: Optional[AccountAzureFilesAuthenticationArgs] = None,
blob_properties: Optional[AccountBlobPropertiesArgs] = None,
cross_tenant_replication_enabled: Optional[bool] = None,
custom_domain: Optional[AccountCustomDomainArgs] = None,
customer_managed_key: Optional[AccountCustomerManagedKeyArgs] = None,
default_to_oauth_authentication: Optional[bool] = None,
dns_endpoint_type: Optional[str] = None,
edge_zone: Optional[str] = None,
https_traffic_only_enabled: Optional[bool] = None,
identity: Optional[AccountIdentityArgs] = None,
immutability_policy: Optional[AccountImmutabilityPolicyArgs] = None,
infrastructure_encryption_enabled: Optional[bool] = None,
is_hns_enabled: Optional[bool] = None,
large_file_share_enabled: Optional[bool] = None,
local_user_enabled: Optional[bool] = None,
location: Optional[str] = None,
min_tls_version: Optional[str] = None,
name: Optional[str] = None,
network_rules: Optional[AccountNetworkRulesArgs] = None,
nfsv3_enabled: Optional[bool] = None,
primary_access_key: Optional[str] = None,
primary_blob_connection_string: Optional[str] = None,
primary_blob_endpoint: Optional[str] = None,
primary_blob_host: Optional[str] = None,
primary_blob_internet_endpoint: Optional[str] = None,
primary_blob_internet_host: Optional[str] = None,
primary_blob_microsoft_endpoint: Optional[str] = None,
primary_blob_microsoft_host: Optional[str] = None,
primary_connection_string: Optional[str] = None,
primary_dfs_endpoint: Optional[str] = None,
primary_dfs_host: Optional[str] = None,
primary_dfs_internet_endpoint: Optional[str] = None,
primary_dfs_internet_host: Optional[str] = None,
primary_dfs_microsoft_endpoint: Optional[str] = None,
primary_dfs_microsoft_host: Optional[str] = None,
primary_file_endpoint: Optional[str] = None,
primary_file_host: Optional[str] = None,
primary_file_internet_endpoint: Optional[str] = None,
primary_file_internet_host: Optional[str] = None,
primary_file_microsoft_endpoint: Optional[str] = None,
primary_file_microsoft_host: Optional[str] = None,
primary_location: Optional[str] = None,
primary_queue_endpoint: Optional[str] = None,
primary_queue_host: Optional[str] = None,
primary_queue_microsoft_endpoint: Optional[str] = None,
primary_queue_microsoft_host: Optional[str] = None,
primary_table_endpoint: Optional[str] = None,
primary_table_host: Optional[str] = None,
primary_table_microsoft_endpoint: Optional[str] = None,
primary_table_microsoft_host: Optional[str] = None,
primary_web_endpoint: Optional[str] = None,
primary_web_host: Optional[str] = None,
primary_web_internet_endpoint: Optional[str] = None,
primary_web_internet_host: Optional[str] = None,
primary_web_microsoft_endpoint: Optional[str] = None,
primary_web_microsoft_host: Optional[str] = None,
public_network_access_enabled: Optional[bool] = None,
queue_encryption_key_type: Optional[str] = None,
queue_properties: Optional[AccountQueuePropertiesArgs] = None,
resource_group_name: Optional[str] = None,
routing: Optional[AccountRoutingArgs] = None,
sas_policy: Optional[AccountSasPolicyArgs] = None,
secondary_access_key: Optional[str] = None,
secondary_blob_connection_string: Optional[str] = None,
secondary_blob_endpoint: Optional[str] = None,
secondary_blob_host: Optional[str] = None,
secondary_blob_internet_endpoint: Optional[str] = None,
secondary_blob_internet_host: Optional[str] = None,
secondary_blob_microsoft_endpoint: Optional[str] = None,
secondary_blob_microsoft_host: Optional[str] = None,
secondary_connection_string: Optional[str] = None,
secondary_dfs_endpoint: Optional[str] = None,
secondary_dfs_host: Optional[str] = None,
secondary_dfs_internet_endpoint: Optional[str] = None,
secondary_dfs_internet_host: Optional[str] = None,
secondary_dfs_microsoft_endpoint: Optional[str] = None,
secondary_dfs_microsoft_host: Optional[str] = None,
secondary_file_endpoint: Optional[str] = None,
secondary_file_host: Optional[str] = None,
secondary_file_internet_endpoint: Optional[str] = None,
secondary_file_internet_host: Optional[str] = None,
secondary_file_microsoft_endpoint: Optional[str] = None,
secondary_file_microsoft_host: Optional[str] = None,
secondary_location: Optional[str] = None,
secondary_queue_endpoint: Optional[str] = None,
secondary_queue_host: Optional[str] = None,
secondary_queue_microsoft_endpoint: Optional[str] = None,
secondary_queue_microsoft_host: Optional[str] = None,
secondary_table_endpoint: Optional[str] = None,
secondary_table_host: Optional[str] = None,
secondary_table_microsoft_endpoint: Optional[str] = None,
secondary_table_microsoft_host: Optional[str] = None,
secondary_web_endpoint: Optional[str] = None,
secondary_web_host: Optional[str] = None,
secondary_web_internet_endpoint: Optional[str] = None,
secondary_web_internet_host: Optional[str] = None,
secondary_web_microsoft_endpoint: Optional[str] = None,
secondary_web_microsoft_host: Optional[str] = None,
sftp_enabled: Optional[bool] = None,
share_properties: Optional[AccountSharePropertiesArgs] = None,
shared_access_key_enabled: Optional[bool] = None,
static_website: Optional[AccountStaticWebsiteArgs] = None,
table_encryption_key_type: Optional[str] = None,
tags: Optional[Mapping[str, str]] = None) -> Account
func GetAccount(ctx *Context, name string, id IDInput, state *AccountState, opts ...ResourceOption) (*Account, error)
public static Account Get(string name, Input<string> id, AccountState? state, CustomResourceOptions? opts = null)
public static Account get(String name, Output<String> id, AccountState state, CustomResourceOptions options)
Resource lookup is not supported in YAML
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Access
Tier string - Defines the access tier for
BlobStorage
,FileStorage
andStorageV2
accounts. Valid options areHot
andCool
, defaults toHot
. - Account
Kind string Defines the Kind of account. Valid options are
BlobStorage
,BlockBlobStorage
,FileStorage
,Storage
andStorageV2
. Defaults toStorageV2
.Note: Changing the
account_kind
value fromStorage
toStorageV2
will not trigger a force new on the storage account, it will only upgrade the existing storage account fromStorage
toStorageV2
keeping the existing storage account in place.- Account
Replication stringType - Defines the type of replication to use for this storage account. Valid options are
LRS
,GRS
,RAGRS
,ZRS
,GZRS
andRAGZRS
. Changing this forces a new resource to be created when typesLRS
,GRS
andRAGRS
are changed toZRS
,GZRS
orRAGZRS
and vice versa. - Account
Tier string Defines the Tier to use for this storage account. Valid options are
Standard
andPremium
. ForBlockBlobStorage
andFileStorage
accounts onlyPremium
is valid. Changing this forces a new resource to be created.Note: Blobs with a tier of
Premium
are of account kindStorageV2
.- Allow
Nested boolItems To Be Public Allow or disallow nested items within this Account to opt into being public. Defaults to
true
.Note: At this time
allow_nested_items_to_be_public
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- Allowed
Copy stringScope - Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are
AAD
andPrivateLink
. - Azure
Files AccountAuthentication Azure Files Authentication - A
azure_files_authentication
block as defined below. - Blob
Properties AccountBlob Properties - A
blob_properties
block as defined below. - Cross
Tenant boolReplication Enabled - Should cross Tenant replication be enabled? Defaults to
false
. - Custom
Domain AccountCustom Domain - A
custom_domain
block as documented below. - Customer
Managed AccountKey Customer Managed Key A
customer_managed_key
block as documented below.Note: It's possible to define a Customer Managed Key both within either the
customer_managed_key
block or by using theazure.storage.CustomerManagedKey
resource. However, it's not possible to use both methods to manage a Customer Managed Key for a Storage Account, since these will conflict. When using theazure.storage.CustomerManagedKey
resource, you will need to useignore_changes
on thecustomer_managed_key
block.- Default
To boolOauth Authentication - Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is
false
- Dns
Endpoint stringType Specifies which DNS endpoint type to use. Possible values are
Standard
andAzureDnsZone
. Defaults toStandard
. Changing this forces a new resource to be created.Note: Azure DNS zone support requires
PartitionedDns
feature to be enabled. To enable this feature for your subscription, use the following command:az feature register --namespace "Microsoft.Storage" --name "PartitionedDns"
.- Edge
Zone string - Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.
- Https
Traffic boolOnly Enabled - Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to
true
. - Identity
Account
Identity - An
identity
block as defined below. - Immutability
Policy AccountImmutability Policy - An
immutability_policy
block as defined below. Changing this forces a new resource to be created. - Infrastructure
Encryption boolEnabled Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_kind
isStorageV2
or whenaccount_tier
isPremium
andaccount_kind
is one ofBlockBlobStorage
orFileStorage
.- Is
Hns boolEnabled Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.
Note: This can only be
true
whenaccount_tier
isStandard
or whenaccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
- bool
Are Large File Shares Enabled? Defaults to
false
.Note: Large File Shares are enabled by default when using an
account_kind
ofFileStorage
.- Local
User boolEnabled - Is Local User Enabled? Defaults to
true
. - Location string
- Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.
- Min
Tls stringVersion The minimum supported TLS version for the storage account. Possible values are
TLS1_0
,TLS1_1
, andTLS1_2
. Defaults toTLS1_2
for new storage accounts.Note: At this time
min_tls_version
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- Name string
- Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.
- Network
Rules AccountNetwork Rules - A
network_rules
block as documented below. - Nfsv3Enabled bool
Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_tier
isStandard
andaccount_kind
isStorageV2
, oraccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
. Additionally, theis_hns_enabled
istrue
andaccount_replication_type
must beLRS
orRAGRS
.- Primary
Access stringKey - The primary access key for the storage account.
- Primary
Blob stringConnection String - The connection string associated with the primary blob location.
- Primary
Blob stringEndpoint - The endpoint URL for blob storage in the primary location.
- Primary
Blob stringHost - The hostname with port if applicable for blob storage in the primary location.
- Primary
Blob stringInternet Endpoint - The internet routing endpoint URL for blob storage in the primary location.
- Primary
Blob stringInternet Host - The internet routing hostname with port if applicable for blob storage in the primary location.
- Primary
Blob stringMicrosoft Endpoint - The microsoft routing endpoint URL for blob storage in the primary location.
- Primary
Blob stringMicrosoft Host - The microsoft routing hostname with port if applicable for blob storage in the primary location.
- Primary
Connection stringString - The connection string associated with the primary location.
- Primary
Dfs stringEndpoint - The endpoint URL for DFS storage in the primary location.
- Primary
Dfs stringHost - The hostname with port if applicable for DFS storage in the primary location.
- Primary
Dfs stringInternet Endpoint - The internet routing endpoint URL for DFS storage in the primary location.
- Primary
Dfs stringInternet Host - The internet routing hostname with port if applicable for DFS storage in the primary location.
- Primary
Dfs stringMicrosoft Endpoint - The microsoft routing endpoint URL for DFS storage in the primary location.
- Primary
Dfs stringMicrosoft Host - The microsoft routing hostname with port if applicable for DFS storage in the primary location.
- Primary
File stringEndpoint - The endpoint URL for file storage in the primary location.
- Primary
File stringHost - The hostname with port if applicable for file storage in the primary location.
- Primary
File stringInternet Endpoint - The internet routing endpoint URL for file storage in the primary location.
- Primary
File stringInternet Host - The internet routing hostname with port if applicable for file storage in the primary location.
- Primary
File stringMicrosoft Endpoint - The microsoft routing endpoint URL for file storage in the primary location.
- Primary
File stringMicrosoft Host - The microsoft routing hostname with port if applicable for file storage in the primary location.
- Primary
Location string - The primary location of the storage account.
- Primary
Queue stringEndpoint - The endpoint URL for queue storage in the primary location.
- Primary
Queue stringHost - The hostname with port if applicable for queue storage in the primary location.
- Primary
Queue stringMicrosoft Endpoint - The microsoft routing endpoint URL for queue storage in the primary location.
- Primary
Queue stringMicrosoft Host - The microsoft routing hostname with port if applicable for queue storage in the primary location.
- Primary
Table stringEndpoint - The endpoint URL for table storage in the primary location.
- Primary
Table stringHost - The hostname with port if applicable for table storage in the primary location.
- Primary
Table stringMicrosoft Endpoint - The microsoft routing endpoint URL for table storage in the primary location.
- Primary
Table stringMicrosoft Host - The microsoft routing hostname with port if applicable for table storage in the primary location.
- Primary
Web stringEndpoint - The endpoint URL for web storage in the primary location.
- Primary
Web stringHost - The hostname with port if applicable for web storage in the primary location.
- Primary
Web stringInternet Endpoint - The internet routing endpoint URL for web storage in the primary location.
- Primary
Web stringInternet Host - The internet routing hostname with port if applicable for web storage in the primary location.
- Primary
Web stringMicrosoft Endpoint - The microsoft routing endpoint URL for web storage in the primary location.
- Primary
Web stringMicrosoft Host - The microsoft routing hostname with port if applicable for web storage in the primary location.
- Public
Network boolAccess Enabled - Whether the public network access is enabled? Defaults to
true
. - Queue
Encryption stringKey Type - The encryption type of the queue service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
. - Queue
Properties AccountQueue Properties A
queue_properties
block as defined below.Note:
queue_properties
can only be configured whenaccount_tier
is set toStandard
andaccount_kind
is set to eitherStorage
orStorageV2
.- Resource
Group stringName - The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.
- Routing
Account
Routing - A
routing
block as defined below. - Sas
Policy AccountSas Policy - A
sas_policy
block as defined below. - Secondary
Access stringKey - The secondary access key for the storage account.
- Secondary
Blob stringConnection String - The connection string associated with the secondary blob location.
- Secondary
Blob stringEndpoint - The endpoint URL for blob storage in the secondary location.
- Secondary
Blob stringHost - The hostname with port if applicable for blob storage in the secondary location.
- Secondary
Blob stringInternet Endpoint - The internet routing endpoint URL for blob storage in the secondary location.
- Secondary
Blob stringInternet Host - The internet routing hostname with port if applicable for blob storage in the secondary location.
- Secondary
Blob stringMicrosoft Endpoint - The microsoft routing endpoint URL for blob storage in the secondary location.
- Secondary
Blob stringMicrosoft Host - The microsoft routing hostname with port if applicable for blob storage in the secondary location.
- Secondary
Connection stringString - The connection string associated with the secondary location.
- Secondary
Dfs stringEndpoint - The endpoint URL for DFS storage in the secondary location.
- Secondary
Dfs stringHost - The hostname with port if applicable for DFS storage in the secondary location.
- Secondary
Dfs stringInternet Endpoint - The internet routing endpoint URL for DFS storage in the secondary location.
- Secondary
Dfs stringInternet Host - The internet routing hostname with port if applicable for DFS storage in the secondary location.
- Secondary
Dfs stringMicrosoft Endpoint - The microsoft routing endpoint URL for DFS storage in the secondary location.
- Secondary
Dfs stringMicrosoft Host - The microsoft routing hostname with port if applicable for DFS storage in the secondary location.
- Secondary
File stringEndpoint - The endpoint URL for file storage in the secondary location.
- Secondary
File stringHost - The hostname with port if applicable for file storage in the secondary location.
- Secondary
File stringInternet Endpoint - The internet routing endpoint URL for file storage in the secondary location.
- Secondary
File stringInternet Host - The internet routing hostname with port if applicable for file storage in the secondary location.
- Secondary
File stringMicrosoft Endpoint - The microsoft routing endpoint URL for file storage in the secondary location.
- Secondary
File stringMicrosoft Host - The microsoft routing hostname with port if applicable for file storage in the secondary location.
- Secondary
Location string - The secondary location of the storage account.
- Secondary
Queue stringEndpoint - The endpoint URL for queue storage in the secondary location.
- Secondary
Queue stringHost - The hostname with port if applicable for queue storage in the secondary location.
- Secondary
Queue stringMicrosoft Endpoint - The microsoft routing endpoint URL for queue storage in the secondary location.
- Secondary
Queue stringMicrosoft Host - The microsoft routing hostname with port if applicable for queue storage in the secondary location.
- Secondary
Table stringEndpoint - The endpoint URL for table storage in the secondary location.
- Secondary
Table stringHost - The hostname with port if applicable for table storage in the secondary location.
- Secondary
Table stringMicrosoft Endpoint - The microsoft routing endpoint URL for table storage in the secondary location.
- Secondary
Table stringMicrosoft Host - The microsoft routing hostname with port if applicable for table storage in the secondary location.
- Secondary
Web stringEndpoint - The endpoint URL for web storage in the secondary location.
- Secondary
Web stringHost - The hostname with port if applicable for web storage in the secondary location.
- Secondary
Web stringInternet Endpoint - The internet routing endpoint URL for web storage in the secondary location.
- Secondary
Web stringInternet Host - The internet routing hostname with port if applicable for web storage in the secondary location.
- Secondary
Web stringMicrosoft Endpoint - The microsoft routing endpoint URL for web storage in the secondary location.
- Secondary
Web stringMicrosoft Host - The microsoft routing hostname with port if applicable for web storage in the secondary location.
- Sftp
Enabled bool Boolean, enable SFTP for the storage account
Note: SFTP support requires
is_hns_enabled
set totrue
. More information on SFTP support can be found here. Defaults tofalse
- Account
Share Properties A
share_properties
block as defined below.Note:
share_properties
can only be configured when eitheraccount_tier
isStandard
andaccount_kind
is eitherStorage
orStorageV2
- or whenaccount_tier
isPremium
andaccount_kind
isFileStorage
.- bool
- Static
Website AccountStatic Website A
static_website
block as defined below.Note:
static_website
can only be set when theaccount_kind
is set toStorageV2
orBlockBlobStorage
.Note: If
static_website
is specified, the service will automatically create aazure.storage.Container
named$web
.- Table
Encryption stringKey Type The encryption type of the table service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.Note:
queue_encryption_key_type
andtable_encryption_key_type
cannot be set toAccount
whenaccount_kind
is setStorage
- Dictionary<string, string>
- A mapping of tags to assign to the resource.
- Access
Tier string - Defines the access tier for
BlobStorage
,FileStorage
andStorageV2
accounts. Valid options areHot
andCool
, defaults toHot
. - Account
Kind string Defines the Kind of account. Valid options are
BlobStorage
,BlockBlobStorage
,FileStorage
,Storage
andStorageV2
. Defaults toStorageV2
.Note: Changing the
account_kind
value fromStorage
toStorageV2
will not trigger a force new on the storage account, it will only upgrade the existing storage account fromStorage
toStorageV2
keeping the existing storage account in place.- Account
Replication stringType - Defines the type of replication to use for this storage account. Valid options are
LRS
,GRS
,RAGRS
,ZRS
,GZRS
andRAGZRS
. Changing this forces a new resource to be created when typesLRS
,GRS
andRAGRS
are changed toZRS
,GZRS
orRAGZRS
and vice versa. - Account
Tier string Defines the Tier to use for this storage account. Valid options are
Standard
andPremium
. ForBlockBlobStorage
andFileStorage
accounts onlyPremium
is valid. Changing this forces a new resource to be created.Note: Blobs with a tier of
Premium
are of account kindStorageV2
.- Allow
Nested boolItems To Be Public Allow or disallow nested items within this Account to opt into being public. Defaults to
true
.Note: At this time
allow_nested_items_to_be_public
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- Allowed
Copy stringScope - Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are
AAD
andPrivateLink
. - Azure
Files AccountAuthentication Azure Files Authentication Args - A
azure_files_authentication
block as defined below. - Blob
Properties AccountBlob Properties Args - A
blob_properties
block as defined below. - Cross
Tenant boolReplication Enabled - Should cross Tenant replication be enabled? Defaults to
false
. - Custom
Domain AccountCustom Domain Args - A
custom_domain
block as documented below. - Customer
Managed AccountKey Customer Managed Key Args A
customer_managed_key
block as documented below.Note: It's possible to define a Customer Managed Key both within either the
customer_managed_key
block or by using theazure.storage.CustomerManagedKey
resource. However, it's not possible to use both methods to manage a Customer Managed Key for a Storage Account, since these will conflict. When using theazure.storage.CustomerManagedKey
resource, you will need to useignore_changes
on thecustomer_managed_key
block.- Default
To boolOauth Authentication - Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is
false
- Dns
Endpoint stringType Specifies which DNS endpoint type to use. Possible values are
Standard
andAzureDnsZone
. Defaults toStandard
. Changing this forces a new resource to be created.Note: Azure DNS zone support requires
PartitionedDns
feature to be enabled. To enable this feature for your subscription, use the following command:az feature register --namespace "Microsoft.Storage" --name "PartitionedDns"
.- Edge
Zone string - Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.
- Https
Traffic boolOnly Enabled - Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to
true
. - Identity
Account
Identity Args - An
identity
block as defined below. - Immutability
Policy AccountImmutability Policy Args - An
immutability_policy
block as defined below. Changing this forces a new resource to be created. - Infrastructure
Encryption boolEnabled Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_kind
isStorageV2
or whenaccount_tier
isPremium
andaccount_kind
is one ofBlockBlobStorage
orFileStorage
.- Is
Hns boolEnabled Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.
Note: This can only be
true
whenaccount_tier
isStandard
or whenaccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
- bool
Are Large File Shares Enabled? Defaults to
false
.Note: Large File Shares are enabled by default when using an
account_kind
ofFileStorage
.- Local
User boolEnabled - Is Local User Enabled? Defaults to
true
. - Location string
- Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.
- Min
Tls stringVersion The minimum supported TLS version for the storage account. Possible values are
TLS1_0
,TLS1_1
, andTLS1_2
. Defaults toTLS1_2
for new storage accounts.Note: At this time
min_tls_version
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- Name string
- Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.
- Network
Rules AccountNetwork Rules Type Args - A
network_rules
block as documented below. - Nfsv3Enabled bool
Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_tier
isStandard
andaccount_kind
isStorageV2
, oraccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
. Additionally, theis_hns_enabled
istrue
andaccount_replication_type
must beLRS
orRAGRS
.- Primary
Access stringKey - The primary access key for the storage account.
- Primary
Blob stringConnection String - The connection string associated with the primary blob location.
- Primary
Blob stringEndpoint - The endpoint URL for blob storage in the primary location.
- Primary
Blob stringHost - The hostname with port if applicable for blob storage in the primary location.
- Primary
Blob stringInternet Endpoint - The internet routing endpoint URL for blob storage in the primary location.
- Primary
Blob stringInternet Host - The internet routing hostname with port if applicable for blob storage in the primary location.
- Primary
Blob stringMicrosoft Endpoint - The microsoft routing endpoint URL for blob storage in the primary location.
- Primary
Blob stringMicrosoft Host - The microsoft routing hostname with port if applicable for blob storage in the primary location.
- Primary
Connection stringString - The connection string associated with the primary location.
- Primary
Dfs stringEndpoint - The endpoint URL for DFS storage in the primary location.
- Primary
Dfs stringHost - The hostname with port if applicable for DFS storage in the primary location.
- Primary
Dfs stringInternet Endpoint - The internet routing endpoint URL for DFS storage in the primary location.
- Primary
Dfs stringInternet Host - The internet routing hostname with port if applicable for DFS storage in the primary location.
- Primary
Dfs stringMicrosoft Endpoint - The microsoft routing endpoint URL for DFS storage in the primary location.
- Primary
Dfs stringMicrosoft Host - The microsoft routing hostname with port if applicable for DFS storage in the primary location.
- Primary
File stringEndpoint - The endpoint URL for file storage in the primary location.
- Primary
File stringHost - The hostname with port if applicable for file storage in the primary location.
- Primary
File stringInternet Endpoint - The internet routing endpoint URL for file storage in the primary location.
- Primary
File stringInternet Host - The internet routing hostname with port if applicable for file storage in the primary location.
- Primary
File stringMicrosoft Endpoint - The microsoft routing endpoint URL for file storage in the primary location.
- Primary
File stringMicrosoft Host - The microsoft routing hostname with port if applicable for file storage in the primary location.
- Primary
Location string - The primary location of the storage account.
- Primary
Queue stringEndpoint - The endpoint URL for queue storage in the primary location.
- Primary
Queue stringHost - The hostname with port if applicable for queue storage in the primary location.
- Primary
Queue stringMicrosoft Endpoint - The microsoft routing endpoint URL for queue storage in the primary location.
- Primary
Queue stringMicrosoft Host - The microsoft routing hostname with port if applicable for queue storage in the primary location.
- Primary
Table stringEndpoint - The endpoint URL for table storage in the primary location.
- Primary
Table stringHost - The hostname with port if applicable for table storage in the primary location.
- Primary
Table stringMicrosoft Endpoint - The microsoft routing endpoint URL for table storage in the primary location.
- Primary
Table stringMicrosoft Host - The microsoft routing hostname with port if applicable for table storage in the primary location.
- Primary
Web stringEndpoint - The endpoint URL for web storage in the primary location.
- Primary
Web stringHost - The hostname with port if applicable for web storage in the primary location.
- Primary
Web stringInternet Endpoint - The internet routing endpoint URL for web storage in the primary location.
- Primary
Web stringInternet Host - The internet routing hostname with port if applicable for web storage in the primary location.
- Primary
Web stringMicrosoft Endpoint - The microsoft routing endpoint URL for web storage in the primary location.
- Primary
Web stringMicrosoft Host - The microsoft routing hostname with port if applicable for web storage in the primary location.
- Public
Network boolAccess Enabled - Whether the public network access is enabled? Defaults to
true
. - Queue
Encryption stringKey Type - The encryption type of the queue service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
. - Queue
Properties AccountQueue Properties Type Args A
queue_properties
block as defined below.Note:
queue_properties
can only be configured whenaccount_tier
is set toStandard
andaccount_kind
is set to eitherStorage
orStorageV2
.- Resource
Group stringName - The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.
- Routing
Account
Routing Args - A
routing
block as defined below. - Sas
Policy AccountSas Policy Args - A
sas_policy
block as defined below. - Secondary
Access stringKey - The secondary access key for the storage account.
- Secondary
Blob stringConnection String - The connection string associated with the secondary blob location.
- Secondary
Blob stringEndpoint - The endpoint URL for blob storage in the secondary location.
- Secondary
Blob stringHost - The hostname with port if applicable for blob storage in the secondary location.
- Secondary
Blob stringInternet Endpoint - The internet routing endpoint URL for blob storage in the secondary location.
- Secondary
Blob stringInternet Host - The internet routing hostname with port if applicable for blob storage in the secondary location.
- Secondary
Blob stringMicrosoft Endpoint - The microsoft routing endpoint URL for blob storage in the secondary location.
- Secondary
Blob stringMicrosoft Host - The microsoft routing hostname with port if applicable for blob storage in the secondary location.
- Secondary
Connection stringString - The connection string associated with the secondary location.
- Secondary
Dfs stringEndpoint - The endpoint URL for DFS storage in the secondary location.
- Secondary
Dfs stringHost - The hostname with port if applicable for DFS storage in the secondary location.
- Secondary
Dfs stringInternet Endpoint - The internet routing endpoint URL for DFS storage in the secondary location.
- Secondary
Dfs stringInternet Host - The internet routing hostname with port if applicable for DFS storage in the secondary location.
- Secondary
Dfs stringMicrosoft Endpoint - The microsoft routing endpoint URL for DFS storage in the secondary location.
- Secondary
Dfs stringMicrosoft Host - The microsoft routing hostname with port if applicable for DFS storage in the secondary location.
- Secondary
File stringEndpoint - The endpoint URL for file storage in the secondary location.
- Secondary
File stringHost - The hostname with port if applicable for file storage in the secondary location.
- Secondary
File stringInternet Endpoint - The internet routing endpoint URL for file storage in the secondary location.
- Secondary
File stringInternet Host - The internet routing hostname with port if applicable for file storage in the secondary location.
- Secondary
File stringMicrosoft Endpoint - The microsoft routing endpoint URL for file storage in the secondary location.
- Secondary
File stringMicrosoft Host - The microsoft routing hostname with port if applicable for file storage in the secondary location.
- Secondary
Location string - The secondary location of the storage account.
- Secondary
Queue stringEndpoint - The endpoint URL for queue storage in the secondary location.
- Secondary
Queue stringHost - The hostname with port if applicable for queue storage in the secondary location.
- Secondary
Queue stringMicrosoft Endpoint - The microsoft routing endpoint URL for queue storage in the secondary location.
- Secondary
Queue stringMicrosoft Host - The microsoft routing hostname with port if applicable for queue storage in the secondary location.
- Secondary
Table stringEndpoint - The endpoint URL for table storage in the secondary location.
- Secondary
Table stringHost - The hostname with port if applicable for table storage in the secondary location.
- Secondary
Table stringMicrosoft Endpoint - The microsoft routing endpoint URL for table storage in the secondary location.
- Secondary
Table stringMicrosoft Host - The microsoft routing hostname with port if applicable for table storage in the secondary location.
- Secondary
Web stringEndpoint - The endpoint URL for web storage in the secondary location.
- Secondary
Web stringHost - The hostname with port if applicable for web storage in the secondary location.
- Secondary
Web stringInternet Endpoint - The internet routing endpoint URL for web storage in the secondary location.
- Secondary
Web stringInternet Host - The internet routing hostname with port if applicable for web storage in the secondary location.
- Secondary
Web stringMicrosoft Endpoint - The microsoft routing endpoint URL for web storage in the secondary location.
- Secondary
Web stringMicrosoft Host - The microsoft routing hostname with port if applicable for web storage in the secondary location.
- Sftp
Enabled bool Boolean, enable SFTP for the storage account
Note: SFTP support requires
is_hns_enabled
set totrue
. More information on SFTP support can be found here. Defaults tofalse
- Account
Share Properties Args A
share_properties
block as defined below.Note:
share_properties
can only be configured when eitheraccount_tier
isStandard
andaccount_kind
is eitherStorage
orStorageV2
- or whenaccount_tier
isPremium
andaccount_kind
isFileStorage
.- bool
- Static
Website AccountStatic Website Type Args A
static_website
block as defined below.Note:
static_website
can only be set when theaccount_kind
is set toStorageV2
orBlockBlobStorage
.Note: If
static_website
is specified, the service will automatically create aazure.storage.Container
named$web
.- Table
Encryption stringKey Type The encryption type of the table service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.Note:
queue_encryption_key_type
andtable_encryption_key_type
cannot be set toAccount
whenaccount_kind
is setStorage
- map[string]string
- A mapping of tags to assign to the resource.
- access
Tier String - Defines the access tier for
BlobStorage
,FileStorage
andStorageV2
accounts. Valid options areHot
andCool
, defaults toHot
. - account
Kind String Defines the Kind of account. Valid options are
BlobStorage
,BlockBlobStorage
,FileStorage
,Storage
andStorageV2
. Defaults toStorageV2
.Note: Changing the
account_kind
value fromStorage
toStorageV2
will not trigger a force new on the storage account, it will only upgrade the existing storage account fromStorage
toStorageV2
keeping the existing storage account in place.- account
Replication StringType - Defines the type of replication to use for this storage account. Valid options are
LRS
,GRS
,RAGRS
,ZRS
,GZRS
andRAGZRS
. Changing this forces a new resource to be created when typesLRS
,GRS
andRAGRS
are changed toZRS
,GZRS
orRAGZRS
and vice versa. - account
Tier String Defines the Tier to use for this storage account. Valid options are
Standard
andPremium
. ForBlockBlobStorage
andFileStorage
accounts onlyPremium
is valid. Changing this forces a new resource to be created.Note: Blobs with a tier of
Premium
are of account kindStorageV2
.- allow
Nested BooleanItems To Be Public Allow or disallow nested items within this Account to opt into being public. Defaults to
true
.Note: At this time
allow_nested_items_to_be_public
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- allowed
Copy StringScope - Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are
AAD
andPrivateLink
. - azure
Files AccountAuthentication Azure Files Authentication - A
azure_files_authentication
block as defined below. - blob
Properties AccountBlob Properties - A
blob_properties
block as defined below. - cross
Tenant BooleanReplication Enabled - Should cross Tenant replication be enabled? Defaults to
false
. - custom
Domain AccountCustom Domain - A
custom_domain
block as documented below. - customer
Managed AccountKey Customer Managed Key A
customer_managed_key
block as documented below.Note: It's possible to define a Customer Managed Key both within either the
customer_managed_key
block or by using theazure.storage.CustomerManagedKey
resource. However, it's not possible to use both methods to manage a Customer Managed Key for a Storage Account, since these will conflict. When using theazure.storage.CustomerManagedKey
resource, you will need to useignore_changes
on thecustomer_managed_key
block.- default
To BooleanOauth Authentication - Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is
false
- dns
Endpoint StringType Specifies which DNS endpoint type to use. Possible values are
Standard
andAzureDnsZone
. Defaults toStandard
. Changing this forces a new resource to be created.Note: Azure DNS zone support requires
PartitionedDns
feature to be enabled. To enable this feature for your subscription, use the following command:az feature register --namespace "Microsoft.Storage" --name "PartitionedDns"
.- edge
Zone String - Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.
- https
Traffic BooleanOnly Enabled - Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to
true
. - identity
Account
Identity - An
identity
block as defined below. - immutability
Policy AccountImmutability Policy - An
immutability_policy
block as defined below. Changing this forces a new resource to be created. - infrastructure
Encryption BooleanEnabled Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_kind
isStorageV2
or whenaccount_tier
isPremium
andaccount_kind
is one ofBlockBlobStorage
orFileStorage
.- is
Hns BooleanEnabled Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.
Note: This can only be
true
whenaccount_tier
isStandard
or whenaccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
- Boolean
Are Large File Shares Enabled? Defaults to
false
.Note: Large File Shares are enabled by default when using an
account_kind
ofFileStorage
.- local
User BooleanEnabled - Is Local User Enabled? Defaults to
true
. - location String
- Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.
- min
Tls StringVersion The minimum supported TLS version for the storage account. Possible values are
TLS1_0
,TLS1_1
, andTLS1_2
. Defaults toTLS1_2
for new storage accounts.Note: At this time
min_tls_version
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- name String
- Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.
- network
Rules AccountNetwork Rules - A
network_rules
block as documented below. - nfsv3Enabled Boolean
Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_tier
isStandard
andaccount_kind
isStorageV2
, oraccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
. Additionally, theis_hns_enabled
istrue
andaccount_replication_type
must beLRS
orRAGRS
.- primary
Access StringKey - The primary access key for the storage account.
- primary
Blob StringConnection String - The connection string associated with the primary blob location.
- primary
Blob StringEndpoint - The endpoint URL for blob storage in the primary location.
- primary
Blob StringHost - The hostname with port if applicable for blob storage in the primary location.
- primary
Blob StringInternet Endpoint - The internet routing endpoint URL for blob storage in the primary location.
- primary
Blob StringInternet Host - The internet routing hostname with port if applicable for blob storage in the primary location.
- primary
Blob StringMicrosoft Endpoint - The microsoft routing endpoint URL for blob storage in the primary location.
- primary
Blob StringMicrosoft Host - The microsoft routing hostname with port if applicable for blob storage in the primary location.
- primary
Connection StringString - The connection string associated with the primary location.
- primary
Dfs StringEndpoint - The endpoint URL for DFS storage in the primary location.
- primary
Dfs StringHost - The hostname with port if applicable for DFS storage in the primary location.
- primary
Dfs StringInternet Endpoint - The internet routing endpoint URL for DFS storage in the primary location.
- primary
Dfs StringInternet Host - The internet routing hostname with port if applicable for DFS storage in the primary location.
- primary
Dfs StringMicrosoft Endpoint - The microsoft routing endpoint URL for DFS storage in the primary location.
- primary
Dfs StringMicrosoft Host - The microsoft routing hostname with port if applicable for DFS storage in the primary location.
- primary
File StringEndpoint - The endpoint URL for file storage in the primary location.
- primary
File StringHost - The hostname with port if applicable for file storage in the primary location.
- primary
File StringInternet Endpoint - The internet routing endpoint URL for file storage in the primary location.
- primary
File StringInternet Host - The internet routing hostname with port if applicable for file storage in the primary location.
- primary
File StringMicrosoft Endpoint - The microsoft routing endpoint URL for file storage in the primary location.
- primary
File StringMicrosoft Host - The microsoft routing hostname with port if applicable for file storage in the primary location.
- primary
Location String - The primary location of the storage account.
- primary
Queue StringEndpoint - The endpoint URL for queue storage in the primary location.
- primary
Queue StringHost - The hostname with port if applicable for queue storage in the primary location.
- primary
Queue StringMicrosoft Endpoint - The microsoft routing endpoint URL for queue storage in the primary location.
- primary
Queue StringMicrosoft Host - The microsoft routing hostname with port if applicable for queue storage in the primary location.
- primary
Table StringEndpoint - The endpoint URL for table storage in the primary location.
- primary
Table StringHost - The hostname with port if applicable for table storage in the primary location.
- primary
Table StringMicrosoft Endpoint - The microsoft routing endpoint URL for table storage in the primary location.
- primary
Table StringMicrosoft Host - The microsoft routing hostname with port if applicable for table storage in the primary location.
- primary
Web StringEndpoint - The endpoint URL for web storage in the primary location.
- primary
Web StringHost - The hostname with port if applicable for web storage in the primary location.
- primary
Web StringInternet Endpoint - The internet routing endpoint URL for web storage in the primary location.
- primary
Web StringInternet Host - The internet routing hostname with port if applicable for web storage in the primary location.
- primary
Web StringMicrosoft Endpoint - The microsoft routing endpoint URL for web storage in the primary location.
- primary
Web StringMicrosoft Host - The microsoft routing hostname with port if applicable for web storage in the primary location.
- public
Network BooleanAccess Enabled - Whether the public network access is enabled? Defaults to
true
. - queue
Encryption StringKey Type - The encryption type of the queue service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
. - queue
Properties AccountQueue Properties A
queue_properties
block as defined below.Note:
queue_properties
can only be configured whenaccount_tier
is set toStandard
andaccount_kind
is set to eitherStorage
orStorageV2
.- resource
Group StringName - The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.
- routing
Account
Routing - A
routing
block as defined below. - sas
Policy AccountSas Policy - A
sas_policy
block as defined below. - secondary
Access StringKey - The secondary access key for the storage account.
- secondary
Blob StringConnection String - The connection string associated with the secondary blob location.
- secondary
Blob StringEndpoint - The endpoint URL for blob storage in the secondary location.
- secondary
Blob StringHost - The hostname with port if applicable for blob storage in the secondary location.
- secondary
Blob StringInternet Endpoint - The internet routing endpoint URL for blob storage in the secondary location.
- secondary
Blob StringInternet Host - The internet routing hostname with port if applicable for blob storage in the secondary location.
- secondary
Blob StringMicrosoft Endpoint - The microsoft routing endpoint URL for blob storage in the secondary location.
- secondary
Blob StringMicrosoft Host - The microsoft routing hostname with port if applicable for blob storage in the secondary location.
- secondary
Connection StringString - The connection string associated with the secondary location.
- secondary
Dfs StringEndpoint - The endpoint URL for DFS storage in the secondary location.
- secondary
Dfs StringHost - The hostname with port if applicable for DFS storage in the secondary location.
- secondary
Dfs StringInternet Endpoint - The internet routing endpoint URL for DFS storage in the secondary location.
- secondary
Dfs StringInternet Host - The internet routing hostname with port if applicable for DFS storage in the secondary location.
- secondary
Dfs StringMicrosoft Endpoint - The microsoft routing endpoint URL for DFS storage in the secondary location.
- secondary
Dfs StringMicrosoft Host - The microsoft routing hostname with port if applicable for DFS storage in the secondary location.
- secondary
File StringEndpoint - The endpoint URL for file storage in the secondary location.
- secondary
File StringHost - The hostname with port if applicable for file storage in the secondary location.
- secondary
File StringInternet Endpoint - The internet routing endpoint URL for file storage in the secondary location.
- secondary
File StringInternet Host - The internet routing hostname with port if applicable for file storage in the secondary location.
- secondary
File StringMicrosoft Endpoint - The microsoft routing endpoint URL for file storage in the secondary location.
- secondary
File StringMicrosoft Host - The microsoft routing hostname with port if applicable for file storage in the secondary location.
- secondary
Location String - The secondary location of the storage account.
- secondary
Queue StringEndpoint - The endpoint URL for queue storage in the secondary location.
- secondary
Queue StringHost - The hostname with port if applicable for queue storage in the secondary location.
- secondary
Queue StringMicrosoft Endpoint - The microsoft routing endpoint URL for queue storage in the secondary location.
- secondary
Queue StringMicrosoft Host - The microsoft routing hostname with port if applicable for queue storage in the secondary location.
- secondary
Table StringEndpoint - The endpoint URL for table storage in the secondary location.
- secondary
Table StringHost - The hostname with port if applicable for table storage in the secondary location.
- secondary
Table StringMicrosoft Endpoint - The microsoft routing endpoint URL for table storage in the secondary location.
- secondary
Table StringMicrosoft Host - The microsoft routing hostname with port if applicable for table storage in the secondary location.
- secondary
Web StringEndpoint - The endpoint URL for web storage in the secondary location.
- secondary
Web StringHost - The hostname with port if applicable for web storage in the secondary location.
- secondary
Web StringInternet Endpoint - The internet routing endpoint URL for web storage in the secondary location.
- secondary
Web StringInternet Host - The internet routing hostname with port if applicable for web storage in the secondary location.
- secondary
Web StringMicrosoft Endpoint - The microsoft routing endpoint URL for web storage in the secondary location.
- secondary
Web StringMicrosoft Host - The microsoft routing hostname with port if applicable for web storage in the secondary location.
- sftp
Enabled Boolean Boolean, enable SFTP for the storage account
Note: SFTP support requires
is_hns_enabled
set totrue
. More information on SFTP support can be found here. Defaults tofalse
- Account
Share Properties A
share_properties
block as defined below.Note:
share_properties
can only be configured when eitheraccount_tier
isStandard
andaccount_kind
is eitherStorage
orStorageV2
- or whenaccount_tier
isPremium
andaccount_kind
isFileStorage
.- Boolean
- static
Website AccountStatic Website A
static_website
block as defined below.Note:
static_website
can only be set when theaccount_kind
is set toStorageV2
orBlockBlobStorage
.Note: If
static_website
is specified, the service will automatically create aazure.storage.Container
named$web
.- table
Encryption StringKey Type The encryption type of the table service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.Note:
queue_encryption_key_type
andtable_encryption_key_type
cannot be set toAccount
whenaccount_kind
is setStorage
- Map<String,String>
- A mapping of tags to assign to the resource.
- access
Tier string - Defines the access tier for
BlobStorage
,FileStorage
andStorageV2
accounts. Valid options areHot
andCool
, defaults toHot
. - account
Kind string Defines the Kind of account. Valid options are
BlobStorage
,BlockBlobStorage
,FileStorage
,Storage
andStorageV2
. Defaults toStorageV2
.Note: Changing the
account_kind
value fromStorage
toStorageV2
will not trigger a force new on the storage account, it will only upgrade the existing storage account fromStorage
toStorageV2
keeping the existing storage account in place.- account
Replication stringType - Defines the type of replication to use for this storage account. Valid options are
LRS
,GRS
,RAGRS
,ZRS
,GZRS
andRAGZRS
. Changing this forces a new resource to be created when typesLRS
,GRS
andRAGRS
are changed toZRS
,GZRS
orRAGZRS
and vice versa. - account
Tier string Defines the Tier to use for this storage account. Valid options are
Standard
andPremium
. ForBlockBlobStorage
andFileStorage
accounts onlyPremium
is valid. Changing this forces a new resource to be created.Note: Blobs with a tier of
Premium
are of account kindStorageV2
.- allow
Nested booleanItems To Be Public Allow or disallow nested items within this Account to opt into being public. Defaults to
true
.Note: At this time
allow_nested_items_to_be_public
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- allowed
Copy stringScope - Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are
AAD
andPrivateLink
. - azure
Files AccountAuthentication Azure Files Authentication - A
azure_files_authentication
block as defined below. - blob
Properties AccountBlob Properties - A
blob_properties
block as defined below. - cross
Tenant booleanReplication Enabled - Should cross Tenant replication be enabled? Defaults to
false
. - custom
Domain AccountCustom Domain - A
custom_domain
block as documented below. - customer
Managed AccountKey Customer Managed Key A
customer_managed_key
block as documented below.Note: It's possible to define a Customer Managed Key both within either the
customer_managed_key
block or by using theazure.storage.CustomerManagedKey
resource. However, it's not possible to use both methods to manage a Customer Managed Key for a Storage Account, since these will conflict. When using theazure.storage.CustomerManagedKey
resource, you will need to useignore_changes
on thecustomer_managed_key
block.- default
To booleanOauth Authentication - Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is
false
- dns
Endpoint stringType Specifies which DNS endpoint type to use. Possible values are
Standard
andAzureDnsZone
. Defaults toStandard
. Changing this forces a new resource to be created.Note: Azure DNS zone support requires
PartitionedDns
feature to be enabled. To enable this feature for your subscription, use the following command:az feature register --namespace "Microsoft.Storage" --name "PartitionedDns"
.- edge
Zone string - Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.
- https
Traffic booleanOnly Enabled - Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to
true
. - identity
Account
Identity - An
identity
block as defined below. - immutability
Policy AccountImmutability Policy - An
immutability_policy
block as defined below. Changing this forces a new resource to be created. - infrastructure
Encryption booleanEnabled Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_kind
isStorageV2
or whenaccount_tier
isPremium
andaccount_kind
is one ofBlockBlobStorage
orFileStorage
.- is
Hns booleanEnabled Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.
Note: This can only be
true
whenaccount_tier
isStandard
or whenaccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
- boolean
Are Large File Shares Enabled? Defaults to
false
.Note: Large File Shares are enabled by default when using an
account_kind
ofFileStorage
.- local
User booleanEnabled - Is Local User Enabled? Defaults to
true
. - location string
- Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.
- min
Tls stringVersion The minimum supported TLS version for the storage account. Possible values are
TLS1_0
,TLS1_1
, andTLS1_2
. Defaults toTLS1_2
for new storage accounts.Note: At this time
min_tls_version
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- name string
- Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.
- network
Rules AccountNetwork Rules - A
network_rules
block as documented below. - nfsv3Enabled boolean
Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_tier
isStandard
andaccount_kind
isStorageV2
, oraccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
. Additionally, theis_hns_enabled
istrue
andaccount_replication_type
must beLRS
orRAGRS
.- primary
Access stringKey - The primary access key for the storage account.
- primary
Blob stringConnection String - The connection string associated with the primary blob location.
- primary
Blob stringEndpoint - The endpoint URL for blob storage in the primary location.
- primary
Blob stringHost - The hostname with port if applicable for blob storage in the primary location.
- primary
Blob stringInternet Endpoint - The internet routing endpoint URL for blob storage in the primary location.
- primary
Blob stringInternet Host - The internet routing hostname with port if applicable for blob storage in the primary location.
- primary
Blob stringMicrosoft Endpoint - The microsoft routing endpoint URL for blob storage in the primary location.
- primary
Blob stringMicrosoft Host - The microsoft routing hostname with port if applicable for blob storage in the primary location.
- primary
Connection stringString - The connection string associated with the primary location.
- primary
Dfs stringEndpoint - The endpoint URL for DFS storage in the primary location.
- primary
Dfs stringHost - The hostname with port if applicable for DFS storage in the primary location.
- primary
Dfs stringInternet Endpoint - The internet routing endpoint URL for DFS storage in the primary location.
- primary
Dfs stringInternet Host - The internet routing hostname with port if applicable for DFS storage in the primary location.
- primary
Dfs stringMicrosoft Endpoint - The microsoft routing endpoint URL for DFS storage in the primary location.
- primary
Dfs stringMicrosoft Host - The microsoft routing hostname with port if applicable for DFS storage in the primary location.
- primary
File stringEndpoint - The endpoint URL for file storage in the primary location.
- primary
File stringHost - The hostname with port if applicable for file storage in the primary location.
- primary
File stringInternet Endpoint - The internet routing endpoint URL for file storage in the primary location.
- primary
File stringInternet Host - The internet routing hostname with port if applicable for file storage in the primary location.
- primary
File stringMicrosoft Endpoint - The microsoft routing endpoint URL for file storage in the primary location.
- primary
File stringMicrosoft Host - The microsoft routing hostname with port if applicable for file storage in the primary location.
- primary
Location string - The primary location of the storage account.
- primary
Queue stringEndpoint - The endpoint URL for queue storage in the primary location.
- primary
Queue stringHost - The hostname with port if applicable for queue storage in the primary location.
- primary
Queue stringMicrosoft Endpoint - The microsoft routing endpoint URL for queue storage in the primary location.
- primary
Queue stringMicrosoft Host - The microsoft routing hostname with port if applicable for queue storage in the primary location.
- primary
Table stringEndpoint - The endpoint URL for table storage in the primary location.
- primary
Table stringHost - The hostname with port if applicable for table storage in the primary location.
- primary
Table stringMicrosoft Endpoint - The microsoft routing endpoint URL for table storage in the primary location.
- primary
Table stringMicrosoft Host - The microsoft routing hostname with port if applicable for table storage in the primary location.
- primary
Web stringEndpoint - The endpoint URL for web storage in the primary location.
- primary
Web stringHost - The hostname with port if applicable for web storage in the primary location.
- primary
Web stringInternet Endpoint - The internet routing endpoint URL for web storage in the primary location.
- primary
Web stringInternet Host - The internet routing hostname with port if applicable for web storage in the primary location.
- primary
Web stringMicrosoft Endpoint - The microsoft routing endpoint URL for web storage in the primary location.
- primary
Web stringMicrosoft Host - The microsoft routing hostname with port if applicable for web storage in the primary location.
- public
Network booleanAccess Enabled - Whether the public network access is enabled? Defaults to
true
. - queue
Encryption stringKey Type - The encryption type of the queue service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
. - queue
Properties AccountQueue Properties A
queue_properties
block as defined below.Note:
queue_properties
can only be configured whenaccount_tier
is set toStandard
andaccount_kind
is set to eitherStorage
orStorageV2
.- resource
Group stringName - The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.
- routing
Account
Routing - A
routing
block as defined below. - sas
Policy AccountSas Policy - A
sas_policy
block as defined below. - secondary
Access stringKey - The secondary access key for the storage account.
- secondary
Blob stringConnection String - The connection string associated with the secondary blob location.
- secondary
Blob stringEndpoint - The endpoint URL for blob storage in the secondary location.
- secondary
Blob stringHost - The hostname with port if applicable for blob storage in the secondary location.
- secondary
Blob stringInternet Endpoint - The internet routing endpoint URL for blob storage in the secondary location.
- secondary
Blob stringInternet Host - The internet routing hostname with port if applicable for blob storage in the secondary location.
- secondary
Blob stringMicrosoft Endpoint - The microsoft routing endpoint URL for blob storage in the secondary location.
- secondary
Blob stringMicrosoft Host - The microsoft routing hostname with port if applicable for blob storage in the secondary location.
- secondary
Connection stringString - The connection string associated with the secondary location.
- secondary
Dfs stringEndpoint - The endpoint URL for DFS storage in the secondary location.
- secondary
Dfs stringHost - The hostname with port if applicable for DFS storage in the secondary location.
- secondary
Dfs stringInternet Endpoint - The internet routing endpoint URL for DFS storage in the secondary location.
- secondary
Dfs stringInternet Host - The internet routing hostname with port if applicable for DFS storage in the secondary location.
- secondary
Dfs stringMicrosoft Endpoint - The microsoft routing endpoint URL for DFS storage in the secondary location.
- secondary
Dfs stringMicrosoft Host - The microsoft routing hostname with port if applicable for DFS storage in the secondary location.
- secondary
File stringEndpoint - The endpoint URL for file storage in the secondary location.
- secondary
File stringHost - The hostname with port if applicable for file storage in the secondary location.
- secondary
File stringInternet Endpoint - The internet routing endpoint URL for file storage in the secondary location.
- secondary
File stringInternet Host - The internet routing hostname with port if applicable for file storage in the secondary location.
- secondary
File stringMicrosoft Endpoint - The microsoft routing endpoint URL for file storage in the secondary location.
- secondary
File stringMicrosoft Host - The microsoft routing hostname with port if applicable for file storage in the secondary location.
- secondary
Location string - The secondary location of the storage account.
- secondary
Queue stringEndpoint - The endpoint URL for queue storage in the secondary location.
- secondary
Queue stringHost - The hostname with port if applicable for queue storage in the secondary location.
- secondary
Queue stringMicrosoft Endpoint - The microsoft routing endpoint URL for queue storage in the secondary location.
- secondary
Queue stringMicrosoft Host - The microsoft routing hostname with port if applicable for queue storage in the secondary location.
- secondary
Table stringEndpoint - The endpoint URL for table storage in the secondary location.
- secondary
Table stringHost - The hostname with port if applicable for table storage in the secondary location.
- secondary
Table stringMicrosoft Endpoint - The microsoft routing endpoint URL for table storage in the secondary location.
- secondary
Table stringMicrosoft Host - The microsoft routing hostname with port if applicable for table storage in the secondary location.
- secondary
Web stringEndpoint - The endpoint URL for web storage in the secondary location.
- secondary
Web stringHost - The hostname with port if applicable for web storage in the secondary location.
- secondary
Web stringInternet Endpoint - The internet routing endpoint URL for web storage in the secondary location.
- secondary
Web stringInternet Host - The internet routing hostname with port if applicable for web storage in the secondary location.
- secondary
Web stringMicrosoft Endpoint - The microsoft routing endpoint URL for web storage in the secondary location.
- secondary
Web stringMicrosoft Host - The microsoft routing hostname with port if applicable for web storage in the secondary location.
- sftp
Enabled boolean Boolean, enable SFTP for the storage account
Note: SFTP support requires
is_hns_enabled
set totrue
. More information on SFTP support can be found here. Defaults tofalse
- Account
Share Properties A
share_properties
block as defined below.Note:
share_properties
can only be configured when eitheraccount_tier
isStandard
andaccount_kind
is eitherStorage
orStorageV2
- or whenaccount_tier
isPremium
andaccount_kind
isFileStorage
.- boolean
- static
Website AccountStatic Website A
static_website
block as defined below.Note:
static_website
can only be set when theaccount_kind
is set toStorageV2
orBlockBlobStorage
.Note: If
static_website
is specified, the service will automatically create aazure.storage.Container
named$web
.- table
Encryption stringKey Type The encryption type of the table service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.Note:
queue_encryption_key_type
andtable_encryption_key_type
cannot be set toAccount
whenaccount_kind
is setStorage
- {[key: string]: string}
- A mapping of tags to assign to the resource.
- access_
tier str - Defines the access tier for
BlobStorage
,FileStorage
andStorageV2
accounts. Valid options areHot
andCool
, defaults toHot
. - account_
kind str Defines the Kind of account. Valid options are
BlobStorage
,BlockBlobStorage
,FileStorage
,Storage
andStorageV2
. Defaults toStorageV2
.Note: Changing the
account_kind
value fromStorage
toStorageV2
will not trigger a force new on the storage account, it will only upgrade the existing storage account fromStorage
toStorageV2
keeping the existing storage account in place.- account_
replication_ strtype - Defines the type of replication to use for this storage account. Valid options are
LRS
,GRS
,RAGRS
,ZRS
,GZRS
andRAGZRS
. Changing this forces a new resource to be created when typesLRS
,GRS
andRAGRS
are changed toZRS
,GZRS
orRAGZRS
and vice versa. - account_
tier str Defines the Tier to use for this storage account. Valid options are
Standard
andPremium
. ForBlockBlobStorage
andFileStorage
accounts onlyPremium
is valid. Changing this forces a new resource to be created.Note: Blobs with a tier of
Premium
are of account kindStorageV2
.- allow_
nested_ boolitems_ to_ be_ public Allow or disallow nested items within this Account to opt into being public. Defaults to
true
.Note: At this time
allow_nested_items_to_be_public
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- allowed_
copy_ strscope - Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are
AAD
andPrivateLink
. - azure_
files_ Accountauthentication Azure Files Authentication Args - A
azure_files_authentication
block as defined below. - blob_
properties AccountBlob Properties Args - A
blob_properties
block as defined below. - cross_
tenant_ boolreplication_ enabled - Should cross Tenant replication be enabled? Defaults to
false
. - custom_
domain AccountCustom Domain Args - A
custom_domain
block as documented below. - customer_
managed_ Accountkey Customer Managed Key Args A
customer_managed_key
block as documented below.Note: It's possible to define a Customer Managed Key both within either the
customer_managed_key
block or by using theazure.storage.CustomerManagedKey
resource. However, it's not possible to use both methods to manage a Customer Managed Key for a Storage Account, since these will conflict. When using theazure.storage.CustomerManagedKey
resource, you will need to useignore_changes
on thecustomer_managed_key
block.- default_
to_ booloauth_ authentication - Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is
false
- dns_
endpoint_ strtype Specifies which DNS endpoint type to use. Possible values are
Standard
andAzureDnsZone
. Defaults toStandard
. Changing this forces a new resource to be created.Note: Azure DNS zone support requires
PartitionedDns
feature to be enabled. To enable this feature for your subscription, use the following command:az feature register --namespace "Microsoft.Storage" --name "PartitionedDns"
.- edge_
zone str - Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.
- https_
traffic_ boolonly_ enabled - Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to
true
. - identity
Account
Identity Args - An
identity
block as defined below. - immutability_
policy AccountImmutability Policy Args - An
immutability_policy
block as defined below. Changing this forces a new resource to be created. - infrastructure_
encryption_ boolenabled Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_kind
isStorageV2
or whenaccount_tier
isPremium
andaccount_kind
is one ofBlockBlobStorage
orFileStorage
.- is_
hns_ boolenabled Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.
Note: This can only be
true
whenaccount_tier
isStandard
or whenaccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
- bool
Are Large File Shares Enabled? Defaults to
false
.Note: Large File Shares are enabled by default when using an
account_kind
ofFileStorage
.- local_
user_ boolenabled - Is Local User Enabled? Defaults to
true
. - location str
- Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.
- min_
tls_ strversion The minimum supported TLS version for the storage account. Possible values are
TLS1_0
,TLS1_1
, andTLS1_2
. Defaults toTLS1_2
for new storage accounts.Note: At this time
min_tls_version
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- name str
- Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.
- network_
rules AccountNetwork Rules Args - A
network_rules
block as documented below. - nfsv3_
enabled bool Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_tier
isStandard
andaccount_kind
isStorageV2
, oraccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
. Additionally, theis_hns_enabled
istrue
andaccount_replication_type
must beLRS
orRAGRS
.- primary_
access_ strkey - The primary access key for the storage account.
- primary_
blob_ strconnection_ string - The connection string associated with the primary blob location.
- primary_
blob_ strendpoint - The endpoint URL for blob storage in the primary location.
- primary_
blob_ strhost - The hostname with port if applicable for blob storage in the primary location.
- primary_
blob_ strinternet_ endpoint - The internet routing endpoint URL for blob storage in the primary location.
- primary_
blob_ strinternet_ host - The internet routing hostname with port if applicable for blob storage in the primary location.
- primary_
blob_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for blob storage in the primary location.
- primary_
blob_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for blob storage in the primary location.
- primary_
connection_ strstring - The connection string associated with the primary location.
- primary_
dfs_ strendpoint - The endpoint URL for DFS storage in the primary location.
- primary_
dfs_ strhost - The hostname with port if applicable for DFS storage in the primary location.
- primary_
dfs_ strinternet_ endpoint - The internet routing endpoint URL for DFS storage in the primary location.
- primary_
dfs_ strinternet_ host - The internet routing hostname with port if applicable for DFS storage in the primary location.
- primary_
dfs_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for DFS storage in the primary location.
- primary_
dfs_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for DFS storage in the primary location.
- primary_
file_ strendpoint - The endpoint URL for file storage in the primary location.
- primary_
file_ strhost - The hostname with port if applicable for file storage in the primary location.
- primary_
file_ strinternet_ endpoint - The internet routing endpoint URL for file storage in the primary location.
- primary_
file_ strinternet_ host - The internet routing hostname with port if applicable for file storage in the primary location.
- primary_
file_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for file storage in the primary location.
- primary_
file_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for file storage in the primary location.
- primary_
location str - The primary location of the storage account.
- primary_
queue_ strendpoint - The endpoint URL for queue storage in the primary location.
- primary_
queue_ strhost - The hostname with port if applicable for queue storage in the primary location.
- primary_
queue_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for queue storage in the primary location.
- primary_
queue_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for queue storage in the primary location.
- primary_
table_ strendpoint - The endpoint URL for table storage in the primary location.
- primary_
table_ strhost - The hostname with port if applicable for table storage in the primary location.
- primary_
table_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for table storage in the primary location.
- primary_
table_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for table storage in the primary location.
- primary_
web_ strendpoint - The endpoint URL for web storage in the primary location.
- primary_
web_ strhost - The hostname with port if applicable for web storage in the primary location.
- primary_
web_ strinternet_ endpoint - The internet routing endpoint URL for web storage in the primary location.
- primary_
web_ strinternet_ host - The internet routing hostname with port if applicable for web storage in the primary location.
- primary_
web_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for web storage in the primary location.
- primary_
web_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for web storage in the primary location.
- public_
network_ boolaccess_ enabled - Whether the public network access is enabled? Defaults to
true
. - queue_
encryption_ strkey_ type - The encryption type of the queue service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
. - queue_
properties AccountQueue Properties Args A
queue_properties
block as defined below.Note:
queue_properties
can only be configured whenaccount_tier
is set toStandard
andaccount_kind
is set to eitherStorage
orStorageV2
.- resource_
group_ strname - The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.
- routing
Account
Routing Args - A
routing
block as defined below. - sas_
policy AccountSas Policy Args - A
sas_policy
block as defined below. - secondary_
access_ strkey - The secondary access key for the storage account.
- secondary_
blob_ strconnection_ string - The connection string associated with the secondary blob location.
- secondary_
blob_ strendpoint - The endpoint URL for blob storage in the secondary location.
- secondary_
blob_ strhost - The hostname with port if applicable for blob storage in the secondary location.
- secondary_
blob_ strinternet_ endpoint - The internet routing endpoint URL for blob storage in the secondary location.
- secondary_
blob_ strinternet_ host - The internet routing hostname with port if applicable for blob storage in the secondary location.
- secondary_
blob_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for blob storage in the secondary location.
- secondary_
blob_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for blob storage in the secondary location.
- secondary_
connection_ strstring - The connection string associated with the secondary location.
- secondary_
dfs_ strendpoint - The endpoint URL for DFS storage in the secondary location.
- secondary_
dfs_ strhost - The hostname with port if applicable for DFS storage in the secondary location.
- secondary_
dfs_ strinternet_ endpoint - The internet routing endpoint URL for DFS storage in the secondary location.
- secondary_
dfs_ strinternet_ host - The internet routing hostname with port if applicable for DFS storage in the secondary location.
- secondary_
dfs_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for DFS storage in the secondary location.
- secondary_
dfs_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for DFS storage in the secondary location.
- secondary_
file_ strendpoint - The endpoint URL for file storage in the secondary location.
- secondary_
file_ strhost - The hostname with port if applicable for file storage in the secondary location.
- secondary_
file_ strinternet_ endpoint - The internet routing endpoint URL for file storage in the secondary location.
- secondary_
file_ strinternet_ host - The internet routing hostname with port if applicable for file storage in the secondary location.
- secondary_
file_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for file storage in the secondary location.
- secondary_
file_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for file storage in the secondary location.
- secondary_
location str - The secondary location of the storage account.
- secondary_
queue_ strendpoint - The endpoint URL for queue storage in the secondary location.
- secondary_
queue_ strhost - The hostname with port if applicable for queue storage in the secondary location.
- secondary_
queue_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for queue storage in the secondary location.
- secondary_
queue_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for queue storage in the secondary location.
- secondary_
table_ strendpoint - The endpoint URL for table storage in the secondary location.
- secondary_
table_ strhost - The hostname with port if applicable for table storage in the secondary location.
- secondary_
table_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for table storage in the secondary location.
- secondary_
table_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for table storage in the secondary location.
- secondary_
web_ strendpoint - The endpoint URL for web storage in the secondary location.
- secondary_
web_ strhost - The hostname with port if applicable for web storage in the secondary location.
- secondary_
web_ strinternet_ endpoint - The internet routing endpoint URL for web storage in the secondary location.
- secondary_
web_ strinternet_ host - The internet routing hostname with port if applicable for web storage in the secondary location.
- secondary_
web_ strmicrosoft_ endpoint - The microsoft routing endpoint URL for web storage in the secondary location.
- secondary_
web_ strmicrosoft_ host - The microsoft routing hostname with port if applicable for web storage in the secondary location.
- sftp_
enabled bool Boolean, enable SFTP for the storage account
Note: SFTP support requires
is_hns_enabled
set totrue
. More information on SFTP support can be found here. Defaults tofalse
- Account
Share Properties Args A
share_properties
block as defined below.Note:
share_properties
can only be configured when eitheraccount_tier
isStandard
andaccount_kind
is eitherStorage
orStorageV2
- or whenaccount_tier
isPremium
andaccount_kind
isFileStorage
.- bool
- static_
website AccountStatic Website Args A
static_website
block as defined below.Note:
static_website
can only be set when theaccount_kind
is set toStorageV2
orBlockBlobStorage
.Note: If
static_website
is specified, the service will automatically create aazure.storage.Container
named$web
.- table_
encryption_ strkey_ type The encryption type of the table service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.Note:
queue_encryption_key_type
andtable_encryption_key_type
cannot be set toAccount
whenaccount_kind
is setStorage
- Mapping[str, str]
- A mapping of tags to assign to the resource.
- access
Tier String - Defines the access tier for
BlobStorage
,FileStorage
andStorageV2
accounts. Valid options areHot
andCool
, defaults toHot
. - account
Kind String Defines the Kind of account. Valid options are
BlobStorage
,BlockBlobStorage
,FileStorage
,Storage
andStorageV2
. Defaults toStorageV2
.Note: Changing the
account_kind
value fromStorage
toStorageV2
will not trigger a force new on the storage account, it will only upgrade the existing storage account fromStorage
toStorageV2
keeping the existing storage account in place.- account
Replication StringType - Defines the type of replication to use for this storage account. Valid options are
LRS
,GRS
,RAGRS
,ZRS
,GZRS
andRAGZRS
. Changing this forces a new resource to be created when typesLRS
,GRS
andRAGRS
are changed toZRS
,GZRS
orRAGZRS
and vice versa. - account
Tier String Defines the Tier to use for this storage account. Valid options are
Standard
andPremium
. ForBlockBlobStorage
andFileStorage
accounts onlyPremium
is valid. Changing this forces a new resource to be created.Note: Blobs with a tier of
Premium
are of account kindStorageV2
.- allow
Nested BooleanItems To Be Public Allow or disallow nested items within this Account to opt into being public. Defaults to
true
.Note: At this time
allow_nested_items_to_be_public
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- allowed
Copy StringScope - Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are
AAD
andPrivateLink
. - azure
Files Property MapAuthentication - A
azure_files_authentication
block as defined below. - blob
Properties Property Map - A
blob_properties
block as defined below. - cross
Tenant BooleanReplication Enabled - Should cross Tenant replication be enabled? Defaults to
false
. - custom
Domain Property Map - A
custom_domain
block as documented below. - customer
Managed Property MapKey A
customer_managed_key
block as documented below.Note: It's possible to define a Customer Managed Key both within either the
customer_managed_key
block or by using theazure.storage.CustomerManagedKey
resource. However, it's not possible to use both methods to manage a Customer Managed Key for a Storage Account, since these will conflict. When using theazure.storage.CustomerManagedKey
resource, you will need to useignore_changes
on thecustomer_managed_key
block.- default
To BooleanOauth Authentication - Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is
false
- dns
Endpoint StringType Specifies which DNS endpoint type to use. Possible values are
Standard
andAzureDnsZone
. Defaults toStandard
. Changing this forces a new resource to be created.Note: Azure DNS zone support requires
PartitionedDns
feature to be enabled. To enable this feature for your subscription, use the following command:az feature register --namespace "Microsoft.Storage" --name "PartitionedDns"
.- edge
Zone String - Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.
- https
Traffic BooleanOnly Enabled - Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to
true
. - identity Property Map
- An
identity
block as defined below. - immutability
Policy Property Map - An
immutability_policy
block as defined below. Changing this forces a new resource to be created. - infrastructure
Encryption BooleanEnabled Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_kind
isStorageV2
or whenaccount_tier
isPremium
andaccount_kind
is one ofBlockBlobStorage
orFileStorage
.- is
Hns BooleanEnabled Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.
Note: This can only be
true
whenaccount_tier
isStandard
or whenaccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
- Boolean
Are Large File Shares Enabled? Defaults to
false
.Note: Large File Shares are enabled by default when using an
account_kind
ofFileStorage
.- local
User BooleanEnabled - Is Local User Enabled? Defaults to
true
. - location String
- Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.
- min
Tls StringVersion The minimum supported TLS version for the storage account. Possible values are
TLS1_0
,TLS1_1
, andTLS1_2
. Defaults toTLS1_2
for new storage accounts.Note: At this time
min_tls_version
is only supported in the Public Cloud, China Cloud, and US Government Cloud.- name String
- Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.
- network
Rules Property Map - A
network_rules
block as documented below. - nfsv3Enabled Boolean
Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to
false
.Note: This can only be
true
whenaccount_tier
isStandard
andaccount_kind
isStorageV2
, oraccount_tier
isPremium
andaccount_kind
isBlockBlobStorage
. Additionally, theis_hns_enabled
istrue
andaccount_replication_type
must beLRS
orRAGRS
.- primary
Access StringKey - The primary access key for the storage account.
- primary
Blob StringConnection String - The connection string associated with the primary blob location.
- primary
Blob StringEndpoint - The endpoint URL for blob storage in the primary location.
- primary
Blob StringHost - The hostname with port if applicable for blob storage in the primary location.
- primary
Blob StringInternet Endpoint - The internet routing endpoint URL for blob storage in the primary location.
- primary
Blob StringInternet Host - The internet routing hostname with port if applicable for blob storage in the primary location.
- primary
Blob StringMicrosoft Endpoint - The microsoft routing endpoint URL for blob storage in the primary location.
- primary
Blob StringMicrosoft Host - The microsoft routing hostname with port if applicable for blob storage in the primary location.
- primary
Connection StringString - The connection string associated with the primary location.
- primary
Dfs StringEndpoint - The endpoint URL for DFS storage in the primary location.
- primary
Dfs StringHost - The hostname with port if applicable for DFS storage in the primary location.
- primary
Dfs StringInternet Endpoint - The internet routing endpoint URL for DFS storage in the primary location.
- primary
Dfs StringInternet Host - The internet routing hostname with port if applicable for DFS storage in the primary location.
- primary
Dfs StringMicrosoft Endpoint - The microsoft routing endpoint URL for DFS storage in the primary location.
- primary
Dfs StringMicrosoft Host - The microsoft routing hostname with port if applicable for DFS storage in the primary location.
- primary
File StringEndpoint - The endpoint URL for file storage in the primary location.
- primary
File StringHost - The hostname with port if applicable for file storage in the primary location.
- primary
File StringInternet Endpoint - The internet routing endpoint URL for file storage in the primary location.
- primary
File StringInternet Host - The internet routing hostname with port if applicable for file storage in the primary location.
- primary
File StringMicrosoft Endpoint - The microsoft routing endpoint URL for file storage in the primary location.
- primary
File StringMicrosoft Host - The microsoft routing hostname with port if applicable for file storage in the primary location.
- primary
Location String - The primary location of the storage account.
- primary
Queue StringEndpoint - The endpoint URL for queue storage in the primary location.
- primary
Queue StringHost - The hostname with port if applicable for queue storage in the primary location.
- primary
Queue StringMicrosoft Endpoint - The microsoft routing endpoint URL for queue storage in the primary location.
- primary
Queue StringMicrosoft Host - The microsoft routing hostname with port if applicable for queue storage in the primary location.
- primary
Table StringEndpoint - The endpoint URL for table storage in the primary location.
- primary
Table StringHost - The hostname with port if applicable for table storage in the primary location.
- primary
Table StringMicrosoft Endpoint - The microsoft routing endpoint URL for table storage in the primary location.
- primary
Table StringMicrosoft Host - The microsoft routing hostname with port if applicable for table storage in the primary location.
- primary
Web StringEndpoint - The endpoint URL for web storage in the primary location.
- primary
Web StringHost - The hostname with port if applicable for web storage in the primary location.
- primary
Web StringInternet Endpoint - The internet routing endpoint URL for web storage in the primary location.
- primary
Web StringInternet Host - The internet routing hostname with port if applicable for web storage in the primary location.
- primary
Web StringMicrosoft Endpoint - The microsoft routing endpoint URL for web storage in the primary location.
- primary
Web StringMicrosoft Host - The microsoft routing hostname with port if applicable for web storage in the primary location.
- public
Network BooleanAccess Enabled - Whether the public network access is enabled? Defaults to
true
. - queue
Encryption StringKey Type - The encryption type of the queue service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
. - queue
Properties Property Map A
queue_properties
block as defined below.Note:
queue_properties
can only be configured whenaccount_tier
is set toStandard
andaccount_kind
is set to eitherStorage
orStorageV2
.- resource
Group StringName - The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.
- routing Property Map
- A
routing
block as defined below. - sas
Policy Property Map - A
sas_policy
block as defined below. - secondary
Access StringKey - The secondary access key for the storage account.
- secondary
Blob StringConnection String - The connection string associated with the secondary blob location.
- secondary
Blob StringEndpoint - The endpoint URL for blob storage in the secondary location.
- secondary
Blob StringHost - The hostname with port if applicable for blob storage in the secondary location.
- secondary
Blob StringInternet Endpoint - The internet routing endpoint URL for blob storage in the secondary location.
- secondary
Blob StringInternet Host - The internet routing hostname with port if applicable for blob storage in the secondary location.
- secondary
Blob StringMicrosoft Endpoint - The microsoft routing endpoint URL for blob storage in the secondary location.
- secondary
Blob StringMicrosoft Host - The microsoft routing hostname with port if applicable for blob storage in the secondary location.
- secondary
Connection StringString - The connection string associated with the secondary location.
- secondary
Dfs StringEndpoint - The endpoint URL for DFS storage in the secondary location.
- secondary
Dfs StringHost - The hostname with port if applicable for DFS storage in the secondary location.
- secondary
Dfs StringInternet Endpoint - The internet routing endpoint URL for DFS storage in the secondary location.
- secondary
Dfs StringInternet Host - The internet routing hostname with port if applicable for DFS storage in the secondary location.
- secondary
Dfs StringMicrosoft Endpoint - The microsoft routing endpoint URL for DFS storage in the secondary location.
- secondary
Dfs StringMicrosoft Host - The microsoft routing hostname with port if applicable for DFS storage in the secondary location.
- secondary
File StringEndpoint - The endpoint URL for file storage in the secondary location.
- secondary
File StringHost - The hostname with port if applicable for file storage in the secondary location.
- secondary
File StringInternet Endpoint - The internet routing endpoint URL for file storage in the secondary location.
- secondary
File StringInternet Host - The internet routing hostname with port if applicable for file storage in the secondary location.
- secondary
File StringMicrosoft Endpoint - The microsoft routing endpoint URL for file storage in the secondary location.
- secondary
File StringMicrosoft Host - The microsoft routing hostname with port if applicable for file storage in the secondary location.
- secondary
Location String - The secondary location of the storage account.
- secondary
Queue StringEndpoint - The endpoint URL for queue storage in the secondary location.
- secondary
Queue StringHost - The hostname with port if applicable for queue storage in the secondary location.
- secondary
Queue StringMicrosoft Endpoint - The microsoft routing endpoint URL for queue storage in the secondary location.
- secondary
Queue StringMicrosoft Host - The microsoft routing hostname with port if applicable for queue storage in the secondary location.
- secondary
Table StringEndpoint - The endpoint URL for table storage in the secondary location.
- secondary
Table StringHost - The hostname with port if applicable for table storage in the secondary location.
- secondary
Table StringMicrosoft Endpoint - The microsoft routing endpoint URL for table storage in the secondary location.
- secondary
Table StringMicrosoft Host - The microsoft routing hostname with port if applicable for table storage in the secondary location.
- secondary
Web StringEndpoint - The endpoint URL for web storage in the secondary location.
- secondary
Web StringHost - The hostname with port if applicable for web storage in the secondary location.
- secondary
Web StringInternet Endpoint - The internet routing endpoint URL for web storage in the secondary location.
- secondary
Web StringInternet Host - The internet routing hostname with port if applicable for web storage in the secondary location.
- secondary
Web StringMicrosoft Endpoint - The microsoft routing endpoint URL for web storage in the secondary location.
- secondary
Web StringMicrosoft Host - The microsoft routing hostname with port if applicable for web storage in the secondary location.
- sftp
Enabled Boolean Boolean, enable SFTP for the storage account
Note: SFTP support requires
is_hns_enabled
set totrue
. More information on SFTP support can be found here. Defaults tofalse
- Property Map
A
share_properties
block as defined below.Note:
share_properties
can only be configured when eitheraccount_tier
isStandard
andaccount_kind
is eitherStorage
orStorageV2
- or whenaccount_tier
isPremium
andaccount_kind
isFileStorage
.- Boolean
- static
Website Property Map A
static_website
block as defined below.Note:
static_website
can only be set when theaccount_kind
is set toStorageV2
orBlockBlobStorage
.Note: If
static_website
is specified, the service will automatically create aazure.storage.Container
named$web
.- table
Encryption StringKey Type The encryption type of the table service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.Note:
queue_encryption_key_type
andtable_encryption_key_type
cannot be set toAccount
whenaccount_kind
is setStorage
- Map<String>
- A mapping of tags to assign to the resource.
Supporting Types
AccountAzureFilesAuthentication, AccountAzureFilesAuthenticationArgs
- Directory
Type string - Specifies the directory service used. Possible values are
AADDS
,AD
andAADKERB
. - Active
Directory AccountAzure Files Authentication Active Directory - A
active_directory
block as defined below. Required whendirectory_type
isAD
. - string
- Specifies the default share level permissions applied to all users. Possible values are
StorageFileDataSmbShareReader
,StorageFileDataSmbShareContributor
,StorageFileDataSmbShareElevatedContributor
, orNone
.
- Directory
Type string - Specifies the directory service used. Possible values are
AADDS
,AD
andAADKERB
. - Active
Directory AccountAzure Files Authentication Active Directory - A
active_directory
block as defined below. Required whendirectory_type
isAD
. - string
- Specifies the default share level permissions applied to all users. Possible values are
StorageFileDataSmbShareReader
,StorageFileDataSmbShareContributor
,StorageFileDataSmbShareElevatedContributor
, orNone
.
- directory
Type String - Specifies the directory service used. Possible values are
AADDS
,AD
andAADKERB
. - active
Directory AccountAzure Files Authentication Active Directory - A
active_directory
block as defined below. Required whendirectory_type
isAD
. - String
- Specifies the default share level permissions applied to all users. Possible values are
StorageFileDataSmbShareReader
,StorageFileDataSmbShareContributor
,StorageFileDataSmbShareElevatedContributor
, orNone
.
- directory
Type string - Specifies the directory service used. Possible values are
AADDS
,AD
andAADKERB
. - active
Directory AccountAzure Files Authentication Active Directory - A
active_directory
block as defined below. Required whendirectory_type
isAD
. - string
- Specifies the default share level permissions applied to all users. Possible values are
StorageFileDataSmbShareReader
,StorageFileDataSmbShareContributor
,StorageFileDataSmbShareElevatedContributor
, orNone
.
- directory_
type str - Specifies the directory service used. Possible values are
AADDS
,AD
andAADKERB
. - active_
directory AccountAzure Files Authentication Active Directory - A
active_directory
block as defined below. Required whendirectory_type
isAD
. - str
- Specifies the default share level permissions applied to all users. Possible values are
StorageFileDataSmbShareReader
,StorageFileDataSmbShareContributor
,StorageFileDataSmbShareElevatedContributor
, orNone
.
- directory
Type String - Specifies the directory service used. Possible values are
AADDS
,AD
andAADKERB
. - active
Directory Property Map - A
active_directory
block as defined below. Required whendirectory_type
isAD
. - String
- Specifies the default share level permissions applied to all users. Possible values are
StorageFileDataSmbShareReader
,StorageFileDataSmbShareContributor
,StorageFileDataSmbShareElevatedContributor
, orNone
.
AccountAzureFilesAuthenticationActiveDirectory, AccountAzureFilesAuthenticationActiveDirectoryArgs
- Domain
Guid string - Specifies the domain GUID.
- Domain
Name string - Specifies the primary domain that the AD DNS server is authoritative for.
- Domain
Sid string - Specifies the security identifier (SID). This is required when
directory_type
is set toAD
. - Forest
Name string - Specifies the Active Directory forest. This is required when
directory_type
is set toAD
. - Netbios
Domain stringName - Specifies the NetBIOS domain name. This is required when
directory_type
is set toAD
. - Storage
Sid string - Specifies the security identifier (SID) for Azure Storage. This is required when
directory_type
is set toAD
.
- Domain
Guid string - Specifies the domain GUID.
- Domain
Name string - Specifies the primary domain that the AD DNS server is authoritative for.
- Domain
Sid string - Specifies the security identifier (SID). This is required when
directory_type
is set toAD
. - Forest
Name string - Specifies the Active Directory forest. This is required when
directory_type
is set toAD
. - Netbios
Domain stringName - Specifies the NetBIOS domain name. This is required when
directory_type
is set toAD
. - Storage
Sid string - Specifies the security identifier (SID) for Azure Storage. This is required when
directory_type
is set toAD
.
- domain
Guid String - Specifies the domain GUID.
- domain
Name String - Specifies the primary domain that the AD DNS server is authoritative for.
- domain
Sid String - Specifies the security identifier (SID). This is required when
directory_type
is set toAD
. - forest
Name String - Specifies the Active Directory forest. This is required when
directory_type
is set toAD
. - netbios
Domain StringName - Specifies the NetBIOS domain name. This is required when
directory_type
is set toAD
. - storage
Sid String - Specifies the security identifier (SID) for Azure Storage. This is required when
directory_type
is set toAD
.
- domain
Guid string - Specifies the domain GUID.
- domain
Name string - Specifies the primary domain that the AD DNS server is authoritative for.
- domain
Sid string - Specifies the security identifier (SID). This is required when
directory_type
is set toAD
. - forest
Name string - Specifies the Active Directory forest. This is required when
directory_type
is set toAD
. - netbios
Domain stringName - Specifies the NetBIOS domain name. This is required when
directory_type
is set toAD
. - storage
Sid string - Specifies the security identifier (SID) for Azure Storage. This is required when
directory_type
is set toAD
.
- domain_
guid str - Specifies the domain GUID.
- domain_
name str - Specifies the primary domain that the AD DNS server is authoritative for.
- domain_
sid str - Specifies the security identifier (SID). This is required when
directory_type
is set toAD
. - forest_
name str - Specifies the Active Directory forest. This is required when
directory_type
is set toAD
. - netbios_
domain_ strname - Specifies the NetBIOS domain name. This is required when
directory_type
is set toAD
. - storage_
sid str - Specifies the security identifier (SID) for Azure Storage. This is required when
directory_type
is set toAD
.
- domain
Guid String - Specifies the domain GUID.
- domain
Name String - Specifies the primary domain that the AD DNS server is authoritative for.
- domain
Sid String - Specifies the security identifier (SID). This is required when
directory_type
is set toAD
. - forest
Name String - Specifies the Active Directory forest. This is required when
directory_type
is set toAD
. - netbios
Domain StringName - Specifies the NetBIOS domain name. This is required when
directory_type
is set toAD
. - storage
Sid String - Specifies the security identifier (SID) for Azure Storage. This is required when
directory_type
is set toAD
.
AccountBlobProperties, AccountBlobPropertiesArgs
- Change
Feed boolEnabled Is the blob service properties for change feed events enabled? Default to
false
.Note: This field cannot be configured when
kind
is set toStorage
(V1).- Change
Feed intRetention In Days The duration of change feed events retention in days. The possible values are between 1 and 146000 days (400 years). Setting this to null (or omit this in the configuration file) indicates an infinite retention of the change feed.
Note: This field cannot be configured when
kind
is set toStorage
(V1).- Container
Delete AccountRetention Policy Blob Properties Container Delete Retention Policy - A
container_delete_retention_policy
block as defined below. - Cors
Rules List<AccountBlob Properties Cors Rule> - A
cors_rule
block as defined below. - Default
Service stringVersion - The API Version which should be used by default for requests to the Data Plane API if an incoming request doesn't specify an API Version.
- Delete
Retention AccountPolicy Blob Properties Delete Retention Policy - A
delete_retention_policy
block as defined below. - Last
Access boolTime Enabled Is the last access time based tracking enabled? Default to
false
.Note: This field cannot be configured when
kind
is set toStorage
(V1).- Restore
Policy AccountBlob Properties Restore Policy A
restore_policy
block as defined below. This must be used together withdelete_retention_policy
set,versioning_enabled
andchange_feed_enabled
set totrue
.Note: This field cannot be configured when
kind
is set toStorage
(V1).Note:
restore_policy
can not be configured whendns_endpoint_type
isAzureDnsZone
.- Versioning
Enabled bool Is versioning enabled? Default to
false
.Note: This field cannot be configured when
kind
is set toStorage
(V1).
- Change
Feed boolEnabled Is the blob service properties for change feed events enabled? Default to
false
.Note: This field cannot be configured when
kind
is set toStorage
(V1).- Change
Feed intRetention In Days The duration of change feed events retention in days. The possible values are between 1 and 146000 days (400 years). Setting this to null (or omit this in the configuration file) indicates an infinite retention of the change feed.
Note: This field cannot be configured when
kind
is set toStorage
(V1).- Container
Delete AccountRetention Policy Blob Properties Container Delete Retention Policy - A
container_delete_retention_policy
block as defined below. - Cors
Rules []AccountBlob Properties Cors Rule - A
cors_rule
block as defined below. - Default
Service stringVersion - The API Version which should be used by default for requests to the Data Plane API if an incoming request doesn't specify an API Version.
- Delete
Retention AccountPolicy Blob Properties Delete Retention Policy - A
delete_retention_policy
block as defined below. - Last
Access boolTime Enabled Is the last access time based tracking enabled? Default to
false
.Note: This field cannot be configured when
kind
is set toStorage
(V1).- Restore
Policy AccountBlob Properties Restore Policy A
restore_policy
block as defined below. This must be used together withdelete_retention_policy
set,versioning_enabled
andchange_feed_enabled
set totrue
.Note: This field cannot be configured when
kind
is set toStorage
(V1).Note:
restore_policy
can not be configured whendns_endpoint_type
isAzureDnsZone
.- Versioning
Enabled bool Is versioning enabled? Default to
false
.Note: This field cannot be configured when
kind
is set toStorage
(V1).
- change
Feed BooleanEnabled Is the blob service properties for change feed events enabled? Default to
false
.Note: This field cannot be configured when
kind
is set toStorage
(V1).- change
Feed IntegerRetention In Days The duration of change feed events retention in days. The possible values are between 1 and 146000 days (400 years). Setting this to null (or omit this in the configuration file) indicates an infinite retention of the change feed.
Note: This field cannot be configured when
kind
is set toStorage
(V1).- container
Delete AccountRetention Policy Blob Properties Container Delete Retention Policy - A
container_delete_retention_policy
block as defined below. - cors
Rules List<AccountBlob Properties Cors Rule> - A
cors_rule
block as defined below. - default
Service StringVersion - The API Version which should be used by default for requests to the Data Plane API if an incoming request doesn't specify an API Version.
- delete
Retention AccountPolicy Blob Properties Delete Retention Policy - A
delete_retention_policy
block as defined below. - last
Access BooleanTime Enabled Is the last access time based tracking enabled? Default to
false
.Note: This field cannot be configured when
kind
is set toStorage
(V1).- restore
Policy AccountBlob Properties Restore Policy A
restore_policy
block as defined below. This must be used together withdelete_retention_policy
set,versioning_enabled
andchange_feed_enabled
set totrue
.Note: This field cannot be configured when
kind
is set toStorage
(V1).Note:
restore_policy
can not be configured whendns_endpoint_type
isAzureDnsZone
.- versioning
Enabled Boolean Is versioning enabled? Default to
false
.Note: This field cannot be configured when
kind
is set toStorage
(V1).
- change
Feed booleanEnabled Is the blob service properties for change feed events enabled? Default to
false
.Note: This field cannot be configured when
kind
is set toStorage
(V1).- change
Feed numberRetention In Days The duration of change feed events retention in days. The possible values are between 1 and 146000 days (400 years). Setting this to null (or omit this in the configuration file) indicates an infinite retention of the change feed.
Note: This field cannot be configured when
kind
is set toStorage
(V1).- container
Delete AccountRetention Policy Blob Properties Container Delete Retention Policy - A
container_delete_retention_policy
block as defined below. - cors
Rules AccountBlob Properties Cors Rule[] - A
cors_rule
block as defined below. - default
Service stringVersion - The API Version which should be used by default for requests to the Data Plane API if an incoming request doesn't specify an API Version.
- delete
Retention AccountPolicy Blob Properties Delete Retention Policy - A
delete_retention_policy
block as defined below. - last
Access booleanTime Enabled Is the last access time based tracking enabled? Default to
false
.Note: This field cannot be configured when
kind
is set toStorage
(V1).- restore
Policy AccountBlob Properties Restore Policy A
restore_policy
block as defined below. This must be used together withdelete_retention_policy
set,versioning_enabled
andchange_feed_enabled
set totrue
.Note: This field cannot be configured when
kind
is set toStorage
(V1).Note:
restore_policy
can not be configured whendns_endpoint_type
isAzureDnsZone
.- versioning
Enabled boolean Is versioning enabled? Default to
false
.Note: This field cannot be configured when
kind
is set toStorage
(V1).
- change_
feed_ boolenabled Is the blob service properties for change feed events enabled? Default to
false
.Note: This field cannot be configured when
kind
is set toStorage
(V1).- change_
feed_ intretention_ in_ days The duration of change feed events retention in days. The possible values are between 1 and 146000 days (400 years). Setting this to null (or omit this in the configuration file) indicates an infinite retention of the change feed.
Note: This field cannot be configured when
kind
is set toStorage
(V1).- container_
delete_ Accountretention_ policy Blob Properties Container Delete Retention Policy - A
container_delete_retention_policy
block as defined below. - cors_
rules Sequence[AccountBlob Properties Cors Rule] - A
cors_rule
block as defined below. - default_
service_ strversion - The API Version which should be used by default for requests to the Data Plane API if an incoming request doesn't specify an API Version.
- delete_
retention_ Accountpolicy Blob Properties Delete Retention Policy - A
delete_retention_policy
block as defined below. - last_
access_ booltime_ enabled Is the last access time based tracking enabled? Default to
false
.Note: This field cannot be configured when
kind
is set toStorage
(V1).- restore_
policy AccountBlob Properties Restore Policy A
restore_policy
block as defined below. This must be used together withdelete_retention_policy
set,versioning_enabled
andchange_feed_enabled
set totrue
.Note: This field cannot be configured when
kind
is set toStorage
(V1).Note:
restore_policy
can not be configured whendns_endpoint_type
isAzureDnsZone
.- versioning_
enabled bool Is versioning enabled? Default to
false
.Note: This field cannot be configured when
kind
is set toStorage
(V1).
- change
Feed BooleanEnabled Is the blob service properties for change feed events enabled? Default to
false
.Note: This field cannot be configured when
kind
is set toStorage
(V1).- change
Feed NumberRetention In Days The duration of change feed events retention in days. The possible values are between 1 and 146000 days (400 years). Setting this to null (or omit this in the configuration file) indicates an infinite retention of the change feed.
Note: This field cannot be configured when
kind
is set toStorage
(V1).- container
Delete Property MapRetention Policy - A
container_delete_retention_policy
block as defined below. - cors
Rules List<Property Map> - A
cors_rule
block as defined below. - default
Service StringVersion - The API Version which should be used by default for requests to the Data Plane API if an incoming request doesn't specify an API Version.
- delete
Retention Property MapPolicy - A
delete_retention_policy
block as defined below. - last
Access BooleanTime Enabled Is the last access time based tracking enabled? Default to
false
.Note: This field cannot be configured when
kind
is set toStorage
(V1).- restore
Policy Property Map A
restore_policy
block as defined below. This must be used together withdelete_retention_policy
set,versioning_enabled
andchange_feed_enabled
set totrue
.Note: This field cannot be configured when
kind
is set toStorage
(V1).Note:
restore_policy
can not be configured whendns_endpoint_type
isAzureDnsZone
.- versioning
Enabled Boolean Is versioning enabled? Default to
false
.Note: This field cannot be configured when
kind
is set toStorage
(V1).
AccountBlobPropertiesContainerDeleteRetentionPolicy, AccountBlobPropertiesContainerDeleteRetentionPolicyArgs
- Days int
- Specifies the number of days that the container should be retained, between
1
and365
days. Defaults to7
.
- Days int
- Specifies the number of days that the container should be retained, between
1
and365
days. Defaults to7
.
- days Integer
- Specifies the number of days that the container should be retained, between
1
and365
days. Defaults to7
.
- days number
- Specifies the number of days that the container should be retained, between
1
and365
days. Defaults to7
.
- days int
- Specifies the number of days that the container should be retained, between
1
and365
days. Defaults to7
.
- days Number
- Specifies the number of days that the container should be retained, between
1
and365
days. Defaults to7
.
AccountBlobPropertiesCorsRule, AccountBlobPropertiesCorsRuleArgs
- Allowed
Headers List<string> - A list of headers that are allowed to be a part of the cross-origin request.
- Allowed
Methods List<string> - A list of HTTP methods that are allowed to be executed by the origin. Valid options are
DELETE
,GET
,HEAD
,MERGE
,POST
,OPTIONS
,PUT
orPATCH
. - Allowed
Origins List<string> - A list of origin domains that will be allowed by CORS.
- Exposed
Headers List<string> - A list of response headers that are exposed to CORS clients.
- Max
Age intIn Seconds - The number of seconds the client should cache a preflight response.
- Allowed
Headers []string - A list of headers that are allowed to be a part of the cross-origin request.
- Allowed
Methods []string - A list of HTTP methods that are allowed to be executed by the origin. Valid options are
DELETE
,GET
,HEAD
,MERGE
,POST
,OPTIONS
,PUT
orPATCH
. - Allowed
Origins []string - A list of origin domains that will be allowed by CORS.
- Exposed
Headers []string - A list of response headers that are exposed to CORS clients.
- Max
Age intIn Seconds - The number of seconds the client should cache a preflight response.
- allowed
Headers List<String> - A list of headers that are allowed to be a part of the cross-origin request.
- allowed
Methods List<String> - A list of HTTP methods that are allowed to be executed by the origin. Valid options are
DELETE
,GET
,HEAD
,MERGE
,POST
,OPTIONS
,PUT
orPATCH
. - allowed
Origins List<String> - A list of origin domains that will be allowed by CORS.
- exposed
Headers List<String> - A list of response headers that are exposed to CORS clients.
- max
Age IntegerIn Seconds - The number of seconds the client should cache a preflight response.
- allowed
Headers string[] - A list of headers that are allowed to be a part of the cross-origin request.
- allowed
Methods string[] - A list of HTTP methods that are allowed to be executed by the origin. Valid options are
DELETE
,GET
,HEAD
,MERGE
,POST
,OPTIONS
,PUT
orPATCH
. - allowed
Origins string[] - A list of origin domains that will be allowed by CORS.
- exposed
Headers string[] - A list of response headers that are exposed to CORS clients.
- max
Age numberIn Seconds - The number of seconds the client should cache a preflight response.
- allowed_
headers Sequence[str] - A list of headers that are allowed to be a part of the cross-origin request.
- allowed_
methods Sequence[str] - A list of HTTP methods that are allowed to be executed by the origin. Valid options are
DELETE
,GET
,HEAD
,MERGE
,POST
,OPTIONS
,PUT
orPATCH
. - allowed_
origins Sequence[str] - A list of origin domains that will be allowed by CORS.
- exposed_
headers Sequence[str] - A list of response headers that are exposed to CORS clients.
- max_
age_ intin_ seconds - The number of seconds the client should cache a preflight response.
- allowed
Headers List<String> - A list of headers that are allowed to be a part of the cross-origin request.
- allowed
Methods List<String> - A list of HTTP methods that are allowed to be executed by the origin. Valid options are
DELETE
,GET
,HEAD
,MERGE
,POST
,OPTIONS
,PUT
orPATCH
. - allowed
Origins List<String> - A list of origin domains that will be allowed by CORS.
- exposed
Headers List<String> - A list of response headers that are exposed to CORS clients.
- max
Age NumberIn Seconds - The number of seconds the client should cache a preflight response.
AccountBlobPropertiesDeleteRetentionPolicy, AccountBlobPropertiesDeleteRetentionPolicyArgs
- Days int
- Specifies the number of days that the blob should be retained, between
1
and365
days. Defaults to7
. - Permanent
Delete boolEnabled Indicates whether permanent deletion of the soft deleted blob versions and snapshots is allowed. Defaults to
false
.Note:
permanent_delete_enabled
cannot be set to true if arestore_policy
block is defined.