We recommend using Azure Native.
azure.storage.Account
Explore with Pulumi AI
Manages an Azure Storage Account.
Example Usage
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Azure = Pulumi.Azure;
return await Deployment.RunAsync(() =>
{
var exampleResourceGroup = new Azure.Core.ResourceGroup("exampleResourceGroup", new()
{
Location = "West Europe",
});
var exampleAccount = new Azure.Storage.Account("exampleAccount", new()
{
ResourceGroupName = exampleResourceGroup.Name,
Location = exampleResourceGroup.Location,
AccountTier = "Standard",
AccountReplicationType = "GRS",
Tags =
{
{ "environment", "staging" },
},
});
});
package main
import (
"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/core"
"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/storage"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
exampleResourceGroup, err := core.NewResourceGroup(ctx, "exampleResourceGroup", &core.ResourceGroupArgs{
Location: pulumi.String("West Europe"),
})
if err != nil {
return err
}
_, err = storage.NewAccount(ctx, "exampleAccount", &storage.AccountArgs{
ResourceGroupName: exampleResourceGroup.Name,
Location: exampleResourceGroup.Location,
AccountTier: pulumi.String("Standard"),
AccountReplicationType: pulumi.String("GRS"),
Tags: pulumi.StringMap{
"environment": pulumi.String("staging"),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azure.core.ResourceGroup;
import com.pulumi.azure.core.ResourceGroupArgs;
import com.pulumi.azure.storage.Account;
import com.pulumi.azure.storage.AccountArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var exampleResourceGroup = new ResourceGroup("exampleResourceGroup", ResourceGroupArgs.builder()
.location("West Europe")
.build());
var exampleAccount = new Account("exampleAccount", AccountArgs.builder()
.resourceGroupName(exampleResourceGroup.name())
.location(exampleResourceGroup.location())
.accountTier("Standard")
.accountReplicationType("GRS")
.tags(Map.of("environment", "staging"))
.build());
}
}
import pulumi
import pulumi_azure as azure
example_resource_group = azure.core.ResourceGroup("exampleResourceGroup", location="West Europe")
example_account = azure.storage.Account("exampleAccount",
resource_group_name=example_resource_group.name,
location=example_resource_group.location,
account_tier="Standard",
account_replication_type="GRS",
tags={
"environment": "staging",
})
import * as pulumi from "@pulumi/pulumi";
import * as azure from "@pulumi/azure";
const exampleResourceGroup = new azure.core.ResourceGroup("exampleResourceGroup", {location: "West Europe"});
const exampleAccount = new azure.storage.Account("exampleAccount", {
resourceGroupName: exampleResourceGroup.name,
location: exampleResourceGroup.location,
accountTier: "Standard",
accountReplicationType: "GRS",
tags: {
environment: "staging",
},
});
resources:
exampleResourceGroup:
type: azure:core:ResourceGroup
properties:
location: West Europe
exampleAccount:
type: azure:storage:Account
properties:
resourceGroupName: ${exampleResourceGroup.name}
location: ${exampleResourceGroup.location}
accountTier: Standard
accountReplicationType: GRS
tags:
environment: staging
With Network Rules
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Azure = Pulumi.Azure;
return await Deployment.RunAsync(() =>
{
var exampleResourceGroup = new Azure.Core.ResourceGroup("exampleResourceGroup", new()
{
Location = "West Europe",
});
var exampleVirtualNetwork = new Azure.Network.VirtualNetwork("exampleVirtualNetwork", new()
{
AddressSpaces = new[]
{
"10.0.0.0/16",
},
Location = exampleResourceGroup.Location,
ResourceGroupName = exampleResourceGroup.Name,
});
var exampleSubnet = new Azure.Network.Subnet("exampleSubnet", new()
{
ResourceGroupName = exampleResourceGroup.Name,
VirtualNetworkName = exampleVirtualNetwork.Name,
AddressPrefixes = new[]
{
"10.0.2.0/24",
},
ServiceEndpoints = new[]
{
"Microsoft.Sql",
"Microsoft.Storage",
},
});
var exampleAccount = new Azure.Storage.Account("exampleAccount", new()
{
ResourceGroupName = exampleResourceGroup.Name,
Location = exampleResourceGroup.Location,
AccountTier = "Standard",
AccountReplicationType = "LRS",
NetworkRules = new Azure.Storage.Inputs.AccountNetworkRulesArgs
{
DefaultAction = "Deny",
IpRules = new[]
{
"100.0.0.1",
},
VirtualNetworkSubnetIds = new[]
{
exampleSubnet.Id,
},
},
Tags =
{
{ "environment", "staging" },
},
});
});
package main
import (
"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/core"
"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/network"
"github.com/pulumi/pulumi-azure/sdk/v5/go/azure/storage"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
exampleResourceGroup, err := core.NewResourceGroup(ctx, "exampleResourceGroup", &core.ResourceGroupArgs{
Location: pulumi.String("West Europe"),
})
if err != nil {
return err
}
exampleVirtualNetwork, err := network.NewVirtualNetwork(ctx, "exampleVirtualNetwork", &network.VirtualNetworkArgs{
AddressSpaces: pulumi.StringArray{
pulumi.String("10.0.0.0/16"),
},
Location: exampleResourceGroup.Location,
ResourceGroupName: exampleResourceGroup.Name,
})
if err != nil {
return err
}
exampleSubnet, err := network.NewSubnet(ctx, "exampleSubnet", &network.SubnetArgs{
ResourceGroupName: exampleResourceGroup.Name,
VirtualNetworkName: exampleVirtualNetwork.Name,
AddressPrefixes: pulumi.StringArray{
pulumi.String("10.0.2.0/24"),
},
ServiceEndpoints: pulumi.StringArray{
pulumi.String("Microsoft.Sql"),
pulumi.String("Microsoft.Storage"),
},
})
if err != nil {
return err
}
_, err = storage.NewAccount(ctx, "exampleAccount", &storage.AccountArgs{
ResourceGroupName: exampleResourceGroup.Name,
Location: exampleResourceGroup.Location,
AccountTier: pulumi.String("Standard"),
AccountReplicationType: pulumi.String("LRS"),
NetworkRules: &storage.AccountNetworkRulesTypeArgs{
DefaultAction: pulumi.String("Deny"),
IpRules: pulumi.StringArray{
pulumi.String("100.0.0.1"),
},
VirtualNetworkSubnetIds: pulumi.StringArray{
exampleSubnet.ID(),
},
},
Tags: pulumi.StringMap{
"environment": pulumi.String("staging"),
},
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.azure.core.ResourceGroup;
import com.pulumi.azure.core.ResourceGroupArgs;
import com.pulumi.azure.network.VirtualNetwork;
import com.pulumi.azure.network.VirtualNetworkArgs;
import com.pulumi.azure.network.Subnet;
import com.pulumi.azure.network.SubnetArgs;
import com.pulumi.azure.storage.Account;
import com.pulumi.azure.storage.AccountArgs;
import com.pulumi.azure.storage.inputs.AccountNetworkRulesArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var exampleResourceGroup = new ResourceGroup("exampleResourceGroup", ResourceGroupArgs.builder()
.location("West Europe")
.build());
var exampleVirtualNetwork = new VirtualNetwork("exampleVirtualNetwork", VirtualNetworkArgs.builder()
.addressSpaces("10.0.0.0/16")
.location(exampleResourceGroup.location())
.resourceGroupName(exampleResourceGroup.name())
.build());
var exampleSubnet = new Subnet("exampleSubnet", SubnetArgs.builder()
.resourceGroupName(exampleResourceGroup.name())
.virtualNetworkName(exampleVirtualNetwork.name())
.addressPrefixes("10.0.2.0/24")
.serviceEndpoints(
"Microsoft.Sql",
"Microsoft.Storage")
.build());
var exampleAccount = new Account("exampleAccount", AccountArgs.builder()
.resourceGroupName(exampleResourceGroup.name())
.location(exampleResourceGroup.location())
.accountTier("Standard")
.accountReplicationType("LRS")
.networkRules(AccountNetworkRulesArgs.builder()
.defaultAction("Deny")
.ipRules("100.0.0.1")
.virtualNetworkSubnetIds(exampleSubnet.id())
.build())
.tags(Map.of("environment", "staging"))
.build());
}
}
import pulumi
import pulumi_azure as azure
example_resource_group = azure.core.ResourceGroup("exampleResourceGroup", location="West Europe")
example_virtual_network = azure.network.VirtualNetwork("exampleVirtualNetwork",
address_spaces=["10.0.0.0/16"],
location=example_resource_group.location,
resource_group_name=example_resource_group.name)
example_subnet = azure.network.Subnet("exampleSubnet",
resource_group_name=example_resource_group.name,
virtual_network_name=example_virtual_network.name,
address_prefixes=["10.0.2.0/24"],
service_endpoints=[
"Microsoft.Sql",
"Microsoft.Storage",
])
example_account = azure.storage.Account("exampleAccount",
resource_group_name=example_resource_group.name,
location=example_resource_group.location,
account_tier="Standard",
account_replication_type="LRS",
network_rules=azure.storage.AccountNetworkRulesArgs(
default_action="Deny",
ip_rules=["100.0.0.1"],
virtual_network_subnet_ids=[example_subnet.id],
),
tags={
"environment": "staging",
})
import * as pulumi from "@pulumi/pulumi";
import * as azure from "@pulumi/azure";
const exampleResourceGroup = new azure.core.ResourceGroup("exampleResourceGroup", {location: "West Europe"});
const exampleVirtualNetwork = new azure.network.VirtualNetwork("exampleVirtualNetwork", {
addressSpaces: ["10.0.0.0/16"],
location: exampleResourceGroup.location,
resourceGroupName: exampleResourceGroup.name,
});
const exampleSubnet = new azure.network.Subnet("exampleSubnet", {
resourceGroupName: exampleResourceGroup.name,
virtualNetworkName: exampleVirtualNetwork.name,
addressPrefixes: ["10.0.2.0/24"],
serviceEndpoints: [
"Microsoft.Sql",
"Microsoft.Storage",
],
});
const exampleAccount = new azure.storage.Account("exampleAccount", {
resourceGroupName: exampleResourceGroup.name,
location: exampleResourceGroup.location,
accountTier: "Standard",
accountReplicationType: "LRS",
networkRules: {
defaultAction: "Deny",
ipRules: ["100.0.0.1"],
virtualNetworkSubnetIds: [exampleSubnet.id],
},
tags: {
environment: "staging",
},
});
resources:
exampleResourceGroup:
type: azure:core:ResourceGroup
properties:
location: West Europe
exampleVirtualNetwork:
type: azure:network:VirtualNetwork
properties:
addressSpaces:
- 10.0.0.0/16
location: ${exampleResourceGroup.location}
resourceGroupName: ${exampleResourceGroup.name}
exampleSubnet:
type: azure:network:Subnet
properties:
resourceGroupName: ${exampleResourceGroup.name}
virtualNetworkName: ${exampleVirtualNetwork.name}
addressPrefixes:
- 10.0.2.0/24
serviceEndpoints:
- Microsoft.Sql
- Microsoft.Storage
exampleAccount:
type: azure:storage:Account
properties:
resourceGroupName: ${exampleResourceGroup.name}
location: ${exampleResourceGroup.location}
accountTier: Standard
accountReplicationType: LRS
networkRules:
defaultAction: Deny
ipRules:
- 100.0.0.1
virtualNetworkSubnetIds:
- ${exampleSubnet.id}
tags:
environment: staging
Create Account Resource
new Account(name: string, args: AccountArgs, opts?: CustomResourceOptions);
@overload
def Account(resource_name: str,
opts: Optional[ResourceOptions] = None,
access_tier: Optional[str] = None,
account_kind: Optional[str] = None,
account_replication_type: Optional[str] = None,
account_tier: Optional[str] = None,
allow_nested_items_to_be_public: Optional[bool] = None,
allowed_copy_scope: Optional[str] = None,
azure_files_authentication: Optional[AccountAzureFilesAuthenticationArgs] = None,
blob_properties: Optional[AccountBlobPropertiesArgs] = None,
cross_tenant_replication_enabled: Optional[bool] = None,
custom_domain: Optional[AccountCustomDomainArgs] = None,
customer_managed_key: Optional[AccountCustomerManagedKeyArgs] = None,
default_to_oauth_authentication: Optional[bool] = None,
edge_zone: Optional[str] = None,
enable_https_traffic_only: Optional[bool] = None,
identity: Optional[AccountIdentityArgs] = None,
immutability_policy: Optional[AccountImmutabilityPolicyArgs] = None,
infrastructure_encryption_enabled: Optional[bool] = None,
is_hns_enabled: Optional[bool] = None,
large_file_share_enabled: Optional[bool] = None,
location: Optional[str] = None,
min_tls_version: Optional[str] = None,
name: Optional[str] = None,
network_rules: Optional[AccountNetworkRulesArgs] = None,
nfsv3_enabled: Optional[bool] = None,
public_network_access_enabled: Optional[bool] = None,
queue_encryption_key_type: Optional[str] = None,
queue_properties: Optional[AccountQueuePropertiesArgs] = None,
resource_group_name: Optional[str] = None,
routing: Optional[AccountRoutingArgs] = None,
sas_policy: Optional[AccountSasPolicyArgs] = None,
sftp_enabled: Optional[bool] = None,
share_properties: Optional[AccountSharePropertiesArgs] = None,
shared_access_key_enabled: Optional[bool] = None,
static_website: Optional[AccountStaticWebsiteArgs] = None,
table_encryption_key_type: Optional[str] = None,
tags: Optional[Mapping[str, str]] = None)
@overload
def Account(resource_name: str,
args: AccountArgs,
opts: Optional[ResourceOptions] = None)
func NewAccount(ctx *Context, name string, args AccountArgs, opts ...ResourceOption) (*Account, error)
public Account(string name, AccountArgs args, CustomResourceOptions? opts = null)
public Account(String name, AccountArgs args)
public Account(String name, AccountArgs args, CustomResourceOptions options)
type: azure:storage:Account
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args AccountArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args AccountArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args AccountArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args AccountArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args AccountArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Account Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
The Account resource accepts the following input properties:
- Account
Replication stringType Defines the type of replication to use for this storage account. Valid options are
LRS
,GRS
,RAGRS
,ZRS
,GZRS
andRAGZRS
.- Account
Tier string Defines the Tier to use for this storage account. Valid options are
Standard
andPremium
. ForBlockBlobStorage
andFileStorage
accounts onlyPremium
is valid. Changing this forces a new resource to be created.- Resource
Group stringName The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.
- Access
Tier string Defines the access tier for
BlobStorage
,FileStorage
andStorageV2
accounts. Valid options areHot
andCool
, defaults toHot
.- Account
Kind string Defines the Kind of account. Valid options are
BlobStorage
,BlockBlobStorage
,FileStorage
,Storage
andStorageV2
. Defaults toStorageV2
.- Allow
Nested boolItems To Be Public Allow or disallow nested items within this Account to opt into being public. Defaults to
true
.- Allowed
Copy stringScope Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are
AAD
andPrivateLink
.- Azure
Files AccountAuthentication Azure Files Authentication Args A
azure_files_authentication
block as defined below.- Blob
Properties AccountBlob Properties Args A
blob_properties
block as defined below.- Cross
Tenant boolReplication Enabled Should cross Tenant replication be enabled? Defaults to
true
.- Custom
Domain AccountCustom Domain Args A
custom_domain
block as documented below.- Customer
Managed AccountKey Customer Managed Key Args A
customer_managed_key
block as documented below.- Default
To boolOauth Authentication Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is
false
- Edge
Zone string Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.
- Enable
Https boolTraffic Only Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to
true
.- Identity
Account
Identity Args An
identity
block as defined below.- Immutability
Policy AccountImmutability Policy Args An
immutability_policy
block as defined below. Changing this forces a new resource to be created.- Infrastructure
Encryption boolEnabled Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to
false
.- Is
Hns boolEnabled Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.
- bool
Is Large File Share Enabled?
- Location string
Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.
- Min
Tls stringVersion The minimum supported TLS version for the storage account. Possible values are
TLS1_0
,TLS1_1
, andTLS1_2
. Defaults toTLS1_2
for new storage accounts.- Name string
Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.
- Network
Rules AccountNetwork Rules Args A
network_rules
block as documented below.- Nfsv3Enabled bool
Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to
false
.- Public
Network boolAccess Enabled Whether the public network access is enabled? Defaults to
true
.- Queue
Encryption stringKey Type The encryption type of the queue service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.- Queue
Properties AccountQueue Properties Args A
queue_properties
block as defined below.- Routing
Account
Routing Args A
routing
block as defined below.- Sas
Policy AccountSas Policy Args A
sas_policy
block as defined below.- Sftp
Enabled bool Boolean, enable SFTP for the storage account
- Account
Share Properties Args A
share_properties
block as defined below.- bool
Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key. If false, then all requests, including shared access signatures, must be authorized with Azure Active Directory (Azure AD). The default value is
true
.- Static
Website AccountStatic Website Args A
static_website
block as defined below.- Table
Encryption stringKey Type The encryption type of the table service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.- Dictionary<string, string>
A mapping of tags to assign to the resource.
- Account
Replication stringType Defines the type of replication to use for this storage account. Valid options are
LRS
,GRS
,RAGRS
,ZRS
,GZRS
andRAGZRS
.- Account
Tier string Defines the Tier to use for this storage account. Valid options are
Standard
andPremium
. ForBlockBlobStorage
andFileStorage
accounts onlyPremium
is valid. Changing this forces a new resource to be created.- Resource
Group stringName The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.
- Access
Tier string Defines the access tier for
BlobStorage
,FileStorage
andStorageV2
accounts. Valid options areHot
andCool
, defaults toHot
.- Account
Kind string Defines the Kind of account. Valid options are
BlobStorage
,BlockBlobStorage
,FileStorage
,Storage
andStorageV2
. Defaults toStorageV2
.- Allow
Nested boolItems To Be Public Allow or disallow nested items within this Account to opt into being public. Defaults to
true
.- Allowed
Copy stringScope Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are
AAD
andPrivateLink
.- Azure
Files AccountAuthentication Azure Files Authentication Args A
azure_files_authentication
block as defined below.- Blob
Properties AccountBlob Properties Args A
blob_properties
block as defined below.- Cross
Tenant boolReplication Enabled Should cross Tenant replication be enabled? Defaults to
true
.- Custom
Domain AccountCustom Domain Args A
custom_domain
block as documented below.- Customer
Managed AccountKey Customer Managed Key Args A
customer_managed_key
block as documented below.- Default
To boolOauth Authentication Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is
false
- Edge
Zone string Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.
- Enable
Https boolTraffic Only Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to
true
.- Identity
Account
Identity Args An
identity
block as defined below.- Immutability
Policy AccountImmutability Policy Args An
immutability_policy
block as defined below. Changing this forces a new resource to be created.- Infrastructure
Encryption boolEnabled Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to
false
.- Is
Hns boolEnabled Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.
- bool
Is Large File Share Enabled?
- Location string
Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.
- Min
Tls stringVersion The minimum supported TLS version for the storage account. Possible values are
TLS1_0
,TLS1_1
, andTLS1_2
. Defaults toTLS1_2
for new storage accounts.- Name string
Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.
- Network
Rules AccountNetwork Rules Type Args A
network_rules
block as documented below.- Nfsv3Enabled bool
Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to
false
.- Public
Network boolAccess Enabled Whether the public network access is enabled? Defaults to
true
.- Queue
Encryption stringKey Type The encryption type of the queue service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.- Queue
Properties AccountQueue Properties Args A
queue_properties
block as defined below.- Routing
Account
Routing Args A
routing
block as defined below.- Sas
Policy AccountSas Policy Args A
sas_policy
block as defined below.- Sftp
Enabled bool Boolean, enable SFTP for the storage account
- Account
Share Properties Args A
share_properties
block as defined below.- bool
Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key. If false, then all requests, including shared access signatures, must be authorized with Azure Active Directory (Azure AD). The default value is
true
.- Static
Website AccountStatic Website Args A
static_website
block as defined below.- Table
Encryption stringKey Type The encryption type of the table service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.- map[string]string
A mapping of tags to assign to the resource.
- account
Replication StringType Defines the type of replication to use for this storage account. Valid options are
LRS
,GRS
,RAGRS
,ZRS
,GZRS
andRAGZRS
.- account
Tier String Defines the Tier to use for this storage account. Valid options are
Standard
andPremium
. ForBlockBlobStorage
andFileStorage
accounts onlyPremium
is valid. Changing this forces a new resource to be created.- resource
Group StringName The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.
- access
Tier String Defines the access tier for
BlobStorage
,FileStorage
andStorageV2
accounts. Valid options areHot
andCool
, defaults toHot
.- account
Kind String Defines the Kind of account. Valid options are
BlobStorage
,BlockBlobStorage
,FileStorage
,Storage
andStorageV2
. Defaults toStorageV2
.- allow
Nested BooleanItems To Be Public Allow or disallow nested items within this Account to opt into being public. Defaults to
true
.- allowed
Copy StringScope Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are
AAD
andPrivateLink
.- azure
Files AccountAuthentication Azure Files Authentication Args A
azure_files_authentication
block as defined below.- blob
Properties AccountBlob Properties Args A
blob_properties
block as defined below.- cross
Tenant BooleanReplication Enabled Should cross Tenant replication be enabled? Defaults to
true
.- custom
Domain AccountCustom Domain Args A
custom_domain
block as documented below.- customer
Managed AccountKey Customer Managed Key Args A
customer_managed_key
block as documented below.- default
To BooleanOauth Authentication Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is
false
- edge
Zone String Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.
- enable
Https BooleanTraffic Only Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to
true
.- identity
Account
Identity Args An
identity
block as defined below.- immutability
Policy AccountImmutability Policy Args An
immutability_policy
block as defined below. Changing this forces a new resource to be created.- infrastructure
Encryption BooleanEnabled Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to
false
.- is
Hns BooleanEnabled Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.
- Boolean
Is Large File Share Enabled?
- location String
Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.
- min
Tls StringVersion The minimum supported TLS version for the storage account. Possible values are
TLS1_0
,TLS1_1
, andTLS1_2
. Defaults toTLS1_2
for new storage accounts.- name String
Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.
- network
Rules AccountNetwork Rules Args A
network_rules
block as documented below.- nfsv3Enabled Boolean
Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to
false
.- public
Network BooleanAccess Enabled Whether the public network access is enabled? Defaults to
true
.- queue
Encryption StringKey Type The encryption type of the queue service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.- queue
Properties AccountQueue Properties Args A
queue_properties
block as defined below.- routing
Account
Routing Args A
routing
block as defined below.- sas
Policy AccountSas Policy Args A
sas_policy
block as defined below.- sftp
Enabled Boolean Boolean, enable SFTP for the storage account
- Account
Share Properties Args A
share_properties
block as defined below.- Boolean
Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key. If false, then all requests, including shared access signatures, must be authorized with Azure Active Directory (Azure AD). The default value is
true
.- static
Website AccountStatic Website Args A
static_website
block as defined below.- table
Encryption StringKey Type The encryption type of the table service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.- Map<String,String>
A mapping of tags to assign to the resource.
- account
Replication stringType Defines the type of replication to use for this storage account. Valid options are
LRS
,GRS
,RAGRS
,ZRS
,GZRS
andRAGZRS
.- account
Tier string Defines the Tier to use for this storage account. Valid options are
Standard
andPremium
. ForBlockBlobStorage
andFileStorage
accounts onlyPremium
is valid. Changing this forces a new resource to be created.- resource
Group stringName The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.
- access
Tier string Defines the access tier for
BlobStorage
,FileStorage
andStorageV2
accounts. Valid options areHot
andCool
, defaults toHot
.- account
Kind string Defines the Kind of account. Valid options are
BlobStorage
,BlockBlobStorage
,FileStorage
,Storage
andStorageV2
. Defaults toStorageV2
.- allow
Nested booleanItems To Be Public Allow or disallow nested items within this Account to opt into being public. Defaults to
true
.- allowed
Copy stringScope Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are
AAD
andPrivateLink
.- azure
Files AccountAuthentication Azure Files Authentication Args A
azure_files_authentication
block as defined below.- blob
Properties AccountBlob Properties Args A
blob_properties
block as defined below.- cross
Tenant booleanReplication Enabled Should cross Tenant replication be enabled? Defaults to
true
.- custom
Domain AccountCustom Domain Args A
custom_domain
block as documented below.- customer
Managed AccountKey Customer Managed Key Args A
customer_managed_key
block as documented below.- default
To booleanOauth Authentication Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is
false
- edge
Zone string Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.
- enable
Https booleanTraffic Only Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to
true
.- identity
Account
Identity Args An
identity
block as defined below.- immutability
Policy AccountImmutability Policy Args An
immutability_policy
block as defined below. Changing this forces a new resource to be created.- infrastructure
Encryption booleanEnabled Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to
false
.- is
Hns booleanEnabled Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.
- boolean
Is Large File Share Enabled?
- location string
Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.
- min
Tls stringVersion The minimum supported TLS version for the storage account. Possible values are
TLS1_0
,TLS1_1
, andTLS1_2
. Defaults toTLS1_2
for new storage accounts.- name string
Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.
- network
Rules AccountNetwork Rules Args A
network_rules
block as documented below.- nfsv3Enabled boolean
Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to
false
.- public
Network booleanAccess Enabled Whether the public network access is enabled? Defaults to
true
.- queue
Encryption stringKey Type The encryption type of the queue service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.- queue
Properties AccountQueue Properties Args A
queue_properties
block as defined below.- routing
Account
Routing Args A
routing
block as defined below.- sas
Policy AccountSas Policy Args A
sas_policy
block as defined below.- sftp
Enabled boolean Boolean, enable SFTP for the storage account
- Account
Share Properties Args A
share_properties
block as defined below.- boolean
Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key. If false, then all requests, including shared access signatures, must be authorized with Azure Active Directory (Azure AD). The default value is
true
.- static
Website AccountStatic Website Args A
static_website
block as defined below.- table
Encryption stringKey Type The encryption type of the table service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.- {[key: string]: string}
A mapping of tags to assign to the resource.
- account_
replication_ strtype Defines the type of replication to use for this storage account. Valid options are
LRS
,GRS
,RAGRS
,ZRS
,GZRS
andRAGZRS
.- account_
tier str Defines the Tier to use for this storage account. Valid options are
Standard
andPremium
. ForBlockBlobStorage
andFileStorage
accounts onlyPremium
is valid. Changing this forces a new resource to be created.- resource_
group_ strname The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.
- access_
tier str Defines the access tier for
BlobStorage
,FileStorage
andStorageV2
accounts. Valid options areHot
andCool
, defaults toHot
.- account_
kind str Defines the Kind of account. Valid options are
BlobStorage
,BlockBlobStorage
,FileStorage
,Storage
andStorageV2
. Defaults toStorageV2
.- allow_
nested_ boolitems_ to_ be_ public Allow or disallow nested items within this Account to opt into being public. Defaults to
true
.- allowed_
copy_ strscope Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are
AAD
andPrivateLink
.- azure_
files_ Accountauthentication Azure Files Authentication Args A
azure_files_authentication
block as defined below.- blob_
properties AccountBlob Properties Args A
blob_properties
block as defined below.- cross_
tenant_ boolreplication_ enabled Should cross Tenant replication be enabled? Defaults to
true
.- custom_
domain AccountCustom Domain Args A
custom_domain
block as documented below.- customer_
managed_ Accountkey Customer Managed Key Args A
customer_managed_key
block as documented below.- default_
to_ booloauth_ authentication Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is
false
- edge_
zone str Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.
- enable_
https_ booltraffic_ only Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to
true
.- identity
Account
Identity Args An
identity
block as defined below.- immutability_
policy AccountImmutability Policy Args An
immutability_policy
block as defined below. Changing this forces a new resource to be created.- infrastructure_
encryption_ boolenabled Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to
false
.- is_
hns_ boolenabled Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.
- bool
Is Large File Share Enabled?
- location str
Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.
- min_
tls_ strversion The minimum supported TLS version for the storage account. Possible values are
TLS1_0
,TLS1_1
, andTLS1_2
. Defaults toTLS1_2
for new storage accounts.- name str
Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.
- network_
rules AccountNetwork Rules Args A
network_rules
block as documented below.- nfsv3_
enabled bool Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to
false
.- public_
network_ boolaccess_ enabled Whether the public network access is enabled? Defaults to
true
.- queue_
encryption_ strkey_ type The encryption type of the queue service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.- queue_
properties AccountQueue Properties Args A
queue_properties
block as defined below.- routing
Account
Routing Args A
routing
block as defined below.- sas_
policy AccountSas Policy Args A
sas_policy
block as defined below.- sftp_
enabled bool Boolean, enable SFTP for the storage account
- Account
Share Properties Args A
share_properties
block as defined below.- bool
Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key. If false, then all requests, including shared access signatures, must be authorized with Azure Active Directory (Azure AD). The default value is
true
.- static_
website AccountStatic Website Args A
static_website
block as defined below.- table_
encryption_ strkey_ type The encryption type of the table service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.- Mapping[str, str]
A mapping of tags to assign to the resource.
- account
Replication StringType Defines the type of replication to use for this storage account. Valid options are
LRS
,GRS
,RAGRS
,ZRS
,GZRS
andRAGZRS
.- account
Tier String Defines the Tier to use for this storage account. Valid options are
Standard
andPremium
. ForBlockBlobStorage
andFileStorage
accounts onlyPremium
is valid. Changing this forces a new resource to be created.- resource
Group StringName The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.
- access
Tier String Defines the access tier for
BlobStorage
,FileStorage
andStorageV2
accounts. Valid options areHot
andCool
, defaults toHot
.- account
Kind String Defines the Kind of account. Valid options are
BlobStorage
,BlockBlobStorage
,FileStorage
,Storage
andStorageV2
. Defaults toStorageV2
.- allow
Nested BooleanItems To Be Public Allow or disallow nested items within this Account to opt into being public. Defaults to
true
.- allowed
Copy StringScope Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are
AAD
andPrivateLink
.- azure
Files Property MapAuthentication A
azure_files_authentication
block as defined below.- blob
Properties Property Map A
blob_properties
block as defined below.- cross
Tenant BooleanReplication Enabled Should cross Tenant replication be enabled? Defaults to
true
.- custom
Domain Property Map A
custom_domain
block as documented below.- customer
Managed Property MapKey A
customer_managed_key
block as documented below.- default
To BooleanOauth Authentication Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is
false
- edge
Zone String Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.
- enable
Https BooleanTraffic Only Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to
true
.- identity Property Map
An
identity
block as defined below.- immutability
Policy Property Map An
immutability_policy
block as defined below. Changing this forces a new resource to be created.- infrastructure
Encryption BooleanEnabled Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to
false
.- is
Hns BooleanEnabled Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.
- Boolean
Is Large File Share Enabled?
- location String
Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.
- min
Tls StringVersion The minimum supported TLS version for the storage account. Possible values are
TLS1_0
,TLS1_1
, andTLS1_2
. Defaults toTLS1_2
for new storage accounts.- name String
Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.
- network
Rules Property Map A
network_rules
block as documented below.- nfsv3Enabled Boolean
Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to
false
.- public
Network BooleanAccess Enabled Whether the public network access is enabled? Defaults to
true
.- queue
Encryption StringKey Type The encryption type of the queue service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.- queue
Properties Property Map A
queue_properties
block as defined below.- routing Property Map
A
routing
block as defined below.- sas
Policy Property Map A
sas_policy
block as defined below.- sftp
Enabled Boolean Boolean, enable SFTP for the storage account
- Property Map
A
share_properties
block as defined below.- Boolean
Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key. If false, then all requests, including shared access signatures, must be authorized with Azure Active Directory (Azure AD). The default value is
true
.- static
Website Property Map A
static_website
block as defined below.- table
Encryption StringKey Type The encryption type of the table service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.- Map<String>
A mapping of tags to assign to the resource.
Outputs
All input properties are implicitly available as output properties. Additionally, the Account resource produces the following output properties:
- Id string
The provider-assigned unique ID for this managed resource.
- Primary
Access stringKey The primary access key for the storage account.
- Primary
Blob stringConnection String The connection string associated with the primary blob location.
- Primary
Blob stringEndpoint The endpoint URL for blob storage in the primary location.
- Primary
Blob stringHost The hostname with port if applicable for blob storage in the primary location.
- Primary
Connection stringString The connection string associated with the primary location.
- Primary
Dfs stringEndpoint The endpoint URL for DFS storage in the primary location.
- Primary
Dfs stringHost The hostname with port if applicable for DFS storage in the primary location.
- Primary
File stringEndpoint The endpoint URL for file storage in the primary location.
- Primary
File stringHost The hostname with port if applicable for file storage in the primary location.
- Primary
Location string The primary location of the storage account.
- Primary
Queue stringEndpoint The endpoint URL for queue storage in the primary location.
- Primary
Queue stringHost The hostname with port if applicable for queue storage in the primary location.
- Primary
Table stringEndpoint The endpoint URL for table storage in the primary location.
- Primary
Table stringHost The hostname with port if applicable for table storage in the primary location.
- Primary
Web stringEndpoint The endpoint URL for web storage in the primary location.
- Primary
Web stringHost The hostname with port if applicable for web storage in the primary location.
- Secondary
Access stringKey The secondary access key for the storage account.
- Secondary
Blob stringConnection String The connection string associated with the secondary blob location.
- Secondary
Blob stringEndpoint The endpoint URL for blob storage in the secondary location.
- Secondary
Blob stringHost The hostname with port if applicable for blob storage in the secondary location.
- Secondary
Connection stringString The connection string associated with the secondary location.
- Secondary
Dfs stringEndpoint The endpoint URL for DFS storage in the secondary location.
- Secondary
Dfs stringHost The hostname with port if applicable for DFS storage in the secondary location.
- Secondary
File stringEndpoint The endpoint URL for file storage in the secondary location.
- Secondary
File stringHost The hostname with port if applicable for file storage in the secondary location.
- Secondary
Location string The secondary location of the storage account.
- Secondary
Queue stringEndpoint The endpoint URL for queue storage in the secondary location.
- Secondary
Queue stringHost The hostname with port if applicable for queue storage in the secondary location.
- Secondary
Table stringEndpoint The endpoint URL for table storage in the secondary location.
- Secondary
Table stringHost The hostname with port if applicable for table storage in the secondary location.
- Secondary
Web stringEndpoint The endpoint URL for web storage in the secondary location.
- Secondary
Web stringHost The hostname with port if applicable for web storage in the secondary location.
- Id string
The provider-assigned unique ID for this managed resource.
- Primary
Access stringKey The primary access key for the storage account.
- Primary
Blob stringConnection String The connection string associated with the primary blob location.
- Primary
Blob stringEndpoint The endpoint URL for blob storage in the primary location.
- Primary
Blob stringHost The hostname with port if applicable for blob storage in the primary location.
- Primary
Connection stringString The connection string associated with the primary location.
- Primary
Dfs stringEndpoint The endpoint URL for DFS storage in the primary location.
- Primary
Dfs stringHost The hostname with port if applicable for DFS storage in the primary location.
- Primary
File stringEndpoint The endpoint URL for file storage in the primary location.
- Primary
File stringHost The hostname with port if applicable for file storage in the primary location.
- Primary
Location string The primary location of the storage account.
- Primary
Queue stringEndpoint The endpoint URL for queue storage in the primary location.
- Primary
Queue stringHost The hostname with port if applicable for queue storage in the primary location.
- Primary
Table stringEndpoint The endpoint URL for table storage in the primary location.
- Primary
Table stringHost The hostname with port if applicable for table storage in the primary location.
- Primary
Web stringEndpoint The endpoint URL for web storage in the primary location.
- Primary
Web stringHost The hostname with port if applicable for web storage in the primary location.
- Secondary
Access stringKey The secondary access key for the storage account.
- Secondary
Blob stringConnection String The connection string associated with the secondary blob location.
- Secondary
Blob stringEndpoint The endpoint URL for blob storage in the secondary location.
- Secondary
Blob stringHost The hostname with port if applicable for blob storage in the secondary location.
- Secondary
Connection stringString The connection string associated with the secondary location.
- Secondary
Dfs stringEndpoint The endpoint URL for DFS storage in the secondary location.
- Secondary
Dfs stringHost The hostname with port if applicable for DFS storage in the secondary location.
- Secondary
File stringEndpoint The endpoint URL for file storage in the secondary location.
- Secondary
File stringHost The hostname with port if applicable for file storage in the secondary location.
- Secondary
Location string The secondary location of the storage account.
- Secondary
Queue stringEndpoint The endpoint URL for queue storage in the secondary location.
- Secondary
Queue stringHost The hostname with port if applicable for queue storage in the secondary location.
- Secondary
Table stringEndpoint The endpoint URL for table storage in the secondary location.
- Secondary
Table stringHost The hostname with port if applicable for table storage in the secondary location.
- Secondary
Web stringEndpoint The endpoint URL for web storage in the secondary location.
- Secondary
Web stringHost The hostname with port if applicable for web storage in the secondary location.
- id String
The provider-assigned unique ID for this managed resource.
- primary
Access StringKey The primary access key for the storage account.
- primary
Blob StringConnection String The connection string associated with the primary blob location.
- primary
Blob StringEndpoint The endpoint URL for blob storage in the primary location.
- primary
Blob StringHost The hostname with port if applicable for blob storage in the primary location.
- primary
Connection StringString The connection string associated with the primary location.
- primary
Dfs StringEndpoint The endpoint URL for DFS storage in the primary location.
- primary
Dfs StringHost The hostname with port if applicable for DFS storage in the primary location.
- primary
File StringEndpoint The endpoint URL for file storage in the primary location.
- primary
File StringHost The hostname with port if applicable for file storage in the primary location.
- primary
Location String The primary location of the storage account.
- primary
Queue StringEndpoint The endpoint URL for queue storage in the primary location.
- primary
Queue StringHost The hostname with port if applicable for queue storage in the primary location.
- primary
Table StringEndpoint The endpoint URL for table storage in the primary location.
- primary
Table StringHost The hostname with port if applicable for table storage in the primary location.
- primary
Web StringEndpoint The endpoint URL for web storage in the primary location.
- primary
Web StringHost The hostname with port if applicable for web storage in the primary location.
- secondary
Access StringKey The secondary access key for the storage account.
- secondary
Blob StringConnection String The connection string associated with the secondary blob location.
- secondary
Blob StringEndpoint The endpoint URL for blob storage in the secondary location.
- secondary
Blob StringHost The hostname with port if applicable for blob storage in the secondary location.
- secondary
Connection StringString The connection string associated with the secondary location.
- secondary
Dfs StringEndpoint The endpoint URL for DFS storage in the secondary location.
- secondary
Dfs StringHost The hostname with port if applicable for DFS storage in the secondary location.
- secondary
File StringEndpoint The endpoint URL for file storage in the secondary location.
- secondary
File StringHost The hostname with port if applicable for file storage in the secondary location.
- secondary
Location String The secondary location of the storage account.
- secondary
Queue StringEndpoint The endpoint URL for queue storage in the secondary location.
- secondary
Queue StringHost The hostname with port if applicable for queue storage in the secondary location.
- secondary
Table StringEndpoint The endpoint URL for table storage in the secondary location.
- secondary
Table StringHost The hostname with port if applicable for table storage in the secondary location.
- secondary
Web StringEndpoint The endpoint URL for web storage in the secondary location.
- secondary
Web StringHost The hostname with port if applicable for web storage in the secondary location.
- id string
The provider-assigned unique ID for this managed resource.
- primary
Access stringKey The primary access key for the storage account.
- primary
Blob stringConnection String The connection string associated with the primary blob location.
- primary
Blob stringEndpoint The endpoint URL for blob storage in the primary location.
- primary
Blob stringHost The hostname with port if applicable for blob storage in the primary location.
- primary
Connection stringString The connection string associated with the primary location.
- primary
Dfs stringEndpoint The endpoint URL for DFS storage in the primary location.
- primary
Dfs stringHost The hostname with port if applicable for DFS storage in the primary location.
- primary
File stringEndpoint The endpoint URL for file storage in the primary location.
- primary
File stringHost The hostname with port if applicable for file storage in the primary location.
- primary
Location string The primary location of the storage account.
- primary
Queue stringEndpoint The endpoint URL for queue storage in the primary location.
- primary
Queue stringHost The hostname with port if applicable for queue storage in the primary location.
- primary
Table stringEndpoint The endpoint URL for table storage in the primary location.
- primary
Table stringHost The hostname with port if applicable for table storage in the primary location.
- primary
Web stringEndpoint The endpoint URL for web storage in the primary location.
- primary
Web stringHost The hostname with port if applicable for web storage in the primary location.
- secondary
Access stringKey The secondary access key for the storage account.
- secondary
Blob stringConnection String The connection string associated with the secondary blob location.
- secondary
Blob stringEndpoint The endpoint URL for blob storage in the secondary location.
- secondary
Blob stringHost The hostname with port if applicable for blob storage in the secondary location.
- secondary
Connection stringString The connection string associated with the secondary location.
- secondary
Dfs stringEndpoint The endpoint URL for DFS storage in the secondary location.
- secondary
Dfs stringHost The hostname with port if applicable for DFS storage in the secondary location.
- secondary
File stringEndpoint The endpoint URL for file storage in the secondary location.
- secondary
File stringHost The hostname with port if applicable for file storage in the secondary location.
- secondary
Location string The secondary location of the storage account.
- secondary
Queue stringEndpoint The endpoint URL for queue storage in the secondary location.
- secondary
Queue stringHost The hostname with port if applicable for queue storage in the secondary location.
- secondary
Table stringEndpoint The endpoint URL for table storage in the secondary location.
- secondary
Table stringHost The hostname with port if applicable for table storage in the secondary location.
- secondary
Web stringEndpoint The endpoint URL for web storage in the secondary location.
- secondary
Web stringHost The hostname with port if applicable for web storage in the secondary location.
- id str
The provider-assigned unique ID for this managed resource.
- primary_
access_ strkey The primary access key for the storage account.
- primary_
blob_ strconnection_ string The connection string associated with the primary blob location.
- primary_
blob_ strendpoint The endpoint URL for blob storage in the primary location.
- primary_
blob_ strhost The hostname with port if applicable for blob storage in the primary location.
- primary_
connection_ strstring The connection string associated with the primary location.
- primary_
dfs_ strendpoint The endpoint URL for DFS storage in the primary location.
- primary_
dfs_ strhost The hostname with port if applicable for DFS storage in the primary location.
- primary_
file_ strendpoint The endpoint URL for file storage in the primary location.
- primary_
file_ strhost The hostname with port if applicable for file storage in the primary location.
- primary_
location str The primary location of the storage account.
- primary_
queue_ strendpoint The endpoint URL for queue storage in the primary location.
- primary_
queue_ strhost The hostname with port if applicable for queue storage in the primary location.
- primary_
table_ strendpoint The endpoint URL for table storage in the primary location.
- primary_
table_ strhost The hostname with port if applicable for table storage in the primary location.
- primary_
web_ strendpoint The endpoint URL for web storage in the primary location.
- primary_
web_ strhost The hostname with port if applicable for web storage in the primary location.
- secondary_
access_ strkey The secondary access key for the storage account.
- secondary_
blob_ strconnection_ string The connection string associated with the secondary blob location.
- secondary_
blob_ strendpoint The endpoint URL for blob storage in the secondary location.
- secondary_
blob_ strhost The hostname with port if applicable for blob storage in the secondary location.
- secondary_
connection_ strstring The connection string associated with the secondary location.
- secondary_
dfs_ strendpoint The endpoint URL for DFS storage in the secondary location.
- secondary_
dfs_ strhost The hostname with port if applicable for DFS storage in the secondary location.
- secondary_
file_ strendpoint The endpoint URL for file storage in the secondary location.
- secondary_
file_ strhost The hostname with port if applicable for file storage in the secondary location.
- secondary_
location str The secondary location of the storage account.
- secondary_
queue_ strendpoint The endpoint URL for queue storage in the secondary location.
- secondary_
queue_ strhost The hostname with port if applicable for queue storage in the secondary location.
- secondary_
table_ strendpoint The endpoint URL for table storage in the secondary location.
- secondary_
table_ strhost The hostname with port if applicable for table storage in the secondary location.
- secondary_
web_ strendpoint The endpoint URL for web storage in the secondary location.
- secondary_
web_ strhost The hostname with port if applicable for web storage in the secondary location.
- id String
The provider-assigned unique ID for this managed resource.
- primary
Access StringKey The primary access key for the storage account.
- primary
Blob StringConnection String The connection string associated with the primary blob location.
- primary
Blob StringEndpoint The endpoint URL for blob storage in the primary location.
- primary
Blob StringHost The hostname with port if applicable for blob storage in the primary location.
- primary
Connection StringString The connection string associated with the primary location.
- primary
Dfs StringEndpoint The endpoint URL for DFS storage in the primary location.
- primary
Dfs StringHost The hostname with port if applicable for DFS storage in the primary location.
- primary
File StringEndpoint The endpoint URL for file storage in the primary location.
- primary
File StringHost The hostname with port if applicable for file storage in the primary location.
- primary
Location String The primary location of the storage account.
- primary
Queue StringEndpoint The endpoint URL for queue storage in the primary location.
- primary
Queue StringHost The hostname with port if applicable for queue storage in the primary location.
- primary
Table StringEndpoint The endpoint URL for table storage in the primary location.
- primary
Table StringHost The hostname with port if applicable for table storage in the primary location.
- primary
Web StringEndpoint The endpoint URL for web storage in the primary location.
- primary
Web StringHost The hostname with port if applicable for web storage in the primary location.
- secondary
Access StringKey The secondary access key for the storage account.
- secondary
Blob StringConnection String The connection string associated with the secondary blob location.
- secondary
Blob StringEndpoint The endpoint URL for blob storage in the secondary location.
- secondary
Blob StringHost The hostname with port if applicable for blob storage in the secondary location.
- secondary
Connection StringString The connection string associated with the secondary location.
- secondary
Dfs StringEndpoint The endpoint URL for DFS storage in the secondary location.
- secondary
Dfs StringHost The hostname with port if applicable for DFS storage in the secondary location.
- secondary
File StringEndpoint The endpoint URL for file storage in the secondary location.
- secondary
File StringHost The hostname with port if applicable for file storage in the secondary location.
- secondary
Location String The secondary location of the storage account.
- secondary
Queue StringEndpoint The endpoint URL for queue storage in the secondary location.
- secondary
Queue StringHost The hostname with port if applicable for queue storage in the secondary location.
- secondary
Table StringEndpoint The endpoint URL for table storage in the secondary location.
- secondary
Table StringHost The hostname with port if applicable for table storage in the secondary location.
- secondary
Web StringEndpoint The endpoint URL for web storage in the secondary location.
- secondary
Web StringHost The hostname with port if applicable for web storage in the secondary location.
Look up Existing Account Resource
Get an existing Account resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: AccountState, opts?: CustomResourceOptions): Account
@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
access_tier: Optional[str] = None,
account_kind: Optional[str] = None,
account_replication_type: Optional[str] = None,
account_tier: Optional[str] = None,
allow_nested_items_to_be_public: Optional[bool] = None,
allowed_copy_scope: Optional[str] = None,
azure_files_authentication: Optional[AccountAzureFilesAuthenticationArgs] = None,
blob_properties: Optional[AccountBlobPropertiesArgs] = None,
cross_tenant_replication_enabled: Optional[bool] = None,
custom_domain: Optional[AccountCustomDomainArgs] = None,
customer_managed_key: Optional[AccountCustomerManagedKeyArgs] = None,
default_to_oauth_authentication: Optional[bool] = None,
edge_zone: Optional[str] = None,
enable_https_traffic_only: Optional[bool] = None,
identity: Optional[AccountIdentityArgs] = None,
immutability_policy: Optional[AccountImmutabilityPolicyArgs] = None,
infrastructure_encryption_enabled: Optional[bool] = None,
is_hns_enabled: Optional[bool] = None,
large_file_share_enabled: Optional[bool] = None,
location: Optional[str] = None,
min_tls_version: Optional[str] = None,
name: Optional[str] = None,
network_rules: Optional[AccountNetworkRulesArgs] = None,
nfsv3_enabled: Optional[bool] = None,
primary_access_key: Optional[str] = None,
primary_blob_connection_string: Optional[str] = None,
primary_blob_endpoint: Optional[str] = None,
primary_blob_host: Optional[str] = None,
primary_connection_string: Optional[str] = None,
primary_dfs_endpoint: Optional[str] = None,
primary_dfs_host: Optional[str] = None,
primary_file_endpoint: Optional[str] = None,
primary_file_host: Optional[str] = None,
primary_location: Optional[str] = None,
primary_queue_endpoint: Optional[str] = None,
primary_queue_host: Optional[str] = None,
primary_table_endpoint: Optional[str] = None,
primary_table_host: Optional[str] = None,
primary_web_endpoint: Optional[str] = None,
primary_web_host: Optional[str] = None,
public_network_access_enabled: Optional[bool] = None,
queue_encryption_key_type: Optional[str] = None,
queue_properties: Optional[AccountQueuePropertiesArgs] = None,
resource_group_name: Optional[str] = None,
routing: Optional[AccountRoutingArgs] = None,
sas_policy: Optional[AccountSasPolicyArgs] = None,
secondary_access_key: Optional[str] = None,
secondary_blob_connection_string: Optional[str] = None,
secondary_blob_endpoint: Optional[str] = None,
secondary_blob_host: Optional[str] = None,
secondary_connection_string: Optional[str] = None,
secondary_dfs_endpoint: Optional[str] = None,
secondary_dfs_host: Optional[str] = None,
secondary_file_endpoint: Optional[str] = None,
secondary_file_host: Optional[str] = None,
secondary_location: Optional[str] = None,
secondary_queue_endpoint: Optional[str] = None,
secondary_queue_host: Optional[str] = None,
secondary_table_endpoint: Optional[str] = None,
secondary_table_host: Optional[str] = None,
secondary_web_endpoint: Optional[str] = None,
secondary_web_host: Optional[str] = None,
sftp_enabled: Optional[bool] = None,
share_properties: Optional[AccountSharePropertiesArgs] = None,
shared_access_key_enabled: Optional[bool] = None,
static_website: Optional[AccountStaticWebsiteArgs] = None,
table_encryption_key_type: Optional[str] = None,
tags: Optional[Mapping[str, str]] = None) -> Account
func GetAccount(ctx *Context, name string, id IDInput, state *AccountState, opts ...ResourceOption) (*Account, error)
public static Account Get(string name, Input<string> id, AccountState? state, CustomResourceOptions? opts = null)
public static Account get(String name, Output<String> id, AccountState state, CustomResourceOptions options)
Resource lookup is not supported in YAML
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Access
Tier string Defines the access tier for
BlobStorage
,FileStorage
andStorageV2
accounts. Valid options areHot
andCool
, defaults toHot
.- Account
Kind string Defines the Kind of account. Valid options are
BlobStorage
,BlockBlobStorage
,FileStorage
,Storage
andStorageV2
. Defaults toStorageV2
.- Account
Replication stringType Defines the type of replication to use for this storage account. Valid options are
LRS
,GRS
,RAGRS
,ZRS
,GZRS
andRAGZRS
.- Account
Tier string Defines the Tier to use for this storage account. Valid options are
Standard
andPremium
. ForBlockBlobStorage
andFileStorage
accounts onlyPremium
is valid. Changing this forces a new resource to be created.- Allow
Nested boolItems To Be Public Allow or disallow nested items within this Account to opt into being public. Defaults to
true
.- Allowed
Copy stringScope Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are
AAD
andPrivateLink
.- Azure
Files AccountAuthentication Azure Files Authentication Args A
azure_files_authentication
block as defined below.- Blob
Properties AccountBlob Properties Args A
blob_properties
block as defined below.- Cross
Tenant boolReplication Enabled Should cross Tenant replication be enabled? Defaults to
true
.- Custom
Domain AccountCustom Domain Args A
custom_domain
block as documented below.- Customer
Managed AccountKey Customer Managed Key Args A
customer_managed_key
block as documented below.- Default
To boolOauth Authentication Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is
false
- Edge
Zone string Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.
- Enable
Https boolTraffic Only Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to
true
.- Identity
Account
Identity Args An
identity
block as defined below.- Immutability
Policy AccountImmutability Policy Args An
immutability_policy
block as defined below. Changing this forces a new resource to be created.- Infrastructure
Encryption boolEnabled Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to
false
.- Is
Hns boolEnabled Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.
- bool
Is Large File Share Enabled?
- Location string
Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.
- Min
Tls stringVersion The minimum supported TLS version for the storage account. Possible values are
TLS1_0
,TLS1_1
, andTLS1_2
. Defaults toTLS1_2
for new storage accounts.- Name string
Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.
- Network
Rules AccountNetwork Rules Args A
network_rules
block as documented below.- Nfsv3Enabled bool
Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to
false
.- Primary
Access stringKey The primary access key for the storage account.
- Primary
Blob stringConnection String The connection string associated with the primary blob location.
- Primary
Blob stringEndpoint The endpoint URL for blob storage in the primary location.
- Primary
Blob stringHost The hostname with port if applicable for blob storage in the primary location.
- Primary
Connection stringString The connection string associated with the primary location.
- Primary
Dfs stringEndpoint The endpoint URL for DFS storage in the primary location.
- Primary
Dfs stringHost The hostname with port if applicable for DFS storage in the primary location.
- Primary
File stringEndpoint The endpoint URL for file storage in the primary location.
- Primary
File stringHost The hostname with port if applicable for file storage in the primary location.
- Primary
Location string The primary location of the storage account.
- Primary
Queue stringEndpoint The endpoint URL for queue storage in the primary location.
- Primary
Queue stringHost The hostname with port if applicable for queue storage in the primary location.
- Primary
Table stringEndpoint The endpoint URL for table storage in the primary location.
- Primary
Table stringHost The hostname with port if applicable for table storage in the primary location.
- Primary
Web stringEndpoint The endpoint URL for web storage in the primary location.
- Primary
Web stringHost The hostname with port if applicable for web storage in the primary location.
- Public
Network boolAccess Enabled Whether the public network access is enabled? Defaults to
true
.- Queue
Encryption stringKey Type The encryption type of the queue service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.- Queue
Properties AccountQueue Properties Args A
queue_properties
block as defined below.- Resource
Group stringName The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.
- Routing
Account
Routing Args A
routing
block as defined below.- Sas
Policy AccountSas Policy Args A
sas_policy
block as defined below.- Secondary
Access stringKey The secondary access key for the storage account.
- Secondary
Blob stringConnection String The connection string associated with the secondary blob location.
- Secondary
Blob stringEndpoint The endpoint URL for blob storage in the secondary location.
- Secondary
Blob stringHost The hostname with port if applicable for blob storage in the secondary location.
- Secondary
Connection stringString The connection string associated with the secondary location.
- Secondary
Dfs stringEndpoint The endpoint URL for DFS storage in the secondary location.
- Secondary
Dfs stringHost The hostname with port if applicable for DFS storage in the secondary location.
- Secondary
File stringEndpoint The endpoint URL for file storage in the secondary location.
- Secondary
File stringHost The hostname with port if applicable for file storage in the secondary location.
- Secondary
Location string The secondary location of the storage account.
- Secondary
Queue stringEndpoint The endpoint URL for queue storage in the secondary location.
- Secondary
Queue stringHost The hostname with port if applicable for queue storage in the secondary location.
- Secondary
Table stringEndpoint The endpoint URL for table storage in the secondary location.
- Secondary
Table stringHost The hostname with port if applicable for table storage in the secondary location.
- Secondary
Web stringEndpoint The endpoint URL for web storage in the secondary location.
- Secondary
Web stringHost The hostname with port if applicable for web storage in the secondary location.
- Sftp
Enabled bool Boolean, enable SFTP for the storage account
- Account
Share Properties Args A
share_properties
block as defined below.- bool
Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key. If false, then all requests, including shared access signatures, must be authorized with Azure Active Directory (Azure AD). The default value is
true
.- Static
Website AccountStatic Website Args A
static_website
block as defined below.- Table
Encryption stringKey Type The encryption type of the table service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.- Dictionary<string, string>
A mapping of tags to assign to the resource.
- Access
Tier string Defines the access tier for
BlobStorage
,FileStorage
andStorageV2
accounts. Valid options areHot
andCool
, defaults toHot
.- Account
Kind string Defines the Kind of account. Valid options are
BlobStorage
,BlockBlobStorage
,FileStorage
,Storage
andStorageV2
. Defaults toStorageV2
.- Account
Replication stringType Defines the type of replication to use for this storage account. Valid options are
LRS
,GRS
,RAGRS
,ZRS
,GZRS
andRAGZRS
.- Account
Tier string Defines the Tier to use for this storage account. Valid options are
Standard
andPremium
. ForBlockBlobStorage
andFileStorage
accounts onlyPremium
is valid. Changing this forces a new resource to be created.- Allow
Nested boolItems To Be Public Allow or disallow nested items within this Account to opt into being public. Defaults to
true
.- Allowed
Copy stringScope Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are
AAD
andPrivateLink
.- Azure
Files AccountAuthentication Azure Files Authentication Args A
azure_files_authentication
block as defined below.- Blob
Properties AccountBlob Properties Args A
blob_properties
block as defined below.- Cross
Tenant boolReplication Enabled Should cross Tenant replication be enabled? Defaults to
true
.- Custom
Domain AccountCustom Domain Args A
custom_domain
block as documented below.- Customer
Managed AccountKey Customer Managed Key Args A
customer_managed_key
block as documented below.- Default
To boolOauth Authentication Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is
false
- Edge
Zone string Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.
- Enable
Https boolTraffic Only Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to
true
.- Identity
Account
Identity Args An
identity
block as defined below.- Immutability
Policy AccountImmutability Policy Args An
immutability_policy
block as defined below. Changing this forces a new resource to be created.- Infrastructure
Encryption boolEnabled Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to
false
.- Is
Hns boolEnabled Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.
- bool
Is Large File Share Enabled?
- Location string
Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.
- Min
Tls stringVersion The minimum supported TLS version for the storage account. Possible values are
TLS1_0
,TLS1_1
, andTLS1_2
. Defaults toTLS1_2
for new storage accounts.- Name string
Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.
- Network
Rules AccountNetwork Rules Type Args A
network_rules
block as documented below.- Nfsv3Enabled bool
Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to
false
.- Primary
Access stringKey The primary access key for the storage account.
- Primary
Blob stringConnection String The connection string associated with the primary blob location.
- Primary
Blob stringEndpoint The endpoint URL for blob storage in the primary location.
- Primary
Blob stringHost The hostname with port if applicable for blob storage in the primary location.
- Primary
Connection stringString The connection string associated with the primary location.
- Primary
Dfs stringEndpoint The endpoint URL for DFS storage in the primary location.
- Primary
Dfs stringHost The hostname with port if applicable for DFS storage in the primary location.
- Primary
File stringEndpoint The endpoint URL for file storage in the primary location.
- Primary
File stringHost The hostname with port if applicable for file storage in the primary location.
- Primary
Location string The primary location of the storage account.
- Primary
Queue stringEndpoint The endpoint URL for queue storage in the primary location.
- Primary
Queue stringHost The hostname with port if applicable for queue storage in the primary location.
- Primary
Table stringEndpoint The endpoint URL for table storage in the primary location.
- Primary
Table stringHost The hostname with port if applicable for table storage in the primary location.
- Primary
Web stringEndpoint The endpoint URL for web storage in the primary location.
- Primary
Web stringHost The hostname with port if applicable for web storage in the primary location.
- Public
Network boolAccess Enabled Whether the public network access is enabled? Defaults to
true
.- Queue
Encryption stringKey Type The encryption type of the queue service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.- Queue
Properties AccountQueue Properties Args A
queue_properties
block as defined below.- Resource
Group stringName The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.
- Routing
Account
Routing Args A
routing
block as defined below.- Sas
Policy AccountSas Policy Args A
sas_policy
block as defined below.- Secondary
Access stringKey The secondary access key for the storage account.
- Secondary
Blob stringConnection String The connection string associated with the secondary blob location.
- Secondary
Blob stringEndpoint The endpoint URL for blob storage in the secondary location.
- Secondary
Blob stringHost The hostname with port if applicable for blob storage in the secondary location.
- Secondary
Connection stringString The connection string associated with the secondary location.
- Secondary
Dfs stringEndpoint The endpoint URL for DFS storage in the secondary location.
- Secondary
Dfs stringHost The hostname with port if applicable for DFS storage in the secondary location.
- Secondary
File stringEndpoint The endpoint URL for file storage in the secondary location.
- Secondary
File stringHost The hostname with port if applicable for file storage in the secondary location.
- Secondary
Location string The secondary location of the storage account.
- Secondary
Queue stringEndpoint The endpoint URL for queue storage in the secondary location.
- Secondary
Queue stringHost The hostname with port if applicable for queue storage in the secondary location.
- Secondary
Table stringEndpoint The endpoint URL for table storage in the secondary location.
- Secondary
Table stringHost The hostname with port if applicable for table storage in the secondary location.
- Secondary
Web stringEndpoint The endpoint URL for web storage in the secondary location.
- Secondary
Web stringHost The hostname with port if applicable for web storage in the secondary location.
- Sftp
Enabled bool Boolean, enable SFTP for the storage account
- Account
Share Properties Args A
share_properties
block as defined below.- bool
Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key. If false, then all requests, including shared access signatures, must be authorized with Azure Active Directory (Azure AD). The default value is
true
.- Static
Website AccountStatic Website Args A
static_website
block as defined below.- Table
Encryption stringKey Type The encryption type of the table service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.- map[string]string
A mapping of tags to assign to the resource.
- access
Tier String Defines the access tier for
BlobStorage
,FileStorage
andStorageV2
accounts. Valid options areHot
andCool
, defaults toHot
.- account
Kind String Defines the Kind of account. Valid options are
BlobStorage
,BlockBlobStorage
,FileStorage
,Storage
andStorageV2
. Defaults toStorageV2
.- account
Replication StringType Defines the type of replication to use for this storage account. Valid options are
LRS
,GRS
,RAGRS
,ZRS
,GZRS
andRAGZRS
.- account
Tier String Defines the Tier to use for this storage account. Valid options are
Standard
andPremium
. ForBlockBlobStorage
andFileStorage
accounts onlyPremium
is valid. Changing this forces a new resource to be created.- allow
Nested BooleanItems To Be Public Allow or disallow nested items within this Account to opt into being public. Defaults to
true
.- allowed
Copy StringScope Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are
AAD
andPrivateLink
.- azure
Files AccountAuthentication Azure Files Authentication Args A
azure_files_authentication
block as defined below.- blob
Properties AccountBlob Properties Args A
blob_properties
block as defined below.- cross
Tenant BooleanReplication Enabled Should cross Tenant replication be enabled? Defaults to
true
.- custom
Domain AccountCustom Domain Args A
custom_domain
block as documented below.- customer
Managed AccountKey Customer Managed Key Args A
customer_managed_key
block as documented below.- default
To BooleanOauth Authentication Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is
false
- edge
Zone String Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.
- enable
Https BooleanTraffic Only Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to
true
.- identity
Account
Identity Args An
identity
block as defined below.- immutability
Policy AccountImmutability Policy Args An
immutability_policy
block as defined below. Changing this forces a new resource to be created.- infrastructure
Encryption BooleanEnabled Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to
false
.- is
Hns BooleanEnabled Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.
- Boolean
Is Large File Share Enabled?
- location String
Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.
- min
Tls StringVersion The minimum supported TLS version for the storage account. Possible values are
TLS1_0
,TLS1_1
, andTLS1_2
. Defaults toTLS1_2
for new storage accounts.- name String
Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.
- network
Rules AccountNetwork Rules Args A
network_rules
block as documented below.- nfsv3Enabled Boolean
Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to
false
.- primary
Access StringKey The primary access key for the storage account.
- primary
Blob StringConnection String The connection string associated with the primary blob location.
- primary
Blob StringEndpoint The endpoint URL for blob storage in the primary location.
- primary
Blob StringHost The hostname with port if applicable for blob storage in the primary location.
- primary
Connection StringString The connection string associated with the primary location.
- primary
Dfs StringEndpoint The endpoint URL for DFS storage in the primary location.
- primary
Dfs StringHost The hostname with port if applicable for DFS storage in the primary location.
- primary
File StringEndpoint The endpoint URL for file storage in the primary location.
- primary
File StringHost The hostname with port if applicable for file storage in the primary location.
- primary
Location String The primary location of the storage account.
- primary
Queue StringEndpoint The endpoint URL for queue storage in the primary location.
- primary
Queue StringHost The hostname with port if applicable for queue storage in the primary location.
- primary
Table StringEndpoint The endpoint URL for table storage in the primary location.
- primary
Table StringHost The hostname with port if applicable for table storage in the primary location.
- primary
Web StringEndpoint The endpoint URL for web storage in the primary location.
- primary
Web StringHost The hostname with port if applicable for web storage in the primary location.
- public
Network BooleanAccess Enabled Whether the public network access is enabled? Defaults to
true
.- queue
Encryption StringKey Type The encryption type of the queue service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.- queue
Properties AccountQueue Properties Args A
queue_properties
block as defined below.- resource
Group StringName The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.
- routing
Account
Routing Args A
routing
block as defined below.- sas
Policy AccountSas Policy Args A
sas_policy
block as defined below.- secondary
Access StringKey The secondary access key for the storage account.
- secondary
Blob StringConnection String The connection string associated with the secondary blob location.
- secondary
Blob StringEndpoint The endpoint URL for blob storage in the secondary location.
- secondary
Blob StringHost The hostname with port if applicable for blob storage in the secondary location.
- secondary
Connection StringString The connection string associated with the secondary location.
- secondary
Dfs StringEndpoint The endpoint URL for DFS storage in the secondary location.
- secondary
Dfs StringHost The hostname with port if applicable for DFS storage in the secondary location.
- secondary
File StringEndpoint The endpoint URL for file storage in the secondary location.
- secondary
File StringHost The hostname with port if applicable for file storage in the secondary location.
- secondary
Location String The secondary location of the storage account.
- secondary
Queue StringEndpoint The endpoint URL for queue storage in the secondary location.
- secondary
Queue StringHost The hostname with port if applicable for queue storage in the secondary location.
- secondary
Table StringEndpoint The endpoint URL for table storage in the secondary location.
- secondary
Table StringHost The hostname with port if applicable for table storage in the secondary location.
- secondary
Web StringEndpoint The endpoint URL for web storage in the secondary location.
- secondary
Web StringHost The hostname with port if applicable for web storage in the secondary location.
- sftp
Enabled Boolean Boolean, enable SFTP for the storage account
- Account
Share Properties Args A
share_properties
block as defined below.- Boolean
Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key. If false, then all requests, including shared access signatures, must be authorized with Azure Active Directory (Azure AD). The default value is
true
.- static
Website AccountStatic Website Args A
static_website
block as defined below.- table
Encryption StringKey Type The encryption type of the table service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.- Map<String,String>
A mapping of tags to assign to the resource.
- access
Tier string Defines the access tier for
BlobStorage
,FileStorage
andStorageV2
accounts. Valid options areHot
andCool
, defaults toHot
.- account
Kind string Defines the Kind of account. Valid options are
BlobStorage
,BlockBlobStorage
,FileStorage
,Storage
andStorageV2
. Defaults toStorageV2
.- account
Replication stringType Defines the type of replication to use for this storage account. Valid options are
LRS
,GRS
,RAGRS
,ZRS
,GZRS
andRAGZRS
.- account
Tier string Defines the Tier to use for this storage account. Valid options are
Standard
andPremium
. ForBlockBlobStorage
andFileStorage
accounts onlyPremium
is valid. Changing this forces a new resource to be created.- allow
Nested booleanItems To Be Public Allow or disallow nested items within this Account to opt into being public. Defaults to
true
.- allowed
Copy stringScope Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are
AAD
andPrivateLink
.- azure
Files AccountAuthentication Azure Files Authentication Args A
azure_files_authentication
block as defined below.- blob
Properties AccountBlob Properties Args A
blob_properties
block as defined below.- cross
Tenant booleanReplication Enabled Should cross Tenant replication be enabled? Defaults to
true
.- custom
Domain AccountCustom Domain Args A
custom_domain
block as documented below.- customer
Managed AccountKey Customer Managed Key Args A
customer_managed_key
block as documented below.- default
To booleanOauth Authentication Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is
false
- edge
Zone string Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.
- enable
Https booleanTraffic Only Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to
true
.- identity
Account
Identity Args An
identity
block as defined below.- immutability
Policy AccountImmutability Policy Args An
immutability_policy
block as defined below. Changing this forces a new resource to be created.- infrastructure
Encryption booleanEnabled Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to
false
.- is
Hns booleanEnabled Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.
- boolean
Is Large File Share Enabled?
- location string
Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.
- min
Tls stringVersion The minimum supported TLS version for the storage account. Possible values are
TLS1_0
,TLS1_1
, andTLS1_2
. Defaults toTLS1_2
for new storage accounts.- name string
Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.
- network
Rules AccountNetwork Rules Args A
network_rules
block as documented below.- nfsv3Enabled boolean
Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to
false
.- primary
Access stringKey The primary access key for the storage account.
- primary
Blob stringConnection String The connection string associated with the primary blob location.
- primary
Blob stringEndpoint The endpoint URL for blob storage in the primary location.
- primary
Blob stringHost The hostname with port if applicable for blob storage in the primary location.
- primary
Connection stringString The connection string associated with the primary location.
- primary
Dfs stringEndpoint The endpoint URL for DFS storage in the primary location.
- primary
Dfs stringHost The hostname with port if applicable for DFS storage in the primary location.
- primary
File stringEndpoint The endpoint URL for file storage in the primary location.
- primary
File stringHost The hostname with port if applicable for file storage in the primary location.
- primary
Location string The primary location of the storage account.
- primary
Queue stringEndpoint The endpoint URL for queue storage in the primary location.
- primary
Queue stringHost The hostname with port if applicable for queue storage in the primary location.
- primary
Table stringEndpoint The endpoint URL for table storage in the primary location.
- primary
Table stringHost The hostname with port if applicable for table storage in the primary location.
- primary
Web stringEndpoint The endpoint URL for web storage in the primary location.
- primary
Web stringHost The hostname with port if applicable for web storage in the primary location.
- public
Network booleanAccess Enabled Whether the public network access is enabled? Defaults to
true
.- queue
Encryption stringKey Type The encryption type of the queue service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.- queue
Properties AccountQueue Properties Args A
queue_properties
block as defined below.- resource
Group stringName The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.
- routing
Account
Routing Args A
routing
block as defined below.- sas
Policy AccountSas Policy Args A
sas_policy
block as defined below.- secondary
Access stringKey The secondary access key for the storage account.
- secondary
Blob stringConnection String The connection string associated with the secondary blob location.
- secondary
Blob stringEndpoint The endpoint URL for blob storage in the secondary location.
- secondary
Blob stringHost The hostname with port if applicable for blob storage in the secondary location.
- secondary
Connection stringString The connection string associated with the secondary location.
- secondary
Dfs stringEndpoint The endpoint URL for DFS storage in the secondary location.
- secondary
Dfs stringHost The hostname with port if applicable for DFS storage in the secondary location.
- secondary
File stringEndpoint The endpoint URL for file storage in the secondary location.
- secondary
File stringHost The hostname with port if applicable for file storage in the secondary location.
- secondary
Location string The secondary location of the storage account.
- secondary
Queue stringEndpoint The endpoint URL for queue storage in the secondary location.
- secondary
Queue stringHost The hostname with port if applicable for queue storage in the secondary location.
- secondary
Table stringEndpoint The endpoint URL for table storage in the secondary location.
- secondary
Table stringHost The hostname with port if applicable for table storage in the secondary location.
- secondary
Web stringEndpoint The endpoint URL for web storage in the secondary location.
- secondary
Web stringHost The hostname with port if applicable for web storage in the secondary location.
- sftp
Enabled boolean Boolean, enable SFTP for the storage account
- Account
Share Properties Args A
share_properties
block as defined below.- boolean
Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key. If false, then all requests, including shared access signatures, must be authorized with Azure Active Directory (Azure AD). The default value is
true
.- static
Website AccountStatic Website Args A
static_website
block as defined below.- table
Encryption stringKey Type The encryption type of the table service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.- {[key: string]: string}
A mapping of tags to assign to the resource.
- access_
tier str Defines the access tier for
BlobStorage
,FileStorage
andStorageV2
accounts. Valid options areHot
andCool
, defaults toHot
.- account_
kind str Defines the Kind of account. Valid options are
BlobStorage
,BlockBlobStorage
,FileStorage
,Storage
andStorageV2
. Defaults toStorageV2
.- account_
replication_ strtype Defines the type of replication to use for this storage account. Valid options are
LRS
,GRS
,RAGRS
,ZRS
,GZRS
andRAGZRS
.- account_
tier str Defines the Tier to use for this storage account. Valid options are
Standard
andPremium
. ForBlockBlobStorage
andFileStorage
accounts onlyPremium
is valid. Changing this forces a new resource to be created.- allow_
nested_ boolitems_ to_ be_ public Allow or disallow nested items within this Account to opt into being public. Defaults to
true
.- allowed_
copy_ strscope Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are
AAD
andPrivateLink
.- azure_
files_ Accountauthentication Azure Files Authentication Args A
azure_files_authentication
block as defined below.- blob_
properties AccountBlob Properties Args A
blob_properties
block as defined below.- cross_
tenant_ boolreplication_ enabled Should cross Tenant replication be enabled? Defaults to
true
.- custom_
domain AccountCustom Domain Args A
custom_domain
block as documented below.- customer_
managed_ Accountkey Customer Managed Key Args A
customer_managed_key
block as documented below.- default_
to_ booloauth_ authentication Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is
false
- edge_
zone str Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.
- enable_
https_ booltraffic_ only Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to
true
.- identity
Account
Identity Args An
identity
block as defined below.- immutability_
policy AccountImmutability Policy Args An
immutability_policy
block as defined below. Changing this forces a new resource to be created.- infrastructure_
encryption_ boolenabled Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to
false
.- is_
hns_ boolenabled Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.
- bool
Is Large File Share Enabled?
- location str
Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.
- min_
tls_ strversion The minimum supported TLS version for the storage account. Possible values are
TLS1_0
,TLS1_1
, andTLS1_2
. Defaults toTLS1_2
for new storage accounts.- name str
Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.
- network_
rules AccountNetwork Rules Args A
network_rules
block as documented below.- nfsv3_
enabled bool Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to
false
.- primary_
access_ strkey The primary access key for the storage account.
- primary_
blob_ strconnection_ string The connection string associated with the primary blob location.
- primary_
blob_ strendpoint The endpoint URL for blob storage in the primary location.
- primary_
blob_ strhost The hostname with port if applicable for blob storage in the primary location.
- primary_
connection_ strstring The connection string associated with the primary location.
- primary_
dfs_ strendpoint The endpoint URL for DFS storage in the primary location.
- primary_
dfs_ strhost The hostname with port if applicable for DFS storage in the primary location.
- primary_
file_ strendpoint The endpoint URL for file storage in the primary location.
- primary_
file_ strhost The hostname with port if applicable for file storage in the primary location.
- primary_
location str The primary location of the storage account.
- primary_
queue_ strendpoint The endpoint URL for queue storage in the primary location.
- primary_
queue_ strhost The hostname with port if applicable for queue storage in the primary location.
- primary_
table_ strendpoint The endpoint URL for table storage in the primary location.
- primary_
table_ strhost The hostname with port if applicable for table storage in the primary location.
- primary_
web_ strendpoint The endpoint URL for web storage in the primary location.
- primary_
web_ strhost The hostname with port if applicable for web storage in the primary location.
- public_
network_ boolaccess_ enabled Whether the public network access is enabled? Defaults to
true
.- queue_
encryption_ strkey_ type The encryption type of the queue service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.- queue_
properties AccountQueue Properties Args A
queue_properties
block as defined below.- resource_
group_ strname The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.
- routing
Account
Routing Args A
routing
block as defined below.- sas_
policy AccountSas Policy Args A
sas_policy
block as defined below.- secondary_
access_ strkey The secondary access key for the storage account.
- secondary_
blob_ strconnection_ string The connection string associated with the secondary blob location.
- secondary_
blob_ strendpoint The endpoint URL for blob storage in the secondary location.
- secondary_
blob_ strhost The hostname with port if applicable for blob storage in the secondary location.
- secondary_
connection_ strstring The connection string associated with the secondary location.
- secondary_
dfs_ strendpoint The endpoint URL for DFS storage in the secondary location.
- secondary_
dfs_ strhost The hostname with port if applicable for DFS storage in the secondary location.
- secondary_
file_ strendpoint The endpoint URL for file storage in the secondary location.
- secondary_
file_ strhost The hostname with port if applicable for file storage in the secondary location.
- secondary_
location str The secondary location of the storage account.
- secondary_
queue_ strendpoint The endpoint URL for queue storage in the secondary location.
- secondary_
queue_ strhost The hostname with port if applicable for queue storage in the secondary location.
- secondary_
table_ strendpoint The endpoint URL for table storage in the secondary location.
- secondary_
table_ strhost The hostname with port if applicable for table storage in the secondary location.
- secondary_
web_ strendpoint The endpoint URL for web storage in the secondary location.
- secondary_
web_ strhost The hostname with port if applicable for web storage in the secondary location.
- sftp_
enabled bool Boolean, enable SFTP for the storage account
- Account
Share Properties Args A
share_properties
block as defined below.- bool
Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key. If false, then all requests, including shared access signatures, must be authorized with Azure Active Directory (Azure AD). The default value is
true
.- static_
website AccountStatic Website Args A
static_website
block as defined below.- table_
encryption_ strkey_ type The encryption type of the table service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.- Mapping[str, str]
A mapping of tags to assign to the resource.
- access
Tier String Defines the access tier for
BlobStorage
,FileStorage
andStorageV2
accounts. Valid options areHot
andCool
, defaults toHot
.- account
Kind String Defines the Kind of account. Valid options are
BlobStorage
,BlockBlobStorage
,FileStorage
,Storage
andStorageV2
. Defaults toStorageV2
.- account
Replication StringType Defines the type of replication to use for this storage account. Valid options are
LRS
,GRS
,RAGRS
,ZRS
,GZRS
andRAGZRS
.- account
Tier String Defines the Tier to use for this storage account. Valid options are
Standard
andPremium
. ForBlockBlobStorage
andFileStorage
accounts onlyPremium
is valid. Changing this forces a new resource to be created.- allow
Nested BooleanItems To Be Public Allow or disallow nested items within this Account to opt into being public. Defaults to
true
.- allowed
Copy StringScope Restrict copy to and from Storage Accounts within an AAD tenant or with Private Links to the same VNet. Possible values are
AAD
andPrivateLink
.- azure
Files Property MapAuthentication A
azure_files_authentication
block as defined below.- blob
Properties Property Map A
blob_properties
block as defined below.- cross
Tenant BooleanReplication Enabled Should cross Tenant replication be enabled? Defaults to
true
.- custom
Domain Property Map A
custom_domain
block as documented below.- customer
Managed Property MapKey A
customer_managed_key
block as documented below.- default
To BooleanOauth Authentication Default to Azure Active Directory authorization in the Azure portal when accessing the Storage Account. The default value is
false
- edge
Zone String Specifies the Edge Zone within the Azure Region where this Storage Account should exist. Changing this forces a new Storage Account to be created.
- enable
Https BooleanTraffic Only Boolean flag which forces HTTPS if enabled, see here for more information. Defaults to
true
.- identity Property Map
An
identity
block as defined below.- immutability
Policy Property Map An
immutability_policy
block as defined below. Changing this forces a new resource to be created.- infrastructure
Encryption BooleanEnabled Is infrastructure encryption enabled? Changing this forces a new resource to be created. Defaults to
false
.- is
Hns BooleanEnabled Is Hierarchical Namespace enabled? This can be used with Azure Data Lake Storage Gen 2 (see here for more information). Changing this forces a new resource to be created.
- Boolean
Is Large File Share Enabled?
- location String
Specifies the supported Azure location where the resource exists. Changing this forces a new resource to be created.
- min
Tls StringVersion The minimum supported TLS version for the storage account. Possible values are
TLS1_0
,TLS1_1
, andTLS1_2
. Defaults toTLS1_2
for new storage accounts.- name String
Specifies the name of the storage account. Only lowercase Alphanumeric characters allowed. Changing this forces a new resource to be created. This must be unique across the entire Azure service, not just within the resource group.
- network
Rules Property Map A
network_rules
block as documented below.- nfsv3Enabled Boolean
Is NFSv3 protocol enabled? Changing this forces a new resource to be created. Defaults to
false
.- primary
Access StringKey The primary access key for the storage account.
- primary
Blob StringConnection String The connection string associated with the primary blob location.
- primary
Blob StringEndpoint The endpoint URL for blob storage in the primary location.
- primary
Blob StringHost The hostname with port if applicable for blob storage in the primary location.
- primary
Connection StringString The connection string associated with the primary location.
- primary
Dfs StringEndpoint The endpoint URL for DFS storage in the primary location.
- primary
Dfs StringHost The hostname with port if applicable for DFS storage in the primary location.
- primary
File StringEndpoint The endpoint URL for file storage in the primary location.
- primary
File StringHost The hostname with port if applicable for file storage in the primary location.
- primary
Location String The primary location of the storage account.
- primary
Queue StringEndpoint The endpoint URL for queue storage in the primary location.
- primary
Queue StringHost The hostname with port if applicable for queue storage in the primary location.
- primary
Table StringEndpoint The endpoint URL for table storage in the primary location.
- primary
Table StringHost The hostname with port if applicable for table storage in the primary location.
- primary
Web StringEndpoint The endpoint URL for web storage in the primary location.
- primary
Web StringHost The hostname with port if applicable for web storage in the primary location.
- public
Network BooleanAccess Enabled Whether the public network access is enabled? Defaults to
true
.- queue
Encryption StringKey Type The encryption type of the queue service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.- queue
Properties Property Map A
queue_properties
block as defined below.- resource
Group StringName The name of the resource group in which to create the storage account. Changing this forces a new resource to be created.
- routing Property Map
A
routing
block as defined below.- sas
Policy Property Map A
sas_policy
block as defined below.- secondary
Access StringKey The secondary access key for the storage account.
- secondary
Blob StringConnection String The connection string associated with the secondary blob location.
- secondary
Blob StringEndpoint The endpoint URL for blob storage in the secondary location.
- secondary
Blob StringHost The hostname with port if applicable for blob storage in the secondary location.
- secondary
Connection StringString The connection string associated with the secondary location.
- secondary
Dfs StringEndpoint The endpoint URL for DFS storage in the secondary location.
- secondary
Dfs StringHost The hostname with port if applicable for DFS storage in the secondary location.
- secondary
File StringEndpoint The endpoint URL for file storage in the secondary location.
- secondary
File StringHost The hostname with port if applicable for file storage in the secondary location.
- secondary
Location String The secondary location of the storage account.
- secondary
Queue StringEndpoint The endpoint URL for queue storage in the secondary location.
- secondary
Queue StringHost The hostname with port if applicable for queue storage in the secondary location.
- secondary
Table StringEndpoint The endpoint URL for table storage in the secondary location.
- secondary
Table StringHost The hostname with port if applicable for table storage in the secondary location.
- secondary
Web StringEndpoint The endpoint URL for web storage in the secondary location.
- secondary
Web StringHost The hostname with port if applicable for web storage in the secondary location.
- sftp
Enabled Boolean Boolean, enable SFTP for the storage account
- Property Map
A
share_properties
block as defined below.- Boolean
Indicates whether the storage account permits requests to be authorized with the account access key via Shared Key. If false, then all requests, including shared access signatures, must be authorized with Azure Active Directory (Azure AD). The default value is
true
.- static
Website Property Map A
static_website
block as defined below.- table
Encryption StringKey Type The encryption type of the table service. Possible values are
Service
andAccount
. Changing this forces a new resource to be created. Default value isService
.- Map<String>
A mapping of tags to assign to the resource.
Supporting Types
AccountAzureFilesAuthentication
- Directory
Type string Specifies the directory service used. Possible values are
AADDS
,AD
andAADKERB
.- Active
Directory AccountAzure Files Authentication Active Directory A
active_directory
block as defined below. Required whendirectory_type
isAD
.
- Directory
Type string Specifies the directory service used. Possible values are
AADDS
,AD
andAADKERB
.- Active
Directory AccountAzure Files Authentication Active Directory A
active_directory
block as defined below. Required whendirectory_type
isAD
.
- directory
Type String Specifies the directory service used. Possible values are
AADDS
,AD
andAADKERB
.- active
Directory AccountAzure Files Authentication Active Directory A
active_directory
block as defined below. Required whendirectory_type
isAD
.
- directory
Type string Specifies the directory service used. Possible values are
AADDS
,AD
andAADKERB
.- active
Directory AccountAzure Files Authentication Active Directory A
active_directory
block as defined below. Required whendirectory_type
isAD
.
- directory_
type str Specifies the directory service used. Possible values are
AADDS
,AD
andAADKERB
.- active_
directory AccountAzure Files Authentication Active Directory A
active_directory
block as defined below. Required whendirectory_type
isAD
.
- directory
Type String Specifies the directory service used. Possible values are
AADDS
,AD
andAADKERB
.- active
Directory Property Map A
active_directory
block as defined below. Required whendirectory_type
isAD
.
AccountAzureFilesAuthenticationActiveDirectory
- Domain
Guid string Specifies the domain GUID.
- Domain
Name string Specifies the primary domain that the AD DNS server is authoritative for.
- Domain
Sid string Specifies the security identifier (SID).
- Forest
Name string Specifies the Active Directory forest.
- Netbios
Domain stringName Specifies the NetBIOS domain name.
- Storage
Sid string Specifies the security identifier (SID) for Azure Storage.
- Domain
Guid string Specifies the domain GUID.
- Domain
Name string Specifies the primary domain that the AD DNS server is authoritative for.
- Domain
Sid string Specifies the security identifier (SID).
- Forest
Name string Specifies the Active Directory forest.
- Netbios
Domain stringName Specifies the NetBIOS domain name.
- Storage
Sid string Specifies the security identifier (SID) for Azure Storage.
- domain
Guid String Specifies the domain GUID.
- domain
Name String Specifies the primary domain that the AD DNS server is authoritative for.
- domain
Sid String Specifies the security identifier (SID).
- forest
Name String Specifies the Active Directory forest.
- netbios
Domain StringName Specifies the NetBIOS domain name.
- storage
Sid String Specifies the security identifier (SID) for Azure Storage.
- domain
Guid string Specifies the domain GUID.
- domain
Name string Specifies the primary domain that the AD DNS server is authoritative for.
- domain
Sid string Specifies the security identifier (SID).
- forest
Name string Specifies the Active Directory forest.
- netbios
Domain stringName Specifies the NetBIOS domain name.
- storage
Sid string Specifies the security identifier (SID) for Azure Storage.
- domain_
guid str Specifies the domain GUID.
- domain_
name str Specifies the primary domain that the AD DNS server is authoritative for.
- domain_
sid str Specifies the security identifier (SID).
- forest_
name str Specifies the Active Directory forest.
- netbios_
domain_ strname Specifies the NetBIOS domain name.
- storage_
sid str Specifies the security identifier (SID) for Azure Storage.
- domain
Guid String Specifies the domain GUID.
- domain
Name String Specifies the primary domain that the AD DNS server is authoritative for.
- domain
Sid String Specifies the security identifier (SID).
- forest
Name String Specifies the Active Directory forest.
- netbios
Domain StringName Specifies the NetBIOS domain name.
- storage
Sid String Specifies the security identifier (SID) for Azure Storage.
AccountBlobProperties
- Change
Feed boolEnabled Is the blob service properties for change feed events enabled? Default to
false
.- Change
Feed intRetention In Days The duration of change feed events retention in days. The possible values are between 1 and 146000 days (400 years). Setting this to null (or omit this in the configuration file) indicates an infinite retention of the change feed.
- Container
Delete AccountRetention Policy Blob Properties Container Delete Retention Policy A
container_delete_retention_policy
block as defined below.- Cors
Rules List<AccountBlob Properties Cors Rule> A
cors_rule
block as defined below.- Default
Service stringVersion The API Version which should be used by default for requests to the Data Plane API if an incoming request doesn't specify an API Version.
- Delete
Retention AccountPolicy Blob Properties Delete Retention Policy A
delete_retention_policy
block as defined below.- Last
Access boolTime Enabled Is the last access time based tracking enabled? Default to
false
.- Restore
Policy AccountBlob Properties Restore Policy A
restore_policy
block as defined below. This must be used together withdelete_retention_policy
set,versioning_enabled
andchange_feed_enabled
set totrue
.- Versioning
Enabled bool Is versioning enabled? Default to
false
.
- Change
Feed boolEnabled Is the blob service properties for change feed events enabled? Default to
false
.- Change
Feed intRetention In Days The duration of change feed events retention in days. The possible values are between 1 and 146000 days (400 years). Setting this to null (or omit this in the configuration file) indicates an infinite retention of the change feed.
- Container
Delete AccountRetention Policy Blob Properties Container Delete Retention Policy A
container_delete_retention_policy
block as defined below.- Cors
Rules []AccountBlob Properties Cors Rule A
cors_rule
block as defined below.- Default
Service stringVersion The API Version which should be used by default for requests to the Data Plane API if an incoming request doesn't specify an API Version.
- Delete
Retention AccountPolicy Blob Properties Delete Retention Policy A
delete_retention_policy
block as defined below.- Last
Access boolTime Enabled Is the last access time based tracking enabled? Default to
false
.- Restore
Policy AccountBlob Properties Restore Policy A
restore_policy
block as defined below. This must be used together withdelete_retention_policy
set,versioning_enabled
andchange_feed_enabled
set totrue
.- Versioning
Enabled bool Is versioning enabled? Default to
false
.
- change
Feed BooleanEnabled Is the blob service properties for change feed events enabled? Default to
false
.- change
Feed IntegerRetention In Days The duration of change feed events retention in days. The possible values are between 1 and 146000 days (400 years). Setting this to null (or omit this in the configuration file) indicates an infinite retention of the change feed.
- container
Delete AccountRetention Policy Blob Properties Container Delete Retention Policy A
container_delete_retention_policy
block as defined below.- cors
Rules List<AccountBlob Properties Cors Rule> A
cors_rule
block as defined below.- default
Service StringVersion The API Version which should be used by default for requests to the Data Plane API if an incoming request doesn't specify an API Version.
- delete
Retention AccountPolicy Blob Properties Delete Retention Policy A
delete_retention_policy
block as defined below.- last
Access BooleanTime Enabled Is the last access time based tracking enabled? Default to
false
.- restore
Policy AccountBlob Properties Restore Policy A
restore_policy
block as defined below. This must be used together withdelete_retention_policy
set,versioning_enabled
andchange_feed_enabled
set totrue
.- versioning
Enabled Boolean Is versioning enabled? Default to
false
.
- change
Feed booleanEnabled Is the blob service properties for change feed events enabled? Default to
false
.- change
Feed numberRetention In Days The duration of change feed events retention in days. The possible values are between 1 and 146000 days (400 years). Setting this to null (or omit this in the configuration file) indicates an infinite retention of the change feed.
- container
Delete AccountRetention Policy Blob Properties Container Delete Retention Policy A
container_delete_retention_policy
block as defined below.- cors
Rules AccountBlob Properties Cors Rule[] A
cors_rule
block as defined below.- default
Service stringVersion The API Version which should be used by default for requests to the Data Plane API if an incoming request doesn't specify an API Version.
- delete
Retention AccountPolicy Blob Properties Delete Retention Policy A
delete_retention_policy
block as defined below.- last
Access booleanTime Enabled Is the last access time based tracking enabled? Default to
false
.- restore
Policy AccountBlob Properties Restore Policy A
restore_policy
block as defined below. This must be used together withdelete_retention_policy
set,versioning_enabled
andchange_feed_enabled
set totrue
.- versioning
Enabled boolean Is versioning enabled? Default to
false
.
- change_
feed_ boolenabled Is the blob service properties for change feed events enabled? Default to
false
.- change_
feed_ intretention_ in_ days The duration of change feed events retention in days. The possible values are between 1 and 146000 days (400 years). Setting this to null (or omit this in the configuration file) indicates an infinite retention of the change feed.
- container_
delete_ Accountretention_ policy Blob Properties Container Delete Retention Policy A
container_delete_retention_policy
block as defined below.- cors_
rules Sequence[AccountBlob Properties Cors Rule] A
cors_rule
block as defined below.- default_
service_ strversion The API Version which should be used by default for requests to the Data Plane API if an incoming request doesn't specify an API Version.
- delete_
retention_ Accountpolicy Blob Properties Delete Retention Policy A
delete_retention_policy
block as defined below.- last_
access_ booltime_ enabled Is the last access time based tracking enabled? Default to
false
.- restore_
policy AccountBlob Properties Restore Policy A
restore_policy
block as defined below. This must be used together withdelete_retention_policy
set,versioning_enabled
andchange_feed_enabled
set totrue
.- versioning_
enabled bool Is versioning enabled? Default to
false
.
- change
Feed BooleanEnabled Is the blob service properties for change feed events enabled? Default to
false
.- change
Feed NumberRetention In Days The duration of change feed events retention in days. The possible values are between 1 and 146000 days (400 years). Setting this to null (or omit this in the configuration file) indicates an infinite retention of the change feed.
- container
Delete Property MapRetention Policy A
container_delete_retention_policy
block as defined below.- cors
Rules List<Property Map> A
cors_rule
block as defined below.- default
Service StringVersion The API Version which should be used by default for requests to the Data Plane API if an incoming request doesn't specify an API Version.
- delete
Retention Property MapPolicy A
delete_retention_policy
block as defined below.- last
Access BooleanTime Enabled Is the last access time based tracking enabled? Default to
false
.- restore
Policy Property Map A
restore_policy
block as defined below. This must be used together withdelete_retention_policy
set,versioning_enabled
andchange_feed_enabled
set totrue
.- versioning
Enabled Boolean Is versioning enabled? Default to
false
.
AccountBlobPropertiesContainerDeleteRetentionPolicy
- Days int
Specifies the number of days that the container should be retained, between
1
and365
days. Defaults to7
.
- Days int
Specifies the number of days that the container should be retained, between
1
and365
days. Defaults to7
.
- days Integer
Specifies the number of days that the container should be retained, between
1
and365
days. Defaults to7
.
- days number
Specifies the number of days that the container should be retained, between
1
and365
days. Defaults to7
.
- days int
Specifies the number of days that the container should be retained, between
1
and365
days. Defaults to7
.
- days Number
Specifies the number of days that the container should be retained, between
1
and365
days. Defaults to7
.
AccountBlobPropertiesCorsRule
- Allowed
Headers List<string> A list of headers that are allowed to be a part of the cross-origin request.
- Allowed
Methods List<string> A list of HTTP methods that are allowed to be executed by the origin. Valid options are
DELETE
,GET
,HEAD
,MERGE
,POST
,OPTIONS
,PUT
orPATCH
.- Allowed
Origins List<string> A list of origin domains that will be allowed by CORS.
- Exposed
Headers List<string> A list of response headers that are exposed to CORS clients.
- Max
Age intIn Seconds The number of seconds the client should cache a preflight response.
- Allowed
Headers []string A list of headers that are allowed to be a part of the cross-origin request.
- Allowed
Methods []string A list of HTTP methods that are allowed to be executed by the origin. Valid options are
DELETE
,GET
,HEAD
,MERGE
,POST
,OPTIONS
,PUT
orPATCH
.- Allowed
Origins []string A list of origin domains that will be allowed by CORS.
- Exposed
Headers []string A list of response headers that are exposed to CORS clients.
- Max
Age intIn Seconds The number of seconds the client should cache a preflight response.
- allowed
Headers List<String> A list of headers that are allowed to be a part of the cross-origin request.
- allowed
Methods List<String> A list of HTTP methods that are allowed to be executed by the origin. Valid options are
DELETE
,GET
,HEAD
,MERGE
,POST
,OPTIONS
,PUT
orPATCH
.- allowed
Origins List<String> A list of origin domains that will be allowed by CORS.
- exposed
Headers List<String> A list of response headers that are exposed to CORS clients.
- max
Age IntegerIn Seconds The number of seconds the client should cache a preflight response.
- allowed
Headers string[] A list of headers that are allowed to be a part of the cross-origin request.
- allowed
Methods string[] A list of HTTP methods that are allowed to be executed by the origin. Valid options are
DELETE
,GET
,HEAD
,MERGE
,POST
,OPTIONS
,PUT
orPATCH
.- allowed
Origins string[] A list of origin domains that will be allowed by CORS.
- exposed
Headers string[] A list of response headers that are exposed to CORS clients.
- max
Age numberIn Seconds The number of seconds the client should cache a preflight response.
- allowed_
headers Sequence[str] A list of headers that are allowed to be a part of the cross-origin request.
- allowed_
methods Sequence[str] A list of HTTP methods that are allowed to be executed by the origin. Valid options are
DELETE
,GET
,HEAD
,MERGE
,POST
,OPTIONS
,PUT
orPATCH
.- allowed_
origins Sequence[str] A list of origin domains that will be allowed by CORS.
- exposed_
headers Sequence[str] A list of response headers that are exposed to CORS clients.
- max_
age_ intin_ seconds The number of seconds the client should cache a preflight response.
- allowed
Headers List<String> A list of headers that are allowed to be a part of the cross-origin request.
- allowed
Methods List<String> A list of HTTP methods that are allowed to be executed by the origin. Valid options are
DELETE
,GET
,HEAD
,MERGE
,POST
,OPTIONS
,PUT
orPATCH
.- allowed
Origins List<String> A list of origin domains that will be allowed by CORS.
- exposed
Headers List<String> A list of response headers that are exposed to CORS clients.
- max
Age NumberIn Seconds The number of seconds the client should cache a preflight response.
AccountBlobPropertiesDeleteRetentionPolicy
- Days int
Specifies the number of days that the blob should be retained, between
1
and365
days. Defaults to7
.
- Days int
Specifies the number of days that the blob should be retained, between
1
and365
days. Defaults to7
.
- days Integer
Specifies the number of days that the blob should be retained, between
1
and365
days. Defaults to7
.
- days number
Specifies the number of days that the blob should be retained, between
1
and365
days. Defaults to7
.
- days int
Specifies the number of days that the blob should be retained, between
1
and365
days. Defaults to7
.
- days Number
Specifies the number of days that the blob should be retained, between
1
and365
days. Defaults to7
.
AccountBlobPropertiesRestorePolicy
- Days int
Specifies the number of days that the blob can be restored, between
1
and365
days. This must be less than thedays
specified fordelete_retention_policy
.
- Days int
Specifies the number of days that the blob can be restored, between
1
and365
days. This must be less than thedays
specified fordelete_retention_policy
.
- days Integer
Specifies the number of days that the blob can be restored, between
1
and365
days. This must be less than thedays
specified fordelete_retention_policy
.
- days number
Specifies the number of days that the blob can be restored, between
1
and365
days. This must be less than thedays
specified fordelete_retention_policy
.
- days int
Specifies the number of days that the blob can be restored, between
1
and365
days. This must be less than thedays
specified fordelete_retention_policy
.
- days Number
Specifies the number of days that the blob can be restored, between
1
and365
days. This must be less than thedays
specified fordelete_retention_policy
.
AccountCustomDomain
- Name string
The Custom Domain Name to use for the Storage Account, which will be validated by Azure.
- Use
Subdomain bool Should the Custom Domain Name be validated by using indirect CNAME validation?
- Name string
The Custom Domain Name to use for the Storage Account, which will be validated by Azure.
- Use
Subdomain bool Should the Custom Domain Name be validated by using indirect CNAME validation?
- name String
The Custom Domain Name to use for the Storage Account, which will be validated by Azure.
- use
Subdomain Boolean Should the Custom Domain Name be validated by using indirect CNAME validation?
- name string
The Custom Domain Name to use for the Storage Account, which will be validated by Azure.
- use
Subdomain boolean Should the Custom Domain Name be validated by using indirect CNAME validation?
- name str
The Custom Domain Name to use for the Storage Account, which will be validated by Azure.
- use_
subdomain bool Should the Custom Domain Name be validated by using indirect CNAME validation?
- name String
The Custom Domain Name to use for the Storage Account, which will be validated by Azure.
- use
Subdomain Boolean Should the Custom Domain Name be validated by using indirect CNAME validation?
AccountCustomerManagedKey
- Key
Vault stringKey Id The ID of the Key Vault Key, supplying a version-less key ID will enable auto-rotation of this key.
- User
Assigned stringIdentity Id The ID of a user assigned identity.
- Key
Vault stringKey Id The ID of the Key Vault Key, supplying a version-less key ID will enable auto-rotation of this key.
- User
Assigned stringIdentity Id The ID of a user assigned identity.
- key
Vault StringKey Id The ID of the Key Vault Key, supplying a version-less key ID will enable auto-rotation of this key.
- user
Assigned StringIdentity Id The ID of a user assigned identity.
- key
Vault stringKey Id The ID of the Key Vault Key, supplying a version-less key ID will enable auto-rotation of this key.
- user
Assigned stringIdentity Id The ID of a user assigned identity.
- key_
vault_ strkey_ id The ID of the Key Vault Key, supplying a version-less key ID will enable auto-rotation of this key.
- user_
assigned_ stridentity_ id The ID of a user assigned identity.
- key
Vault StringKey Id The ID of the Key Vault Key, supplying a version-less key ID will enable auto-rotation of this key.
- user
Assigned StringIdentity Id The ID of a user assigned identity.
AccountIdentity
- Type string
Specifies the type of Managed Service Identity that should be configured on this Storage Account. Possible values are
SystemAssigned
,UserAssigned
,SystemAssigned, UserAssigned
(to enable both).- Identity
Ids List<string> Specifies a list of User Assigned Managed Identity IDs to be assigned to this Storage Account.
- Principal
Id string The Principal ID for the Service Principal associated with the Identity of this Storage Account.
- Tenant
Id string The Tenant ID for the Service Principal associated with the Identity of this Storage Account.
- Type string
Specifies the type of Managed Service Identity that should be configured on this Storage Account. Possible values are
SystemAssigned
,UserAssigned
,SystemAssigned, UserAssigned
(to enable both).- Identity
Ids []string Specifies a list of User Assigned Managed Identity IDs to be assigned to this Storage Account.
- Principal
Id string The Principal ID for the Service Principal associated with the Identity of this Storage Account.
- Tenant
Id string The Tenant ID for the Service Principal associated with the Identity of this Storage Account.
- type String
Specifies the type of Managed Service Identity that should be configured on this Storage Account. Possible values are
SystemAssigned
,UserAssigned
,SystemAssigned, UserAssigned
(to enable both).- identity
Ids List<String> Specifies a list of User Assigned Managed Identity IDs to be assigned to this Storage Account.
- principal
Id String The Principal ID for the Service Principal associated with the Identity of this Storage Account.
- tenant
Id String The Tenant ID for the Service Principal associated with the Identity of this Storage Account.
- type string
Specifies the type of Managed Service Identity that should be configured on this Storage Account. Possible values are
SystemAssigned
,UserAssigned
,SystemAssigned, UserAssigned
(to enable both).- identity
Ids string[] Specifies a list of User Assigned Managed Identity IDs to be assigned to this Storage Account.
- principal
Id string The Principal ID for the Service Principal associated with the Identity of this Storage Account.
- tenant
Id string The Tenant ID for the Service Principal associated with the Identity of this Storage Account.
- type str
Specifies the type of Managed Service Identity that should be configured on this Storage Account. Possible values are
SystemAssigned
,UserAssigned
,SystemAssigned, UserAssigned
(to enable both).- identity_
ids Sequence[str] Specifies a list of User Assigned Managed Identity IDs to be assigned to this Storage Account.
- principal_
id str The Principal ID for the Service Principal associated with the Identity of this Storage Account.
- tenant_
id str The Tenant ID for the Service Principal associated with the Identity of this Storage Account.
- type String
Specifies the type of Managed Service Identity that should be configured on this Storage Account. Possible values are
SystemAssigned
,UserAssigned
,SystemAssigned, UserAssigned
(to enable both).- identity
Ids List<String> Specifies a list of User Assigned Managed Identity IDs to be assigned to this Storage Account.
- principal
Id String The Principal ID for the Service Principal associated with the Identity of this Storage Account.
- tenant
Id String The Tenant ID for the Service Principal associated with the Identity of this Storage Account.
AccountImmutabilityPolicy
- Allow
Protected boolAppend Writes When enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted.
- Period
Since intCreation In Days The immutability period for the blobs in the container since the policy creation, in days.
- State string
Defines the mode of the policy.
Disabled
state disables the policy,Unlocked
state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property,Locked
state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted.
- Allow
Protected boolAppend Writes When enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted.
- Period
Since intCreation In Days The immutability period for the blobs in the container since the policy creation, in days.
- State string
Defines the mode of the policy.
Disabled
state disables the policy,Unlocked
state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property,Locked
state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted.
- allow
Protected BooleanAppend Writes When enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted.
- period
Since IntegerCreation In Days The immutability period for the blobs in the container since the policy creation, in days.
- state String
Defines the mode of the policy.
Disabled
state disables the policy,Unlocked
state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property,Locked
state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted.
- allow
Protected booleanAppend Writes When enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted.
- period
Since numberCreation In Days The immutability period for the blobs in the container since the policy creation, in days.
- state string
Defines the mode of the policy.
Disabled
state disables the policy,Unlocked
state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property,Locked
state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted.
- allow_
protected_ boolappend_ writes When enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted.
- period_
since_ intcreation_ in_ days The immutability period for the blobs in the container since the policy creation, in days.
- state str
Defines the mode of the policy.
Disabled
state disables the policy,Unlocked
state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property,Locked
state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted.
- allow
Protected BooleanAppend Writes When enabled, new blocks can be written to an append blob while maintaining immutability protection and compliance. Only new blocks can be added and any existing blocks cannot be modified or deleted.
- period
Since NumberCreation In Days The immutability period for the blobs in the container since the policy creation, in days.
- state String
Defines the mode of the policy.
Disabled
state disables the policy,Unlocked
state allows increase and decrease of immutability retention time and also allows toggling allowProtectedAppendWrites property,Locked
state only allows the increase of the immutability retention time. A policy can only be created in a Disabled or Unlocked state and can be toggled between the two states. Only a policy in an Unlocked state can transition to a Locked state which cannot be reverted.
AccountNetworkRules
- Default
Action string Specifies the default action of allow or deny when no other rules match. Valid options are
Deny
orAllow
.- Bypasses List<string>
Specifies whether traffic is bypassed for Logging/Metrics/AzureServices. Valid options are any combination of
Logging
,Metrics
,AzureServices
, orNone
.- Ip
Rules List<string> List of public IP or IP ranges in CIDR Format. Only IPv4 addresses are allowed. /31 CIDRs, /32 CIDRs, and Private IP address ranges (as defined in RFC 1918), are not allowed.
- Private
Link List<AccountAccesses Network Rules Private Link Access> One or More
private_link_access
block as defined below.- Virtual
Network List<string>Subnet Ids A list of resource ids for subnets.
- Default
Action string Specifies the default action of allow or deny when no other rules match. Valid options are
Deny
orAllow
.- Bypasses []string
Specifies whether traffic is bypassed for Logging/Metrics/AzureServices. Valid options are any combination of
Logging
,Metrics
,AzureServices
, orNone
.- Ip
Rules []string List of public IP or IP ranges in CIDR Format. Only IPv4 addresses are allowed. /31 CIDRs, /32 CIDRs, and Private IP address ranges (as defined in RFC 1918), are not allowed.
- Private
Link []AccountAccesses Network Rules Private Link Access One or More
private_link_access
block as defined below.- Virtual
Network []stringSubnet Ids A list of resource ids for subnets.
- default
Action String Specifies the default action of allow or deny when no other rules match. Valid options are
Deny
orAllow
.- bypasses List<String>
Specifies whether traffic is bypassed for Logging/Metrics/AzureServices. Valid options are any combination of
Logging
,Metrics
,AzureServices
, orNone
.- ip
Rules List<String> List of public IP or IP ranges in CIDR Format. Only IPv4 addresses are allowed. /31 CIDRs, /32 CIDRs, and Private IP address ranges (as defined in RFC 1918), are not allowed.
- private
Link List<AccountAccesses Network Rules Private Link Access> One or More
private_link_access
block as defined below.- virtual
Network List<String>Subnet Ids A list of resource ids for subnets.
- default
Action string Specifies the default action of allow or deny when no other rules match. Valid options are
Deny
orAllow
.- bypasses string[]
Specifies whether traffic is bypassed for Logging/Metrics/AzureServices. Valid options are any combination of
Logging
,Metrics
,AzureServices
, orNone
.- ip
Rules string[] List of public IP or IP ranges in CIDR Format. Only IPv4 addresses are allowed. /31 CIDRs, /32 CIDRs, and Private IP address ranges (as defined in RFC 1918), are not allowed.
- private
Link AccountAccesses Network Rules Private Link Access[] One or More
private_link_access
block as defined below.- virtual
Network string[]Subnet Ids A list of resource ids for subnets.
- default_
action str Specifies the default action of allow or deny when no other rules match. Valid options are
Deny
orAllow
.- bypasses Sequence[str]
Specifies whether traffic is bypassed for Logging/Metrics/AzureServices. Valid options are any combination of
Logging
,Metrics
,AzureServices
, orNone
.- ip_
rules Sequence[str] List of public IP or IP ranges in CIDR Format. Only IPv4 addresses are allowed. /31 CIDRs, /32 CIDRs, and Private IP address ranges (as defined in RFC 1918), are not allowed.
- private_
link_ Sequence[Accountaccesses Network Rules Private Link Access] One or More
private_link_access
block as defined below.- virtual_
network_ Sequence[str]subnet_ ids A list of resource ids for subnets.
- default
Action String Specifies the default action of allow or deny when no other rules match. Valid options are
Deny
orAllow
.- bypasses List<String>
Specifies whether traffic is bypassed for Logging/Metrics/AzureServices. Valid options are any combination of
Logging
,Metrics
,AzureServices
, orNone
.- ip
Rules List<String> List of public IP or IP ranges in CIDR Format. Only IPv4 addresses are allowed. /31 CIDRs, /32 CIDRs, and Private IP address ranges (as defined in RFC 1918), are not allowed.
- private
Link List<Property Map>Accesses One or More
private_link_access
block as defined below.- virtual
Network List<String>Subnet Ids A list of resource ids for subnets.
AccountNetworkRulesPrivateLinkAccess
- Endpoint
Resource stringId The resource id of the resource access rule to be granted access.
- Endpoint
Tenant stringId The tenant id of the resource of the resource access rule to be granted access. Defaults to the current tenant id.
- Endpoint
Resource stringId The resource id of the resource access rule to be granted access.
- Endpoint
Tenant stringId The tenant id of the resource of the resource access rule to be granted access. Defaults to the current tenant id.
- endpoint
Resource StringId The resource id of the resource access rule to be granted access.
- endpoint
Tenant StringId The tenant id of the resource of the resource access rule to be granted access. Defaults to the current tenant id.
- endpoint
Resource stringId The resource id of the resource access rule to be granted access.
- endpoint
Tenant stringId The tenant id of the resource of the resource access rule to be granted access. Defaults to the current tenant id.
- endpoint_
resource_ strid The resource id of the resource access rule to be granted access.
- endpoint_
tenant_ strid The tenant id of the resource of the resource access rule to be granted access. Defaults to the current tenant id.
- endpoint
Resource StringId The resource id of the resource access rule to be granted access.
- endpoint
Tenant StringId The tenant id of the resource of the resource access rule to be granted access. Defaults to the current tenant id.
AccountQueueProperties
- Cors
Rules List<AccountQueue Properties Cors Rule> A
cors_rule
block as defined above.- Hour
Metrics AccountQueue Properties Hour Metrics A
hour_metrics
block as defined below.- Logging
Account
Queue Properties Logging A
logging
block as defined below.- Minute
Metrics AccountQueue Properties Minute Metrics A
minute_metrics
block as defined below.
- Cors
Rules []AccountQueue Properties Cors Rule A
cors_rule
block as defined above.- Hour
Metrics AccountQueue Properties Hour Metrics A
hour_metrics
block as defined below.- Logging
Account
Queue Properties Logging A
logging
block as defined below.- Minute
Metrics AccountQueue Properties Minute Metrics A
minute_metrics
block as defined below.
- cors
Rules List<AccountQueue Properties Cors Rule> A
cors_rule
block as defined above.- hour
Metrics AccountQueue Properties Hour Metrics A
hour_metrics
block as defined below.- logging
Account
Queue Properties Logging A
logging
block as defined below.- minute
Metrics AccountQueue Properties Minute Metrics A
minute_metrics
block as defined below.
- cors
Rules AccountQueue Properties Cors Rule[] A
cors_rule
block as defined above.- hour
Metrics AccountQueue Properties Hour Metrics A
hour_metrics
block as defined below.- logging
Account
Queue Properties Logging A
logging
block as defined below.- minute
Metrics AccountQueue Properties Minute Metrics A
minute_metrics
block as defined below.
- cors_
rules Sequence[AccountQueue Properties Cors Rule] A
cors_rule
block as defined above.- hour_
metrics AccountQueue Properties Hour Metrics A
hour_metrics
block as defined below.- logging
Account
Queue Properties Logging A
logging
block as defined below.- minute_
metrics AccountQueue Properties Minute Metrics A
minute_metrics
block as defined below.
- cors
Rules List<Property Map> A
cors_rule
block as defined above.- hour
Metrics Property Map A
hour_metrics
block as defined below.- logging Property Map
A
logging
block as defined below.- minute
Metrics Property Map A
minute_metrics
block as defined below.
AccountQueuePropertiesCorsRule
- Allowed
Headers List<string> A list of headers that are allowed to be a part of the cross-origin request.
- Allowed
Methods List<string> A list of HTTP methods that are allowed to be executed by the origin. Valid options are
DELETE
,GET
,HEAD
,MERGE
,POST
,OPTIONS
,PUT
orPATCH
.- Allowed
Origins List<string> A list of origin domains that will be allowed by CORS.
- Exposed
Headers List<string> A list of response headers that are exposed to CORS clients.
- Max
Age intIn Seconds The number of seconds the client should cache a preflight response.
- Allowed
Headers []string A list of headers that are allowed to be a part of the cross-origin request.
- Allowed
Methods []string A list of HTTP methods that are allowed to be executed by the origin. Valid options are
DELETE
,GET
,HEAD
,MERGE
,POST
,OPTIONS
,PUT
orPATCH
.- Allowed
Origins []string A list of origin domains that will be allowed by CORS.
- Exposed
Headers []string A list of response headers that are exposed to CORS clients.
- Max
Age intIn Seconds The number of seconds the client should cache a preflight response.
- allowed
Headers List<String> A list of headers that are allowed to be a part of the cross-origin request.
- allowed
Methods List<String> A list of HTTP methods that are allowed to be executed by the origin. Valid options are
DELETE
,GET
,HEAD
,MERGE
,POST
,OPTIONS
,PUT
orPATCH
.- allowed
Origins List<String> A list of origin domains that will be allowed by CORS.
- exposed
Headers List<String> A list of response headers that are exposed to CORS clients.
- max
Age IntegerIn Seconds The number of seconds the client should cache a preflight response.
- allowed
Headers string[] A list of headers that are allowed to be a part of the cross-origin request.
- allowed
Methods string[] A list of HTTP methods that are allowed to be executed by the origin. Valid options are
DELETE
,GET
,HEAD
,MERGE
,POST
,OPTIONS
,PUT
orPATCH
.- allowed
Origins string[] A list of origin domains that will be allowed by CORS.
- exposed
Headers string[] A list of response headers that are exposed to CORS clients.
- max
Age numberIn Seconds The number of seconds the client should cache a preflight response.
- allowed_
headers Sequence[str] A list of headers that are allowed to be a part of the cross-origin request.
- allowed_
methods Sequence[str] A list of HTTP methods that are allowed to be executed by the origin. Valid options are
DELETE
,GET
,HEAD
,MERGE
,POST
,OPTIONS
,PUT
orPATCH
.- allowed_
origins Sequence[str] A list of origin domains that will be allowed by CORS.
- exposed_
headers Sequence[str] A list of response headers that are exposed to CORS clients.
- max_
age_ intin_ seconds The number of seconds the client should cache a preflight response.
- allowed
Headers List<String> A list of headers that are allowed to be a part of the cross-origin request.
- allowed
Methods List<String> A list of HTTP methods that are allowed to be executed by the origin. Valid options are
DELETE
,GET
,HEAD
,MERGE
,POST
,OPTIONS
,PUT
orPATCH
.- allowed
Origins List<String> A list of origin domains that will be allowed by CORS.
- exposed
Headers List<String> A list of response headers that are exposed to CORS clients.
- max
Age NumberIn Seconds The number of seconds the client should cache a preflight response.
AccountQueuePropertiesHourMetrics
- Enabled bool
Indicates whether hour metrics are enabled for the Queue service.
- Version string
The version of storage analytics to configure.
- Include
Apis bool Indicates whether metrics should generate summary statistics for called API operations.
- Retention
Policy intDays Specifies the number of days that logs will be retained.
- Enabled bool
Indicates whether hour metrics are enabled for the Queue service.
- Version string
The version of storage analytics to configure.
- Include
Apis bool Indicates whether metrics should generate summary statistics for called API operations.
- Retention
Policy intDays Specifies the number of days that logs will be retained.
- enabled Boolean
Indicates whether hour metrics are enabled for the Queue service.
- version String
The version of storage analytics to configure.
- include
Apis Boolean Indicates whether metrics should generate summary statistics for called API operations.
- retention
Policy IntegerDays Specifies the number of days that logs will be retained.
- enabled boolean
Indicates whether hour metrics are enabled for the Queue service.
- version string
The version of storage analytics to configure.
- include
Apis boolean Indicates whether metrics should generate summary statistics for called API operations.
- retention
Policy numberDays Specifies the number of days that logs will be retained.
- enabled bool
Indicates whether hour metrics are enabled for the Queue service.
- version str
The version of storage analytics to configure.
- include_
apis bool Indicates whether metrics should generate summary statistics for called API operations.
- retention_
policy_ intdays Specifies the number of days that logs will be retained.
- enabled Boolean
Indicates whether hour metrics are enabled for the Queue service.
- version String
The version of storage analytics to configure.
- include
Apis Boolean Indicates whether metrics should generate summary statistics for called API operations.
- retention
Policy NumberDays Specifies the number of days that logs will be retained.
AccountQueuePropertiesLogging
- Delete bool
Indicates whether all delete requests should be logged.
- Read bool
Indicates whether all read requests should be logged.
- Version string
The version of storage analytics to configure.
- Write bool
Indicates whether all write requests should be logged.
- Retention
Policy intDays Specifies the number of days that logs will be retained.
- Delete bool
Indicates whether all delete requests should be logged.
- Read bool
Indicates whether all read requests should be logged.
- Version string
The version of storage analytics to configure.
- Write bool
Indicates whether all write requests should be logged.
- Retention
Policy intDays Specifies the number of days that logs will be retained.
- delete Boolean
Indicates whether all delete requests should be logged.
- read Boolean
Indicates whether all read requests should be logged.
- version String
The version of storage analytics to configure.
- write Boolean
Indicates whether all write requests should be logged.
- retention
Policy IntegerDays Specifies the number of days that logs will be retained.
- delete boolean
Indicates whether all delete requests should be logged.
- read boolean
Indicates whether all read requests should be logged.
- version string
The version of storage analytics to configure.
- write boolean
Indicates whether all write requests should be logged.
- retention
Policy numberDays Specifies the number of days that logs will be retained.
- delete bool
Indicates whether all delete requests should be logged.
- read bool
Indicates whether all read requests should be logged.
- version str
The version of storage analytics to configure.
- write bool
Indicates whether all write requests should be logged.
- retention_
policy_ intdays Specifies the number of days that logs will be retained.
- delete Boolean
Indicates whether all delete requests should be logged.
- read Boolean
Indicates whether all read requests should be logged.
- version String
The version of storage analytics to configure.
- write Boolean
Indicates whether all write requests should be logged.
- retention
Policy NumberDays Specifies the number of days that logs will be retained.
AccountQueuePropertiesMinuteMetrics
- Enabled bool
Indicates whether minute metrics are enabled for the Queue service.
- Version string
The version of storage analytics to configure.
- Include
Apis bool Indicates whether metrics should generate summary statistics for called API operations.
- Retention
Policy intDays Specifies the number of days that logs will be retained.
- Enabled bool
Indicates whether minute metrics are enabled for the Queue service.
- Version string
The version of storage analytics to configure.
- Include
Apis bool Indicates whether metrics should generate summary statistics for called API operations.
- Retention
Policy intDays Specifies the number of days that logs will be retained.
- enabled Boolean
Indicates whether minute metrics are enabled for the Queue service.
- version String
The version of storage analytics to configure.
- include
Apis Boolean Indicates whether metrics should generate summary statistics for called API operations.
- retention
Policy IntegerDays Specifies the number of days that logs will be retained.
- enabled boolean
Indicates whether minute metrics are enabled for the Queue service.
- version string
The version of storage analytics to configure.
- include
Apis boolean Indicates whether metrics should generate summary statistics for called API operations.
- retention
Policy numberDays Specifies the number of days that logs will be retained.
- enabled bool
Indicates whether minute metrics are enabled for the Queue service.
- version str
The version of storage analytics to configure.
- include_
apis bool Indicates whether metrics should generate summary statistics for called API operations.
- retention_
policy_ intdays Specifies the number of days that logs will be retained.
- enabled Boolean
Indicates whether minute metrics are enabled for the Queue service.
- version String
The version of storage analytics to configure.
- include
Apis Boolean Indicates whether metrics should generate summary statistics for called API operations.
- retention
Policy NumberDays Specifies the number of days that logs will be retained.
AccountRouting
- Choice string
Specifies the kind of network routing opted by the user. Possible values are
InternetRouting
andMicrosoftRouting
. Defaults toMicrosoftRouting
.- Publish
Internet boolEndpoints Should internet routing storage endpoints be published? Defaults to
false
.- Publish
Microsoft boolEndpoints Should Microsoft routing storage endpoints be published? Defaults to
false
.
- Choice string
Specifies the kind of network routing opted by the user. Possible values are
InternetRouting
andMicrosoftRouting
. Defaults toMicrosoftRouting
.- Publish
Internet boolEndpoints Should internet routing storage endpoints be published? Defaults to
false
.- Publish
Microsoft boolEndpoints Should Microsoft routing storage endpoints be published? Defaults to
false
.
- choice String
Specifies the kind of network routing opted by the user. Possible values are
InternetRouting
andMicrosoftRouting
. Defaults toMicrosoftRouting
.- publish
Internet BooleanEndpoints Should internet routing storage endpoints be published? Defaults to
false
.- publish
Microsoft BooleanEndpoints Should Microsoft routing storage endpoints be published? Defaults to
false
.
- choice string
Specifies the kind of network routing opted by the user. Possible values are
InternetRouting
andMicrosoftRouting
. Defaults toMicrosoftRouting
.- publish
Internet booleanEndpoints Should internet routing storage endpoints be published? Defaults to
false
.- publish
Microsoft booleanEndpoints Should Microsoft routing storage endpoints be published? Defaults to
false
.
- choice str
Specifies the kind of network routing opted by the user. Possible values are
InternetRouting
andMicrosoftRouting
. Defaults toMicrosoftRouting
.- publish_
internet_ boolendpoints Should internet routing storage endpoints be published? Defaults to
false
.- publish_
microsoft_ boolendpoints Should Microsoft routing storage endpoints be published? Defaults to
false
.
- choice String
Specifies the kind of network routing opted by the user. Possible values are
InternetRouting
andMicrosoftRouting
. Defaults toMicrosoftRouting
.- publish
Internet BooleanEndpoints Should internet routing storage endpoints be published? Defaults to
false
.- publish
Microsoft BooleanEndpoints Should Microsoft routing storage endpoints be published? Defaults to
false
.
AccountSasPolicy
- Expiration
Period string The SAS expiration period in format of
DD.HH:MM:SS
.- Expiration
Action string The SAS expiration action. The only possible value is
Log
at this moment. Defaults toLog
.
- Expiration
Period string The SAS expiration period in format of
DD.HH:MM:SS
.- Expiration
Action string The SAS expiration action. The only possible value is
Log
at this moment. Defaults toLog
.
- expiration
Period String The SAS expiration period in format of
DD.HH:MM:SS
.- expiration
Action String The SAS expiration action. The only possible value is
Log
at this moment. Defaults toLog
.
- expiration
Period string The SAS expiration period in format of
DD.HH:MM:SS
.- expiration
Action string The SAS expiration action. The only possible value is
Log
at this moment. Defaults toLog
.
- expiration_
period str The SAS expiration period in format of
DD.HH:MM:SS
.- expiration_
action str The SAS expiration action. The only possible value is
Log
at this moment. Defaults toLog
.
- expiration
Period String The SAS expiration period in format of
DD.HH:MM:SS
.- expiration
Action String The SAS expiration action. The only possible value is
Log
at this moment. Defaults toLog
.
AccountShareProperties
- Cors
Rules List<AccountShare Properties Cors Rule> A
cors_rule
block as defined below.- Retention
Policy AccountShare Properties Retention Policy A
retention_policy
block as defined below.- Smb
Account
Share Properties Smb A
smb
block as defined below.
- Cors
Rules []AccountShare Properties Cors Rule A
cors_rule
block as defined below.- Retention
Policy AccountShare Properties Retention Policy A
retention_policy
block as defined below.- Smb
Account
Share Properties Smb A
smb
block as defined below.
- cors
Rules List<AccountShare Properties Cors Rule> A
cors_rule
block as defined below.- retention
Policy AccountShare Properties Retention Policy A
retention_policy
block as defined below.- smb
Account
Share Properties Smb A
smb
block as defined below.
- cors
Rules AccountShare Properties Cors Rule[] A
cors_rule
block as defined below.- retention
Policy AccountShare Properties Retention Policy A
retention_policy
block as defined below.- smb
Account
Share Properties Smb A
smb
block as defined below.
- cors_
rules Sequence[AccountShare Properties Cors Rule] A
cors_rule
block as defined below.- retention_
policy AccountShare Properties Retention Policy A
retention_policy
block as defined below.- smb
Account
Share Properties Smb A
smb
block as defined below.
- cors
Rules List<Property Map> A
cors_rule
block as defined below.- retention
Policy Property Map A
retention_policy
block as defined below.- smb Property Map
A
smb
block as defined below.
AccountSharePropertiesCorsRule
- Allowed
Headers List<string> A list of headers that are allowed to be a part of the cross-origin request.
- Allowed
Methods List<string> A list of HTTP methods that are allowed to be executed by the origin. Valid options are
DELETE
,GET
,HEAD
,MERGE
,POST
,OPTIONS
,PUT
orPATCH
.- Allowed
Origins List<string> A list of origin domains that will be allowed by CORS.
- Exposed
Headers List<string> A list of response headers that are exposed to CORS clients.
- Max
Age intIn Seconds The number of seconds the client should cache a preflight response.
- Allowed
Headers []string A list of headers that are allowed to be a part of the cross-origin request.
- Allowed
Methods []string A list of HTTP methods that are allowed to be executed by the origin. Valid options are
DELETE
,GET
,HEAD
,MERGE
,POST
,OPTIONS
,PUT
orPATCH
.- Allowed
Origins []string A list of origin domains that will be allowed by CORS.
- Exposed
Headers []string A list of response headers that are exposed to CORS clients.
- Max
Age intIn Seconds The number of seconds the client should cache a preflight response.
- allowed
Headers List<String> A list of headers that are allowed to be a part of the cross-origin request.
- allowed
Methods List<String> A list of HTTP methods that are allowed to be executed by the origin. Valid options are
DELETE
,GET
,HEAD
,MERGE
,POST
,OPTIONS
,PUT
orPATCH
.- allowed
Origins List<String> A list of origin domains that will be allowed by CORS.
- exposed
Headers List<String> A list of response headers that are exposed to CORS clients.
- max
Age IntegerIn Seconds The number of seconds the client should cache a preflight response.
- allowed
Headers string[] A list of headers that are allowed to be a part of the cross-origin request.
- allowed
Methods string[] A list of HTTP methods that are allowed to be executed by the origin. Valid options are
DELETE
,GET
,HEAD
,MERGE
,POST
,OPTIONS
,PUT
orPATCH
.- allowed
Origins string[] A list of origin domains that will be allowed by CORS.
- exposed
Headers string[] A list of response headers that are exposed to CORS clients.
- max
Age numberIn Seconds The number of seconds the client should cache a preflight response.
- allowed_
headers Sequence[str] A list of headers that are allowed to be a part of the cross-origin request.
- allowed_
methods Sequence[str] A list of HTTP methods that are allowed to be executed by the origin. Valid options are
DELETE
,GET
,HEAD
,MERGE
,POST
,OPTIONS
,PUT
orPATCH
.- allowed_
origins Sequence[str] A list of origin domains that will be allowed by CORS.
- exposed_
headers Sequence[str] A list of response headers that are exposed to CORS clients.
- max_
age_ intin_ seconds The number of seconds the client should cache a preflight response.
- allowed
Headers List<String> A list of headers that are allowed to be a part of the cross-origin request.
- allowed
Methods List<String> A list of HTTP methods that are allowed to be executed by the origin. Valid options are
DELETE
,GET
,HEAD
,MERGE
,POST
,OPTIONS
,PUT
orPATCH
.- allowed
Origins List<String> A list of origin domains that will be allowed by CORS.
- exposed
Headers List<String> A list of response headers that are exposed to CORS clients.
- max
Age NumberIn Seconds The number of seconds the client should cache a preflight response.
AccountSharePropertiesRetentionPolicy
- Days int
Specifies the number of days that the
azure.storage.Share
should be retained, between1
and365
days. Defaults to7
.
- Days int
Specifies the number of days that the
azure.storage.Share
should be retained, between1
and365
days. Defaults to7
.
- days Integer
Specifies the number of days that the
azure.storage.Share
should be retained, between1
and365
days. Defaults to7
.
- days number
Specifies the number of days that the
azure.storage.Share
should be retained, between1
and365
days. Defaults to7
.
- days int
Specifies the number of days that the
azure.storage.Share
should be retained, between1
and365
days. Defaults to7
.
- days Number
Specifies the number of days that the
azure.storage.Share
should be retained, between1
and365
days. Defaults to7
.
AccountSharePropertiesSmb
- Authentication
Types List<string> A set of SMB authentication methods. Possible values are
NTLMv2
, andKerberos
.- Channel
Encryption List<string>Types A set of SMB channel encryption. Possible values are
AES-128-CCM
,AES-128-GCM
, andAES-256-GCM
.- Kerberos
Ticket List<string>Encryption Types A set of Kerberos ticket encryption. Possible values are
RC4-HMAC
, andAES-256
.- Multichannel
Enabled bool Indicates whether multichannel is enabled. Defaults to
false
. This is only supported on Premium storage accounts.- Versions List<string>
A set of SMB protocol versions. Possible values are
SMB2.1
,SMB3.0
, andSMB3.1.1
.
- Authentication
Types []string A set of SMB authentication methods. Possible values are
NTLMv2
, andKerberos
.- Channel
Encryption []stringTypes A set of SMB channel encryption. Possible values are
AES-128-CCM
,AES-128-GCM
, andAES-256-GCM
.- Kerberos
Ticket []stringEncryption Types A set of Kerberos ticket encryption. Possible values are
RC4-HMAC
, andAES-256
.- Multichannel
Enabled bool Indicates whether multichannel is enabled. Defaults to
false
. This is only supported on Premium storage accounts.- Versions []string
A set of SMB protocol versions. Possible values are
SMB2.1
,SMB3.0
, andSMB3.1.1
.
- authentication
Types List<String> A set of SMB authentication methods. Possible values are
NTLMv2
, andKerberos
.- channel
Encryption List<String>Types A set of SMB channel encryption. Possible values are
AES-128-CCM
,AES-128-GCM
, andAES-256-GCM
.- kerberos
Ticket List<String>Encryption Types A set of Kerberos ticket encryption. Possible values are
RC4-HMAC
, andAES-256
.- multichannel
Enabled Boolean Indicates whether multichannel is enabled. Defaults to
false
. This is only supported on Premium storage accounts.- versions List<String>
A set of SMB protocol versions. Possible values are
SMB2.1
,SMB3.0
, andSMB3.1.1
.
- authentication
Types string[] A set of SMB authentication methods. Possible values are
NTLMv2
, andKerberos
.- channel
Encryption string[]Types A set of SMB channel encryption. Possible values are
AES-128-CCM
,AES-128-GCM
, andAES-256-GCM
.- kerberos
Ticket string[]Encryption Types A set of Kerberos ticket encryption. Possible values are
RC4-HMAC
, andAES-256
.- multichannel
Enabled boolean Indicates whether multichannel is enabled. Defaults to
false
. This is only supported on Premium storage accounts.- versions string[]
A set of SMB protocol versions. Possible values are
SMB2.1
,SMB3.0
, andSMB3.1.1
.
- authentication_
types Sequence[str] A set of SMB authentication methods. Possible values are
NTLMv2
, andKerberos
.- channel_
encryption_ Sequence[str]types A set of SMB channel encryption. Possible values are
AES-128-CCM
,AES-128-GCM
, andAES-256-GCM
.- kerberos_
ticket_ Sequence[str]encryption_ types A set of Kerberos ticket encryption. Possible values are
RC4-HMAC
, andAES-256
.- multichannel_
enabled bool Indicates whether multichannel is enabled. Defaults to
false
. This is only supported on Premium storage accounts.- versions Sequence[str]
A set of SMB protocol versions. Possible values are
SMB2.1
,SMB3.0
, andSMB3.1.1
.
- authentication
Types List<String> A set of SMB authentication methods. Possible values are
NTLMv2
, andKerberos
.- channel
Encryption List<String>Types A set of SMB channel encryption. Possible values are
AES-128-CCM
,AES-128-GCM
, andAES-256-GCM
.- kerberos
Ticket List<String>Encryption Types A set of Kerberos ticket encryption. Possible values are
RC4-HMAC
, andAES-256
.- multichannel
Enabled Boolean Indicates whether multichannel is enabled. Defaults to
false
. This is only supported on Premium storage accounts.- versions List<String>
A set of SMB protocol versions. Possible values are
SMB2.1
,SMB3.0
, andSMB3.1.1
.
AccountStaticWebsite
- Error404Document string
The absolute path to a custom webpage that should be used when a request is made which does not correspond to an existing file.
- Index
Document string The webpage that Azure Storage serves for requests to the root of a website or any subfolder. For example, index.html. The value is case-sensitive.
- Error404Document string
The absolute path to a custom webpage that should be used when a request is made which does not correspond to an existing file.
- Index
Document string The webpage that Azure Storage serves for requests to the root of a website or any subfolder. For example, index.html. The value is case-sensitive.
- error404Document String
The absolute path to a custom webpage that should be used when a request is made which does not correspond to an existing file.
- index
Document String The webpage that Azure Storage serves for requests to the root of a website or any subfolder. For example, index.html. The value is case-sensitive.
- error404Document string
The absolute path to a custom webpage that should be used when a request is made which does not correspond to an existing file.
- index
Document string The webpage that Azure Storage serves for requests to the root of a website or any subfolder. For example, index.html. The value is case-sensitive.
- error404_
document str The absolute path to a custom webpage that should be used when a request is made which does not correspond to an existing file.
- index_
document str The webpage that Azure Storage serves for requests to the root of a website or any subfolder. For example, index.html. The value is case-sensitive.
- error404Document String
The absolute path to a custom webpage that should be used when a request is made which does not correspond to an existing file.
- index
Document String The webpage that Azure Storage serves for requests to the root of a website or any subfolder. For example, index.html. The value is case-sensitive.
Import
Storage Accounts can be imported using the resource id
, e.g.
$ pulumi import azure:storage/account:Account storageAcc1 /subscriptions/00000000-0000-0000-0000-000000000000/resourceGroups/myresourcegroup/providers/Microsoft.Storage/storageAccounts/myaccount
Package Details
- Repository
- Azure Classic pulumi/pulumi-azure
- License
- Apache-2.0
- Notes
This Pulumi package is based on the
azurerm
Terraform Provider.