Viewing docs for checkpoint 3.2.0
published on Monday, Jun 15, 2026 by checkpointsw
published on Monday, Jun 15, 2026 by checkpointsw
Viewing docs for checkpoint 3.2.0
published on Monday, Jun 15, 2026 by checkpointsw
published on Monday, Jun 15, 2026 by checkpointsw
This resource allows you to execute Check Point Password Policy.
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as checkpoint from "@pulumi/checkpoint";
const policy = new checkpoint.GaiaPasswordPolicy("policy", {
lockSettings: {
failedAttemptsSettings: {
failedAttemptsAllowed: 10,
failedLockDurationSeconds: 1200,
failedLockEnabled: false,
failedLockEnforcedOnAdmin: false,
},
inactivitySettings: {
inactivityThresholdDays: 365,
lockUnusedAccountsEnabled: false,
},
mustOneTimePasswordEnabled: false,
passwordExpirationDays: "never",
passwordExpirationMaximumDaysBeforeLock: "never",
passwordExpirationWarningDays: 7,
},
passwordHistory: {
checkHistoryEnabled: true,
repeatedHistoryLength: 10,
},
passwordStrength: {
complexity: 2,
minimumLength: 6,
palindromeCheckEnabled: true,
},
});
import pulumi
import pulumi_checkpoint as checkpoint
policy = checkpoint.GaiaPasswordPolicy("policy",
lock_settings={
"failed_attempts_settings": {
"failed_attempts_allowed": 10,
"failed_lock_duration_seconds": 1200,
"failed_lock_enabled": False,
"failed_lock_enforced_on_admin": False,
},
"inactivity_settings": {
"inactivity_threshold_days": 365,
"lock_unused_accounts_enabled": False,
},
"must_one_time_password_enabled": False,
"password_expiration_days": "never",
"password_expiration_maximum_days_before_lock": "never",
"password_expiration_warning_days": 7,
},
password_history={
"check_history_enabled": True,
"repeated_history_length": 10,
},
password_strength={
"complexity": 2,
"minimum_length": 6,
"palindrome_check_enabled": True,
})
package main
import (
"github.com/pulumi/pulumi-terraform-provider/sdks/go/checkpoint/v3/checkpoint"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := checkpoint.NewGaiaPasswordPolicy(ctx, "policy", &checkpoint.GaiaPasswordPolicyArgs{
LockSettings: &checkpoint.GaiaPasswordPolicyLockSettingsArgs{
FailedAttemptsSettings: &checkpoint.GaiaPasswordPolicyLockSettingsFailedAttemptsSettingsArgs{
FailedAttemptsAllowed: pulumi.Float64(10),
FailedLockDurationSeconds: pulumi.Float64(1200),
FailedLockEnabled: pulumi.Bool(false),
FailedLockEnforcedOnAdmin: pulumi.Bool(false),
},
InactivitySettings: &checkpoint.GaiaPasswordPolicyLockSettingsInactivitySettingsArgs{
InactivityThresholdDays: pulumi.Float64(365),
LockUnusedAccountsEnabled: pulumi.Bool(false),
},
MustOneTimePasswordEnabled: pulumi.Bool(false),
PasswordExpirationDays: pulumi.String("never"),
PasswordExpirationMaximumDaysBeforeLock: pulumi.String("never"),
PasswordExpirationWarningDays: pulumi.Float64(7),
},
PasswordHistory: &checkpoint.GaiaPasswordPolicyPasswordHistoryArgs{
CheckHistoryEnabled: pulumi.Bool(true),
RepeatedHistoryLength: pulumi.Float64(10),
},
PasswordStrength: &checkpoint.GaiaPasswordPolicyPasswordStrengthArgs{
Complexity: pulumi.Float64(2),
MinimumLength: pulumi.Float64(6),
PalindromeCheckEnabled: pulumi.Bool(true),
},
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Checkpoint = Pulumi.Checkpoint;
return await Deployment.RunAsync(() =>
{
var policy = new Checkpoint.GaiaPasswordPolicy("policy", new()
{
LockSettings = new Checkpoint.Inputs.GaiaPasswordPolicyLockSettingsArgs
{
FailedAttemptsSettings = new Checkpoint.Inputs.GaiaPasswordPolicyLockSettingsFailedAttemptsSettingsArgs
{
FailedAttemptsAllowed = 10,
FailedLockDurationSeconds = 1200,
FailedLockEnabled = false,
FailedLockEnforcedOnAdmin = false,
},
InactivitySettings = new Checkpoint.Inputs.GaiaPasswordPolicyLockSettingsInactivitySettingsArgs
{
InactivityThresholdDays = 365,
LockUnusedAccountsEnabled = false,
},
MustOneTimePasswordEnabled = false,
PasswordExpirationDays = "never",
PasswordExpirationMaximumDaysBeforeLock = "never",
PasswordExpirationWarningDays = 7,
},
PasswordHistory = new Checkpoint.Inputs.GaiaPasswordPolicyPasswordHistoryArgs
{
CheckHistoryEnabled = true,
RepeatedHistoryLength = 10,
},
PasswordStrength = new Checkpoint.Inputs.GaiaPasswordPolicyPasswordStrengthArgs
{
Complexity = 2,
MinimumLength = 6,
PalindromeCheckEnabled = true,
},
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.checkpoint.GaiaPasswordPolicy;
import com.pulumi.checkpoint.GaiaPasswordPolicyArgs;
import com.pulumi.checkpoint.inputs.GaiaPasswordPolicyLockSettingsArgs;
import com.pulumi.checkpoint.inputs.GaiaPasswordPolicyLockSettingsFailedAttemptsSettingsArgs;
import com.pulumi.checkpoint.inputs.GaiaPasswordPolicyLockSettingsInactivitySettingsArgs;
import com.pulumi.checkpoint.inputs.GaiaPasswordPolicyPasswordHistoryArgs;
import com.pulumi.checkpoint.inputs.GaiaPasswordPolicyPasswordStrengthArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var policy = new GaiaPasswordPolicy("policy", GaiaPasswordPolicyArgs.builder()
.lockSettings(GaiaPasswordPolicyLockSettingsArgs.builder()
.failedAttemptsSettings(GaiaPasswordPolicyLockSettingsFailedAttemptsSettingsArgs.builder()
.failedAttemptsAllowed(10.0)
.failedLockDurationSeconds(1200.0)
.failedLockEnabled(false)
.failedLockEnforcedOnAdmin(false)
.build())
.inactivitySettings(GaiaPasswordPolicyLockSettingsInactivitySettingsArgs.builder()
.inactivityThresholdDays(365.0)
.lockUnusedAccountsEnabled(false)
.build())
.mustOneTimePasswordEnabled(false)
.passwordExpirationDays("never")
.passwordExpirationMaximumDaysBeforeLock("never")
.passwordExpirationWarningDays(7.0)
.build())
.passwordHistory(GaiaPasswordPolicyPasswordHistoryArgs.builder()
.checkHistoryEnabled(true)
.repeatedHistoryLength(10.0)
.build())
.passwordStrength(GaiaPasswordPolicyPasswordStrengthArgs.builder()
.complexity(2.0)
.minimumLength(6.0)
.palindromeCheckEnabled(true)
.build())
.build());
}
}
resources:
policy:
type: checkpoint:GaiaPasswordPolicy
properties:
lockSettings:
failedAttemptsSettings:
failedAttemptsAllowed: 10
failedLockDurationSeconds: 1200
failedLockEnabled: false
failedLockEnforcedOnAdmin: false
inactivitySettings:
inactivityThresholdDays: 365
lockUnusedAccountsEnabled: false
mustOneTimePasswordEnabled: false
passwordExpirationDays: never
passwordExpirationMaximumDaysBeforeLock: never
passwordExpirationWarningDays: 7
passwordHistory:
checkHistoryEnabled: true
repeatedHistoryLength: 10
passwordStrength:
complexity: 2
minimumLength: 6
palindromeCheckEnabled: true
Example coming soon!
Create GaiaPasswordPolicy Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new GaiaPasswordPolicy(name: string, args?: GaiaPasswordPolicyArgs, opts?: CustomResourceOptions);@overload
def GaiaPasswordPolicy(resource_name: str,
args: Optional[GaiaPasswordPolicyArgs] = None,
opts: Optional[ResourceOptions] = None)
@overload
def GaiaPasswordPolicy(resource_name: str,
opts: Optional[ResourceOptions] = None,
all_users_require_two_factor_authentication: Optional[bool] = None,
debug: Optional[bool] = None,
gaia_password_policy_id: Optional[str] = None,
lock_settings: Optional[GaiaPasswordPolicyLockSettingsArgs] = None,
member_id: Optional[str] = None,
password_history: Optional[GaiaPasswordPolicyPasswordHistoryArgs] = None,
password_strength: Optional[GaiaPasswordPolicyPasswordStrengthArgs] = None)func NewGaiaPasswordPolicy(ctx *Context, name string, args *GaiaPasswordPolicyArgs, opts ...ResourceOption) (*GaiaPasswordPolicy, error)public GaiaPasswordPolicy(string name, GaiaPasswordPolicyArgs? args = null, CustomResourceOptions? opts = null)
public GaiaPasswordPolicy(String name, GaiaPasswordPolicyArgs args)
public GaiaPasswordPolicy(String name, GaiaPasswordPolicyArgs args, CustomResourceOptions options)
type: checkpoint:GaiaPasswordPolicy
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
resource "checkpoint_gaiapasswordpolicy" "name" {
# resource properties
}Parameters
- name string
- The unique name of the resource.
- args GaiaPasswordPolicyArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args GaiaPasswordPolicyArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args GaiaPasswordPolicyArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args GaiaPasswordPolicyArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args GaiaPasswordPolicyArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var gaiaPasswordPolicyResource = new Checkpoint.GaiaPasswordPolicy("gaiaPasswordPolicyResource", new()
{
AllUsersRequireTwoFactorAuthentication = false,
Debug = false,
GaiaPasswordPolicyId = "string",
LockSettings = new Checkpoint.Inputs.GaiaPasswordPolicyLockSettingsArgs
{
FailedAttemptsSettings = new Checkpoint.Inputs.GaiaPasswordPolicyLockSettingsFailedAttemptsSettingsArgs
{
FailedAttemptsAllowed = 0,
FailedLockDurationSeconds = 0,
FailedLockEnabled = false,
FailedLockEnforcedOnAdmin = false,
},
InactivitySettings = new Checkpoint.Inputs.GaiaPasswordPolicyLockSettingsInactivitySettingsArgs
{
InactivityThresholdDays = 0,
LockUnusedAccountsEnabled = false,
},
MustOneTimePasswordEnabled = false,
PasswordExpirationDays = "string",
PasswordExpirationMaximumDaysBeforeLock = "string",
PasswordExpirationWarningDays = 0,
},
MemberId = "string",
PasswordHistory = new Checkpoint.Inputs.GaiaPasswordPolicyPasswordHistoryArgs
{
CheckHistoryEnabled = false,
RepeatedHistoryLength = 0,
},
PasswordStrength = new Checkpoint.Inputs.GaiaPasswordPolicyPasswordStrengthArgs
{
Complexity = 0,
MinimumLength = 0,
PalindromeCheckEnabled = false,
},
});
example, err := checkpoint.NewGaiaPasswordPolicy(ctx, "gaiaPasswordPolicyResource", &checkpoint.GaiaPasswordPolicyArgs{
AllUsersRequireTwoFactorAuthentication: pulumi.Bool(false),
Debug: pulumi.Bool(false),
GaiaPasswordPolicyId: pulumi.String("string"),
LockSettings: &checkpoint.GaiaPasswordPolicyLockSettingsArgs{
FailedAttemptsSettings: &checkpoint.GaiaPasswordPolicyLockSettingsFailedAttemptsSettingsArgs{
FailedAttemptsAllowed: pulumi.Float64(0),
FailedLockDurationSeconds: pulumi.Float64(0),
FailedLockEnabled: pulumi.Bool(false),
FailedLockEnforcedOnAdmin: pulumi.Bool(false),
},
InactivitySettings: &checkpoint.GaiaPasswordPolicyLockSettingsInactivitySettingsArgs{
InactivityThresholdDays: pulumi.Float64(0),
LockUnusedAccountsEnabled: pulumi.Bool(false),
},
MustOneTimePasswordEnabled: pulumi.Bool(false),
PasswordExpirationDays: pulumi.String("string"),
PasswordExpirationMaximumDaysBeforeLock: pulumi.String("string"),
PasswordExpirationWarningDays: pulumi.Float64(0),
},
MemberId: pulumi.String("string"),
PasswordHistory: &checkpoint.GaiaPasswordPolicyPasswordHistoryArgs{
CheckHistoryEnabled: pulumi.Bool(false),
RepeatedHistoryLength: pulumi.Float64(0),
},
PasswordStrength: &checkpoint.GaiaPasswordPolicyPasswordStrengthArgs{
Complexity: pulumi.Float64(0),
MinimumLength: pulumi.Float64(0),
PalindromeCheckEnabled: pulumi.Bool(false),
},
})
resource "checkpoint_gaiapasswordpolicy" "gaiaPasswordPolicyResource" {
all_users_require_two_factor_authentication = false
debug = false
gaia_password_policy_id = "string"
lock_settings = {
failed_attempts_settings = {
failed_attempts_allowed = 0
failed_lock_duration_seconds = 0
failed_lock_enabled = false
failed_lock_enforced_on_admin = false
}
inactivity_settings = {
inactivity_threshold_days = 0
lock_unused_accounts_enabled = false
}
must_one_time_password_enabled = false
password_expiration_days = "string"
password_expiration_maximum_days_before_lock = "string"
password_expiration_warning_days = 0
}
member_id = "string"
password_history = {
check_history_enabled = false
repeated_history_length = 0
}
password_strength = {
complexity = 0
minimum_length = 0
palindrome_check_enabled = false
}
}
var gaiaPasswordPolicyResource = new GaiaPasswordPolicy("gaiaPasswordPolicyResource", GaiaPasswordPolicyArgs.builder()
.allUsersRequireTwoFactorAuthentication(false)
.debug(false)
.gaiaPasswordPolicyId("string")
.lockSettings(GaiaPasswordPolicyLockSettingsArgs.builder()
.failedAttemptsSettings(GaiaPasswordPolicyLockSettingsFailedAttemptsSettingsArgs.builder()
.failedAttemptsAllowed(0.0)
.failedLockDurationSeconds(0.0)
.failedLockEnabled(false)
.failedLockEnforcedOnAdmin(false)
.build())
.inactivitySettings(GaiaPasswordPolicyLockSettingsInactivitySettingsArgs.builder()
.inactivityThresholdDays(0.0)
.lockUnusedAccountsEnabled(false)
.build())
.mustOneTimePasswordEnabled(false)
.passwordExpirationDays("string")
.passwordExpirationMaximumDaysBeforeLock("string")
.passwordExpirationWarningDays(0.0)
.build())
.memberId("string")
.passwordHistory(GaiaPasswordPolicyPasswordHistoryArgs.builder()
.checkHistoryEnabled(false)
.repeatedHistoryLength(0.0)
.build())
.passwordStrength(GaiaPasswordPolicyPasswordStrengthArgs.builder()
.complexity(0.0)
.minimumLength(0.0)
.palindromeCheckEnabled(false)
.build())
.build());
gaia_password_policy_resource = checkpoint.GaiaPasswordPolicy("gaiaPasswordPolicyResource",
all_users_require_two_factor_authentication=False,
debug=False,
gaia_password_policy_id="string",
lock_settings={
"failed_attempts_settings": {
"failed_attempts_allowed": float(0),
"failed_lock_duration_seconds": float(0),
"failed_lock_enabled": False,
"failed_lock_enforced_on_admin": False,
},
"inactivity_settings": {
"inactivity_threshold_days": float(0),
"lock_unused_accounts_enabled": False,
},
"must_one_time_password_enabled": False,
"password_expiration_days": "string",
"password_expiration_maximum_days_before_lock": "string",
"password_expiration_warning_days": float(0),
},
member_id="string",
password_history={
"check_history_enabled": False,
"repeated_history_length": float(0),
},
password_strength={
"complexity": float(0),
"minimum_length": float(0),
"palindrome_check_enabled": False,
})
const gaiaPasswordPolicyResource = new checkpoint.GaiaPasswordPolicy("gaiaPasswordPolicyResource", {
allUsersRequireTwoFactorAuthentication: false,
debug: false,
gaiaPasswordPolicyId: "string",
lockSettings: {
failedAttemptsSettings: {
failedAttemptsAllowed: 0,
failedLockDurationSeconds: 0,
failedLockEnabled: false,
failedLockEnforcedOnAdmin: false,
},
inactivitySettings: {
inactivityThresholdDays: 0,
lockUnusedAccountsEnabled: false,
},
mustOneTimePasswordEnabled: false,
passwordExpirationDays: "string",
passwordExpirationMaximumDaysBeforeLock: "string",
passwordExpirationWarningDays: 0,
},
memberId: "string",
passwordHistory: {
checkHistoryEnabled: false,
repeatedHistoryLength: 0,
},
passwordStrength: {
complexity: 0,
minimumLength: 0,
palindromeCheckEnabled: false,
},
});
type: checkpoint:GaiaPasswordPolicy
properties:
allUsersRequireTwoFactorAuthentication: false
debug: false
gaiaPasswordPolicyId: string
lockSettings:
failedAttemptsSettings:
failedAttemptsAllowed: 0
failedLockDurationSeconds: 0
failedLockEnabled: false
failedLockEnforcedOnAdmin: false
inactivitySettings:
inactivityThresholdDays: 0
lockUnusedAccountsEnabled: false
mustOneTimePasswordEnabled: false
passwordExpirationDays: string
passwordExpirationMaximumDaysBeforeLock: string
passwordExpirationWarningDays: 0
memberId: string
passwordHistory:
checkHistoryEnabled: false
repeatedHistoryLength: 0
passwordStrength:
complexity: 0
minimumLength: 0
palindromeCheckEnabled: false
GaiaPasswordPolicy Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The GaiaPasswordPolicy resource accepts the following input properties:
- All
Users boolRequire Two Factor Authentication - Force Two-Factor Authentication for all users. Upon their next login, if Two-Factor Authentication is not already set up, the users will be required to generate the authentication keys.
- Debug bool
- Enable debug logging for this resource.
- Gaia
Password stringPolicy Id - Lock
Settings GaiaPassword Policy Lock Settings - password change configuration lock_settings blocks are documented below.
- Member
Id string - Relevant for commands on Scalable and ElasticXL platforms only. When member-id is provided in the login request, show commands during the session will be executed on the specified member, unless a different member-id is provided in a successive requests Set operations will be performed on all members
- Password
History GaiaPassword Policy Password History - password history configuration password_history blocks are documented below.
- Password
Strength GaiaPassword Policy Password Strength - password strength configuration password_strength blocks are documented below.
- All
Users boolRequire Two Factor Authentication - Force Two-Factor Authentication for all users. Upon their next login, if Two-Factor Authentication is not already set up, the users will be required to generate the authentication keys.
- Debug bool
- Enable debug logging for this resource.
- Gaia
Password stringPolicy Id - Lock
Settings GaiaPassword Policy Lock Settings Args - password change configuration lock_settings blocks are documented below.
- Member
Id string - Relevant for commands on Scalable and ElasticXL platforms only. When member-id is provided in the login request, show commands during the session will be executed on the specified member, unless a different member-id is provided in a successive requests Set operations will be performed on all members
- Password
History GaiaPassword Policy Password History Args - password history configuration password_history blocks are documented below.
- Password
Strength GaiaPassword Policy Password Strength Args - password strength configuration password_strength blocks are documented below.
- all_
users_ boolrequire_ two_ factor_ authentication - Force Two-Factor Authentication for all users. Upon their next login, if Two-Factor Authentication is not already set up, the users will be required to generate the authentication keys.
- debug bool
- Enable debug logging for this resource.
- gaia_
password_ stringpolicy_ id - lock_
settings object - password change configuration lock_settings blocks are documented below.
- member_
id string - Relevant for commands on Scalable and ElasticXL platforms only. When member-id is provided in the login request, show commands during the session will be executed on the specified member, unless a different member-id is provided in a successive requests Set operations will be performed on all members
- password_
history object - password history configuration password_history blocks are documented below.
- password_
strength object - password strength configuration password_strength blocks are documented below.
- all
Users BooleanRequire Two Factor Authentication - Force Two-Factor Authentication for all users. Upon their next login, if Two-Factor Authentication is not already set up, the users will be required to generate the authentication keys.
- debug Boolean
- Enable debug logging for this resource.
- gaia
Password StringPolicy Id - lock
Settings GaiaPassword Policy Lock Settings - password change configuration lock_settings blocks are documented below.
- member
Id String - Relevant for commands on Scalable and ElasticXL platforms only. When member-id is provided in the login request, show commands during the session will be executed on the specified member, unless a different member-id is provided in a successive requests Set operations will be performed on all members
- password
History GaiaPassword Policy Password History - password history configuration password_history blocks are documented below.
- password
Strength GaiaPassword Policy Password Strength - password strength configuration password_strength blocks are documented below.
- all
Users booleanRequire Two Factor Authentication - Force Two-Factor Authentication for all users. Upon their next login, if Two-Factor Authentication is not already set up, the users will be required to generate the authentication keys.
- debug boolean
- Enable debug logging for this resource.
- gaia
Password stringPolicy Id - lock
Settings GaiaPassword Policy Lock Settings - password change configuration lock_settings blocks are documented below.
- member
Id string - Relevant for commands on Scalable and ElasticXL platforms only. When member-id is provided in the login request, show commands during the session will be executed on the specified member, unless a different member-id is provided in a successive requests Set operations will be performed on all members
- password
History GaiaPassword Policy Password History - password history configuration password_history blocks are documented below.
- password
Strength GaiaPassword Policy Password Strength - password strength configuration password_strength blocks are documented below.
- all_
users_ boolrequire_ two_ factor_ authentication - Force Two-Factor Authentication for all users. Upon their next login, if Two-Factor Authentication is not already set up, the users will be required to generate the authentication keys.
- debug bool
- Enable debug logging for this resource.
- gaia_
password_ strpolicy_ id - lock_
settings GaiaPassword Policy Lock Settings Args - password change configuration lock_settings blocks are documented below.
- member_
id str - Relevant for commands on Scalable and ElasticXL platforms only. When member-id is provided in the login request, show commands during the session will be executed on the specified member, unless a different member-id is provided in a successive requests Set operations will be performed on all members
- password_
history GaiaPassword Policy Password History Args - password history configuration password_history blocks are documented below.
- password_
strength GaiaPassword Policy Password Strength Args - password strength configuration password_strength blocks are documented below.
- all
Users BooleanRequire Two Factor Authentication - Force Two-Factor Authentication for all users. Upon their next login, if Two-Factor Authentication is not already set up, the users will be required to generate the authentication keys.
- debug Boolean
- Enable debug logging for this resource.
- gaia
Password StringPolicy Id - lock
Settings Property Map - password change configuration lock_settings blocks are documented below.
- member
Id String - Relevant for commands on Scalable and ElasticXL platforms only. When member-id is provided in the login request, show commands during the session will be executed on the specified member, unless a different member-id is provided in a successive requests Set operations will be performed on all members
- password
History Property Map - password history configuration password_history blocks are documented below.
- password
Strength Property Map - password strength configuration password_strength blocks are documented below.
Outputs
All input properties are implicitly available as output properties. Additionally, the GaiaPasswordPolicy resource produces the following output properties:
- Id string
- The provider-assigned unique ID for this managed resource.
- Id string
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
- id string
- The provider-assigned unique ID for this managed resource.
- id str
- The provider-assigned unique ID for this managed resource.
- id String
- The provider-assigned unique ID for this managed resource.
Look up Existing GaiaPasswordPolicy Resource
Get an existing GaiaPasswordPolicy resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: GaiaPasswordPolicyState, opts?: CustomResourceOptions): GaiaPasswordPolicy@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
all_users_require_two_factor_authentication: Optional[bool] = None,
debug: Optional[bool] = None,
gaia_password_policy_id: Optional[str] = None,
lock_settings: Optional[GaiaPasswordPolicyLockSettingsArgs] = None,
member_id: Optional[str] = None,
password_history: Optional[GaiaPasswordPolicyPasswordHistoryArgs] = None,
password_strength: Optional[GaiaPasswordPolicyPasswordStrengthArgs] = None) -> GaiaPasswordPolicyfunc GetGaiaPasswordPolicy(ctx *Context, name string, id IDInput, state *GaiaPasswordPolicyState, opts ...ResourceOption) (*GaiaPasswordPolicy, error)public static GaiaPasswordPolicy Get(string name, Input<string> id, GaiaPasswordPolicyState? state, CustomResourceOptions? opts = null)public static GaiaPasswordPolicy get(String name, Output<String> id, GaiaPasswordPolicyState state, CustomResourceOptions options)resources: _: type: checkpoint:GaiaPasswordPolicy get: id: ${id}import {
to = checkpoint_gaiapasswordpolicy.example
id = "${id}"
}
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- All
Users boolRequire Two Factor Authentication - Force Two-Factor Authentication for all users. Upon their next login, if Two-Factor Authentication is not already set up, the users will be required to generate the authentication keys.
- Debug bool
- Enable debug logging for this resource.
- Gaia
Password stringPolicy Id - Lock
Settings GaiaPassword Policy Lock Settings - password change configuration lock_settings blocks are documented below.
- Member
Id string - Relevant for commands on Scalable and ElasticXL platforms only. When member-id is provided in the login request, show commands during the session will be executed on the specified member, unless a different member-id is provided in a successive requests Set operations will be performed on all members
- Password
History GaiaPassword Policy Password History - password history configuration password_history blocks are documented below.
- Password
Strength GaiaPassword Policy Password Strength - password strength configuration password_strength blocks are documented below.
- All
Users boolRequire Two Factor Authentication - Force Two-Factor Authentication for all users. Upon their next login, if Two-Factor Authentication is not already set up, the users will be required to generate the authentication keys.
- Debug bool
- Enable debug logging for this resource.
- Gaia
Password stringPolicy Id - Lock
Settings GaiaPassword Policy Lock Settings Args - password change configuration lock_settings blocks are documented below.
- Member
Id string - Relevant for commands on Scalable and ElasticXL platforms only. When member-id is provided in the login request, show commands during the session will be executed on the specified member, unless a different member-id is provided in a successive requests Set operations will be performed on all members
- Password
History GaiaPassword Policy Password History Args - password history configuration password_history blocks are documented below.
- Password
Strength GaiaPassword Policy Password Strength Args - password strength configuration password_strength blocks are documented below.
- all_
users_ boolrequire_ two_ factor_ authentication - Force Two-Factor Authentication for all users. Upon their next login, if Two-Factor Authentication is not already set up, the users will be required to generate the authentication keys.
- debug bool
- Enable debug logging for this resource.
- gaia_
password_ stringpolicy_ id - lock_
settings object - password change configuration lock_settings blocks are documented below.
- member_
id string - Relevant for commands on Scalable and ElasticXL platforms only. When member-id is provided in the login request, show commands during the session will be executed on the specified member, unless a different member-id is provided in a successive requests Set operations will be performed on all members
- password_
history object - password history configuration password_history blocks are documented below.
- password_
strength object - password strength configuration password_strength blocks are documented below.
- all
Users BooleanRequire Two Factor Authentication - Force Two-Factor Authentication for all users. Upon their next login, if Two-Factor Authentication is not already set up, the users will be required to generate the authentication keys.
- debug Boolean
- Enable debug logging for this resource.
- gaia
Password StringPolicy Id - lock
Settings GaiaPassword Policy Lock Settings - password change configuration lock_settings blocks are documented below.
- member
Id String - Relevant for commands on Scalable and ElasticXL platforms only. When member-id is provided in the login request, show commands during the session will be executed on the specified member, unless a different member-id is provided in a successive requests Set operations will be performed on all members
- password
History GaiaPassword Policy Password History - password history configuration password_history blocks are documented below.
- password
Strength GaiaPassword Policy Password Strength - password strength configuration password_strength blocks are documented below.
- all
Users booleanRequire Two Factor Authentication - Force Two-Factor Authentication for all users. Upon their next login, if Two-Factor Authentication is not already set up, the users will be required to generate the authentication keys.
- debug boolean
- Enable debug logging for this resource.
- gaia
Password stringPolicy Id - lock
Settings GaiaPassword Policy Lock Settings - password change configuration lock_settings blocks are documented below.
- member
Id string - Relevant for commands on Scalable and ElasticXL platforms only. When member-id is provided in the login request, show commands during the session will be executed on the specified member, unless a different member-id is provided in a successive requests Set operations will be performed on all members
- password
History GaiaPassword Policy Password History - password history configuration password_history blocks are documented below.
- password
Strength GaiaPassword Policy Password Strength - password strength configuration password_strength blocks are documented below.
- all_
users_ boolrequire_ two_ factor_ authentication - Force Two-Factor Authentication for all users. Upon their next login, if Two-Factor Authentication is not already set up, the users will be required to generate the authentication keys.
- debug bool
- Enable debug logging for this resource.
- gaia_
password_ strpolicy_ id - lock_
settings GaiaPassword Policy Lock Settings Args - password change configuration lock_settings blocks are documented below.
- member_
id str - Relevant for commands on Scalable and ElasticXL platforms only. When member-id is provided in the login request, show commands during the session will be executed on the specified member, unless a different member-id is provided in a successive requests Set operations will be performed on all members
- password_
history GaiaPassword Policy Password History Args - password history configuration password_history blocks are documented below.
- password_
strength GaiaPassword Policy Password Strength Args - password strength configuration password_strength blocks are documented below.
- all
Users BooleanRequire Two Factor Authentication - Force Two-Factor Authentication for all users. Upon their next login, if Two-Factor Authentication is not already set up, the users will be required to generate the authentication keys.
- debug Boolean
- Enable debug logging for this resource.
- gaia
Password StringPolicy Id - lock
Settings Property Map - password change configuration lock_settings blocks are documented below.
- member
Id String - Relevant for commands on Scalable and ElasticXL platforms only. When member-id is provided in the login request, show commands during the session will be executed on the specified member, unless a different member-id is provided in a successive requests Set operations will be performed on all members
- password
History Property Map - password history configuration password_history blocks are documented below.
- password
Strength Property Map - password strength configuration password_strength blocks are documented below.
Supporting Types
GaiaPasswordPolicyLockSettings, GaiaPasswordPolicyLockSettingsArgs
- Failed
Attempts GaiaSettings Password Policy Lock Settings Failed Attempts Settings - failed attempts configuration failed_attempts_settings blocks are documented below.
- Inactivity
Settings GaiaPassword Policy Lock Settings Inactivity Settings - inactivity configuration inactivity_settings blocks are documented below.
- Must
One boolTime Password Enabled - Forces a user to change their password after it has been set via "User Management" (but not via "Self Password Change" or forced change at login).Use this command to set the value. Default value is false
- Password
Expiration stringDays - Password expiration lifetime, default value is 'never'
- Password
Expiration stringMaximum Days Before Lock - Password expiration lockout in days, default value is 'never'
- Password
Expiration doubleWarning Days - Number of days before a password expires that the user gets warned, default value is 7 days
- Failed
Attempts GaiaSettings Password Policy Lock Settings Failed Attempts Settings - failed attempts configuration failed_attempts_settings blocks are documented below.
- Inactivity
Settings GaiaPassword Policy Lock Settings Inactivity Settings - inactivity configuration inactivity_settings blocks are documented below.
- Must
One boolTime Password Enabled - Forces a user to change their password after it has been set via "User Management" (but not via "Self Password Change" or forced change at login).Use this command to set the value. Default value is false
- Password
Expiration stringDays - Password expiration lifetime, default value is 'never'
- Password
Expiration stringMaximum Days Before Lock - Password expiration lockout in days, default value is 'never'
- Password
Expiration float64Warning Days - Number of days before a password expires that the user gets warned, default value is 7 days
- failed_
attempts_ objectsettings - failed attempts configuration failed_attempts_settings blocks are documented below.
- inactivity_
settings object - inactivity configuration inactivity_settings blocks are documented below.
- must_
one_ booltime_ password_ enabled - Forces a user to change their password after it has been set via "User Management" (but not via "Self Password Change" or forced change at login).Use this command to set the value. Default value is false
- password_
expiration_ stringdays - Password expiration lifetime, default value is 'never'
- password_
expiration_ stringmaximum_ days_ before_ lock - Password expiration lockout in days, default value is 'never'
- password_
expiration_ numberwarning_ days - Number of days before a password expires that the user gets warned, default value is 7 days
- failed
Attempts GaiaSettings Password Policy Lock Settings Failed Attempts Settings - failed attempts configuration failed_attempts_settings blocks are documented below.
- inactivity
Settings GaiaPassword Policy Lock Settings Inactivity Settings - inactivity configuration inactivity_settings blocks are documented below.
- must
One BooleanTime Password Enabled - Forces a user to change their password after it has been set via "User Management" (but not via "Self Password Change" or forced change at login).Use this command to set the value. Default value is false
- password
Expiration StringDays - Password expiration lifetime, default value is 'never'
- password
Expiration StringMaximum Days Before Lock - Password expiration lockout in days, default value is 'never'
- password
Expiration DoubleWarning Days - Number of days before a password expires that the user gets warned, default value is 7 days
- failed
Attempts GaiaSettings Password Policy Lock Settings Failed Attempts Settings - failed attempts configuration failed_attempts_settings blocks are documented below.
- inactivity
Settings GaiaPassword Policy Lock Settings Inactivity Settings - inactivity configuration inactivity_settings blocks are documented below.
- must
One booleanTime Password Enabled - Forces a user to change their password after it has been set via "User Management" (but not via "Self Password Change" or forced change at login).Use this command to set the value. Default value is false
- password
Expiration stringDays - Password expiration lifetime, default value is 'never'
- password
Expiration stringMaximum Days Before Lock - Password expiration lockout in days, default value is 'never'
- password
Expiration numberWarning Days - Number of days before a password expires that the user gets warned, default value is 7 days
- failed_
attempts_ Gaiasettings Password Policy Lock Settings Failed Attempts Settings - failed attempts configuration failed_attempts_settings blocks are documented below.
- inactivity_
settings GaiaPassword Policy Lock Settings Inactivity Settings - inactivity configuration inactivity_settings blocks are documented below.
- must_
one_ booltime_ password_ enabled - Forces a user to change their password after it has been set via "User Management" (but not via "Self Password Change" or forced change at login).Use this command to set the value. Default value is false
- password_
expiration_ strdays - Password expiration lifetime, default value is 'never'
- password_
expiration_ strmaximum_ days_ before_ lock - Password expiration lockout in days, default value is 'never'
- password_
expiration_ floatwarning_ days - Number of days before a password expires that the user gets warned, default value is 7 days
- failed
Attempts Property MapSettings - failed attempts configuration failed_attempts_settings blocks are documented below.
- inactivity
Settings Property Map - inactivity configuration inactivity_settings blocks are documented below.
- must
One BooleanTime Password Enabled - Forces a user to change their password after it has been set via "User Management" (but not via "Self Password Change" or forced change at login).Use this command to set the value. Default value is false
- password
Expiration StringDays - Password expiration lifetime, default value is 'never'
- password
Expiration StringMaximum Days Before Lock - Password expiration lockout in days, default value is 'never'
- password
Expiration NumberWarning Days - Number of days before a password expires that the user gets warned, default value is 7 days
GaiaPasswordPolicyLockSettingsFailedAttemptsSettings, GaiaPasswordPolicyLockSettingsFailedAttemptsSettingsArgs
- Failed
Attempts doubleAllowed - Amount of login attempts allowed before lockout, default value is 10 attempts
- Failed
Lock doubleDuration Seconds - Password failed logging lockout duration, default value is 1200
- Failed
Lock boolEnabled - Lock user after exceeded maximum allowed login attempts, default value is false
- Failed
Lock boolEnforced On Admin - Enforce failed lockout on admin user, default value is false
- Failed
Attempts float64Allowed - Amount of login attempts allowed before lockout, default value is 10 attempts
- Failed
Lock float64Duration Seconds - Password failed logging lockout duration, default value is 1200
- Failed
Lock boolEnabled - Lock user after exceeded maximum allowed login attempts, default value is false
- Failed
Lock boolEnforced On Admin - Enforce failed lockout on admin user, default value is false
- failed_
attempts_ numberallowed - Amount of login attempts allowed before lockout, default value is 10 attempts
- failed_
lock_ numberduration_ seconds - Password failed logging lockout duration, default value is 1200
- failed_
lock_ boolenabled - Lock user after exceeded maximum allowed login attempts, default value is false
- failed_
lock_ boolenforced_ on_ admin - Enforce failed lockout on admin user, default value is false
- failed
Attempts DoubleAllowed - Amount of login attempts allowed before lockout, default value is 10 attempts
- failed
Lock DoubleDuration Seconds - Password failed logging lockout duration, default value is 1200
- failed
Lock BooleanEnabled - Lock user after exceeded maximum allowed login attempts, default value is false
- failed
Lock BooleanEnforced On Admin - Enforce failed lockout on admin user, default value is false
- failed
Attempts numberAllowed - Amount of login attempts allowed before lockout, default value is 10 attempts
- failed
Lock numberDuration Seconds - Password failed logging lockout duration, default value is 1200
- failed
Lock booleanEnabled - Lock user after exceeded maximum allowed login attempts, default value is false
- failed
Lock booleanEnforced On Admin - Enforce failed lockout on admin user, default value is false
- failed_
attempts_ floatallowed - Amount of login attempts allowed before lockout, default value is 10 attempts
- failed_
lock_ floatduration_ seconds - Password failed logging lockout duration, default value is 1200
- failed_
lock_ boolenabled - Lock user after exceeded maximum allowed login attempts, default value is false
- failed_
lock_ boolenforced_ on_ admin - Enforce failed lockout on admin user, default value is false
- failed
Attempts NumberAllowed - Amount of login attempts allowed before lockout, default value is 10 attempts
- failed
Lock NumberDuration Seconds - Password failed logging lockout duration, default value is 1200
- failed
Lock BooleanEnabled - Lock user after exceeded maximum allowed login attempts, default value is false
- failed
Lock BooleanEnforced On Admin - Enforce failed lockout on admin user, default value is false
GaiaPasswordPolicyLockSettingsInactivitySettings, GaiaPasswordPolicyLockSettingsInactivitySettingsArgs
- Inactivity
Threshold doubleDays - Inactivity days to password expiration lockout, default value is 365 days
- Lock
Unused boolAccounts Enabled - Password lock unused accounts, default: false
- Inactivity
Threshold float64Days - Inactivity days to password expiration lockout, default value is 365 days
- Lock
Unused boolAccounts Enabled - Password lock unused accounts, default: false
- inactivity_
threshold_ numberdays - Inactivity days to password expiration lockout, default value is 365 days
- lock_
unused_ boolaccounts_ enabled - Password lock unused accounts, default: false
- inactivity
Threshold DoubleDays - Inactivity days to password expiration lockout, default value is 365 days
- lock
Unused BooleanAccounts Enabled - Password lock unused accounts, default: false
- inactivity
Threshold numberDays - Inactivity days to password expiration lockout, default value is 365 days
- lock
Unused booleanAccounts Enabled - Password lock unused accounts, default: false
- inactivity_
threshold_ floatdays - Inactivity days to password expiration lockout, default value is 365 days
- lock_
unused_ boolaccounts_ enabled - Password lock unused accounts, default: false
- inactivity
Threshold NumberDays - Inactivity days to password expiration lockout, default value is 365 days
- lock
Unused BooleanAccounts Enabled - Password lock unused accounts, default: false
GaiaPasswordPolicyPasswordHistory, GaiaPasswordPolicyPasswordHistoryArgs
- Check
History boolEnabled - Password history check, default value is false
- Repeated
History doubleLength - Password history length, default value is 10 entries
- Check
History boolEnabled - Password history check, default value is false
- Repeated
History float64Length - Password history length, default value is 10 entries
- check_
history_ boolenabled - Password history check, default value is false
- repeated_
history_ numberlength - Password history length, default value is 10 entries
- check
History BooleanEnabled - Password history check, default value is false
- repeated
History DoubleLength - Password history length, default value is 10 entries
- check
History booleanEnabled - Password history check, default value is false
- repeated
History numberLength - Password history length, default value is 10 entries
- check_
history_ boolenabled - Password history check, default value is false
- repeated_
history_ floatlength - Password history length, default value is 10 entries
- check
History BooleanEnabled - Password history check, default value is false
- repeated
History NumberLength - Password history length, default value is 10 entries
GaiaPasswordPolicyPasswordStrength, GaiaPasswordPolicyPasswordStrengthArgs
- Complexity double
- default value is 2
- Minimum
Length double - default length is 6
- Palindrome
Check boolEnabled - Password palindrome check, default value is true
- Complexity float64
- default value is 2
- Minimum
Length float64 - default length is 6
- Palindrome
Check boolEnabled - Password palindrome check, default value is true
- complexity number
- default value is 2
- minimum_
length number - default length is 6
- palindrome_
check_ boolenabled - Password palindrome check, default value is true
- complexity Double
- default value is 2
- minimum
Length Double - default length is 6
- palindrome
Check BooleanEnabled - Password palindrome check, default value is true
- complexity number
- default value is 2
- minimum
Length number - default length is 6
- palindrome
Check booleanEnabled - Password palindrome check, default value is true
- complexity float
- default value is 2
- minimum_
length float - default length is 6
- palindrome_
check_ boolenabled - Password palindrome check, default value is true
- complexity Number
- default value is 2
- minimum
Length Number - default length is 6
- palindrome
Check BooleanEnabled - Password palindrome check, default value is true
Package Details
- Repository
- checkpoint checkpointsw/terraform-provider-checkpoint
- License
- Notes
- This Pulumi package is based on the
checkpointTerraform Provider.
Viewing docs for checkpoint 3.2.0
published on Monday, Jun 15, 2026 by checkpointsw
published on Monday, Jun 15, 2026 by checkpointsw