1. Packages
  2. Cloudflare
  3. API Docs
  4. DevicePostureRule
Cloudflare v5.11.0 published on Wednesday, Sep 20, 2023 by Pulumi

cloudflare.DevicePostureRule

Explore with Pulumi AI

cloudflare logo
Cloudflare v5.11.0 published on Wednesday, Sep 20, 2023 by Pulumi

    Provides a Cloudflare Device Posture Rule resource. Device posture rules configure security policies for device posture checks.

    Example Usage

    using System.Collections.Generic;
    using System.Linq;
    using Pulumi;
    using Cloudflare = Pulumi.Cloudflare;
    
    return await Deployment.RunAsync(() => 
    {
        var eaxmple = new Cloudflare.DevicePostureRule("eaxmple", new()
        {
            AccountId = "f037e56e89293a057740de681ac9abbe",
            Name = "Corporate devices posture rule",
            Type = "os_version",
            Description = "Device posture rule for corporate devices.",
            Schedule = "24h",
            Expiration = "24h",
            Matches = new[]
            {
                new Cloudflare.Inputs.DevicePostureRuleMatchArgs
                {
                    Platform = "linux",
                },
            },
            Inputs = new[]
            {
                new Cloudflare.Inputs.DevicePostureRuleInputArgs
                {
                    Id = cloudflare_teams_list.Corporate_devices.Id,
                    Version = "1.0.0",
                    Operator = "<",
                    OsDistroName = "ubuntu",
                    OsDistroRevision = "1.0.0",
                },
            },
        });
    
    });
    
    package main
    
    import (
    	"github.com/pulumi/pulumi-cloudflare/sdk/v5/go/cloudflare"
    	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
    )
    
    func main() {
    	pulumi.Run(func(ctx *pulumi.Context) error {
    		_, err := cloudflare.NewDevicePostureRule(ctx, "eaxmple", &cloudflare.DevicePostureRuleArgs{
    			AccountId:   pulumi.String("f037e56e89293a057740de681ac9abbe"),
    			Name:        pulumi.String("Corporate devices posture rule"),
    			Type:        pulumi.String("os_version"),
    			Description: pulumi.String("Device posture rule for corporate devices."),
    			Schedule:    pulumi.String("24h"),
    			Expiration:  pulumi.String("24h"),
    			Matches: cloudflare.DevicePostureRuleMatchArray{
    				&cloudflare.DevicePostureRuleMatchArgs{
    					Platform: pulumi.String("linux"),
    				},
    			},
    			Inputs: cloudflare.DevicePostureRuleInputTypeArray{
    				&cloudflare.DevicePostureRuleInputTypeArgs{
    					Id:               pulumi.Any(cloudflare_teams_list.Corporate_devices.Id),
    					Version:          pulumi.String("1.0.0"),
    					Operator:         pulumi.String("<"),
    					OsDistroName:     pulumi.String("ubuntu"),
    					OsDistroRevision: pulumi.String("1.0.0"),
    				},
    			},
    		})
    		if err != nil {
    			return err
    		}
    		return nil
    	})
    }
    
    package generated_program;
    
    import com.pulumi.Context;
    import com.pulumi.Pulumi;
    import com.pulumi.core.Output;
    import com.pulumi.cloudflare.DevicePostureRule;
    import com.pulumi.cloudflare.DevicePostureRuleArgs;
    import com.pulumi.cloudflare.inputs.DevicePostureRuleMatchArgs;
    import com.pulumi.cloudflare.inputs.DevicePostureRuleInputArgs;
    import java.util.List;
    import java.util.ArrayList;
    import java.util.Map;
    import java.io.File;
    import java.nio.file.Files;
    import java.nio.file.Paths;
    
    public class App {
        public static void main(String[] args) {
            Pulumi.run(App::stack);
        }
    
        public static void stack(Context ctx) {
            var eaxmple = new DevicePostureRule("eaxmple", DevicePostureRuleArgs.builder()        
                .accountId("f037e56e89293a057740de681ac9abbe")
                .name("Corporate devices posture rule")
                .type("os_version")
                .description("Device posture rule for corporate devices.")
                .schedule("24h")
                .expiration("24h")
                .matches(DevicePostureRuleMatchArgs.builder()
                    .platform("linux")
                    .build())
                .inputs(DevicePostureRuleInputArgs.builder()
                    .id(cloudflare_teams_list.corporate_devices().id())
                    .version("1.0.0")
                    .operator("<")
                    .osDistroName("ubuntu")
                    .osDistroRevision("1.0.0")
                    .build())
                .build());
    
        }
    }
    
    import pulumi
    import pulumi_cloudflare as cloudflare
    
    eaxmple = cloudflare.DevicePostureRule("eaxmple",
        account_id="f037e56e89293a057740de681ac9abbe",
        name="Corporate devices posture rule",
        type="os_version",
        description="Device posture rule for corporate devices.",
        schedule="24h",
        expiration="24h",
        matches=[cloudflare.DevicePostureRuleMatchArgs(
            platform="linux",
        )],
        inputs=[cloudflare.DevicePostureRuleInputArgs(
            id=cloudflare_teams_list["corporate_devices"]["id"],
            version="1.0.0",
            operator="<",
            os_distro_name="ubuntu",
            os_distro_revision="1.0.0",
        )])
    
    import * as pulumi from "@pulumi/pulumi";
    import * as cloudflare from "@pulumi/cloudflare";
    
    const eaxmple = new cloudflare.DevicePostureRule("eaxmple", {
        accountId: "f037e56e89293a057740de681ac9abbe",
        name: "Corporate devices posture rule",
        type: "os_version",
        description: "Device posture rule for corporate devices.",
        schedule: "24h",
        expiration: "24h",
        matches: [{
            platform: "linux",
        }],
        inputs: [{
            id: cloudflare_teams_list.corporate_devices.id,
            version: "1.0.0",
            operator: "<",
            osDistroName: "ubuntu",
            osDistroRevision: "1.0.0",
        }],
    });
    
    resources:
      eaxmple:
        type: cloudflare:DevicePostureRule
        properties:
          accountId: f037e56e89293a057740de681ac9abbe
          name: Corporate devices posture rule
          type: os_version
          description: Device posture rule for corporate devices.
          schedule: 24h
          expiration: 24h
          matches:
            - platform: linux
          inputs:
            - id: ${cloudflare_teams_list.corporate_devices.id}
              version: 1.0.0
              operator: <
              osDistroName: ubuntu
              osDistroRevision: 1.0.0
    

    Create DevicePostureRule Resource

    new DevicePostureRule(name: string, args: DevicePostureRuleArgs, opts?: CustomResourceOptions);
    @overload
    def DevicePostureRule(resource_name: str,
                          opts: Optional[ResourceOptions] = None,
                          account_id: Optional[str] = None,
                          description: Optional[str] = None,
                          expiration: Optional[str] = None,
                          inputs: Optional[Sequence[DevicePostureRuleInputArgs]] = None,
                          matches: Optional[Sequence[DevicePostureRuleMatchArgs]] = None,
                          name: Optional[str] = None,
                          schedule: Optional[str] = None,
                          type: Optional[str] = None)
    @overload
    def DevicePostureRule(resource_name: str,
                          args: DevicePostureRuleArgs,
                          opts: Optional[ResourceOptions] = None)
    func NewDevicePostureRule(ctx *Context, name string, args DevicePostureRuleArgs, opts ...ResourceOption) (*DevicePostureRule, error)
    public DevicePostureRule(string name, DevicePostureRuleArgs args, CustomResourceOptions? opts = null)
    public DevicePostureRule(String name, DevicePostureRuleArgs args)
    public DevicePostureRule(String name, DevicePostureRuleArgs args, CustomResourceOptions options)
    
    type: cloudflare:DevicePostureRule
    properties: # The arguments to resource properties.
    options: # Bag of options to control resource's behavior.
    
    
    name string
    The unique name of the resource.
    args DevicePostureRuleArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    resource_name str
    The unique name of the resource.
    args DevicePostureRuleArgs
    The arguments to resource properties.
    opts ResourceOptions
    Bag of options to control resource's behavior.
    ctx Context
    Context object for the current deployment.
    name string
    The unique name of the resource.
    args DevicePostureRuleArgs
    The arguments to resource properties.
    opts ResourceOption
    Bag of options to control resource's behavior.
    name string
    The unique name of the resource.
    args DevicePostureRuleArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    name String
    The unique name of the resource.
    args DevicePostureRuleArgs
    The arguments to resource properties.
    options CustomResourceOptions
    Bag of options to control resource's behavior.

    DevicePostureRule Resource Properties

    To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

    Inputs

    The DevicePostureRule resource accepts the following input properties:

    AccountId string

    The account identifier to target for the resource.

    Type string

    The device posture rule type. Available values: serial_number, file, application, gateway, warp, domain_joined, os_version, disk_encryption, firewall, client_certificate, workspace_one, unique_client_id, crowdstrike_s2s, sentinelone, kolide, tanium_s2s, intune, sentinelone_s2s.

    Description string
    Expiration string

    Expire posture results after the specified amount of time. Must be in the format 1h or 30m. Valid units are h and m.

    Inputs List<DevicePostureRuleInput>
    Matches List<DevicePostureRuleMatch>

    The conditions that the client must match to run the rule.

    Name string

    Name of the device posture rule.

    Schedule string

    Tells the client when to run the device posture check. Must be in the format 1h or 30m. Valid units are h and m.

    AccountId string

    The account identifier to target for the resource.

    Type string

    The device posture rule type. Available values: serial_number, file, application, gateway, warp, domain_joined, os_version, disk_encryption, firewall, client_certificate, workspace_one, unique_client_id, crowdstrike_s2s, sentinelone, kolide, tanium_s2s, intune, sentinelone_s2s.

    Description string
    Expiration string

    Expire posture results after the specified amount of time. Must be in the format 1h or 30m. Valid units are h and m.

    Inputs []DevicePostureRuleInputTypeArgs
    Matches []DevicePostureRuleMatchArgs

    The conditions that the client must match to run the rule.

    Name string

    Name of the device posture rule.

    Schedule string

    Tells the client when to run the device posture check. Must be in the format 1h or 30m. Valid units are h and m.

    accountId String

    The account identifier to target for the resource.

    type String

    The device posture rule type. Available values: serial_number, file, application, gateway, warp, domain_joined, os_version, disk_encryption, firewall, client_certificate, workspace_one, unique_client_id, crowdstrike_s2s, sentinelone, kolide, tanium_s2s, intune, sentinelone_s2s.

    description String
    expiration String

    Expire posture results after the specified amount of time. Must be in the format 1h or 30m. Valid units are h and m.

    inputs List<DevicePostureRuleInput>
    matches List<DevicePostureRuleMatch>

    The conditions that the client must match to run the rule.

    name String

    Name of the device posture rule.

    schedule String

    Tells the client when to run the device posture check. Must be in the format 1h or 30m. Valid units are h and m.

    accountId string

    The account identifier to target for the resource.

    type string

    The device posture rule type. Available values: serial_number, file, application, gateway, warp, domain_joined, os_version, disk_encryption, firewall, client_certificate, workspace_one, unique_client_id, crowdstrike_s2s, sentinelone, kolide, tanium_s2s, intune, sentinelone_s2s.

    description string
    expiration string

    Expire posture results after the specified amount of time. Must be in the format 1h or 30m. Valid units are h and m.

    inputs DevicePostureRuleInput[]
    matches DevicePostureRuleMatch[]

    The conditions that the client must match to run the rule.

    name string

    Name of the device posture rule.

    schedule string

    Tells the client when to run the device posture check. Must be in the format 1h or 30m. Valid units are h and m.

    account_id str

    The account identifier to target for the resource.

    type str

    The device posture rule type. Available values: serial_number, file, application, gateway, warp, domain_joined, os_version, disk_encryption, firewall, client_certificate, workspace_one, unique_client_id, crowdstrike_s2s, sentinelone, kolide, tanium_s2s, intune, sentinelone_s2s.

    description str
    expiration str

    Expire posture results after the specified amount of time. Must be in the format 1h or 30m. Valid units are h and m.

    inputs Sequence[DevicePostureRuleInputArgs]
    matches Sequence[DevicePostureRuleMatchArgs]

    The conditions that the client must match to run the rule.

    name str

    Name of the device posture rule.

    schedule str

    Tells the client when to run the device posture check. Must be in the format 1h or 30m. Valid units are h and m.

    accountId String

    The account identifier to target for the resource.

    type String

    The device posture rule type. Available values: serial_number, file, application, gateway, warp, domain_joined, os_version, disk_encryption, firewall, client_certificate, workspace_one, unique_client_id, crowdstrike_s2s, sentinelone, kolide, tanium_s2s, intune, sentinelone_s2s.

    description String
    expiration String

    Expire posture results after the specified amount of time. Must be in the format 1h or 30m. Valid units are h and m.

    inputs List<Property Map>
    matches List<Property Map>

    The conditions that the client must match to run the rule.

    name String

    Name of the device posture rule.

    schedule String

    Tells the client when to run the device posture check. Must be in the format 1h or 30m. Valid units are h and m.

    Outputs

    All input properties are implicitly available as output properties. Additionally, the DevicePostureRule resource produces the following output properties:

    Id string

    The provider-assigned unique ID for this managed resource.

    Id string

    The provider-assigned unique ID for this managed resource.

    id String

    The provider-assigned unique ID for this managed resource.

    id string

    The provider-assigned unique ID for this managed resource.

    id str

    The provider-assigned unique ID for this managed resource.

    id String

    The provider-assigned unique ID for this managed resource.

    Look up Existing DevicePostureRule Resource

    Get an existing DevicePostureRule resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

    public static get(name: string, id: Input<ID>, state?: DevicePostureRuleState, opts?: CustomResourceOptions): DevicePostureRule
    @staticmethod
    def get(resource_name: str,
            id: str,
            opts: Optional[ResourceOptions] = None,
            account_id: Optional[str] = None,
            description: Optional[str] = None,
            expiration: Optional[str] = None,
            inputs: Optional[Sequence[DevicePostureRuleInputArgs]] = None,
            matches: Optional[Sequence[DevicePostureRuleMatchArgs]] = None,
            name: Optional[str] = None,
            schedule: Optional[str] = None,
            type: Optional[str] = None) -> DevicePostureRule
    func GetDevicePostureRule(ctx *Context, name string, id IDInput, state *DevicePostureRuleState, opts ...ResourceOption) (*DevicePostureRule, error)
    public static DevicePostureRule Get(string name, Input<string> id, DevicePostureRuleState? state, CustomResourceOptions? opts = null)
    public static DevicePostureRule get(String name, Output<String> id, DevicePostureRuleState state, CustomResourceOptions options)
    Resource lookup is not supported in YAML
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    resource_name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    The following state arguments are supported:
    AccountId string

    The account identifier to target for the resource.

    Description string
    Expiration string

    Expire posture results after the specified amount of time. Must be in the format 1h or 30m. Valid units are h and m.

    Inputs List<DevicePostureRuleInput>
    Matches List<DevicePostureRuleMatch>

    The conditions that the client must match to run the rule.

    Name string

    Name of the device posture rule.

    Schedule string

    Tells the client when to run the device posture check. Must be in the format 1h or 30m. Valid units are h and m.

    Type string

    The device posture rule type. Available values: serial_number, file, application, gateway, warp, domain_joined, os_version, disk_encryption, firewall, client_certificate, workspace_one, unique_client_id, crowdstrike_s2s, sentinelone, kolide, tanium_s2s, intune, sentinelone_s2s.

    AccountId string

    The account identifier to target for the resource.

    Description string
    Expiration string

    Expire posture results after the specified amount of time. Must be in the format 1h or 30m. Valid units are h and m.

    Inputs []DevicePostureRuleInputTypeArgs
    Matches []DevicePostureRuleMatchArgs

    The conditions that the client must match to run the rule.

    Name string

    Name of the device posture rule.

    Schedule string

    Tells the client when to run the device posture check. Must be in the format 1h or 30m. Valid units are h and m.

    Type string

    The device posture rule type. Available values: serial_number, file, application, gateway, warp, domain_joined, os_version, disk_encryption, firewall, client_certificate, workspace_one, unique_client_id, crowdstrike_s2s, sentinelone, kolide, tanium_s2s, intune, sentinelone_s2s.

    accountId String

    The account identifier to target for the resource.

    description String
    expiration String

    Expire posture results after the specified amount of time. Must be in the format 1h or 30m. Valid units are h and m.

    inputs List<DevicePostureRuleInput>
    matches List<DevicePostureRuleMatch>

    The conditions that the client must match to run the rule.

    name String

    Name of the device posture rule.

    schedule String

    Tells the client when to run the device posture check. Must be in the format 1h or 30m. Valid units are h and m.

    type String

    The device posture rule type. Available values: serial_number, file, application, gateway, warp, domain_joined, os_version, disk_encryption, firewall, client_certificate, workspace_one, unique_client_id, crowdstrike_s2s, sentinelone, kolide, tanium_s2s, intune, sentinelone_s2s.

    accountId string

    The account identifier to target for the resource.

    description string
    expiration string

    Expire posture results after the specified amount of time. Must be in the format 1h or 30m. Valid units are h and m.

    inputs DevicePostureRuleInput[]
    matches DevicePostureRuleMatch[]

    The conditions that the client must match to run the rule.

    name string

    Name of the device posture rule.

    schedule string

    Tells the client when to run the device posture check. Must be in the format 1h or 30m. Valid units are h and m.

    type string

    The device posture rule type. Available values: serial_number, file, application, gateway, warp, domain_joined, os_version, disk_encryption, firewall, client_certificate, workspace_one, unique_client_id, crowdstrike_s2s, sentinelone, kolide, tanium_s2s, intune, sentinelone_s2s.

    account_id str

    The account identifier to target for the resource.

    description str
    expiration str

    Expire posture results after the specified amount of time. Must be in the format 1h or 30m. Valid units are h and m.

    inputs Sequence[DevicePostureRuleInputArgs]
    matches Sequence[DevicePostureRuleMatchArgs]

    The conditions that the client must match to run the rule.

    name str

    Name of the device posture rule.

    schedule str

    Tells the client when to run the device posture check. Must be in the format 1h or 30m. Valid units are h and m.

    type str

    The device posture rule type. Available values: serial_number, file, application, gateway, warp, domain_joined, os_version, disk_encryption, firewall, client_certificate, workspace_one, unique_client_id, crowdstrike_s2s, sentinelone, kolide, tanium_s2s, intune, sentinelone_s2s.

    accountId String

    The account identifier to target for the resource.

    description String
    expiration String

    Expire posture results after the specified amount of time. Must be in the format 1h or 30m. Valid units are h and m.

    inputs List<Property Map>
    matches List<Property Map>

    The conditions that the client must match to run the rule.

    name String

    Name of the device posture rule.

    schedule String

    Tells the client when to run the device posture check. Must be in the format 1h or 30m. Valid units are h and m.

    type String

    The device posture rule type. Available values: serial_number, file, application, gateway, warp, domain_joined, os_version, disk_encryption, firewall, client_certificate, workspace_one, unique_client_id, crowdstrike_s2s, sentinelone, kolide, tanium_s2s, intune, sentinelone_s2s.

    Supporting Types

    DevicePostureRuleInput, DevicePostureRuleInputArgs

    ActiveThreats int

    The number of active threats from SentinelOne.

    CertificateId string

    The UUID of a Cloudflare managed certificate.

    CheckDisks List<string>

    Specific volume(s) to check for encryption.

    Cn string

    The common name for a certificate.

    ComplianceStatus string

    The workspace one device compliance status. Available values: compliant, noncompliant.

    ConnectionId string

    The workspace one connection id.

    CountOperator string

    The count comparison operator for kolide. Available values: >, >=, <, <=, ==.

    Domain string

    The domain that the client must join.

    EidLastSeen string

    The datetime a device last seen in RFC 3339 format from Tanium.

    Enabled bool

    True if the firewall must be enabled.

    Exists bool

    Checks if the file should exist.

    Id string

    The Teams List id.

    Infected bool

    True if SentinelOne device is infected.

    IsActive bool

    True if SentinelOne device is active.

    IssueCount string

    The number of issues for kolide.

    NetworkStatus string

    The network status from SentinelOne. Available values: connected, disconnected, disconnecting, connecting.

    Operator string

    The version comparison operator. Available values: >, >=, <, <=, ==.

    Os string

    OS signal score from Crowdstrike. Value must be between 1 and 100.

    OsDistroName string

    The operating system excluding version information.

    OsDistroRevision string

    The operating system version excluding OS name information or release name.

    Overall string

    Overall ZTA score from Crowdstrike. Value must be between 1 and 100.

    Path string

    The path to the file.

    RequireAll bool

    True if all drives must be encrypted.

    RiskLevel string

    The risk level from Tanium. Available values: low, medium, high, critical.

    Running bool

    Checks if the application should be running.

    SensorConfig string

    Sensor signal score from Crowdstrike. Value must be between 1 and 100.

    Sha256 string

    The sha256 hash of the file.

    Thumbprint string

    The thumbprint of the file certificate.

    TotalScore int

    The total score from Tanium.

    Version string

    The operating system semantic version.

    VersionOperator string

    The version comparison operator for crowdstrike. Available values: >, >=, <, <=, ==.

    ActiveThreats int

    The number of active threats from SentinelOne.

    CertificateId string

    The UUID of a Cloudflare managed certificate.

    CheckDisks []string

    Specific volume(s) to check for encryption.

    Cn string

    The common name for a certificate.

    ComplianceStatus string

    The workspace one device compliance status. Available values: compliant, noncompliant.

    ConnectionId string

    The workspace one connection id.

    CountOperator string

    The count comparison operator for kolide. Available values: >, >=, <, <=, ==.

    Domain string

    The domain that the client must join.

    EidLastSeen string

    The datetime a device last seen in RFC 3339 format from Tanium.

    Enabled bool

    True if the firewall must be enabled.

    Exists bool

    Checks if the file should exist.

    Id string

    The Teams List id.

    Infected bool

    True if SentinelOne device is infected.

    IsActive bool

    True if SentinelOne device is active.

    IssueCount string

    The number of issues for kolide.

    NetworkStatus string

    The network status from SentinelOne. Available values: connected, disconnected, disconnecting, connecting.

    Operator string

    The version comparison operator. Available values: >, >=, <, <=, ==.

    Os string

    OS signal score from Crowdstrike. Value must be between 1 and 100.

    OsDistroName string

    The operating system excluding version information.

    OsDistroRevision string

    The operating system version excluding OS name information or release name.

    Overall string

    Overall ZTA score from Crowdstrike. Value must be between 1 and 100.

    Path string

    The path to the file.

    RequireAll bool

    True if all drives must be encrypted.

    RiskLevel string

    The risk level from Tanium. Available values: low, medium, high, critical.

    Running bool

    Checks if the application should be running.

    SensorConfig string

    Sensor signal score from Crowdstrike. Value must be between 1 and 100.

    Sha256 string

    The sha256 hash of the file.

    Thumbprint string

    The thumbprint of the file certificate.

    TotalScore int

    The total score from Tanium.

    Version string

    The operating system semantic version.

    VersionOperator string

    The version comparison operator for crowdstrike. Available values: >, >=, <, <=, ==.

    activeThreats Integer

    The number of active threats from SentinelOne.

    certificateId String

    The UUID of a Cloudflare managed certificate.

    checkDisks List<String>

    Specific volume(s) to check for encryption.

    cn String

    The common name for a certificate.

    complianceStatus String

    The workspace one device compliance status. Available values: compliant, noncompliant.

    connectionId String

    The workspace one connection id.

    countOperator String

    The count comparison operator for kolide. Available values: >, >=, <, <=, ==.

    domain String

    The domain that the client must join.

    eidLastSeen String

    The datetime a device last seen in RFC 3339 format from Tanium.

    enabled Boolean

    True if the firewall must be enabled.

    exists Boolean

    Checks if the file should exist.

    id String

    The Teams List id.

    infected Boolean

    True if SentinelOne device is infected.

    isActive Boolean

    True if SentinelOne device is active.

    issueCount String

    The number of issues for kolide.

    networkStatus String

    The network status from SentinelOne. Available values: connected, disconnected, disconnecting, connecting.

    operator String

    The version comparison operator. Available values: >, >=, <, <=, ==.

    os String

    OS signal score from Crowdstrike. Value must be between 1 and 100.

    osDistroName String

    The operating system excluding version information.

    osDistroRevision String

    The operating system version excluding OS name information or release name.

    overall String

    Overall ZTA score from Crowdstrike. Value must be between 1 and 100.

    path String

    The path to the file.

    requireAll Boolean

    True if all drives must be encrypted.

    riskLevel String

    The risk level from Tanium. Available values: low, medium, high, critical.

    running Boolean

    Checks if the application should be running.

    sensorConfig String

    Sensor signal score from Crowdstrike. Value must be between 1 and 100.

    sha256 String

    The sha256 hash of the file.

    thumbprint String

    The thumbprint of the file certificate.

    totalScore Integer

    The total score from Tanium.

    version String

    The operating system semantic version.

    versionOperator String

    The version comparison operator for crowdstrike. Available values: >, >=, <, <=, ==.

    activeThreats number

    The number of active threats from SentinelOne.

    certificateId string

    The UUID of a Cloudflare managed certificate.

    checkDisks string[]

    Specific volume(s) to check for encryption.

    cn string

    The common name for a certificate.

    complianceStatus string

    The workspace one device compliance status. Available values: compliant, noncompliant.

    connectionId string

    The workspace one connection id.

    countOperator string

    The count comparison operator for kolide. Available values: >, >=, <, <=, ==.

    domain string

    The domain that the client must join.

    eidLastSeen string

    The datetime a device last seen in RFC 3339 format from Tanium.

    enabled boolean

    True if the firewall must be enabled.

    exists boolean

    Checks if the file should exist.

    id string

    The Teams List id.

    infected boolean

    True if SentinelOne device is infected.

    isActive boolean

    True if SentinelOne device is active.

    issueCount string

    The number of issues for kolide.

    networkStatus string

    The network status from SentinelOne. Available values: connected, disconnected, disconnecting, connecting.

    operator string

    The version comparison operator. Available values: >, >=, <, <=, ==.

    os string

    OS signal score from Crowdstrike. Value must be between 1 and 100.

    osDistroName string

    The operating system excluding version information.

    osDistroRevision string

    The operating system version excluding OS name information or release name.

    overall string

    Overall ZTA score from Crowdstrike. Value must be between 1 and 100.

    path string

    The path to the file.

    requireAll boolean

    True if all drives must be encrypted.

    riskLevel string

    The risk level from Tanium. Available values: low, medium, high, critical.

    running boolean

    Checks if the application should be running.

    sensorConfig string

    Sensor signal score from Crowdstrike. Value must be between 1 and 100.

    sha256 string

    The sha256 hash of the file.

    thumbprint string

    The thumbprint of the file certificate.

    totalScore number

    The total score from Tanium.

    version string

    The operating system semantic version.

    versionOperator string

    The version comparison operator for crowdstrike. Available values: >, >=, <, <=, ==.

    active_threats int

    The number of active threats from SentinelOne.

    certificate_id str

    The UUID of a Cloudflare managed certificate.

    check_disks Sequence[str]

    Specific volume(s) to check for encryption.

    cn str

    The common name for a certificate.

    compliance_status str

    The workspace one device compliance status. Available values: compliant, noncompliant.

    connection_id str

    The workspace one connection id.

    count_operator str

    The count comparison operator for kolide. Available values: >, >=, <, <=, ==.

    domain str

    The domain that the client must join.

    eid_last_seen str

    The datetime a device last seen in RFC 3339 format from Tanium.

    enabled bool

    True if the firewall must be enabled.

    exists bool

    Checks if the file should exist.

    id str

    The Teams List id.

    infected bool

    True if SentinelOne device is infected.

    is_active bool

    True if SentinelOne device is active.

    issue_count str

    The number of issues for kolide.

    network_status str

    The network status from SentinelOne. Available values: connected, disconnected, disconnecting, connecting.

    operator str

    The version comparison operator. Available values: >, >=, <, <=, ==.

    os str

    OS signal score from Crowdstrike. Value must be between 1 and 100.

    os_distro_name str

    The operating system excluding version information.

    os_distro_revision str

    The operating system version excluding OS name information or release name.

    overall str

    Overall ZTA score from Crowdstrike. Value must be between 1 and 100.

    path str

    The path to the file.

    require_all bool

    True if all drives must be encrypted.

    risk_level str

    The risk level from Tanium. Available values: low, medium, high, critical.

    running bool

    Checks if the application should be running.

    sensor_config str

    Sensor signal score from Crowdstrike. Value must be between 1 and 100.

    sha256 str

    The sha256 hash of the file.

    thumbprint str

    The thumbprint of the file certificate.

    total_score int

    The total score from Tanium.

    version str

    The operating system semantic version.

    version_operator str

    The version comparison operator for crowdstrike. Available values: >, >=, <, <=, ==.

    activeThreats Number

    The number of active threats from SentinelOne.

    certificateId String

    The UUID of a Cloudflare managed certificate.

    checkDisks List<String>

    Specific volume(s) to check for encryption.

    cn String

    The common name for a certificate.

    complianceStatus String

    The workspace one device compliance status. Available values: compliant, noncompliant.

    connectionId String

    The workspace one connection id.

    countOperator String

    The count comparison operator for kolide. Available values: >, >=, <, <=, ==.

    domain String

    The domain that the client must join.

    eidLastSeen String

    The datetime a device last seen in RFC 3339 format from Tanium.

    enabled Boolean

    True if the firewall must be enabled.

    exists Boolean

    Checks if the file should exist.

    id String

    The Teams List id.

    infected Boolean

    True if SentinelOne device is infected.

    isActive Boolean

    True if SentinelOne device is active.

    issueCount String

    The number of issues for kolide.

    networkStatus String

    The network status from SentinelOne. Available values: connected, disconnected, disconnecting, connecting.

    operator String

    The version comparison operator. Available values: >, >=, <, <=, ==.

    os String

    OS signal score from Crowdstrike. Value must be between 1 and 100.

    osDistroName String

    The operating system excluding version information.

    osDistroRevision String

    The operating system version excluding OS name information or release name.

    overall String

    Overall ZTA score from Crowdstrike. Value must be between 1 and 100.

    path String

    The path to the file.

    requireAll Boolean

    True if all drives must be encrypted.

    riskLevel String

    The risk level from Tanium. Available values: low, medium, high, critical.

    running Boolean

    Checks if the application should be running.

    sensorConfig String

    Sensor signal score from Crowdstrike. Value must be between 1 and 100.

    sha256 String

    The sha256 hash of the file.

    thumbprint String

    The thumbprint of the file certificate.

    totalScore Number

    The total score from Tanium.

    version String

    The operating system semantic version.

    versionOperator String

    The version comparison operator for crowdstrike. Available values: >, >=, <, <=, ==.

    DevicePostureRuleMatch, DevicePostureRuleMatchArgs

    Platform string

    The platform of the device. Available values: windows, mac, linux, android, ios, chromeos.

    Platform string

    The platform of the device. Available values: windows, mac, linux, android, ios, chromeos.

    platform String

    The platform of the device. Available values: windows, mac, linux, android, ios, chromeos.

    platform string

    The platform of the device. Available values: windows, mac, linux, android, ios, chromeos.

    platform str

    The platform of the device. Available values: windows, mac, linux, android, ios, chromeos.

    platform String

    The platform of the device. Available values: windows, mac, linux, android, ios, chromeos.

    Import

     $ pulumi import cloudflare:index/devicePostureRule:DevicePostureRule example <account_id>/<device_posture_rule_id>
    

    Package Details

    Repository
    Cloudflare pulumi/pulumi-cloudflare
    License
    Apache-2.0
    Notes

    This Pulumi package is based on the cloudflare Terraform Provider.

    cloudflare logo
    Cloudflare v5.11.0 published on Wednesday, Sep 20, 2023 by Pulumi