cloudflare.getZeroTrustDevicePostureRules

Cloudflare v6.13.0, Jan 21 26

Viewing docs for Cloudflare v6.13.0
published on Wednesday, Jan 21, 2026 by Pulumi

Schema (JSON)

pulumi/pulumi-cloudflare

Viewing docs for Cloudflare v6.13.0
published on Wednesday, Jan 21, 2026 by Pulumi

Schema (JSON)

pulumi/pulumi-cloudflare

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as cloudflare from "@pulumi/cloudflare";

const exampleZeroTrustDevicePostureRules = cloudflare.getZeroTrustDevicePostureRules({
    accountId: "699d98642c564d2e855e9661899b7252",
});

import pulumi
import pulumi_cloudflare as cloudflare

example_zero_trust_device_posture_rules = cloudflare.get_zero_trust_device_posture_rules(account_id="699d98642c564d2e855e9661899b7252")

package main

import (
	"github.com/pulumi/pulumi-cloudflare/sdk/v6/go/cloudflare"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := cloudflare.LookupZeroTrustDevicePostureRules(ctx, &cloudflare.LookupZeroTrustDevicePostureRulesArgs{
			AccountId: "699d98642c564d2e855e9661899b7252",
		}, nil)
		if err != nil {
			return err
		}
		return nil
	})
}

using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Cloudflare = Pulumi.Cloudflare;

return await Deployment.RunAsync(() => 
{
    var exampleZeroTrustDevicePostureRules = Cloudflare.GetZeroTrustDevicePostureRules.Invoke(new()
    {
        AccountId = "699d98642c564d2e855e9661899b7252",
    });

});

package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.cloudflare.CloudflareFunctions;
import com.pulumi.cloudflare.inputs.GetZeroTrustDevicePostureRulesArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        final var exampleZeroTrustDevicePostureRules = CloudflareFunctions.getZeroTrustDevicePostureRules(GetZeroTrustDevicePostureRulesArgs.builder()
            .accountId("699d98642c564d2e855e9661899b7252")
            .build());

    }
}

variables:
  exampleZeroTrustDevicePostureRules:
    fn::invoke:
      function: cloudflare:getZeroTrustDevicePostureRules
      arguments:
        accountId: 699d98642c564d2e855e9661899b7252

Using getZeroTrustDevicePostureRules

Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.

function getZeroTrustDevicePostureRules(args: GetZeroTrustDevicePostureRulesArgs, opts?: InvokeOptions): Promise<GetZeroTrustDevicePostureRulesResult>
function getZeroTrustDevicePostureRulesOutput(args: GetZeroTrustDevicePostureRulesOutputArgs, opts?: InvokeOptions): Output<GetZeroTrustDevicePostureRulesResult>

def get_zero_trust_device_posture_rules(account_id: Optional[str] = None,
                                        max_items: Optional[int] = None,
                                        opts: Optional[InvokeOptions] = None) -> GetZeroTrustDevicePostureRulesResult
def get_zero_trust_device_posture_rules_output(account_id: Optional[pulumi.Input[str]] = None,
                                        max_items: Optional[pulumi.Input[int]] = None,
                                        opts: Optional[InvokeOptions] = None) -> Output[GetZeroTrustDevicePostureRulesResult]

func LookupZeroTrustDevicePostureRules(ctx *Context, args *LookupZeroTrustDevicePostureRulesArgs, opts ...InvokeOption) (*LookupZeroTrustDevicePostureRulesResult, error)
func LookupZeroTrustDevicePostureRulesOutput(ctx *Context, args *LookupZeroTrustDevicePostureRulesOutputArgs, opts ...InvokeOption) LookupZeroTrustDevicePostureRulesResultOutput

> Note: This function is named LookupZeroTrustDevicePostureRules in the Go SDK.

public static class GetZeroTrustDevicePostureRules 
{
    public static Task<GetZeroTrustDevicePostureRulesResult> InvokeAsync(GetZeroTrustDevicePostureRulesArgs args, InvokeOptions? opts = null)
    public static Output<GetZeroTrustDevicePostureRulesResult> Invoke(GetZeroTrustDevicePostureRulesInvokeArgs args, InvokeOptions? opts = null)
}

public static CompletableFuture<GetZeroTrustDevicePostureRulesResult> getZeroTrustDevicePostureRules(GetZeroTrustDevicePostureRulesArgs args, InvokeOptions options)
public static Output<GetZeroTrustDevicePostureRulesResult> getZeroTrustDevicePostureRules(GetZeroTrustDevicePostureRulesArgs args, InvokeOptions options)

fn::invoke:
  function: cloudflare:index/getZeroTrustDevicePostureRules:getZeroTrustDevicePostureRules
  arguments:
    # arguments dictionary

The following arguments are supported:

AccountId string
MaxItems int: Max items to fetch, default: 1000

AccountId string
MaxItems int: Max items to fetch, default: 1000

accountId String
maxItems Integer: Max items to fetch, default: 1000

accountId string
maxItems number: Max items to fetch, default: 1000

account_id str
max_items int: Max items to fetch, default: 1000

accountId String
maxItems Number: Max items to fetch, default: 1000

getZeroTrustDevicePostureRules Result

The following output properties are available:

AccountId string
Id string: The provider-assigned unique ID for this managed resource.
Results List<GetZeroTrustDevicePostureRulesResult>: The items returned by the data source
MaxItems int: Max items to fetch, default: 1000

AccountId string
Id string: The provider-assigned unique ID for this managed resource.
Results []GetZeroTrustDevicePostureRulesResult: The items returned by the data source
MaxItems int: Max items to fetch, default: 1000

accountId String
id String: The provider-assigned unique ID for this managed resource.
results List<GetZeroTrustDevicePostureRulesResult>: The items returned by the data source
maxItems Integer: Max items to fetch, default: 1000

accountId string
id string: The provider-assigned unique ID for this managed resource.
results GetZeroTrustDevicePostureRulesResult[]: The items returned by the data source
maxItems number: Max items to fetch, default: 1000

account_id str
id str: The provider-assigned unique ID for this managed resource.
results Sequence[GetZeroTrustDevicePostureRulesResult]: The items returned by the data source
max_items int: Max items to fetch, default: 1000

accountId String
id String: The provider-assigned unique ID for this managed resource.
results List<Property Map>: The items returned by the data source
maxItems Number: Max items to fetch, default: 1000

Supporting Types

GetZeroTrustDevicePostureRulesResult

Description string: The description of the device posture rule.
Expiration string: Sets the expiration time for a posture check result. If empty, the result remains valid until it is overwritten by new data from the WARP client.
Id string: API UUID.
Input GetZeroTrustDevicePostureRulesResultInput: The value to be checked against.
Matches List<GetZeroTrustDevicePostureRulesResultMatch>: The conditions that the client must match to run the rule.
Name string: The name of the device posture rule.
Schedule string: Polling frequency for the WARP client posture check. Default: 5m (poll every five minutes). Minimum: 1m.
Type string: The type of device posture rule. Available values: "file", "application", "tanium", "gateway", "warp", "diskencryption", "serialnumber", "sentinelone", "carbonblack", "firewall", "osversion", "domainjoined", "clientcertificate", "clientcertificatev2", "antivirus", "uniqueclientid", "kolide", "taniums2s", "crowdstrikes2s", "intune", "workspaceone", "sentinelones2s", "customs2s".

Description string: The description of the device posture rule.
Expiration string: Sets the expiration time for a posture check result. If empty, the result remains valid until it is overwritten by new data from the WARP client.
Id string: API UUID.
Input GetZeroTrustDevicePostureRulesResultInputType: The value to be checked against.
Matches []GetZeroTrustDevicePostureRulesResultMatch: The conditions that the client must match to run the rule.
Name string: The name of the device posture rule.
Schedule string: Polling frequency for the WARP client posture check. Default: 5m (poll every five minutes). Minimum: 1m.
Type string: The type of device posture rule. Available values: "file", "application", "tanium", "gateway", "warp", "diskencryption", "serialnumber", "sentinelone", "carbonblack", "firewall", "osversion", "domainjoined", "clientcertificate", "clientcertificatev2", "antivirus", "uniqueclientid", "kolide", "taniums2s", "crowdstrikes2s", "intune", "workspaceone", "sentinelones2s", "customs2s".

description String: The description of the device posture rule.
expiration String: Sets the expiration time for a posture check result. If empty, the result remains valid until it is overwritten by new data from the WARP client.
id String: API UUID.
input GetZeroTrustDevicePostureRulesResultInput: The value to be checked against.
matches List<GetZeroTrustDevicePostureRulesResultMatch>: The conditions that the client must match to run the rule.
name String: The name of the device posture rule.
schedule String: Polling frequency for the WARP client posture check. Default: 5m (poll every five minutes). Minimum: 1m.
type String: The type of device posture rule. Available values: "file", "application", "tanium", "gateway", "warp", "diskencryption", "serialnumber", "sentinelone", "carbonblack", "firewall", "osversion", "domainjoined", "clientcertificate", "clientcertificatev2", "antivirus", "uniqueclientid", "kolide", "taniums2s", "crowdstrikes2s", "intune", "workspaceone", "sentinelones2s", "customs2s".

description string: The description of the device posture rule.
expiration string: Sets the expiration time for a posture check result. If empty, the result remains valid until it is overwritten by new data from the WARP client.
id string: API UUID.
input GetZeroTrustDevicePostureRulesResultInput: The value to be checked against.
matches GetZeroTrustDevicePostureRulesResultMatch[]: The conditions that the client must match to run the rule.
name string: The name of the device posture rule.
schedule string: Polling frequency for the WARP client posture check. Default: 5m (poll every five minutes). Minimum: 1m.
type string: The type of device posture rule. Available values: "file", "application", "tanium", "gateway", "warp", "diskencryption", "serialnumber", "sentinelone", "carbonblack", "firewall", "osversion", "domainjoined", "clientcertificate", "clientcertificatev2", "antivirus", "uniqueclientid", "kolide", "taniums2s", "crowdstrikes2s", "intune", "workspaceone", "sentinelones2s", "customs2s".

description str: The description of the device posture rule.
expiration str: Sets the expiration time for a posture check result. If empty, the result remains valid until it is overwritten by new data from the WARP client.
id str: API UUID.
input GetZeroTrustDevicePostureRulesResultInput: The value to be checked against.
matches Sequence[GetZeroTrustDevicePostureRulesResultMatch]: The conditions that the client must match to run the rule.
name str: The name of the device posture rule.
schedule str: Polling frequency for the WARP client posture check. Default: 5m (poll every five minutes). Minimum: 1m.
type str: The type of device posture rule. Available values: "file", "application", "tanium", "gateway", "warp", "diskencryption", "serialnumber", "sentinelone", "carbonblack", "firewall", "osversion", "domainjoined", "clientcertificate", "clientcertificatev2", "antivirus", "uniqueclientid", "kolide", "taniums2s", "crowdstrikes2s", "intune", "workspaceone", "sentinelones2s", "customs2s".

description String: The description of the device posture rule.
expiration String: Sets the expiration time for a posture check result. If empty, the result remains valid until it is overwritten by new data from the WARP client.
id String: API UUID.
input Property Map: The value to be checked against.
matches List<Property Map>: The conditions that the client must match to run the rule.
name String: The name of the device posture rule.
schedule String: Polling frequency for the WARP client posture check. Default: 5m (poll every five minutes). Minimum: 1m.
type String: The type of device posture rule. Available values: "file", "application", "tanium", "gateway", "warp", "diskencryption", "serialnumber", "sentinelone", "carbonblack", "firewall", "osversion", "domainjoined", "clientcertificate", "clientcertificatev2", "antivirus", "uniqueclientid", "kolide", "taniums2s", "crowdstrikes2s", "intune", "workspaceone", "sentinelones2s", "customs2s".

GetZeroTrustDevicePostureRulesResultInput

ActiveThreats double: The Number of active threats.
CertificateId string: UUID of Cloudflare managed certificate.
CheckDisks List<string>: List of volume names to be checked for encryption.
CheckPrivateKey bool: Confirm the certificate was not imported from another device. We recommend keeping this enabled unless the certificate was deployed without a private key.
Cn string: Common Name that is protected by the certificate.
ComplianceStatus string: Compliance Status. Available values: "compliant", "noncompliant", "unknown", "notapplicable", "ingraceperiod", "error".
ConnectionId string: Posture Integration ID.
CountOperator string: Count Operator. Available values: "<", "<=", ">", ">=", "==".
Domain string: Domain.
EidLastSeen string: For more details on eid last seen, refer to the Tanium documentation.
Enabled bool: Enabled.
Exists bool: Whether or not file exists.
ExtendedKeyUsages List<string>: List of values indicating purposes for which the certificate public key can be used.
Id string: List ID.
Infected bool: Whether device is infected.
IsActive bool: Whether device is active.
IssueCount string: The Number of Issues.
LastSeen string: For more details on last seen, please refer to the Crowdstrike documentation.
Locations GetZeroTrustDevicePostureRulesResultInputLocations
NetworkStatus string: Network status of device. Available values: "connected", "disconnected", "disconnecting", "connecting".
OperatingSystem string: Operating system. Available values: "windows", "linux", "mac", "android", "ios", "chromeos".
OperationalState string: Agent operational state. Available values: "na", "partiallydisabled", "autofullydisabled", "fullydisabled", "autopartiallydisabled", "disablederror", "dbcorruption".
Operator string: Operator. Available values: "<", "<=", ">", ">=", "==".
Os string: Os Version.
OsDistroName string: Operating System Distribution Name (linux only).
OsDistroRevision string: Version of OS Distribution (linux only).
OsVersionExtra string: Additional operating system version details. For Windows, the UBR (Update Build Revision). For Mac or iOS, the Product Version Extra. For Linux, the distribution name and version.
Overall string: Overall.
Path string: File path.
RequireAll bool: Whether to check all disks for encryption.
RiskLevel string: For more details on risk level, refer to the Tanium documentation. Available values: "low", "medium", "high", "critical".
Score double: A value between 0-100 assigned to devices set by the 3rd party posture provider.
ScoreOperator string: Score Operator. Available values: "<", "<=", ">", ">=", "==".
SensorConfig string: SensorConfig.
Sha256 string: SHA-256.
State string: For more details on state, please refer to the Crowdstrike documentation. Available values: "online", "offline", "unknown".
SubjectAlternativeNames List<string>: List of certificate Subject Alternative Names.
Thumbprint string: Signing certificate thumbprint.
TotalScore double: For more details on total score, refer to the Tanium documentation.
UpdateWindowDays double: Number of days that the antivirus should be updated within.
Version string: Version of OS.
VersionOperator string: Version Operator. Available values: "<", "<=", ">", ">=", "==".

ActiveThreats float64: The Number of active threats.
CertificateId string: UUID of Cloudflare managed certificate.
CheckDisks []string: List of volume names to be checked for encryption.
CheckPrivateKey bool: Confirm the certificate was not imported from another device. We recommend keeping this enabled unless the certificate was deployed without a private key.
Cn string: Common Name that is protected by the certificate.
ComplianceStatus string: Compliance Status. Available values: "compliant", "noncompliant", "unknown", "notapplicable", "ingraceperiod", "error".
ConnectionId string: Posture Integration ID.
CountOperator string: Count Operator. Available values: "<", "<=", ">", ">=", "==".
Domain string: Domain.
EidLastSeen string: For more details on eid last seen, refer to the Tanium documentation.
Enabled bool: Enabled.
Exists bool: Whether or not file exists.
ExtendedKeyUsages []string: List of values indicating purposes for which the certificate public key can be used.
Id string: List ID.
Infected bool: Whether device is infected.
IsActive bool: Whether device is active.
IssueCount string: The Number of Issues.
LastSeen string: For more details on last seen, please refer to the Crowdstrike documentation.
Locations GetZeroTrustDevicePostureRulesResultInputLocations
NetworkStatus string: Network status of device. Available values: "connected", "disconnected", "disconnecting", "connecting".
OperatingSystem string: Operating system. Available values: "windows", "linux", "mac", "android", "ios", "chromeos".
OperationalState string: Agent operational state. Available values: "na", "partiallydisabled", "autofullydisabled", "fullydisabled", "autopartiallydisabled", "disablederror", "dbcorruption".
Operator string: Operator. Available values: "<", "<=", ">", ">=", "==".
Os string: Os Version.
OsDistroName string: Operating System Distribution Name (linux only).
OsDistroRevision string: Version of OS Distribution (linux only).
OsVersionExtra string: Additional operating system version details. For Windows, the UBR (Update Build Revision). For Mac or iOS, the Product Version Extra. For Linux, the distribution name and version.
Overall string: Overall.
Path string: File path.
RequireAll bool: Whether to check all disks for encryption.
RiskLevel string: For more details on risk level, refer to the Tanium documentation. Available values: "low", "medium", "high", "critical".
Score float64: A value between 0-100 assigned to devices set by the 3rd party posture provider.
ScoreOperator string: Score Operator. Available values: "<", "<=", ">", ">=", "==".
SensorConfig string: SensorConfig.
Sha256 string: SHA-256.
State string: For more details on state, please refer to the Crowdstrike documentation. Available values: "online", "offline", "unknown".
SubjectAlternativeNames []string: List of certificate Subject Alternative Names.
Thumbprint string: Signing certificate thumbprint.
TotalScore float64: For more details on total score, refer to the Tanium documentation.
UpdateWindowDays float64: Number of days that the antivirus should be updated within.
Version string: Version of OS.
VersionOperator string: Version Operator. Available values: "<", "<=", ">", ">=", "==".

activeThreats Double: The Number of active threats.
certificateId String: UUID of Cloudflare managed certificate.
checkDisks List<String>: List of volume names to be checked for encryption.
checkPrivateKey Boolean: Confirm the certificate was not imported from another device. We recommend keeping this enabled unless the certificate was deployed without a private key.
cn String: Common Name that is protected by the certificate.
complianceStatus String: Compliance Status. Available values: "compliant", "noncompliant", "unknown", "notapplicable", "ingraceperiod", "error".
connectionId String: Posture Integration ID.
countOperator String: Count Operator. Available values: "<", "<=", ">", ">=", "==".
domain String: Domain.
eidLastSeen String: For more details on eid last seen, refer to the Tanium documentation.
enabled Boolean: Enabled.
exists Boolean: Whether or not file exists.
extendedKeyUsages List<String>: List of values indicating purposes for which the certificate public key can be used.
id String: List ID.
infected Boolean: Whether device is infected.
isActive Boolean: Whether device is active.
issueCount String: The Number of Issues.
lastSeen String: For more details on last seen, please refer to the Crowdstrike documentation.
locations GetZeroTrustDevicePostureRulesResultInputLocations
networkStatus String: Network status of device. Available values: "connected", "disconnected", "disconnecting", "connecting".
operatingSystem String: Operating system. Available values: "windows", "linux", "mac", "android", "ios", "chromeos".
operationalState String: Agent operational state. Available values: "na", "partiallydisabled", "autofullydisabled", "fullydisabled", "autopartiallydisabled", "disablederror", "dbcorruption".
operator String: Operator. Available values: "<", "<=", ">", ">=", "==".
os String: Os Version.
osDistroName String: Operating System Distribution Name (linux only).
osDistroRevision String: Version of OS Distribution (linux only).
osVersionExtra String: Additional operating system version details. For Windows, the UBR (Update Build Revision). For Mac or iOS, the Product Version Extra. For Linux, the distribution name and version.
overall String: Overall.
path String: File path.
requireAll Boolean: Whether to check all disks for encryption.
riskLevel String: For more details on risk level, refer to the Tanium documentation. Available values: "low", "medium", "high", "critical".
score Double: A value between 0-100 assigned to devices set by the 3rd party posture provider.
scoreOperator String: Score Operator. Available values: "<", "<=", ">", ">=", "==".
sensorConfig String: SensorConfig.
sha256 String: SHA-256.
state String: For more details on state, please refer to the Crowdstrike documentation. Available values: "online", "offline", "unknown".
subjectAlternativeNames List<String>: List of certificate Subject Alternative Names.
thumbprint String: Signing certificate thumbprint.
totalScore Double: For more details on total score, refer to the Tanium documentation.
updateWindowDays Double: Number of days that the antivirus should be updated within.
version String: Version of OS.
versionOperator String: Version Operator. Available values: "<", "<=", ">", ">=", "==".

activeThreats number: The Number of active threats.
certificateId string: UUID of Cloudflare managed certificate.
checkDisks string[]: List of volume names to be checked for encryption.
checkPrivateKey boolean: Confirm the certificate was not imported from another device. We recommend keeping this enabled unless the certificate was deployed without a private key.
cn string: Common Name that is protected by the certificate.
complianceStatus string: Compliance Status. Available values: "compliant", "noncompliant", "unknown", "notapplicable", "ingraceperiod", "error".
connectionId string: Posture Integration ID.
countOperator string: Count Operator. Available values: "<", "<=", ">", ">=", "==".
domain string: Domain.
eidLastSeen string: For more details on eid last seen, refer to the Tanium documentation.
enabled boolean: Enabled.
exists boolean: Whether or not file exists.
extendedKeyUsages string[]: List of values indicating purposes for which the certificate public key can be used.
id string: List ID.
infected boolean: Whether device is infected.
isActive boolean: Whether device is active.
issueCount string: The Number of Issues.
lastSeen string: For more details on last seen, please refer to the Crowdstrike documentation.
locations GetZeroTrustDevicePostureRulesResultInputLocations
networkStatus string: Network status of device. Available values: "connected", "disconnected", "disconnecting", "connecting".
operatingSystem string: Operating system. Available values: "windows", "linux", "mac", "android", "ios", "chromeos".
operationalState string: Agent operational state. Available values: "na", "partiallydisabled", "autofullydisabled", "fullydisabled", "autopartiallydisabled", "disablederror", "dbcorruption".
operator string: Operator. Available values: "<", "<=", ">", ">=", "==".
os string: Os Version.
osDistroName string: Operating System Distribution Name (linux only).
osDistroRevision string: Version of OS Distribution (linux only).
osVersionExtra string: Additional operating system version details. For Windows, the UBR (Update Build Revision). For Mac or iOS, the Product Version Extra. For Linux, the distribution name and version.
overall string: Overall.
path string: File path.
requireAll boolean: Whether to check all disks for encryption.
riskLevel string: For more details on risk level, refer to the Tanium documentation. Available values: "low", "medium", "high", "critical".
score number: A value between 0-100 assigned to devices set by the 3rd party posture provider.
scoreOperator string: Score Operator. Available values: "<", "<=", ">", ">=", "==".
sensorConfig string: SensorConfig.
sha256 string: SHA-256.
state string: For more details on state, please refer to the Crowdstrike documentation. Available values: "online", "offline", "unknown".
subjectAlternativeNames string[]: List of certificate Subject Alternative Names.
thumbprint string: Signing certificate thumbprint.
totalScore number: For more details on total score, refer to the Tanium documentation.
updateWindowDays number: Number of days that the antivirus should be updated within.
version string: Version of OS.
versionOperator string: Version Operator. Available values: "<", "<=", ">", ">=", "==".

active_threats float: The Number of active threats.
certificate_id str: UUID of Cloudflare managed certificate.
check_disks Sequence[str]: List of volume names to be checked for encryption.
check_private_key bool: Confirm the certificate was not imported from another device. We recommend keeping this enabled unless the certificate was deployed without a private key.
cn str: Common Name that is protected by the certificate.
compliance_status str: Compliance Status. Available values: "compliant", "noncompliant", "unknown", "notapplicable", "ingraceperiod", "error".
connection_id str: Posture Integration ID.
count_operator str: Count Operator. Available values: "<", "<=", ">", ">=", "==".
domain str: Domain.
eid_last_seen str: For more details on eid last seen, refer to the Tanium documentation.
enabled bool: Enabled.
exists bool: Whether or not file exists.
extended_key_usages Sequence[str]: List of values indicating purposes for which the certificate public key can be used.
id str: List ID.
infected bool: Whether device is infected.
is_active bool: Whether device is active.
issue_count str: The Number of Issues.
last_seen str: For more details on last seen, please refer to the Crowdstrike documentation.
locations GetZeroTrustDevicePostureRulesResultInputLocations
network_status str: Network status of device. Available values: "connected", "disconnected", "disconnecting", "connecting".
operating_system str: Operating system. Available values: "windows", "linux", "mac", "android", "ios", "chromeos".
operational_state str: Agent operational state. Available values: "na", "partiallydisabled", "autofullydisabled", "fullydisabled", "autopartiallydisabled", "disablederror", "dbcorruption".
operator str: Operator. Available values: "<", "<=", ">", ">=", "==".
os str: Os Version.
os_distro_name str: Operating System Distribution Name (linux only).
os_distro_revision str: Version of OS Distribution (linux only).
os_version_extra str: Additional operating system version details. For Windows, the UBR (Update Build Revision). For Mac or iOS, the Product Version Extra. For Linux, the distribution name and version.
overall str: Overall.
path str: File path.
require_all bool: Whether to check all disks for encryption.
risk_level str: For more details on risk level, refer to the Tanium documentation. Available values: "low", "medium", "high", "critical".
score float: A value between 0-100 assigned to devices set by the 3rd party posture provider.
score_operator str: Score Operator. Available values: "<", "<=", ">", ">=", "==".
sensor_config str: SensorConfig.
sha256 str: SHA-256.
state str: For more details on state, please refer to the Crowdstrike documentation. Available values: "online", "offline", "unknown".
subject_alternative_names Sequence[str]: List of certificate Subject Alternative Names.
thumbprint str: Signing certificate thumbprint.
total_score float: For more details on total score, refer to the Tanium documentation.
update_window_days float: Number of days that the antivirus should be updated within.
version str: Version of OS.
version_operator str: Version Operator. Available values: "<", "<=", ">", ">=", "==".

activeThreats Number: The Number of active threats.
certificateId String: UUID of Cloudflare managed certificate.
checkDisks List<String>: List of volume names to be checked for encryption.
checkPrivateKey Boolean: Confirm the certificate was not imported from another device. We recommend keeping this enabled unless the certificate was deployed without a private key.
cn String: Common Name that is protected by the certificate.
complianceStatus String: Compliance Status. Available values: "compliant", "noncompliant", "unknown", "notapplicable", "ingraceperiod", "error".
connectionId String: Posture Integration ID.
countOperator String: Count Operator. Available values: "<", "<=", ">", ">=", "==".
domain String: Domain.
eidLastSeen String: For more details on eid last seen, refer to the Tanium documentation.
enabled Boolean: Enabled.
exists Boolean: Whether or not file exists.
extendedKeyUsages List<String>: List of values indicating purposes for which the certificate public key can be used.
id String: List ID.
infected Boolean: Whether device is infected.
isActive Boolean: Whether device is active.
issueCount String: The Number of Issues.
lastSeen String: For more details on last seen, please refer to the Crowdstrike documentation.
locations Property Map
networkStatus String: Network status of device. Available values: "connected", "disconnected", "disconnecting", "connecting".
operatingSystem String: Operating system. Available values: "windows", "linux", "mac", "android", "ios", "chromeos".
operationalState String: Agent operational state. Available values: "na", "partiallydisabled", "autofullydisabled", "fullydisabled", "autopartiallydisabled", "disablederror", "dbcorruption".
operator String: Operator. Available values: "<", "<=", ">", ">=", "==".
os String: Os Version.
osDistroName String: Operating System Distribution Name (linux only).
osDistroRevision String: Version of OS Distribution (linux only).
osVersionExtra String: Additional operating system version details. For Windows, the UBR (Update Build Revision). For Mac or iOS, the Product Version Extra. For Linux, the distribution name and version.
overall String: Overall.
path String: File path.
requireAll Boolean: Whether to check all disks for encryption.
riskLevel String: For more details on risk level, refer to the Tanium documentation. Available values: "low", "medium", "high", "critical".
score Number: A value between 0-100 assigned to devices set by the 3rd party posture provider.
scoreOperator String: Score Operator. Available values: "<", "<=", ">", ">=", "==".
sensorConfig String: SensorConfig.
sha256 String: SHA-256.
state String: For more details on state, please refer to the Crowdstrike documentation. Available values: "online", "offline", "unknown".
subjectAlternativeNames List<String>: List of certificate Subject Alternative Names.
thumbprint String: Signing certificate thumbprint.
totalScore Number: For more details on total score, refer to the Tanium documentation.
updateWindowDays Number: Number of days that the antivirus should be updated within.
version String: Version of OS.
versionOperator String: Version Operator. Available values: "<", "<=", ">", ">=", "==".

GetZeroTrustDevicePostureRulesResultInputLocations

Paths List<string>: List of paths to check for client certificate on linux.
TrustStores List<string>: List of trust stores to check for client certificate.

Paths []string: List of paths to check for client certificate on linux.
TrustStores []string: List of trust stores to check for client certificate.

paths List<String>: List of paths to check for client certificate on linux.
trustStores List<String>: List of trust stores to check for client certificate.

paths string[]: List of paths to check for client certificate on linux.
trustStores string[]: List of trust stores to check for client certificate.

paths Sequence[str]: List of paths to check for client certificate on linux.
trust_stores Sequence[str]: List of trust stores to check for client certificate.

paths List<String>: List of paths to check for client certificate on linux.
trustStores List<String>: List of trust stores to check for client certificate.

GetZeroTrustDevicePostureRulesResultMatch

Platform string: Available values: "windows", "mac", "linux", "android", "ios", "chromeos".

Platform string: Available values: "windows", "mac", "linux", "android", "ios", "chromeos".

platform String: Available values: "windows", "mac", "linux", "android", "ios", "chromeos".

platform string: Available values: "windows", "mac", "linux", "android", "ios", "chromeos".

platform str: Available values: "windows", "mac", "linux", "android", "ios", "chromeos".

platform String: Available values: "windows", "mac", "linux", "android", "ios", "chromeos".

Package Details

Repository: Cloudflare pulumi/pulumi-cloudflare
License: Apache-2.0
Notes: This Pulumi package is based on the cloudflare Terraform Provider.

Viewing docs for Cloudflare v6.13.0
published on Wednesday, Jan 21, 2026 by Pulumi

Schema (JSON)

pulumi/pulumi-cloudflare

cloudflare.getZeroTrustDevicePostureRules

On this page

On this page

Example Usage

Using getZeroTrustDevicePostureRules

getZeroTrustDevicePostureRules Result

Supporting Types

GetZeroTrustDevicePostureRulesResult

GetZeroTrustDevicePostureRulesResultInput

GetZeroTrustDevicePostureRulesResultInputLocations

GetZeroTrustDevicePostureRulesResultMatch

Package Details

On this page

On this page