Docs Home
dome9 1.40.3 published on Monday, Apr 14, 2025 by dome9
dome9.AzureSecurityGroup
Explore with Pulumi AI
The Azure Security Group resource has methods to add and manage Azure Security Group policies for Azure cloud accounts that are managed by Dome9.
Example Usage
Basic usage:
import * as pulumi from "@pulumi/pulumi";
import * as dome9 from "@pulumi/dome9";
const azureSg = new dome9.AzureSecurityGroup("azureSg", {
description: "description",
dome9CloudAccountId: "dome9_cloud_account_id",
dome9SecurityGroupName: "dome9_security_group_name",
inbounds: [{
access: "Allow",
description: "description",
destinationPortRanges: ["20-90"],
destinationScopes: [{
data: {
cidr: "0.0.0.0/0",
note: "Any",
},
type: "CIDR",
}],
isDefault: false,
name: "name",
priority: 1000,
protocol: "TCP",
sourcePortRanges: ["*"],
sourceScopes: [{
data: {
name: "VirtualNetwork",
},
type: "Tag",
}],
}],
isTamperProtected: false,
region: "australiaeast",
resourceGroup: "resource_group",
});
import pulumi
import pulumi_dome9 as dome9
azure_sg = dome9.AzureSecurityGroup("azureSg",
description="description",
dome9_cloud_account_id="dome9_cloud_account_id",
dome9_security_group_name="dome9_security_group_name",
inbounds=[{
"access": "Allow",
"description": "description",
"destination_port_ranges": ["20-90"],
"destination_scopes": [{
"data": {
"cidr": "0.0.0.0/0",
"note": "Any",
},
"type": "CIDR",
}],
"is_default": False,
"name": "name",
"priority": 1000,
"protocol": "TCP",
"source_port_ranges": ["*"],
"source_scopes": [{
"data": {
"name": "VirtualNetwork",
},
"type": "Tag",
}],
}],
is_tamper_protected=False,
region="australiaeast",
resource_group="resource_group")
package main
import (
"github.com/pulumi/pulumi-terraform-provider/sdks/go/dome9/dome9"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := dome9.NewAzureSecurityGroup(ctx, "azureSg", &dome9.AzureSecurityGroupArgs{
Description: pulumi.String("description"),
Dome9CloudAccountId: pulumi.String("dome9_cloud_account_id"),
Dome9SecurityGroupName: pulumi.String("dome9_security_group_name"),
Inbounds: dome9.AzureSecurityGroupInboundArray{
&dome9.AzureSecurityGroupInboundArgs{
Access: pulumi.String("Allow"),
Description: pulumi.String("description"),
DestinationPortRanges: pulumi.StringArray{
pulumi.String("20-90"),
},
DestinationScopes: dome9.AzureSecurityGroupInboundDestinationScopeArray{
&dome9.AzureSecurityGroupInboundDestinationScopeArgs{
Data: pulumi.StringMap{
"cidr": pulumi.String("0.0.0.0/0"),
"note": pulumi.String("Any"),
},
Type: pulumi.String("CIDR"),
},
},
IsDefault: pulumi.Bool(false),
Name: pulumi.String("name"),
Priority: pulumi.Float64(1000),
Protocol: pulumi.String("TCP"),
SourcePortRanges: pulumi.StringArray{
pulumi.String("*"),
},
SourceScopes: dome9.AzureSecurityGroupInboundSourceScopeArray{
&dome9.AzureSecurityGroupInboundSourceScopeArgs{
Data: pulumi.StringMap{
"name": pulumi.String("VirtualNetwork"),
},
Type: pulumi.String("Tag"),
},
},
},
},
IsTamperProtected: pulumi.Bool(false),
Region: pulumi.String("australiaeast"),
ResourceGroup: pulumi.String("resource_group"),
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Dome9 = Pulumi.Dome9;
return await Deployment.RunAsync(() =>
{
var azureSg = new Dome9.AzureSecurityGroup("azureSg", new()
{
Description = "description",
Dome9CloudAccountId = "dome9_cloud_account_id",
Dome9SecurityGroupName = "dome9_security_group_name",
Inbounds = new[]
{
new Dome9.Inputs.AzureSecurityGroupInboundArgs
{
Access = "Allow",
Description = "description",
DestinationPortRanges = new[]
{
"20-90",
},
DestinationScopes = new[]
{
new Dome9.Inputs.AzureSecurityGroupInboundDestinationScopeArgs
{
Data =
{
{ "cidr", "0.0.0.0/0" },
{ "note", "Any" },
},
Type = "CIDR",
},
},
IsDefault = false,
Name = "name",
Priority = 1000,
Protocol = "TCP",
SourcePortRanges = new[]
{
"*",
},
SourceScopes = new[]
{
new Dome9.Inputs.AzureSecurityGroupInboundSourceScopeArgs
{
Data =
{
{ "name", "VirtualNetwork" },
},
Type = "Tag",
},
},
},
},
IsTamperProtected = false,
Region = "australiaeast",
ResourceGroup = "resource_group",
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.dome9.AzureSecurityGroup;
import com.pulumi.dome9.AzureSecurityGroupArgs;
import com.pulumi.dome9.inputs.AzureSecurityGroupInboundArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var azureSg = new AzureSecurityGroup("azureSg", AzureSecurityGroupArgs.builder()
.description("description")
.dome9CloudAccountId("dome9_cloud_account_id")
.dome9SecurityGroupName("dome9_security_group_name")
.inbounds(AzureSecurityGroupInboundArgs.builder()
.access("Allow")
.description("description")
.destinationPortRanges("20-90")
.destinationScopes(AzureSecurityGroupInboundDestinationScopeArgs.builder()
.data(Map.ofEntries(
Map.entry("cidr", "0.0.0.0/0"),
Map.entry("note", "Any")
))
.type("CIDR")
.build())
.isDefault(false)
.name("name")
.priority(1000)
.protocol("TCP")
.sourcePortRanges("*")
.sourceScopes(AzureSecurityGroupInboundSourceScopeArgs.builder()
.data(Map.of("name", "VirtualNetwork"))
.type("Tag")
.build())
.build())
.isTamperProtected(false)
.region("australiaeast")
.resourceGroup("resource_group")
.build());
}
}
resources:
azureSg:
type: dome9:AzureSecurityGroup
properties:
description: description
dome9CloudAccountId: dome9_cloud_account_id
dome9SecurityGroupName: dome9_security_group_name
inbounds:
- access: Allow
description: description
destinationPortRanges:
- 20-90
destinationScopes:
- data:
cidr: 0.0.0.0/0
note: Any
type: CIDR
isDefault: false
name: name
priority: 1000
protocol: TCP
sourcePortRanges:
- '*'
sourceScopes:
- data:
name: VirtualNetwork
type: Tag
isTamperProtected: false
region: australiaeast
resourceGroup: resource_group
Create AzureSecurityGroup Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new AzureSecurityGroup(name: string, args: AzureSecurityGroupArgs, opts?: CustomResourceOptions);@overload
def AzureSecurityGroup(resource_name: str,
args: AzureSecurityGroupArgs,
opts: Optional[ResourceOptions] = None)
@overload
def AzureSecurityGroup(resource_name: str,
opts: Optional[ResourceOptions] = None,
dome9_cloud_account_id: Optional[str] = None,
dome9_security_group_name: Optional[str] = None,
region: Optional[str] = None,
resource_group: Optional[str] = None,
azure_security_group_id: Optional[str] = None,
description: Optional[str] = None,
inbounds: Optional[Sequence[AzureSecurityGroupInboundArgs]] = None,
is_tamper_protected: Optional[bool] = None,
outbounds: Optional[Sequence[AzureSecurityGroupOutboundArgs]] = None,
tags: Optional[Sequence[AzureSecurityGroupTagArgs]] = None)func NewAzureSecurityGroup(ctx *Context, name string, args AzureSecurityGroupArgs, opts ...ResourceOption) (*AzureSecurityGroup, error)public AzureSecurityGroup(string name, AzureSecurityGroupArgs args, CustomResourceOptions? opts = null)
public AzureSecurityGroup(String name, AzureSecurityGroupArgs args)
public AzureSecurityGroup(String name, AzureSecurityGroupArgs args, CustomResourceOptions options)
type: dome9:AzureSecurityGroup
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args AzureSecurityGroupArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args AzureSecurityGroupArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args AzureSecurityGroupArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args AzureSecurityGroupArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args AzureSecurityGroupArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var azureSecurityGroupResource = new Dome9.AzureSecurityGroup("azureSecurityGroupResource", new()
{
Dome9CloudAccountId = "string",
Dome9SecurityGroupName = "string",
Region = "string",
ResourceGroup = "string",
AzureSecurityGroupId = "string",
Description = "string",
Inbounds = new[]
{
new Dome9.Inputs.AzureSecurityGroupInboundArgs
{
DestinationPortRanges = new[]
{
"string",
},
DestinationScopes = new[]
{
new Dome9.Inputs.AzureSecurityGroupInboundDestinationScopeArgs
{
Data =
{
{ "string", "string" },
},
Type = "string",
},
},
Name = "string",
Priority = 0,
Protocol = "string",
SourcePortRanges = new[]
{
"string",
},
SourceScopes = new[]
{
new Dome9.Inputs.AzureSecurityGroupInboundSourceScopeArgs
{
Data =
{
{ "string", "string" },
},
Type = "string",
},
},
Access = "string",
Description = "string",
Direction = "string",
IsDefault = false,
},
},
IsTamperProtected = false,
Outbounds = new[]
{
new Dome9.Inputs.AzureSecurityGroupOutboundArgs
{
DestinationPortRanges = new[]
{
"string",
},
DestinationScopes = new[]
{
new Dome9.Inputs.AzureSecurityGroupOutboundDestinationScopeArgs
{
Data =
{
{ "string", "string" },
},
Type = "string",
},
},
Name = "string",
Priority = 0,
Protocol = "string",
SourcePortRanges = new[]
{
"string",
},
SourceScopes = new[]
{
new Dome9.Inputs.AzureSecurityGroupOutboundSourceScopeArgs
{
Data =
{
{ "string", "string" },
},
Type = "string",
},
},
Access = "string",
Description = "string",
Direction = "string",
IsDefault = false,
},
},
Tags = new[]
{
new Dome9.Inputs.AzureSecurityGroupTagArgs
{
Key = "string",
Value = "string",
},
},
});
example, err := dome9.NewAzureSecurityGroup(ctx, "azureSecurityGroupResource", &dome9.AzureSecurityGroupArgs{
Dome9CloudAccountId: pulumi.String("string"),
Dome9SecurityGroupName: pulumi.String("string"),
Region: pulumi.String("string"),
ResourceGroup: pulumi.String("string"),
AzureSecurityGroupId: pulumi.String("string"),
Description: pulumi.String("string"),
Inbounds: dome9.AzureSecurityGroupInboundArray{
&dome9.AzureSecurityGroupInboundArgs{
DestinationPortRanges: pulumi.StringArray{
pulumi.String("string"),
},
DestinationScopes: dome9.AzureSecurityGroupInboundDestinationScopeArray{
&dome9.AzureSecurityGroupInboundDestinationScopeArgs{
Data: pulumi.StringMap{
"string": pulumi.String("string"),
},
Type: pulumi.String("string"),
},
},
Name: pulumi.String("string"),
Priority: pulumi.Float64(0),
Protocol: pulumi.String("string"),
SourcePortRanges: pulumi.StringArray{
pulumi.String("string"),
},
SourceScopes: dome9.AzureSecurityGroupInboundSourceScopeArray{
&dome9.AzureSecurityGroupInboundSourceScopeArgs{
Data: pulumi.StringMap{
"string": pulumi.String("string"),
},
Type: pulumi.String("string"),
},
},
Access: pulumi.String("string"),
Description: pulumi.String("string"),
Direction: pulumi.String("string"),
IsDefault: pulumi.Bool(false),
},
},
IsTamperProtected: pulumi.Bool(false),
Outbounds: dome9.AzureSecurityGroupOutboundArray{
&dome9.AzureSecurityGroupOutboundArgs{
DestinationPortRanges: pulumi.StringArray{
pulumi.String("string"),
},
DestinationScopes: dome9.AzureSecurityGroupOutboundDestinationScopeArray{
&dome9.AzureSecurityGroupOutboundDestinationScopeArgs{
Data: pulumi.StringMap{
"string": pulumi.String("string"),
},
Type: pulumi.String("string"),
},
},
Name: pulumi.String("string"),
Priority: pulumi.Float64(0),
Protocol: pulumi.String("string"),
SourcePortRanges: pulumi.StringArray{
pulumi.String("string"),
},
SourceScopes: dome9.AzureSecurityGroupOutboundSourceScopeArray{
&dome9.AzureSecurityGroupOutboundSourceScopeArgs{
Data: pulumi.StringMap{
"string": pulumi.String("string"),
},
Type: pulumi.String("string"),
},
},
Access: pulumi.String("string"),
Description: pulumi.String("string"),
Direction: pulumi.String("string"),
IsDefault: pulumi.Bool(false),
},
},
Tags: dome9.AzureSecurityGroupTagArray{
&dome9.AzureSecurityGroupTagArgs{
Key: pulumi.String("string"),
Value: pulumi.String("string"),
},
},
})
var azureSecurityGroupResource = new AzureSecurityGroup("azureSecurityGroupResource", AzureSecurityGroupArgs.builder()
.dome9CloudAccountId("string")
.dome9SecurityGroupName("string")
.region("string")
.resourceGroup("string")
.azureSecurityGroupId("string")
.description("string")
.inbounds(AzureSecurityGroupInboundArgs.builder()
.destinationPortRanges("string")
.destinationScopes(AzureSecurityGroupInboundDestinationScopeArgs.builder()
.data(Map.of("string", "string"))
.type("string")
.build())
.name("string")
.priority(0)
.protocol("string")
.sourcePortRanges("string")
.sourceScopes(AzureSecurityGroupInboundSourceScopeArgs.builder()
.data(Map.of("string", "string"))
.type("string")
.build())
.access("string")
.description("string")
.direction("string")
.isDefault(false)
.build())
.isTamperProtected(false)
.outbounds(AzureSecurityGroupOutboundArgs.builder()
.destinationPortRanges("string")
.destinationScopes(AzureSecurityGroupOutboundDestinationScopeArgs.builder()
.data(Map.of("string", "string"))
.type("string")
.build())
.name("string")
.priority(0)
.protocol("string")
.sourcePortRanges("string")
.sourceScopes(AzureSecurityGroupOutboundSourceScopeArgs.builder()
.data(Map.of("string", "string"))
.type("string")
.build())
.access("string")
.description("string")
.direction("string")
.isDefault(false)
.build())
.tags(AzureSecurityGroupTagArgs.builder()
.key("string")
.value("string")
.build())
.build());
azure_security_group_resource = dome9.AzureSecurityGroup("azureSecurityGroupResource",
dome9_cloud_account_id="string",
dome9_security_group_name="string",
region="string",
resource_group="string",
azure_security_group_id="string",
description="string",
inbounds=[{
"destination_port_ranges": ["string"],
"destination_scopes": [{
"data": {
"string": "string",
},
"type": "string",
}],
"name": "string",
"priority": 0,
"protocol": "string",
"source_port_ranges": ["string"],
"source_scopes": [{
"data": {
"string": "string",
},
"type": "string",
}],
"access": "string",
"description": "string",
"direction": "string",
"is_default": False,
}],
is_tamper_protected=False,
outbounds=[{
"destination_port_ranges": ["string"],
"destination_scopes": [{
"data": {
"string": "string",
},
"type": "string",
}],
"name": "string",
"priority": 0,
"protocol": "string",
"source_port_ranges": ["string"],
"source_scopes": [{
"data": {
"string": "string",
},
"type": "string",
}],
"access": "string",
"description": "string",
"direction": "string",
"is_default": False,
}],
tags=[{
"key": "string",
"value": "string",
}])
const azureSecurityGroupResource = new dome9.AzureSecurityGroup("azureSecurityGroupResource", {
dome9CloudAccountId: "string",
dome9SecurityGroupName: "string",
region: "string",
resourceGroup: "string",
azureSecurityGroupId: "string",
description: "string",
inbounds: [{
destinationPortRanges: ["string"],
destinationScopes: [{
data: {
string: "string",
},
type: "string",
}],
name: "string",
priority: 0,
protocol: "string",
sourcePortRanges: ["string"],
sourceScopes: [{
data: {
string: "string",
},
type: "string",
}],
access: "string",
description: "string",
direction: "string",
isDefault: false,
}],
isTamperProtected: false,
outbounds: [{
destinationPortRanges: ["string"],
destinationScopes: [{
data: {
string: "string",
},
type: "string",
}],
name: "string",
priority: 0,
protocol: "string",
sourcePortRanges: ["string"],
sourceScopes: [{
data: {
string: "string",
},
type: "string",
}],
access: "string",
description: "string",
direction: "string",
isDefault: false,
}],
tags: [{
key: "string",
value: "string",
}],
});
type: dome9:AzureSecurityGroup
properties:
azureSecurityGroupId: string
description: string
dome9CloudAccountId: string
dome9SecurityGroupName: string
inbounds:
- access: string
description: string
destinationPortRanges:
- string
destinationScopes:
- data:
string: string
type: string
direction: string
isDefault: false
name: string
priority: 0
protocol: string
sourcePortRanges:
- string
sourceScopes:
- data:
string: string
type: string
isTamperProtected: false
outbounds:
- access: string
description: string
destinationPortRanges:
- string
destinationScopes:
- data:
string: string
type: string
direction: string
isDefault: false
name: string
priority: 0
protocol: string
sourcePortRanges:
- string
sourceScopes:
- data:
string: string
type: string
region: string
resourceGroup: string
tags:
- key: string
value: string
AzureSecurityGroup Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The AzureSecurityGroup resource accepts the following input properties:
- Dome9Cloud
Account stringId - Cloud account id in Dome9.
- Dome9Security
Group stringName - Name of the security group.
- Region string
- Region can be one of the following:
centralus,eastus,eastus2,usgovlowa,usgovvirginia,northcentralus,southcentralus,westus,westus2,westcentralus,northeurope,westeurope,eastasia,southeastasia,japaneast,japanwest,brazilsouth,australiaeast,australiasoutheast,centralindia,southindia,westindia,chinaeast,chinanorth,canadacentral,canadaeast,germanycentral,germanynortheast,koreacentral,uksouth,ukwest,koreasout - Resource
Group string - Azure resource group name.
- Azure
Security stringGroup Id - Description string
- Service description.
- Inbounds
List<Azure
Security Group Inbound> - Security group services.
- Is
Tamper boolProtected - Is security group tamper protected.
- Outbounds
List<Azure
Security Group Outbound> Security group services.
The configuration of inbound and outbound is:
-
List<Azure
Security Group Tag> - Security group tags list of
key,value:
- Dome9Cloud
Account stringId - Cloud account id in Dome9.
- Dome9Security
Group stringName - Name of the security group.
- Region string
- Region can be one of the following:
centralus,eastus,eastus2,usgovlowa,usgovvirginia,northcentralus,southcentralus,westus,westus2,westcentralus,northeurope,westeurope,eastasia,southeastasia,japaneast,japanwest,brazilsouth,australiaeast,australiasoutheast,centralindia,southindia,westindia,chinaeast,chinanorth,canadacentral,canadaeast,germanycentral,germanynortheast,koreacentral,uksouth,ukwest,koreasout - Resource
Group string - Azure resource group name.
- Azure
Security stringGroup Id - Description string
- Service description.
- Inbounds
[]Azure
Security Group Inbound Args - Security group services.
- Is
Tamper boolProtected - Is security group tamper protected.
- Outbounds
[]Azure
Security Group Outbound Args Security group services.
The configuration of inbound and outbound is:
-
[]Azure
Security Group Tag Args - Security group tags list of
key,value:
- dome9Cloud
Account StringId - Cloud account id in Dome9.
- dome9Security
Group StringName - Name of the security group.
- region String
- Region can be one of the following:
centralus,eastus,eastus2,usgovlowa,usgovvirginia,northcentralus,southcentralus,westus,westus2,westcentralus,northeurope,westeurope,eastasia,southeastasia,japaneast,japanwest,brazilsouth,australiaeast,australiasoutheast,centralindia,southindia,westindia,chinaeast,chinanorth,canadacentral,canadaeast,germanycentral,germanynortheast,koreacentral,uksouth,ukwest,koreasout - resource
Group String - Azure resource group name.
- azure
Security StringGroup Id - description String
- Service description.
- inbounds
List<Azure
Security Group Inbound> - Security group services.
- is
Tamper BooleanProtected - Is security group tamper protected.
- outbounds
List<Azure
Security Group Outbound> Security group services.
The configuration of inbound and outbound is:
-
List<Azure
Security Group Tag> - Security group tags list of
key,value:
- dome9Cloud
Account stringId - Cloud account id in Dome9.
- dome9Security
Group stringName - Name of the security group.
- region string
- Region can be one of the following:
centralus,eastus,eastus2,usgovlowa,usgovvirginia,northcentralus,southcentralus,westus,westus2,westcentralus,northeurope,westeurope,eastasia,southeastasia,japaneast,japanwest,brazilsouth,australiaeast,australiasoutheast,centralindia,southindia,westindia,chinaeast,chinanorth,canadacentral,canadaeast,germanycentral,germanynortheast,koreacentral,uksouth,ukwest,koreasout - resource
Group string - Azure resource group name.
- azure
Security stringGroup Id - description string
- Service description.
- inbounds
Azure
Security Group Inbound[] - Security group services.
- is
Tamper booleanProtected - Is security group tamper protected.
- outbounds
Azure
Security Group Outbound[] Security group services.
The configuration of inbound and outbound is:
-
Azure
Security Group Tag[] - Security group tags list of
key,value:
- dome9_
cloud_ straccount_ id - Cloud account id in Dome9.
- dome9_
security_ strgroup_ name - Name of the security group.
- region str
- Region can be one of the following:
centralus,eastus,eastus2,usgovlowa,usgovvirginia,northcentralus,southcentralus,westus,westus2,westcentralus,northeurope,westeurope,eastasia,southeastasia,japaneast,japanwest,brazilsouth,australiaeast,australiasoutheast,centralindia,southindia,westindia,chinaeast,chinanorth,canadacentral,canadaeast,germanycentral,germanynortheast,koreacentral,uksouth,ukwest,koreasout - resource_
group str - Azure resource group name.
- azure_
security_ strgroup_ id - description str
- Service description.
- inbounds
Sequence[Azure
Security Group Inbound Args] - Security group services.
- is_
tamper_ boolprotected - Is security group tamper protected.
- outbounds
Sequence[Azure
Security Group Outbound Args] Security group services.
The configuration of inbound and outbound is:
-
Sequence[Azure
Security Group Tag Args] - Security group tags list of
key,value:
- dome9Cloud
Account StringId - Cloud account id in Dome9.
- dome9Security
Group StringName - Name of the security group.
- region String
- Region can be one of the following:
centralus,eastus,eastus2,usgovlowa,usgovvirginia,northcentralus,southcentralus,westus,westus2,westcentralus,northeurope,westeurope,eastasia,southeastasia,japaneast,japanwest,brazilsouth,australiaeast,australiasoutheast,centralindia,southindia,westindia,chinaeast,chinanorth,canadacentral,canadaeast,germanycentral,germanynortheast,koreacentral,uksouth,ukwest,koreasout - resource
Group String - Azure resource group name.
- azure
Security StringGroup Id - description String
- Service description.
- inbounds List<Property Map>
- Security group services.
- is
Tamper BooleanProtected - Is security group tamper protected.
- outbounds List<Property Map>
Security group services.
The configuration of inbound and outbound is:
- List<Property Map>
- Security group tags list of
key,value:
Outputs
All input properties are implicitly available as output properties. Additionally, the AzureSecurityGroup resource produces the following output properties:
- Cloud
Account stringName - Azure cloud account name.
- External
Security stringGroup Id - Azure external security group id.
- Id string
- The provider-assigned unique ID for this managed resource.
- Last
Updated stringBy Dome9 - Last updated by dome9.
- Cloud
Account stringName - Azure cloud account name.
- External
Security stringGroup Id - Azure external security group id.
- Id string
- The provider-assigned unique ID for this managed resource.
- Last
Updated stringBy Dome9 - Last updated by dome9.
- cloud
Account StringName - Azure cloud account name.
- external
Security StringGroup Id - Azure external security group id.
- id String
- The provider-assigned unique ID for this managed resource.
- last
Updated StringBy Dome9 - Last updated by dome9.
- cloud
Account stringName - Azure cloud account name.
- external
Security stringGroup Id - Azure external security group id.
- id string
- The provider-assigned unique ID for this managed resource.
- last
Updated stringBy Dome9 - Last updated by dome9.
- cloud_
account_ strname - Azure cloud account name.
- external_
security_ strgroup_ id - Azure external security group id.
- id str
- The provider-assigned unique ID for this managed resource.
- last_
updated_ strby_ dome9 - Last updated by dome9.
- cloud
Account StringName - Azure cloud account name.
- external
Security StringGroup Id - Azure external security group id.
- id String
- The provider-assigned unique ID for this managed resource.
- last
Updated StringBy Dome9 - Last updated by dome9.
Look up Existing AzureSecurityGroup Resource
Get an existing AzureSecurityGroup resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: AzureSecurityGroupState, opts?: CustomResourceOptions): AzureSecurityGroup@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
azure_security_group_id: Optional[str] = None,
cloud_account_name: Optional[str] = None,
description: Optional[str] = None,
dome9_cloud_account_id: Optional[str] = None,
dome9_security_group_name: Optional[str] = None,
external_security_group_id: Optional[str] = None,
inbounds: Optional[Sequence[AzureSecurityGroupInboundArgs]] = None,
is_tamper_protected: Optional[bool] = None,
last_updated_by_dome9: Optional[str] = None,
outbounds: Optional[Sequence[AzureSecurityGroupOutboundArgs]] = None,
region: Optional[str] = None,
resource_group: Optional[str] = None,
tags: Optional[Sequence[AzureSecurityGroupTagArgs]] = None) -> AzureSecurityGroupfunc GetAzureSecurityGroup(ctx *Context, name string, id IDInput, state *AzureSecurityGroupState, opts ...ResourceOption) (*AzureSecurityGroup, error)public static AzureSecurityGroup Get(string name, Input<string> id, AzureSecurityGroupState? state, CustomResourceOptions? opts = null)public static AzureSecurityGroup get(String name, Output<String> id, AzureSecurityGroupState state, CustomResourceOptions options)resources: _: type: dome9:AzureSecurityGroup get: id: ${id}- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Azure
Security stringGroup Id - Cloud
Account stringName - Azure cloud account name.
- Description string
- Service description.
- Dome9Cloud
Account stringId - Cloud account id in Dome9.
- Dome9Security
Group stringName - Name of the security group.
- External
Security stringGroup Id - Azure external security group id.
- Inbounds
List<Azure
Security Group Inbound> - Security group services.
- Is
Tamper boolProtected - Is security group tamper protected.
- Last
Updated stringBy Dome9 - Last updated by dome9.
- Outbounds
List<Azure
Security Group Outbound> Security group services.
The configuration of inbound and outbound is:
- Region string
- Region can be one of the following:
centralus,eastus,eastus2,usgovlowa,usgovvirginia,northcentralus,southcentralus,westus,westus2,westcentralus,northeurope,westeurope,eastasia,southeastasia,japaneast,japanwest,brazilsouth,australiaeast,australiasoutheast,centralindia,southindia,westindia,chinaeast,chinanorth,canadacentral,canadaeast,germanycentral,germanynortheast,koreacentral,uksouth,ukwest,koreasout - Resource
Group string - Azure resource group name.
-
List<Azure
Security Group Tag> - Security group tags list of
key,value:
- Azure
Security stringGroup Id - Cloud
Account stringName - Azure cloud account name.
- Description string
- Service description.
- Dome9Cloud
Account stringId - Cloud account id in Dome9.
- Dome9Security
Group stringName - Name of the security group.
- External
Security stringGroup Id - Azure external security group id.
- Inbounds
[]Azure
Security Group Inbound Args - Security group services.
- Is
Tamper boolProtected - Is security group tamper protected.
- Last
Updated stringBy Dome9 - Last updated by dome9.
- Outbounds
[]Azure
Security Group Outbound Args Security group services.
The configuration of inbound and outbound is:
- Region string
- Region can be one of the following:
centralus,eastus,eastus2,usgovlowa,usgovvirginia,northcentralus,southcentralus,westus,westus2,westcentralus,northeurope,westeurope,eastasia,southeastasia,japaneast,japanwest,brazilsouth,australiaeast,australiasoutheast,centralindia,southindia,westindia,chinaeast,chinanorth,canadacentral,canadaeast,germanycentral,germanynortheast,koreacentral,uksouth,ukwest,koreasout - Resource
Group string - Azure resource group name.
-
[]Azure
Security Group Tag Args - Security group tags list of
key,value:
- azure
Security StringGroup Id - cloud
Account StringName - Azure cloud account name.
- description String
- Service description.
- dome9Cloud
Account StringId - Cloud account id in Dome9.
- dome9Security
Group StringName - Name of the security group.
- external
Security StringGroup Id - Azure external security group id.
- inbounds
List<Azure
Security Group Inbound> - Security group services.
- is
Tamper BooleanProtected - Is security group tamper protected.
- last
Updated StringBy Dome9 - Last updated by dome9.
- outbounds
List<Azure
Security Group Outbound> Security group services.
The configuration of inbound and outbound is:
- region String
- Region can be one of the following:
centralus,eastus,eastus2,usgovlowa,usgovvirginia,northcentralus,southcentralus,westus,westus2,westcentralus,northeurope,westeurope,eastasia,southeastasia,japaneast,japanwest,brazilsouth,australiaeast,australiasoutheast,centralindia,southindia,westindia,chinaeast,chinanorth,canadacentral,canadaeast,germanycentral,germanynortheast,koreacentral,uksouth,ukwest,koreasout - resource
Group String - Azure resource group name.
-
List<Azure
Security Group Tag> - Security group tags list of
key,value:
- azure
Security stringGroup Id - cloud
Account stringName - Azure cloud account name.
- description string
- Service description.
- dome9Cloud
Account stringId - Cloud account id in Dome9.
- dome9Security
Group stringName - Name of the security group.
- external
Security stringGroup Id - Azure external security group id.
- inbounds
Azure
Security Group Inbound[] - Security group services.
- is
Tamper booleanProtected - Is security group tamper protected.
- last
Updated stringBy Dome9 - Last updated by dome9.
- outbounds
Azure
Security Group Outbound[] Security group services.
The configuration of inbound and outbound is:
- region string
- Region can be one of the following:
centralus,eastus,eastus2,usgovlowa,usgovvirginia,northcentralus,southcentralus,westus,westus2,westcentralus,northeurope,westeurope,eastasia,southeastasia,japaneast,japanwest,brazilsouth,australiaeast,australiasoutheast,centralindia,southindia,westindia,chinaeast,chinanorth,canadacentral,canadaeast,germanycentral,germanynortheast,koreacentral,uksouth,ukwest,koreasout - resource
Group string - Azure resource group name.
-
Azure
Security Group Tag[] - Security group tags list of
key,value:
- azure_
security_ strgroup_ id - cloud_
account_ strname - Azure cloud account name.
- description str
- Service description.
- dome9_
cloud_ straccount_ id - Cloud account id in Dome9.
- dome9_
security_ strgroup_ name - Name of the security group.
- external_
security_ strgroup_ id - Azure external security group id.
- inbounds
Sequence[Azure
Security Group Inbound Args] - Security group services.
- is_
tamper_ boolprotected - Is security group tamper protected.
- last_
updated_ strby_ dome9 - Last updated by dome9.
- outbounds
Sequence[Azure
Security Group Outbound Args] Security group services.
The configuration of inbound and outbound is:
- region str
- Region can be one of the following:
centralus,eastus,eastus2,usgovlowa,usgovvirginia,northcentralus,southcentralus,westus,westus2,westcentralus,northeurope,westeurope,eastasia,southeastasia,japaneast,japanwest,brazilsouth,australiaeast,australiasoutheast,centralindia,southindia,westindia,chinaeast,chinanorth,canadacentral,canadaeast,germanycentral,germanynortheast,koreacentral,uksouth,ukwest,koreasout - resource_
group str - Azure resource group name.
-
Sequence[Azure
Security Group Tag Args] - Security group tags list of
key,value:
- azure
Security StringGroup Id - cloud
Account StringName - Azure cloud account name.
- description String
- Service description.
- dome9Cloud
Account StringId - Cloud account id in Dome9.
- dome9Security
Group StringName - Name of the security group.
- external
Security StringGroup Id - Azure external security group id.
- inbounds List<Property Map>
- Security group services.
- is
Tamper BooleanProtected - Is security group tamper protected.
- last
Updated StringBy Dome9 - Last updated by dome9.
- outbounds List<Property Map>
Security group services.
The configuration of inbound and outbound is:
- region String
- Region can be one of the following:
centralus,eastus,eastus2,usgovlowa,usgovvirginia,northcentralus,southcentralus,westus,westus2,westcentralus,northeurope,westeurope,eastasia,southeastasia,japaneast,japanwest,brazilsouth,australiaeast,australiasoutheast,centralindia,southindia,westindia,chinaeast,chinanorth,canadacentral,canadaeast,germanycentral,germanynortheast,koreacentral,uksouth,ukwest,koreasout - resource
Group String - Azure resource group name.
- List<Property Map>
- Security group tags list of
key,value:
Supporting Types
AzureSecurityGroupInbound, AzureSecurityGroupInboundArgs
- Destination
Port List<string>Ranges - Destination port ranges.
- Destination
Scopes List<AzureSecurity Group Inbound Destination Scope> - List of destination scopes for the service (CIDR / IP List / Tag).
- Name string
- Service name.
- Priority double
- Service priority (a number between 100 and 4096)
- Protocol string
- Service protocol (UDP / TCP / ANY).
- Source
Port List<string>Ranges - Source port ranges.
- Source
Scopes List<AzureSecurity Group Inbound Source Scope> - List of source scopes for the service (CIDR / IP List / Tag):
- Access string
- Service access (Allow / Deny).
- Description string
- Service description.
- Direction string
- Is
Default bool - Gets or sets the default security rules of network security group.
- Destination
Port []stringRanges - Destination port ranges.
- Destination
Scopes []AzureSecurity Group Inbound Destination Scope - List of destination scopes for the service (CIDR / IP List / Tag).
- Name string
- Service name.
- Priority float64
- Service priority (a number between 100 and 4096)
- Protocol string
- Service protocol (UDP / TCP / ANY).
- Source
Port []stringRanges - Source port ranges.
- Source
Scopes []AzureSecurity Group Inbound Source Scope - List of source scopes for the service (CIDR / IP List / Tag):
- Access string
- Service access (Allow / Deny).
- Description string
- Service description.
- Direction string
- Is
Default bool - Gets or sets the default security rules of network security group.
- destination
Port List<String>Ranges - Destination port ranges.
- destination
Scopes List<AzureSecurity Group Inbound Destination Scope> - List of destination scopes for the service (CIDR / IP List / Tag).
- name String
- Service name.
- priority Double
- Service priority (a number between 100 and 4096)
- protocol String
- Service protocol (UDP / TCP / ANY).
- source
Port List<String>Ranges - Source port ranges.
- source
Scopes List<AzureSecurity Group Inbound Source Scope> - List of source scopes for the service (CIDR / IP List / Tag):
- access String
- Service access (Allow / Deny).
- description String
- Service description.
- direction String
- is
Default Boolean - Gets or sets the default security rules of network security group.
- destination
Port string[]Ranges - Destination port ranges.
- destination
Scopes AzureSecurity Group Inbound Destination Scope[] - List of destination scopes for the service (CIDR / IP List / Tag).
- name string
- Service name.
- priority number
- Service priority (a number between 100 and 4096)
- protocol string
- Service protocol (UDP / TCP / ANY).
- source
Port string[]Ranges - Source port ranges.
- source
Scopes AzureSecurity Group Inbound Source Scope[] - List of source scopes for the service (CIDR / IP List / Tag):
- access string
- Service access (Allow / Deny).
- description string
- Service description.
- direction string
- is
Default boolean - Gets or sets the default security rules of network security group.
- destination_
port_ Sequence[str]ranges - Destination port ranges.
- destination_
scopes Sequence[AzureSecurity Group Inbound Destination Scope] - List of destination scopes for the service (CIDR / IP List / Tag).
- name str
- Service name.
- priority float
- Service priority (a number between 100 and 4096)
- protocol str
- Service protocol (UDP / TCP / ANY).
- source_
port_ Sequence[str]ranges - Source port ranges.
- source_
scopes Sequence[AzureSecurity Group Inbound Source Scope] - List of source scopes for the service (CIDR / IP List / Tag):
- access str
- Service access (Allow / Deny).
- description str
- Service description.
- direction str
- is_
default bool - Gets or sets the default security rules of network security group.
- destination
Port List<String>Ranges - Destination port ranges.
- destination
Scopes List<Property Map> - List of destination scopes for the service (CIDR / IP List / Tag).
- name String
- Service name.
- priority Number
- Service priority (a number between 100 and 4096)
- protocol String
- Service protocol (UDP / TCP / ANY).
- source
Port List<String>Ranges - Source port ranges.
- source
Scopes List<Property Map> - List of source scopes for the service (CIDR / IP List / Tag):
- access String
- Service access (Allow / Deny).
- description String
- Service description.
- direction String
- is
Default Boolean - Gets or sets the default security rules of network security group.
AzureSecurityGroupInboundDestinationScope, AzureSecurityGroupInboundDestinationScopeArgs
AzureSecurityGroupInboundSourceScope, AzureSecurityGroupInboundSourceScopeArgs
AzureSecurityGroupOutbound, AzureSecurityGroupOutboundArgs
- Destination
Port List<string>Ranges - Destination port ranges.
- Destination
Scopes List<AzureSecurity Group Outbound Destination Scope> - List of destination scopes for the service (CIDR / IP List / Tag).
- Name string
- Service name.
- Priority double
- Service priority (a number between 100 and 4096)
- Protocol string
- Service protocol (UDP / TCP / ANY).
- Source
Port List<string>Ranges - Source port ranges.
- Source
Scopes List<AzureSecurity Group Outbound Source Scope> - List of source scopes for the service (CIDR / IP List / Tag):
- Access string
- Service access (Allow / Deny).
- Description string
- Service description.
- Direction string
- Is
Default bool - Gets or sets the default security rules of network security group.
- Destination
Port []stringRanges - Destination port ranges.
- Destination
Scopes []AzureSecurity Group Outbound Destination Scope - List of destination scopes for the service (CIDR / IP List / Tag).
- Name string
- Service name.
- Priority float64
- Service priority (a number between 100 and 4096)
- Protocol string
- Service protocol (UDP / TCP / ANY).
- Source
Port []stringRanges - Source port ranges.
- Source
Scopes []AzureSecurity Group Outbound Source Scope - List of source scopes for the service (CIDR / IP List / Tag):
- Access string
- Service access (Allow / Deny).
- Description string
- Service description.
- Direction string
- Is
Default bool - Gets or sets the default security rules of network security group.
- destination
Port List<String>Ranges - Destination port ranges.
- destination
Scopes List<AzureSecurity Group Outbound Destination Scope> - List of destination scopes for the service (CIDR / IP List / Tag).
- name String
- Service name.
- priority Double
- Service priority (a number between 100 and 4096)
- protocol String
- Service protocol (UDP / TCP / ANY).
- source
Port List<String>Ranges - Source port ranges.
- source
Scopes List<AzureSecurity Group Outbound Source Scope> - List of source scopes for the service (CIDR / IP List / Tag):
- access String
- Service access (Allow / Deny).
- description String
- Service description.
- direction String
- is
Default Boolean - Gets or sets the default security rules of network security group.
- destination
Port string[]Ranges - Destination port ranges.
- destination
Scopes AzureSecurity Group Outbound Destination Scope[] - List of destination scopes for the service (CIDR / IP List / Tag).
- name string
- Service name.
- priority number
- Service priority (a number between 100 and 4096)
- protocol string
- Service protocol (UDP / TCP / ANY).
- source
Port string[]Ranges - Source port ranges.
- source
Scopes AzureSecurity Group Outbound Source Scope[] - List of source scopes for the service (CIDR / IP List / Tag):
- access string
- Service access (Allow / Deny).
- description string
- Service description.
- direction string
- is
Default boolean - Gets or sets the default security rules of network security group.
- destination_
port_ Sequence[str]ranges - Destination port ranges.
- destination_
scopes Sequence[AzureSecurity Group Outbound Destination Scope] - List of destination scopes for the service (CIDR / IP List / Tag).
- name str
- Service name.
- priority float
- Service priority (a number between 100 and 4096)
- protocol str
- Service protocol (UDP / TCP / ANY).
- source_
port_ Sequence[str]ranges - Source port ranges.
- source_
scopes Sequence[AzureSecurity Group Outbound Source Scope] - List of source scopes for the service (CIDR / IP List / Tag):
- access str
- Service access (Allow / Deny).
- description str
- Service description.
- direction str
- is_
default bool - Gets or sets the default security rules of network security group.
- destination
Port List<String>Ranges - Destination port ranges.
- destination
Scopes List<Property Map> - List of destination scopes for the service (CIDR / IP List / Tag).
- name String
- Service name.
- priority Number
- Service priority (a number between 100 and 4096)
- protocol String
- Service protocol (UDP / TCP / ANY).
- source
Port List<String>Ranges - Source port ranges.
- source
Scopes List<Property Map> - List of source scopes for the service (CIDR / IP List / Tag):
- access String
- Service access (Allow / Deny).
- description String
- Service description.
- direction String
- is
Default Boolean - Gets or sets the default security rules of network security group.
AzureSecurityGroupOutboundDestinationScope, AzureSecurityGroupOutboundDestinationScopeArgs
AzureSecurityGroupOutboundSourceScope, AzureSecurityGroupOutboundSourceScopeArgs
AzureSecurityGroupTag, AzureSecurityGroupTagArgs
Import
The security group can be imported; use <SESCURITY GROUP ID> as the import ID.
For example:
$ pulumi import dome9:index/azureSecurityGroup:AzureSecurityGroup test 00000000-0000-0000-0000-000000000000
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- dome9 dome9/terraform-provider-dome9
- License
- Notes
- This Pulumi package is based on the
dome9Terraform Provider.