Docs Home
dome9 1.40.3 published on Monday, Apr 14, 2025 by dome9
dome9.CloudaccountAws
Explore with Pulumi AI
This resource is used to onboard AWS cloud accounts to Dome9. This is the first and pre-requisite step in order to apply Dome9 features, such as compliance testing, on the account.
Example Usage
Basic usage:
import * as pulumi from "@pulumi/pulumi";
import * as dome9 from "@pulumi/dome9";
const test = new dome9.CloudaccountAws("test", {
credentials: {
arn: "ARN",
secret: "SECRET",
type: "RoleBased",
},
netSec: {
regions: [
{
newGroupBehavior: "ReadOnly",
region: "us_east_1",
},
{
newGroupBehavior: "ReadOnly",
region: "us_west_1",
},
{
newGroupBehavior: "ReadOnly",
region: "eu_west_1",
},
{
newGroupBehavior: "ReadOnly",
region: "ap_southeast_1",
},
{
newGroupBehavior: "ReadOnly",
region: "ap_northeast_1",
},
{
newGroupBehavior: "ReadOnly",
region: "us_west_2",
},
{
newGroupBehavior: "ReadOnly",
region: "sa_east_1",
},
{
newGroupBehavior: "ReadOnly",
region: "ap_southeast_2",
},
{
newGroupBehavior: "ReadOnly",
region: "eu_central_1",
},
{
newGroupBehavior: "ReadOnly",
region: "ap_northeast_2",
},
{
newGroupBehavior: "ReadOnly",
region: "ap_south_1",
},
{
newGroupBehavior: "ReadOnly",
region: "us_east_2",
},
{
newGroupBehavior: "ReadOnly",
region: "ca_central_1",
},
{
newGroupBehavior: "ReadOnly",
region: "eu_west_2",
},
{
newGroupBehavior: "ReadOnly",
region: "eu_west_3",
},
{
newGroupBehavior: "ReadOnly",
region: "eu_north_1",
},
{
newGroupBehavior: "ReadOnly",
region: "ap_east_1",
},
{
newGroupBehavior: "ReadOnly",
region: "me_south_1",
},
{
newGroupBehavior: "ReadOnly",
region: "af_south_1",
},
{
newGroupBehavior: "ReadOnly",
region: "eu_south_1",
},
{
newGroupBehavior: "ReadOnly",
region: "ap_northeast_3",
},
{
newGroupBehavior: "ReadOnly",
region: "me_central_1",
},
{
newGroupBehavior: "ReadOnly",
region: "ap_south_2",
},
{
newGroupBehavior: "ReadOnly",
region: "ap_southeast_3",
},
{
newGroupBehavior: "ReadOnly",
region: "ap_southeast_4",
},
{
newGroupBehavior: "ReadOnly",
region: "eu_central_2",
},
{
newGroupBehavior: "ReadOnly",
region: "eu_south_2",
},
{
newGroupBehavior: "ReadOnly",
region: "il_central_1",
},
],
},
organizationalUnitId: "ORGANIZATIONAL UNIT ID",
});
import pulumi
import pulumi_dome9 as dome9
test = dome9.CloudaccountAws("test",
credentials={
"arn": "ARN",
"secret": "SECRET",
"type": "RoleBased",
},
net_sec={
"regions": [
{
"new_group_behavior": "ReadOnly",
"region": "us_east_1",
},
{
"new_group_behavior": "ReadOnly",
"region": "us_west_1",
},
{
"new_group_behavior": "ReadOnly",
"region": "eu_west_1",
},
{
"new_group_behavior": "ReadOnly",
"region": "ap_southeast_1",
},
{
"new_group_behavior": "ReadOnly",
"region": "ap_northeast_1",
},
{
"new_group_behavior": "ReadOnly",
"region": "us_west_2",
},
{
"new_group_behavior": "ReadOnly",
"region": "sa_east_1",
},
{
"new_group_behavior": "ReadOnly",
"region": "ap_southeast_2",
},
{
"new_group_behavior": "ReadOnly",
"region": "eu_central_1",
},
{
"new_group_behavior": "ReadOnly",
"region": "ap_northeast_2",
},
{
"new_group_behavior": "ReadOnly",
"region": "ap_south_1",
},
{
"new_group_behavior": "ReadOnly",
"region": "us_east_2",
},
{
"new_group_behavior": "ReadOnly",
"region": "ca_central_1",
},
{
"new_group_behavior": "ReadOnly",
"region": "eu_west_2",
},
{
"new_group_behavior": "ReadOnly",
"region": "eu_west_3",
},
{
"new_group_behavior": "ReadOnly",
"region": "eu_north_1",
},
{
"new_group_behavior": "ReadOnly",
"region": "ap_east_1",
},
{
"new_group_behavior": "ReadOnly",
"region": "me_south_1",
},
{
"new_group_behavior": "ReadOnly",
"region": "af_south_1",
},
{
"new_group_behavior": "ReadOnly",
"region": "eu_south_1",
},
{
"new_group_behavior": "ReadOnly",
"region": "ap_northeast_3",
},
{
"new_group_behavior": "ReadOnly",
"region": "me_central_1",
},
{
"new_group_behavior": "ReadOnly",
"region": "ap_south_2",
},
{
"new_group_behavior": "ReadOnly",
"region": "ap_southeast_3",
},
{
"new_group_behavior": "ReadOnly",
"region": "ap_southeast_4",
},
{
"new_group_behavior": "ReadOnly",
"region": "eu_central_2",
},
{
"new_group_behavior": "ReadOnly",
"region": "eu_south_2",
},
{
"new_group_behavior": "ReadOnly",
"region": "il_central_1",
},
],
},
organizational_unit_id="ORGANIZATIONAL UNIT ID")
package main
import (
"github.com/pulumi/pulumi-terraform-provider/sdks/go/dome9/dome9"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := dome9.NewCloudaccountAws(ctx, "test", &dome9.CloudaccountAwsArgs{
Credentials: &dome9.CloudaccountAwsCredentialsArgs{
Arn: pulumi.String("ARN"),
Secret: pulumi.String("SECRET"),
Type: pulumi.String("RoleBased"),
},
NetSec: &dome9.CloudaccountAwsNetSecArgs{
Regions: dome9.CloudaccountAwsNetSecRegionArray{
&dome9.CloudaccountAwsNetSecRegionArgs{
NewGroupBehavior: pulumi.String("ReadOnly"),
Region: pulumi.String("us_east_1"),
},
&dome9.CloudaccountAwsNetSecRegionArgs{
NewGroupBehavior: pulumi.String("ReadOnly"),
Region: pulumi.String("us_west_1"),
},
&dome9.CloudaccountAwsNetSecRegionArgs{
NewGroupBehavior: pulumi.String("ReadOnly"),
Region: pulumi.String("eu_west_1"),
},
&dome9.CloudaccountAwsNetSecRegionArgs{
NewGroupBehavior: pulumi.String("ReadOnly"),
Region: pulumi.String("ap_southeast_1"),
},
&dome9.CloudaccountAwsNetSecRegionArgs{
NewGroupBehavior: pulumi.String("ReadOnly"),
Region: pulumi.String("ap_northeast_1"),
},
&dome9.CloudaccountAwsNetSecRegionArgs{
NewGroupBehavior: pulumi.String("ReadOnly"),
Region: pulumi.String("us_west_2"),
},
&dome9.CloudaccountAwsNetSecRegionArgs{
NewGroupBehavior: pulumi.String("ReadOnly"),
Region: pulumi.String("sa_east_1"),
},
&dome9.CloudaccountAwsNetSecRegionArgs{
NewGroupBehavior: pulumi.String("ReadOnly"),
Region: pulumi.String("ap_southeast_2"),
},
&dome9.CloudaccountAwsNetSecRegionArgs{
NewGroupBehavior: pulumi.String("ReadOnly"),
Region: pulumi.String("eu_central_1"),
},
&dome9.CloudaccountAwsNetSecRegionArgs{
NewGroupBehavior: pulumi.String("ReadOnly"),
Region: pulumi.String("ap_northeast_2"),
},
&dome9.CloudaccountAwsNetSecRegionArgs{
NewGroupBehavior: pulumi.String("ReadOnly"),
Region: pulumi.String("ap_south_1"),
},
&dome9.CloudaccountAwsNetSecRegionArgs{
NewGroupBehavior: pulumi.String("ReadOnly"),
Region: pulumi.String("us_east_2"),
},
&dome9.CloudaccountAwsNetSecRegionArgs{
NewGroupBehavior: pulumi.String("ReadOnly"),
Region: pulumi.String("ca_central_1"),
},
&dome9.CloudaccountAwsNetSecRegionArgs{
NewGroupBehavior: pulumi.String("ReadOnly"),
Region: pulumi.String("eu_west_2"),
},
&dome9.CloudaccountAwsNetSecRegionArgs{
NewGroupBehavior: pulumi.String("ReadOnly"),
Region: pulumi.String("eu_west_3"),
},
&dome9.CloudaccountAwsNetSecRegionArgs{
NewGroupBehavior: pulumi.String("ReadOnly"),
Region: pulumi.String("eu_north_1"),
},
&dome9.CloudaccountAwsNetSecRegionArgs{
NewGroupBehavior: pulumi.String("ReadOnly"),
Region: pulumi.String("ap_east_1"),
},
&dome9.CloudaccountAwsNetSecRegionArgs{
NewGroupBehavior: pulumi.String("ReadOnly"),
Region: pulumi.String("me_south_1"),
},
&dome9.CloudaccountAwsNetSecRegionArgs{
NewGroupBehavior: pulumi.String("ReadOnly"),
Region: pulumi.String("af_south_1"),
},
&dome9.CloudaccountAwsNetSecRegionArgs{
NewGroupBehavior: pulumi.String("ReadOnly"),
Region: pulumi.String("eu_south_1"),
},
&dome9.CloudaccountAwsNetSecRegionArgs{
NewGroupBehavior: pulumi.String("ReadOnly"),
Region: pulumi.String("ap_northeast_3"),
},
&dome9.CloudaccountAwsNetSecRegionArgs{
NewGroupBehavior: pulumi.String("ReadOnly"),
Region: pulumi.String("me_central_1"),
},
&dome9.CloudaccountAwsNetSecRegionArgs{
NewGroupBehavior: pulumi.String("ReadOnly"),
Region: pulumi.String("ap_south_2"),
},
&dome9.CloudaccountAwsNetSecRegionArgs{
NewGroupBehavior: pulumi.String("ReadOnly"),
Region: pulumi.String("ap_southeast_3"),
},
&dome9.CloudaccountAwsNetSecRegionArgs{
NewGroupBehavior: pulumi.String("ReadOnly"),
Region: pulumi.String("ap_southeast_4"),
},
&dome9.CloudaccountAwsNetSecRegionArgs{
NewGroupBehavior: pulumi.String("ReadOnly"),
Region: pulumi.String("eu_central_2"),
},
&dome9.CloudaccountAwsNetSecRegionArgs{
NewGroupBehavior: pulumi.String("ReadOnly"),
Region: pulumi.String("eu_south_2"),
},
&dome9.CloudaccountAwsNetSecRegionArgs{
NewGroupBehavior: pulumi.String("ReadOnly"),
Region: pulumi.String("il_central_1"),
},
},
},
OrganizationalUnitId: pulumi.String("ORGANIZATIONAL UNIT ID"),
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Dome9 = Pulumi.Dome9;
return await Deployment.RunAsync(() =>
{
var test = new Dome9.CloudaccountAws("test", new()
{
Credentials = new Dome9.Inputs.CloudaccountAwsCredentialsArgs
{
Arn = "ARN",
Secret = "SECRET",
Type = "RoleBased",
},
NetSec = new Dome9.Inputs.CloudaccountAwsNetSecArgs
{
Regions = new[]
{
new Dome9.Inputs.CloudaccountAwsNetSecRegionArgs
{
NewGroupBehavior = "ReadOnly",
Region = "us_east_1",
},
new Dome9.Inputs.CloudaccountAwsNetSecRegionArgs
{
NewGroupBehavior = "ReadOnly",
Region = "us_west_1",
},
new Dome9.Inputs.CloudaccountAwsNetSecRegionArgs
{
NewGroupBehavior = "ReadOnly",
Region = "eu_west_1",
},
new Dome9.Inputs.CloudaccountAwsNetSecRegionArgs
{
NewGroupBehavior = "ReadOnly",
Region = "ap_southeast_1",
},
new Dome9.Inputs.CloudaccountAwsNetSecRegionArgs
{
NewGroupBehavior = "ReadOnly",
Region = "ap_northeast_1",
},
new Dome9.Inputs.CloudaccountAwsNetSecRegionArgs
{
NewGroupBehavior = "ReadOnly",
Region = "us_west_2",
},
new Dome9.Inputs.CloudaccountAwsNetSecRegionArgs
{
NewGroupBehavior = "ReadOnly",
Region = "sa_east_1",
},
new Dome9.Inputs.CloudaccountAwsNetSecRegionArgs
{
NewGroupBehavior = "ReadOnly",
Region = "ap_southeast_2",
},
new Dome9.Inputs.CloudaccountAwsNetSecRegionArgs
{
NewGroupBehavior = "ReadOnly",
Region = "eu_central_1",
},
new Dome9.Inputs.CloudaccountAwsNetSecRegionArgs
{
NewGroupBehavior = "ReadOnly",
Region = "ap_northeast_2",
},
new Dome9.Inputs.CloudaccountAwsNetSecRegionArgs
{
NewGroupBehavior = "ReadOnly",
Region = "ap_south_1",
},
new Dome9.Inputs.CloudaccountAwsNetSecRegionArgs
{
NewGroupBehavior = "ReadOnly",
Region = "us_east_2",
},
new Dome9.Inputs.CloudaccountAwsNetSecRegionArgs
{
NewGroupBehavior = "ReadOnly",
Region = "ca_central_1",
},
new Dome9.Inputs.CloudaccountAwsNetSecRegionArgs
{
NewGroupBehavior = "ReadOnly",
Region = "eu_west_2",
},
new Dome9.Inputs.CloudaccountAwsNetSecRegionArgs
{
NewGroupBehavior = "ReadOnly",
Region = "eu_west_3",
},
new Dome9.Inputs.CloudaccountAwsNetSecRegionArgs
{
NewGroupBehavior = "ReadOnly",
Region = "eu_north_1",
},
new Dome9.Inputs.CloudaccountAwsNetSecRegionArgs
{
NewGroupBehavior = "ReadOnly",
Region = "ap_east_1",
},
new Dome9.Inputs.CloudaccountAwsNetSecRegionArgs
{
NewGroupBehavior = "ReadOnly",
Region = "me_south_1",
},
new Dome9.Inputs.CloudaccountAwsNetSecRegionArgs
{
NewGroupBehavior = "ReadOnly",
Region = "af_south_1",
},
new Dome9.Inputs.CloudaccountAwsNetSecRegionArgs
{
NewGroupBehavior = "ReadOnly",
Region = "eu_south_1",
},
new Dome9.Inputs.CloudaccountAwsNetSecRegionArgs
{
NewGroupBehavior = "ReadOnly",
Region = "ap_northeast_3",
},
new Dome9.Inputs.CloudaccountAwsNetSecRegionArgs
{
NewGroupBehavior = "ReadOnly",
Region = "me_central_1",
},
new Dome9.Inputs.CloudaccountAwsNetSecRegionArgs
{
NewGroupBehavior = "ReadOnly",
Region = "ap_south_2",
},
new Dome9.Inputs.CloudaccountAwsNetSecRegionArgs
{
NewGroupBehavior = "ReadOnly",
Region = "ap_southeast_3",
},
new Dome9.Inputs.CloudaccountAwsNetSecRegionArgs
{
NewGroupBehavior = "ReadOnly",
Region = "ap_southeast_4",
},
new Dome9.Inputs.CloudaccountAwsNetSecRegionArgs
{
NewGroupBehavior = "ReadOnly",
Region = "eu_central_2",
},
new Dome9.Inputs.CloudaccountAwsNetSecRegionArgs
{
NewGroupBehavior = "ReadOnly",
Region = "eu_south_2",
},
new Dome9.Inputs.CloudaccountAwsNetSecRegionArgs
{
NewGroupBehavior = "ReadOnly",
Region = "il_central_1",
},
},
},
OrganizationalUnitId = "ORGANIZATIONAL UNIT ID",
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.dome9.CloudaccountAws;
import com.pulumi.dome9.CloudaccountAwsArgs;
import com.pulumi.dome9.inputs.CloudaccountAwsCredentialsArgs;
import com.pulumi.dome9.inputs.CloudaccountAwsNetSecArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var test = new CloudaccountAws("test", CloudaccountAwsArgs.builder()
.credentials(CloudaccountAwsCredentialsArgs.builder()
.arn("ARN")
.secret("SECRET")
.type("RoleBased")
.build())
.netSec(CloudaccountAwsNetSecArgs.builder()
.regions(
CloudaccountAwsNetSecRegionArgs.builder()
.newGroupBehavior("ReadOnly")
.region("us_east_1")
.build(),
CloudaccountAwsNetSecRegionArgs.builder()
.newGroupBehavior("ReadOnly")
.region("us_west_1")
.build(),
CloudaccountAwsNetSecRegionArgs.builder()
.newGroupBehavior("ReadOnly")
.region("eu_west_1")
.build(),
CloudaccountAwsNetSecRegionArgs.builder()
.newGroupBehavior("ReadOnly")
.region("ap_southeast_1")
.build(),
CloudaccountAwsNetSecRegionArgs.builder()
.newGroupBehavior("ReadOnly")
.region("ap_northeast_1")
.build(),
CloudaccountAwsNetSecRegionArgs.builder()
.newGroupBehavior("ReadOnly")
.region("us_west_2")
.build(),
CloudaccountAwsNetSecRegionArgs.builder()
.newGroupBehavior("ReadOnly")
.region("sa_east_1")
.build(),
CloudaccountAwsNetSecRegionArgs.builder()
.newGroupBehavior("ReadOnly")
.region("ap_southeast_2")
.build(),
CloudaccountAwsNetSecRegionArgs.builder()
.newGroupBehavior("ReadOnly")
.region("eu_central_1")
.build(),
CloudaccountAwsNetSecRegionArgs.builder()
.newGroupBehavior("ReadOnly")
.region("ap_northeast_2")
.build(),
CloudaccountAwsNetSecRegionArgs.builder()
.newGroupBehavior("ReadOnly")
.region("ap_south_1")
.build(),
CloudaccountAwsNetSecRegionArgs.builder()
.newGroupBehavior("ReadOnly")
.region("us_east_2")
.build(),
CloudaccountAwsNetSecRegionArgs.builder()
.newGroupBehavior("ReadOnly")
.region("ca_central_1")
.build(),
CloudaccountAwsNetSecRegionArgs.builder()
.newGroupBehavior("ReadOnly")
.region("eu_west_2")
.build(),
CloudaccountAwsNetSecRegionArgs.builder()
.newGroupBehavior("ReadOnly")
.region("eu_west_3")
.build(),
CloudaccountAwsNetSecRegionArgs.builder()
.newGroupBehavior("ReadOnly")
.region("eu_north_1")
.build(),
CloudaccountAwsNetSecRegionArgs.builder()
.newGroupBehavior("ReadOnly")
.region("ap_east_1")
.build(),
CloudaccountAwsNetSecRegionArgs.builder()
.newGroupBehavior("ReadOnly")
.region("me_south_1")
.build(),
CloudaccountAwsNetSecRegionArgs.builder()
.newGroupBehavior("ReadOnly")
.region("af_south_1")
.build(),
CloudaccountAwsNetSecRegionArgs.builder()
.newGroupBehavior("ReadOnly")
.region("eu_south_1")
.build(),
CloudaccountAwsNetSecRegionArgs.builder()
.newGroupBehavior("ReadOnly")
.region("ap_northeast_3")
.build(),
CloudaccountAwsNetSecRegionArgs.builder()
.newGroupBehavior("ReadOnly")
.region("me_central_1")
.build(),
CloudaccountAwsNetSecRegionArgs.builder()
.newGroupBehavior("ReadOnly")
.region("ap_south_2")
.build(),
CloudaccountAwsNetSecRegionArgs.builder()
.newGroupBehavior("ReadOnly")
.region("ap_southeast_3")
.build(),
CloudaccountAwsNetSecRegionArgs.builder()
.newGroupBehavior("ReadOnly")
.region("ap_southeast_4")
.build(),
CloudaccountAwsNetSecRegionArgs.builder()
.newGroupBehavior("ReadOnly")
.region("eu_central_2")
.build(),
CloudaccountAwsNetSecRegionArgs.builder()
.newGroupBehavior("ReadOnly")
.region("eu_south_2")
.build(),
CloudaccountAwsNetSecRegionArgs.builder()
.newGroupBehavior("ReadOnly")
.region("il_central_1")
.build())
.build())
.organizationalUnitId("ORGANIZATIONAL UNIT ID")
.build());
}
}
resources:
test:
type: dome9:CloudaccountAws
properties:
credentials:
arn: ARN
secret: SECRET
type: RoleBased
netSec:
regions:
- newGroupBehavior: ReadOnly
region: us_east_1
- newGroupBehavior: ReadOnly
region: us_west_1
- newGroupBehavior: ReadOnly
region: eu_west_1
- newGroupBehavior: ReadOnly
region: ap_southeast_1
- newGroupBehavior: ReadOnly
region: ap_northeast_1
- newGroupBehavior: ReadOnly
region: us_west_2
- newGroupBehavior: ReadOnly
region: sa_east_1
- newGroupBehavior: ReadOnly
region: ap_southeast_2
- newGroupBehavior: ReadOnly
region: eu_central_1
- newGroupBehavior: ReadOnly
region: ap_northeast_2
- newGroupBehavior: ReadOnly
region: ap_south_1
- newGroupBehavior: ReadOnly
region: us_east_2
- newGroupBehavior: ReadOnly
region: ca_central_1
- newGroupBehavior: ReadOnly
region: eu_west_2
- newGroupBehavior: ReadOnly
region: eu_west_3
- newGroupBehavior: ReadOnly
region: eu_north_1
- newGroupBehavior: ReadOnly
region: ap_east_1
- newGroupBehavior: ReadOnly
region: me_south_1
- newGroupBehavior: ReadOnly
region: af_south_1
- newGroupBehavior: ReadOnly
region: eu_south_1
- newGroupBehavior: ReadOnly
region: ap_northeast_3
- newGroupBehavior: ReadOnly
region: me_central_1
- newGroupBehavior: ReadOnly
region: ap_south_2
- newGroupBehavior: ReadOnly
region: ap_southeast_3
- newGroupBehavior: ReadOnly
region: ap_southeast_4
- newGroupBehavior: ReadOnly
region: eu_central_2
- newGroupBehavior: ReadOnly
region: eu_south_2
- newGroupBehavior: ReadOnly
region: il_central_1
organizationalUnitId: ORGANIZATIONAL UNIT ID
Coming soon!
Coming soon!
Coming soon!
Coming soon!
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.dome9.CloudaccountAws;
import com.pulumi.dome9.CloudaccountAwsArgs;
import com.pulumi.dome9.inputs.CloudaccountAwsCredentialsArgs;
import com.pulumi.dome9.inputs.CloudaccountAwsNetSecArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var test = new CloudaccountAws("test", CloudaccountAwsArgs.builder()
.credentials(CloudaccountAwsCredentialsArgs.builder()
.apiKey("API_KEY")
.secret("SECRET")
.type("UserBased")
.build())
.netSec(CloudaccountAwsNetSecArgs.builder()
.netSec(%!v(PANIC=Format method: runtime error: invalid memory address or nil pointer dereference))
.build())
.organizationalUnitId("ORGANIZATIONAL UNIT ID")
.vendor("awsgov")
.build());
}
}
resources:
test:
type: dome9:CloudaccountAws
properties:
credentials:
apiKey: API_KEY
secret: SECRET
type: UserBased
netSec:
netSec:
- regions:
- newGroupBehavior: ReadOnly
region: us_gov_east_1
- newGroupBehavior: ReadOnly
region: us_gov_west_1
organizationalUnitId: ORGANIZATIONAL UNIT ID
vendor: awsgov
Coming soon!
Coming soon!
Coming soon!
Coming soon!
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.dome9.CloudaccountAws;
import com.pulumi.dome9.CloudaccountAwsArgs;
import com.pulumi.dome9.inputs.CloudaccountAwsCredentialsArgs;
import com.pulumi.dome9.inputs.CloudaccountAwsNetSecArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var test = new CloudaccountAws("test", CloudaccountAwsArgs.builder()
.credentials(CloudaccountAwsCredentialsArgs.builder()
.apiKey("API_KEY")
.secret("SECRET")
.type("UserBased")
.build())
.netSec(CloudaccountAwsNetSecArgs.builder()
.netSec(%!v(PANIC=Format method: runtime error: invalid memory address or nil pointer dereference))
.build())
.organizationalUnitId("ORGANIZATIONAL UNIT ID")
.vendor("awschina")
.build());
}
}
resources:
test:
type: dome9:CloudaccountAws
properties:
credentials:
apiKey: API_KEY
secret: SECRET
type: UserBased
netSec:
netSec:
- regions:
- newGroupBehavior: ReadOnly
region: cn_northwest_1
- newGroupBehavior: ReadOnly
region: cn_north_1
organizationalUnitId: ORGANIZATIONAL UNIT ID
vendor: awschina
Create CloudaccountAws Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new CloudaccountAws(name: string, args: CloudaccountAwsArgs, opts?: CustomResourceOptions);@overload
def CloudaccountAws(resource_name: str,
args: CloudaccountAwsArgs,
opts: Optional[ResourceOptions] = None)
@overload
def CloudaccountAws(resource_name: str,
opts: Optional[ResourceOptions] = None,
credentials: Optional[CloudaccountAwsCredentialsArgs] = None,
cloudaccount_aws_id: Optional[str] = None,
name: Optional[str] = None,
net_sec: Optional[CloudaccountAwsNetSecArgs] = None,
organizational_unit_id: Optional[str] = None,
vendor: Optional[str] = None)func NewCloudaccountAws(ctx *Context, name string, args CloudaccountAwsArgs, opts ...ResourceOption) (*CloudaccountAws, error)public CloudaccountAws(string name, CloudaccountAwsArgs args, CustomResourceOptions? opts = null)
public CloudaccountAws(String name, CloudaccountAwsArgs args)
public CloudaccountAws(String name, CloudaccountAwsArgs args, CustomResourceOptions options)
type: dome9:CloudaccountAws
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args CloudaccountAwsArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args CloudaccountAwsArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args CloudaccountAwsArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args CloudaccountAwsArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args CloudaccountAwsArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var cloudaccountAwsResource = new Dome9.CloudaccountAws("cloudaccountAwsResource", new()
{
Credentials = new Dome9.Inputs.CloudaccountAwsCredentialsArgs
{
Secret = "string",
Type = "string",
ApiKey = "string",
Arn = "string",
IamUser = "string",
IsReadOnly = false,
},
CloudaccountAwsId = "string",
Name = "string",
NetSec = new Dome9.Inputs.CloudaccountAwsNetSecArgs
{
Regions = new[]
{
new Dome9.Inputs.CloudaccountAwsNetSecRegionArgs
{
Region = "string",
Hidden = false,
Name = "string",
NewGroupBehavior = "string",
},
},
},
OrganizationalUnitId = "string",
Vendor = "string",
});
example, err := dome9.NewCloudaccountAws(ctx, "cloudaccountAwsResource", &dome9.CloudaccountAwsArgs{
Credentials: &dome9.CloudaccountAwsCredentialsArgs{
Secret: pulumi.String("string"),
Type: pulumi.String("string"),
ApiKey: pulumi.String("string"),
Arn: pulumi.String("string"),
IamUser: pulumi.String("string"),
IsReadOnly: pulumi.Bool(false),
},
CloudaccountAwsId: pulumi.String("string"),
Name: pulumi.String("string"),
NetSec: &dome9.CloudaccountAwsNetSecArgs{
Regions: dome9.CloudaccountAwsNetSecRegionArray{
&dome9.CloudaccountAwsNetSecRegionArgs{
Region: pulumi.String("string"),
Hidden: pulumi.Bool(false),
Name: pulumi.String("string"),
NewGroupBehavior: pulumi.String("string"),
},
},
},
OrganizationalUnitId: pulumi.String("string"),
Vendor: pulumi.String("string"),
})
var cloudaccountAwsResource = new CloudaccountAws("cloudaccountAwsResource", CloudaccountAwsArgs.builder()
.credentials(CloudaccountAwsCredentialsArgs.builder()
.secret("string")
.type("string")
.apiKey("string")
.arn("string")
.iamUser("string")
.isReadOnly(false)
.build())
.cloudaccountAwsId("string")
.name("string")
.netSec(CloudaccountAwsNetSecArgs.builder()
.regions(CloudaccountAwsNetSecRegionArgs.builder()
.region("string")
.hidden(false)
.name("string")
.newGroupBehavior("string")
.build())
.build())
.organizationalUnitId("string")
.vendor("string")
.build());
cloudaccount_aws_resource = dome9.CloudaccountAws("cloudaccountAwsResource",
credentials={
"secret": "string",
"type": "string",
"api_key": "string",
"arn": "string",
"iam_user": "string",
"is_read_only": False,
},
cloudaccount_aws_id="string",
name="string",
net_sec={
"regions": [{
"region": "string",
"hidden": False,
"name": "string",
"new_group_behavior": "string",
}],
},
organizational_unit_id="string",
vendor="string")
const cloudaccountAwsResource = new dome9.CloudaccountAws("cloudaccountAwsResource", {
credentials: {
secret: "string",
type: "string",
apiKey: "string",
arn: "string",
iamUser: "string",
isReadOnly: false,
},
cloudaccountAwsId: "string",
name: "string",
netSec: {
regions: [{
region: "string",
hidden: false,
name: "string",
newGroupBehavior: "string",
}],
},
organizationalUnitId: "string",
vendor: "string",
});
type: dome9:CloudaccountAws
properties:
cloudaccountAwsId: string
credentials:
apiKey: string
arn: string
iamUser: string
isReadOnly: false
secret: string
type: string
name: string
netSec:
regions:
- hidden: false
name: string
newGroupBehavior: string
region: string
organizationalUnitId: string
vendor: string
CloudaccountAws Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The CloudaccountAws resource accepts the following input properties:
- Credentials
Cloudaccount
Aws Credentials - The information needed for Dome9 System in order to connect to the AWS cloud account
- Cloudaccount
Aws stringId - The id of the account in Dome9.
- Name string
- The name of AWS account in Dome9
- Net
Sec CloudaccountAws Net Sec - The network security configuration for the AWS cloud account. If not given, sets to default value.
IAM_safe- IAM safe entity detailsAWS_group_ARN- AWS group ARNAWS_policy_ARN- AWS policy ARN
- Organizational
Unit stringId - The Organizational Unit that this cloud account will be attached to
- Vendor string
- the default value for vendor is "aws" valid values are "aws", "awsgov" and "awschina"
- Credentials
Cloudaccount
Aws Credentials Args - The information needed for Dome9 System in order to connect to the AWS cloud account
- Cloudaccount
Aws stringId - The id of the account in Dome9.
- Name string
- The name of AWS account in Dome9
- Net
Sec CloudaccountAws Net Sec Args - The network security configuration for the AWS cloud account. If not given, sets to default value.
IAM_safe- IAM safe entity detailsAWS_group_ARN- AWS group ARNAWS_policy_ARN- AWS policy ARN
- Organizational
Unit stringId - The Organizational Unit that this cloud account will be attached to
- Vendor string
- the default value for vendor is "aws" valid values are "aws", "awsgov" and "awschina"
- credentials
Cloudaccount
Aws Credentials - The information needed for Dome9 System in order to connect to the AWS cloud account
- cloudaccount
Aws StringId - The id of the account in Dome9.
- name String
- The name of AWS account in Dome9
- net
Sec CloudaccountAws Net Sec - The network security configuration for the AWS cloud account. If not given, sets to default value.
IAM_safe- IAM safe entity detailsAWS_group_ARN- AWS group ARNAWS_policy_ARN- AWS policy ARN
- organizational
Unit StringId - The Organizational Unit that this cloud account will be attached to
- vendor String
- the default value for vendor is "aws" valid values are "aws", "awsgov" and "awschina"
- credentials
Cloudaccount
Aws Credentials - The information needed for Dome9 System in order to connect to the AWS cloud account
- cloudaccount
Aws stringId - The id of the account in Dome9.
- name string
- The name of AWS account in Dome9
- net
Sec CloudaccountAws Net Sec - The network security configuration for the AWS cloud account. If not given, sets to default value.
IAM_safe- IAM safe entity detailsAWS_group_ARN- AWS group ARNAWS_policy_ARN- AWS policy ARN
- organizational
Unit stringId - The Organizational Unit that this cloud account will be attached to
- vendor string
- the default value for vendor is "aws" valid values are "aws", "awsgov" and "awschina"
- credentials
Cloudaccount
Aws Credentials Args - The information needed for Dome9 System in order to connect to the AWS cloud account
- cloudaccount_
aws_ strid - The id of the account in Dome9.
- name str
- The name of AWS account in Dome9
- net_
sec CloudaccountAws Net Sec Args - The network security configuration for the AWS cloud account. If not given, sets to default value.
IAM_safe- IAM safe entity detailsAWS_group_ARN- AWS group ARNAWS_policy_ARN- AWS policy ARN
- organizational_
unit_ strid - The Organizational Unit that this cloud account will be attached to
- vendor str
- the default value for vendor is "aws" valid values are "aws", "awsgov" and "awschina"
- credentials Property Map
- The information needed for Dome9 System in order to connect to the AWS cloud account
- cloudaccount
Aws StringId - The id of the account in Dome9.
- name String
- The name of AWS account in Dome9
- net
Sec Property Map - The network security configuration for the AWS cloud account. If not given, sets to default value.
IAM_safe- IAM safe entity detailsAWS_group_ARN- AWS group ARNAWS_policy_ARN- AWS policy ARN
- organizational
Unit StringId - The Organizational Unit that this cloud account will be attached to
- vendor String
- the default value for vendor is "aws" valid values are "aws", "awsgov" and "awschina"
Outputs
All input properties are implicitly available as output properties. Additionally, the CloudaccountAws resource produces the following output properties:
- Allow
Read boolOnly - The AWS cloud account operation mode. true for "Full-Manage", false for "Readonly".
- Creation
Date string - Date the account was onboarded to Dome9.
- External
Account stringNumber - The AWS account number.
- Full
Protection bool - The protection mode for existing security groups in the account.
- Iam
Saves List<CloudaccountAws Iam Safe> - Id string
- The provider-assigned unique ID for this managed resource.
- Is
Fetching boolSuspended - Fetching suspending status.
- Allow
Read boolOnly - The AWS cloud account operation mode. true for "Full-Manage", false for "Readonly".
- Creation
Date string - Date the account was onboarded to Dome9.
- External
Account stringNumber - The AWS account number.
- Full
Protection bool - The protection mode for existing security groups in the account.
- Iam
Saves []CloudaccountAws Iam Safe - Id string
- The provider-assigned unique ID for this managed resource.
- Is
Fetching boolSuspended - Fetching suspending status.
- allow
Read BooleanOnly - The AWS cloud account operation mode. true for "Full-Manage", false for "Readonly".
- creation
Date String - Date the account was onboarded to Dome9.
- external
Account StringNumber - The AWS account number.
- full
Protection Boolean - The protection mode for existing security groups in the account.
- iam
Saves List<CloudaccountAws Iam Safe> - id String
- The provider-assigned unique ID for this managed resource.
- is
Fetching BooleanSuspended - Fetching suspending status.
- allow
Read booleanOnly - The AWS cloud account operation mode. true for "Full-Manage", false for "Readonly".
- creation
Date string - Date the account was onboarded to Dome9.
- external
Account stringNumber - The AWS account number.
- full
Protection boolean - The protection mode for existing security groups in the account.
- iam
Saves CloudaccountAws Iam Safe[] - id string
- The provider-assigned unique ID for this managed resource.
- is
Fetching booleanSuspended - Fetching suspending status.
- allow_
read_ boolonly - The AWS cloud account operation mode. true for "Full-Manage", false for "Readonly".
- creation_
date str - Date the account was onboarded to Dome9.
- external_
account_ strnumber - The AWS account number.
- full_
protection bool - The protection mode for existing security groups in the account.
- iam_
saves Sequence[CloudaccountAws Iam Safe] - id str
- The provider-assigned unique ID for this managed resource.
- is_
fetching_ boolsuspended - Fetching suspending status.
- allow
Read BooleanOnly - The AWS cloud account operation mode. true for "Full-Manage", false for "Readonly".
- creation
Date String - Date the account was onboarded to Dome9.
- external
Account StringNumber - The AWS account number.
- full
Protection Boolean - The protection mode for existing security groups in the account.
- iam
Saves List<Property Map> - id String
- The provider-assigned unique ID for this managed resource.
- is
Fetching BooleanSuspended - Fetching suspending status.
Look up Existing CloudaccountAws Resource
Get an existing CloudaccountAws resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: CloudaccountAwsState, opts?: CustomResourceOptions): CloudaccountAws@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
allow_read_only: Optional[bool] = None,
cloudaccount_aws_id: Optional[str] = None,
creation_date: Optional[str] = None,
credentials: Optional[CloudaccountAwsCredentialsArgs] = None,
external_account_number: Optional[str] = None,
full_protection: Optional[bool] = None,
iam_saves: Optional[Sequence[CloudaccountAwsIamSafeArgs]] = None,
is_fetching_suspended: Optional[bool] = None,
name: Optional[str] = None,
net_sec: Optional[CloudaccountAwsNetSecArgs] = None,
organizational_unit_id: Optional[str] = None,
vendor: Optional[str] = None) -> CloudaccountAwsfunc GetCloudaccountAws(ctx *Context, name string, id IDInput, state *CloudaccountAwsState, opts ...ResourceOption) (*CloudaccountAws, error)public static CloudaccountAws Get(string name, Input<string> id, CloudaccountAwsState? state, CustomResourceOptions? opts = null)public static CloudaccountAws get(String name, Output<String> id, CloudaccountAwsState state, CustomResourceOptions options)resources: _: type: dome9:CloudaccountAws get: id: ${id}- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Allow
Read boolOnly - The AWS cloud account operation mode. true for "Full-Manage", false for "Readonly".
- Cloudaccount
Aws stringId - The id of the account in Dome9.
- Creation
Date string - Date the account was onboarded to Dome9.
- Credentials
Cloudaccount
Aws Credentials - The information needed for Dome9 System in order to connect to the AWS cloud account
- External
Account stringNumber - The AWS account number.
- Full
Protection bool - The protection mode for existing security groups in the account.
- Iam
Saves List<CloudaccountAws Iam Safe> - Is
Fetching boolSuspended - Fetching suspending status.
- Name string
- The name of AWS account in Dome9
- Net
Sec CloudaccountAws Net Sec - The network security configuration for the AWS cloud account. If not given, sets to default value.
IAM_safe- IAM safe entity detailsAWS_group_ARN- AWS group ARNAWS_policy_ARN- AWS policy ARN
- Organizational
Unit stringId - The Organizational Unit that this cloud account will be attached to
- Vendor string
- the default value for vendor is "aws" valid values are "aws", "awsgov" and "awschina"
- Allow
Read boolOnly - The AWS cloud account operation mode. true for "Full-Manage", false for "Readonly".
- Cloudaccount
Aws stringId - The id of the account in Dome9.
- Creation
Date string - Date the account was onboarded to Dome9.
- Credentials
Cloudaccount
Aws Credentials Args - The information needed for Dome9 System in order to connect to the AWS cloud account
- External
Account stringNumber - The AWS account number.
- Full
Protection bool - The protection mode for existing security groups in the account.
- Iam
Saves []CloudaccountAws Iam Safe Args - Is
Fetching boolSuspended - Fetching suspending status.
- Name string
- The name of AWS account in Dome9
- Net
Sec CloudaccountAws Net Sec Args - The network security configuration for the AWS cloud account. If not given, sets to default value.
IAM_safe- IAM safe entity detailsAWS_group_ARN- AWS group ARNAWS_policy_ARN- AWS policy ARN
- Organizational
Unit stringId - The Organizational Unit that this cloud account will be attached to
- Vendor string
- the default value for vendor is "aws" valid values are "aws", "awsgov" and "awschina"
- allow
Read BooleanOnly - The AWS cloud account operation mode. true for "Full-Manage", false for "Readonly".
- cloudaccount
Aws StringId - The id of the account in Dome9.
- creation
Date String - Date the account was onboarded to Dome9.
- credentials
Cloudaccount
Aws Credentials - The information needed for Dome9 System in order to connect to the AWS cloud account
- external
Account StringNumber - The AWS account number.
- full
Protection Boolean - The protection mode for existing security groups in the account.
- iam
Saves List<CloudaccountAws Iam Safe> - is
Fetching BooleanSuspended - Fetching suspending status.
- name String
- The name of AWS account in Dome9
- net
Sec CloudaccountAws Net Sec - The network security configuration for the AWS cloud account. If not given, sets to default value.
IAM_safe- IAM safe entity detailsAWS_group_ARN- AWS group ARNAWS_policy_ARN- AWS policy ARN
- organizational
Unit StringId - The Organizational Unit that this cloud account will be attached to
- vendor String
- the default value for vendor is "aws" valid values are "aws", "awsgov" and "awschina"
- allow
Read booleanOnly - The AWS cloud account operation mode. true for "Full-Manage", false for "Readonly".
- cloudaccount
Aws stringId - The id of the account in Dome9.
- creation
Date string - Date the account was onboarded to Dome9.
- credentials
Cloudaccount
Aws Credentials - The information needed for Dome9 System in order to connect to the AWS cloud account
- external
Account stringNumber - The AWS account number.
- full
Protection boolean - The protection mode for existing security groups in the account.
- iam
Saves CloudaccountAws Iam Safe[] - is
Fetching booleanSuspended - Fetching suspending status.
- name string
- The name of AWS account in Dome9
- net
Sec CloudaccountAws Net Sec - The network security configuration for the AWS cloud account. If not given, sets to default value.
IAM_safe- IAM safe entity detailsAWS_group_ARN- AWS group ARNAWS_policy_ARN- AWS policy ARN
- organizational
Unit stringId - The Organizational Unit that this cloud account will be attached to
- vendor string
- the default value for vendor is "aws" valid values are "aws", "awsgov" and "awschina"
- allow_
read_ boolonly - The AWS cloud account operation mode. true for "Full-Manage", false for "Readonly".
- cloudaccount_
aws_ strid - The id of the account in Dome9.
- creation_
date str - Date the account was onboarded to Dome9.
- credentials
Cloudaccount
Aws Credentials Args - The information needed for Dome9 System in order to connect to the AWS cloud account
- external_
account_ strnumber - The AWS account number.
- full_
protection bool - The protection mode for existing security groups in the account.
- iam_
saves Sequence[CloudaccountAws Iam Safe Args] - is_
fetching_ boolsuspended - Fetching suspending status.
- name str
- The name of AWS account in Dome9
- net_
sec CloudaccountAws Net Sec Args - The network security configuration for the AWS cloud account. If not given, sets to default value.
IAM_safe- IAM safe entity detailsAWS_group_ARN- AWS group ARNAWS_policy_ARN- AWS policy ARN
- organizational_
unit_ strid - The Organizational Unit that this cloud account will be attached to
- vendor str
- the default value for vendor is "aws" valid values are "aws", "awsgov" and "awschina"
- allow
Read BooleanOnly - The AWS cloud account operation mode. true for "Full-Manage", false for "Readonly".
- cloudaccount
Aws StringId - The id of the account in Dome9.
- creation
Date String - Date the account was onboarded to Dome9.
- credentials Property Map
- The information needed for Dome9 System in order to connect to the AWS cloud account
- external
Account StringNumber - The AWS account number.
- full
Protection Boolean - The protection mode for existing security groups in the account.
- iam
Saves List<Property Map> - is
Fetching BooleanSuspended - Fetching suspending status.
- name String
- The name of AWS account in Dome9
- net
Sec Property Map - The network security configuration for the AWS cloud account. If not given, sets to default value.
IAM_safe- IAM safe entity detailsAWS_group_ARN- AWS group ARNAWS_policy_ARN- AWS policy ARN
- organizational
Unit StringId - The Organizational Unit that this cloud account will be attached to
- vendor String
- the default value for vendor is "aws" valid values are "aws", "awsgov" and "awschina"
Supporting Types
CloudaccountAwsCredentials, CloudaccountAwsCredentialsArgs
- Secret string
- The AWS role External ID for AWS(RoleBased) and user secret key for awsGov(Dome9 will have to use this secret)
- Type string
- The cloud account onboarding method. Set to "RoleBased" for aws account and to "userBased" for awsGov and awsChina.
- Api
Key string - AWS user api-key (to be assumed by Dome9 - Required for awsGov but not for aws)
- Arn string
- AWS Role ARN (to be assumed by Dome9 - Required for AWS but not for awsGov)
- Iam
User string - Is
Read boolOnly
- Secret string
- The AWS role External ID for AWS(RoleBased) and user secret key for awsGov(Dome9 will have to use this secret)
- Type string
- The cloud account onboarding method. Set to "RoleBased" for aws account and to "userBased" for awsGov and awsChina.
- Api
Key string - AWS user api-key (to be assumed by Dome9 - Required for awsGov but not for aws)
- Arn string
- AWS Role ARN (to be assumed by Dome9 - Required for AWS but not for awsGov)
- Iam
User string - Is
Read boolOnly
- secret String
- The AWS role External ID for AWS(RoleBased) and user secret key for awsGov(Dome9 will have to use this secret)
- type String
- The cloud account onboarding method. Set to "RoleBased" for aws account and to "userBased" for awsGov and awsChina.
- api
Key String - AWS user api-key (to be assumed by Dome9 - Required for awsGov but not for aws)
- arn String
- AWS Role ARN (to be assumed by Dome9 - Required for AWS but not for awsGov)
- iam
User String - is
Read BooleanOnly
- secret string
- The AWS role External ID for AWS(RoleBased) and user secret key for awsGov(Dome9 will have to use this secret)
- type string
- The cloud account onboarding method. Set to "RoleBased" for aws account and to "userBased" for awsGov and awsChina.
- api
Key string - AWS user api-key (to be assumed by Dome9 - Required for awsGov but not for aws)
- arn string
- AWS Role ARN (to be assumed by Dome9 - Required for AWS but not for awsGov)
- iam
User string - is
Read booleanOnly
- secret str
- The AWS role External ID for AWS(RoleBased) and user secret key for awsGov(Dome9 will have to use this secret)
- type str
- The cloud account onboarding method. Set to "RoleBased" for aws account and to "userBased" for awsGov and awsChina.
- api_
key str - AWS user api-key (to be assumed by Dome9 - Required for awsGov but not for aws)
- arn str
- AWS Role ARN (to be assumed by Dome9 - Required for AWS but not for awsGov)
- iam_
user str - is_
read_ boolonly
- secret String
- The AWS role External ID for AWS(RoleBased) and user secret key for awsGov(Dome9 will have to use this secret)
- type String
- The cloud account onboarding method. Set to "RoleBased" for aws account and to "userBased" for awsGov and awsChina.
- api
Key String - AWS user api-key (to be assumed by Dome9 - Required for awsGov but not for aws)
- arn String
- AWS Role ARN (to be assumed by Dome9 - Required for AWS but not for awsGov)
- iam
User String - is
Read BooleanOnly
CloudaccountAwsIamSafe, CloudaccountAwsIamSafeArgs
- Aws
Group stringArn - Aws
Policy stringArn - Mode string
- Mode
restricted_IAM_entities- Restricted IAM safe entities, which have the following fields:roles_ARNs- Restricted IAM safe entities roles ARNsusers_ARNs- Restricted IAM safe entities users ARNs
- Restricted
Iam List<CloudaccountEntities Aws Iam Safe Restricted Iam Entity>
- Aws
Group stringArn - Aws
Policy stringArn - Mode string
- Mode
restricted_IAM_entities- Restricted IAM safe entities, which have the following fields:roles_ARNs- Restricted IAM safe entities roles ARNsusers_ARNs- Restricted IAM safe entities users ARNs
- Restricted
Iam []CloudaccountEntities Aws Iam Safe Restricted Iam Entity
- aws
Group StringArn - aws
Policy StringArn - mode String
- Mode
restricted_IAM_entities- Restricted IAM safe entities, which have the following fields:roles_ARNs- Restricted IAM safe entities roles ARNsusers_ARNs- Restricted IAM safe entities users ARNs
- restricted
Iam List<CloudaccountEntities Aws Iam Safe Restricted Iam Entity>
- aws
Group stringArn - aws
Policy stringArn - mode string
- Mode
restricted_IAM_entities- Restricted IAM safe entities, which have the following fields:roles_ARNs- Restricted IAM safe entities roles ARNsusers_ARNs- Restricted IAM safe entities users ARNs
- restricted
Iam CloudaccountEntities Aws Iam Safe Restricted Iam Entity[]
- aws_
group_ strarn - aws_
policy_ strarn - mode str
- Mode
restricted_IAM_entities- Restricted IAM safe entities, which have the following fields:roles_ARNs- Restricted IAM safe entities roles ARNsusers_ARNs- Restricted IAM safe entities users ARNs
- restricted_
iam_ Sequence[Cloudaccountentities Aws Iam Safe Restricted Iam Entity]
- aws
Group StringArn - aws
Policy StringArn - mode String
- Mode
restricted_IAM_entities- Restricted IAM safe entities, which have the following fields:roles_ARNs- Restricted IAM safe entities roles ARNsusers_ARNs- Restricted IAM safe entities users ARNs
- restricted
Iam List<Property Map>Entities
CloudaccountAwsIamSafeRestrictedIamEntity, CloudaccountAwsIamSafeRestrictedIamEntityArgs
- roles_
arns Sequence[str] - users_
arns Sequence[str]
CloudaccountAwsNetSec, CloudaccountAwsNetSecArgs
CloudaccountAwsNetSecRegion, CloudaccountAwsNetSecRegionArgs
- Region string
- AWS region, in AWS format (e.g., "us-east-1")
- bool
- Name string
- The name of AWS account in Dome9
- New
Group stringBehavior - The network security configuration. Select "ReadOnly", "FullManage", or "Reset".
- Region string
- AWS region, in AWS format (e.g., "us-east-1")
- bool
- Name string
- The name of AWS account in Dome9
- New
Group stringBehavior - The network security configuration. Select "ReadOnly", "FullManage", or "Reset".
- region String
- AWS region, in AWS format (e.g., "us-east-1")
- Boolean
- name String
- The name of AWS account in Dome9
- new
Group StringBehavior - The network security configuration. Select "ReadOnly", "FullManage", or "Reset".
- region string
- AWS region, in AWS format (e.g., "us-east-1")
- boolean
- name string
- The name of AWS account in Dome9
- new
Group stringBehavior - The network security configuration. Select "ReadOnly", "FullManage", or "Reset".
- region str
- AWS region, in AWS format (e.g., "us-east-1")
- bool
- name str
- The name of AWS account in Dome9
- new_
group_ strbehavior - The network security configuration. Select "ReadOnly", "FullManage", or "Reset".
- region String
- AWS region, in AWS format (e.g., "us-east-1")
- Boolean
- name String
- The name of AWS account in Dome9
- new
Group StringBehavior - The network security configuration. Select "ReadOnly", "FullManage", or "Reset".
Import
AWS cloud account can be imported; use <AWS CLOUD ACCOUNT ID> as the import ID.
For example:
$ pulumi import dome9:index/cloudaccountAws:CloudaccountAws test 00000000-0000-0000-0000-000000000000
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- dome9 dome9/terraform-provider-dome9
- License
- Notes
- This Pulumi package is based on the
dome9Terraform Provider.