Docs Home
ibm 1.78.0 published on Wednesday, Apr 30, 2025 by ibm-cloud
ibm.ContainerVpcCluster
Explore with Pulumi AI
Example Usage
In the following example, you can create a Gen-2 VPC cluster with a default worker pool with one worker:
import * as pulumi from "@pulumi/pulumi";
import * as ibm from "@pulumi/ibm";
const cluster = new ibm.ContainerVpcCluster("cluster", {
vpcId: "r006-abb7c7ea-aadf-41bd-94c5-b8521736fadf",
kubeVersion: "1.17.5",
flavor: "bx2.2x8",
workerCount: 1,
resourceGroupId: data.ibm_resource_group.resource_group.id,
zones: [{
subnetId: "0717-0c0899ce-48ac-4eb6-892d-4e2e1ff8c9478",
name: "us-south-1",
}],
});
import pulumi
import pulumi_ibm as ibm
cluster = ibm.ContainerVpcCluster("cluster",
vpc_id="r006-abb7c7ea-aadf-41bd-94c5-b8521736fadf",
kube_version="1.17.5",
flavor="bx2.2x8",
worker_count=1,
resource_group_id=data["ibm_resource_group"]["resource_group"]["id"],
zones=[{
"subnet_id": "0717-0c0899ce-48ac-4eb6-892d-4e2e1ff8c9478",
"name": "us-south-1",
}])
package main
import (
"github.com/pulumi/pulumi-terraform-provider/sdks/go/ibm/ibm"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := ibm.NewContainerVpcCluster(ctx, "cluster", &ibm.ContainerVpcClusterArgs{
VpcId: pulumi.String("r006-abb7c7ea-aadf-41bd-94c5-b8521736fadf"),
KubeVersion: pulumi.String("1.17.5"),
Flavor: pulumi.String("bx2.2x8"),
WorkerCount: pulumi.Float64(1),
ResourceGroupId: pulumi.Any(data.Ibm_resource_group.Resource_group.Id),
Zones: ibm.ContainerVpcClusterZoneArray{
&ibm.ContainerVpcClusterZoneArgs{
SubnetId: pulumi.String("0717-0c0899ce-48ac-4eb6-892d-4e2e1ff8c9478"),
Name: pulumi.String("us-south-1"),
},
},
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Ibm = Pulumi.Ibm;
return await Deployment.RunAsync(() =>
{
var cluster = new Ibm.ContainerVpcCluster("cluster", new()
{
VpcId = "r006-abb7c7ea-aadf-41bd-94c5-b8521736fadf",
KubeVersion = "1.17.5",
Flavor = "bx2.2x8",
WorkerCount = 1,
ResourceGroupId = data.Ibm_resource_group.Resource_group.Id,
Zones = new[]
{
new Ibm.Inputs.ContainerVpcClusterZoneArgs
{
SubnetId = "0717-0c0899ce-48ac-4eb6-892d-4e2e1ff8c9478",
Name = "us-south-1",
},
},
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.ibm.ContainerVpcCluster;
import com.pulumi.ibm.ContainerVpcClusterArgs;
import com.pulumi.ibm.inputs.ContainerVpcClusterZoneArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var cluster = new ContainerVpcCluster("cluster", ContainerVpcClusterArgs.builder()
.vpcId("r006-abb7c7ea-aadf-41bd-94c5-b8521736fadf")
.kubeVersion("1.17.5")
.flavor("bx2.2x8")
.workerCount("1")
.resourceGroupId(data.ibm_resource_group().resource_group().id())
.zones(ContainerVpcClusterZoneArgs.builder()
.subnetId("0717-0c0899ce-48ac-4eb6-892d-4e2e1ff8c9478")
.name("us-south-1")
.build())
.build());
}
}
resources:
cluster:
type: ibm:ContainerVpcCluster
properties:
vpcId: r006-abb7c7ea-aadf-41bd-94c5-b8521736fadf
kubeVersion: 1.17.5
flavor: bx2.2x8
workerCount: '1'
resourceGroupId: ${data.ibm_resource_group.resource_group.id}
zones:
- subnetId: 0717-0c0899ce-48ac-4eb6-892d-4e2e1ff8c9478
name: us-south-1
Example with boot volume encryption
In the following example, you can create a Gen-2 VPC cluster with a default worker pool with one worker with boot volume encryption:
import * as pulumi from "@pulumi/pulumi";
import * as ibm from "@pulumi/ibm";
const cluster = new ibm.ContainerVpcCluster("cluster", {
vpcId: "r006-abb7c7ea-aadf-41bd-94c5-b8521736fadf",
kubeVersion: "1.17.5",
flavor: "bx2.2x8",
workerCount: 1,
resourceGroupId: data.ibm_resource_group.resource_group.id,
zones: [{
subnetId: "0717-0c0899ce-48ac-4eb6-892d-4e2e1ff8c9478",
name: "us-south-1",
}],
kmsInstanceId: "8e9056e6-1936-4dd9-a0a1-51d824765e11",
crk: "804cb251-fa0a-46f5-a442-fe42cfb0ed5f",
});
import pulumi
import pulumi_ibm as ibm
cluster = ibm.ContainerVpcCluster("cluster",
vpc_id="r006-abb7c7ea-aadf-41bd-94c5-b8521736fadf",
kube_version="1.17.5",
flavor="bx2.2x8",
worker_count=1,
resource_group_id=data["ibm_resource_group"]["resource_group"]["id"],
zones=[{
"subnet_id": "0717-0c0899ce-48ac-4eb6-892d-4e2e1ff8c9478",
"name": "us-south-1",
}],
kms_instance_id="8e9056e6-1936-4dd9-a0a1-51d824765e11",
crk="804cb251-fa0a-46f5-a442-fe42cfb0ed5f")
package main
import (
"github.com/pulumi/pulumi-terraform-provider/sdks/go/ibm/ibm"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := ibm.NewContainerVpcCluster(ctx, "cluster", &ibm.ContainerVpcClusterArgs{
VpcId: pulumi.String("r006-abb7c7ea-aadf-41bd-94c5-b8521736fadf"),
KubeVersion: pulumi.String("1.17.5"),
Flavor: pulumi.String("bx2.2x8"),
WorkerCount: pulumi.Float64(1),
ResourceGroupId: pulumi.Any(data.Ibm_resource_group.Resource_group.Id),
Zones: ibm.ContainerVpcClusterZoneArray{
&ibm.ContainerVpcClusterZoneArgs{
SubnetId: pulumi.String("0717-0c0899ce-48ac-4eb6-892d-4e2e1ff8c9478"),
Name: pulumi.String("us-south-1"),
},
},
KmsInstanceId: pulumi.String("8e9056e6-1936-4dd9-a0a1-51d824765e11"),
Crk: pulumi.String("804cb251-fa0a-46f5-a442-fe42cfb0ed5f"),
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Ibm = Pulumi.Ibm;
return await Deployment.RunAsync(() =>
{
var cluster = new Ibm.ContainerVpcCluster("cluster", new()
{
VpcId = "r006-abb7c7ea-aadf-41bd-94c5-b8521736fadf",
KubeVersion = "1.17.5",
Flavor = "bx2.2x8",
WorkerCount = 1,
ResourceGroupId = data.Ibm_resource_group.Resource_group.Id,
Zones = new[]
{
new Ibm.Inputs.ContainerVpcClusterZoneArgs
{
SubnetId = "0717-0c0899ce-48ac-4eb6-892d-4e2e1ff8c9478",
Name = "us-south-1",
},
},
KmsInstanceId = "8e9056e6-1936-4dd9-a0a1-51d824765e11",
Crk = "804cb251-fa0a-46f5-a442-fe42cfb0ed5f",
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.ibm.ContainerVpcCluster;
import com.pulumi.ibm.ContainerVpcClusterArgs;
import com.pulumi.ibm.inputs.ContainerVpcClusterZoneArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var cluster = new ContainerVpcCluster("cluster", ContainerVpcClusterArgs.builder()
.vpcId("r006-abb7c7ea-aadf-41bd-94c5-b8521736fadf")
.kubeVersion("1.17.5")
.flavor("bx2.2x8")
.workerCount("1")
.resourceGroupId(data.ibm_resource_group().resource_group().id())
.zones(ContainerVpcClusterZoneArgs.builder()
.subnetId("0717-0c0899ce-48ac-4eb6-892d-4e2e1ff8c9478")
.name("us-south-1")
.build())
.kmsInstanceId("8e9056e6-1936-4dd9-a0a1-51d824765e11")
.crk("804cb251-fa0a-46f5-a442-fe42cfb0ed5f")
.build());
}
}
resources:
cluster:
type: ibm:ContainerVpcCluster
properties:
vpcId: r006-abb7c7ea-aadf-41bd-94c5-b8521736fadf
kubeVersion: 1.17.5
flavor: bx2.2x8
workerCount: '1'
resourceGroupId: ${data.ibm_resource_group.resource_group.id}
zones:
- subnetId: 0717-0c0899ce-48ac-4eb6-892d-4e2e1ff8c9478
name: us-south-1
kmsInstanceId: 8e9056e6-1936-4dd9-a0a1-51d824765e11
crk: 804cb251-fa0a-46f5-a442-fe42cfb0ed5f
VPC Generation 2 Red Hat OpenShift on IBM Cloud cluster with existing OpenShift entitlement
Create the Openshift Cluster with default worker pool entitlement with one worker node:
import * as pulumi from "@pulumi/pulumi";
import * as ibm from "@pulumi/ibm";
const cosInstance = new ibm.ResourceInstance("cosInstance", {
service: "cloud-object-storage",
plan: "standard",
location: "global",
});
const cluster = new ibm.ContainerVpcCluster("cluster", {
vpcId: "r006-abb7c7ea-aadf-41bd-94c5-b8521736fadf",
kubeVersion: "4.3_openshift",
flavor: "bx2.16x64",
workerCount: 2,
entitlement: "cloud_pak",
cosInstanceCrn: cosInstance.resourceInstanceId,
resourceGroupId: data.ibm_resource_group.resource_group.id,
zones: [{
subnetId: "0717-0c0899ce-48ac-4eb6-892d-4e2e1ff8c9478",
name: "us-south-1",
}],
});
import pulumi
import pulumi_ibm as ibm
cos_instance = ibm.ResourceInstance("cosInstance",
service="cloud-object-storage",
plan="standard",
location="global")
cluster = ibm.ContainerVpcCluster("cluster",
vpc_id="r006-abb7c7ea-aadf-41bd-94c5-b8521736fadf",
kube_version="4.3_openshift",
flavor="bx2.16x64",
worker_count=2,
entitlement="cloud_pak",
cos_instance_crn=cos_instance.resource_instance_id,
resource_group_id=data["ibm_resource_group"]["resource_group"]["id"],
zones=[{
"subnet_id": "0717-0c0899ce-48ac-4eb6-892d-4e2e1ff8c9478",
"name": "us-south-1",
}])
package main
import (
"github.com/pulumi/pulumi-terraform-provider/sdks/go/ibm/ibm"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
cosInstance, err := ibm.NewResourceInstance(ctx, "cosInstance", &ibm.ResourceInstanceArgs{
Service: pulumi.String("cloud-object-storage"),
Plan: pulumi.String("standard"),
Location: pulumi.String("global"),
})
if err != nil {
return err
}
_, err = ibm.NewContainerVpcCluster(ctx, "cluster", &ibm.ContainerVpcClusterArgs{
VpcId: pulumi.String("r006-abb7c7ea-aadf-41bd-94c5-b8521736fadf"),
KubeVersion: pulumi.String("4.3_openshift"),
Flavor: pulumi.String("bx2.16x64"),
WorkerCount: pulumi.Float64(2),
Entitlement: pulumi.String("cloud_pak"),
CosInstanceCrn: cosInstance.ResourceInstanceId,
ResourceGroupId: pulumi.Any(data.Ibm_resource_group.Resource_group.Id),
Zones: ibm.ContainerVpcClusterZoneArray{
&ibm.ContainerVpcClusterZoneArgs{
SubnetId: pulumi.String("0717-0c0899ce-48ac-4eb6-892d-4e2e1ff8c9478"),
Name: pulumi.String("us-south-1"),
},
},
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Ibm = Pulumi.Ibm;
return await Deployment.RunAsync(() =>
{
var cosInstance = new Ibm.ResourceInstance("cosInstance", new()
{
Service = "cloud-object-storage",
Plan = "standard",
Location = "global",
});
var cluster = new Ibm.ContainerVpcCluster("cluster", new()
{
VpcId = "r006-abb7c7ea-aadf-41bd-94c5-b8521736fadf",
KubeVersion = "4.3_openshift",
Flavor = "bx2.16x64",
WorkerCount = 2,
Entitlement = "cloud_pak",
CosInstanceCrn = cosInstance.ResourceInstanceId,
ResourceGroupId = data.Ibm_resource_group.Resource_group.Id,
Zones = new[]
{
new Ibm.Inputs.ContainerVpcClusterZoneArgs
{
SubnetId = "0717-0c0899ce-48ac-4eb6-892d-4e2e1ff8c9478",
Name = "us-south-1",
},
},
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.ibm.ResourceInstance;
import com.pulumi.ibm.ResourceInstanceArgs;
import com.pulumi.ibm.ContainerVpcCluster;
import com.pulumi.ibm.ContainerVpcClusterArgs;
import com.pulumi.ibm.inputs.ContainerVpcClusterZoneArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var cosInstance = new ResourceInstance("cosInstance", ResourceInstanceArgs.builder()
.service("cloud-object-storage")
.plan("standard")
.location("global")
.build());
var cluster = new ContainerVpcCluster("cluster", ContainerVpcClusterArgs.builder()
.vpcId("r006-abb7c7ea-aadf-41bd-94c5-b8521736fadf")
.kubeVersion("4.3_openshift")
.flavor("bx2.16x64")
.workerCount("2")
.entitlement("cloud_pak")
.cosInstanceCrn(cosInstance.resourceInstanceId())
.resourceGroupId(data.ibm_resource_group().resource_group().id())
.zones(ContainerVpcClusterZoneArgs.builder()
.subnetId("0717-0c0899ce-48ac-4eb6-892d-4e2e1ff8c9478")
.name("us-south-1")
.build())
.build());
}
}
resources:
cosInstance:
type: ibm:ResourceInstance
properties:
service: cloud-object-storage
plan: standard
location: global
cluster:
type: ibm:ContainerVpcCluster
properties:
vpcId: r006-abb7c7ea-aadf-41bd-94c5-b8521736fadf
kubeVersion: 4.3_openshift
flavor: bx2.16x64
workerCount: '2'
entitlement: cloud_pak
cosInstanceCrn: ${cosInstance.resourceInstanceId}
resourceGroupId: ${data.ibm_resource_group.resource_group.id}
zones:
- subnetId: 0717-0c0899ce-48ac-4eb6-892d-4e2e1ff8c9478
name: us-south-1
Create a KMS Enabled Kubernetes cluster:
import * as pulumi from "@pulumi/pulumi";
import * as ibm from "@pulumi/ibm";
const cluster = new ibm.ContainerVpcCluster("cluster", {
vpcId: ibm_is_vpc.vpc1.id,
flavor: "bx2.2x8",
workerCount: 1,
waitTill: "OneWorkerNodeReady",
resourceGroupId: data.ibm_resource_group.resource_group.id,
zones: [{
subnetId: ibm_is_subnet.subnet1.id,
name: "us-south-1",
}],
kmsConfig: {
instanceId: "12043812-757f-4e1e-8436-6af3245e6a69",
crkId: "0792853c-b9f9-4b35-9d9e-ffceab51d3c1",
privateEndpoint: false,
},
});
import pulumi
import pulumi_ibm as ibm
cluster = ibm.ContainerVpcCluster("cluster",
vpc_id=ibm_is_vpc["vpc1"]["id"],
flavor="bx2.2x8",
worker_count=1,
wait_till="OneWorkerNodeReady",
resource_group_id=data["ibm_resource_group"]["resource_group"]["id"],
zones=[{
"subnet_id": ibm_is_subnet["subnet1"]["id"],
"name": "us-south-1",
}],
kms_config={
"instance_id": "12043812-757f-4e1e-8436-6af3245e6a69",
"crk_id": "0792853c-b9f9-4b35-9d9e-ffceab51d3c1",
"private_endpoint": False,
})
package main
import (
"github.com/pulumi/pulumi-terraform-provider/sdks/go/ibm/ibm"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := ibm.NewContainerVpcCluster(ctx, "cluster", &ibm.ContainerVpcClusterArgs{
VpcId: pulumi.Any(ibm_is_vpc.Vpc1.Id),
Flavor: pulumi.String("bx2.2x8"),
WorkerCount: pulumi.Float64(1),
WaitTill: pulumi.String("OneWorkerNodeReady"),
ResourceGroupId: pulumi.Any(data.Ibm_resource_group.Resource_group.Id),
Zones: ibm.ContainerVpcClusterZoneArray{
&ibm.ContainerVpcClusterZoneArgs{
SubnetId: pulumi.Any(ibm_is_subnet.Subnet1.Id),
Name: pulumi.String("us-south-1"),
},
},
KmsConfig: &ibm.ContainerVpcClusterKmsConfigArgs{
InstanceId: pulumi.String("12043812-757f-4e1e-8436-6af3245e6a69"),
CrkId: pulumi.String("0792853c-b9f9-4b35-9d9e-ffceab51d3c1"),
PrivateEndpoint: pulumi.Bool(false),
},
})
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Ibm = Pulumi.Ibm;
return await Deployment.RunAsync(() =>
{
var cluster = new Ibm.ContainerVpcCluster("cluster", new()
{
VpcId = ibm_is_vpc.Vpc1.Id,
Flavor = "bx2.2x8",
WorkerCount = 1,
WaitTill = "OneWorkerNodeReady",
ResourceGroupId = data.Ibm_resource_group.Resource_group.Id,
Zones = new[]
{
new Ibm.Inputs.ContainerVpcClusterZoneArgs
{
SubnetId = ibm_is_subnet.Subnet1.Id,
Name = "us-south-1",
},
},
KmsConfig = new Ibm.Inputs.ContainerVpcClusterKmsConfigArgs
{
InstanceId = "12043812-757f-4e1e-8436-6af3245e6a69",
CrkId = "0792853c-b9f9-4b35-9d9e-ffceab51d3c1",
PrivateEndpoint = false,
},
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.ibm.ContainerVpcCluster;
import com.pulumi.ibm.ContainerVpcClusterArgs;
import com.pulumi.ibm.inputs.ContainerVpcClusterZoneArgs;
import com.pulumi.ibm.inputs.ContainerVpcClusterKmsConfigArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var cluster = new ContainerVpcCluster("cluster", ContainerVpcClusterArgs.builder()
.vpcId(ibm_is_vpc.vpc1().id())
.flavor("bx2.2x8")
.workerCount("1")
.waitTill("OneWorkerNodeReady")
.resourceGroupId(data.ibm_resource_group().resource_group().id())
.zones(ContainerVpcClusterZoneArgs.builder()
.subnetId(ibm_is_subnet.subnet1().id())
.name("us-south-1")
.build())
.kmsConfig(ContainerVpcClusterKmsConfigArgs.builder()
.instanceId("12043812-757f-4e1e-8436-6af3245e6a69")
.crkId("0792853c-b9f9-4b35-9d9e-ffceab51d3c1")
.privateEndpoint(false)
.build())
.build());
}
}
resources:
cluster:
type: ibm:ContainerVpcCluster
properties:
vpcId: ${ibm_is_vpc.vpc1.id}
flavor: bx2.2x8
workerCount: '1'
waitTill: OneWorkerNodeReady
resourceGroupId: ${data.ibm_resource_group.resource_group.id}
zones:
- subnetId: ${ibm_is_subnet.subnet1.id}
name: us-south-1
kmsConfig:
instanceId: 12043812-757f-4e1e-8436-6af3245e6a69
crkId: 0792853c-b9f9-4b35-9d9e-ffceab51d3c1
privateEndpoint: false
Create ContainerVpcCluster Resource
Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.
Constructor syntax
new ContainerVpcCluster(name: string, args: ContainerVpcClusterArgs, opts?: CustomResourceOptions);@overload
def ContainerVpcCluster(resource_name: str,
args: ContainerVpcClusterArgs,
opts: Optional[ResourceOptions] = None)
@overload
def ContainerVpcCluster(resource_name: str,
opts: Optional[ResourceOptions] = None,
flavor: Optional[str] = None,
zones: Optional[Sequence[ContainerVpcClusterZoneArgs]] = None,
vpc_id: Optional[str] = None,
operating_system: Optional[str] = None,
resource_group_id: Optional[str] = None,
enable_secure_by_default: Optional[bool] = None,
entitlement: Optional[str] = None,
disable_outbound_traffic_protection: Optional[bool] = None,
force_delete_storage: Optional[bool] = None,
host_pool_id: Optional[str] = None,
image_security_enforcement: Optional[bool] = None,
kms_account_id: Optional[str] = None,
kms_config: Optional[ContainerVpcClusterKmsConfigArgs] = None,
kms_instance_id: Optional[str] = None,
kube_version: Optional[str] = None,
name: Optional[str] = None,
container_vpc_cluster_id: Optional[str] = None,
disable_public_service_endpoint: Optional[bool] = None,
patch_version: Optional[str] = None,
secondary_storage: Optional[str] = None,
retry_patch_version: Optional[float] = None,
pod_subnet: Optional[str] = None,
security_groups: Optional[Sequence[str]] = None,
service_subnet: Optional[str] = None,
tags: Optional[Sequence[str]] = None,
taints: Optional[Sequence[ContainerVpcClusterTaintArgs]] = None,
timeouts: Optional[ContainerVpcClusterTimeoutsArgs] = None,
update_all_workers: Optional[bool] = None,
crk: Optional[str] = None,
wait_for_worker_update: Optional[bool] = None,
wait_till: Optional[str] = None,
worker_count: Optional[float] = None,
worker_labels: Optional[Mapping[str, str]] = None,
cos_instance_crn: Optional[str] = None)func NewContainerVpcCluster(ctx *Context, name string, args ContainerVpcClusterArgs, opts ...ResourceOption) (*ContainerVpcCluster, error)public ContainerVpcCluster(string name, ContainerVpcClusterArgs args, CustomResourceOptions? opts = null)
public ContainerVpcCluster(String name, ContainerVpcClusterArgs args)
public ContainerVpcCluster(String name, ContainerVpcClusterArgs args, CustomResourceOptions options)
type: ibm:ContainerVpcCluster
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
Parameters
- name string
- The unique name of the resource.
- args ContainerVpcClusterArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args ContainerVpcClusterArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args ContainerVpcClusterArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args ContainerVpcClusterArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args ContainerVpcClusterArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
Constructor example
The following reference example uses placeholder values for all input properties.
var containerVpcClusterResource = new Ibm.ContainerVpcCluster("containerVpcClusterResource", new()
{
Flavor = "string",
Zones = new[]
{
new Ibm.Inputs.ContainerVpcClusterZoneArgs
{
Name = "string",
SubnetId = "string",
},
},
VpcId = "string",
OperatingSystem = "string",
ResourceGroupId = "string",
EnableSecureByDefault = false,
Entitlement = "string",
DisableOutboundTrafficProtection = false,
ForceDeleteStorage = false,
HostPoolId = "string",
ImageSecurityEnforcement = false,
KmsAccountId = "string",
KmsConfig = new Ibm.Inputs.ContainerVpcClusterKmsConfigArgs
{
CrkId = "string",
InstanceId = "string",
AccountId = "string",
PrivateEndpoint = false,
WaitForApply = false,
},
KmsInstanceId = "string",
KubeVersion = "string",
Name = "string",
ContainerVpcClusterId = "string",
DisablePublicServiceEndpoint = false,
PatchVersion = "string",
SecondaryStorage = "string",
RetryPatchVersion = 0,
PodSubnet = "string",
SecurityGroups = new[]
{
"string",
},
ServiceSubnet = "string",
Tags = new[]
{
"string",
},
Taints = new[]
{
new Ibm.Inputs.ContainerVpcClusterTaintArgs
{
Effect = "string",
Key = "string",
Value = "string",
},
},
Timeouts = new Ibm.Inputs.ContainerVpcClusterTimeoutsArgs
{
Create = "string",
Delete = "string",
Update = "string",
},
UpdateAllWorkers = false,
Crk = "string",
WaitForWorkerUpdate = false,
WaitTill = "string",
WorkerCount = 0,
WorkerLabels =
{
{ "string", "string" },
},
CosInstanceCrn = "string",
});
example, err := ibm.NewContainerVpcCluster(ctx, "containerVpcClusterResource", &ibm.ContainerVpcClusterArgs{
Flavor: pulumi.String("string"),
Zones: ibm.ContainerVpcClusterZoneArray{
&ibm.ContainerVpcClusterZoneArgs{
Name: pulumi.String("string"),
SubnetId: pulumi.String("string"),
},
},
VpcId: pulumi.String("string"),
OperatingSystem: pulumi.String("string"),
ResourceGroupId: pulumi.String("string"),
EnableSecureByDefault: pulumi.Bool(false),
Entitlement: pulumi.String("string"),
DisableOutboundTrafficProtection: pulumi.Bool(false),
ForceDeleteStorage: pulumi.Bool(false),
HostPoolId: pulumi.String("string"),
ImageSecurityEnforcement: pulumi.Bool(false),
KmsAccountId: pulumi.String("string"),
KmsConfig: &ibm.ContainerVpcClusterKmsConfigArgs{
CrkId: pulumi.String("string"),
InstanceId: pulumi.String("string"),
AccountId: pulumi.String("string"),
PrivateEndpoint: pulumi.Bool(false),
WaitForApply: pulumi.Bool(false),
},
KmsInstanceId: pulumi.String("string"),
KubeVersion: pulumi.String("string"),
Name: pulumi.String("string"),
ContainerVpcClusterId: pulumi.String("string"),
DisablePublicServiceEndpoint: pulumi.Bool(false),
PatchVersion: pulumi.String("string"),
SecondaryStorage: pulumi.String("string"),
RetryPatchVersion: pulumi.Float64(0),
PodSubnet: pulumi.String("string"),
SecurityGroups: pulumi.StringArray{
pulumi.String("string"),
},
ServiceSubnet: pulumi.String("string"),
Tags: pulumi.StringArray{
pulumi.String("string"),
},
Taints: ibm.ContainerVpcClusterTaintArray{
&ibm.ContainerVpcClusterTaintArgs{
Effect: pulumi.String("string"),
Key: pulumi.String("string"),
Value: pulumi.String("string"),
},
},
Timeouts: &ibm.ContainerVpcClusterTimeoutsArgs{
Create: pulumi.String("string"),
Delete: pulumi.String("string"),
Update: pulumi.String("string"),
},
UpdateAllWorkers: pulumi.Bool(false),
Crk: pulumi.String("string"),
WaitForWorkerUpdate: pulumi.Bool(false),
WaitTill: pulumi.String("string"),
WorkerCount: pulumi.Float64(0),
WorkerLabels: pulumi.StringMap{
"string": pulumi.String("string"),
},
CosInstanceCrn: pulumi.String("string"),
})
var containerVpcClusterResource = new ContainerVpcCluster("containerVpcClusterResource", ContainerVpcClusterArgs.builder()
.flavor("string")
.zones(ContainerVpcClusterZoneArgs.builder()
.name("string")
.subnetId("string")
.build())
.vpcId("string")
.operatingSystem("string")
.resourceGroupId("string")
.enableSecureByDefault(false)
.entitlement("string")
.disableOutboundTrafficProtection(false)
.forceDeleteStorage(false)
.hostPoolId("string")
.imageSecurityEnforcement(false)
.kmsAccountId("string")
.kmsConfig(ContainerVpcClusterKmsConfigArgs.builder()
.crkId("string")
.instanceId("string")
.accountId("string")
.privateEndpoint(false)
.waitForApply(false)
.build())
.kmsInstanceId("string")
.kubeVersion("string")
.name("string")
.containerVpcClusterId("string")
.disablePublicServiceEndpoint(false)
.patchVersion("string")
.secondaryStorage("string")
.retryPatchVersion(0)
.podSubnet("string")
.securityGroups("string")
.serviceSubnet("string")
.tags("string")
.taints(ContainerVpcClusterTaintArgs.builder()
.effect("string")
.key("string")
.value("string")
.build())
.timeouts(ContainerVpcClusterTimeoutsArgs.builder()
.create("string")
.delete("string")
.update("string")
.build())
.updateAllWorkers(false)
.crk("string")
.waitForWorkerUpdate(false)
.waitTill("string")
.workerCount(0)
.workerLabels(Map.of("string", "string"))
.cosInstanceCrn("string")
.build());
container_vpc_cluster_resource = ibm.ContainerVpcCluster("containerVpcClusterResource",
flavor="string",
zones=[{
"name": "string",
"subnet_id": "string",
}],
vpc_id="string",
operating_system="string",
resource_group_id="string",
enable_secure_by_default=False,
entitlement="string",
disable_outbound_traffic_protection=False,
force_delete_storage=False,
host_pool_id="string",
image_security_enforcement=False,
kms_account_id="string",
kms_config={
"crk_id": "string",
"instance_id": "string",
"account_id": "string",
"private_endpoint": False,
"wait_for_apply": False,
},
kms_instance_id="string",
kube_version="string",
name="string",
container_vpc_cluster_id="string",
disable_public_service_endpoint=False,
patch_version="string",
secondary_storage="string",
retry_patch_version=0,
pod_subnet="string",
security_groups=["string"],
service_subnet="string",
tags=["string"],
taints=[{
"effect": "string",
"key": "string",
"value": "string",
}],
timeouts={
"create": "string",
"delete": "string",
"update": "string",
},
update_all_workers=False,
crk="string",
wait_for_worker_update=False,
wait_till="string",
worker_count=0,
worker_labels={
"string": "string",
},
cos_instance_crn="string")
const containerVpcClusterResource = new ibm.ContainerVpcCluster("containerVpcClusterResource", {
flavor: "string",
zones: [{
name: "string",
subnetId: "string",
}],
vpcId: "string",
operatingSystem: "string",
resourceGroupId: "string",
enableSecureByDefault: false,
entitlement: "string",
disableOutboundTrafficProtection: false,
forceDeleteStorage: false,
hostPoolId: "string",
imageSecurityEnforcement: false,
kmsAccountId: "string",
kmsConfig: {
crkId: "string",
instanceId: "string",
accountId: "string",
privateEndpoint: false,
waitForApply: false,
},
kmsInstanceId: "string",
kubeVersion: "string",
name: "string",
containerVpcClusterId: "string",
disablePublicServiceEndpoint: false,
patchVersion: "string",
secondaryStorage: "string",
retryPatchVersion: 0,
podSubnet: "string",
securityGroups: ["string"],
serviceSubnet: "string",
tags: ["string"],
taints: [{
effect: "string",
key: "string",
value: "string",
}],
timeouts: {
create: "string",
"delete": "string",
update: "string",
},
updateAllWorkers: false,
crk: "string",
waitForWorkerUpdate: false,
waitTill: "string",
workerCount: 0,
workerLabels: {
string: "string",
},
cosInstanceCrn: "string",
});
type: ibm:ContainerVpcCluster
properties:
containerVpcClusterId: string
cosInstanceCrn: string
crk: string
disableOutboundTrafficProtection: false
disablePublicServiceEndpoint: false
enableSecureByDefault: false
entitlement: string
flavor: string
forceDeleteStorage: false
hostPoolId: string
imageSecurityEnforcement: false
kmsAccountId: string
kmsConfig:
accountId: string
crkId: string
instanceId: string
privateEndpoint: false
waitForApply: false
kmsInstanceId: string
kubeVersion: string
name: string
operatingSystem: string
patchVersion: string
podSubnet: string
resourceGroupId: string
retryPatchVersion: 0
secondaryStorage: string
securityGroups:
- string
serviceSubnet: string
tags:
- string
taints:
- effect: string
key: string
value: string
timeouts:
create: string
delete: string
update: string
updateAllWorkers: false
vpcId: string
waitForWorkerUpdate: false
waitTill: string
workerCount: 0
workerLabels:
string: string
zones:
- name: string
subnetId: string
ContainerVpcCluster Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.
The ContainerVpcCluster resource accepts the following input properties:
- Flavor string
- The flavor of the VPC worker nodes in the default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- Vpc
Id string - The ID of the VPC that you want to use for your cluster. To list available VPCs, run
ibmcloud is vpcs. - Zones
List<Container
Vpc Cluster Zone> A nested block describes the zones of this VPC cluster's default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
Nested scheme for
zones:- Container
Vpc stringCluster Id - (String) The ID of the VPC cluster.
- Cos
Instance stringCrn - Required for OpenShift clusters only. The standard IBM Cloud Object Storage instance CRN to back up the internal registry in your OpenShift on VPC Generation 2 cluster.
- Crk string
- Root Key ID for boot volume encryption.
- Disable
Outbound boolTraffic Protection - Include this option to allow public outbound access from the cluster workers. By default, public outbound access is blocked in OpenShift versions 4.15 and later and Kubernetes versions 1.30 and later. This option is usable only from OpenShift versions 4.15 and later and Kubernetes versions 1.30 and later.
- Disable
Public boolService Endpoint - Disable the public service endpoint to prevent public access to the Kubernetes master. Default value is
false. - Enable
Secure boolBy Default Enables Secure-by-default security group configuration. Once the upgrade begins, it cannot be undone. During the upgrade, network traffic to your cluster may temporarily be blocked. This option is usable only from OpenShift versions 4.15 and later and Kubernetes versions 1.30 and later.
Note
- For users on account to add tags to a resource, you need to assign the right access. For more information, about tags, see Tags permission.
wait_tillis set only for the first time creation of the resource, further modification are not impacted.
- Entitlement string
- Entitlement reduces additional OCP Licence cost in OpenShift clusters. Use Cloud Pak with OCP Licence entitlement to create the OpenShift cluster. Note It is set only when the first time creation of the cluster, further modifications are not impacted. Set this argument to
cloud_pakonly if you use the cluster with a Cloud Pak that has an OpenShift entitlement.. - Force
Delete boolStorage - Force the removal of a cluster and its persistent storage. Deleted data cannot be recovered
- Host
Pool stringId - If provided, the cluster will be associated with a dedicated host pool identified by this ID.
- Image
Security boolEnforcement - Set to true to enable image security enforcement policies in a cluster.
- Kms
Account stringId - Account ID for boot volume encryption, if other account is providing the kms.
- Kms
Config ContainerVpc Cluster Kms Config - Use to attach a Key Protect instance to a cluster. Nested
kms_configblock has aninstance_id,crk_id,private_endpointandaccount_id. - Kms
Instance stringId - Instance ID for boot volume encryption.
- Kube
Version string - Specify the Kubernetes version, including the major.minor version. If you do not include this flag, the default version is used. To see available versions, run
ibmcloud ks versions. - Name string
- The name of the cluster.
- Operating
System string - The operating system of the workers in the default worker pool. For supported options, see Red Hat OpenShift on IBM Cloud version information or IBM Cloud Kubernetes Service version information. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- Patch
Version string - Updates the worker nodes with the required patch version. The patch_version should be in the format:
patch_version_fixpack_version. For more information, about Kubernetes version information and update, see Kubernetes version update. Note To update the patch or fix pack versions of the worker nodes, run the commandibmcloud ks workers -c <cluster_name_or_id> output json. Fetch the required patch & fix pack versions fromkubeVersion.targetand set thepatch_versionparameter. - Pod
Subnet string - Specify a custom subnet CIDR to provide private IP addresses for pods. The subnet must have a CIDR of at least
/23or larger. For more information, see the documentation. Default value is172.30.0.0/16. - Resource
Group stringId - The ID of the resource group. You can retrieve the value by running
ibmcloud resource groupsor by using theibm.ResourceGroupdata source. If no value is provided, thedefaultresource group is used. - Retry
Patch doubleVersion - This argument retries the update of
patch_versionif the previous update fails. Increment the value to retry the update ofpatch_versionon worker nodes. - Secondary
Storage string - The secondary storage option for the workers in the default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- Security
Groups List<string> - Enables users to define specific security groups for their workers.
- Service
Subnet string - Specify a custom subnet CIDR to provide private IP addresses for services. The subnet must be at least ’/24’ or larger. For more information, see the documentation. Default value is
172.21.0.0/16. - List<string>
- A list of tags that you want to associate with your VPC cluster. Note For users on account to add tags to a resource, they must be assigned the [appropriate permissions]/docs/account?topic=account-access).
- Taints
List<Container
Vpc Cluster Taint> A nested block that sets or removes Kubernetes taints for all worker nodes in a worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
Nested scheme for
taints:- Timeouts
Container
Vpc Cluster Timeouts - Update
All boolWorkers - Set to true, if you want to update workers Kubernetes version with the cluster kube_version.
- Wait
For boolWorker Update - Set to true to wait and update the Kubernetes version of worker nodes. NOTE Setting wait_for_worker_update to false is not recommended. Setting false results in upgrading all the worker nodes in the cluster at the same time causing the cluster downtime.
- Wait
Till string - wait_till can be configured for Master Ready, One worker Ready, Ingress Ready or Normal
- Worker
Count double - The number of worker nodes per zone in the default worker pool. Default value
1. Note If the requested number of worker nodes is fewer than the minimum 2 worker nodes that are required for an OpenShift cluster, cluster creation will be rejected. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource. - Worker
Labels Dictionary<string, string> - Labels on all the workers in the default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- Flavor string
- The flavor of the VPC worker nodes in the default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- Vpc
Id string - The ID of the VPC that you want to use for your cluster. To list available VPCs, run
ibmcloud is vpcs. - Zones
[]Container
Vpc Cluster Zone Args A nested block describes the zones of this VPC cluster's default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
Nested scheme for
zones:- Container
Vpc stringCluster Id - (String) The ID of the VPC cluster.
- Cos
Instance stringCrn - Required for OpenShift clusters only. The standard IBM Cloud Object Storage instance CRN to back up the internal registry in your OpenShift on VPC Generation 2 cluster.
- Crk string
- Root Key ID for boot volume encryption.
- Disable
Outbound boolTraffic Protection - Include this option to allow public outbound access from the cluster workers. By default, public outbound access is blocked in OpenShift versions 4.15 and later and Kubernetes versions 1.30 and later. This option is usable only from OpenShift versions 4.15 and later and Kubernetes versions 1.30 and later.
- Disable
Public boolService Endpoint - Disable the public service endpoint to prevent public access to the Kubernetes master. Default value is
false. - Enable
Secure boolBy Default Enables Secure-by-default security group configuration. Once the upgrade begins, it cannot be undone. During the upgrade, network traffic to your cluster may temporarily be blocked. This option is usable only from OpenShift versions 4.15 and later and Kubernetes versions 1.30 and later.
Note
- For users on account to add tags to a resource, you need to assign the right access. For more information, about tags, see Tags permission.
wait_tillis set only for the first time creation of the resource, further modification are not impacted.
- Entitlement string
- Entitlement reduces additional OCP Licence cost in OpenShift clusters. Use Cloud Pak with OCP Licence entitlement to create the OpenShift cluster. Note It is set only when the first time creation of the cluster, further modifications are not impacted. Set this argument to
cloud_pakonly if you use the cluster with a Cloud Pak that has an OpenShift entitlement.. - Force
Delete boolStorage - Force the removal of a cluster and its persistent storage. Deleted data cannot be recovered
- Host
Pool stringId - If provided, the cluster will be associated with a dedicated host pool identified by this ID.
- Image
Security boolEnforcement - Set to true to enable image security enforcement policies in a cluster.
- Kms
Account stringId - Account ID for boot volume encryption, if other account is providing the kms.
- Kms
Config ContainerVpc Cluster Kms Config Args - Use to attach a Key Protect instance to a cluster. Nested
kms_configblock has aninstance_id,crk_id,private_endpointandaccount_id. - Kms
Instance stringId - Instance ID for boot volume encryption.
- Kube
Version string - Specify the Kubernetes version, including the major.minor version. If you do not include this flag, the default version is used. To see available versions, run
ibmcloud ks versions. - Name string
- The name of the cluster.
- Operating
System string - The operating system of the workers in the default worker pool. For supported options, see Red Hat OpenShift on IBM Cloud version information or IBM Cloud Kubernetes Service version information. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- Patch
Version string - Updates the worker nodes with the required patch version. The patch_version should be in the format:
patch_version_fixpack_version. For more information, about Kubernetes version information and update, see Kubernetes version update. Note To update the patch or fix pack versions of the worker nodes, run the commandibmcloud ks workers -c <cluster_name_or_id> output json. Fetch the required patch & fix pack versions fromkubeVersion.targetand set thepatch_versionparameter. - Pod
Subnet string - Specify a custom subnet CIDR to provide private IP addresses for pods. The subnet must have a CIDR of at least
/23or larger. For more information, see the documentation. Default value is172.30.0.0/16. - Resource
Group stringId - The ID of the resource group. You can retrieve the value by running
ibmcloud resource groupsor by using theibm.ResourceGroupdata source. If no value is provided, thedefaultresource group is used. - Retry
Patch float64Version - This argument retries the update of
patch_versionif the previous update fails. Increment the value to retry the update ofpatch_versionon worker nodes. - Secondary
Storage string - The secondary storage option for the workers in the default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- Security
Groups []string - Enables users to define specific security groups for their workers.
- Service
Subnet string - Specify a custom subnet CIDR to provide private IP addresses for services. The subnet must be at least ’/24’ or larger. For more information, see the documentation. Default value is
172.21.0.0/16. - []string
- A list of tags that you want to associate with your VPC cluster. Note For users on account to add tags to a resource, they must be assigned the [appropriate permissions]/docs/account?topic=account-access).
- Taints
[]Container
Vpc Cluster Taint Args A nested block that sets or removes Kubernetes taints for all worker nodes in a worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
Nested scheme for
taints:- Timeouts
Container
Vpc Cluster Timeouts Args - Update
All boolWorkers - Set to true, if you want to update workers Kubernetes version with the cluster kube_version.
- Wait
For boolWorker Update - Set to true to wait and update the Kubernetes version of worker nodes. NOTE Setting wait_for_worker_update to false is not recommended. Setting false results in upgrading all the worker nodes in the cluster at the same time causing the cluster downtime.
- Wait
Till string - wait_till can be configured for Master Ready, One worker Ready, Ingress Ready or Normal
- Worker
Count float64 - The number of worker nodes per zone in the default worker pool. Default value
1. Note If the requested number of worker nodes is fewer than the minimum 2 worker nodes that are required for an OpenShift cluster, cluster creation will be rejected. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource. - Worker
Labels map[string]string - Labels on all the workers in the default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- flavor String
- The flavor of the VPC worker nodes in the default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- vpc
Id String - The ID of the VPC that you want to use for your cluster. To list available VPCs, run
ibmcloud is vpcs. - zones
List<Container
Vpc Cluster Zone> A nested block describes the zones of this VPC cluster's default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
Nested scheme for
zones:- container
Vpc StringCluster Id - (String) The ID of the VPC cluster.
- cos
Instance StringCrn - Required for OpenShift clusters only. The standard IBM Cloud Object Storage instance CRN to back up the internal registry in your OpenShift on VPC Generation 2 cluster.
- crk String
- Root Key ID for boot volume encryption.
- disable
Outbound BooleanTraffic Protection - Include this option to allow public outbound access from the cluster workers. By default, public outbound access is blocked in OpenShift versions 4.15 and later and Kubernetes versions 1.30 and later. This option is usable only from OpenShift versions 4.15 and later and Kubernetes versions 1.30 and later.
- disable
Public BooleanService Endpoint - Disable the public service endpoint to prevent public access to the Kubernetes master. Default value is
false. - enable
Secure BooleanBy Default Enables Secure-by-default security group configuration. Once the upgrade begins, it cannot be undone. During the upgrade, network traffic to your cluster may temporarily be blocked. This option is usable only from OpenShift versions 4.15 and later and Kubernetes versions 1.30 and later.
Note
- For users on account to add tags to a resource, you need to assign the right access. For more information, about tags, see Tags permission.
wait_tillis set only for the first time creation of the resource, further modification are not impacted.
- entitlement String
- Entitlement reduces additional OCP Licence cost in OpenShift clusters. Use Cloud Pak with OCP Licence entitlement to create the OpenShift cluster. Note It is set only when the first time creation of the cluster, further modifications are not impacted. Set this argument to
cloud_pakonly if you use the cluster with a Cloud Pak that has an OpenShift entitlement.. - force
Delete BooleanStorage - Force the removal of a cluster and its persistent storage. Deleted data cannot be recovered
- host
Pool StringId - If provided, the cluster will be associated with a dedicated host pool identified by this ID.
- image
Security BooleanEnforcement - Set to true to enable image security enforcement policies in a cluster.
- kms
Account StringId - Account ID for boot volume encryption, if other account is providing the kms.
- kms
Config ContainerVpc Cluster Kms Config - Use to attach a Key Protect instance to a cluster. Nested
kms_configblock has aninstance_id,crk_id,private_endpointandaccount_id. - kms
Instance StringId - Instance ID for boot volume encryption.
- kube
Version String - Specify the Kubernetes version, including the major.minor version. If you do not include this flag, the default version is used. To see available versions, run
ibmcloud ks versions. - name String
- The name of the cluster.
- operating
System String - The operating system of the workers in the default worker pool. For supported options, see Red Hat OpenShift on IBM Cloud version information or IBM Cloud Kubernetes Service version information. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- patch
Version String - Updates the worker nodes with the required patch version. The patch_version should be in the format:
patch_version_fixpack_version. For more information, about Kubernetes version information and update, see Kubernetes version update. Note To update the patch or fix pack versions of the worker nodes, run the commandibmcloud ks workers -c <cluster_name_or_id> output json. Fetch the required patch & fix pack versions fromkubeVersion.targetand set thepatch_versionparameter. - pod
Subnet String - Specify a custom subnet CIDR to provide private IP addresses for pods. The subnet must have a CIDR of at least
/23or larger. For more information, see the documentation. Default value is172.30.0.0/16. - resource
Group StringId - The ID of the resource group. You can retrieve the value by running
ibmcloud resource groupsor by using theibm.ResourceGroupdata source. If no value is provided, thedefaultresource group is used. - retry
Patch DoubleVersion - This argument retries the update of
patch_versionif the previous update fails. Increment the value to retry the update ofpatch_versionon worker nodes. - secondary
Storage String - The secondary storage option for the workers in the default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- security
Groups List<String> - Enables users to define specific security groups for their workers.
- service
Subnet String - Specify a custom subnet CIDR to provide private IP addresses for services. The subnet must be at least ’/24’ or larger. For more information, see the documentation. Default value is
172.21.0.0/16. - List<String>
- A list of tags that you want to associate with your VPC cluster. Note For users on account to add tags to a resource, they must be assigned the [appropriate permissions]/docs/account?topic=account-access).
- taints
List<Container
Vpc Cluster Taint> A nested block that sets or removes Kubernetes taints for all worker nodes in a worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
Nested scheme for
taints:- timeouts
Container
Vpc Cluster Timeouts - update
All BooleanWorkers - Set to true, if you want to update workers Kubernetes version with the cluster kube_version.
- wait
For BooleanWorker Update - Set to true to wait and update the Kubernetes version of worker nodes. NOTE Setting wait_for_worker_update to false is not recommended. Setting false results in upgrading all the worker nodes in the cluster at the same time causing the cluster downtime.
- wait
Till String - wait_till can be configured for Master Ready, One worker Ready, Ingress Ready or Normal
- worker
Count Double - The number of worker nodes per zone in the default worker pool. Default value
1. Note If the requested number of worker nodes is fewer than the minimum 2 worker nodes that are required for an OpenShift cluster, cluster creation will be rejected. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource. - worker
Labels Map<String,String> - Labels on all the workers in the default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- flavor string
- The flavor of the VPC worker nodes in the default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- vpc
Id string - The ID of the VPC that you want to use for your cluster. To list available VPCs, run
ibmcloud is vpcs. - zones
Container
Vpc Cluster Zone[] A nested block describes the zones of this VPC cluster's default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
Nested scheme for
zones:- container
Vpc stringCluster Id - (String) The ID of the VPC cluster.
- cos
Instance stringCrn - Required for OpenShift clusters only. The standard IBM Cloud Object Storage instance CRN to back up the internal registry in your OpenShift on VPC Generation 2 cluster.
- crk string
- Root Key ID for boot volume encryption.
- disable
Outbound booleanTraffic Protection - Include this option to allow public outbound access from the cluster workers. By default, public outbound access is blocked in OpenShift versions 4.15 and later and Kubernetes versions 1.30 and later. This option is usable only from OpenShift versions 4.15 and later and Kubernetes versions 1.30 and later.
- disable
Public booleanService Endpoint - Disable the public service endpoint to prevent public access to the Kubernetes master. Default value is
false. - enable
Secure booleanBy Default Enables Secure-by-default security group configuration. Once the upgrade begins, it cannot be undone. During the upgrade, network traffic to your cluster may temporarily be blocked. This option is usable only from OpenShift versions 4.15 and later and Kubernetes versions 1.30 and later.
Note
- For users on account to add tags to a resource, you need to assign the right access. For more information, about tags, see Tags permission.
wait_tillis set only for the first time creation of the resource, further modification are not impacted.
- entitlement string
- Entitlement reduces additional OCP Licence cost in OpenShift clusters. Use Cloud Pak with OCP Licence entitlement to create the OpenShift cluster. Note It is set only when the first time creation of the cluster, further modifications are not impacted. Set this argument to
cloud_pakonly if you use the cluster with a Cloud Pak that has an OpenShift entitlement.. - force
Delete booleanStorage - Force the removal of a cluster and its persistent storage. Deleted data cannot be recovered
- host
Pool stringId - If provided, the cluster will be associated with a dedicated host pool identified by this ID.
- image
Security booleanEnforcement - Set to true to enable image security enforcement policies in a cluster.
- kms
Account stringId - Account ID for boot volume encryption, if other account is providing the kms.
- kms
Config ContainerVpc Cluster Kms Config - Use to attach a Key Protect instance to a cluster. Nested
kms_configblock has aninstance_id,crk_id,private_endpointandaccount_id. - kms
Instance stringId - Instance ID for boot volume encryption.
- kube
Version string - Specify the Kubernetes version, including the major.minor version. If you do not include this flag, the default version is used. To see available versions, run
ibmcloud ks versions. - name string
- The name of the cluster.
- operating
System string - The operating system of the workers in the default worker pool. For supported options, see Red Hat OpenShift on IBM Cloud version information or IBM Cloud Kubernetes Service version information. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- patch
Version string - Updates the worker nodes with the required patch version. The patch_version should be in the format:
patch_version_fixpack_version. For more information, about Kubernetes version information and update, see Kubernetes version update. Note To update the patch or fix pack versions of the worker nodes, run the commandibmcloud ks workers -c <cluster_name_or_id> output json. Fetch the required patch & fix pack versions fromkubeVersion.targetand set thepatch_versionparameter. - pod
Subnet string - Specify a custom subnet CIDR to provide private IP addresses for pods. The subnet must have a CIDR of at least
/23or larger. For more information, see the documentation. Default value is172.30.0.0/16. - resource
Group stringId - The ID of the resource group. You can retrieve the value by running
ibmcloud resource groupsor by using theibm.ResourceGroupdata source. If no value is provided, thedefaultresource group is used. - retry
Patch numberVersion - This argument retries the update of
patch_versionif the previous update fails. Increment the value to retry the update ofpatch_versionon worker nodes. - secondary
Storage string - The secondary storage option for the workers in the default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- security
Groups string[] - Enables users to define specific security groups for their workers.
- service
Subnet string - Specify a custom subnet CIDR to provide private IP addresses for services. The subnet must be at least ’/24’ or larger. For more information, see the documentation. Default value is
172.21.0.0/16. - string[]
- A list of tags that you want to associate with your VPC cluster. Note For users on account to add tags to a resource, they must be assigned the [appropriate permissions]/docs/account?topic=account-access).
- taints
Container
Vpc Cluster Taint[] A nested block that sets or removes Kubernetes taints for all worker nodes in a worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
Nested scheme for
taints:- timeouts
Container
Vpc Cluster Timeouts - update
All booleanWorkers - Set to true, if you want to update workers Kubernetes version with the cluster kube_version.
- wait
For booleanWorker Update - Set to true to wait and update the Kubernetes version of worker nodes. NOTE Setting wait_for_worker_update to false is not recommended. Setting false results in upgrading all the worker nodes in the cluster at the same time causing the cluster downtime.
- wait
Till string - wait_till can be configured for Master Ready, One worker Ready, Ingress Ready or Normal
- worker
Count number - The number of worker nodes per zone in the default worker pool. Default value
1. Note If the requested number of worker nodes is fewer than the minimum 2 worker nodes that are required for an OpenShift cluster, cluster creation will be rejected. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource. - worker
Labels {[key: string]: string} - Labels on all the workers in the default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- flavor str
- The flavor of the VPC worker nodes in the default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- vpc_
id str - The ID of the VPC that you want to use for your cluster. To list available VPCs, run
ibmcloud is vpcs. - zones
Sequence[Container
Vpc Cluster Zone Args] A nested block describes the zones of this VPC cluster's default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
Nested scheme for
zones:- container_
vpc_ strcluster_ id - (String) The ID of the VPC cluster.
- cos_
instance_ strcrn - Required for OpenShift clusters only. The standard IBM Cloud Object Storage instance CRN to back up the internal registry in your OpenShift on VPC Generation 2 cluster.
- crk str
- Root Key ID for boot volume encryption.
- disable_
outbound_ booltraffic_ protection - Include this option to allow public outbound access from the cluster workers. By default, public outbound access is blocked in OpenShift versions 4.15 and later and Kubernetes versions 1.30 and later. This option is usable only from OpenShift versions 4.15 and later and Kubernetes versions 1.30 and later.
- disable_
public_ boolservice_ endpoint - Disable the public service endpoint to prevent public access to the Kubernetes master. Default value is
false. - enable_
secure_ boolby_ default Enables Secure-by-default security group configuration. Once the upgrade begins, it cannot be undone. During the upgrade, network traffic to your cluster may temporarily be blocked. This option is usable only from OpenShift versions 4.15 and later and Kubernetes versions 1.30 and later.
Note
- For users on account to add tags to a resource, you need to assign the right access. For more information, about tags, see Tags permission.
wait_tillis set only for the first time creation of the resource, further modification are not impacted.
- entitlement str
- Entitlement reduces additional OCP Licence cost in OpenShift clusters. Use Cloud Pak with OCP Licence entitlement to create the OpenShift cluster. Note It is set only when the first time creation of the cluster, further modifications are not impacted. Set this argument to
cloud_pakonly if you use the cluster with a Cloud Pak that has an OpenShift entitlement.. - force_
delete_ boolstorage - Force the removal of a cluster and its persistent storage. Deleted data cannot be recovered
- host_
pool_ strid - If provided, the cluster will be associated with a dedicated host pool identified by this ID.
- image_
security_ boolenforcement - Set to true to enable image security enforcement policies in a cluster.
- kms_
account_ strid - Account ID for boot volume encryption, if other account is providing the kms.
- kms_
config ContainerVpc Cluster Kms Config Args - Use to attach a Key Protect instance to a cluster. Nested
kms_configblock has aninstance_id,crk_id,private_endpointandaccount_id. - kms_
instance_ strid - Instance ID for boot volume encryption.
- kube_
version str - Specify the Kubernetes version, including the major.minor version. If you do not include this flag, the default version is used. To see available versions, run
ibmcloud ks versions. - name str
- The name of the cluster.
- operating_
system str - The operating system of the workers in the default worker pool. For supported options, see Red Hat OpenShift on IBM Cloud version information or IBM Cloud Kubernetes Service version information. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- patch_
version str - Updates the worker nodes with the required patch version. The patch_version should be in the format:
patch_version_fixpack_version. For more information, about Kubernetes version information and update, see Kubernetes version update. Note To update the patch or fix pack versions of the worker nodes, run the commandibmcloud ks workers -c <cluster_name_or_id> output json. Fetch the required patch & fix pack versions fromkubeVersion.targetand set thepatch_versionparameter. - pod_
subnet str - Specify a custom subnet CIDR to provide private IP addresses for pods. The subnet must have a CIDR of at least
/23or larger. For more information, see the documentation. Default value is172.30.0.0/16. - resource_
group_ strid - The ID of the resource group. You can retrieve the value by running
ibmcloud resource groupsor by using theibm.ResourceGroupdata source. If no value is provided, thedefaultresource group is used. - retry_
patch_ floatversion - This argument retries the update of
patch_versionif the previous update fails. Increment the value to retry the update ofpatch_versionon worker nodes. - secondary_
storage str - The secondary storage option for the workers in the default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- security_
groups Sequence[str] - Enables users to define specific security groups for their workers.
- service_
subnet str - Specify a custom subnet CIDR to provide private IP addresses for services. The subnet must be at least ’/24’ or larger. For more information, see the documentation. Default value is
172.21.0.0/16. - Sequence[str]
- A list of tags that you want to associate with your VPC cluster. Note For users on account to add tags to a resource, they must be assigned the [appropriate permissions]/docs/account?topic=account-access).
- taints
Sequence[Container
Vpc Cluster Taint Args] A nested block that sets or removes Kubernetes taints for all worker nodes in a worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
Nested scheme for
taints:- timeouts
Container
Vpc Cluster Timeouts Args - update_
all_ boolworkers - Set to true, if you want to update workers Kubernetes version with the cluster kube_version.
- wait_
for_ boolworker_ update - Set to true to wait and update the Kubernetes version of worker nodes. NOTE Setting wait_for_worker_update to false is not recommended. Setting false results in upgrading all the worker nodes in the cluster at the same time causing the cluster downtime.
- wait_
till str - wait_till can be configured for Master Ready, One worker Ready, Ingress Ready or Normal
- worker_
count float - The number of worker nodes per zone in the default worker pool. Default value
1. Note If the requested number of worker nodes is fewer than the minimum 2 worker nodes that are required for an OpenShift cluster, cluster creation will be rejected. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource. - worker_
labels Mapping[str, str] - Labels on all the workers in the default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- flavor String
- The flavor of the VPC worker nodes in the default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- vpc
Id String - The ID of the VPC that you want to use for your cluster. To list available VPCs, run
ibmcloud is vpcs. - zones List<Property Map>
A nested block describes the zones of this VPC cluster's default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
Nested scheme for
zones:- container
Vpc StringCluster Id - (String) The ID of the VPC cluster.
- cos
Instance StringCrn - Required for OpenShift clusters only. The standard IBM Cloud Object Storage instance CRN to back up the internal registry in your OpenShift on VPC Generation 2 cluster.
- crk String
- Root Key ID for boot volume encryption.
- disable
Outbound BooleanTraffic Protection - Include this option to allow public outbound access from the cluster workers. By default, public outbound access is blocked in OpenShift versions 4.15 and later and Kubernetes versions 1.30 and later. This option is usable only from OpenShift versions 4.15 and later and Kubernetes versions 1.30 and later.
- disable
Public BooleanService Endpoint - Disable the public service endpoint to prevent public access to the Kubernetes master. Default value is
false. - enable
Secure BooleanBy Default Enables Secure-by-default security group configuration. Once the upgrade begins, it cannot be undone. During the upgrade, network traffic to your cluster may temporarily be blocked. This option is usable only from OpenShift versions 4.15 and later and Kubernetes versions 1.30 and later.
Note
- For users on account to add tags to a resource, you need to assign the right access. For more information, about tags, see Tags permission.
wait_tillis set only for the first time creation of the resource, further modification are not impacted.
- entitlement String
- Entitlement reduces additional OCP Licence cost in OpenShift clusters. Use Cloud Pak with OCP Licence entitlement to create the OpenShift cluster. Note It is set only when the first time creation of the cluster, further modifications are not impacted. Set this argument to
cloud_pakonly if you use the cluster with a Cloud Pak that has an OpenShift entitlement.. - force
Delete BooleanStorage - Force the removal of a cluster and its persistent storage. Deleted data cannot be recovered
- host
Pool StringId - If provided, the cluster will be associated with a dedicated host pool identified by this ID.
- image
Security BooleanEnforcement - Set to true to enable image security enforcement policies in a cluster.
- kms
Account StringId - Account ID for boot volume encryption, if other account is providing the kms.
- kms
Config Property Map - Use to attach a Key Protect instance to a cluster. Nested
kms_configblock has aninstance_id,crk_id,private_endpointandaccount_id. - kms
Instance StringId - Instance ID for boot volume encryption.
- kube
Version String - Specify the Kubernetes version, including the major.minor version. If you do not include this flag, the default version is used. To see available versions, run
ibmcloud ks versions. - name String
- The name of the cluster.
- operating
System String - The operating system of the workers in the default worker pool. For supported options, see Red Hat OpenShift on IBM Cloud version information or IBM Cloud Kubernetes Service version information. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- patch
Version String - Updates the worker nodes with the required patch version. The patch_version should be in the format:
patch_version_fixpack_version. For more information, about Kubernetes version information and update, see Kubernetes version update. Note To update the patch or fix pack versions of the worker nodes, run the commandibmcloud ks workers -c <cluster_name_or_id> output json. Fetch the required patch & fix pack versions fromkubeVersion.targetand set thepatch_versionparameter. - pod
Subnet String - Specify a custom subnet CIDR to provide private IP addresses for pods. The subnet must have a CIDR of at least
/23or larger. For more information, see the documentation. Default value is172.30.0.0/16. - resource
Group StringId - The ID of the resource group. You can retrieve the value by running
ibmcloud resource groupsor by using theibm.ResourceGroupdata source. If no value is provided, thedefaultresource group is used. - retry
Patch NumberVersion - This argument retries the update of
patch_versionif the previous update fails. Increment the value to retry the update ofpatch_versionon worker nodes. - secondary
Storage String - The secondary storage option for the workers in the default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- security
Groups List<String> - Enables users to define specific security groups for their workers.
- service
Subnet String - Specify a custom subnet CIDR to provide private IP addresses for services. The subnet must be at least ’/24’ or larger. For more information, see the documentation. Default value is
172.21.0.0/16. - List<String>
- A list of tags that you want to associate with your VPC cluster. Note For users on account to add tags to a resource, they must be assigned the [appropriate permissions]/docs/account?topic=account-access).
- taints List<Property Map>
A nested block that sets or removes Kubernetes taints for all worker nodes in a worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
Nested scheme for
taints:- timeouts Property Map
- update
All BooleanWorkers - Set to true, if you want to update workers Kubernetes version with the cluster kube_version.
- wait
For BooleanWorker Update - Set to true to wait and update the Kubernetes version of worker nodes. NOTE Setting wait_for_worker_update to false is not recommended. Setting false results in upgrading all the worker nodes in the cluster at the same time causing the cluster downtime.
- wait
Till String - wait_till can be configured for Master Ready, One worker Ready, Ingress Ready or Normal
- worker
Count Number - The number of worker nodes per zone in the default worker pool. Default value
1. Note If the requested number of worker nodes is fewer than the minimum 2 worker nodes that are required for an OpenShift cluster, cluster creation will be rejected. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource. - worker
Labels Map<String> - Labels on all the workers in the default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
Outputs
All input properties are implicitly available as output properties. Additionally, the ContainerVpcCluster resource produces the following output properties:
- Albs
List<Container
Vpc Cluster Alb> - (List of Objects) A list of Application Load Balancers (ALBs) that are attached to the cluster.
- Crn string
- (String) The CRN of the VPC cluster.
- Id string
- The provider-assigned unique ID for this managed resource.
- Ingress
Hostname string - (String) The hostname that was assigned to your Ingress subdomain.
- Ingress
Secret string - (String) The name of the Ingress secret that was created for you and that the Ingress subdomain uses.
- Master
Status string - (String) The status of the Kubernetes master.
- Master
Url string - (String) The URL of the Kubernetes master.
- Private
Service stringEndpoint Url - (String) The private service endpoint URL.
- Public
Service stringEndpoint Url - (String) The public service endpoint URL.
- Resource
Controller stringUrl - The URL of the IBM Cloud dashboard that can be used to explore and view details about this cluster
- Resource
Crn string - The crn of the resource
- Resource
Group stringName - The resource group name in which resource is provisioned
- Resource
Name string - The name of the resource
- Resource
Status string - The status of the resource
- State string
- (String) The state of the VPC cluster.
- Vpe
Service stringEndpoint Url - (String) The virtual private endpoint URL.
- Albs
[]Container
Vpc Cluster Alb - (List of Objects) A list of Application Load Balancers (ALBs) that are attached to the cluster.
- Crn string
- (String) The CRN of the VPC cluster.
- Id string
- The provider-assigned unique ID for this managed resource.
- Ingress
Hostname string - (String) The hostname that was assigned to your Ingress subdomain.
- Ingress
Secret string - (String) The name of the Ingress secret that was created for you and that the Ingress subdomain uses.
- Master
Status string - (String) The status of the Kubernetes master.
- Master
Url string - (String) The URL of the Kubernetes master.
- Private
Service stringEndpoint Url - (String) The private service endpoint URL.
- Public
Service stringEndpoint Url - (String) The public service endpoint URL.
- Resource
Controller stringUrl - The URL of the IBM Cloud dashboard that can be used to explore and view details about this cluster
- Resource
Crn string - The crn of the resource
- Resource
Group stringName - The resource group name in which resource is provisioned
- Resource
Name string - The name of the resource
- Resource
Status string - The status of the resource
- State string
- (String) The state of the VPC cluster.
- Vpe
Service stringEndpoint Url - (String) The virtual private endpoint URL.
- albs
List<Container
Vpc Cluster Alb> - (List of Objects) A list of Application Load Balancers (ALBs) that are attached to the cluster.
- crn String
- (String) The CRN of the VPC cluster.
- id String
- The provider-assigned unique ID for this managed resource.
- ingress
Hostname String - (String) The hostname that was assigned to your Ingress subdomain.
- ingress
Secret String - (String) The name of the Ingress secret that was created for you and that the Ingress subdomain uses.
- master
Status String - (String) The status of the Kubernetes master.
- master
Url String - (String) The URL of the Kubernetes master.
- private
Service StringEndpoint Url - (String) The private service endpoint URL.
- public
Service StringEndpoint Url - (String) The public service endpoint URL.
- resource
Controller StringUrl - The URL of the IBM Cloud dashboard that can be used to explore and view details about this cluster
- resource
Crn String - The crn of the resource
- resource
Group StringName - The resource group name in which resource is provisioned
- resource
Name String - The name of the resource
- resource
Status String - The status of the resource
- state String
- (String) The state of the VPC cluster.
- vpe
Service StringEndpoint Url - (String) The virtual private endpoint URL.
- albs
Container
Vpc Cluster Alb[] - (List of Objects) A list of Application Load Balancers (ALBs) that are attached to the cluster.
- crn string
- (String) The CRN of the VPC cluster.
- id string
- The provider-assigned unique ID for this managed resource.
- ingress
Hostname string - (String) The hostname that was assigned to your Ingress subdomain.
- ingress
Secret string - (String) The name of the Ingress secret that was created for you and that the Ingress subdomain uses.
- master
Status string - (String) The status of the Kubernetes master.
- master
Url string - (String) The URL of the Kubernetes master.
- private
Service stringEndpoint Url - (String) The private service endpoint URL.
- public
Service stringEndpoint Url - (String) The public service endpoint URL.
- resource
Controller stringUrl - The URL of the IBM Cloud dashboard that can be used to explore and view details about this cluster
- resource
Crn string - The crn of the resource
- resource
Group stringName - The resource group name in which resource is provisioned
- resource
Name string - The name of the resource
- resource
Status string - The status of the resource
- state string
- (String) The state of the VPC cluster.
- vpe
Service stringEndpoint Url - (String) The virtual private endpoint URL.
- albs
Sequence[Container
Vpc Cluster Alb] - (List of Objects) A list of Application Load Balancers (ALBs) that are attached to the cluster.
- crn str
- (String) The CRN of the VPC cluster.
- id str
- The provider-assigned unique ID for this managed resource.
- ingress_
hostname str - (String) The hostname that was assigned to your Ingress subdomain.
- ingress_
secret str - (String) The name of the Ingress secret that was created for you and that the Ingress subdomain uses.
- master_
status str - (String) The status of the Kubernetes master.
- master_
url str - (String) The URL of the Kubernetes master.
- private_
service_ strendpoint_ url - (String) The private service endpoint URL.
- public_
service_ strendpoint_ url - (String) The public service endpoint URL.
- resource_
controller_ strurl - The URL of the IBM Cloud dashboard that can be used to explore and view details about this cluster
- resource_
crn str - The crn of the resource
- resource_
group_ strname - The resource group name in which resource is provisioned
- resource_
name str - The name of the resource
- resource_
status str - The status of the resource
- state str
- (String) The state of the VPC cluster.
- vpe_
service_ strendpoint_ url - (String) The virtual private endpoint URL.
- albs List<Property Map>
- (List of Objects) A list of Application Load Balancers (ALBs) that are attached to the cluster.
- crn String
- (String) The CRN of the VPC cluster.
- id String
- The provider-assigned unique ID for this managed resource.
- ingress
Hostname String - (String) The hostname that was assigned to your Ingress subdomain.
- ingress
Secret String - (String) The name of the Ingress secret that was created for you and that the Ingress subdomain uses.
- master
Status String - (String) The status of the Kubernetes master.
- master
Url String - (String) The URL of the Kubernetes master.
- private
Service StringEndpoint Url - (String) The private service endpoint URL.
- public
Service StringEndpoint Url - (String) The public service endpoint URL.
- resource
Controller StringUrl - The URL of the IBM Cloud dashboard that can be used to explore and view details about this cluster
- resource
Crn String - The crn of the resource
- resource
Group StringName - The resource group name in which resource is provisioned
- resource
Name String - The name of the resource
- resource
Status String - The status of the resource
- state String
- (String) The state of the VPC cluster.
- vpe
Service StringEndpoint Url - (String) The virtual private endpoint URL.
Look up Existing ContainerVpcCluster Resource
Get an existing ContainerVpcCluster resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: ContainerVpcClusterState, opts?: CustomResourceOptions): ContainerVpcCluster@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
albs: Optional[Sequence[ContainerVpcClusterAlbArgs]] = None,
container_vpc_cluster_id: Optional[str] = None,
cos_instance_crn: Optional[str] = None,
crk: Optional[str] = None,
crn: Optional[str] = None,
disable_outbound_traffic_protection: Optional[bool] = None,
disable_public_service_endpoint: Optional[bool] = None,
enable_secure_by_default: Optional[bool] = None,
entitlement: Optional[str] = None,
flavor: Optional[str] = None,
force_delete_storage: Optional[bool] = None,
host_pool_id: Optional[str] = None,
image_security_enforcement: Optional[bool] = None,
ingress_hostname: Optional[str] = None,
ingress_secret: Optional[str] = None,
kms_account_id: Optional[str] = None,
kms_config: Optional[ContainerVpcClusterKmsConfigArgs] = None,
kms_instance_id: Optional[str] = None,
kube_version: Optional[str] = None,
master_status: Optional[str] = None,
master_url: Optional[str] = None,
name: Optional[str] = None,
operating_system: Optional[str] = None,
patch_version: Optional[str] = None,
pod_subnet: Optional[str] = None,
private_service_endpoint_url: Optional[str] = None,
public_service_endpoint_url: Optional[str] = None,
resource_controller_url: Optional[str] = None,
resource_crn: Optional[str] = None,
resource_group_id: Optional[str] = None,
resource_group_name: Optional[str] = None,
resource_name: Optional[str] = None,
resource_status: Optional[str] = None,
retry_patch_version: Optional[float] = None,
secondary_storage: Optional[str] = None,
security_groups: Optional[Sequence[str]] = None,
service_subnet: Optional[str] = None,
state: Optional[str] = None,
tags: Optional[Sequence[str]] = None,
taints: Optional[Sequence[ContainerVpcClusterTaintArgs]] = None,
timeouts: Optional[ContainerVpcClusterTimeoutsArgs] = None,
update_all_workers: Optional[bool] = None,
vpc_id: Optional[str] = None,
vpe_service_endpoint_url: Optional[str] = None,
wait_for_worker_update: Optional[bool] = None,
wait_till: Optional[str] = None,
worker_count: Optional[float] = None,
worker_labels: Optional[Mapping[str, str]] = None,
zones: Optional[Sequence[ContainerVpcClusterZoneArgs]] = None) -> ContainerVpcClusterfunc GetContainerVpcCluster(ctx *Context, name string, id IDInput, state *ContainerVpcClusterState, opts ...ResourceOption) (*ContainerVpcCluster, error)public static ContainerVpcCluster Get(string name, Input<string> id, ContainerVpcClusterState? state, CustomResourceOptions? opts = null)public static ContainerVpcCluster get(String name, Output<String> id, ContainerVpcClusterState state, CustomResourceOptions options)resources: _: type: ibm:ContainerVpcCluster get: id: ${id}- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Albs
List<Container
Vpc Cluster Alb> - (List of Objects) A list of Application Load Balancers (ALBs) that are attached to the cluster.
- Container
Vpc stringCluster Id - (String) The ID of the VPC cluster.
- Cos
Instance stringCrn - Required for OpenShift clusters only. The standard IBM Cloud Object Storage instance CRN to back up the internal registry in your OpenShift on VPC Generation 2 cluster.
- Crk string
- Root Key ID for boot volume encryption.
- Crn string
- (String) The CRN of the VPC cluster.
- Disable
Outbound boolTraffic Protection - Include this option to allow public outbound access from the cluster workers. By default, public outbound access is blocked in OpenShift versions 4.15 and later and Kubernetes versions 1.30 and later. This option is usable only from OpenShift versions 4.15 and later and Kubernetes versions 1.30 and later.
- Disable
Public boolService Endpoint - Disable the public service endpoint to prevent public access to the Kubernetes master. Default value is
false. - Enable
Secure boolBy Default Enables Secure-by-default security group configuration. Once the upgrade begins, it cannot be undone. During the upgrade, network traffic to your cluster may temporarily be blocked. This option is usable only from OpenShift versions 4.15 and later and Kubernetes versions 1.30 and later.
Note
- For users on account to add tags to a resource, you need to assign the right access. For more information, about tags, see Tags permission.
wait_tillis set only for the first time creation of the resource, further modification are not impacted.
- Entitlement string
- Entitlement reduces additional OCP Licence cost in OpenShift clusters. Use Cloud Pak with OCP Licence entitlement to create the OpenShift cluster. Note It is set only when the first time creation of the cluster, further modifications are not impacted. Set this argument to
cloud_pakonly if you use the cluster with a Cloud Pak that has an OpenShift entitlement.. - Flavor string
- The flavor of the VPC worker nodes in the default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- Force
Delete boolStorage - Force the removal of a cluster and its persistent storage. Deleted data cannot be recovered
- Host
Pool stringId - If provided, the cluster will be associated with a dedicated host pool identified by this ID.
- Image
Security boolEnforcement - Set to true to enable image security enforcement policies in a cluster.
- Ingress
Hostname string - (String) The hostname that was assigned to your Ingress subdomain.
- Ingress
Secret string - (String) The name of the Ingress secret that was created for you and that the Ingress subdomain uses.
- Kms
Account stringId - Account ID for boot volume encryption, if other account is providing the kms.
- Kms
Config ContainerVpc Cluster Kms Config - Use to attach a Key Protect instance to a cluster. Nested
kms_configblock has aninstance_id,crk_id,private_endpointandaccount_id. - Kms
Instance stringId - Instance ID for boot volume encryption.
- Kube
Version string - Specify the Kubernetes version, including the major.minor version. If you do not include this flag, the default version is used. To see available versions, run
ibmcloud ks versions. - Master
Status string - (String) The status of the Kubernetes master.
- Master
Url string - (String) The URL of the Kubernetes master.
- Name string
- The name of the cluster.
- Operating
System string - The operating system of the workers in the default worker pool. For supported options, see Red Hat OpenShift on IBM Cloud version information or IBM Cloud Kubernetes Service version information. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- Patch
Version string - Updates the worker nodes with the required patch version. The patch_version should be in the format:
patch_version_fixpack_version. For more information, about Kubernetes version information and update, see Kubernetes version update. Note To update the patch or fix pack versions of the worker nodes, run the commandibmcloud ks workers -c <cluster_name_or_id> output json. Fetch the required patch & fix pack versions fromkubeVersion.targetand set thepatch_versionparameter. - Pod
Subnet string - Specify a custom subnet CIDR to provide private IP addresses for pods. The subnet must have a CIDR of at least
/23or larger. For more information, see the documentation. Default value is172.30.0.0/16. - Private
Service stringEndpoint Url - (String) The private service endpoint URL.
- Public
Service stringEndpoint Url - (String) The public service endpoint URL.
- Resource
Controller stringUrl - The URL of the IBM Cloud dashboard that can be used to explore and view details about this cluster
- Resource
Crn string - The crn of the resource
- Resource
Group stringId - The ID of the resource group. You can retrieve the value by running
ibmcloud resource groupsor by using theibm.ResourceGroupdata source. If no value is provided, thedefaultresource group is used. - Resource
Group stringName - The resource group name in which resource is provisioned
- Resource
Name string - The name of the resource
- Resource
Status string - The status of the resource
- Retry
Patch doubleVersion - This argument retries the update of
patch_versionif the previous update fails. Increment the value to retry the update ofpatch_versionon worker nodes. - Secondary
Storage string - The secondary storage option for the workers in the default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- Security
Groups List<string> - Enables users to define specific security groups for their workers.
- Service
Subnet string - Specify a custom subnet CIDR to provide private IP addresses for services. The subnet must be at least ’/24’ or larger. For more information, see the documentation. Default value is
172.21.0.0/16. - State string
- (String) The state of the VPC cluster.
- List<string>
- A list of tags that you want to associate with your VPC cluster. Note For users on account to add tags to a resource, they must be assigned the [appropriate permissions]/docs/account?topic=account-access).
- Taints
List<Container
Vpc Cluster Taint> A nested block that sets or removes Kubernetes taints for all worker nodes in a worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
Nested scheme for
taints:- Timeouts
Container
Vpc Cluster Timeouts - Update
All boolWorkers - Set to true, if you want to update workers Kubernetes version with the cluster kube_version.
- Vpc
Id string - The ID of the VPC that you want to use for your cluster. To list available VPCs, run
ibmcloud is vpcs. - Vpe
Service stringEndpoint Url - (String) The virtual private endpoint URL.
- Wait
For boolWorker Update - Set to true to wait and update the Kubernetes version of worker nodes. NOTE Setting wait_for_worker_update to false is not recommended. Setting false results in upgrading all the worker nodes in the cluster at the same time causing the cluster downtime.
- Wait
Till string - wait_till can be configured for Master Ready, One worker Ready, Ingress Ready or Normal
- Worker
Count double - The number of worker nodes per zone in the default worker pool. Default value
1. Note If the requested number of worker nodes is fewer than the minimum 2 worker nodes that are required for an OpenShift cluster, cluster creation will be rejected. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource. - Worker
Labels Dictionary<string, string> - Labels on all the workers in the default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- Zones
List<Container
Vpc Cluster Zone> A nested block describes the zones of this VPC cluster's default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
Nested scheme for
zones:
- Albs
[]Container
Vpc Cluster Alb Args - (List of Objects) A list of Application Load Balancers (ALBs) that are attached to the cluster.
- Container
Vpc stringCluster Id - (String) The ID of the VPC cluster.
- Cos
Instance stringCrn - Required for OpenShift clusters only. The standard IBM Cloud Object Storage instance CRN to back up the internal registry in your OpenShift on VPC Generation 2 cluster.
- Crk string
- Root Key ID for boot volume encryption.
- Crn string
- (String) The CRN of the VPC cluster.
- Disable
Outbound boolTraffic Protection - Include this option to allow public outbound access from the cluster workers. By default, public outbound access is blocked in OpenShift versions 4.15 and later and Kubernetes versions 1.30 and later. This option is usable only from OpenShift versions 4.15 and later and Kubernetes versions 1.30 and later.
- Disable
Public boolService Endpoint - Disable the public service endpoint to prevent public access to the Kubernetes master. Default value is
false. - Enable
Secure boolBy Default Enables Secure-by-default security group configuration. Once the upgrade begins, it cannot be undone. During the upgrade, network traffic to your cluster may temporarily be blocked. This option is usable only from OpenShift versions 4.15 and later and Kubernetes versions 1.30 and later.
Note
- For users on account to add tags to a resource, you need to assign the right access. For more information, about tags, see Tags permission.
wait_tillis set only for the first time creation of the resource, further modification are not impacted.
- Entitlement string
- Entitlement reduces additional OCP Licence cost in OpenShift clusters. Use Cloud Pak with OCP Licence entitlement to create the OpenShift cluster. Note It is set only when the first time creation of the cluster, further modifications are not impacted. Set this argument to
cloud_pakonly if you use the cluster with a Cloud Pak that has an OpenShift entitlement.. - Flavor string
- The flavor of the VPC worker nodes in the default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- Force
Delete boolStorage - Force the removal of a cluster and its persistent storage. Deleted data cannot be recovered
- Host
Pool stringId - If provided, the cluster will be associated with a dedicated host pool identified by this ID.
- Image
Security boolEnforcement - Set to true to enable image security enforcement policies in a cluster.
- Ingress
Hostname string - (String) The hostname that was assigned to your Ingress subdomain.
- Ingress
Secret string - (String) The name of the Ingress secret that was created for you and that the Ingress subdomain uses.
- Kms
Account stringId - Account ID for boot volume encryption, if other account is providing the kms.
- Kms
Config ContainerVpc Cluster Kms Config Args - Use to attach a Key Protect instance to a cluster. Nested
kms_configblock has aninstance_id,crk_id,private_endpointandaccount_id. - Kms
Instance stringId - Instance ID for boot volume encryption.
- Kube
Version string - Specify the Kubernetes version, including the major.minor version. If you do not include this flag, the default version is used. To see available versions, run
ibmcloud ks versions. - Master
Status string - (String) The status of the Kubernetes master.
- Master
Url string - (String) The URL of the Kubernetes master.
- Name string
- The name of the cluster.
- Operating
System string - The operating system of the workers in the default worker pool. For supported options, see Red Hat OpenShift on IBM Cloud version information or IBM Cloud Kubernetes Service version information. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- Patch
Version string - Updates the worker nodes with the required patch version. The patch_version should be in the format:
patch_version_fixpack_version. For more information, about Kubernetes version information and update, see Kubernetes version update. Note To update the patch or fix pack versions of the worker nodes, run the commandibmcloud ks workers -c <cluster_name_or_id> output json. Fetch the required patch & fix pack versions fromkubeVersion.targetand set thepatch_versionparameter. - Pod
Subnet string - Specify a custom subnet CIDR to provide private IP addresses for pods. The subnet must have a CIDR of at least
/23or larger. For more information, see the documentation. Default value is172.30.0.0/16. - Private
Service stringEndpoint Url - (String) The private service endpoint URL.
- Public
Service stringEndpoint Url - (String) The public service endpoint URL.
- Resource
Controller stringUrl - The URL of the IBM Cloud dashboard that can be used to explore and view details about this cluster
- Resource
Crn string - The crn of the resource
- Resource
Group stringId - The ID of the resource group. You can retrieve the value by running
ibmcloud resource groupsor by using theibm.ResourceGroupdata source. If no value is provided, thedefaultresource group is used. - Resource
Group stringName - The resource group name in which resource is provisioned
- Resource
Name string - The name of the resource
- Resource
Status string - The status of the resource
- Retry
Patch float64Version - This argument retries the update of
patch_versionif the previous update fails. Increment the value to retry the update ofpatch_versionon worker nodes. - Secondary
Storage string - The secondary storage option for the workers in the default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- Security
Groups []string - Enables users to define specific security groups for their workers.
- Service
Subnet string - Specify a custom subnet CIDR to provide private IP addresses for services. The subnet must be at least ’/24’ or larger. For more information, see the documentation. Default value is
172.21.0.0/16. - State string
- (String) The state of the VPC cluster.
- []string
- A list of tags that you want to associate with your VPC cluster. Note For users on account to add tags to a resource, they must be assigned the [appropriate permissions]/docs/account?topic=account-access).
- Taints
[]Container
Vpc Cluster Taint Args A nested block that sets or removes Kubernetes taints for all worker nodes in a worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
Nested scheme for
taints:- Timeouts
Container
Vpc Cluster Timeouts Args - Update
All boolWorkers - Set to true, if you want to update workers Kubernetes version with the cluster kube_version.
- Vpc
Id string - The ID of the VPC that you want to use for your cluster. To list available VPCs, run
ibmcloud is vpcs. - Vpe
Service stringEndpoint Url - (String) The virtual private endpoint URL.
- Wait
For boolWorker Update - Set to true to wait and update the Kubernetes version of worker nodes. NOTE Setting wait_for_worker_update to false is not recommended. Setting false results in upgrading all the worker nodes in the cluster at the same time causing the cluster downtime.
- Wait
Till string - wait_till can be configured for Master Ready, One worker Ready, Ingress Ready or Normal
- Worker
Count float64 - The number of worker nodes per zone in the default worker pool. Default value
1. Note If the requested number of worker nodes is fewer than the minimum 2 worker nodes that are required for an OpenShift cluster, cluster creation will be rejected. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource. - Worker
Labels map[string]string - Labels on all the workers in the default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- Zones
[]Container
Vpc Cluster Zone Args A nested block describes the zones of this VPC cluster's default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
Nested scheme for
zones:
- albs
List<Container
Vpc Cluster Alb> - (List of Objects) A list of Application Load Balancers (ALBs) that are attached to the cluster.
- container
Vpc StringCluster Id - (String) The ID of the VPC cluster.
- cos
Instance StringCrn - Required for OpenShift clusters only. The standard IBM Cloud Object Storage instance CRN to back up the internal registry in your OpenShift on VPC Generation 2 cluster.
- crk String
- Root Key ID for boot volume encryption.
- crn String
- (String) The CRN of the VPC cluster.
- disable
Outbound BooleanTraffic Protection - Include this option to allow public outbound access from the cluster workers. By default, public outbound access is blocked in OpenShift versions 4.15 and later and Kubernetes versions 1.30 and later. This option is usable only from OpenShift versions 4.15 and later and Kubernetes versions 1.30 and later.
- disable
Public BooleanService Endpoint - Disable the public service endpoint to prevent public access to the Kubernetes master. Default value is
false. - enable
Secure BooleanBy Default Enables Secure-by-default security group configuration. Once the upgrade begins, it cannot be undone. During the upgrade, network traffic to your cluster may temporarily be blocked. This option is usable only from OpenShift versions 4.15 and later and Kubernetes versions 1.30 and later.
Note
- For users on account to add tags to a resource, you need to assign the right access. For more information, about tags, see Tags permission.
wait_tillis set only for the first time creation of the resource, further modification are not impacted.
- entitlement String
- Entitlement reduces additional OCP Licence cost in OpenShift clusters. Use Cloud Pak with OCP Licence entitlement to create the OpenShift cluster. Note It is set only when the first time creation of the cluster, further modifications are not impacted. Set this argument to
cloud_pakonly if you use the cluster with a Cloud Pak that has an OpenShift entitlement.. - flavor String
- The flavor of the VPC worker nodes in the default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- force
Delete BooleanStorage - Force the removal of a cluster and its persistent storage. Deleted data cannot be recovered
- host
Pool StringId - If provided, the cluster will be associated with a dedicated host pool identified by this ID.
- image
Security BooleanEnforcement - Set to true to enable image security enforcement policies in a cluster.
- ingress
Hostname String - (String) The hostname that was assigned to your Ingress subdomain.
- ingress
Secret String - (String) The name of the Ingress secret that was created for you and that the Ingress subdomain uses.
- kms
Account StringId - Account ID for boot volume encryption, if other account is providing the kms.
- kms
Config ContainerVpc Cluster Kms Config - Use to attach a Key Protect instance to a cluster. Nested
kms_configblock has aninstance_id,crk_id,private_endpointandaccount_id. - kms
Instance StringId - Instance ID for boot volume encryption.
- kube
Version String - Specify the Kubernetes version, including the major.minor version. If you do not include this flag, the default version is used. To see available versions, run
ibmcloud ks versions. - master
Status String - (String) The status of the Kubernetes master.
- master
Url String - (String) The URL of the Kubernetes master.
- name String
- The name of the cluster.
- operating
System String - The operating system of the workers in the default worker pool. For supported options, see Red Hat OpenShift on IBM Cloud version information or IBM Cloud Kubernetes Service version information. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- patch
Version String - Updates the worker nodes with the required patch version. The patch_version should be in the format:
patch_version_fixpack_version. For more information, about Kubernetes version information and update, see Kubernetes version update. Note To update the patch or fix pack versions of the worker nodes, run the commandibmcloud ks workers -c <cluster_name_or_id> output json. Fetch the required patch & fix pack versions fromkubeVersion.targetand set thepatch_versionparameter. - pod
Subnet String - Specify a custom subnet CIDR to provide private IP addresses for pods. The subnet must have a CIDR of at least
/23or larger. For more information, see the documentation. Default value is172.30.0.0/16. - private
Service StringEndpoint Url - (String) The private service endpoint URL.
- public
Service StringEndpoint Url - (String) The public service endpoint URL.
- resource
Controller StringUrl - The URL of the IBM Cloud dashboard that can be used to explore and view details about this cluster
- resource
Crn String - The crn of the resource
- resource
Group StringId - The ID of the resource group. You can retrieve the value by running
ibmcloud resource groupsor by using theibm.ResourceGroupdata source. If no value is provided, thedefaultresource group is used. - resource
Group StringName - The resource group name in which resource is provisioned
- resource
Name String - The name of the resource
- resource
Status String - The status of the resource
- retry
Patch DoubleVersion - This argument retries the update of
patch_versionif the previous update fails. Increment the value to retry the update ofpatch_versionon worker nodes. - secondary
Storage String - The secondary storage option for the workers in the default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- security
Groups List<String> - Enables users to define specific security groups for their workers.
- service
Subnet String - Specify a custom subnet CIDR to provide private IP addresses for services. The subnet must be at least ’/24’ or larger. For more information, see the documentation. Default value is
172.21.0.0/16. - state String
- (String) The state of the VPC cluster.
- List<String>
- A list of tags that you want to associate with your VPC cluster. Note For users on account to add tags to a resource, they must be assigned the [appropriate permissions]/docs/account?topic=account-access).
- taints
List<Container
Vpc Cluster Taint> A nested block that sets or removes Kubernetes taints for all worker nodes in a worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
Nested scheme for
taints:- timeouts
Container
Vpc Cluster Timeouts - update
All BooleanWorkers - Set to true, if you want to update workers Kubernetes version with the cluster kube_version.
- vpc
Id String - The ID of the VPC that you want to use for your cluster. To list available VPCs, run
ibmcloud is vpcs. - vpe
Service StringEndpoint Url - (String) The virtual private endpoint URL.
- wait
For BooleanWorker Update - Set to true to wait and update the Kubernetes version of worker nodes. NOTE Setting wait_for_worker_update to false is not recommended. Setting false results in upgrading all the worker nodes in the cluster at the same time causing the cluster downtime.
- wait
Till String - wait_till can be configured for Master Ready, One worker Ready, Ingress Ready or Normal
- worker
Count Double - The number of worker nodes per zone in the default worker pool. Default value
1. Note If the requested number of worker nodes is fewer than the minimum 2 worker nodes that are required for an OpenShift cluster, cluster creation will be rejected. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource. - worker
Labels Map<String,String> - Labels on all the workers in the default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- zones
List<Container
Vpc Cluster Zone> A nested block describes the zones of this VPC cluster's default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
Nested scheme for
zones:
- albs
Container
Vpc Cluster Alb[] - (List of Objects) A list of Application Load Balancers (ALBs) that are attached to the cluster.
- container
Vpc stringCluster Id - (String) The ID of the VPC cluster.
- cos
Instance stringCrn - Required for OpenShift clusters only. The standard IBM Cloud Object Storage instance CRN to back up the internal registry in your OpenShift on VPC Generation 2 cluster.
- crk string
- Root Key ID for boot volume encryption.
- crn string
- (String) The CRN of the VPC cluster.
- disable
Outbound booleanTraffic Protection - Include this option to allow public outbound access from the cluster workers. By default, public outbound access is blocked in OpenShift versions 4.15 and later and Kubernetes versions 1.30 and later. This option is usable only from OpenShift versions 4.15 and later and Kubernetes versions 1.30 and later.
- disable
Public booleanService Endpoint - Disable the public service endpoint to prevent public access to the Kubernetes master. Default value is
false. - enable
Secure booleanBy Default Enables Secure-by-default security group configuration. Once the upgrade begins, it cannot be undone. During the upgrade, network traffic to your cluster may temporarily be blocked. This option is usable only from OpenShift versions 4.15 and later and Kubernetes versions 1.30 and later.
Note
- For users on account to add tags to a resource, you need to assign the right access. For more information, about tags, see Tags permission.
wait_tillis set only for the first time creation of the resource, further modification are not impacted.
- entitlement string
- Entitlement reduces additional OCP Licence cost in OpenShift clusters. Use Cloud Pak with OCP Licence entitlement to create the OpenShift cluster. Note It is set only when the first time creation of the cluster, further modifications are not impacted. Set this argument to
cloud_pakonly if you use the cluster with a Cloud Pak that has an OpenShift entitlement.. - flavor string
- The flavor of the VPC worker nodes in the default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- force
Delete booleanStorage - Force the removal of a cluster and its persistent storage. Deleted data cannot be recovered
- host
Pool stringId - If provided, the cluster will be associated with a dedicated host pool identified by this ID.
- image
Security booleanEnforcement - Set to true to enable image security enforcement policies in a cluster.
- ingress
Hostname string - (String) The hostname that was assigned to your Ingress subdomain.
- ingress
Secret string - (String) The name of the Ingress secret that was created for you and that the Ingress subdomain uses.
- kms
Account stringId - Account ID for boot volume encryption, if other account is providing the kms.
- kms
Config ContainerVpc Cluster Kms Config - Use to attach a Key Protect instance to a cluster. Nested
kms_configblock has aninstance_id,crk_id,private_endpointandaccount_id. - kms
Instance stringId - Instance ID for boot volume encryption.
- kube
Version string - Specify the Kubernetes version, including the major.minor version. If you do not include this flag, the default version is used. To see available versions, run
ibmcloud ks versions. - master
Status string - (String) The status of the Kubernetes master.
- master
Url string - (String) The URL of the Kubernetes master.
- name string
- The name of the cluster.
- operating
System string - The operating system of the workers in the default worker pool. For supported options, see Red Hat OpenShift on IBM Cloud version information or IBM Cloud Kubernetes Service version information. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- patch
Version string - Updates the worker nodes with the required patch version. The patch_version should be in the format:
patch_version_fixpack_version. For more information, about Kubernetes version information and update, see Kubernetes version update. Note To update the patch or fix pack versions of the worker nodes, run the commandibmcloud ks workers -c <cluster_name_or_id> output json. Fetch the required patch & fix pack versions fromkubeVersion.targetand set thepatch_versionparameter. - pod
Subnet string - Specify a custom subnet CIDR to provide private IP addresses for pods. The subnet must have a CIDR of at least
/23or larger. For more information, see the documentation. Default value is172.30.0.0/16. - private
Service stringEndpoint Url - (String) The private service endpoint URL.
- public
Service stringEndpoint Url - (String) The public service endpoint URL.
- resource
Controller stringUrl - The URL of the IBM Cloud dashboard that can be used to explore and view details about this cluster
- resource
Crn string - The crn of the resource
- resource
Group stringId - The ID of the resource group. You can retrieve the value by running
ibmcloud resource groupsor by using theibm.ResourceGroupdata source. If no value is provided, thedefaultresource group is used. - resource
Group stringName - The resource group name in which resource is provisioned
- resource
Name string - The name of the resource
- resource
Status string - The status of the resource
- retry
Patch numberVersion - This argument retries the update of
patch_versionif the previous update fails. Increment the value to retry the update ofpatch_versionon worker nodes. - secondary
Storage string - The secondary storage option for the workers in the default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- security
Groups string[] - Enables users to define specific security groups for their workers.
- service
Subnet string - Specify a custom subnet CIDR to provide private IP addresses for services. The subnet must be at least ’/24’ or larger. For more information, see the documentation. Default value is
172.21.0.0/16. - state string
- (String) The state of the VPC cluster.
- string[]
- A list of tags that you want to associate with your VPC cluster. Note For users on account to add tags to a resource, they must be assigned the [appropriate permissions]/docs/account?topic=account-access).
- taints
Container
Vpc Cluster Taint[] A nested block that sets or removes Kubernetes taints for all worker nodes in a worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
Nested scheme for
taints:- timeouts
Container
Vpc Cluster Timeouts - update
All booleanWorkers - Set to true, if you want to update workers Kubernetes version with the cluster kube_version.
- vpc
Id string - The ID of the VPC that you want to use for your cluster. To list available VPCs, run
ibmcloud is vpcs. - vpe
Service stringEndpoint Url - (String) The virtual private endpoint URL.
- wait
For booleanWorker Update - Set to true to wait and update the Kubernetes version of worker nodes. NOTE Setting wait_for_worker_update to false is not recommended. Setting false results in upgrading all the worker nodes in the cluster at the same time causing the cluster downtime.
- wait
Till string - wait_till can be configured for Master Ready, One worker Ready, Ingress Ready or Normal
- worker
Count number - The number of worker nodes per zone in the default worker pool. Default value
1. Note If the requested number of worker nodes is fewer than the minimum 2 worker nodes that are required for an OpenShift cluster, cluster creation will be rejected. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource. - worker
Labels {[key: string]: string} - Labels on all the workers in the default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- zones
Container
Vpc Cluster Zone[] A nested block describes the zones of this VPC cluster's default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
Nested scheme for
zones:
- albs
Sequence[Container
Vpc Cluster Alb Args] - (List of Objects) A list of Application Load Balancers (ALBs) that are attached to the cluster.
- container_
vpc_ strcluster_ id - (String) The ID of the VPC cluster.
- cos_
instance_ strcrn - Required for OpenShift clusters only. The standard IBM Cloud Object Storage instance CRN to back up the internal registry in your OpenShift on VPC Generation 2 cluster.
- crk str
- Root Key ID for boot volume encryption.
- crn str
- (String) The CRN of the VPC cluster.
- disable_
outbound_ booltraffic_ protection - Include this option to allow public outbound access from the cluster workers. By default, public outbound access is blocked in OpenShift versions 4.15 and later and Kubernetes versions 1.30 and later. This option is usable only from OpenShift versions 4.15 and later and Kubernetes versions 1.30 and later.
- disable_
public_ boolservice_ endpoint - Disable the public service endpoint to prevent public access to the Kubernetes master. Default value is
false. - enable_
secure_ boolby_ default Enables Secure-by-default security group configuration. Once the upgrade begins, it cannot be undone. During the upgrade, network traffic to your cluster may temporarily be blocked. This option is usable only from OpenShift versions 4.15 and later and Kubernetes versions 1.30 and later.
Note
- For users on account to add tags to a resource, you need to assign the right access. For more information, about tags, see Tags permission.
wait_tillis set only for the first time creation of the resource, further modification are not impacted.
- entitlement str
- Entitlement reduces additional OCP Licence cost in OpenShift clusters. Use Cloud Pak with OCP Licence entitlement to create the OpenShift cluster. Note It is set only when the first time creation of the cluster, further modifications are not impacted. Set this argument to
cloud_pakonly if you use the cluster with a Cloud Pak that has an OpenShift entitlement.. - flavor str
- The flavor of the VPC worker nodes in the default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- force_
delete_ boolstorage - Force the removal of a cluster and its persistent storage. Deleted data cannot be recovered
- host_
pool_ strid - If provided, the cluster will be associated with a dedicated host pool identified by this ID.
- image_
security_ boolenforcement - Set to true to enable image security enforcement policies in a cluster.
- ingress_
hostname str - (String) The hostname that was assigned to your Ingress subdomain.
- ingress_
secret str - (String) The name of the Ingress secret that was created for you and that the Ingress subdomain uses.
- kms_
account_ strid - Account ID for boot volume encryption, if other account is providing the kms.
- kms_
config ContainerVpc Cluster Kms Config Args - Use to attach a Key Protect instance to a cluster. Nested
kms_configblock has aninstance_id,crk_id,private_endpointandaccount_id. - kms_
instance_ strid - Instance ID for boot volume encryption.
- kube_
version str - Specify the Kubernetes version, including the major.minor version. If you do not include this flag, the default version is used. To see available versions, run
ibmcloud ks versions. - master_
status str - (String) The status of the Kubernetes master.
- master_
url str - (String) The URL of the Kubernetes master.
- name str
- The name of the cluster.
- operating_
system str - The operating system of the workers in the default worker pool. For supported options, see Red Hat OpenShift on IBM Cloud version information or IBM Cloud Kubernetes Service version information. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- patch_
version str - Updates the worker nodes with the required patch version. The patch_version should be in the format:
patch_version_fixpack_version. For more information, about Kubernetes version information and update, see Kubernetes version update. Note To update the patch or fix pack versions of the worker nodes, run the commandibmcloud ks workers -c <cluster_name_or_id> output json. Fetch the required patch & fix pack versions fromkubeVersion.targetand set thepatch_versionparameter. - pod_
subnet str - Specify a custom subnet CIDR to provide private IP addresses for pods. The subnet must have a CIDR of at least
/23or larger. For more information, see the documentation. Default value is172.30.0.0/16. - private_
service_ strendpoint_ url - (String) The private service endpoint URL.
- public_
service_ strendpoint_ url - (String) The public service endpoint URL.
- resource_
controller_ strurl - The URL of the IBM Cloud dashboard that can be used to explore and view details about this cluster
- resource_
crn str - The crn of the resource
- resource_
group_ strid - The ID of the resource group. You can retrieve the value by running
ibmcloud resource groupsor by using theibm.ResourceGroupdata source. If no value is provided, thedefaultresource group is used. - resource_
group_ strname - The resource group name in which resource is provisioned
- resource_
name str - The name of the resource
- resource_
status str - The status of the resource
- retry_
patch_ floatversion - This argument retries the update of
patch_versionif the previous update fails. Increment the value to retry the update ofpatch_versionon worker nodes. - secondary_
storage str - The secondary storage option for the workers in the default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- security_
groups Sequence[str] - Enables users to define specific security groups for their workers.
- service_
subnet str - Specify a custom subnet CIDR to provide private IP addresses for services. The subnet must be at least ’/24’ or larger. For more information, see the documentation. Default value is
172.21.0.0/16. - state str
- (String) The state of the VPC cluster.
- Sequence[str]
- A list of tags that you want to associate with your VPC cluster. Note For users on account to add tags to a resource, they must be assigned the [appropriate permissions]/docs/account?topic=account-access).
- taints
Sequence[Container
Vpc Cluster Taint Args] A nested block that sets or removes Kubernetes taints for all worker nodes in a worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
Nested scheme for
taints:- timeouts
Container
Vpc Cluster Timeouts Args - update_
all_ boolworkers - Set to true, if you want to update workers Kubernetes version with the cluster kube_version.
- vpc_
id str - The ID of the VPC that you want to use for your cluster. To list available VPCs, run
ibmcloud is vpcs. - vpe_
service_ strendpoint_ url - (String) The virtual private endpoint URL.
- wait_
for_ boolworker_ update - Set to true to wait and update the Kubernetes version of worker nodes. NOTE Setting wait_for_worker_update to false is not recommended. Setting false results in upgrading all the worker nodes in the cluster at the same time causing the cluster downtime.
- wait_
till str - wait_till can be configured for Master Ready, One worker Ready, Ingress Ready or Normal
- worker_
count float - The number of worker nodes per zone in the default worker pool. Default value
1. Note If the requested number of worker nodes is fewer than the minimum 2 worker nodes that are required for an OpenShift cluster, cluster creation will be rejected. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource. - worker_
labels Mapping[str, str] - Labels on all the workers in the default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- zones
Sequence[Container
Vpc Cluster Zone Args] A nested block describes the zones of this VPC cluster's default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
Nested scheme for
zones:
- albs List<Property Map>
- (List of Objects) A list of Application Load Balancers (ALBs) that are attached to the cluster.
- container
Vpc StringCluster Id - (String) The ID of the VPC cluster.
- cos
Instance StringCrn - Required for OpenShift clusters only. The standard IBM Cloud Object Storage instance CRN to back up the internal registry in your OpenShift on VPC Generation 2 cluster.
- crk String
- Root Key ID for boot volume encryption.
- crn String
- (String) The CRN of the VPC cluster.
- disable
Outbound BooleanTraffic Protection - Include this option to allow public outbound access from the cluster workers. By default, public outbound access is blocked in OpenShift versions 4.15 and later and Kubernetes versions 1.30 and later. This option is usable only from OpenShift versions 4.15 and later and Kubernetes versions 1.30 and later.
- disable
Public BooleanService Endpoint - Disable the public service endpoint to prevent public access to the Kubernetes master. Default value is
false. - enable
Secure BooleanBy Default Enables Secure-by-default security group configuration. Once the upgrade begins, it cannot be undone. During the upgrade, network traffic to your cluster may temporarily be blocked. This option is usable only from OpenShift versions 4.15 and later and Kubernetes versions 1.30 and later.
Note
- For users on account to add tags to a resource, you need to assign the right access. For more information, about tags, see Tags permission.
wait_tillis set only for the first time creation of the resource, further modification are not impacted.
- entitlement String
- Entitlement reduces additional OCP Licence cost in OpenShift clusters. Use Cloud Pak with OCP Licence entitlement to create the OpenShift cluster. Note It is set only when the first time creation of the cluster, further modifications are not impacted. Set this argument to
cloud_pakonly if you use the cluster with a Cloud Pak that has an OpenShift entitlement.. - flavor String
- The flavor of the VPC worker nodes in the default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- force
Delete BooleanStorage - Force the removal of a cluster and its persistent storage. Deleted data cannot be recovered
- host
Pool StringId - If provided, the cluster will be associated with a dedicated host pool identified by this ID.
- image
Security BooleanEnforcement - Set to true to enable image security enforcement policies in a cluster.
- ingress
Hostname String - (String) The hostname that was assigned to your Ingress subdomain.
- ingress
Secret String - (String) The name of the Ingress secret that was created for you and that the Ingress subdomain uses.
- kms
Account StringId - Account ID for boot volume encryption, if other account is providing the kms.
- kms
Config Property Map - Use to attach a Key Protect instance to a cluster. Nested
kms_configblock has aninstance_id,crk_id,private_endpointandaccount_id. - kms
Instance StringId - Instance ID for boot volume encryption.
- kube
Version String - Specify the Kubernetes version, including the major.minor version. If you do not include this flag, the default version is used. To see available versions, run
ibmcloud ks versions. - master
Status String - (String) The status of the Kubernetes master.
- master
Url String - (String) The URL of the Kubernetes master.
- name String
- The name of the cluster.
- operating
System String - The operating system of the workers in the default worker pool. For supported options, see Red Hat OpenShift on IBM Cloud version information or IBM Cloud Kubernetes Service version information. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- patch
Version String - Updates the worker nodes with the required patch version. The patch_version should be in the format:
patch_version_fixpack_version. For more information, about Kubernetes version information and update, see Kubernetes version update. Note To update the patch or fix pack versions of the worker nodes, run the commandibmcloud ks workers -c <cluster_name_or_id> output json. Fetch the required patch & fix pack versions fromkubeVersion.targetand set thepatch_versionparameter. - pod
Subnet String - Specify a custom subnet CIDR to provide private IP addresses for pods. The subnet must have a CIDR of at least
/23or larger. For more information, see the documentation. Default value is172.30.0.0/16. - private
Service StringEndpoint Url - (String) The private service endpoint URL.
- public
Service StringEndpoint Url - (String) The public service endpoint URL.
- resource
Controller StringUrl - The URL of the IBM Cloud dashboard that can be used to explore and view details about this cluster
- resource
Crn String - The crn of the resource
- resource
Group StringId - The ID of the resource group. You can retrieve the value by running
ibmcloud resource groupsor by using theibm.ResourceGroupdata source. If no value is provided, thedefaultresource group is used. - resource
Group StringName - The resource group name in which resource is provisioned
- resource
Name String - The name of the resource
- resource
Status String - The status of the resource
- retry
Patch NumberVersion - This argument retries the update of
patch_versionif the previous update fails. Increment the value to retry the update ofpatch_versionon worker nodes. - secondary
Storage String - The secondary storage option for the workers in the default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- security
Groups List<String> - Enables users to define specific security groups for their workers.
- service
Subnet String - Specify a custom subnet CIDR to provide private IP addresses for services. The subnet must be at least ’/24’ or larger. For more information, see the documentation. Default value is
172.21.0.0/16. - state String
- (String) The state of the VPC cluster.
- List<String>
- A list of tags that you want to associate with your VPC cluster. Note For users on account to add tags to a resource, they must be assigned the [appropriate permissions]/docs/account?topic=account-access).
- taints List<Property Map>
A nested block that sets or removes Kubernetes taints for all worker nodes in a worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
Nested scheme for
taints:- timeouts Property Map
- update
All BooleanWorkers - Set to true, if you want to update workers Kubernetes version with the cluster kube_version.
- vpc
Id String - The ID of the VPC that you want to use for your cluster. To list available VPCs, run
ibmcloud is vpcs. - vpe
Service StringEndpoint Url - (String) The virtual private endpoint URL.
- wait
For BooleanWorker Update - Set to true to wait and update the Kubernetes version of worker nodes. NOTE Setting wait_for_worker_update to false is not recommended. Setting false results in upgrading all the worker nodes in the cluster at the same time causing the cluster downtime.
- wait
Till String - wait_till can be configured for Master Ready, One worker Ready, Ingress Ready or Normal
- worker
Count Number - The number of worker nodes per zone in the default worker pool. Default value
1. Note If the requested number of worker nodes is fewer than the minimum 2 worker nodes that are required for an OpenShift cluster, cluster creation will be rejected. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource. - worker
Labels Map<String> - Labels on all the workers in the default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
- zones List<Property Map>
A nested block describes the zones of this VPC cluster's default worker pool. This field only affects cluster creation, to manage the default worker pool, create a dedicated worker pool resource.
Nested scheme for
zones:
Supporting Types
ContainerVpcClusterAlb, ContainerVpcClusterAlbArgs
- Alb
Type string - (String) The ALB type. Valid values are
publicorprivate. - Disable
Deployment bool - (Bool) Indicate whether to disable the deployment of the ALB.
- Enable bool
- (Bool) Enable (true) or disable (false) the ALB.
- Id string
- (String) The ID of the VPC cluster.
- Load
Balancer stringHostname - (String) The host name of the ALB.
- Name string
- The name of the cluster.
- Resize bool
- (Bool) Indicates whether resizing should be done.
- State string
- (String) The state of the VPC cluster.
- Alb
Type string - (String) The ALB type. Valid values are
publicorprivate. - Disable
Deployment bool - (Bool) Indicate whether to disable the deployment of the ALB.
- Enable bool
- (Bool) Enable (true) or disable (false) the ALB.
- Id string
- (String) The ID of the VPC cluster.
- Load
Balancer stringHostname - (String) The host name of the ALB.
- Name string
- The name of the cluster.
- Resize bool
- (Bool) Indicates whether resizing should be done.
- State string
- (String) The state of the VPC cluster.
- alb
Type String - (String) The ALB type. Valid values are
publicorprivate. - disable
Deployment Boolean - (Bool) Indicate whether to disable the deployment of the ALB.
- enable Boolean
- (Bool) Enable (true) or disable (false) the ALB.
- id String
- (String) The ID of the VPC cluster.
- load
Balancer StringHostname - (String) The host name of the ALB.
- name String
- The name of the cluster.
- resize Boolean
- (Bool) Indicates whether resizing should be done.
- state String
- (String) The state of the VPC cluster.
- alb
Type string - (String) The ALB type. Valid values are
publicorprivate. - disable
Deployment boolean - (Bool) Indicate whether to disable the deployment of the ALB.
- enable boolean
- (Bool) Enable (true) or disable (false) the ALB.
- id string
- (String) The ID of the VPC cluster.
- load
Balancer stringHostname - (String) The host name of the ALB.
- name string
- The name of the cluster.
- resize boolean
- (Bool) Indicates whether resizing should be done.
- state string
- (String) The state of the VPC cluster.
- alb_
type str - (String) The ALB type. Valid values are
publicorprivate. - disable_
deployment bool - (Bool) Indicate whether to disable the deployment of the ALB.
- enable bool
- (Bool) Enable (true) or disable (false) the ALB.
- id str
- (String) The ID of the VPC cluster.
- load_
balancer_ strhostname - (String) The host name of the ALB.
- name str
- The name of the cluster.
- resize bool
- (Bool) Indicates whether resizing should be done.
- state str
- (String) The state of the VPC cluster.
- alb
Type String - (String) The ALB type. Valid values are
publicorprivate. - disable
Deployment Boolean - (Bool) Indicate whether to disable the deployment of the ALB.
- enable Boolean
- (Bool) Enable (true) or disable (false) the ALB.
- id String
- (String) The ID of the VPC cluster.
- load
Balancer StringHostname - (String) The host name of the ALB.
- name String
- The name of the cluster.
- resize Boolean
- (Bool) Indicates whether resizing should be done.
- state String
- (String) The state of the VPC cluster.
ContainerVpcClusterKmsConfig, ContainerVpcClusterKmsConfigArgs
- Crk
Id string - ID of the customer root key.
- Instance
Id string - ID of the KMS instance to use to encrypt the cluster.
- Account
Id string - Account ID of KMS instance holder - if not provided, defaults to the account in use
- Private
Endpoint bool - Specify this option to use the KMS public service endpoint.
- Wait
For boolApply
- Crk
Id string - ID of the customer root key.
- Instance
Id string - ID of the KMS instance to use to encrypt the cluster.
- Account
Id string - Account ID of KMS instance holder - if not provided, defaults to the account in use
- Private
Endpoint bool - Specify this option to use the KMS public service endpoint.
- Wait
For boolApply
- crk
Id String - ID of the customer root key.
- instance
Id String - ID of the KMS instance to use to encrypt the cluster.
- account
Id String - Account ID of KMS instance holder - if not provided, defaults to the account in use
- private
Endpoint Boolean - Specify this option to use the KMS public service endpoint.
- wait
For BooleanApply
- crk
Id string - ID of the customer root key.
- instance
Id string - ID of the KMS instance to use to encrypt the cluster.
- account
Id string - Account ID of KMS instance holder - if not provided, defaults to the account in use
- private
Endpoint boolean - Specify this option to use the KMS public service endpoint.
- wait
For booleanApply
- crk_
id str - ID of the customer root key.
- instance_
id str - ID of the KMS instance to use to encrypt the cluster.
- account_
id str - Account ID of KMS instance holder - if not provided, defaults to the account in use
- private_
endpoint bool - Specify this option to use the KMS public service endpoint.
- wait_
for_ boolapply
- crk
Id String - ID of the customer root key.
- instance
Id String - ID of the KMS instance to use to encrypt the cluster.
- account
Id String - Account ID of KMS instance holder - if not provided, defaults to the account in use
- private
Endpoint Boolean - Specify this option to use the KMS public service endpoint.
- wait
For BooleanApply
ContainerVpcClusterTaint, ContainerVpcClusterTaintArgs
ContainerVpcClusterTimeouts, ContainerVpcClusterTimeoutsArgs
ContainerVpcClusterZone, ContainerVpcClusterZoneArgs
Import
The ibm_container_vpc_cluster can be imported by using the cluster ID.
Example
$ pulumi import ibm:index/containerVpcCluster:ContainerVpcCluster cluster aaaaaaaaa1a1a1a1aaa1a
To learn more about importing existing cloud resources, see Importing resources.
Package Details
- Repository
- ibm ibm-cloud/terraform-provider-ibm
- License
- Notes
- This Pulumi package is based on the
ibmTerraform Provider.