Docs Home Pulumi IaC Pulumi ESC Pulumi Insights Pulumi Cloud Packages Tutorials
  1. Packages
  2. Ibm Provider
  3. API Docs
  4. SmImportedCertificate
ibm 1.78.0 published on Wednesday, Apr 30, 2025 by ibm-cloud
ibm-cloud/terraform-provider-ibm

ibm.SmImportedCertificate

Explore with Pulumi AI

ibm logo
ibm 1.78.0 published on Wednesday, Apr 30, 2025 by ibm-cloud
ibm-cloud/terraform-provider-ibm

    Provides a resource for ImportedCertificate. This allows ImportedCertificate to be created, updated and deleted.

    Static credentials

    You can provide your static credentials by adding the ibmcloud_api_key, iaas_classic_username, and iaas_classic_api_key arguments in the IBM Cloud provider block.

    Usage:

    provider "ibm" {
    ibmcloud_api_key = ""
    iaas_classic_username = ""
    iaas_classic_api_key = ""
}

    Environment variables

    You can provide your credentials by exporting the IC_API_KEY, IAAS_CLASSIC_USERNAME, and IAAS_CLASSIC_API_KEY environment variables, representing your IBM Cloud platform API key, IBM Cloud Classic Infrastructure (SoftLayer) user name, and IBM Cloud infrastructure API key, respectively.

    provider "ibm" {}

    Usage:

    export IC_API_KEY="ibmcloud_api_key"
export IAAS_CLASSIC_USERNAME="iaas_classic_username"
export IAAS_CLASSIC_API_KEY="iaas_classic_api_key"
pulumi preview

    Note:

    1. Create or find your ibmcloud_api_key and iaas_classic_api_key here.
    • Select My IBM Cloud API Keys option from view dropdown for ibmcloud_api_key
    • Select Classic Infrastructure API Keys option from view dropdown for iaas_classic_api_key
    1. For iaas_classic_username
    • Go to Users
    • Click on user.
    • Find user name in the VPN password section under User Details tab

    For more informaton, see here.

    Create SmImportedCertificate Resource

    Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

    Constructor syntax

    new SmImportedCertificate(name: string, args: SmImportedCertificateArgs, opts?: CustomResourceOptions);
    @overload
def SmImportedCertificate(resource_name: str,
                          args: SmImportedCertificateArgs,
                          opts: Optional[ResourceOptions] = None)

@overload
def SmImportedCertificate(resource_name: str,
                          opts: Optional[ResourceOptions] = None,
                          instance_id: Optional[str] = None,
                          labels: Optional[Sequence[str]] = None,
                          description: Optional[str] = None,
                          endpoint_type: Optional[str] = None,
                          custom_metadata: Optional[Mapping[str, str]] = None,
                          intermediate: Optional[str] = None,
                          certificate: Optional[str] = None,
                          managed_csr: Optional[SmImportedCertificateManagedCsrArgs] = None,
                          name: Optional[str] = None,
                          private_key: Optional[str] = None,
                          region: Optional[str] = None,
                          secret_group_id: Optional[str] = None,
                          sm_imported_certificate_id: Optional[str] = None,
                          version_custom_metadata: Optional[Mapping[str, str]] = None)
    func NewSmImportedCertificate(ctx *Context, name string, args SmImportedCertificateArgs, opts ...ResourceOption) (*SmImportedCertificate, error)
    public SmImportedCertificate(string name, SmImportedCertificateArgs args, CustomResourceOptions? opts = null)
    public SmImportedCertificate(String name, SmImportedCertificateArgs args)
public SmImportedCertificate(String name, SmImportedCertificateArgs args, CustomResourceOptions options)

    type: ibm:SmImportedCertificate
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

    Parameters

    name string
    The unique name of the resource.
    args SmImportedCertificateArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    resource_name str
    The unique name of the resource.
    args SmImportedCertificateArgs
    The arguments to resource properties.
    opts ResourceOptions
    Bag of options to control resource's behavior.
    ctx Context
    Context object for the current deployment.
    name string
    The unique name of the resource.
    args SmImportedCertificateArgs
    The arguments to resource properties.
    opts ResourceOption
    Bag of options to control resource's behavior.
    name string
    The unique name of the resource.
    args SmImportedCertificateArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    name String
    The unique name of the resource.
    args SmImportedCertificateArgs
    The arguments to resource properties.
    options CustomResourceOptions
    Bag of options to control resource's behavior.

    Constructor example

    The following reference example uses placeholder values for all input properties.

    var smImportedCertificateResource = new Ibm.SmImportedCertificate("smImportedCertificateResource", new()
{
    InstanceId = "string",
    Labels = new[]
    {
        "string",
    },
    Description = "string",
    EndpointType = "string",
    CustomMetadata = 
    {
        { "string", "string" },
    },
    Intermediate = "string",
    Certificate = "string",
    ManagedCsr = new Ibm.Inputs.SmImportedCertificateManagedCsrArgs
    {
        AltNames = "string",
        ClientFlag = false,
        CodeSigningFlag = false,
        CommonName = "string",
        Countries = new[]
        {
            "string",
        },
        Csr = "string",
        EmailProtectionFlag = false,
        ExcludeCnFromSans = false,
        ExtKeyUsage = "string",
        ExtKeyUsageOids = "string",
        IpSans = "string",
        KeyBits = 0,
        KeyType = "string",
        KeyUsage = "string",
        Localities = new[]
        {
            "string",
        },
        Organizations = new[]
        {
            "string",
        },
        OtherSans = "string",
        Ous = new[]
        {
            "string",
        },
        PolicyIdentifiers = "string",
        PostalCodes = new[]
        {
            "string",
        },
        Provinces = new[]
        {
            "string",
        },
        RequireCn = false,
        RotateKeys = false,
        ServerFlag = false,
        StreetAddresses = new[]
        {
            "string",
        },
        UriSans = "string",
        UserIds = "string",
    },
    Name = "string",
    PrivateKey = "string",
    Region = "string",
    SecretGroupId = "string",
    SmImportedCertificateId = "string",
    VersionCustomMetadata = 
    {
        { "string", "string" },
    },
});

    example, err := ibm.NewSmImportedCertificate(ctx, "smImportedCertificateResource", &ibm.SmImportedCertificateArgs{
	InstanceId: pulumi.String("string"),
	Labels: pulumi.StringArray{
		pulumi.String("string"),
	},
	Description:  pulumi.String("string"),
	EndpointType: pulumi.String("string"),
	CustomMetadata: pulumi.StringMap{
		"string": pulumi.String("string"),
	},
	Intermediate: pulumi.String("string"),
	Certificate:  pulumi.String("string"),
	ManagedCsr: &ibm.SmImportedCertificateManagedCsrArgs{
		AltNames:        pulumi.String("string"),
		ClientFlag:      pulumi.Bool(false),
		CodeSigningFlag: pulumi.Bool(false),
		CommonName:      pulumi.String("string"),
		Countries: pulumi.StringArray{
			pulumi.String("string"),
		},
		Csr:                 pulumi.String("string"),
		EmailProtectionFlag: pulumi.Bool(false),
		ExcludeCnFromSans:   pulumi.Bool(false),
		ExtKeyUsage:         pulumi.String("string"),
		ExtKeyUsageOids:     pulumi.String("string"),
		IpSans:              pulumi.String("string"),
		KeyBits:             pulumi.Float64(0),
		KeyType:             pulumi.String("string"),
		KeyUsage:            pulumi.String("string"),
		Localities: pulumi.StringArray{
			pulumi.String("string"),
		},
		Organizations: pulumi.StringArray{
			pulumi.String("string"),
		},
		OtherSans: pulumi.String("string"),
		Ous: pulumi.StringArray{
			pulumi.String("string"),
		},
		PolicyIdentifiers: pulumi.String("string"),
		PostalCodes: pulumi.StringArray{
			pulumi.String("string"),
		},
		Provinces: pulumi.StringArray{
			pulumi.String("string"),
		},
		RequireCn:  pulumi.Bool(false),
		RotateKeys: pulumi.Bool(false),
		ServerFlag: pulumi.Bool(false),
		StreetAddresses: pulumi.StringArray{
			pulumi.String("string"),
		},
		UriSans: pulumi.String("string"),
		UserIds: pulumi.String("string"),
	},
	Name:                    pulumi.String("string"),
	PrivateKey:              pulumi.String("string"),
	Region:                  pulumi.String("string"),
	SecretGroupId:           pulumi.String("string"),
	SmImportedCertificateId: pulumi.String("string"),
	VersionCustomMetadata: pulumi.StringMap{
		"string": pulumi.String("string"),
	},
})

    var smImportedCertificateResource = new SmImportedCertificate("smImportedCertificateResource", SmImportedCertificateArgs.builder()
    .instanceId("string")
    .labels("string")
    .description("string")
    .endpointType("string")
    .customMetadata(Map.of("string", "string"))
    .intermediate("string")
    .certificate("string")
    .managedCsr(SmImportedCertificateManagedCsrArgs.builder()
        .altNames("string")
        .clientFlag(false)
        .codeSigningFlag(false)
        .commonName("string")
        .countries("string")
        .csr("string")
        .emailProtectionFlag(false)
        .excludeCnFromSans(false)
        .extKeyUsage("string")
        .extKeyUsageOids("string")
        .ipSans("string")
        .keyBits(0)
        .keyType("string")
        .keyUsage("string")
        .localities("string")
        .organizations("string")
        .otherSans("string")
        .ous("string")
        .policyIdentifiers("string")
        .postalCodes("string")
        .provinces("string")
        .requireCn(false)
        .rotateKeys(false)
        .serverFlag(false)
        .streetAddresses("string")
        .uriSans("string")
        .userIds("string")
        .build())
    .name("string")
    .privateKey("string")
    .region("string")
    .secretGroupId("string")
    .smImportedCertificateId("string")
    .versionCustomMetadata(Map.of("string", "string"))
    .build());

    sm_imported_certificate_resource = ibm.SmImportedCertificate("smImportedCertificateResource",
    instance_id="string",
    labels=["string"],
    description="string",
    endpoint_type="string",
    custom_metadata={
        "string": "string",
    },
    intermediate="string",
    certificate="string",
    managed_csr={
        "alt_names": "string",
        "client_flag": False,
        "code_signing_flag": False,
        "common_name": "string",
        "countries": ["string"],
        "csr": "string",
        "email_protection_flag": False,
        "exclude_cn_from_sans": False,
        "ext_key_usage": "string",
        "ext_key_usage_oids": "string",
        "ip_sans": "string",
        "key_bits": 0,
        "key_type": "string",
        "key_usage": "string",
        "localities": ["string"],
        "organizations": ["string"],
        "other_sans": "string",
        "ous": ["string"],
        "policy_identifiers": "string",
        "postal_codes": ["string"],
        "provinces": ["string"],
        "require_cn": False,
        "rotate_keys": False,
        "server_flag": False,
        "street_addresses": ["string"],
        "uri_sans": "string",
        "user_ids": "string",
    },
    name="string",
    private_key="string",
    region="string",
    secret_group_id="string",
    sm_imported_certificate_id="string",
    version_custom_metadata={
        "string": "string",
    })

    const smImportedCertificateResource = new ibm.SmImportedCertificate("smImportedCertificateResource", {
    instanceId: "string",
    labels: ["string"],
    description: "string",
    endpointType: "string",
    customMetadata: {
        string: "string",
    },
    intermediate: "string",
    certificate: "string",
    managedCsr: {
        altNames: "string",
        clientFlag: false,
        codeSigningFlag: false,
        commonName: "string",
        countries: ["string"],
        csr: "string",
        emailProtectionFlag: false,
        excludeCnFromSans: false,
        extKeyUsage: "string",
        extKeyUsageOids: "string",
        ipSans: "string",
        keyBits: 0,
        keyType: "string",
        keyUsage: "string",
        localities: ["string"],
        organizations: ["string"],
        otherSans: "string",
        ous: ["string"],
        policyIdentifiers: "string",
        postalCodes: ["string"],
        provinces: ["string"],
        requireCn: false,
        rotateKeys: false,
        serverFlag: false,
        streetAddresses: ["string"],
        uriSans: "string",
        userIds: "string",
    },
    name: "string",
    privateKey: "string",
    region: "string",
    secretGroupId: "string",
    smImportedCertificateId: "string",
    versionCustomMetadata: {
        string: "string",
    },
});

    type: ibm:SmImportedCertificate
properties:
    certificate: string
    customMetadata:
        string: string
    description: string
    endpointType: string
    instanceId: string
    intermediate: string
    labels:
        - string
    managedCsr:
        altNames: string
        clientFlag: false
        codeSigningFlag: false
        commonName: string
        countries:
            - string
        csr: string
        emailProtectionFlag: false
        excludeCnFromSans: false
        extKeyUsage: string
        extKeyUsageOids: string
        ipSans: string
        keyBits: 0
        keyType: string
        keyUsage: string
        localities:
            - string
        organizations:
            - string
        otherSans: string
        ous:
            - string
        policyIdentifiers: string
        postalCodes:
            - string
        provinces:
            - string
        requireCn: false
        rotateKeys: false
        serverFlag: false
        streetAddresses:
            - string
        uriSans: string
        userIds: string
    name: string
    privateKey: string
    region: string
    secretGroupId: string
    smImportedCertificateId: string
    versionCustomMetadata:
        string: string

    SmImportedCertificate Resource Properties

    To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

    Inputs

    In Python, inputs that are objects can be passed either as argument classes or as dictionary literals.

    The SmImportedCertificate resource accepts the following input properties:

    InstanceId string
    The GUID of the Secrets Manager instance.
    Certificate string
    The PEM-encoded contents of your certificate. You can manually rotate the secret by modifying this argument, together with the optional arguments intermediate and private_key. Modifying the certificate creates a new version of the secret. If the secret is used to generate a Certificate Signing Reques (CSR) no certificate should be provided initially. Add the certificate value only after the CSR is signed.

    • Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.
    CustomMetadata Dictionary<string, string>
    The secret metadata that a user can customize.
    Description string
    An extended description of your secret.To protect your privacy, do not use personal data, such as your name or location, as a description for your secret group.

    • Constraints: The maximum length is 1024 characters. The minimum length is 0 characters. The value must match regular expression /(.*?)/.
    EndpointType string
    The endpoint type. If not provided the endpoint type is determined by the visibility argument provided in the provider configuration.

    • Constraints: Allowable values are: private, public.
    Intermediate string
    (Optional) The PEM-encoded intermediate certificate to associate with the root certificate.

    • Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.
    Labels List<string>
    Labels that you can use to search for secrets in your instance.Up to 30 labels can be created.

    • Constraints: The list items must match regular expression /(.*?)/. The maximum length is 30 items. The minimum length is 0 items.
    ManagedCsr SmImportedCertificateManagedCsr
    The data specified to create the CSR and the private key. Nested scheme for managed_csr:
    Name string
    The human-readable name of your secret.

    • Constraints: The maximum length is 256 characters. The minimum length is 2 characters. The value must match regular expression ^[A-Za-z0-9_][A-Za-z0-9_]*(?:_*-*\.*[A-Za-z0-9]*)*[A-Za-z0-9]+$.
    PrivateKey string
    (Optional) The PEM-encoded private key to associate with the certificate.

    • Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.
    Region string
    The region of the Secrets Manager instance. If not provided defaults to the region defined in the IBM provider configuration.
    SecretGroupId string
    A UUID identifier, or default secret group.

    • Constraints: The maximum length is 36 characters. The minimum length is 7 characters. The value must match regular expression /^([0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}|default)$/.
    SmImportedCertificateId string
    VersionCustomMetadata Dictionary<string, string>
    The secret version metadata that a user can customize.
    InstanceId string
    The GUID of the Secrets Manager instance.
    Certificate string
    The PEM-encoded contents of your certificate. You can manually rotate the secret by modifying this argument, together with the optional arguments intermediate and private_key. Modifying the certificate creates a new version of the secret. If the secret is used to generate a Certificate Signing Reques (CSR) no certificate should be provided initially. Add the certificate value only after the CSR is signed.

    • Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.
    CustomMetadata map[string]string
    The secret metadata that a user can customize.
    Description string
    An extended description of your secret.To protect your privacy, do not use personal data, such as your name or location, as a description for your secret group.

    • Constraints: The maximum length is 1024 characters. The minimum length is 0 characters. The value must match regular expression /(.*?)/.
    EndpointType string
    The endpoint type. If not provided the endpoint type is determined by the visibility argument provided in the provider configuration.

    • Constraints: Allowable values are: private, public.
    Intermediate string
    (Optional) The PEM-encoded intermediate certificate to associate with the root certificate.

    • Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.
    Labels []string
    Labels that you can use to search for secrets in your instance.Up to 30 labels can be created.

    • Constraints: The list items must match regular expression /(.*?)/. The maximum length is 30 items. The minimum length is 0 items.
    ManagedCsr SmImportedCertificateManagedCsrArgs
    The data specified to create the CSR and the private key. Nested scheme for managed_csr:
    Name string
    The human-readable name of your secret.

    • Constraints: The maximum length is 256 characters. The minimum length is 2 characters. The value must match regular expression ^[A-Za-z0-9_][A-Za-z0-9_]*(?:_*-*\.*[A-Za-z0-9]*)*[A-Za-z0-9]+$.
    PrivateKey string
    (Optional) The PEM-encoded private key to associate with the certificate.

    • Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.
    Region string
    The region of the Secrets Manager instance. If not provided defaults to the region defined in the IBM provider configuration.
    SecretGroupId string
    A UUID identifier, or default secret group.

    • Constraints: The maximum length is 36 characters. The minimum length is 7 characters. The value must match regular expression /^([0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}|default)$/.
    SmImportedCertificateId string
    VersionCustomMetadata map[string]string
    The secret version metadata that a user can customize.
    instanceId String
    The GUID of the Secrets Manager instance.
    certificate String
    The PEM-encoded contents of your certificate. You can manually rotate the secret by modifying this argument, together with the optional arguments intermediate and private_key. Modifying the certificate creates a new version of the secret. If the secret is used to generate a Certificate Signing Reques (CSR) no certificate should be provided initially. Add the certificate value only after the CSR is signed.

    • Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.
    customMetadata Map<String,String>
    The secret metadata that a user can customize.
    description String
    An extended description of your secret.To protect your privacy, do not use personal data, such as your name or location, as a description for your secret group.

    • Constraints: The maximum length is 1024 characters. The minimum length is 0 characters. The value must match regular expression /(.*?)/.
    endpointType String
    The endpoint type. If not provided the endpoint type is determined by the visibility argument provided in the provider configuration.

    • Constraints: Allowable values are: private, public.
    intermediate String
    (Optional) The PEM-encoded intermediate certificate to associate with the root certificate.

    • Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.
    labels List<String>
    Labels that you can use to search for secrets in your instance.Up to 30 labels can be created.

    • Constraints: The list items must match regular expression /(.*?)/. The maximum length is 30 items. The minimum length is 0 items.
    managedCsr SmImportedCertificateManagedCsr
    The data specified to create the CSR and the private key. Nested scheme for managed_csr:
    name String
    The human-readable name of your secret.

    • Constraints: The maximum length is 256 characters. The minimum length is 2 characters. The value must match regular expression ^[A-Za-z0-9_][A-Za-z0-9_]*(?:_*-*\.*[A-Za-z0-9]*)*[A-Za-z0-9]+$.
    privateKey String
    (Optional) The PEM-encoded private key to associate with the certificate.

    • Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.
    region String
    The region of the Secrets Manager instance. If not provided defaults to the region defined in the IBM provider configuration.
    secretGroupId String
    A UUID identifier, or default secret group.

    • Constraints: The maximum length is 36 characters. The minimum length is 7 characters. The value must match regular expression /^([0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}|default)$/.
    smImportedCertificateId String
    versionCustomMetadata Map<String,String>
    The secret version metadata that a user can customize.
    instanceId string
    The GUID of the Secrets Manager instance.
    certificate string
    The PEM-encoded contents of your certificate. You can manually rotate the secret by modifying this argument, together with the optional arguments intermediate and private_key. Modifying the certificate creates a new version of the secret. If the secret is used to generate a Certificate Signing Reques (CSR) no certificate should be provided initially. Add the certificate value only after the CSR is signed.

    • Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.
    customMetadata {[key: string]: string}
    The secret metadata that a user can customize.
    description string
    An extended description of your secret.To protect your privacy, do not use personal data, such as your name or location, as a description for your secret group.

    • Constraints: The maximum length is 1024 characters. The minimum length is 0 characters. The value must match regular expression /(.*?)/.
    endpointType string
    The endpoint type. If not provided the endpoint type is determined by the visibility argument provided in the provider configuration.

    • Constraints: Allowable values are: private, public.
    intermediate string
    (Optional) The PEM-encoded intermediate certificate to associate with the root certificate.

    • Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.
    labels string[]
    Labels that you can use to search for secrets in your instance.Up to 30 labels can be created.

    • Constraints: The list items must match regular expression /(.*?)/. The maximum length is 30 items. The minimum length is 0 items.
    managedCsr SmImportedCertificateManagedCsr
    The data specified to create the CSR and the private key. Nested scheme for managed_csr:
    name string
    The human-readable name of your secret.

    • Constraints: The maximum length is 256 characters. The minimum length is 2 characters. The value must match regular expression ^[A-Za-z0-9_][A-Za-z0-9_]*(?:_*-*\.*[A-Za-z0-9]*)*[A-Za-z0-9]+$.
    privateKey string
    (Optional) The PEM-encoded private key to associate with the certificate.

    • Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.
    region string
    The region of the Secrets Manager instance. If not provided defaults to the region defined in the IBM provider configuration.
    secretGroupId string
    A UUID identifier, or default secret group.

    • Constraints: The maximum length is 36 characters. The minimum length is 7 characters. The value must match regular expression /^([0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}|default)$/.
    smImportedCertificateId string
    versionCustomMetadata {[key: string]: string}
    The secret version metadata that a user can customize.
    instance_id str
    The GUID of the Secrets Manager instance.
    certificate str
    The PEM-encoded contents of your certificate. You can manually rotate the secret by modifying this argument, together with the optional arguments intermediate and private_key. Modifying the certificate creates a new version of the secret. If the secret is used to generate a Certificate Signing Reques (CSR) no certificate should be provided initially. Add the certificate value only after the CSR is signed.

    • Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.
    custom_metadata Mapping[str, str]
    The secret metadata that a user can customize.
    description str
    An extended description of your secret.To protect your privacy, do not use personal data, such as your name or location, as a description for your secret group.

    • Constraints: The maximum length is 1024 characters. The minimum length is 0 characters. The value must match regular expression /(.*?)/.
    endpoint_type str
    The endpoint type. If not provided the endpoint type is determined by the visibility argument provided in the provider configuration.

    • Constraints: Allowable values are: private, public.
    intermediate str
    (Optional) The PEM-encoded intermediate certificate to associate with the root certificate.

    • Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.
    labels Sequence[str]
    Labels that you can use to search for secrets in your instance.Up to 30 labels can be created.

    • Constraints: The list items must match regular expression /(.*?)/. The maximum length is 30 items. The minimum length is 0 items.
    managed_csr SmImportedCertificateManagedCsrArgs
    The data specified to create the CSR and the private key. Nested scheme for managed_csr:
    name str
    The human-readable name of your secret.

    • Constraints: The maximum length is 256 characters. The minimum length is 2 characters. The value must match regular expression ^[A-Za-z0-9_][A-Za-z0-9_]*(?:_*-*\.*[A-Za-z0-9]*)*[A-Za-z0-9]+$.
    private_key str
    (Optional) The PEM-encoded private key to associate with the certificate.

    • Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.
    region str
    The region of the Secrets Manager instance. If not provided defaults to the region defined in the IBM provider configuration.
    secret_group_id str
    A UUID identifier, or default secret group.

    • Constraints: The maximum length is 36 characters. The minimum length is 7 characters. The value must match regular expression /^([0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}|default)$/.
    sm_imported_certificate_id str
    version_custom_metadata Mapping[str, str]
    The secret version metadata that a user can customize.
    instanceId String
    The GUID of the Secrets Manager instance.
    certificate String
    The PEM-encoded contents of your certificate. You can manually rotate the secret by modifying this argument, together with the optional arguments intermediate and private_key. Modifying the certificate creates a new version of the secret. If the secret is used to generate a Certificate Signing Reques (CSR) no certificate should be provided initially. Add the certificate value only after the CSR is signed.

    • Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.
    customMetadata Map<String>
    The secret metadata that a user can customize.
    description String
    An extended description of your secret.To protect your privacy, do not use personal data, such as your name or location, as a description for your secret group.

    • Constraints: The maximum length is 1024 characters. The minimum length is 0 characters. The value must match regular expression /(.*?)/.
    endpointType String
    The endpoint type. If not provided the endpoint type is determined by the visibility argument provided in the provider configuration.

    • Constraints: Allowable values are: private, public.
    intermediate String
    (Optional) The PEM-encoded intermediate certificate to associate with the root certificate.

    • Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.
    labels List<String>
    Labels that you can use to search for secrets in your instance.Up to 30 labels can be created.

    • Constraints: The list items must match regular expression /(.*?)/. The maximum length is 30 items. The minimum length is 0 items.
    managedCsr Property Map
    The data specified to create the CSR and the private key. Nested scheme for managed_csr:
    name String
    The human-readable name of your secret.

    • Constraints: The maximum length is 256 characters. The minimum length is 2 characters. The value must match regular expression ^[A-Za-z0-9_][A-Za-z0-9_]*(?:_*-*\.*[A-Za-z0-9]*)*[A-Za-z0-9]+$.
    privateKey String
    (Optional) The PEM-encoded private key to associate with the certificate.

    • Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.
    region String
    The region of the Secrets Manager instance. If not provided defaults to the region defined in the IBM provider configuration.
    secretGroupId String
    A UUID identifier, or default secret group.

    • Constraints: The maximum length is 36 characters. The minimum length is 7 characters. The value must match regular expression /^([0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}|default)$/.
    smImportedCertificateId String
    versionCustomMetadata Map<String>
    The secret version metadata that a user can customize.

    Outputs

    All input properties are implicitly available as output properties. Additionally, the SmImportedCertificate resource produces the following output properties:

    CommonName string
    (Forces new resource, String) The Common Name (AKA CN) represents the server name protected by the SSL certificate.

    • Constraints: The maximum length is 64 characters. The minimum length is 4 characters. The value must match regular expression /^(\\*\\.)?(([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9\\-]*[a-zA-Z0-9])\\.)*([A-Za-z0-9]|[A-Za-z0-9][A-Za-z0-9\\-]*[A-Za-z0-9])\\.?$/.
    CreatedAt string
    (String) The date when a resource was created. The date format follows RFC 3339.
    CreatedBy string
    (String) The unique identifier that is associated with the entity that created the secret.

    • Constraints: The maximum length is 128 characters. The minimum length is 4 characters.
    Crn string
    (String) A CRN that uniquely identifies an IBM Cloud resource.

    • Constraints: The maximum length is 512 characters. The minimum length is 9 characters. The value must match regular expression /^crn:v0-9*+,;=@\/]|%[0-9A-Z]{2})*){8}$/.
    Csr string
    (String) The certificate signing request generated based on the parameters in the managed_csr data. The value may differ from the csr attribute within managed_csr if the managed_csr attributes have been modified.
    Downloaded bool
    (Boolean) Indicates whether the secret data that is associated with a secret version was retrieved in a call to the service API.
    ExpirationDate string
    The date a secret is expired. The date format follows RFC 3339.
    Id string
    The provider-assigned unique ID for this managed resource.
    IntermediateIncluded bool
    (Boolean) Indicates whether the certificate was imported with an associated intermediate certificate.
    Issuer string
    (Forces new resource, String) The distinguished name that identifies the entity that signed and issued the certificate.

    • Constraints: The maximum length is 128 characters. The minimum length is 2 characters. The value must match regular expression /(.*?)/.
    KeyAlgorithm string
    (String) The identifier for the cryptographic algorithm used to generate the public key that is associated with the certificate.

    • Constraints: The maximum length is 10 characters. The minimum length is 2 characters. The value must match regular expression /(.*?)/.
    LocksTotal double
    (Integer) The number of locks of the secret.

    • Constraints: The maximum value is 1000. The minimum value is 0.
    PrivateKeyIncluded bool
    (Boolean) Indicates whether the certificate was imported with an associated private key.
    SecretId string
    The unique identifier of the ImportedCertificate.
    SecretType string
    (String) The secret type. Supported types are arbitrary, certificates (imported, public, and private), IAM credentials, key-value, and user credentials.

    • Constraints: Allowable values are: arbitrary, imported_cert, public_cert, iam_credentials, kv, username_password, private_cert.
    SerialNumber string
    (String) The unique serial number that was assigned to a certificate by the issuing certificate authority.

    • Constraints: The maximum length is 64 characters. The minimum length is 2 characters. The value must match regular expression /[^a-fA-F0-9]/.
    SigningAlgorithm string
    (String) The identifier for the cryptographic algorithm that was used by the issuing certificate authority to sign a certificate.

    • Constraints: The maximum length is 64 characters. The minimum length is 4 characters.
    State double
    (Integer) The secret state that is based on NIST SP 800-57. States are integers and correspond to the Pre-activation = 0, Active = 1, Suspended = 2, Deactivated = 3, and Destroyed = 5 values.

    • Constraints: Allowable values are: 0, 1, 2, 3, 5.
    StateDescription string
    (String) A text representation of the secret state.

    • Constraints: Allowable values are: pre_activation, active, suspended, deactivated, destroyed.
    UpdatedAt string
    (String) The date when a resource was recently modified. The date format follows RFC 3339.
    Validities List<SmImportedCertificateValidity>
    (List) The date and time that the certificate validity period begins and ends. Nested scheme for validity:
    VersionsTotal double
    (Integer) The number of versions of the secret.

    • Constraints: The maximum value is 50. The minimum value is 0.
    CommonName string
    (Forces new resource, String) The Common Name (AKA CN) represents the server name protected by the SSL certificate.

    • Constraints: The maximum length is 64 characters. The minimum length is 4 characters. The value must match regular expression /^(\\*\\.)?(([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9\\-]*[a-zA-Z0-9])\\.)*([A-Za-z0-9]|[A-Za-z0-9][A-Za-z0-9\\-]*[A-Za-z0-9])\\.?$/.
    CreatedAt string
    (String) The date when a resource was created. The date format follows RFC 3339.
    CreatedBy string
    (String) The unique identifier that is associated with the entity that created the secret.

    • Constraints: The maximum length is 128 characters. The minimum length is 4 characters.
    Crn string
    (String) A CRN that uniquely identifies an IBM Cloud resource.

    • Constraints: The maximum length is 512 characters. The minimum length is 9 characters. The value must match regular expression /^crn:v0-9*+,;=@\/]|%[0-9A-Z]{2})*){8}$/.
    Csr string
    (String) The certificate signing request generated based on the parameters in the managed_csr data. The value may differ from the csr attribute within managed_csr if the managed_csr attributes have been modified.
    Downloaded bool
    (Boolean) Indicates whether the secret data that is associated with a secret version was retrieved in a call to the service API.
    ExpirationDate string
    The date a secret is expired. The date format follows RFC 3339.
    Id string
    The provider-assigned unique ID for this managed resource.
    IntermediateIncluded bool
    (Boolean) Indicates whether the certificate was imported with an associated intermediate certificate.
    Issuer string
    (Forces new resource, String) The distinguished name that identifies the entity that signed and issued the certificate.

    • Constraints: The maximum length is 128 characters. The minimum length is 2 characters. The value must match regular expression /(.*?)/.
    KeyAlgorithm string
    (String) The identifier for the cryptographic algorithm used to generate the public key that is associated with the certificate.

    • Constraints: The maximum length is 10 characters. The minimum length is 2 characters. The value must match regular expression /(.*?)/.
    LocksTotal float64
    (Integer) The number of locks of the secret.

    • Constraints: The maximum value is 1000. The minimum value is 0.
    PrivateKeyIncluded bool
    (Boolean) Indicates whether the certificate was imported with an associated private key.
    SecretId string
    The unique identifier of the ImportedCertificate.
    SecretType string
    (String) The secret type. Supported types are arbitrary, certificates (imported, public, and private), IAM credentials, key-value, and user credentials.

    • Constraints: Allowable values are: arbitrary, imported_cert, public_cert, iam_credentials, kv, username_password, private_cert.
    SerialNumber string
    (String) The unique serial number that was assigned to a certificate by the issuing certificate authority.

    • Constraints: The maximum length is 64 characters. The minimum length is 2 characters. The value must match regular expression /[^a-fA-F0-9]/.
    SigningAlgorithm string
    (String) The identifier for the cryptographic algorithm that was used by the issuing certificate authority to sign a certificate.

    • Constraints: The maximum length is 64 characters. The minimum length is 4 characters.
    State float64
    (Integer) The secret state that is based on NIST SP 800-57. States are integers and correspond to the Pre-activation = 0, Active = 1, Suspended = 2, Deactivated = 3, and Destroyed = 5 values.

    • Constraints: Allowable values are: 0, 1, 2, 3, 5.
    StateDescription string
    (String) A text representation of the secret state.

    • Constraints: Allowable values are: pre_activation, active, suspended, deactivated, destroyed.
    UpdatedAt string
    (String) The date when a resource was recently modified. The date format follows RFC 3339.
    Validities []SmImportedCertificateValidity
    (List) The date and time that the certificate validity period begins and ends. Nested scheme for validity:
    VersionsTotal float64
    (Integer) The number of versions of the secret.

    • Constraints: The maximum value is 50. The minimum value is 0.
    commonName String
    (Forces new resource, String) The Common Name (AKA CN) represents the server name protected by the SSL certificate.

    • Constraints: The maximum length is 64 characters. The minimum length is 4 characters. The value must match regular expression /^(\\*\\.)?(([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9\\-]*[a-zA-Z0-9])\\.)*([A-Za-z0-9]|[A-Za-z0-9][A-Za-z0-9\\-]*[A-Za-z0-9])\\.?$/.
    createdAt String
    (String) The date when a resource was created. The date format follows RFC 3339.
    createdBy String
    (String) The unique identifier that is associated with the entity that created the secret.

    • Constraints: The maximum length is 128 characters. The minimum length is 4 characters.
    crn String
    (String) A CRN that uniquely identifies an IBM Cloud resource.

    • Constraints: The maximum length is 512 characters. The minimum length is 9 characters. The value must match regular expression /^crn:v0-9*+,;=@\/]|%[0-9A-Z]{2})*){8}$/.
    csr String
    (String) The certificate signing request generated based on the parameters in the managed_csr data. The value may differ from the csr attribute within managed_csr if the managed_csr attributes have been modified.
    downloaded Boolean
    (Boolean) Indicates whether the secret data that is associated with a secret version was retrieved in a call to the service API.
    expirationDate String
    The date a secret is expired. The date format follows RFC 3339.
    id String
    The provider-assigned unique ID for this managed resource.
    intermediateIncluded Boolean
    (Boolean) Indicates whether the certificate was imported with an associated intermediate certificate.
    issuer String
    (Forces new resource, String) The distinguished name that identifies the entity that signed and issued the certificate.

    • Constraints: The maximum length is 128 characters. The minimum length is 2 characters. The value must match regular expression /(.*?)/.
    keyAlgorithm String
    (String) The identifier for the cryptographic algorithm used to generate the public key that is associated with the certificate.

    • Constraints: The maximum length is 10 characters. The minimum length is 2 characters. The value must match regular expression /(.*?)/.
    locksTotal Double
    (Integer) The number of locks of the secret.

    • Constraints: The maximum value is 1000. The minimum value is 0.
    privateKeyIncluded Boolean
    (Boolean) Indicates whether the certificate was imported with an associated private key.
    secretId String
    The unique identifier of the ImportedCertificate.
    secretType String
    (String) The secret type. Supported types are arbitrary, certificates (imported, public, and private), IAM credentials, key-value, and user credentials.

    • Constraints: Allowable values are: arbitrary, imported_cert, public_cert, iam_credentials, kv, username_password, private_cert.
    serialNumber String
    (String) The unique serial number that was assigned to a certificate by the issuing certificate authority.

    • Constraints: The maximum length is 64 characters. The minimum length is 2 characters. The value must match regular expression /[^a-fA-F0-9]/.
    signingAlgorithm String
    (String) The identifier for the cryptographic algorithm that was used by the issuing certificate authority to sign a certificate.

    • Constraints: The maximum length is 64 characters. The minimum length is 4 characters.
    state Double
    (Integer) The secret state that is based on NIST SP 800-57. States are integers and correspond to the Pre-activation = 0, Active = 1, Suspended = 2, Deactivated = 3, and Destroyed = 5 values.

    • Constraints: Allowable values are: 0, 1, 2, 3, 5.
    stateDescription String
    (String) A text representation of the secret state.

    • Constraints: Allowable values are: pre_activation, active, suspended, deactivated, destroyed.
    updatedAt String
    (String) The date when a resource was recently modified. The date format follows RFC 3339.
    validities List<SmImportedCertificateValidity>
    (List) The date and time that the certificate validity period begins and ends. Nested scheme for validity:
    versionsTotal Double
    (Integer) The number of versions of the secret.

    • Constraints: The maximum value is 50. The minimum value is 0.
    commonName string
    (Forces new resource, String) The Common Name (AKA CN) represents the server name protected by the SSL certificate.

    • Constraints: The maximum length is 64 characters. The minimum length is 4 characters. The value must match regular expression /^(\\*\\.)?(([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9\\-]*[a-zA-Z0-9])\\.)*([A-Za-z0-9]|[A-Za-z0-9][A-Za-z0-9\\-]*[A-Za-z0-9])\\.?$/.
    createdAt string
    (String) The date when a resource was created. The date format follows RFC 3339.
    createdBy string
    (String) The unique identifier that is associated with the entity that created the secret.

    • Constraints: The maximum length is 128 characters. The minimum length is 4 characters.
    crn string
    (String) A CRN that uniquely identifies an IBM Cloud resource.

    • Constraints: The maximum length is 512 characters. The minimum length is 9 characters. The value must match regular expression /^crn:v0-9*+,;=@\/]|%[0-9A-Z]{2})*){8}$/.
    csr string
    (String) The certificate signing request generated based on the parameters in the managed_csr data. The value may differ from the csr attribute within managed_csr if the managed_csr attributes have been modified.
    downloaded boolean
    (Boolean) Indicates whether the secret data that is associated with a secret version was retrieved in a call to the service API.
    expirationDate string
    The date a secret is expired. The date format follows RFC 3339.
    id string
    The provider-assigned unique ID for this managed resource.
    intermediateIncluded boolean
    (Boolean) Indicates whether the certificate was imported with an associated intermediate certificate.
    issuer string
    (Forces new resource, String) The distinguished name that identifies the entity that signed and issued the certificate.

    • Constraints: The maximum length is 128 characters. The minimum length is 2 characters. The value must match regular expression /(.*?)/.
    keyAlgorithm string
    (String) The identifier for the cryptographic algorithm used to generate the public key that is associated with the certificate.

    • Constraints: The maximum length is 10 characters. The minimum length is 2 characters. The value must match regular expression /(.*?)/.
    locksTotal number
    (Integer) The number of locks of the secret.

    • Constraints: The maximum value is 1000. The minimum value is 0.
    privateKeyIncluded boolean
    (Boolean) Indicates whether the certificate was imported with an associated private key.
    secretId string
    The unique identifier of the ImportedCertificate.
    secretType string
    (String) The secret type. Supported types are arbitrary, certificates (imported, public, and private), IAM credentials, key-value, and user credentials.

    • Constraints: Allowable values are: arbitrary, imported_cert, public_cert, iam_credentials, kv, username_password, private_cert.
    serialNumber string
    (String) The unique serial number that was assigned to a certificate by the issuing certificate authority.

    • Constraints: The maximum length is 64 characters. The minimum length is 2 characters. The value must match regular expression /[^a-fA-F0-9]/.
    signingAlgorithm string
    (String) The identifier for the cryptographic algorithm that was used by the issuing certificate authority to sign a certificate.

    • Constraints: The maximum length is 64 characters. The minimum length is 4 characters.
    state number
    (Integer) The secret state that is based on NIST SP 800-57. States are integers and correspond to the Pre-activation = 0, Active = 1, Suspended = 2, Deactivated = 3, and Destroyed = 5 values.

    • Constraints: Allowable values are: 0, 1, 2, 3, 5.
    stateDescription string
    (String) A text representation of the secret state.

    • Constraints: Allowable values are: pre_activation, active, suspended, deactivated, destroyed.
    updatedAt string
    (String) The date when a resource was recently modified. The date format follows RFC 3339.
    validities SmImportedCertificateValidity[]
    (List) The date and time that the certificate validity period begins and ends. Nested scheme for validity:
    versionsTotal number
    (Integer) The number of versions of the secret.

    • Constraints: The maximum value is 50. The minimum value is 0.
    common_name str
    (Forces new resource, String) The Common Name (AKA CN) represents the server name protected by the SSL certificate.

    • Constraints: The maximum length is 64 characters. The minimum length is 4 characters. The value must match regular expression /^(\\*\\.)?(([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9\\-]*[a-zA-Z0-9])\\.)*([A-Za-z0-9]|[A-Za-z0-9][A-Za-z0-9\\-]*[A-Za-z0-9])\\.?$/.
    created_at str
    (String) The date when a resource was created. The date format follows RFC 3339.
    created_by str
    (String) The unique identifier that is associated with the entity that created the secret.

    • Constraints: The maximum length is 128 characters. The minimum length is 4 characters.
    crn str
    (String) A CRN that uniquely identifies an IBM Cloud resource.

    • Constraints: The maximum length is 512 characters. The minimum length is 9 characters. The value must match regular expression /^crn:v0-9*+,;=@\/]|%[0-9A-Z]{2})*){8}$/.
    csr str
    (String) The certificate signing request generated based on the parameters in the managed_csr data. The value may differ from the csr attribute within managed_csr if the managed_csr attributes have been modified.
    downloaded bool
    (Boolean) Indicates whether the secret data that is associated with a secret version was retrieved in a call to the service API.
    expiration_date str
    The date a secret is expired. The date format follows RFC 3339.
    id str
    The provider-assigned unique ID for this managed resource.
    intermediate_included bool
    (Boolean) Indicates whether the certificate was imported with an associated intermediate certificate.
    issuer str
    (Forces new resource, String) The distinguished name that identifies the entity that signed and issued the certificate.

    • Constraints: The maximum length is 128 characters. The minimum length is 2 characters. The value must match regular expression /(.*?)/.
    key_algorithm str
    (String) The identifier for the cryptographic algorithm used to generate the public key that is associated with the certificate.

    • Constraints: The maximum length is 10 characters. The minimum length is 2 characters. The value must match regular expression /(.*?)/.
    locks_total float
    (Integer) The number of locks of the secret.

    • Constraints: The maximum value is 1000. The minimum value is 0.
    private_key_included bool
    (Boolean) Indicates whether the certificate was imported with an associated private key.
    secret_id str
    The unique identifier of the ImportedCertificate.
    secret_type str
    (String) The secret type. Supported types are arbitrary, certificates (imported, public, and private), IAM credentials, key-value, and user credentials.

    • Constraints: Allowable values are: arbitrary, imported_cert, public_cert, iam_credentials, kv, username_password, private_cert.
    serial_number str
    (String) The unique serial number that was assigned to a certificate by the issuing certificate authority.

    • Constraints: The maximum length is 64 characters. The minimum length is 2 characters. The value must match regular expression /[^a-fA-F0-9]/.
    signing_algorithm str
    (String) The identifier for the cryptographic algorithm that was used by the issuing certificate authority to sign a certificate.

    • Constraints: The maximum length is 64 characters. The minimum length is 4 characters.
    state float
    (Integer) The secret state that is based on NIST SP 800-57. States are integers and correspond to the Pre-activation = 0, Active = 1, Suspended = 2, Deactivated = 3, and Destroyed = 5 values.

    • Constraints: Allowable values are: 0, 1, 2, 3, 5.
    state_description str
    (String) A text representation of the secret state.

    • Constraints: Allowable values are: pre_activation, active, suspended, deactivated, destroyed.
    updated_at str
    (String) The date when a resource was recently modified. The date format follows RFC 3339.
    validities Sequence[SmImportedCertificateValidity]
    (List) The date and time that the certificate validity period begins and ends. Nested scheme for validity:
    versions_total float
    (Integer) The number of versions of the secret.

    • Constraints: The maximum value is 50. The minimum value is 0.
    commonName String
    (Forces new resource, String) The Common Name (AKA CN) represents the server name protected by the SSL certificate.

    • Constraints: The maximum length is 64 characters. The minimum length is 4 characters. The value must match regular expression /^(\\*\\.)?(([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9\\-]*[a-zA-Z0-9])\\.)*([A-Za-z0-9]|[A-Za-z0-9][A-Za-z0-9\\-]*[A-Za-z0-9])\\.?$/.
    createdAt String
    (String) The date when a resource was created. The date format follows RFC 3339.
    createdBy String
    (String) The unique identifier that is associated with the entity that created the secret.

    • Constraints: The maximum length is 128 characters. The minimum length is 4 characters.
    crn String
    (String) A CRN that uniquely identifies an IBM Cloud resource.

    • Constraints: The maximum length is 512 characters. The minimum length is 9 characters. The value must match regular expression /^crn:v0-9*+,;=@\/]|%[0-9A-Z]{2})*){8}$/.
    csr String
    (String) The certificate signing request generated based on the parameters in the managed_csr data. The value may differ from the csr attribute within managed_csr if the managed_csr attributes have been modified.
    downloaded Boolean
    (Boolean) Indicates whether the secret data that is associated with a secret version was retrieved in a call to the service API.
    expirationDate String
    The date a secret is expired. The date format follows RFC 3339.
    id String
    The provider-assigned unique ID for this managed resource.
    intermediateIncluded Boolean
    (Boolean) Indicates whether the certificate was imported with an associated intermediate certificate.
    issuer String
    (Forces new resource, String) The distinguished name that identifies the entity that signed and issued the certificate.

    • Constraints: The maximum length is 128 characters. The minimum length is 2 characters. The value must match regular expression /(.*?)/.
    keyAlgorithm String
    (String) The identifier for the cryptographic algorithm used to generate the public key that is associated with the certificate.

    • Constraints: The maximum length is 10 characters. The minimum length is 2 characters. The value must match regular expression /(.*?)/.
    locksTotal Number
    (Integer) The number of locks of the secret.

    • Constraints: The maximum value is 1000. The minimum value is 0.
    privateKeyIncluded Boolean
    (Boolean) Indicates whether the certificate was imported with an associated private key.
    secretId String
    The unique identifier of the ImportedCertificate.
    secretType String
    (String) The secret type. Supported types are arbitrary, certificates (imported, public, and private), IAM credentials, key-value, and user credentials.

    • Constraints: Allowable values are: arbitrary, imported_cert, public_cert, iam_credentials, kv, username_password, private_cert.
    serialNumber String
    (String) The unique serial number that was assigned to a certificate by the issuing certificate authority.

    • Constraints: The maximum length is 64 characters. The minimum length is 2 characters. The value must match regular expression /[^a-fA-F0-9]/.
    signingAlgorithm String
    (String) The identifier for the cryptographic algorithm that was used by the issuing certificate authority to sign a certificate.

    • Constraints: The maximum length is 64 characters. The minimum length is 4 characters.
    state Number
    (Integer) The secret state that is based on NIST SP 800-57. States are integers and correspond to the Pre-activation = 0, Active = 1, Suspended = 2, Deactivated = 3, and Destroyed = 5 values.

    • Constraints: Allowable values are: 0, 1, 2, 3, 5.
    stateDescription String
    (String) A text representation of the secret state.

    • Constraints: Allowable values are: pre_activation, active, suspended, deactivated, destroyed.
    updatedAt String
    (String) The date when a resource was recently modified. The date format follows RFC 3339.
    validities List<Property Map>
    (List) The date and time that the certificate validity period begins and ends. Nested scheme for validity:
    versionsTotal Number
    (Integer) The number of versions of the secret.

    • Constraints: The maximum value is 50. The minimum value is 0.

    Look up Existing SmImportedCertificate Resource

    Get an existing SmImportedCertificate resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

    public static get(name: string, id: Input<ID>, state?: SmImportedCertificateState, opts?: CustomResourceOptions): SmImportedCertificate
    @staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        certificate: Optional[str] = None,
        common_name: Optional[str] = None,
        created_at: Optional[str] = None,
        created_by: Optional[str] = None,
        crn: Optional[str] = None,
        csr: Optional[str] = None,
        custom_metadata: Optional[Mapping[str, str]] = None,
        description: Optional[str] = None,
        downloaded: Optional[bool] = None,
        endpoint_type: Optional[str] = None,
        expiration_date: Optional[str] = None,
        instance_id: Optional[str] = None,
        intermediate: Optional[str] = None,
        intermediate_included: Optional[bool] = None,
        issuer: Optional[str] = None,
        key_algorithm: Optional[str] = None,
        labels: Optional[Sequence[str]] = None,
        locks_total: Optional[float] = None,
        managed_csr: Optional[SmImportedCertificateManagedCsrArgs] = None,
        name: Optional[str] = None,
        private_key: Optional[str] = None,
        private_key_included: Optional[bool] = None,
        region: Optional[str] = None,
        secret_group_id: Optional[str] = None,
        secret_id: Optional[str] = None,
        secret_type: Optional[str] = None,
        serial_number: Optional[str] = None,
        signing_algorithm: Optional[str] = None,
        sm_imported_certificate_id: Optional[str] = None,
        state: Optional[float] = None,
        state_description: Optional[str] = None,
        updated_at: Optional[str] = None,
        validities: Optional[Sequence[SmImportedCertificateValidityArgs]] = None,
        version_custom_metadata: Optional[Mapping[str, str]] = None,
        versions_total: Optional[float] = None) -> SmImportedCertificate
    func GetSmImportedCertificate(ctx *Context, name string, id IDInput, state *SmImportedCertificateState, opts ...ResourceOption) (*SmImportedCertificate, error)
    public static SmImportedCertificate Get(string name, Input<string> id, SmImportedCertificateState? state, CustomResourceOptions? opts = null)
    public static SmImportedCertificate get(String name, Output<String> id, SmImportedCertificateState state, CustomResourceOptions options)
    resources:  _:    type: ibm:SmImportedCertificate    get:      id: ${id}
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    resource_name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    The following state arguments are supported:
    Certificate string
    The PEM-encoded contents of your certificate. You can manually rotate the secret by modifying this argument, together with the optional arguments intermediate and private_key. Modifying the certificate creates a new version of the secret. If the secret is used to generate a Certificate Signing Reques (CSR) no certificate should be provided initially. Add the certificate value only after the CSR is signed.

    • Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.
    CommonName string
    (Forces new resource, String) The Common Name (AKA CN) represents the server name protected by the SSL certificate.

    • Constraints: The maximum length is 64 characters. The minimum length is 4 characters. The value must match regular expression /^(\\*\\.)?(([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9\\-]*[a-zA-Z0-9])\\.)*([A-Za-z0-9]|[A-Za-z0-9][A-Za-z0-9\\-]*[A-Za-z0-9])\\.?$/.
    CreatedAt string
    (String) The date when a resource was created. The date format follows RFC 3339.
    CreatedBy string
    (String) The unique identifier that is associated with the entity that created the secret.

    • Constraints: The maximum length is 128 characters. The minimum length is 4 characters.
    Crn string
    (String) A CRN that uniquely identifies an IBM Cloud resource.

    • Constraints: The maximum length is 512 characters. The minimum length is 9 characters. The value must match regular expression /^crn:v0-9*+,;=@\/]|%[0-9A-Z]{2})*){8}$/.
    Csr string
    (String) The certificate signing request generated based on the parameters in the managed_csr data. The value may differ from the csr attribute within managed_csr if the managed_csr attributes have been modified.
    CustomMetadata Dictionary<string, string>
    The secret metadata that a user can customize.
    Description string
    An extended description of your secret.To protect your privacy, do not use personal data, such as your name or location, as a description for your secret group.

    • Constraints: The maximum length is 1024 characters. The minimum length is 0 characters. The value must match regular expression /(.*?)/.
    Downloaded bool
    (Boolean) Indicates whether the secret data that is associated with a secret version was retrieved in a call to the service API.
    EndpointType string
    The endpoint type. If not provided the endpoint type is determined by the visibility argument provided in the provider configuration.

    • Constraints: Allowable values are: private, public.
    ExpirationDate string
    The date a secret is expired. The date format follows RFC 3339.
    InstanceId string
    The GUID of the Secrets Manager instance.
    Intermediate string
    (Optional) The PEM-encoded intermediate certificate to associate with the root certificate.

    • Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.
    IntermediateIncluded bool
    (Boolean) Indicates whether the certificate was imported with an associated intermediate certificate.
    Issuer string
    (Forces new resource, String) The distinguished name that identifies the entity that signed and issued the certificate.

    • Constraints: The maximum length is 128 characters. The minimum length is 2 characters. The value must match regular expression /(.*?)/.
    KeyAlgorithm string
    (String) The identifier for the cryptographic algorithm used to generate the public key that is associated with the certificate.

    • Constraints: The maximum length is 10 characters. The minimum length is 2 characters. The value must match regular expression /(.*?)/.
    Labels List<string>
    Labels that you can use to search for secrets in your instance.Up to 30 labels can be created.

    • Constraints: The list items must match regular expression /(.*?)/. The maximum length is 30 items. The minimum length is 0 items.
    LocksTotal double
    (Integer) The number of locks of the secret.

    • Constraints: The maximum value is 1000. The minimum value is 0.
    ManagedCsr SmImportedCertificateManagedCsr
    The data specified to create the CSR and the private key. Nested scheme for managed_csr:
    Name string
    The human-readable name of your secret.

    • Constraints: The maximum length is 256 characters. The minimum length is 2 characters. The value must match regular expression ^[A-Za-z0-9_][A-Za-z0-9_]*(?:_*-*\.*[A-Za-z0-9]*)*[A-Za-z0-9]+$.
    PrivateKey string
    (Optional) The PEM-encoded private key to associate with the certificate.

    • Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.
    PrivateKeyIncluded bool
    (Boolean) Indicates whether the certificate was imported with an associated private key.
    Region string
    The region of the Secrets Manager instance. If not provided defaults to the region defined in the IBM provider configuration.
    SecretGroupId string
    A UUID identifier, or default secret group.

    • Constraints: The maximum length is 36 characters. The minimum length is 7 characters. The value must match regular expression /^([0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}|default)$/.
    SecretId string
    The unique identifier of the ImportedCertificate.
    SecretType string
    (String) The secret type. Supported types are arbitrary, certificates (imported, public, and private), IAM credentials, key-value, and user credentials.

    • Constraints: Allowable values are: arbitrary, imported_cert, public_cert, iam_credentials, kv, username_password, private_cert.
    SerialNumber string
    (String) The unique serial number that was assigned to a certificate by the issuing certificate authority.

    • Constraints: The maximum length is 64 characters. The minimum length is 2 characters. The value must match regular expression /[^a-fA-F0-9]/.
    SigningAlgorithm string
    (String) The identifier for the cryptographic algorithm that was used by the issuing certificate authority to sign a certificate.

    • Constraints: The maximum length is 64 characters. The minimum length is 4 characters.
    SmImportedCertificateId string
    State double
    (Integer) The secret state that is based on NIST SP 800-57. States are integers and correspond to the Pre-activation = 0, Active = 1, Suspended = 2, Deactivated = 3, and Destroyed = 5 values.

    • Constraints: Allowable values are: 0, 1, 2, 3, 5.
    StateDescription string
    (String) A text representation of the secret state.

    • Constraints: Allowable values are: pre_activation, active, suspended, deactivated, destroyed.
    UpdatedAt string
    (String) The date when a resource was recently modified. The date format follows RFC 3339.
    Validities List<SmImportedCertificateValidity>
    (List) The date and time that the certificate validity period begins and ends. Nested scheme for validity:
    VersionCustomMetadata Dictionary<string, string>
    The secret version metadata that a user can customize.
    VersionsTotal double
    (Integer) The number of versions of the secret.

    • Constraints: The maximum value is 50. The minimum value is 0.
    Certificate string
    The PEM-encoded contents of your certificate. You can manually rotate the secret by modifying this argument, together with the optional arguments intermediate and private_key. Modifying the certificate creates a new version of the secret. If the secret is used to generate a Certificate Signing Reques (CSR) no certificate should be provided initially. Add the certificate value only after the CSR is signed.

    • Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.
    CommonName string
    (Forces new resource, String) The Common Name (AKA CN) represents the server name protected by the SSL certificate.

    • Constraints: The maximum length is 64 characters. The minimum length is 4 characters. The value must match regular expression /^(\\*\\.)?(([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9\\-]*[a-zA-Z0-9])\\.)*([A-Za-z0-9]|[A-Za-z0-9][A-Za-z0-9\\-]*[A-Za-z0-9])\\.?$/.
    CreatedAt string
    (String) The date when a resource was created. The date format follows RFC 3339.
    CreatedBy string
    (String) The unique identifier that is associated with the entity that created the secret.

    • Constraints: The maximum length is 128 characters. The minimum length is 4 characters.
    Crn string
    (String) A CRN that uniquely identifies an IBM Cloud resource.

    • Constraints: The maximum length is 512 characters. The minimum length is 9 characters. The value must match regular expression /^crn:v0-9*+,;=@\/]|%[0-9A-Z]{2})*){8}$/.
    Csr string
    (String) The certificate signing request generated based on the parameters in the managed_csr data. The value may differ from the csr attribute within managed_csr if the managed_csr attributes have been modified.
    CustomMetadata map[string]string
    The secret metadata that a user can customize.
    Description string
    An extended description of your secret.To protect your privacy, do not use personal data, such as your name or location, as a description for your secret group.

    • Constraints: The maximum length is 1024 characters. The minimum length is 0 characters. The value must match regular expression /(.*?)/.
    Downloaded bool
    (Boolean) Indicates whether the secret data that is associated with a secret version was retrieved in a call to the service API.
    EndpointType string
    The endpoint type. If not provided the endpoint type is determined by the visibility argument provided in the provider configuration.

    • Constraints: Allowable values are: private, public.
    ExpirationDate string
    The date a secret is expired. The date format follows RFC 3339.
    InstanceId string
    The GUID of the Secrets Manager instance.
    Intermediate string
    (Optional) The PEM-encoded intermediate certificate to associate with the root certificate.

    • Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.
    IntermediateIncluded bool
    (Boolean) Indicates whether the certificate was imported with an associated intermediate certificate.
    Issuer string
    (Forces new resource, String) The distinguished name that identifies the entity that signed and issued the certificate.

    • Constraints: The maximum length is 128 characters. The minimum length is 2 characters. The value must match regular expression /(.*?)/.
    KeyAlgorithm string
    (String) The identifier for the cryptographic algorithm used to generate the public key that is associated with the certificate.

    • Constraints: The maximum length is 10 characters. The minimum length is 2 characters. The value must match regular expression /(.*?)/.
    Labels []string
    Labels that you can use to search for secrets in your instance.Up to 30 labels can be created.

    • Constraints: The list items must match regular expression /(.*?)/. The maximum length is 30 items. The minimum length is 0 items.
    LocksTotal float64
    (Integer) The number of locks of the secret.

    • Constraints: The maximum value is 1000. The minimum value is 0.
    ManagedCsr SmImportedCertificateManagedCsrArgs
    The data specified to create the CSR and the private key. Nested scheme for managed_csr:
    Name string
    The human-readable name of your secret.

    • Constraints: The maximum length is 256 characters. The minimum length is 2 characters. The value must match regular expression ^[A-Za-z0-9_][A-Za-z0-9_]*(?:_*-*\.*[A-Za-z0-9]*)*[A-Za-z0-9]+$.
    PrivateKey string
    (Optional) The PEM-encoded private key to associate with the certificate.

    • Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.
    PrivateKeyIncluded bool
    (Boolean) Indicates whether the certificate was imported with an associated private key.
    Region string
    The region of the Secrets Manager instance. If not provided defaults to the region defined in the IBM provider configuration.
    SecretGroupId string
    A UUID identifier, or default secret group.

    • Constraints: The maximum length is 36 characters. The minimum length is 7 characters. The value must match regular expression /^([0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}|default)$/.
    SecretId string
    The unique identifier of the ImportedCertificate.
    SecretType string
    (String) The secret type. Supported types are arbitrary, certificates (imported, public, and private), IAM credentials, key-value, and user credentials.

    • Constraints: Allowable values are: arbitrary, imported_cert, public_cert, iam_credentials, kv, username_password, private_cert.
    SerialNumber string
    (String) The unique serial number that was assigned to a certificate by the issuing certificate authority.

    • Constraints: The maximum length is 64 characters. The minimum length is 2 characters. The value must match regular expression /[^a-fA-F0-9]/.
    SigningAlgorithm string
    (String) The identifier for the cryptographic algorithm that was used by the issuing certificate authority to sign a certificate.

    • Constraints: The maximum length is 64 characters. The minimum length is 4 characters.
    SmImportedCertificateId string
    State float64
    (Integer) The secret state that is based on NIST SP 800-57. States are integers and correspond to the Pre-activation = 0, Active = 1, Suspended = 2, Deactivated = 3, and Destroyed = 5 values.

    • Constraints: Allowable values are: 0, 1, 2, 3, 5.
    StateDescription string
    (String) A text representation of the secret state.

    • Constraints: Allowable values are: pre_activation, active, suspended, deactivated, destroyed.
    UpdatedAt string
    (String) The date when a resource was recently modified. The date format follows RFC 3339.
    Validities []SmImportedCertificateValidityArgs
    (List) The date and time that the certificate validity period begins and ends. Nested scheme for validity:
    VersionCustomMetadata map[string]string
    The secret version metadata that a user can customize.
    VersionsTotal float64
    (Integer) The number of versions of the secret.

    • Constraints: The maximum value is 50. The minimum value is 0.
    certificate String
    The PEM-encoded contents of your certificate. You can manually rotate the secret by modifying this argument, together with the optional arguments intermediate and private_key. Modifying the certificate creates a new version of the secret. If the secret is used to generate a Certificate Signing Reques (CSR) no certificate should be provided initially. Add the certificate value only after the CSR is signed.

    • Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.
    commonName String
    (Forces new resource, String) The Common Name (AKA CN) represents the server name protected by the SSL certificate.

    • Constraints: The maximum length is 64 characters. The minimum length is 4 characters. The value must match regular expression /^(\\*\\.)?(([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9\\-]*[a-zA-Z0-9])\\.)*([A-Za-z0-9]|[A-Za-z0-9][A-Za-z0-9\\-]*[A-Za-z0-9])\\.?$/.
    createdAt String
    (String) The date when a resource was created. The date format follows RFC 3339.
    createdBy String
    (String) The unique identifier that is associated with the entity that created the secret.

    • Constraints: The maximum length is 128 characters. The minimum length is 4 characters.
    crn String
    (String) A CRN that uniquely identifies an IBM Cloud resource.

    • Constraints: The maximum length is 512 characters. The minimum length is 9 characters. The value must match regular expression /^crn:v0-9*+,;=@\/]|%[0-9A-Z]{2})*){8}$/.
    csr String
    (String) The certificate signing request generated based on the parameters in the managed_csr data. The value may differ from the csr attribute within managed_csr if the managed_csr attributes have been modified.
    customMetadata Map<String,String>
    The secret metadata that a user can customize.
    description String
    An extended description of your secret.To protect your privacy, do not use personal data, such as your name or location, as a description for your secret group.

    • Constraints: The maximum length is 1024 characters. The minimum length is 0 characters. The value must match regular expression /(.*?)/.
    downloaded Boolean
    (Boolean) Indicates whether the secret data that is associated with a secret version was retrieved in a call to the service API.
    endpointType String
    The endpoint type. If not provided the endpoint type is determined by the visibility argument provided in the provider configuration.

    • Constraints: Allowable values are: private, public.
    expirationDate String
    The date a secret is expired. The date format follows RFC 3339.
    instanceId String
    The GUID of the Secrets Manager instance.
    intermediate String
    (Optional) The PEM-encoded intermediate certificate to associate with the root certificate.

    • Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.
    intermediateIncluded Boolean
    (Boolean) Indicates whether the certificate was imported with an associated intermediate certificate.
    issuer String
    (Forces new resource, String) The distinguished name that identifies the entity that signed and issued the certificate.

    • Constraints: The maximum length is 128 characters. The minimum length is 2 characters. The value must match regular expression /(.*?)/.
    keyAlgorithm String
    (String) The identifier for the cryptographic algorithm used to generate the public key that is associated with the certificate.

    • Constraints: The maximum length is 10 characters. The minimum length is 2 characters. The value must match regular expression /(.*?)/.
    labels List<String>
    Labels that you can use to search for secrets in your instance.Up to 30 labels can be created.

    • Constraints: The list items must match regular expression /(.*?)/. The maximum length is 30 items. The minimum length is 0 items.
    locksTotal Double
    (Integer) The number of locks of the secret.

    • Constraints: The maximum value is 1000. The minimum value is 0.
    managedCsr SmImportedCertificateManagedCsr
    The data specified to create the CSR and the private key. Nested scheme for managed_csr:
    name String
    The human-readable name of your secret.

    • Constraints: The maximum length is 256 characters. The minimum length is 2 characters. The value must match regular expression ^[A-Za-z0-9_][A-Za-z0-9_]*(?:_*-*\.*[A-Za-z0-9]*)*[A-Za-z0-9]+$.
    privateKey String
    (Optional) The PEM-encoded private key to associate with the certificate.

    • Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.
    privateKeyIncluded Boolean
    (Boolean) Indicates whether the certificate was imported with an associated private key.
    region String
    The region of the Secrets Manager instance. If not provided defaults to the region defined in the IBM provider configuration.
    secretGroupId String
    A UUID identifier, or default secret group.

    • Constraints: The maximum length is 36 characters. The minimum length is 7 characters. The value must match regular expression /^([0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}|default)$/.
    secretId String
    The unique identifier of the ImportedCertificate.
    secretType String
    (String) The secret type. Supported types are arbitrary, certificates (imported, public, and private), IAM credentials, key-value, and user credentials.

    • Constraints: Allowable values are: arbitrary, imported_cert, public_cert, iam_credentials, kv, username_password, private_cert.
    serialNumber String
    (String) The unique serial number that was assigned to a certificate by the issuing certificate authority.

    • Constraints: The maximum length is 64 characters. The minimum length is 2 characters. The value must match regular expression /[^a-fA-F0-9]/.
    signingAlgorithm String
    (String) The identifier for the cryptographic algorithm that was used by the issuing certificate authority to sign a certificate.

    • Constraints: The maximum length is 64 characters. The minimum length is 4 characters.
    smImportedCertificateId String
    state Double
    (Integer) The secret state that is based on NIST SP 800-57. States are integers and correspond to the Pre-activation = 0, Active = 1, Suspended = 2, Deactivated = 3, and Destroyed = 5 values.

    • Constraints: Allowable values are: 0, 1, 2, 3, 5.
    stateDescription String
    (String) A text representation of the secret state.

    • Constraints: Allowable values are: pre_activation, active, suspended, deactivated, destroyed.
    updatedAt String
    (String) The date when a resource was recently modified. The date format follows RFC 3339.
    validities List<SmImportedCertificateValidity>
    (List) The date and time that the certificate validity period begins and ends. Nested scheme for validity:
    versionCustomMetadata Map<String,String>
    The secret version metadata that a user can customize.
    versionsTotal Double
    (Integer) The number of versions of the secret.

    • Constraints: The maximum value is 50. The minimum value is 0.
    certificate string
    The PEM-encoded contents of your certificate. You can manually rotate the secret by modifying this argument, together with the optional arguments intermediate and private_key. Modifying the certificate creates a new version of the secret. If the secret is used to generate a Certificate Signing Reques (CSR) no certificate should be provided initially. Add the certificate value only after the CSR is signed.

    • Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.
    commonName string
    (Forces new resource, String) The Common Name (AKA CN) represents the server name protected by the SSL certificate.

    • Constraints: The maximum length is 64 characters. The minimum length is 4 characters. The value must match regular expression /^(\\*\\.)?(([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9\\-]*[a-zA-Z0-9])\\.)*([A-Za-z0-9]|[A-Za-z0-9][A-Za-z0-9\\-]*[A-Za-z0-9])\\.?$/.
    createdAt string
    (String) The date when a resource was created. The date format follows RFC 3339.
    createdBy string
    (String) The unique identifier that is associated with the entity that created the secret.

    • Constraints: The maximum length is 128 characters. The minimum length is 4 characters.
    crn string
    (String) A CRN that uniquely identifies an IBM Cloud resource.

    • Constraints: The maximum length is 512 characters. The minimum length is 9 characters. The value must match regular expression /^crn:v0-9*+,;=@\/]|%[0-9A-Z]{2})*){8}$/.
    csr string
    (String) The certificate signing request generated based on the parameters in the managed_csr data. The value may differ from the csr attribute within managed_csr if the managed_csr attributes have been modified.
    customMetadata {[key: string]: string}
    The secret metadata that a user can customize.
    description string
    An extended description of your secret.To protect your privacy, do not use personal data, such as your name or location, as a description for your secret group.

    • Constraints: The maximum length is 1024 characters. The minimum length is 0 characters. The value must match regular expression /(.*?)/.
    downloaded boolean
    (Boolean) Indicates whether the secret data that is associated with a secret version was retrieved in a call to the service API.
    endpointType string
    The endpoint type. If not provided the endpoint type is determined by the visibility argument provided in the provider configuration.

    • Constraints: Allowable values are: private, public.
    expirationDate string
    The date a secret is expired. The date format follows RFC 3339.
    instanceId string
    The GUID of the Secrets Manager instance.
    intermediate string
    (Optional) The PEM-encoded intermediate certificate to associate with the root certificate.

    • Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.
    intermediateIncluded boolean
    (Boolean) Indicates whether the certificate was imported with an associated intermediate certificate.
    issuer string
    (Forces new resource, String) The distinguished name that identifies the entity that signed and issued the certificate.

    • Constraints: The maximum length is 128 characters. The minimum length is 2 characters. The value must match regular expression /(.*?)/.
    keyAlgorithm string
    (String) The identifier for the cryptographic algorithm used to generate the public key that is associated with the certificate.

    • Constraints: The maximum length is 10 characters. The minimum length is 2 characters. The value must match regular expression /(.*?)/.
    labels string[]
    Labels that you can use to search for secrets in your instance.Up to 30 labels can be created.

    • Constraints: The list items must match regular expression /(.*?)/. The maximum length is 30 items. The minimum length is 0 items.
    locksTotal number
    (Integer) The number of locks of the secret.

    • Constraints: The maximum value is 1000. The minimum value is 0.
    managedCsr SmImportedCertificateManagedCsr
    The data specified to create the CSR and the private key. Nested scheme for managed_csr:
    name string
    The human-readable name of your secret.

    • Constraints: The maximum length is 256 characters. The minimum length is 2 characters. The value must match regular expression ^[A-Za-z0-9_][A-Za-z0-9_]*(?:_*-*\.*[A-Za-z0-9]*)*[A-Za-z0-9]+$.
    privateKey string
    (Optional) The PEM-encoded private key to associate with the certificate.

    • Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.
    privateKeyIncluded boolean
    (Boolean) Indicates whether the certificate was imported with an associated private key.
    region string
    The region of the Secrets Manager instance. If not provided defaults to the region defined in the IBM provider configuration.
    secretGroupId string
    A UUID identifier, or default secret group.

    • Constraints: The maximum length is 36 characters. The minimum length is 7 characters. The value must match regular expression /^([0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}|default)$/.
    secretId string
    The unique identifier of the ImportedCertificate.
    secretType string
    (String) The secret type. Supported types are arbitrary, certificates (imported, public, and private), IAM credentials, key-value, and user credentials.

    • Constraints: Allowable values are: arbitrary, imported_cert, public_cert, iam_credentials, kv, username_password, private_cert.
    serialNumber string
    (String) The unique serial number that was assigned to a certificate by the issuing certificate authority.

    • Constraints: The maximum length is 64 characters. The minimum length is 2 characters. The value must match regular expression /[^a-fA-F0-9]/.
    signingAlgorithm string
    (String) The identifier for the cryptographic algorithm that was used by the issuing certificate authority to sign a certificate.

    • Constraints: The maximum length is 64 characters. The minimum length is 4 characters.
    smImportedCertificateId string
    state number
    (Integer) The secret state that is based on NIST SP 800-57. States are integers and correspond to the Pre-activation = 0, Active = 1, Suspended = 2, Deactivated = 3, and Destroyed = 5 values.

    • Constraints: Allowable values are: 0, 1, 2, 3, 5.
    stateDescription string
    (String) A text representation of the secret state.

    • Constraints: Allowable values are: pre_activation, active, suspended, deactivated, destroyed.
    updatedAt string
    (String) The date when a resource was recently modified. The date format follows RFC 3339.
    validities SmImportedCertificateValidity[]
    (List) The date and time that the certificate validity period begins and ends. Nested scheme for validity:
    versionCustomMetadata {[key: string]: string}
    The secret version metadata that a user can customize.
    versionsTotal number
    (Integer) The number of versions of the secret.

    • Constraints: The maximum value is 50. The minimum value is 0.
    certificate str
    The PEM-encoded contents of your certificate. You can manually rotate the secret by modifying this argument, together with the optional arguments intermediate and private_key. Modifying the certificate creates a new version of the secret. If the secret is used to generate a Certificate Signing Reques (CSR) no certificate should be provided initially. Add the certificate value only after the CSR is signed.

    • Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.
    common_name str
    (Forces new resource, String) The Common Name (AKA CN) represents the server name protected by the SSL certificate.

    • Constraints: The maximum length is 64 characters. The minimum length is 4 characters. The value must match regular expression /^(\\*\\.)?(([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9\\-]*[a-zA-Z0-9])\\.)*([A-Za-z0-9]|[A-Za-z0-9][A-Za-z0-9\\-]*[A-Za-z0-9])\\.?$/.
    created_at str
    (String) The date when a resource was created. The date format follows RFC 3339.
    created_by str
    (String) The unique identifier that is associated with the entity that created the secret.

    • Constraints: The maximum length is 128 characters. The minimum length is 4 characters.
    crn str
    (String) A CRN that uniquely identifies an IBM Cloud resource.

    • Constraints: The maximum length is 512 characters. The minimum length is 9 characters. The value must match regular expression /^crn:v0-9*+,;=@\/]|%[0-9A-Z]{2})*){8}$/.
    csr str
    (String) The certificate signing request generated based on the parameters in the managed_csr data. The value may differ from the csr attribute within managed_csr if the managed_csr attributes have been modified.
    custom_metadata Mapping[str, str]
    The secret metadata that a user can customize.
    description str
    An extended description of your secret.To protect your privacy, do not use personal data, such as your name or location, as a description for your secret group.

    • Constraints: The maximum length is 1024 characters. The minimum length is 0 characters. The value must match regular expression /(.*?)/.
    downloaded bool
    (Boolean) Indicates whether the secret data that is associated with a secret version was retrieved in a call to the service API.
    endpoint_type str
    The endpoint type. If not provided the endpoint type is determined by the visibility argument provided in the provider configuration.

    • Constraints: Allowable values are: private, public.
    expiration_date str
    The date a secret is expired. The date format follows RFC 3339.
    instance_id str
    The GUID of the Secrets Manager instance.
    intermediate str
    (Optional) The PEM-encoded intermediate certificate to associate with the root certificate.

    • Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.
    intermediate_included bool
    (Boolean) Indicates whether the certificate was imported with an associated intermediate certificate.
    issuer str
    (Forces new resource, String) The distinguished name that identifies the entity that signed and issued the certificate.

    • Constraints: The maximum length is 128 characters. The minimum length is 2 characters. The value must match regular expression /(.*?)/.
    key_algorithm str
    (String) The identifier for the cryptographic algorithm used to generate the public key that is associated with the certificate.

    • Constraints: The maximum length is 10 characters. The minimum length is 2 characters. The value must match regular expression /(.*?)/.
    labels Sequence[str]
    Labels that you can use to search for secrets in your instance.Up to 30 labels can be created.

    • Constraints: The list items must match regular expression /(.*?)/. The maximum length is 30 items. The minimum length is 0 items.
    locks_total float
    (Integer) The number of locks of the secret.

    • Constraints: The maximum value is 1000. The minimum value is 0.
    managed_csr SmImportedCertificateManagedCsrArgs
    The data specified to create the CSR and the private key. Nested scheme for managed_csr:
    name str
    The human-readable name of your secret.

    • Constraints: The maximum length is 256 characters. The minimum length is 2 characters. The value must match regular expression ^[A-Za-z0-9_][A-Za-z0-9_]*(?:_*-*\.*[A-Za-z0-9]*)*[A-Za-z0-9]+$.
    private_key str
    (Optional) The PEM-encoded private key to associate with the certificate.

    • Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.
    private_key_included bool
    (Boolean) Indicates whether the certificate was imported with an associated private key.
    region str
    The region of the Secrets Manager instance. If not provided defaults to the region defined in the IBM provider configuration.
    secret_group_id str
    A UUID identifier, or default secret group.

    • Constraints: The maximum length is 36 characters. The minimum length is 7 characters. The value must match regular expression /^([0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}|default)$/.
    secret_id str
    The unique identifier of the ImportedCertificate.
    secret_type str
    (String) The secret type. Supported types are arbitrary, certificates (imported, public, and private), IAM credentials, key-value, and user credentials.

    • Constraints: Allowable values are: arbitrary, imported_cert, public_cert, iam_credentials, kv, username_password, private_cert.
    serial_number str
    (String) The unique serial number that was assigned to a certificate by the issuing certificate authority.

    • Constraints: The maximum length is 64 characters. The minimum length is 2 characters. The value must match regular expression /[^a-fA-F0-9]/.
    signing_algorithm str
    (String) The identifier for the cryptographic algorithm that was used by the issuing certificate authority to sign a certificate.

    • Constraints: The maximum length is 64 characters. The minimum length is 4 characters.
    sm_imported_certificate_id str
    state float
    (Integer) The secret state that is based on NIST SP 800-57. States are integers and correspond to the Pre-activation = 0, Active = 1, Suspended = 2, Deactivated = 3, and Destroyed = 5 values.

    • Constraints: Allowable values are: 0, 1, 2, 3, 5.
    state_description str
    (String) A text representation of the secret state.

    • Constraints: Allowable values are: pre_activation, active, suspended, deactivated, destroyed.
    updated_at str
    (String) The date when a resource was recently modified. The date format follows RFC 3339.
    validities Sequence[SmImportedCertificateValidityArgs]
    (List) The date and time that the certificate validity period begins and ends. Nested scheme for validity:
    version_custom_metadata Mapping[str, str]
    The secret version metadata that a user can customize.
    versions_total float
    (Integer) The number of versions of the secret.

    • Constraints: The maximum value is 50. The minimum value is 0.
    certificate String
    The PEM-encoded contents of your certificate. You can manually rotate the secret by modifying this argument, together with the optional arguments intermediate and private_key. Modifying the certificate creates a new version of the secret. If the secret is used to generate a Certificate Signing Reques (CSR) no certificate should be provided initially. Add the certificate value only after the CSR is signed.

    • Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.
    commonName String
    (Forces new resource, String) The Common Name (AKA CN) represents the server name protected by the SSL certificate.

    • Constraints: The maximum length is 64 characters. The minimum length is 4 characters. The value must match regular expression /^(\\*\\.)?(([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9\\-]*[a-zA-Z0-9])\\.)*([A-Za-z0-9]|[A-Za-z0-9][A-Za-z0-9\\-]*[A-Za-z0-9])\\.?$/.
    createdAt String
    (String) The date when a resource was created. The date format follows RFC 3339.
    createdBy String
    (String) The unique identifier that is associated with the entity that created the secret.

    • Constraints: The maximum length is 128 characters. The minimum length is 4 characters.
    crn String
    (String) A CRN that uniquely identifies an IBM Cloud resource.

    • Constraints: The maximum length is 512 characters. The minimum length is 9 characters. The value must match regular expression /^crn:v0-9*+,;=@\/]|%[0-9A-Z]{2})*){8}$/.
    csr String
    (String) The certificate signing request generated based on the parameters in the managed_csr data. The value may differ from the csr attribute within managed_csr if the managed_csr attributes have been modified.
    customMetadata Map<String>
    The secret metadata that a user can customize.
    description String
    An extended description of your secret.To protect your privacy, do not use personal data, such as your name or location, as a description for your secret group.

    • Constraints: The maximum length is 1024 characters. The minimum length is 0 characters. The value must match regular expression /(.*?)/.
    downloaded Boolean
    (Boolean) Indicates whether the secret data that is associated with a secret version was retrieved in a call to the service API.
    endpointType String
    The endpoint type. If not provided the endpoint type is determined by the visibility argument provided in the provider configuration.

    • Constraints: Allowable values are: private, public.
    expirationDate String
    The date a secret is expired. The date format follows RFC 3339.
    instanceId String
    The GUID of the Secrets Manager instance.
    intermediate String
    (Optional) The PEM-encoded intermediate certificate to associate with the root certificate.

    • Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.
    intermediateIncluded Boolean
    (Boolean) Indicates whether the certificate was imported with an associated intermediate certificate.
    issuer String
    (Forces new resource, String) The distinguished name that identifies the entity that signed and issued the certificate.

    • Constraints: The maximum length is 128 characters. The minimum length is 2 characters. The value must match regular expression /(.*?)/.
    keyAlgorithm String
    (String) The identifier for the cryptographic algorithm used to generate the public key that is associated with the certificate.

    • Constraints: The maximum length is 10 characters. The minimum length is 2 characters. The value must match regular expression /(.*?)/.
    labels List<String>
    Labels that you can use to search for secrets in your instance.Up to 30 labels can be created.

    • Constraints: The list items must match regular expression /(.*?)/. The maximum length is 30 items. The minimum length is 0 items.
    locksTotal Number
    (Integer) The number of locks of the secret.

    • Constraints: The maximum value is 1000. The minimum value is 0.
    managedCsr Property Map
    The data specified to create the CSR and the private key. Nested scheme for managed_csr:
    name String
    The human-readable name of your secret.

    • Constraints: The maximum length is 256 characters. The minimum length is 2 characters. The value must match regular expression ^[A-Za-z0-9_][A-Za-z0-9_]*(?:_*-*\.*[A-Za-z0-9]*)*[A-Za-z0-9]+$.
    privateKey String
    (Optional) The PEM-encoded private key to associate with the certificate.

    • Constraints: The maximum length is 100000 characters. The minimum length is 50 characters. The value must match regular expression /^(-{5}BEGIN.+?-{5}[\\s\\S]+-{5}END.+?-{5})$/.
    privateKeyIncluded Boolean
    (Boolean) Indicates whether the certificate was imported with an associated private key.
    region String
    The region of the Secrets Manager instance. If not provided defaults to the region defined in the IBM provider configuration.
    secretGroupId String
    A UUID identifier, or default secret group.

    • Constraints: The maximum length is 36 characters. The minimum length is 7 characters. The value must match regular expression /^([0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}|default)$/.
    secretId String
    The unique identifier of the ImportedCertificate.
    secretType String
    (String) The secret type. Supported types are arbitrary, certificates (imported, public, and private), IAM credentials, key-value, and user credentials.

    • Constraints: Allowable values are: arbitrary, imported_cert, public_cert, iam_credentials, kv, username_password, private_cert.
    serialNumber String
    (String) The unique serial number that was assigned to a certificate by the issuing certificate authority.

    • Constraints: The maximum length is 64 characters. The minimum length is 2 characters. The value must match regular expression /[^a-fA-F0-9]/.
    signingAlgorithm String
    (String) The identifier for the cryptographic algorithm that was used by the issuing certificate authority to sign a certificate.

    • Constraints: The maximum length is 64 characters. The minimum length is 4 characters.
    smImportedCertificateId String
    state Number
    (Integer) The secret state that is based on NIST SP 800-57. States are integers and correspond to the Pre-activation = 0, Active = 1, Suspended = 2, Deactivated = 3, and Destroyed = 5 values.

    • Constraints: Allowable values are: 0, 1, 2, 3, 5.
    stateDescription String
    (String) A text representation of the secret state.

    • Constraints: Allowable values are: pre_activation, active, suspended, deactivated, destroyed.
    updatedAt String
    (String) The date when a resource was recently modified. The date format follows RFC 3339.
    validities List<Property Map>
    (List) The date and time that the certificate validity period begins and ends. Nested scheme for validity:
    versionCustomMetadata Map<String>
    The secret version metadata that a user can customize.
    versionsTotal Number
    (Integer) The number of versions of the secret.

    • Constraints: The maximum value is 50. The minimum value is 0.

    Supporting Types

    SmImportedCertificateManagedCsr, SmImportedCertificateManagedCsrArgs

    AltNames string
    With the Subject Alternative Name field, you can specify additional hostnames to be protected by a single SSL certificate.
    ClientFlag bool
    This field indicates whether certificate is flagged for client use. The default is true.
    CodeSigningFlag bool
    This field indicates whether certificate is flagged for code signing use. The default is true.
    CommonName string
    The Common Name (CN) represents the server name protected by the SSL certificate.
    Countries List<string>
    The Country (C) values to define in the subject field of the resulting certificate.
    Csr string
    The certificate signing request generated based on the parameters in the managed_csr data.
    EmailProtectionFlag bool
    This field indicates whether certificate is flagged for email protection use. The default is false.
    ExcludeCnFromSans bool
    This parameter controls whether the common name is excluded from Subject Alternative Names (SANs). The default is false.
    ExtKeyUsage string
    The allowed extended key usage constraint on certificate, in a comma-delimited list.
    ExtKeyUsageOids string
    A comma-delimited list of extended key usage Object Identifiers (OIDs).
    IpSans string
    The IP Subject Alternative Names to define for the certificate, in a comma-delimited list.
    KeyBits double
    The number of bits to use to generate the private key.
    KeyType string
    The type of private key to generate. The default is rsa.
    KeyUsage string
    The allowed key usage constraint to define for certificate, in a comma-delimited list.
    Localities List<string>
    The Locality (L) values to define in the subject field of the resulting certificate.
    Organizations List<string>
    The Organization (O) values to define in the subject field of the resulting certificate.
    OtherSans string
    The custom Object Identifier (OID) or UTF8-string Subject Alternative Names to define for the certificate, in a comma-delimited list.
    Ous List<string>
    The Organizational Unit (OU) values to define in the subject field of the resulting certificate.
    PolicyIdentifiers string
    A comma-delimited list of policy Object Identifiers (OIDs).
    PostalCodes List<string>
    The postal code values to define in the subject field of the resulting certificate.
    Provinces List<string>
    The Province (ST) values to define in the subject field of the resulting certificate.
    RequireCn bool
    If set to false, makes the common_name field optional while generating a certificate. The default is true.
    RotateKeys bool
    This field indicates whether the private key will be rotated. The default is false.
    ServerFlag bool
    This field indicates whether certificate is flagged for server use. The default is true.
    StreetAddresses List<string>
    The street address values to define in the subject field of the resulting certificate.
    UriSans string
    The URI Subject Alternative Names to define for the certificate, in a comma-delimited list.
    UserIds string
    Specifies the list of requested User ID (OID 0.9.2342.19200300.100.1.1) Subject values to be placed on the signed certificate.
    AltNames string
    With the Subject Alternative Name field, you can specify additional hostnames to be protected by a single SSL certificate.
    ClientFlag bool
    This field indicates whether certificate is flagged for client use. The default is true.
    CodeSigningFlag bool
    This field indicates whether certificate is flagged for code signing use. The default is true.
    CommonName string
    The Common Name (CN) represents the server name protected by the SSL certificate.
    Countries []string
    The Country (C) values to define in the subject field of the resulting certificate.
    Csr string
    The certificate signing request generated based on the parameters in the managed_csr data.
    EmailProtectionFlag bool
    This field indicates whether certificate is flagged for email protection use. The default is false.
    ExcludeCnFromSans bool
    This parameter controls whether the common name is excluded from Subject Alternative Names (SANs). The default is false.
    ExtKeyUsage string
    The allowed extended key usage constraint on certificate, in a comma-delimited list.
    ExtKeyUsageOids string
    A comma-delimited list of extended key usage Object Identifiers (OIDs).
    IpSans string
    The IP Subject Alternative Names to define for the certificate, in a comma-delimited list.
    KeyBits float64
    The number of bits to use to generate the private key.
    KeyType string
    The type of private key to generate. The default is rsa.
    KeyUsage string
    The allowed key usage constraint to define for certificate, in a comma-delimited list.
    Localities []string
    The Locality (L) values to define in the subject field of the resulting certificate.
    Organizations []string
    The Organization (O) values to define in the subject field of the resulting certificate.
    OtherSans string
    The custom Object Identifier (OID) or UTF8-string Subject Alternative Names to define for the certificate, in a comma-delimited list.
    Ous []string
    The Organizational Unit (OU) values to define in the subject field of the resulting certificate.
    PolicyIdentifiers string
    A comma-delimited list of policy Object Identifiers (OIDs).
    PostalCodes []string
    The postal code values to define in the subject field of the resulting certificate.
    Provinces []string
    The Province (ST) values to define in the subject field of the resulting certificate.
    RequireCn bool
    If set to false, makes the common_name field optional while generating a certificate. The default is true.
    RotateKeys bool
    This field indicates whether the private key will be rotated. The default is false.
    ServerFlag bool
    This field indicates whether certificate is flagged for server use. The default is true.
    StreetAddresses []string
    The street address values to define in the subject field of the resulting certificate.
    UriSans string
    The URI Subject Alternative Names to define for the certificate, in a comma-delimited list.
    UserIds string
    Specifies the list of requested User ID (OID 0.9.2342.19200300.100.1.1) Subject values to be placed on the signed certificate.
    altNames String
    With the Subject Alternative Name field, you can specify additional hostnames to be protected by a single SSL certificate.
    clientFlag Boolean
    This field indicates whether certificate is flagged for client use. The default is true.
    codeSigningFlag Boolean
    This field indicates whether certificate is flagged for code signing use. The default is true.
    commonName String
    The Common Name (CN) represents the server name protected by the SSL certificate.
    countries List<String>
    The Country (C) values to define in the subject field of the resulting certificate.
    csr String
    The certificate signing request generated based on the parameters in the managed_csr data.
    emailProtectionFlag Boolean
    This field indicates whether certificate is flagged for email protection use. The default is false.
    excludeCnFromSans Boolean
    This parameter controls whether the common name is excluded from Subject Alternative Names (SANs). The default is false.
    extKeyUsage String
    The allowed extended key usage constraint on certificate, in a comma-delimited list.
    extKeyUsageOids String
    A comma-delimited list of extended key usage Object Identifiers (OIDs).
    ipSans String
    The IP Subject Alternative Names to define for the certificate, in a comma-delimited list.
    keyBits Double
    The number of bits to use to generate the private key.
    keyType String
    The type of private key to generate. The default is rsa.
    keyUsage String
    The allowed key usage constraint to define for certificate, in a comma-delimited list.
    localities List<String>
    The Locality (L) values to define in the subject field of the resulting certificate.
    organizations List<String>
    The Organization (O) values to define in the subject field of the resulting certificate.
    otherSans String
    The custom Object Identifier (OID) or UTF8-string Subject Alternative Names to define for the certificate, in a comma-delimited list.
    ous List<String>
    The Organizational Unit (OU) values to define in the subject field of the resulting certificate.
    policyIdentifiers String
    A comma-delimited list of policy Object Identifiers (OIDs).
    postalCodes List<String>
    The postal code values to define in the subject field of the resulting certificate.
    provinces List<String>
    The Province (ST) values to define in the subject field of the resulting certificate.
    requireCn Boolean
    If set to false, makes the common_name field optional while generating a certificate. The default is true.
    rotateKeys Boolean
    This field indicates whether the private key will be rotated. The default is false.
    serverFlag Boolean
    This field indicates whether certificate is flagged for server use. The default is true.
    streetAddresses List<String>
    The street address values to define in the subject field of the resulting certificate.
    uriSans String
    The URI Subject Alternative Names to define for the certificate, in a comma-delimited list.
    userIds String
    Specifies the list of requested User ID (OID 0.9.2342.19200300.100.1.1) Subject values to be placed on the signed certificate.
    altNames string
    With the Subject Alternative Name field, you can specify additional hostnames to be protected by a single SSL certificate.
    clientFlag boolean
    This field indicates whether certificate is flagged for client use. The default is true.
    codeSigningFlag boolean
    This field indicates whether certificate is flagged for code signing use. The default is true.
    commonName string
    The Common Name (CN) represents the server name protected by the SSL certificate.
    countries string[]
    The Country (C) values to define in the subject field of the resulting certificate.
    csr string
    The certificate signing request generated based on the parameters in the managed_csr data.
    emailProtectionFlag boolean
    This field indicates whether certificate is flagged for email protection use. The default is false.
    excludeCnFromSans boolean
    This parameter controls whether the common name is excluded from Subject Alternative Names (SANs). The default is false.
    extKeyUsage string
    The allowed extended key usage constraint on certificate, in a comma-delimited list.
    extKeyUsageOids string
    A comma-delimited list of extended key usage Object Identifiers (OIDs).
    ipSans string
    The IP Subject Alternative Names to define for the certificate, in a comma-delimited list.
    keyBits number
    The number of bits to use to generate the private key.
    keyType string
    The type of private key to generate. The default is rsa.
    keyUsage string
    The allowed key usage constraint to define for certificate, in a comma-delimited list.
    localities string[]
    The Locality (L) values to define in the subject field of the resulting certificate.
    organizations string[]
    The Organization (O) values to define in the subject field of the resulting certificate.
    otherSans string
    The custom Object Identifier (OID) or UTF8-string Subject Alternative Names to define for the certificate, in a comma-delimited list.
    ous string[]
    The Organizational Unit (OU) values to define in the subject field of the resulting certificate.
    policyIdentifiers string
    A comma-delimited list of policy Object Identifiers (OIDs).
    postalCodes string[]
    The postal code values to define in the subject field of the resulting certificate.
    provinces string[]
    The Province (ST) values to define in the subject field of the resulting certificate.
    requireCn boolean
    If set to false, makes the common_name field optional while generating a certificate. The default is true.
    rotateKeys boolean
    This field indicates whether the private key will be rotated. The default is false.
    serverFlag boolean
    This field indicates whether certificate is flagged for server use. The default is true.
    streetAddresses string[]
    The street address values to define in the subject field of the resulting certificate.
    uriSans string
    The URI Subject Alternative Names to define for the certificate, in a comma-delimited list.
    userIds string
    Specifies the list of requested User ID (OID 0.9.2342.19200300.100.1.1) Subject values to be placed on the signed certificate.
    alt_names str
    With the Subject Alternative Name field, you can specify additional hostnames to be protected by a single SSL certificate.
    client_flag bool
    This field indicates whether certificate is flagged for client use. The default is true.
    code_signing_flag bool
    This field indicates whether certificate is flagged for code signing use. The default is true.
    common_name str
    The Common Name (CN) represents the server name protected by the SSL certificate.
    countries Sequence[str]
    The Country (C) values to define in the subject field of the resulting certificate.
    csr str
    The certificate signing request generated based on the parameters in the managed_csr data.
    email_protection_flag bool
    This field indicates whether certificate is flagged for email protection use. The default is false.
    exclude_cn_from_sans bool
    This parameter controls whether the common name is excluded from Subject Alternative Names (SANs). The default is false.
    ext_key_usage str
    The allowed extended key usage constraint on certificate, in a comma-delimited list.
    ext_key_usage_oids str
    A comma-delimited list of extended key usage Object Identifiers (OIDs).
    ip_sans str
    The IP Subject Alternative Names to define for the certificate, in a comma-delimited list.
    key_bits float
    The number of bits to use to generate the private key.
    key_type str
    The type of private key to generate. The default is rsa.
    key_usage str
    The allowed key usage constraint to define for certificate, in a comma-delimited list.
    localities Sequence[str]
    The Locality (L) values to define in the subject field of the resulting certificate.
    organizations Sequence[str]
    The Organization (O) values to define in the subject field of the resulting certificate.
    other_sans str
    The custom Object Identifier (OID) or UTF8-string Subject Alternative Names to define for the certificate, in a comma-delimited list.
    ous Sequence[str]
    The Organizational Unit (OU) values to define in the subject field of the resulting certificate.
    policy_identifiers str
    A comma-delimited list of policy Object Identifiers (OIDs).
    postal_codes Sequence[str]
    The postal code values to define in the subject field of the resulting certificate.
    provinces Sequence[str]
    The Province (ST) values to define in the subject field of the resulting certificate.
    require_cn bool
    If set to false, makes the common_name field optional while generating a certificate. The default is true.
    rotate_keys bool
    This field indicates whether the private key will be rotated. The default is false.
    server_flag bool
    This field indicates whether certificate is flagged for server use. The default is true.
    street_addresses Sequence[str]
    The street address values to define in the subject field of the resulting certificate.
    uri_sans str
    The URI Subject Alternative Names to define for the certificate, in a comma-delimited list.
    user_ids str
    Specifies the list of requested User ID (OID 0.9.2342.19200300.100.1.1) Subject values to be placed on the signed certificate.
    altNames String
    With the Subject Alternative Name field, you can specify additional hostnames to be protected by a single SSL certificate.
    clientFlag Boolean
    This field indicates whether certificate is flagged for client use. The default is true.
    codeSigningFlag Boolean
    This field indicates whether certificate is flagged for code signing use. The default is true.
    commonName String
    The Common Name (CN) represents the server name protected by the SSL certificate.
    countries List<String>
    The Country (C) values to define in the subject field of the resulting certificate.
    csr String
    The certificate signing request generated based on the parameters in the managed_csr data.
    emailProtectionFlag Boolean
    This field indicates whether certificate is flagged for email protection use. The default is false.
    excludeCnFromSans Boolean
    This parameter controls whether the common name is excluded from Subject Alternative Names (SANs). The default is false.
    extKeyUsage String
    The allowed extended key usage constraint on certificate, in a comma-delimited list.
    extKeyUsageOids String
    A comma-delimited list of extended key usage Object Identifiers (OIDs).
    ipSans String
    The IP Subject Alternative Names to define for the certificate, in a comma-delimited list.
    keyBits Number
    The number of bits to use to generate the private key.
    keyType String
    The type of private key to generate. The default is rsa.
    keyUsage String
    The allowed key usage constraint to define for certificate, in a comma-delimited list.
    localities List<String>
    The Locality (L) values to define in the subject field of the resulting certificate.
    organizations List<String>
    The Organization (O) values to define in the subject field of the resulting certificate.
    otherSans String
    The custom Object Identifier (OID) or UTF8-string Subject Alternative Names to define for the certificate, in a comma-delimited list.
    ous List<String>
    The Organizational Unit (OU) values to define in the subject field of the resulting certificate.
    policyIdentifiers String
    A comma-delimited list of policy Object Identifiers (OIDs).
    postalCodes List<String>
    The postal code values to define in the subject field of the resulting certificate.
    provinces List<String>
    The Province (ST) values to define in the subject field of the resulting certificate.
    requireCn Boolean
    If set to false, makes the common_name field optional while generating a certificate. The default is true.
    rotateKeys Boolean
    This field indicates whether the private key will be rotated. The default is false.
    serverFlag Boolean
    This field indicates whether certificate is flagged for server use. The default is true.
    streetAddresses List<String>
    The street address values to define in the subject field of the resulting certificate.
    uriSans String
    The URI Subject Alternative Names to define for the certificate, in a comma-delimited list.
    userIds String
    Specifies the list of requested User ID (OID 0.9.2342.19200300.100.1.1) Subject values to be placed on the signed certificate.

    SmImportedCertificateValidity, SmImportedCertificateValidityArgs

    NotAfter string
    (String) The date-time format follows RFC 3339.
    NotBefore string
    (String) The date-time format follows RFC 3339.
    NotAfter string
    (String) The date-time format follows RFC 3339.
    NotBefore string
    (String) The date-time format follows RFC 3339.
    notAfter String
    (String) The date-time format follows RFC 3339.
    notBefore String
    (String) The date-time format follows RFC 3339.
    notAfter string
    (String) The date-time format follows RFC 3339.
    notBefore string
    (String) The date-time format follows RFC 3339.
    not_after str
    (String) The date-time format follows RFC 3339.
    not_before str
    (String) The date-time format follows RFC 3339.
    notAfter String
    (String) The date-time format follows RFC 3339.
    notBefore String
    (String) The date-time format follows RFC 3339.

    Import

    You can import the ibm_sm_imported_certificate resource by using region, instance_id, and secret_id.

    For more information, see the documentation

    Syntax

    bash

    $ pulumi import ibm:index/smImportedCertificate:SmImportedCertificate sm_imported_certificate <region>/<instance_id>/<secret_id>

    Example

    bash

    $ pulumi import ibm:index/smImportedCertificate:SmImportedCertificate sm_imported_certificate us-east/6ebc4224-e983-496a-8a54-f40a0bfa9175/b49ad24d-81d4-5ebc-b9b9-b0937d1c84d5

    To learn more about importing existing cloud resources, see Importing resources.

    Package Details

    Repository
    ibm ibm-cloud/terraform-provider-ibm
    License
    Notes
    This Pulumi package is based on the ibm Terraform Provider.
    ibm logo
    ibm 1.78.0 published on Wednesday, Apr 30, 2025 by ibm-cloud
    ibm-cloud/terraform-provider-ibm